Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Malware [Solved]

Started by Denise0811 , Apr 21 2013 08:04 PM

This topic is locked

#1
Denise0811

Posted 21 April 2013 - 08:04 PM

Member

Member
31 posts

I cannot remove Browser Protect from Bit89, Inc. I have tried to download their uninstall program and it does not work. I have tried to remove it with Spybot Search and Destroy. Nothing is working. I also have Updater by Sweetpacks 2.0.0.566 on my computer and cannot uninstall it either. I get a runtime error.---------------------------
Error
---------------------------
Runtime Error (at 58:667):

Access violation at address 100722D0. Read of address 00000019.
---------------------------
OK
---------------------------

I have attached the OTL files. Thank you for your help!

OTL.Txt 122.61KB 142 downloads

Extras.Txt 77.83KB 223 downloads

#2
gringo_pr

Posted 21 April 2013 - 08:22 PM

Trusted Helper

Malware Removal
7,268 posts

Hello Denise0811

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.

Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

Please do not run any tools unless instructed to do so.
- We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
Please do not attach logs or use code boxes, just copy and paste the text.
- Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
Please read every post completely before doing anything.
- Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
Please provide feedback about your experience as we go.
- A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

Download Security Check by screen317 from here.
Save it to your Desktop.
Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on AdwCleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
Your computer will be rebooted automatically. A text file will open after the restart.
Please post the content of that logfile with your next answer.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
Quit all programs that you may have started.
Please disconnect any USB or external drives from the computer before you run this scan!
For Vista or Windows 7, right-click and select "Run as Administrator to start"
For Windows XP, double-click to start.
Wait until Prescan has finished ...
Then Click on "Scan" button
Wait until the Status box shows "Scan Finished"
click on "delete"
Wait until the Status box shows "Deleting Finished"
Click on "Report" and copy/paste the content of the Notepad into your next reply.
The log should be found in RKreport[1].txt on your Desktop
Exit/Close RogueKiller+

Gringo

#3
gringo_pr

Posted 24 April 2013 - 12:27 AM

Trusted Helper

Malware Removal
7,268 posts

Hello

48 Hour bump

It has been more than 48 hours since my last post.

do you still need help with this?
do you need more time?
are you having problems following my instructions?
if after 48hrs you have not replied to this thread then it will have to be closed!

Gringo

#4
Denise0811

Posted 24 April 2013 - 05:50 PM

Member

Topic Starter
Member
31 posts

Results of screen317's Security Check version 0.99.63
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Norton Security Suite
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Spybot - Search & Destroy
Malwarebytes Anti-Malware version 1.75.0.1300
Java™ 6 Update 35
Java 7 Update 17
Java version out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox (20.0)
Google Chrome 26.0.1410.43
Google Chrome 26.0.1410.64
Google Chrome CommonDotNET.dll..
Google Chrome IdVaultCore.dll..
Google Chrome IdVaultCore.XmlSerializers.dll.
Google Chrome Microsoft.mshtml.dll.
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
Anvisoft Anvi Smart Defender toolbox adblocker\ADBlockerSrv.exe
Anvisoft Anvi Smart Defender ASDSrv.exe
Anvisoft Anvi Smart Defender toolbox adblocker\ADBlockerTray.exe
Anvisoft Anvi Smart Defender ASDTray.exe
Strongvault Online Backup SMessenger.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 6%
````````````````````End of Log``````````````````````

#5
Denise0811

Posted 24 April 2013 - 06:06 PM

Member

Topic Starter
Member
31 posts

# AdwCleaner v2.008 - Logfile created 11/21/2012 at 18:18:42
# Updated 17/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Mom - MOM-PC
# Boot Mode : Normal
# Running from : C:\Users\Mom\Downloads\adwcleaner.exe
# Option [Delete]

***** [Services] *****

Stopped & Deleted : DefaultTabUpdate

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\FantastiGames Toolbar
File Deleted : C:\Users\Mom\AppData\Local\Temp\searchqutoolbar-manifest.xml
Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Deleted : C:\Program Files (x86)\GamesBar
Folder Deleted : C:\Program Files (x86)\Ilivid
Folder Deleted : C:\Program Files (x86)\Shop To Win
Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\ProgramData\Anti-phishing Domain Advisor
Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\GamesBar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GamesBar
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Mom\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Mom\AppData\Roaming\DefaultTab
Folder Deleted : C:\Users\Mom\Documents\ShopToWin

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Compete
Key Deleted : HKCU\Software\AppDataLow\Software\CompeteInc
Key Deleted : HKCU\Software\AppDataLow\Software\DefaultTab
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\Compete
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\DefaultTab
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B4DE90BB-150D-4B33-95FE-6BAAC97E1C21}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A93C934-025B-4C3A-B38E-9654A7003239}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B4DE90BB-150D-4B33-95FE-6BAAC97E1C21}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\ShopToWin
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{A57F7191-1E7F-4852-BAAF-F80A43E2687A}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{DBBBC528-9C8C-4051-9187-ED6F01A457C9}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{DD7C44CC-0F60-4FD9-A38F-5CF30D698AC2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EB583FE1-9458-4EDA-AC68-24D24F17C70F}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\CptUrlPassthru.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dca-api.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dca-bho.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ShoppingBHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CptUrlPassthru.hxxpMonitor
Key Deleted : HKLM\SOFTWARE\Classes\CptUrlPassthru.hxxpMonitor.1
Key Deleted : HKLM\SOFTWARE\Classes\dcabho.Dca
Key Deleted : HKLM\SOFTWARE\Classes\dcabho.Dca.1
Key Deleted : HKLM\SOFTWARE\Classes\FCSB000063449.JSOptionsImpl
Key Deleted : HKLM\SOFTWARE\Classes\FCSB000063449.JSOptionsImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\FCSB000063449.Shopping
Key Deleted : HKLM\SOFTWARE\Classes\FCSB000063449.Shopping.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{7BAB653D-88FB-4F60-AFC2-8E6FD59FAFF3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A57F7191-1E7F-4852-BAAF-F80A43E2687A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C8758BC4-4581-48C7-BA38-C1A650477AE9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\Software\CompeteInc
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1A93C934-025B-4C3A-B38E-9654A7003239}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{60260024-AA48-4A2F-84DA-2C2DCB24AAD0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B4DE90BB-150D-4B33-95FE-6BAAC97E1C21}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{15527BF5-9729-49DC-889C-9F956983154C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DD05B915-F77B-474A-9D42-9FEEAF5475C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Anti-phishing Domain Advisor
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{15527BF5-9729-49DC-889C-9F956983154C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD05B915-F77B-474A-9D42-9FEEAF5475C4}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Anti-phishing Domain Advisor]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{6F282B65-56BF-4BD1-A8B2-A4449A05863D}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iAllBrowsers&co=US&userid=98d7862b-b7c5-4208-992e-62f0905e03ac&searchtype=ds&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iAllBrowsers&co=US&userid=98d7862b-b7c5-4208-992e-62f0905e03ac&searchtype=hp --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iAllBrowsers&co=US&userid=98d7862b-b7c5-4208-992e-62f0905e03ac&searchtype=ds&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iAllBrowsers&co=US&userid=98d7862b-b7c5-4208-992e-62f0905e03ac&searchtype=ds&q={searchTerms} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iAllBrowsers&co=US&userid=98d7862b-b7c5-4208-992e-62f0905e03ac&searchtype=ds&q={searchTerms} --> hxxp://www.google.com

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Mom\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.8] : homepage = "hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iAllBrowsers&co=US&use[...]
Deleted [l.12] : urls_to_restore_on_startup = [ "hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W[...]
Deleted [l.1493] : homepage = "hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iAllBrowsers&co=US&userid[...]
Deleted [l.1744] : urls_to_restore_on_startup = [ "hxxp://feed.helperbar.com/?publisher=W3iAllBrowsers&dpid=W3iA[...]

*************************

AdwCleaner[R1].txt - [11548 octets] - [21/11/2012 18:17:32]
AdwCleaner[R2].txt - [11609 octets] - [21/11/2012 18:18:12]
AdwCleaner[S1].txt - [11299 octets] - [21/11/2012 18:18:42]

########## EOF - C:\AdwCleaner[S1].txt - [11360 octets] ##########

#6
Denise0811

Posted 24 April 2013 - 06:11 PM

Member

Topic Starter
Member
31 posts

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : http://tigzy.geeksto...roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Mom [Admin rights]
Mode : Remove -- Date : 04/24/2013 19:10:35
| ARK || FAK || MBR |

¤¤¤ Bad processes : 4 ¤¤¤
[SUSP PATH] genupdater.exe -- C:\Users\Mom\AppData\Roaming\Genieo\Application\Updater\bin\genupdater.exe [7] -> KILLED [TermProc]
[SUSP PATH] gentray.exe -- C:\Users\Mom\AppData\Roaming\Genieo\Application\TrayUi\bin\gentray.exe [7] -> KILLED [TermProc]
[SUSP PATH] StrongVaultApp.exe -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\StrongVaultApp.exe [-] -> KILLED [TermProc]
[SUSP PATH] genieutils.exe -- C:\Users\Mom\AppData\Roaming\Genieo\Application\Engine\lib\genieutils.exe [7] -> KILLED [TermProc]

¤¤¤ Registry Entries : 15 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : GenieoUpdaterService ("C:\Users\Mom\AppData\Roaming\Genieo\Application\Updater\bin\genupdater.exe" -wait 5) [7] -> DELETED
[RUN][SUSP PATH] HKCU\[...]\Run : GenieoSystemTray ("C:\Users\Mom\AppData\Roaming\Genieo\Application\TrayUi\bin\gentray.exe") [7] -> DELETED
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\Run : SMessaging (C:\Users\Mom\AppData\Local\Strongvault Online Backup\SMessaging.exe) [7] -> DELETED
[TASK][ROGUE ST] 0 : c:\program files\internet explorer\iexplore.exe -> DELETED
[TASK][ROGUE ST] 4478 : wscript.exe C:\Users\Mom\AppData\Local\Temp\launchie.vbs //B -> DELETED
[TASK][SUSP PATH] Poppet : C:\Users\Mom\AppData\Roaming\Microsoft\Windows\trillipoppet.exe [x] -> DELETED
[TASK][SUSP PATH] Updater21802.exe : C:\Users\Mom\AppData\Local\Updater21802\Updater21802.exe /extensionid=21802 /extensionname="Shopping Sidekick Plugin" /chromeid=dlopielgodpjhkbapdlbbicpiefpaack [x] -> DELETED
[STARTUP][SUSP PATH] Best Buy pc app.lnk @Default : C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe [-] -> DELETED
[STARTUP][RESIDUE] StrongVaultApp.exe @Common : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\StrongVaultApp.exe [-] -> DELETED
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST31000528AS ATA Device +++++
--- User ---
[MBR] f86f41c7fa6c00b5d15747c9d3af5078
[BSP] 2443d7138d44605c205800f5c869ff21 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 10118 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 20803584 | Size: 943710 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_04242013_02d1910.txt >>
RKreport[1]_S_04242013_02d1909.txt ; RKreport[2]_D_04242013_02d1910.txt

#7
Denise0811

Posted 24 April 2013 - 06:13 PM

Member

Topic Starter
Member
31 posts

I have provided the 3 text files. I was able to remove the Bit89 program from my computer. I am left with the Sweetpacks program. Hopefully you will be able to help me. Thanks

#8
gringo_pr

Posted 24 April 2013 - 07:19 PM

Trusted Helper

Malware Removal
7,268 posts

Hello Denise0811

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

In your next post I need the following
Log from Combofix
let me know of any problems you may have had
How is the computer doing now?

Gringo

#9
Denise0811

Posted 25 April 2013 - 08:11 PM

Member

Topic Starter
Member
31 posts

So I started the combo fix and it has been running for almost 2 hrs and is stuck on stage 4. Do I let it keep running?

#10
gringo_pr

Posted 26 April 2013 - 08:15 AM

Trusted Helper

Malware Removal
7,268 posts

Hello Denise0811

Ok lets try this, I want you to run combofix in safe mode but it is very important that when combofix reboots the computer for you to direct it back into safe mode so it can finish the scan.

Boot into Safe Mode

Reboot your computer in Safe Mode.

If the computer is running, shut down Windows, and then turn off the power.
Wait 30 seconds, and then turn the computer on.
Start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
Ensure that the Safe Mode option is selected.
Press Enter. The computer then begins to start in Safe mode.
Login on your usual account.

after combofix has finished its scan please post the report back here.

Gringo

#11
Denise0811

Posted 27 April 2013 - 04:11 PM

Member

Topic Starter
Member
31 posts

This is not working. I am in safe mode and have tried to run combofix several times. It looks like it is working by saving the registry but, a log never produces. It also does not launch the other window I got last time with the steps or stages. Not sure what to do next.

#12
gringo_pr

Posted 27 April 2013 - 04:14 PM

Trusted Helper

Malware Removal
7,268 posts

Hello Denise0811

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

If the forum still complains about it being to long send me everything that is at the end of the report after where it says

==================
Scan finished
==================

and I will see if I want to see the whole report

Malwarebytes Anti-Rootkit

1.Download Malwarebytes Anti-Rootkit
2.Unzip the contents to a folder in a convenient location.
3.Open the folder where the contents were unzipped and run mbar.exe
4.Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
5.Click on the Cleanup button to remove any threats and reboot if prompted to do so.
6.Wait while the system shuts down and the cleanup process is performed.
7.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
8.If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:
•Internet access
•Windows Update
•Windows Firewall9.If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included with Malwarebytes Anti-Rootkit and reboot.
10.Verify that your system is now functioning normally.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and MBAR

Gringo

#13
Denise0811

Posted 28 April 2013 - 09:16 AM

Member

Topic Starter
Member
31 posts

10:09:55.0398 4956 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:09:57.0411 4956 ============================================================
10:09:57.0411 4956 Current date / time: 2013/04/28 10:09:57.0411
10:09:57.0411 4956 SystemInfo:
10:09:57.0411 4956
10:09:57.0411 4956 OS Version: 6.1.7601 ServicePack: 1.0
10:09:57.0411 4956 Product type: Workstation
10:09:57.0411 4956 ComputerName: MOM-PC
10:09:57.0411 4956 UserName: Mom
10:09:57.0411 4956 Windows directory: C:\Windows
10:09:57.0411 4956 System windows directory: C:\Windows
10:09:57.0411 4956 Running under WOW64
10:09:57.0411 4956 Processor architecture: Intel x64
10:09:57.0411 4956 Number of processors: 4
10:09:57.0411 4956 Page size: 0x1000
10:09:57.0411 4956 Boot type: Normal boot
10:09:57.0411 4956 ============================================================
10:10:00.0250 4956 BG loaded
10:10:00.0515 4956 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:10:00.0546 4956 ============================================================
10:10:00.0546 4956 \Device\Harddisk0\DR0:
10:10:00.0546 4956 MBR partitions:
10:10:00.0546 4956 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x13C3000
10:10:00.0546 4956 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13D7000, BlocksNum 0x7332F000
10:10:00.0546 4956 ============================================================
10:10:00.0578 4956 C: <-> \Device\Harddisk0\DR0\Partition2
10:10:00.0578 4956 ============================================================
10:10:00.0578 4956 Initialize success
10:10:00.0578 4956 ============================================================
10:10:30.0081 5648 ============================================================
10:10:30.0081 5648 Scan started
10:10:30.0081 5648 Mode: Manual; SigCheck; TDLFS;
10:10:30.0081 5648 ============================================================
10:10:32.0836 5648 ================ Scan system memory ========================
10:10:32.0836 5648 System memory - ok
10:10:32.0836 5648 ================ Scan services =============================
10:10:33.0056 5648 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:10:33.0242 5648 1394ohci - ok
10:10:33.0280 5648 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:10:33.0294 5648 ACPI - ok
10:10:33.0316 5648 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:10:33.0438 5648 AcpiPmi - ok
10:10:33.0488 5648 [ E5568164C070A4988BD79C896920B3C6 ] acsock C:\Windows\system32\DRIVERS\acsock64.sys
10:10:33.0521 5648 acsock - ok
10:10:33.0709 5648 [ ED6D98E58406F2779C844943076EB4EE ] ADBlockerSrv C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe
10:10:33.0739 5648 ADBlockerSrv - ok
10:10:33.0829 5648 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:10:33.0860 5648 AdobeFlashPlayerUpdateSvc - ok
10:10:33.0890 5648 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:10:33.0910 5648 adp94xx - ok
10:10:33.0944 5648 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:10:33.0976 5648 adpahci - ok
10:10:33.0995 5648 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:10:34.0008 5648 adpu320 - ok
10:10:34.0038 5648 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:10:34.0149 5648 AeLookupSvc - ok
10:10:34.0185 5648 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:10:34.0235 5648 AFD - ok
10:10:34.0267 5648 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:10:34.0278 5648 agp440 - ok
10:10:34.0294 5648 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:10:34.0362 5648 ALG - ok
10:10:34.0377 5648 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:10:34.0387 5648 aliide - ok
10:10:34.0397 5648 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:10:34.0408 5648 amdide - ok
10:10:34.0421 5648 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:10:34.0468 5648 AmdK8 - ok
10:10:34.0488 5648 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:10:34.0527 5648 AmdPPM - ok
10:10:34.0551 5648 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:10:34.0579 5648 amdsata - ok
10:10:34.0603 5648 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:10:34.0634 5648 amdsbs - ok
10:10:34.0684 5648 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:10:34.0715 5648 amdxata - ok
10:10:34.0764 5648 [ A3AD44406CA340AB36B8C72C5D057ED5 ] AntiLog32 C:\Windows\system32\drivers\AntiLog64.sys
10:10:34.0788 5648 AntiLog32 - ok
10:10:34.0808 5648 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:10:34.0932 5648 AppID - ok
10:10:34.0953 5648 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:10:35.0015 5648 AppIDSvc - ok
10:10:35.0047 5648 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:10:35.0107 5648 Appinfo - ok
10:10:35.0181 5648 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:10:35.0201 5648 Apple Mobile Device - ok
10:10:35.0243 5648 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:10:35.0269 5648 arc - ok
10:10:35.0281 5648 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:10:35.0294 5648 arcsas - ok
10:10:35.0342 5648 [ 7F906B6F61531F3CB0B07622FE6FD70A ] asdnet C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\amd64\asdnet.sys
10:10:35.0360 5648 asdnet - ok
10:10:35.0415 5648 [ 44837F1CB5BD166A7BD8869F9E86E907 ] asdrm C:\Windows\system32\DRIVERS\asdrm.sys
10:10:35.0432 5648 asdrm - ok
10:10:35.0447 5648 [ 88390FE440DCC3F10556AE41F4EDFCA1 ] asdrs C:\Windows\system32\DRIVERS\asdrs.sys
10:10:35.0456 5648 asdrs - ok
10:10:35.0482 5648 [ 568B0D8B88DACCF1F4D48E362C69BD62 ] asdsrv C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDSrv.exe
10:10:35.0500 5648 asdsrv - ok
10:10:35.0528 5648 [ 2D6D1BCBE6B7D0688681CE71C4A4C828 ] asdws C:\Windows\system32\DRIVERS\asdws.sys
10:10:35.0536 5648 asdws - ok
10:10:35.0669 5648 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:10:35.0730 5648 aspnet_state - ok
10:10:35.0756 5648 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:10:35.0804 5648 AsyncMac - ok
10:10:35.0852 5648 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:10:35.0871 5648 atapi - ok
10:10:35.0925 5648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:10:36.0001 5648 AudioEndpointBuilder - ok
10:10:36.0014 5648 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:10:36.0050 5648 AudioSrv - ok
10:10:36.0096 5648 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:10:36.0186 5648 AxInstSV - ok
10:10:36.0228 5648 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:10:36.0293 5648 b06bdrv - ok
10:10:36.0330 5648 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:10:36.0353 5648 b57nd60a - ok
10:10:36.0383 5648 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:10:36.0433 5648 BDESVC - ok
10:10:36.0450 5648 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:10:36.0515 5648 Beep - ok
10:10:36.0631 5648 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:10:36.0725 5648 BFE - ok
10:10:37.0069 5648 [ 7B56A40EAAACF1867FF178501D3EA185 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130412.001\BHDrvx64.sys
10:10:37.0096 5648 BHDrvx64 - ok
10:10:37.0113 5648 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
10:10:37.0174 5648 BITS - ok
10:10:37.0189 5648 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:10:37.0217 5648 blbdrive - ok
10:10:37.0275 5648 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:10:37.0300 5648 Bonjour Service - ok
10:10:37.0329 5648 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:10:37.0385 5648 bowser - ok
10:10:37.0430 5648 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:10:37.0515 5648 BrFiltLo - ok
10:10:37.0529 5648 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:10:37.0544 5648 BrFiltUp - ok
10:10:37.0571 5648 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
10:10:37.0656 5648 BridgeMP - ok
10:10:37.0700 5648 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:10:37.0745 5648 Browser - ok
10:10:37.0762 5648 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:10:37.0809 5648 Brserid - ok
10:10:37.0825 5648 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:10:37.0853 5648 BrSerWdm - ok
10:10:37.0862 5648 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:10:37.0896 5648 BrUsbMdm - ok
10:10:37.0921 5648 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:10:37.0949 5648 BrUsbSer - ok
10:10:37.0963 5648 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:10:38.0052 5648 BTHMODEM - ok
10:10:38.0082 5648 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:10:38.0163 5648 bthserv - ok
10:10:38.0216 5648 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\1402000.013\ccSetx64.sys
10:10:38.0238 5648 ccSet_N360 - ok
10:10:38.0248 5648 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:10:38.0292 5648 cdfs - ok
10:10:38.0332 5648 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
10:10:38.0370 5648 cdrom - ok
10:10:38.0407 5648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:10:38.0468 5648 CertPropSvc - ok
10:10:38.0514 5648 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:10:38.0554 5648 circlass - ok
10:10:38.0584 5648 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:10:38.0601 5648 CLFS - ok
10:10:38.0776 5648 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:10:38.0807 5648 clr_optimization_v2.0.50727_32 - ok
10:10:38.0876 5648 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:10:38.0900 5648 clr_optimization_v2.0.50727_64 - ok
10:10:38.0984 5648 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:10:39.0126 5648 clr_optimization_v4.0.30319_32 - ok
10:10:39.0142 5648 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:10:39.0189 5648 clr_optimization_v4.0.30319_64 - ok
10:10:39.0234 5648 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:10:39.0267 5648 CmBatt - ok
10:10:39.0320 5648 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:10:39.0353 5648 cmdide - ok
10:10:39.0394 5648 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
10:10:39.0417 5648 CNG - ok
10:10:39.0428 5648 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:10:39.0439 5648 Compbatt - ok
10:10:39.0462 5648 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:10:39.0500 5648 CompositeBus - ok
10:10:39.0516 5648 COMSysApp - ok
10:10:39.0526 5648 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:10:39.0538 5648 crcdisk - ok
10:10:39.0575 5648 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:10:39.0622 5648 CryptSvc - ok
10:10:39.0852 5648 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
10:10:39.0892 5648 cvhsvc - ok
10:10:39.0964 5648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:10:40.0000 5648 DcomLaunch - ok
10:10:40.0033 5648 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:10:40.0140 5648 defragsvc - ok
10:10:40.0167 5648 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:10:40.0230 5648 DfsC - ok
10:10:40.0252 5648 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:10:40.0297 5648 Dhcp - ok
10:10:40.0317 5648 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:10:40.0385 5648 discache - ok
10:10:40.0412 5648 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:10:40.0423 5648 Disk - ok
10:10:40.0452 5648 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:10:40.0500 5648 Dnscache - ok
10:10:40.0561 5648 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
10:10:40.0588 5648 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
10:10:40.0588 5648 DockLoginService - detected UnsignedFile.Multi.Generic (1)
10:10:40.0624 5648 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:10:40.0687 5648 dot3svc - ok
10:10:40.0705 5648 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:10:40.0751 5648 DPS - ok
10:10:40.0775 5648 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:10:40.0833 5648 drmkaud - ok
10:10:40.0872 5648 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:10:40.0901 5648 DXGKrnl - ok
10:10:40.0923 5648 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:10:40.0961 5648 EapHost - ok
10:10:41.0283 5648 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:10:41.0395 5648 ebdrv - ok
10:10:41.0492 5648 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
10:10:41.0523 5648 eeCtrl - ok
10:10:41.0570 5648 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:10:41.0629 5648 EFS - ok
10:10:41.0764 5648 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:10:41.0860 5648 ehRecvr - ok
10:10:41.0888 5648 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:10:41.0982 5648 ehSched - ok
10:10:42.0040 5648 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:10:42.0088 5648 elxstor - ok
10:10:42.0183 5648 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
10:10:42.0200 5648 EraserUtilRebootDrv - ok
10:10:42.0226 5648 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:10:42.0275 5648 ErrDev - ok
10:10:42.0344 5648 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:10:42.0422 5648 EventSystem - ok
10:10:42.0461 5648 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:10:42.0499 5648 exfat - ok
10:10:42.0517 5648 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:10:42.0570 5648 fastfat - ok
10:10:42.0651 5648 [ 83158CA47591AF55A9759B5C648B0462 ] FastFreeConverterUpdt C:\Program Files (x86)\Fast Free Converter\FastFreeConverterUpdt.exe
10:10:42.0683 5648 FastFreeConverterUpdt ( UnsignedFile.Multi.Generic ) - warning
10:10:42.0683 5648 FastFreeConverterUpdt - detected UnsignedFile.Multi.Generic (1)
10:10:42.0734 5648 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:10:42.0797 5648 Fax - ok
10:10:42.0828 5648 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:10:42.0871 5648 fdc - ok
10:10:42.0928 5648 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:10:42.0989 5648 fdPHost - ok
10:10:43.0005 5648 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:10:43.0052 5648 FDResPub - ok
10:10:43.0065 5648 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:10:43.0077 5648 FileInfo - ok
10:10:43.0084 5648 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:10:43.0129 5648 Filetrace - ok
10:10:43.0145 5648 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:10:43.0167 5648 flpydisk - ok
10:10:43.0187 5648 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:10:43.0201 5648 FltMgr - ok
10:10:43.0247 5648 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
10:10:43.0297 5648 FontCache - ok
10:10:43.0333 5648 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:10:43.0347 5648 FontCache3.0.0.0 - ok
10:10:43.0365 5648 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:10:43.0377 5648 FsDepends - ok
10:10:43.0399 5648 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:10:43.0410 5648 Fs_Rec - ok
10:10:43.0458 5648 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:10:43.0494 5648 fvevol - ok
10:10:43.0512 5648 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:10:43.0524 5648 gagp30kx - ok
10:10:43.0554 5648 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:10:43.0563 5648 GEARAspiWDM - ok
10:10:43.0603 5648 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
10:10:43.0619 5648 GoToAssist - ok
10:10:43.0722 5648 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:10:43.0828 5648 gpsvc - ok
10:10:43.0917 5648 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:10:43.0938 5648 gupdate - ok
10:10:43.0943 5648 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:10:43.0951 5648 gupdatem - ok
10:10:43.0991 5648 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:10:44.0009 5648 gusvc - ok
10:10:44.0028 5648 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:10:44.0062 5648 hcw85cir - ok
10:10:44.0080 5648 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:10:44.0117 5648 HDAudBus - ok
10:10:44.0153 5648 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:10:44.0172 5648 HECIx64 - ok
10:10:44.0190 5648 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:10:44.0203 5648 HidBatt - ok
10:10:44.0218 5648 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:10:44.0243 5648 HidBth - ok
10:10:44.0267 5648 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:10:44.0318 5648 HidIr - ok
10:10:44.0341 5648 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
10:10:44.0409 5648 hidserv - ok
10:10:44.0433 5648 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:10:44.0446 5648 HidUsb - ok
10:10:44.0489 5648 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:10:44.0560 5648 hkmsvc - ok
10:10:44.0625 5648 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:10:44.0682 5648 HomeGroupListener - ok
10:10:44.0705 5648 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:10:44.0719 5648 HomeGroupProvider - ok
10:10:44.0738 5648 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:10:44.0751 5648 HpSAMD - ok
10:10:44.0817 5648 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:10:44.0877 5648 HTTP - ok
10:10:44.0903 5648 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:10:44.0914 5648 hwpolicy - ok
10:10:44.0947 5648 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:10:44.0967 5648 i8042prt - ok
10:10:44.0995 5648 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:10:45.0013 5648 iaStorV - ok
10:10:45.0093 5648 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
10:10:45.0114 5648 IDriverT ( UnsignedFile.Multi.Generic ) - warning
10:10:45.0114 5648 IDriverT - detected UnsignedFile.Multi.Generic (1)
10:10:45.0169 5648 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:10:45.0206 5648 idsvc - ok
10:10:45.0276 5648 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130426.001\IDSvia64.sys
10:10:45.0310 5648 IDSVia64 - ok
10:10:45.0353 5648 [ 5949989FFE62C5EC8B91B9A37D658B90 ] IDVaultSvc C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe
10:10:45.0373 5648 IDVaultSvc - ok
10:10:45.0648 5648 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:10:45.0794 5648 igfx - ok
10:10:45.0827 5648 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:10:45.0851 5648 iirsp - ok
10:10:45.0944 5648 [ AD5DF6F4FBBC798636EDC66BFEC7D0DE ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
10:10:45.0960 5648 IJPLMSVC - ok
10:10:46.0015 5648 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:10:46.0077 5648 IKEEXT - ok
10:10:46.0113 5648 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
10:10:46.0157 5648 Impcd - ok
10:10:46.0343 5648 [ E9BEFD8C6A1DB3B544B61647DDA35F62 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:10:46.0393 5648 IntcAzAudAddService - ok
10:10:46.0417 5648 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:10:46.0474 5648 IntcDAud - ok
10:10:46.0500 5648 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:10:46.0524 5648 intelide - ok
10:10:46.0549 5648 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:10:46.0582 5648 intelppm - ok
10:10:46.0614 5648 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:10:46.0679 5648 IPBusEnum - ok
10:10:46.0705 5648 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:10:46.0746 5648 IpFilterDriver - ok
10:10:46.0774 5648 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:10:46.0815 5648 iphlpsvc - ok
10:10:46.0833 5648 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:10:46.0866 5648 IPMIDRV - ok
10:10:46.0882 5648 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:10:46.0958 5648 IPNAT - ok
10:10:47.0023 5648 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:10:47.0043 5648 iPod Service - ok
10:10:47.0065 5648 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:10:47.0116 5648 IRENUM - ok
10:10:47.0144 5648 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:10:47.0163 5648 isapnp - ok
10:10:47.0223 5648 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:10:47.0254 5648 iScsiPrt - ok
10:10:47.0305 5648 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
10:10:47.0331 5648 k57nd60a - ok
10:10:47.0350 5648 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
10:10:47.0361 5648 kbdclass - ok
10:10:47.0372 5648 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:10:47.0394 5648 kbdhid - ok
10:10:47.0423 5648 [ 0A0E659C3DEA3B5E59ECC9B31EC1A050 ] keycrypt C:\Windows\system32\DRIVERS\KeyCrypt64.sys
10:10:47.0432 5648 keycrypt - ok
10:10:47.0440 5648 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:10:47.0452 5648 KeyIso - ok
10:10:47.0485 5648 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:10:47.0510 5648 KSecDD - ok
10:10:47.0536 5648 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:10:47.0571 5648 KSecPkg - ok
10:10:47.0594 5648 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:10:47.0637 5648 ksthunk - ok
10:10:47.0724 5648 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:10:47.0783 5648 KtmRm - ok
10:10:47.0851 5648 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
10:10:47.0939 5648 LanmanServer - ok
10:10:47.0951 5648 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:10:48.0001 5648 LanmanWorkstation - ok
10:10:48.0026 5648 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:10:48.0072 5648 lltdio - ok
10:10:48.0124 5648 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:10:48.0214 5648 lltdsvc - ok
10:10:48.0239 5648 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:10:48.0272 5648 lmhosts - ok
10:10:48.0308 5648 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:10:48.0321 5648 LSI_FC - ok
10:10:48.0338 5648 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:10:48.0350 5648 LSI_SAS - ok
10:10:48.0357 5648 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:10:48.0369 5648 LSI_SAS2 - ok
10:10:48.0383 5648 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:10:48.0396 5648 LSI_SCSI - ok
10:10:48.0405 5648 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:10:48.0454 5648 luafv - ok
10:10:48.0480 5648 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
10:10:48.0489 5648 MBAMProtector - ok
10:10:48.0570 5648 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:10:48.0583 5648 MBAMScheduler - ok
10:10:48.0598 5648 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:10:48.0615 5648 MBAMService - ok
10:10:48.0640 5648 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:10:48.0659 5648 Mcx2Svc - ok
10:10:48.0673 5648 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:10:48.0709 5648 megasas - ok
10:10:48.0726 5648 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:10:48.0743 5648 MegaSR - ok
10:10:48.0765 5648 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:10:48.0820 5648 MMCSS - ok
10:10:48.0840 5648 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:10:48.0905 5648 Modem - ok
10:10:48.0925 5648 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:10:48.0972 5648 monitor - ok
10:10:48.0989 5648 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:10:48.0999 5648 mouclass - ok
10:10:49.0018 5648 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:10:49.0042 5648 mouhid - ok
10:10:49.0073 5648 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:10:49.0099 5648 mountmgr - ok
10:10:49.0170 5648 [ 1C9B83F6A2D1F414F0ACD28D75605607 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:10:49.0193 5648 MozillaMaintenance - ok
10:10:49.0210 5648 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:10:49.0223 5648 mpio - ok
10:10:49.0247 5648 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:10:49.0287 5648 mpsdrv - ok
10:10:49.0351 5648 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:10:49.0407 5648 MpsSvc - ok
10:10:49.0431 5648 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:10:49.0472 5648 MRxDAV - ok
10:10:49.0505 5648 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:10:49.0541 5648 mrxsmb - ok
10:10:49.0567 5648 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:10:49.0594 5648 mrxsmb10 - ok
10:10:49.0614 5648 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:10:49.0629 5648 mrxsmb20 - ok
10:10:49.0671 5648 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:10:49.0705 5648 msahci - ok
10:10:49.0751 5648 [ A592A054D78750B4D73ABAA4C94DECDF ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS64.exe
10:10:49.0762 5648 MSCamSvc - ok
10:10:49.0820 5648 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:10:49.0847 5648 msdsm - ok
10:10:49.0867 5648 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:10:49.0883 5648 MSDTC - ok
10:10:49.0922 5648 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:10:49.0953 5648 Msfs - ok
10:10:49.0979 5648 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:10:50.0041 5648 mshidkmdf - ok
10:10:50.0110 5648 [ 55218F924E55FD2786ED40EDF4ED79C3 ] MSHUSBVideo C:\Windows\system32\Drivers\nx6000.sys
10:10:50.0124 5648 MSHUSBVideo - ok
10:10:50.0135 5648 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:10:50.0146 5648 msisadrv - ok
10:10:50.0176 5648 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:10:50.0250 5648 MSiSCSI - ok
10:10:50.0253 5648 msiserver - ok
10:10:50.0269 5648 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:10:50.0313 5648 MSKSSRV - ok
10:10:50.0332 5648 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:10:50.0380 5648 MSPCLOCK - ok
10:10:50.0397 5648 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:10:50.0440 5648 MSPQM - ok
10:10:50.0485 5648 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:10:50.0514 5648 MsRPC - ok
10:10:50.0526 5648 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:10:50.0536 5648 mssmbios - ok
10:10:50.0548 5648 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:10:50.0594 5648 MSTEE - ok
10:10:50.0626 5648 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:10:50.0662 5648 MTConfig - ok
10:10:50.0676 5648 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:10:50.0687 5648 Mup - ok
10:10:50.0761 5648 [ 4A9258B9597A31DB68EC9740F3A8A70B ] N360 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccSvcHst.exe
10:10:50.0780 5648 N360 - ok
10:10:50.0835 5648 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:10:50.0871 5648 napagent - ok
10:10:50.0892 5648 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:10:50.0920 5648 NativeWifiP - ok
10:10:51.0009 5648 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\ENG64.SYS
10:10:51.0023 5648 NAVENG - ok
10:10:51.0117 5648 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\EX64.SYS
10:10:51.0151 5648 NAVEX15 - ok
10:10:51.0215 5648 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:10:51.0244 5648 NDIS - ok
10:10:51.0267 5648 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:10:51.0309 5648 NdisCap - ok
10:10:51.0324 5648 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:10:51.0366 5648 NdisTapi - ok
10:10:51.0386 5648 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:10:51.0428 5648 Ndisuio - ok
10:10:51.0469 5648 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:10:51.0519 5648 NdisWan - ok
10:10:51.0547 5648 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:10:51.0582 5648 NDProxy - ok
10:10:51.0606 5648 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:10:51.0667 5648 NetBIOS - ok
10:10:51.0721 5648 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:10:51.0785 5648 NetBT - ok
10:10:51.0798 5648 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:10:51.0810 5648 Netlogon - ok
10:10:51.0837 5648 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:10:51.0895 5648 Netman - ok
10:10:51.0925 5648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:51.0978 5648 NetMsmqActivator - ok
10:10:52.0001 5648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:52.0010 5648 NetPipeActivator - ok
10:10:52.0042 5648 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:10:52.0090 5648 netprofm - ok
10:10:52.0094 5648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:52.0103 5648 NetTcpActivator - ok
10:10:52.0106 5648 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:10:52.0116 5648 NetTcpPortSharing - ok
10:10:52.0149 5648 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:10:52.0160 5648 nfrd960 - ok
10:10:52.0192 5648 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:10:52.0231 5648 NlaSvc - ok
10:10:52.0246 5648 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:10:52.0287 5648 Npfs - ok
10:10:52.0314 5648 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:10:52.0362 5648 nsi - ok
10:10:52.0376 5648 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:10:52.0428 5648 nsiproxy - ok
10:10:52.0476 5648 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:10:52.0557 5648 Ntfs - ok
10:10:52.0577 5648 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:10:52.0652 5648 Null - ok
10:10:52.0690 5648 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:10:52.0730 5648 nvraid - ok
10:10:52.0768 5648 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:10:52.0799 5648 nvstor - ok
10:10:52.0828 5648 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:10:52.0841 5648 nv_agp - ok
10:10:52.0926 5648 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:10:52.0972 5648 odserv - ok
10:10:53.0008 5648 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:10:53.0036 5648 ohci1394 - ok
10:10:53.0091 5648 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:10:53.0128 5648 ose - ok
10:10:53.0362 5648 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:10:53.0508 5648 osppsvc - ok
10:10:53.0544 5648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:10:53.0597 5648 p2pimsvc - ok
10:10:53.0654 5648 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:10:53.0689 5648 p2psvc - ok
10:10:53.0724 5648 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:10:53.0753 5648 Parport - ok
10:10:53.0786 5648 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:10:53.0798 5648 partmgr - ok
10:10:53.0809 5648 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:10:53.0840 5648 PcaSvc - ok
10:10:53.0873 5648 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:10:53.0900 5648 pci - ok
10:10:53.0923 5648 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:10:53.0934 5648 pciide - ok
10:10:53.0946 5648 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:10:53.0961 5648 pcmcia - ok
10:10:53.0973 5648 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:10:53.0985 5648 pcw - ok
10:10:54.0002 5648 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:10:54.0064 5648 PEAUTH - ok
10:10:54.0393 5648 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:10:54.0438 5648 PerfHost - ok
10:10:54.0590 5648 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:10:54.0669 5648 pla - ok
10:10:54.0693 5648 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:10:54.0736 5648 PlugPlay - ok
10:10:54.0753 5648 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:10:54.0793 5648 PNRPAutoReg - ok
10:10:54.0852 5648 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:10:54.0883 5648 PNRPsvc - ok
10:10:54.0904 5648 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:10:54.0942 5648 PolicyAgent - ok
10:10:54.0981 5648 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:10:55.0029 5648 Power - ok
10:10:55.0070 5648 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:10:55.0118 5648 PptpMiniport - ok
10:10:55.0137 5648 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:10:55.0160 5648 Processor - ok
10:10:55.0178 5648 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:10:55.0204 5648 ProfSvc - ok
10:10:55.0223 5648 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:10:55.0237 5648 ProtectedStorage - ok
10:10:55.0275 5648 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:10:55.0347 5648 Psched - ok
10:10:55.0375 5648 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:10:55.0385 5648 PxHlpa64 - ok
10:10:55.0423 5648 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:10:55.0472 5648 ql2300 - ok
10:10:55.0491 5648 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:10:55.0503 5648 ql40xx - ok
10:10:55.0529 5648 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:10:55.0559 5648 QWAVE - ok
10:10:55.0572 5648 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:10:55.0588 5648 QWAVEdrv - ok
10:10:55.0618 5648 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:10:55.0662 5648 RasAcd - ok
10:10:55.0682 5648 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:10:55.0716 5648 RasAgileVpn - ok
10:10:55.0733 5648 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:10:55.0780 5648 RasAuto - ok
10:10:55.0803 5648 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:10:55.0864 5648 Rasl2tp - ok
10:10:55.0940 5648 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:10:55.0989 5648 RasMan - ok
10:10:56.0005 5648 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:10:56.0051 5648 RasPppoe - ok
10:10:56.0069 5648 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:10:56.0131 5648 RasSstp - ok
10:10:56.0141 5648 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:10:56.0175 5648 rdbss - ok
10:10:56.0192 5648 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:10:56.0224 5648 rdpbus - ok
10:10:56.0241 5648 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:10:56.0274 5648 RDPCDD - ok
10:10:56.0278 5648 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:10:56.0319 5648 RDPENCDD - ok
10:10:56.0336 5648 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:10:56.0366 5648 RDPREFMP - ok
10:10:56.0428 5648 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
10:10:56.0478 5648 RdpVideoMiniport - ok
10:10:56.0516 5648 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:10:56.0562 5648 RDPWD - ok
10:10:56.0585 5648 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:10:56.0598 5648 rdyboost - ok
10:10:56.0628 5648 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:10:56.0698 5648 RemoteAccess - ok
10:10:56.0730 5648 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:10:56.0777 5648 RemoteRegistry - ok
10:10:56.0794 5648 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:10:56.0856 5648 RpcEptMapper - ok
10:10:56.0881 5648 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:10:56.0927 5648 RpcLocator - ok
10:10:56.0954 5648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
10:10:57.0008 5648 RpcSs - ok
10:10:57.0052 5648 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:10:57.0084 5648 rspndr - ok
10:10:57.0096 5648 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:10:57.0107 5648 SamSs - ok
10:10:57.0141 5648 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:10:57.0179 5648 sbp2port - ok
10:10:57.0268 5648 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
10:10:57.0291 5648 SBSDWSCService - ok
10:10:57.0315 5648 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:10:57.0378 5648 SCardSvr - ok
10:10:57.0398 5648 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:10:57.0456 5648 scfilter - ok
10:10:57.0528 5648 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:10:57.0578 5648 Schedule - ok
10:10:57.0630 5648 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:10:57.0670 5648 SCPolicySvc - ok
10:10:57.0702 5648 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:10:57.0767 5648 SDRSVC - ok
10:10:57.0787 5648 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:10:57.0823 5648 secdrv - ok
10:10:57.0832 5648 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:10:57.0902 5648 seclogon - ok
10:10:57.0935 5648 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:10:57.0969 5648 SENS - ok
10:10:57.0980 5648 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:10:58.0022 5648 SensrSvc - ok
10:10:58.0037 5648 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:10:58.0050 5648 Serenum - ok
10:10:58.0075 5648 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:10:58.0108 5648 Serial - ok
10:10:58.0154 5648 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:10:58.0180 5648 sermouse - ok
10:10:58.0242 5648 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:10:58.0291 5648 SessionEnv - ok
10:10:58.0305 5648 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:10:58.0340 5648 sffdisk - ok
10:10:58.0351 5648 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:10:58.0391 5648 sffp_mmc - ok
10:10:58.0412 5648 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:10:58.0441 5648 sffp_sd - ok
10:10:58.0460 5648 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:10:58.0488 5648 sfloppy - ok
10:10:58.0533 5648 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
10:10:58.0572 5648 Sftfs - ok
10:10:58.0669 5648 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:10:58.0683 5648 sftlist - ok
10:10:58.0712 5648 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
10:10:58.0723 5648 Sftplay - ok
10:10:58.0747 5648 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
10:10:58.0758 5648 Sftredir - ok
10:10:58.0832 5648 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
10:10:58.0861 5648 SftService - ok
10:10:58.0923 5648 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
10:10:58.0931 5648 Sftvol - ok
10:10:58.0956 5648 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:10:58.0966 5648 sftvsa - ok
10:10:59.0024 5648 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:10:59.0074 5648 SharedAccess - ok
10:10:59.0174 5648 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:10:59.0225 5648 ShellHWDetection - ok
10:10:59.0257 5648 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:10:59.0269 5648 SiSRaid2 - ok
10:10:59.0282 5648 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:10:59.0295 5648 SiSRaid4 - ok
10:10:59.0329 5648 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:10:59.0352 5648 SkypeUpdate - ok
10:10:59.0378 5648 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:10:59.0431 5648 Smb - ok
10:10:59.0469 5648 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:10:59.0509 5648 SNMPTRAP - ok
10:10:59.0526 5648 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:10:59.0551 5648 spldr - ok
10:10:59.0633 5648 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:10:59.0671 5648 Spooler - ok
10:10:59.0798 5648 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:10:59.0909 5648 sppsvc - ok
10:10:59.0941 5648 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:11:00.0028 5648 sppuinotify - ok
10:11:00.0163 5648 [ 3510E7021D2637A67FBCB5105EAE945D ] SRTSP C:\Windows\System32\Drivers\N360x64\1402000.013\SRTSP64.SYS
10:11:00.0181 5648 SRTSP - ok
10:11:00.0221 5648 [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX C:\Windows\system32\drivers\N360x64\1402000.013\SRTSPX64.SYS
10:11:00.0231 5648 SRTSPX - ok
10:11:00.0301 5648 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:11:00.0350 5648 srv - ok
10:11:00.0370 5648 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:11:00.0410 5648 srv2 - ok
10:11:00.0441 5648 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:11:00.0472 5648 srvnet - ok
10:11:00.0491 5648 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:11:00.0526 5648 SSDPSRV - ok
10:11:00.0537 5648 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:11:00.0571 5648 SstpSvc - ok
10:11:00.0605 5648 Steam Client Service - ok
10:11:00.0629 5648 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:11:00.0650 5648 stexstor - ok
10:11:00.0677 5648 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:11:00.0724 5648 stisvc - ok
10:11:00.0750 5648 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:11:00.0760 5648 swenum - ok
10:11:00.0782 5648 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:11:00.0834 5648 swprv - ok
10:11:00.0873 5648 [ 777217682DA76337E8E6EC8AC4412B9B ] SymDS C:\Windows\system32\drivers\N360x64\1402000.013\SYMDS64.SYS
10:11:00.0896 5648 SymDS - ok
10:11:00.0921 5648 [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA C:\Windows\system32\drivers\N360x64\1402000.013\SYMEFA64.SYS
10:11:00.0958 5648 SymEFA - ok
10:11:01.0029 5648 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
10:11:01.0050 5648 SymEvent - ok
10:11:01.0114 5648 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\N360x64\1402000.013\Ironx64.SYS
10:11:01.0135 5648 SymIRON - ok
10:11:01.0221 5648 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\Windows\System32\Drivers\N360x64\1402000.013\SYMNETS.SYS
10:11:01.0249 5648 SymNetS - ok
10:11:01.0369 5648 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
10:11:01.0426 5648 SysMain - ok
10:11:01.0457 5648 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:11:01.0493 5648 TabletInputService - ok
10:11:01.0536 5648 [ A3F7EAB3947ADA804D60168119306D43 ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
10:11:01.0546 5648 taphss6 - ok
10:11:01.0585 5648 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:11:01.0634 5648 TapiSrv - ok
10:11:01.0684 5648 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:11:01.0740 5648 TBS - ok
10:11:01.0804 5648 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:11:01.0869 5648 Tcpip - ok
10:11:01.0903 5648 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:11:01.0938 5648 TCPIP6 - ok
10:11:01.0974 5648 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:11:01.0998 5648 tcpipreg - ok
10:11:02.0037 5648 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:11:02.0088 5648 TDPIPE - ok
10:11:02.0110 5648 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:11:02.0150 5648 TDTCP - ok
10:11:02.0182 5648 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:11:02.0227 5648 tdx - ok
10:11:02.0266 5648 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:11:02.0276 5648 TermDD - ok
10:11:02.0294 5648 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:11:02.0334 5648 TermService - ok
10:11:02.0351 5648 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:11:02.0378 5648 Themes - ok
10:11:02.0392 5648 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:11:02.0425 5648 THREADORDER - ok
10:11:02.0437 5648 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:11:02.0471 5648 TrkWks - ok
10:11:02.0543 5648 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:11:02.0576 5648 TrustedInstaller - ok
10:11:02.0608 5648 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:11:02.0675 5648 tssecsrv - ok
10:11:02.0742 5648 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:11:02.0771 5648 TsUsbFlt - ok
10:11:02.0813 5648 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:11:02.0858 5648 tunnel - ok
10:11:02.0900 5648 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:11:02.0937 5648 uagp35 - ok
10:11:02.0965 5648 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:11:03.0034 5648 udfs - ok
10:11:03.0069 5648 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:11:03.0088 5648 UI0Detect - ok
10:11:03.0110 5648 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:11:03.0121 5648 uliagpkx - ok
10:11:03.0147 5648 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
10:11:03.0177 5648 umbus - ok
10:11:03.0197 5648 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:11:03.0225 5648 UmPass - ok
10:11:03.0244 5648 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:11:03.0290 5648 upnphost - ok
10:11:03.0327 5648 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
10:11:03.0374 5648 USBAAPL64 - ok
10:11:03.0407 5648 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:11:03.0445 5648 usbaudio - ok
10:11:03.0463 5648 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:11:03.0491 5648 usbccgp - ok
10:11:03.0499 5648 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:11:03.0515 5648 usbcir - ok
10:11:03.0519 5648 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:11:03.0530 5648 usbehci - ok
10:11:03.0548 5648 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:11:03.0580 5648 usbhub - ok
10:11:03.0605 5648 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:11:03.0638 5648 usbohci - ok
10:11:03.0671 5648 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:11:03.0736 5648 usbprint - ok
10:11:03.0813 5648 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:11:03.0835 5648 usbscan - ok
10:11:03.0851 5648 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:11:03.0870 5648 USBSTOR - ok
10:11:03.0882 5648 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:11:03.0908 5648 usbuhci - ok
10:11:03.0944 5648 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:11:03.0978 5648 usbvideo - ok
10:11:04.0004 5648 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:11:04.0059 5648 UxSms - ok
10:11:04.0073 5648 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:11:04.0085 5648 VaultSvc - ok
10:11:04.0111 5648 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:11:04.0122 5648 vdrvroot - ok
10:11:04.0149 5648 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:11:04.0199 5648 vds - ok
10:11:04.0208 5648 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:11:04.0223 5648 vga - ok
10:11:04.0234 5648 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:11:04.0282 5648 VgaSave - ok
10:11:04.0293 5648 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:11:04.0316 5648 vhdmp - ok
10:11:04.0344 5648 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:11:04.0355 5648 viaide - ok
10:11:04.0367 5648 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:11:04.0379 5648 volmgr - ok
10:11:04.0414 5648 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:11:04.0435 5648 volmgrx - ok
10:11:04.0451 5648 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:11:04.0467 5648 volsnap - ok
10:11:04.0512 5648 [ 80E63B86C40C5E067475DC98F845A6DD ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
10:11:04.0527 5648 vpnagent - ok
10:11:04.0564 5648 [ A8D4FED106B4BD337DF3DA20BA44E18E ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys
10:11:04.0580 5648 vpnva - ok
10:11:04.0600 5648 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:11:04.0614 5648 vsmraid - ok
10:11:04.0719 5648 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:11:04.0770 5648 VSS - ok
10:11:04.0789 5648 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:11:04.0817 5648 vwifibus - ok
10:11:04.0847 5648 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:11:04.0899 5648 W32Time - ok
10:11:04.0915 5648 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:11:04.0960 5648 WacomPen - ok
10:11:05.0002 5648 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:11:05.0052 5648 WANARP - ok
10:11:05.0054 5648 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:11:05.0086 5648 Wanarpv6 - ok
10:11:05.0197 5648 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:11:05.0253 5648 WatAdminSvc - ok
10:11:05.0303 5648 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:11:05.0367 5648 wbengine - ok
10:11:05.0379 5648 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:11:05.0404 5648 WbioSrvc - ok
10:11:05.0444 5648 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:11:05.0488 5648 wcncsvc - ok
10:11:05.0499 5648 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:11:05.0557 5648 WcsPlugInService - ok
10:11:05.0590 5648 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:11:05.0600 5648 Wd - ok
10:11:05.0638 5648 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:11:05.0662 5648 Wdf01000 - ok
10:11:05.0674 5648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:11:05.0766 5648 WdiServiceHost - ok
10:11:05.0770 5648 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:11:05.0792 5648 WdiSystemHost - ok
10:11:05.0810 5648 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:11:05.0844 5648 WebClient - ok
10:11:05.0868 5648 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:11:05.0927 5648 Wecsvc - ok
10:11:05.0943 5648 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:11:06.0005 5648 wercplsupport - ok
10:11:06.0018 5648 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:11:06.0052 5648 WerSvc - ok
10:11:06.0074 5648 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:11:06.0110 5648 WfpLwf - ok
10:11:06.0144 5648 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
10:11:06.0170 5648 WimFltr - ok
10:11:06.0183 5648 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:11:06.0193 5648 WIMMount - ok
10:11:06.0203 5648 WinDefend - ok
10:11:06.0208 5648 WinHttpAutoProxySvc - ok
10:11:06.0265 5648 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:11:06.0312 5648 Winmgmt - ok
10:11:06.0365 5648 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:11:06.0487 5648 WinRM - ok
10:11:06.0535 5648 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
10:11:06.0564 5648 WinUsb - ok
10:11:06.0607 5648 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:11:06.0661 5648 Wlansvc - ok
10:11:06.0689 5648 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:11:06.0705 5648 WmiAcpi - ok
10:11:06.0732 5648 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:11:06.0767 5648 wmiApSrv - ok
10:11:06.0780 5648 WMPNetworkSvc - ok
10:11:06.0788 5648 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:11:06.0808 5648 WPCSvc - ok
10:11:06.0834 5648 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:11:06.0850 5648 WPDBusEnum - ok
10:11:06.0867 5648 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:11:06.0933 5648 ws2ifsl - ok
10:11:06.0949 5648 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
10:11:06.0979 5648 wscsvc - ok
10:11:06.0982 5648 WSearch - ok
10:11:07.0043 5648 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:11:07.0124 5648 wuauserv - ok
10:11:07.0158 5648 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:11:07.0190 5648 WudfPf - ok
10:11:07.0215 5648 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:11:07.0238 5648 WUDFRd - ok
10:11:07.0254 5648 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:11:07.0276 5648 wudfsvc - ok
10:11:07.0292 5648 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:11:07.0342 5648 WwanSvc - ok
10:11:07.0378 5648 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
10:11:07.0404 5648 YahooAUService - ok
10:11:07.0407 5648 ================ Scan global ===============================
10:11:07.0424 5648 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:11:07.0462 5648 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:11:07.0473 5648 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:11:07.0498 5648 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:11:07.0535 5648 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:11:07.0540 5648 [Global] - ok
10:11:07.0541 5648 ================ Scan MBR ==================================
10:11:07.0557 5648 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
10:11:07.0890 5648 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
10:11:07.0890 5648 \Device\Harddisk0\DR0 - detected TDSS File System (1)
10:11:07.0890 5648 ================ Scan VBR ==================================
10:11:07.0894 5648 [ F1DF0E58430E6CCABF1A5C8CF4D4161A ] \Device\Harddisk0\DR0\Partition1
10:11:07.0896 5648 \Device\Harddisk0\DR0\Partition1 - ok
10:11:07.0913 5648 [ EF753A470B7C3F192115C85C894DFB97 ] \Device\Harddisk0\DR0\Partition2
10:11:07.0915 5648 \Device\Harddisk0\DR0\Partition2 - ok
10:11:07.0915 5648 ================ Scan active images ========================
10:11:07.0917 5648 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\WINDOWS\System32\drivers\atapi.sys
10:11:07.0917 5648 C:\WINDOWS\System32\drivers\atapi.sys - ok
10:11:07.0920 5648 [ 3E588B60EC061686BA05D33574A344C6 ] C:\WINDOWS\System32\drivers\crashdmp.sys
10:11:07.0920 5648 C:\WINDOWS\System32\drivers\crashdmp.sys - ok
10:11:07.0923 5648 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\WINDOWS\System32\drivers\Dumpata.sys
10:11:07.0923 5648 C:\WINDOWS\System32\drivers\Dumpata.sys - ok
10:11:07.0925 5648 [ 814DB88F2641691575A455CF25354098 ] C:\WINDOWS\System32\drivers\dumpfve.sys
10:11:07.0925 5648 C:\WINDOWS\System32\drivers\dumpfve.sys - ok
10:11:07.0928 5648 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\WINDOWS\System32\drivers\cdrom.sys
10:11:07.0928 5648 C:\WINDOWS\System32\drivers\cdrom.sys - ok
10:11:07.0931 5648 [ 248C952C82DF1E23775432774CBB20F1 ] C:\WINDOWS\System32\drivers\N360x64\1402000.013\ccsetx64.sys
10:11:07.0932 5648 C:\WINDOWS\System32\drivers\N360x64\1402000.013\ccsetx64.sys - ok
10:11:07.0934 5648 [ 44837F1CB5BD166A7BD8869F9E86E907 ] C:\WINDOWS\System32\drivers\asdrm.sys
10:11:07.0934 5648 C:\WINDOWS\System32\drivers\asdrm.sys - ok
10:11:07.0936 5648 [ 3510E7021D2637A67FBCB5105EAE945D ] C:\WINDOWS\System32\drivers\N360x64\1402000.013\srtsp64.sys
10:11:07.0937 5648 C:\WINDOWS\System32\drivers\N360x64\1402000.013\srtsp64.sys - ok
10:11:07.0939 5648 [ 1B884D876E87EABF5A3356BBD7321412 ] C:\WINDOWS\System32\drivers\N360x64\1402000.013\srtspx64.sys
10:11:07.0940 5648 C:\WINDOWS\System32\drivers\N360x64\1402000.013\srtspx64.sys - ok
10:11:07.0943 5648 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] C:\WINDOWS\System32\drivers\N360x64\1402000.013\ironx64.sys
10:11:07.0943 5648 C:\WINDOWS\System32\drivers\N360x64\1402000.013\ironx64.sys - ok
10:11:07.0947 5648 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] C:\WINDOWS\System32\drivers\SYMEVENT64x86.SYS
10:11:07.0947 5648 C:\WINDOWS\System32\drivers\SYMEVENT64x86.SYS - ok
10:11:07.0950 5648 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\ex64.sys
10:11:07.0950 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\ex64.sys - ok
10:11:07.0952 5648 [ 88A2F45CE66B904285978D6BB13AFEB2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\eng64.sys
10:11:07.0952 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\eng64.sys - ok
10:11:07.0955 5648 [ 16A47CE2DECC9B099349A5F840654746 ] C:\WINDOWS\System32\drivers\beep.sys
10:11:07.0955 5648 C:\WINDOWS\System32\drivers\beep.sys - ok
10:11:07.0958 5648 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\WINDOWS\System32\drivers\null.sys
10:11:07.0958 5648 C:\WINDOWS\System32\drivers\null.sys - ok
10:11:07.0960 5648 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\WINDOWS\System32\drivers\RDPCDD.sys
10:11:07.0960 5648 C:\WINDOWS\System32\drivers\RDPCDD.sys - ok
10:11:07.0963 5648 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\WINDOWS\System32\drivers\vga.sys
10:11:07.0963 5648 C:\WINDOWS\System32\drivers\vga.sys - ok
10:11:07.0966 5648 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\WINDOWS\System32\drivers\videoprt.sys
10:11:07.0966 5648 C:\WINDOWS\System32\drivers\videoprt.sys - ok
10:11:07.0969 5648 [ FC438D1430B28618E2D0C7C332A710AD ] C:\WINDOWS\System32\drivers\watchdog.sys
10:11:07.0969 5648 C:\WINDOWS\System32\drivers\watchdog.sys - ok
10:11:07.0971 5648 [ BB5971A4F00659529A5C44831AF22365 ] C:\WINDOWS\System32\drivers\RDPENCDD.sys
10:11:07.0971 5648 C:\WINDOWS\System32\drivers\RDPENCDD.sys - ok
10:11:07.0974 5648 [ 216F3FA57533D98E1F74DED70113177A ] C:\WINDOWS\System32\drivers\RDPREFMP.sys
10:11:07.0974 5648 C:\WINDOWS\System32\drivers\RDPREFMP.sys - ok
10:11:07.0977 5648 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\WINDOWS\System32\drivers\msfs.sys
10:11:07.0977 5648 C:\WINDOWS\System32\drivers\msfs.sys - ok
10:11:07.0980 5648 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\WINDOWS\System32\drivers\npfs.sys
10:11:07.0980 5648 C:\WINDOWS\System32\drivers\npfs.sys - ok
10:11:07.0982 5648 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\WINDOWS\System32\drivers\tdi.sys
10:11:07.0982 5648 C:\WINDOWS\System32\drivers\tdi.sys - ok
10:11:07.0985 5648 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\WINDOWS\System32\drivers\tdx.sys
10:11:07.0985 5648 C:\WINDOWS\System32\drivers\tdx.sys - ok
10:11:07.0988 5648 [ 09594D1089C523423B32A4229263F068 ] C:\WINDOWS\System32\drivers\netbt.sys
10:11:07.0988 5648 C:\WINDOWS\System32\drivers\netbt.sys - ok
10:11:07.0990 5648 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\WINDOWS\System32\drivers\afd.sys
10:11:07.0990 5648 C:\WINDOWS\System32\drivers\afd.sys - ok
10:11:07.0993 5648 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\WINDOWS\System32\drivers\ws2ifsl.sys
10:11:07.0993 5648 C:\WINDOWS\System32\drivers\ws2ifsl.sys - ok
10:11:07.0996 5648 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\WINDOWS\System32\drivers\wfplwf.sys
10:11:07.0996 5648 C:\WINDOWS\System32\drivers\wfplwf.sys - ok
10:11:08.0000 5648 [ 0557CF5A2556BD58E26384169D72438D ] C:\WINDOWS\System32\drivers\pacer.sys
10:11:08.0000 5648 C:\WINDOWS\System32\drivers\pacer.sys - ok
10:11:08.0002 5648 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\WINDOWS\System32\drivers\netbios.sys
10:11:08.0002 5648 C:\WINDOWS\System32\drivers\netbios.sys - ok
10:11:08.0005 5648 [ 356AFD78A6ED4457169241AC3965230C ] C:\WINDOWS\System32\drivers\wanarp.sys
10:11:08.0005 5648 C:\WINDOWS\System32\drivers\wanarp.sys - ok
10:11:08.0008 5648 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\WINDOWS\System32\drivers\termdd.sys
10:11:08.0008 5648 C:\WINDOWS\System32\drivers\termdd.sys - ok
10:11:08.0011 5648 [ 1605EBD8CB86AFC4430116065995279A ] C:\WINDOWS\System32\drivers\N360x64\1402000.013\symnets.sys
10:11:08.0011 5648 C:\WINDOWS\System32\drivers\N360x64\1402000.013\symnets.sys - ok
10:11:08.0014 5648 [ 77F665941019A1594D887A74F301FA2F ] C:\WINDOWS\System32\drivers\rdbss.sys
10:11:08.0014 5648 C:\WINDOWS\System32\drivers\rdbss.sys - ok
10:11:08.0017 5648 [ E7F5AE18AF4168178A642A9247C63001 ] C:\WINDOWS\System32\drivers\nsiproxy.sys
10:11:08.0017 5648 C:\WINDOWS\System32\drivers\nsiproxy.sys - ok
10:11:08.0019 5648 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\WINDOWS\System32\drivers\mssmbios.sys
10:11:08.0019 5648 C:\WINDOWS\System32\drivers\mssmbios.sys - ok
10:11:08.0022 5648 [ A48928D4CCA6F8B731989DB08CF2C0AB ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130426.001\IDSviA64.sys
10:11:08.0022 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130426.001\IDSviA64.sys - ok
10:11:08.0024 5648 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
10:11:08.0024 5648 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
10:11:08.0027 5648 [ C5BCCB378D0A896304A3E71BE7215983 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
10:11:08.0027 5648 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok
10:11:08.0030 5648 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\WINDOWS\System32\drivers\discache.sys
10:11:08.0030 5648 C:\WINDOWS\System32\drivers\discache.sys - ok
10:11:08.0032 5648 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\WINDOWS\System32\drivers\dfsc.sys
10:11:08.0032 5648 C:\WINDOWS\System32\drivers\dfsc.sys - ok
10:11:08.0035 5648 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\WINDOWS\System32\drivers\blbdrive.sys
10:11:08.0035 5648 C:\WINDOWS\System32\drivers\blbdrive.sys - ok
10:11:08.0038 5648 [ 7B56A40EAAACF1867FF178501D3EA185 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130412.001\BHDrvx64.sys
10:11:08.0038 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130412.001\BHDrvx64.sys - ok
10:11:08.0041 5648 [ 7F906B6F61531F3CB0B07622FE6FD70A ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\amd64\asdnet.sys
10:11:08.0041 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\amd64\asdnet.sys - ok
10:11:08.0044 5648 [ A3AD44406CA340AB36B8C72C5D057ED5 ] C:\WINDOWS\System32\drivers\AntiLog64.sys
10:11:08.0044 5648 C:\WINDOWS\System32\drivers\AntiLog64.sys - ok
10:11:08.0046 5648 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\WINDOWS\System32\drivers\tunnel.sys
10:11:08.0046 5648 C:\WINDOWS\System32\drivers\tunnel.sys - ok
10:11:08.0049 5648 [ F0371DE302FFFF8F086661611BE60848 ] C:\WINDOWS\System32\smss.exe
10:11:08.0049 5648 C:\WINDOWS\System32\smss.exe - ok
10:11:08.0052 5648 [ ADA036632C664CAA754079041CF1F8C1 ] C:\WINDOWS\System32\drivers\intelppm.sys
10:11:08.0052 5648 C:\WINDOWS\System32\drivers\intelppm.sys - ok
10:11:08.0055 5648 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\WINDOWS\System32\ntdll.dll
10:11:08.0055 5648 C:\WINDOWS\System32\ntdll.dll - ok
10:11:08.0057 5648 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\WINDOWS\System32\autochk.exe
10:11:08.0057 5648 C:\WINDOWS\System32\autochk.exe - ok
10:11:08.0059 5648 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\WINDOWS\System32\ws2_32.dll
10:11:08.0060 5648 C:\WINDOWS\System32\ws2_32.dll - ok
10:11:08.0062 5648 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\WINDOWS\System32\imm32.dll
10:11:08.0062 5648 C:\WINDOWS\System32\imm32.dll - ok
10:11:08.0065 5648 [ 85F1FE2D5EDBFD26066F5ABB9504A69C ] C:\WINDOWS\System32\iertutil.dll
10:11:08.0065 5648 C:\WINDOWS\System32\iertutil.dll - ok
10:11:08.0067 5648 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\WINDOWS\System32\rpcrt4.dll
10:11:08.0067 5648 C:\WINDOWS\System32\rpcrt4.dll - ok
10:11:08.0070 5648 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\WINDOWS\System32\advapi32.dll
10:11:08.0070 5648 C:\WINDOWS\System32\advapi32.dll - ok
10:11:08.0072 5648 [ F4F91789C7C7A159CE8215C1F69F2A85 ] C:\WINDOWS\System32\drivers\igdkmd64.sys
10:11:08.0072 5648 C:\WINDOWS\System32\drivers\igdkmd64.sys - ok
10:11:08.0075 5648 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\WINDOWS\System32\sechost.dll
10:11:08.0075 5648 C:\WINDOWS\System32\sechost.dll - ok
10:11:08.0078 5648 [ 29812E9971077BE3F8B9DC225CF9D454 ] C:\WINDOWS\System32\urlmon.dll
10:11:08.0078 5648 C:\WINDOWS\System32\urlmon.dll - ok
10:11:08.0081 5648 [ F5BEE30450E18E6B83A5012C100616FD ] C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:11:08.0081 5648 C:\WINDOWS\System32\drivers\dxgkrnl.sys - ok
10:11:08.0084 5648 [ C06B32165E23A72A898B7A89679AD754 ] C:\WINDOWS\System32\oleaut32.dll
10:11:08.0084 5648 C:\WINDOWS\System32\oleaut32.dll - ok
10:11:08.0086 5648 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\WINDOWS\System32\drivers\dxgmms1.sys
10:11:08.0086 5648 C:\WINDOWS\System32\drivers\dxgmms1.sys - ok
10:11:08.0089 5648 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\WINDOWS\System32\user32.dll
10:11:08.0089 5648 C:\WINDOWS\System32\user32.dll - ok
10:11:08.0092 5648 [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\WINDOWS\System32\drivers\HECIx64.sys
10:11:08.0092 5648 C:\WINDOWS\System32\drivers\HECIx64.sys - ok
10:11:08.0094 5648 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\WINDOWS\System32\drivers\usbport.sys
10:11:08.0094 5648 C:\WINDOWS\System32\drivers\usbport.sys - ok
10:11:08.0097 5648 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\WINDOWS\System32\imagehlp.dll
10:11:08.0097 5648 C:\WINDOWS\System32\imagehlp.dll - ok
10:11:08.0100 5648 [ C025055FE7B87701EB042095DF1A2D7B ] C:\WINDOWS\System32\drivers\usbehci.sys
10:11:08.0100 5648 C:\WINDOWS\System32\drivers\usbehci.sys - ok
10:11:08.0102 5648 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\WINDOWS\System32\usp10.dll
10:11:08.0102 5648 C:\WINDOWS\System32\usp10.dll - ok
10:11:08.0106 5648 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\WINDOWS\System32\drivers\hdaudbus.sys
10:11:08.0106 5648 C:\WINDOWS\System32\drivers\hdaudbus.sys - ok
10:11:08.0109 5648 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\WINDOWS\System32\Wldap32.dll
10:11:08.0109 5648 C:\WINDOWS\System32\Wldap32.dll - ok
10:11:08.0112 5648 [ F7CE0C81C545364020ED8203CF0A633E ] C:\WINDOWS\System32\difxapi.dll
10:11:08.0112 5648 C:\WINDOWS\System32\difxapi.dll - ok
10:11:08.0115 5648 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] C:\WINDOWS\System32\drivers\k57nd60a.sys
10:11:08.0115 5648 C:\WINDOWS\System32\drivers\k57nd60a.sys - ok
10:11:08.0117 5648 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\WINDOWS\System32\clbcatq.dll
10:11:08.0117 5648 C:\WINDOWS\System32\clbcatq.dll - ok
10:11:08.0120 5648 [ E403AACF8C7BB11375122D2464560311 ] C:\WINDOWS\System32\drivers\GEARAspiWDM.sys
10:11:08.0120 5648 C:\WINDOWS\System32\drivers\GEARAspiWDM.sys - ok
10:11:08.0123 5648 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\WINDOWS\System32\drivers\CompositeBus.sys
10:11:08.0123 5648 C:\WINDOWS\System32\drivers\CompositeBus.sys - ok
10:11:08.0126 5648 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\WINDOWS\System32\nsi.dll
10:11:08.0126 5648 C:\WINDOWS\System32\nsi.dll - ok
10:11:08.0128 5648 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\WINDOWS\System32\drivers\agilevpn.sys
10:11:08.0128 5648 C:\WINDOWS\System32\drivers\agilevpn.sys - ok
10:11:08.0132 5648 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\WINDOWS\System32\shell32.dll
10:11:08.0132 5648 C:\WINDOWS\System32\shell32.dll - ok
10:11:08.0135 5648 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\WINDOWS\System32\drivers\rasl2tp.sys
10:11:08.0135 5648 C:\WINDOWS\System32\drivers\rasl2tp.sys - ok
10:11:08.0138 5648 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\WINDOWS\System32\drivers\ndistapi.sys
10:11:08.0138 5648 C:\WINDOWS\System32\drivers\ndistapi.sys - ok
10:11:08.0141 5648 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\WINDOWS\System32\drivers\ndiswan.sys
10:11:08.0141 5648 C:\WINDOWS\System32\drivers\ndiswan.sys - ok
10:11:08.0144 5648 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\WINDOWS\System32\drivers\raspppoe.sys
10:11:08.0144 5648 C:\WINDOWS\System32\drivers\raspppoe.sys - ok
10:11:08.0146 5648 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\WINDOWS\System32\drivers\raspptp.sys
10:11:08.0146 5648 C:\WINDOWS\System32\drivers\raspptp.sys - ok
10:11:08.0149 5648 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\WINDOWS\System32\drivers\rassstp.sys
10:11:08.0149 5648 C:\WINDOWS\System32\drivers\rassstp.sys - ok
10:11:08.0152 5648 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\WINDOWS\System32\drivers\kbdclass.sys
10:11:08.0152 5648 C:\WINDOWS\System32\drivers\kbdclass.sys - ok
10:11:08.0155 5648 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\WINDOWS\System32\drivers\mouclass.sys
10:11:08.0155 5648 C:\WINDOWS\System32\drivers\mouclass.sys - ok
10:11:08.0158 5648 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\WINDOWS\System32\drivers\ks.sys
10:11:08.0158 5648 C:\WINDOWS\System32\drivers\ks.sys - ok
10:11:08.0161 5648 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\WINDOWS\System32\drivers\swenum.sys
10:11:08.0161 5648 C:\WINDOWS\System32\drivers\swenum.sys - ok
10:11:08.0164 5648 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\WINDOWS\System32\drivers\umbus.sys
10:11:08.0164 5648 C:\WINDOWS\System32\drivers\umbus.sys - ok
10:11:08.0166 5648 [ D202223587518B13D72D68937B7E3F70 ] C:\WINDOWS\System32\lpk.dll
10:11:08.0166 5648 C:\WINDOWS\System32\lpk.dll - ok
10:11:08.0169 5648 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\WINDOWS\System32\msctf.dll
10:11:08.0169 5648 C:\WINDOWS\System32\msctf.dll - ok
10:11:08.0173 5648 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\WINDOWS\System32\drivers\usbhub.sys
10:11:08.0173 5648 C:\WINDOWS\System32\drivers\usbhub.sys - ok
10:11:08.0176 5648 [ 65C113214F7B05820F6D8A65B1485196 ] C:\WINDOWS\System32\kernel32.dll
10:11:08.0176 5648 C:\WINDOWS\System32\kernel32.dll - ok
10:11:08.0179 5648 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\WINDOWS\System32\normaliz.dll
10:11:08.0179 5648 C:\WINDOWS\System32\normaliz.dll - ok
10:11:08.0181 5648 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\WINDOWS\System32\msvcrt.dll
10:11:08.0181 5648 C:\WINDOWS\System32\msvcrt.dll - ok
10:11:08.0184 5648 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\WINDOWS\System32\gdi32.dll
10:11:08.0184 5648 C:\WINDOWS\System32\gdi32.dll - ok
10:11:08.0186 5648 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\WINDOWS\System32\setupapi.dll
10:11:08.0186 5648 C:\WINDOWS\System32\setupapi.dll - ok
10:11:08.0189 5648 [ 753C0848AE7872A3F59663078A517293 ] C:\WINDOWS\System32\wininet.dll
10:11:08.0189 5648 C:\WINDOWS\System32\wininet.dll - ok
10:11:08.0192 5648 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\WINDOWS\System32\drivers\ndproxy.sys
10:11:08.0192 5648 C:\WINDOWS\System32\drivers\ndproxy.sys - ok
10:11:08.0195 5648 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\WINDOWS\System32\psapi.dll
10:11:08.0195 5648 C:\WINDOWS\System32\psapi.dll - ok
10:11:08.0198 5648 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\WINDOWS\System32\comdlg32.dll
10:11:08.0198 5648 C:\WINDOWS\System32\comdlg32.dll - ok
10:11:08.0201 5648 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\WINDOWS\System32\shlwapi.dll
10:11:08.0201 5648 C:\WINDOWS\System32\shlwapi.dll - ok
10:11:08.0204 5648 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\WINDOWS\System32\ole32.dll
10:11:08.0204 5648 C:\WINDOWS\System32\ole32.dll - ok
10:11:08.0207 5648 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\WINDOWS\System32\drivers\drmk.sys
10:11:08.0207 5648 C:\WINDOWS\System32\drivers\drmk.sys - ok
10:11:08.0210 5648 [ 32E11315B5126921FFD9074840EF13D3 ] C:\WINDOWS\System32\drivers\portcls.sys
10:11:08.0210 5648 C:\WINDOWS\System32\drivers\portcls.sys - ok
10:11:08.0213 5648 [ E9BEFD8C6A1DB3B544B61647DDA35F62 ] C:\WINDOWS\System32\drivers\RTKVHD64.sys
10:11:08.0213 5648 C:\WINDOWS\System32\drivers\RTKVHD64.sys - ok
10:11:08.0215 5648 [ 6869281E78CB31A43E969F06B57347C4 ] C:\WINDOWS\System32\drivers\ksthunk.sys
10:11:08.0215 5648 C:\WINDOWS\System32\drivers\ksthunk.sys - ok
10:11:08.0218 5648 [ 58CF58DEE26C909BD6F977B61D246295 ] C:\WINDOWS\System32\drivers\IntcDAud.sys
10:11:08.0218 5648 C:\WINDOWS\System32\drivers\IntcDAud.sys - ok
10:11:08.0221 5648 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\WINDOWS\System32\cfgmgr32.dll
10:11:08.0221 5648 C:\WINDOWS\System32\cfgmgr32.dll - ok
10:11:08.0225 5648 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\WINDOWS\System32\comctl32.dll
10:11:08.0225 5648 C:\WINDOWS\System32\comctl32.dll - ok
10:11:08.0228 5648 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\WINDOWS\System32\KernelBase.dll
10:11:08.0228 5648 C:\WINDOWS\System32\KernelBase.dll - ok
10:11:08.0230 5648 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\WINDOWS\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
10:11:08.0230 5648 C:\WINDOWS\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
10:11:08.0233 5648 [ AA06902362B1422D7A7DA7061E07C624 ] C:\WINDOWS\System32\wintrust.dll
10:11:08.0233 5648 C:\WINDOWS\System32\wintrust.dll - ok
10:11:08.0236 5648 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\WINDOWS\System32\api-ms-win-downlevel-version-l1-1-0.dll
10:11:08.0236 5648 C:\WINDOWS\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
10:11:08.0238 5648 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\WINDOWS\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
10:11:08.0239 5648 C:\WINDOWS\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
10:11:08.0241 5648 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\WINDOWS\System32\crypt32.dll
10:11:08.0241 5648 C:\WINDOWS\System32\crypt32.dll - ok
10:11:08.0244 5648 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\WINDOWS\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
10:11:08.0244 5648 C:\WINDOWS\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
10:11:08.0247 5648 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\WINDOWS\System32\api-ms-win-downlevel-user32-l1-1-0.dll
10:11:08.0247 5648 C:\WINDOWS\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
10:11:08.0250 5648 [ 06FEC9E8117103BB1141A560E98077DA ] C:\WINDOWS\System32\devobj.dll
10:11:08.0250 5648 C:\WINDOWS\System32\devobj.dll - ok
10:11:08.0253 5648 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\WINDOWS\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
10:11:08.0253 5648 C:\WINDOWS\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
10:11:08.0255 5648 [ 884415BD4269C02EAF8E2613BF85500D ] C:\WINDOWS\System32\msasn1.dll
10:11:08.0256 5648 C:\WINDOWS\System32\msasn1.dll - ok
10:11:08.0259 5648 [ 9C278785347BCC991F8EA2999D90F58D ] C:\WINDOWS\SysWOW64\normaliz.dll
10:11:08.0259 5648 C:\WINDOWS\SysWOW64\normaliz.dll - ok
10:11:08.0262 5648 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\WINDOWS\System32\drivers\dxapi.sys
10:11:08.0262 5648 C:\WINDOWS\System32\drivers\dxapi.sys - ok
10:11:08.0265 5648 [ 86F96630D28523F1C402C783F046DEF1 ] C:\WINDOWS\System32\win32k.sys
10:11:08.0266 5648 C:\WINDOWS\System32\win32k.sys - ok
10:11:08.0268 5648 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\WINDOWS\System32\drivers\usbd.sys
10:11:08.0268 5648 C:\WINDOWS\System32\drivers\usbd.sys - ok
10:11:08.0271 5648 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:11:08.0271 5648 C:\WINDOWS\System32\drivers\USBSTOR.SYS - ok
10:11:08.0273 5648 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\WINDOWS\System32\csrss.exe
10:11:08.0273 5648 C:\WINDOWS\System32\csrss.exe - ok
10:11:08.0276 5648 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\WINDOWS\System32\drivers\hidparse.sys
10:11:08.0276 5648 C:\WINDOWS\System32\drivers\hidparse.sys - ok
10:11:08.0279 5648 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\WINDOWS\System32\drivers\hidclass.sys
10:11:08.0279 5648 C:\WINDOWS\System32\drivers\hidclass.sys - ok
10:11:08.0282 5648 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\WINDOWS\System32\drivers\hidusb.sys
10:11:08.0282 5648 C:\WINDOWS\System32\drivers\hidusb.sys - ok
10:11:08.0285 5648 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\WINDOWS\System32\drivers\mouhid.sys
10:11:08.0285 5648 C:\WINDOWS\System32\drivers\mouhid.sys - ok
10:11:08.0288 5648 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\WINDOWS\System32\drivers\usbscan.sys
10:11:08.0288 5648 C:\WINDOWS\System32\drivers\usbscan.sys - ok
10:11:08.0291 5648 [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\WINDOWS\System32\csrsrv.dll
10:11:08.0291 5648 C:\WINDOWS\System32\csrsrv.dll - ok
10:11:08.0294 5648 [ BA0CD8C393E8C9F83354106093832C7B ] C:\WINDOWS\System32\basesrv.dll
10:11:08.0294 5648 C:\WINDOWS\System32\basesrv.dll - ok
10:11:08.0296 5648 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\WINDOWS\System32\drivers\kbdhid.sys
10:11:08.0296 5648 C:\WINDOWS\System32\drivers\kbdhid.sys - ok
10:11:08.0299 5648 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\WINDOWS\System32\winsrv.dll
10:11:08.0299 5648 C:\WINDOWS\System32\winsrv.dll - ok
10:11:08.0302 5648 [ 0A0E659C3DEA3B5E59ECC9B31EC1A050 ] C:\WINDOWS\System32\drivers\KeyCrypt64.sys
10:11:08.0302 5648 C:\WINDOWS\System32\drivers\KeyCrypt64.sys - ok
10:11:08.0304 5648 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\WINDOWS\System32\drivers\usbccgp.sys
10:11:08.0304 5648 C:\WINDOWS\System32\drivers\usbccgp.sys - ok
10:11:08.0307 5648 [ 73188F58FB384E75C4063D29413CEE3D ] C:\WINDOWS\System32\drivers\usbprint.sys
10:11:08.0307 5648 C:\WINDOWS\System32\drivers\usbprint.sys - ok
10:11:08.0310 5648 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\WINDOWS\System32\drivers\monitor.sys
10:11:08.0310 5648 C:\WINDOWS\System32\drivers\monitor.sys - ok
10:11:08.0312 5648 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\WINDOWS\System32\tsddd.dll
10:11:08.0312 5648 C:\WINDOWS\System32\tsddd.dll - ok
10:11:08.0315 5648 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\WINDOWS\System32\sxssrv.dll
10:11:08.0315 5648 C:\WINDOWS\System32\sxssrv.dll - ok
10:11:08.0317 5648 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\WINDOWS\System32\wininit.exe
10:11:08.0318 5648 C:\WINDOWS\System32\wininit.exe - ok
10:11:08.0320 5648 [ 05569A79BF4693670B709144382D02D4 ] C:\WINDOWS\System32\cdd.dll
10:11:08.0320 5648 C:\WINDOWS\System32\cdd.dll - ok
10:11:08.0323 5648 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\WINDOWS\System32\profapi.dll
10:11:08.0323 5648 C:\WINDOWS\System32\profapi.dll - ok
10:11:08.0325 5648 [ D3C0E747A3AC1F6CB42B6662560B2652 ] C:\PROGRA~2\KEYCRY~1\KEYCRY~4.DLL
10:11:08.0325 5648 C:\PROGRA~2\KEYCRY~1\KEYCRY~4.DLL - ok
10:11:08.0328 5648 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\WINDOWS\System32\RpcRtRemote.dll
10:11:08.0328 5648 C:\WINDOWS\System32\RpcRtRemote.dll - ok
10:11:08.0330 5648 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\WINDOWS\System32\KBDUS.DLL
10:11:08.0330 5648 C:\WINDOWS\System32\KBDUS.DLL - ok
10:11:08.0333 5648 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\WINDOWS\System32\winlogon.exe
10:11:08.0333 5648 C:\WINDOWS\System32\winlogon.exe - ok
10:11:08.0335 5648 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\WINDOWS\System32\winsta.dll
10:11:08.0335 5648 C:\WINDOWS\System32\winsta.dll - ok
10:11:08.0338 5648 [ B26B1801356760841C3BC69F9F91537F ] C:\WINDOWS\System32\WlS0WndH.dll
10:11:08.0338 5648 C:\WINDOWS\System32\WlS0WndH.dll - ok
10:11:08.0340 5648 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\WINDOWS\System32\sxs.dll
10:11:08.0340 5648 C:\WINDOWS\System32\sxs.dll - ok
10:11:08.0342 5648 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\WINDOWS\System32\cryptbase.dll
10:11:08.0342 5648 C:\WINDOWS\System32\cryptbase.dll - ok
10:11:08.0345 5648 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\WINDOWS\System32\apphelp.dll
10:11:08.0345 5648 C:\WINDOWS\System32\apphelp.dll - ok
10:11:08.0347 5648 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\WINDOWS\System32\services.exe
10:11:08.0347 5648 C:\WINDOWS\System32\services.exe - ok
10:11:08.0351 5648 [ C118A82CD78818C29AB228366EBF81C3 ] C:\WINDOWS\System32\lsass.exe
10:11:08.0351 5648 C:\WINDOWS\System32\lsass.exe - ok
10:11:08.0354 5648 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\WINDOWS\System32\sspisrv.dll
10:11:08.0354 5648 C:\WINDOWS\System32\sspisrv.dll - ok
10:11:08.0357 5648 [ 9662EE182644511439F1C53745DC1C88 ] C:\WINDOWS\System32\lsm.exe
10:11:08.0357 5648 C:\WINDOWS\System32\lsm.exe - ok
10:11:08.0361 5648 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\WINDOWS\System32\sspicli.dll
10:11:08.0361 5648 C:\WINDOWS\System32\sspicli.dll - ok
10:11:08.0363 5648 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\WINDOWS\System32\lsasrv.dll
10:11:08.0363 5648 C:\WINDOWS\System32\lsasrv.dll - ok
10:11:08.0366 5648 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\WINDOWS\System32\scext.dll
10:11:08.0366 5648 C:\WINDOWS\System32\scext.dll - ok
10:11:08.0368 5648 [ 68083118797CAF30FB2EA3E71494D67E ] C:\WINDOWS\System32\sysntfy.dll
10:11:08.0369 5648 C:\WINDOWS\System32\sysntfy.dll - ok
10:11:08.0371 5648 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\WINDOWS\System32\secur32.dll
10:11:08.0371 5648 C:\WINDOWS\System32\secur32.dll - ok
10:11:08.0374 5648 [ DEE7267C5D232A3B816866872CE199E6 ] C:\WINDOWS\System32\wmsgapi.dll
10:11:08.0374 5648 C:\WINDOWS\System32\wmsgapi.dll - ok
10:11:08.0376 5648 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\WINDOWS\System32\scesrv.dll
10:11:08.0376 5648 C:\WINDOWS\System32\scesrv.dll - ok
10:11:08.0379 5648 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\WINDOWS\System32\srvcli.dll
10:11:08.0379 5648 C:\WINDOWS\System32\srvcli.dll - ok
10:11:08.0382 5648 [ A744BA6E04C8AA4592818178DBF89521 ] C:\WINDOWS\System32\samsrv.dll
10:11:08.0382 5648 C:\WINDOWS\System32\samsrv.dll - ok
10:11:08.0386 5648 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\WINDOWS\System32\cryptdll.dll
10:11:08.0386 5648 C:\WINDOWS\System32\cryptdll.dll - ok
10:11:08.0388 5648 [ 3C073B0C596A0AF84933E7406766B040 ] C:\WINDOWS\System32\wevtapi.dll
10:11:08.0389 5648 C:\WINDOWS\System32\wevtapi.dll - ok
10:11:08.0391 5648 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\WINDOWS\System32\cngaudit.dll
10:11:08.0391 5648 C:\WINDOWS\System32\cngaudit.dll - ok
10:11:08.0393 5648 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\WINDOWS\System32\authz.dll
10:11:08.0393 5648 C:\WINDOWS\System32\authz.dll - ok
10:11:08.0397 5648 [ 5F3307352216618221A17CFEF273EEE2 ] C:\WINDOWS\System32\ncrypt.dll
10:11:08.0397 5648 C:\WINDOWS\System32\ncrypt.dll - ok
10:11:08.0400 5648 [ B9A95365E52F421A20E1501935FADDA5 ] C:\WINDOWS\System32\bcrypt.dll
10:11:08.0400 5648 C:\WINDOWS\System32\bcrypt.dll - ok
10:11:08.0402 5648 [ 02B64609F865A39365FF88580DF11738 ] C:\WINDOWS\System32\msprivs.dll
10:11:08.0402 5648 C:\WINDOWS\System32\msprivs.dll - ok
10:11:08.0405 5648 [ C6505DE3561537BA1004D638C2F93F2F ] C:\WINDOWS\System32\netjoin.dll
10:11:08.0405 5648 C:\WINDOWS\System32\netjoin.dll - ok
10:11:08.0408 5648 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\WINDOWS\System32\negoexts.dll
10:11:08.0408 5648 C:\WINDOWS\System32\negoexts.dll - ok
10:11:08.0412 5648 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\WINDOWS\System32\kerberos.dll
10:11:08.0412 5648 C:\WINDOWS\System32\kerberos.dll - ok
10:11:08.0414 5648 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\WINDOWS\System32\cryptsp.dll
10:11:08.0414 5648 C:\WINDOWS\System32\cryptsp.dll - ok
10:11:08.0417 5648 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\WINDOWS\System32\mswsock.dll
10:11:08.0417 5648 C:\WINDOWS\System32\mswsock.dll - ok
10:11:08.0419 5648 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\WINDOWS\System32\wship6.dll
10:11:08.0419 5648 C:\WINDOWS\System32\wship6.dll - ok
10:11:08.0423 5648 [ EF12B8385AA2849999008A977918F96B ] C:\WINDOWS\System32\msv1_0.dll
10:11:08.0423 5648 C:\WINDOWS\System32\msv1_0.dll - ok
10:11:08.0425 5648 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\WINDOWS\System32\netlogon.dll
10:11:08.0426 5648 C:\WINDOWS\System32\netlogon.dll - ok
10:11:08.0428 5648 [ 492D07D79E7024CA310867B526D9636D ] C:\WINDOWS\System32\dnsapi.dll
10:11:08.0428 5648 C:\WINDOWS\System32\dnsapi.dll - ok
10:11:08.0431 5648 [ 8FFE297B8449386E7B6851458B6E474E ] C:\WINDOWS\System32\logoncli.dll
10:11:08.0431 5648 C:\WINDOWS\System32\logoncli.dll - ok
10:11:08.0434 5648 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\WINDOWS\System32\schannel.dll
10:11:08.0434 5648 C:\WINDOWS\System32\schannel.dll - ok
10:11:08.0437 5648 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\WINDOWS\System32\wdigest.dll
10:11:08.0437 5648 C:\WINDOWS\System32\wdigest.dll - ok
10:11:08.0439 5648 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\WINDOWS\System32\rsaenh.dll
10:11:08.0439 5648 C:\WINDOWS\System32\rsaenh.dll - ok
10:11:08.0442 5648 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\WINDOWS\System32\TSpkg.dll
10:11:08.0442 5648 C:\WINDOWS\System32\TSpkg.dll - ok
10:11:08.0444 5648 [ E08088A97F95345E181C3DFCE2C615EF ] C:\WINDOWS\System32\pku2u.dll
10:11:08.0444 5648 C:\WINDOWS\System32\pku2u.dll - ok
10:11:08.0447 5648 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\WINDOWS\System32\bcryptprimitives.dll
10:11:08.0447 5648 C:\WINDOWS\System32\bcryptprimitives.dll - ok
10:11:08.0450 5648 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\WINDOWS\System32\efslsaext.dll
10:11:08.0450 5648 C:\WINDOWS\System32\efslsaext.dll - ok
10:11:08.0452 5648 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\WINDOWS\System32\credssp.dll
10:11:08.0452 5648 C:\WINDOWS\System32\credssp.dll - ok
10:11:08.0455 5648 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\WINDOWS\System32\ubpm.dll
10:11:08.0455 5648 C:\WINDOWS\System32\ubpm.dll - ok
10:11:08.0457 5648 [ ED78427259134C63ED69804D2132B86C ] C:\WINDOWS\System32\scecli.dll
10:11:08.0457 5648 C:\WINDOWS\System32\scecli.dll - ok
10:11:08.0460 5648 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\WINDOWS\System32\svchost.exe
10:11:08.0460 5648 C:\WINDOWS\System32\svchost.exe - ok
10:11:08.0463 5648 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\WINDOWS\System32\umpnpmgr.dll
10:11:08.0463 5648 C:\WINDOWS\System32\umpnpmgr.dll - ok
10:11:08.0465 5648 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\WINDOWS\System32\SPInf.dll
10:11:08.0465 5648 C:\WINDOWS\System32\SPInf.dll - ok
10:11:08.0468 5648 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\WINDOWS\System32\devrtl.dll
10:11:08.0468 5648 C:\WINDOWS\System32\devrtl.dll - ok
10:11:08.0471 5648 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\WINDOWS\System32\userenv.dll
10:11:08.0471 5648 C:\WINDOWS\System32\userenv.dll - ok
10:11:08.0473 5648 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\WINDOWS\System32\gpapi.dll
10:11:08.0473 5648 C:\WINDOWS\System32\gpapi.dll - ok
10:11:08.0476 5648 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\WINDOWS\System32\umpo.dll
10:11:08.0476 5648 C:\WINDOWS\System32\umpo.dll - ok
10:11:08.0478 5648 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\WINDOWS\System32\pcwum.dll
10:11:08.0478 5648 C:\WINDOWS\System32\pcwum.dll - ok
10:11:08.0481 5648 [ 716175021BDA290504CE434273F666BC ] C:\WINDOWS\System32\powrprof.dll
10:11:08.0481 5648 C:\WINDOWS\System32\powrprof.dll - ok
10:11:08.0483 5648 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\WINDOWS\System32\drivers\luafv.sys
10:11:08.0483 5648 C:\WINDOWS\System32\drivers\luafv.sys - ok
10:11:08.0486 5648 [ 0BB97D43299910CBFBA59C461B99B910 ] C:\WINDOWS\System32\drivers\mbam.sys
10:11:08.0486 5648 C:\WINDOWS\System32\drivers\mbam.sys - ok
10:11:08.0489 5648 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\WINDOWS\System32\drivers\Sftvollh.sys
10:11:08.0489 5648 C:\WINDOWS\System32\drivers\Sftvollh.sys - ok
10:11:08.0491 5648 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\WINDOWS\System32\rpcss.dll
10:11:08.0491 5648 C:\WINDOWS\System32\rpcss.dll - ok
10:11:08.0494 5648 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\WINDOWS\System32\RpcEpMap.dll
10:11:08.0494 5648 C:\WINDOWS\System32\RpcEpMap.dll - ok
10:11:08.0496 5648 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\WINDOWS\System32\WSHTCPIP.DLL
10:11:08.0496 5648 C:\WINDOWS\System32\WSHTCPIP.DLL - ok
10:11:08.0499 5648 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\WINDOWS\System32\wshqos.dll
10:11:08.0499 5648 C:\WINDOWS\System32\wshqos.dll - ok
10:11:08.0502 5648 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\WINDOWS\System32\FirewallAPI.dll
10:11:08.0502 5648 C:\WINDOWS\System32\FirewallAPI.dll - ok
10:11:08.0504 5648 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\WINDOWS\System32\LogonUI.exe
10:11:08.0504 5648 C:\WINDOWS\System32\LogonUI.exe - ok
10:11:08.0506 5648 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\WINDOWS\System32\authui.dll
10:11:08.0506 5648 C:\WINDOWS\System32\authui.dll - ok
10:11:08.0509 5648 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\WINDOWS\System32\version.dll
10:11:08.0509 5648 C:\WINDOWS\System32\version.dll - ok
10:11:08.0512 5648 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\WINDOWS\System32\cryptui.dll
10:11:08.0512 5648 C:\WINDOWS\System32\cryptui.dll - ok
10:11:08.0514 5648 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\WINDOWS\System32\wevtsvc.dll
10:11:08.0514 5648 C:\WINDOWS\System32\wevtsvc.dll - ok
10:11:08.0517 5648 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\WINDOWS\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
10:11:08.0517 5648 C:\WINDOWS\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
10:11:08.0520 5648 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\WINDOWS\System32\audiosrv.dll
10:11:08.0520 5648 C:\WINDOWS\System32\audiosrv.dll - ok
10:11:08.0522 5648 [ C4C183E6551084039EC862DA1C945E3D ] C:\WINDOWS\System32\FntCache.dll
10:11:08.0522 5648 C:\WINDOWS\System32\FntCache.dll - ok
10:11:08.0524 5648 [ E40E80D0304A73E8D269F7141D77250B ] C:\WINDOWS\System32\mmcss.dll
10:11:08.0524 5648 C:\WINDOWS\System32\mmcss.dll - ok
10:11:08.0527 5648 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\WINDOWS\System32\netprofm.dll
10:11:08.0527 5648 C:\WINDOWS\System32\netprofm.dll - ok
10:11:08.0529 5648 [ 78A1E65207484B7F8D3217507745F47C ] C:\WINDOWS\System32\avrt.dll
10:11:08.0529 5648 C:\WINDOWS\System32\avrt.dll - ok
10:11:08.0532 5648 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\WINDOWS\System32\MMDevAPI.dll
10:11:08.0532 5648 C:\WINDOWS\System32\MMDevAPI.dll - ok
10:11:08.0535 5648 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\WINDOWS\System32\adtschema.dll
10:11:08.0535 5648 C:\WINDOWS\System32\adtschema.dll - ok
10:11:08.0537 5648 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\WINDOWS\System32\propsys.dll
10:11:08.0537 5648 C:\WINDOWS\System32\propsys.dll - ok
10:11:08.0540 5648 [ 50544D04AD845C43130B70212EC05CCD ] C:\WINDOWS\System32\microsoft-windows-kernel-power-events.dll
10:11:08.0540 5648 C:\WINDOWS\System32\microsoft-windows-kernel-power-events.dll - ok
10:11:08.0544 5648 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\WINDOWS\System32\shacct.dll
10:11:08.0544 5648 C:\WINDOWS\System32\shacct.dll - ok
10:11:08.0547 5648 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\WINDOWS\System32\samlib.dll
10:11:08.0547 5648 C:\WINDOWS\System32\samlib.dll - ok
10:11:08.0550 5648 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\WINDOWS\System32\MPSSVC.dll
10:11:08.0550 5648 C:\WINDOWS\System32\MPSSVC.dll - ok
10:11:08.0553 5648 [ D29E998E8277666982B4F0303BF4E7AF ] C:\WINDOWS\System32\uxtheme.dll
10:11:08.0553 5648 C:\WINDOWS\System32\uxtheme.dll - ok
10:11:08.0557 5648 [ 179E8401224D557ECFF3695F2016EA5B ] C:\WINDOWS\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
10:11:08.0557 5648 C:\WINDOWS\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
10:11:08.0560 5648 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\WINDOWS\System32\WUDFPlatform.dll
10:11:08.0560 5648 C:\WINDOWS\System32\WUDFPlatform.dll - ok
10:11:08.0562 5648 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\WINDOWS\System32\audiodg.exe
10:11:08.0562 5648 C:\WINDOWS\System32\audiodg.exe - ok
10:11:08.0565 5648 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\WINDOWS\System32\profsvc.dll
10:11:08.0565 5648 C:\WINDOWS\System32\profsvc.dll - ok
10:11:08.0567 5648 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\WINDOWS\System32\ntmarta.dll
10:11:08.0568 5648 C:\WINDOWS\System32\ntmarta.dll - ok
10:11:08.0571 5648 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\WINDOWS\System32\drivers\fltMgr.sys
10:11:08.0571 5648 C:\WINDOWS\System32\drivers\fltMgr.sys - ok
10:11:08.0573 5648 [ 58775492FFD419248B08325E583C527F ] C:\WINDOWS\System32\atl.dll
10:11:08.0574 5648 C:\WINDOWS\System32\atl.dll - ok
10:11:08.0576 5648 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\WINDOWS\System32\gpsvc.dll
10:11:08.0576 5648 C:\WINDOWS\System32\gpsvc.dll - ok
10:11:08.0579 5648 [ F0344071948D1A1FA732231785A0664C ] C:\WINDOWS\System32\themeservice.dll
10:11:08.0579 5648 C:\WINDOWS\System32\themeservice.dll - ok
10:11:08.0583 5648 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\WINDOWS\System32\PSHED.DLL
10:11:08.0583 5648 C:\WINDOWS\System32\PSHED.DLL - ok
10:11:08.0585 5648 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\WINDOWS\System32\es.dll
10:11:08.0585 5648 C:\WINDOWS\System32\es.dll - ok
10:11:08.0588 5648 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\WINDOWS\System32\microsoft-windows-kernel-processor-power-events.dll
10:11:08.0588 5648 C:\WINDOWS\System32\microsoft-windows-kernel-processor-power-events.dll - ok
10:11:08.0591 5648 [ 1A47D52E303B7543E4E6026595B95422 ] C:\WINDOWS\System32\comres.dll
10:11:08.0591 5648 C:\WINDOWS\System32\comres.dll - ok
10:11:08.0593 5648 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\WINDOWS\System32\nlaapi.dll
10:11:08.0593 5648 C:\WINDOWS\System32\nlaapi.dll - ok
10:11:08.0596 5648 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\WINDOWS\System32\Sens.dll
10:11:08.0596 5648 C:\WINDOWS\System32\Sens.dll - ok
10:11:08.0598 5648 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\WINDOWS\System32\dsrole.dll
10:11:08.0598 5648 C:\WINDOWS\System32\dsrole.dll - ok
10:11:08.0601 5648 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\WINDOWS\System32\dui70.dll
10:11:08.0601 5648 C:\WINDOWS\System32\dui70.dll - ok
10:11:08.0603 5648 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\WINDOWS\System32\slc.dll
10:11:08.0603 5648 C:\WINDOWS\System32\slc.dll - ok
10:11:08.0606 5648 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\WINDOWS\System32\duser.dll
10:11:08.0606 5648 C:\WINDOWS\System32\duser.dll - ok
10:11:08.0609 5648 [ D7F1EF374A90709B31591823B002F918 ] C:\WINDOWS\System32\SndVolSSO.dll
10:11:08.0609 5648 C:\WINDOWS\System32\SndVolSSO.dll - ok
10:11:08.0611 5648 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\WINDOWS\System32\hid.dll
10:11:08.0611 5648 C:\WINDOWS\System32\hid.dll - ok
10:11:08.0614 5648 [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
10:11:08.0614 5648 C:\Program Files\Dell\DellDock\DockLogin.exe - ok
10:11:08.0616 5648 [ DA1B7075260F3872585BFCDD668C648B ] C:\WINDOWS\System32\dwmapi.dll
10:11:08.0616 5648 C:\WINDOWS\System32\dwmapi.dll - ok
10:11:08.0619 5648 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\WINDOWS\System32\xmllite.dll
10:11:08.0619 5648 C:\WINDOWS\System32\xmllite.dll - ok
10:11:08.0623 5648 [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\WINDOWS\System32\WindowsCodecs.dll
10:11:08.0623 5648 C:\WINDOWS\System32\WindowsCodecs.dll - ok
10:11:08.0625 5648 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\WINDOWS\SysWOW64\ntdll.dll
10:11:08.0625 5648 C:\WINDOWS\SysWOW64\ntdll.dll - ok
10:11:08.0628 5648 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\WINDOWS\System32\wow64.dll
10:11:08.0628 5648 C:\WINDOWS\System32\wow64.dll - ok
10:11:08.0631 5648 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\WINDOWS\System32\wow64win.dll
10:11:08.0631 5648 C:\WINDOWS\System32\wow64win.dll - ok
10:11:08.0634 5648 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\WINDOWS\System32\wow64cpu.dll
10:11:08.0634 5648 C:\WINDOWS\System32\wow64cpu.dll - ok
10:11:08.0638 5648 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\WINDOWS\SysWOW64\kernel32.dll
10:11:08.0638 5648 C:\WINDOWS\SysWOW64\kernel32.dll - ok
10:11:08.0641 5648 [ E954A79D6A754A5475582CACED1565E6 ] C:\WINDOWS\SysWOW64\KernelBase.dll
10:11:08.0641 5648 C:\WINDOWS\SysWOW64\KernelBase.dll - ok
10:11:08.0644 5648 [ 7DE363A7E337159FC4C4B9421BBC62C0 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130412.001\UMEngx86.dll
10:11:08.0644 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130412.001\UMEngx86.dll - ok
10:11:08.0646 5648 [ 95E2376B3323F062EB562B8586D0F14A ] C:\WINDOWS\SysWOW64\advapi32.dll
10:11:08.0646 5648 C:\WINDOWS\SysWOW64\advapi32.dll - ok
10:11:08.0649 5648 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\WINDOWS\SysWOW64\msvcrt.dll
10:11:08.0649 5648 C:\WINDOWS\SysWOW64\msvcrt.dll - ok
10:11:08.0652 5648 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\WINDOWS\SysWOW64\wtsapi32.dll
10:11:08.0652 5648 C:\WINDOWS\SysWOW64\wtsapi32.dll - ok
10:11:08.0654 5648 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\WINDOWS\SysWOW64\sechost.dll
10:11:08.0654 5648 C:\WINDOWS\SysWOW64\sechost.dll - ok
10:11:08.0657 5648 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\WINDOWS\System32\winbrand.dll
10:11:08.0657 5648 C:\WINDOWS\System32\winbrand.dll - ok
10:11:08.0660 5648 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\WINDOWS\SysWOW64\rpcrt4.dll
10:11:08.0660 5648 C:\WINDOWS\SysWOW64\rpcrt4.dll - ok
10:11:08.0664 5648 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\WINDOWS\System32\wtsapi32.dll
10:11:08.0664 5648 C:\WINDOWS\System32\wtsapi32.dll - ok
10:11:08.0667 5648 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\WINDOWS\System32\VaultCredProvider.dll
10:11:08.0667 5648 C:\WINDOWS\System32\VaultCredProvider.dll - ok
10:11:08.0669 5648 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\WINDOWS\SysWOW64\cryptbase.dll
10:11:08.0669 5648 C:\WINDOWS\SysWOW64\cryptbase.dll - ok
10:11:08.0672 5648 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\WINDOWS\SysWOW64\sspicli.dll
10:11:08.0672 5648 C:\WINDOWS\SysWOW64\sspicli.dll - ok
10:11:08.0675 5648 [ CA2985996BB49924B677113DF95CFEA7 ] C:\WINDOWS\System32\SmartcardCredentialProvider.dll
10:11:08.0675 5648 C:\WINDOWS\System32\SmartcardCredentialProvider.dll - ok
10:11:08.0677 5648 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\WINDOWS\SysWOW64\shlwapi.dll
10:11:08.0677 5648 C:\WINDOWS\SysWOW64\shlwapi.dll - ok
10:11:08.0680 5648 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\WINDOWS\SysWOW64\gdi32.dll
10:11:08.0680 5648 C:\WINDOWS\SysWOW64\gdi32.dll - ok
10:11:08.0682 5648 [ BF352E73615F5461AA6884472435A544 ] C:\WINDOWS\System32\BioCredProv.dll
10:11:08.0682 5648 C:\WINDOWS\System32\BioCredProv.dll - ok
10:11:08.0685 5648 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\WINDOWS\SysWOW64\user32.dll
10:11:08.0685 5648 C:\WINDOWS\SysWOW64\user32.dll - ok
10:11:08.0688 5648 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\WINDOWS\System32\credui.dll
10:11:08.0688 5648 C:\WINDOWS\System32\credui.dll - ok
10:11:08.0690 5648 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\WINDOWS\System32\winbio.dll
10:11:08.0690 5648 C:\WINDOWS\System32\winbio.dll - ok
10:11:08.0692 5648 [ 44B9C66177651F3F53C87B665D58D17A ] C:\WINDOWS\System32\vaultcli.dll
10:11:08.0692 5648 C:\WINDOWS\System32\vaultcli.dll - ok
10:11:08.0695 5648 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\WINDOWS\System32\netapi32.dll
10:11:08.0695 5648 C:\WINDOWS\System32\netapi32.dll - ok
10:11:08.0697 5648 [ 384721EF4024890092625E20CADFAF85 ] C:\WINDOWS\SysWOW64\lpk.dll
10:11:08.0697 5648 C:\WINDOWS\SysWOW64\lpk.dll - ok
10:11:08.0700 5648 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\WINDOWS\SysWOW64\usp10.dll
10:11:08.0700 5648 C:\WINDOWS\SysWOW64\usp10.dll - ok
10:11:08.0703 5648 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\WINDOWS\System32\netutils.dll
10:11:08.0703 5648 C:\WINDOWS\System32\netutils.dll - ok
10:11:08.0705 5648 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\WINDOWS\System32\wkscli.dll
10:11:08.0705 5648 C:\WINDOWS\System32\wkscli.dll - ok
10:11:08.0708 5648 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\WINDOWS\System32\samcli.dll
10:11:08.0708 5648 C:\WINDOWS\System32\samcli.dll - ok
10:11:08.0710 5648 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\WINDOWS\System32\certCredProvider.dll
10:11:08.0710 5648 C:\WINDOWS\System32\certCredProvider.dll - ok
10:11:08.0713 5648 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\WINDOWS\System32\rasplap.dll
10:11:08.0713 5648 C:\WINDOWS\System32\rasplap.dll - ok
10:11:08.0717 5648 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\WINDOWS\SysWOW64\imm32.dll
10:11:08.0717 5648 C:\WINDOWS\SysWOW64\imm32.dll - ok
10:11:08.0719 5648 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\WINDOWS\SysWOW64\msctf.dll
10:11:08.0719 5648 C:\WINDOWS\SysWOW64\msctf.dll - ok
10:11:08.0722 5648 [ 019CD868461B646E09BDF04474C19341 ] C:\WINDOWS\System32\rasapi32.dll
10:11:08.0722 5648 C:\WINDOWS\System32\rasapi32.dll - ok
10:11:08.0724 5648 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\WINDOWS\System32\rasman.dll
10:11:08.0724 5648 C:\WINDOWS\System32\rasman.dll - ok
10:11:08.0728 5648 [ 3422816473E93D4B2F861258B2FA5C33 ] C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL
10:11:08.0728 5648 C:\PROGRA~2\KEYCRY~1\KEYCRY~3.DLL - ok
10:11:08.0729 5648 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\WINDOWS\System32\rtutils.dll
10:11:08.0729 5648 C:\WINDOWS\System32\rtutils.dll - ok
10:11:08.0732 5648 [ A543AC1F7138376D778D630A35FCBC4C ] C:\WINDOWS\SysWOW64\psapi.dll
10:11:08.0732 5648 C:\WINDOWS\SysWOW64\psapi.dll - ok
10:11:08.0734 5648 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\WINDOWS\System32\uxsms.dll
10:11:08.0734 5648 C:\WINDOWS\System32\uxsms.dll - ok
10:11:08.0737 5648 [ 1538831CF8AD2979A04C423779465827 ] C:\WINDOWS\System32\drivers\lltdio.sys
10:11:08.0737 5648 C:\WINDOWS\System32\drivers\lltdio.sys - ok
10:11:08.0740 5648 [ DDC86E4F8E7456261E637E3552E804FF ] C:\WINDOWS\System32\drivers\rspndr.sys
10:11:08.0740 5648 C:\WINDOWS\System32\drivers\rspndr.sys - ok
10:11:08.0744 5648 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\WINDOWS\System32\UXInit.dll
10:11:08.0744 5648 C:\WINDOWS\System32\UXInit.dll - ok
10:11:08.0746 5648 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\WINDOWS\System32\lmhsvc.dll
10:11:08.0746 5648 C:\WINDOWS\System32\lmhsvc.dll - ok
10:11:08.0749 5648 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\WINDOWS\System32\nsisvc.dll
10:11:08.0749 5648 C:\WINDOWS\System32\nsisvc.dll - ok
10:11:08.0751 5648 [ 2B81776DA02017A37FE26C662827470E ] C:\WINDOWS\System32\IPHLPAPI.DLL
10:11:08.0751 5648 C:\WINDOWS\System32\IPHLPAPI.DLL - ok
10:11:08.0754 5648 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\WINDOWS\System32\winnsi.dll
10:11:08.0754 5648 C:\WINDOWS\System32\winnsi.dll - ok
10:11:08.0757 5648 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\WINDOWS\System32\nrpsrv.dll
10:11:08.0757 5648 C:\WINDOWS\System32\nrpsrv.dll - ok
10:11:08.0759 5648 [ 80E63B86C40C5E067475DC98F845A6DD ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
10:11:08.0759 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe - ok
10:11:08.0762 5648 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\WINDOWS\SysWOW64\ws2_32.dll
10:11:08.0762 5648 C:\WINDOWS\SysWOW64\ws2_32.dll - ok
10:11:08.0764 5648 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\WINDOWS\SysWOW64\crypt32.dll
10:11:08.0765 5648 C:\WINDOWS\SysWOW64\crypt32.dll - ok
10:11:08.0768 5648 [ 6377051C63D5552A311935C67E9FDFDC ] C:\WINDOWS\SysWOW64\nsi.dll
10:11:08.0768 5648 C:\WINDOWS\SysWOW64\nsi.dll - ok
10:11:08.0771 5648 [ CF636C92B762B26F0B39B38E92380A09 ] C:\WINDOWS\System32\oleacc.dll
10:11:08.0771 5648 C:\WINDOWS\System32\oleacc.dll - ok
10:11:08.0774 5648 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\WINDOWS\System32\UIAutomationCore.dll
10:11:08.0774 5648 C:\WINDOWS\System32\UIAutomationCore.dll - ok
10:11:08.0776 5648 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\WINDOWS\SysWOW64\msasn1.dll
10:11:08.0776 5648 C:\WINDOWS\SysWOW64\msasn1.dll - ok
10:11:08.0779 5648 [ 05C9E6DABADE3D2502774BAD96D9B41D ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\acciscossl.dll
10:11:08.0779 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\acciscossl.dll - ok
10:11:08.0782 5648 [ DBB441F962D1D67BFE7D5DBD03D54BAE ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\acciscocrypto.dll
10:11:08.0782 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\acciscocrypto.dll - ok
10:11:08.0785 5648 [ 928CF7268086631F54C3D8E17238C6DD ] C:\WINDOWS\SysWOW64\ole32.dll
10:11:08.0785 5648 C:\WINDOWS\SysWOW64\ole32.dll - ok
10:11:08.0788 5648 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\WINDOWS\SysWOW64\oleaut32.dll
10:11:08.0788 5648 C:\WINDOWS\SysWOW64\oleaut32.dll - ok
10:11:08.0791 5648 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\WINDOWS\System32\imageres.dll
10:11:08.0791 5648 C:\WINDOWS\System32\imageres.dll - ok
10:11:08.0794 5648 [ C37A7069408F796B4466050FD49C13B7 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommoncrypt.dll
10:11:08.0794 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommoncrypt.dll - ok
10:11:08.0796 5648 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\WINDOWS\SysWOW64\shell32.dll
10:11:08.0796 5648 C:\WINDOWS\SysWOW64\shell32.dll - ok
10:11:08.0799 5648 [ FE75D727609811A693FDF0CFE676485F ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommon.dll
10:11:08.0799 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommon.dll - ok
10:11:08.0802 5648 [ CFE0CEE587F9CEA4C29DEEC6D85FC91C ] C:\WINDOWS\SysWOW64\wininet.dll
10:11:08.0802 5648 C:\WINDOWS\SysWOW64\wininet.dll - ok
10:11:08.0805 5648 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
10:11:08.0805 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
10:11:08.0808 5648 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
10:11:08.0808 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
10:11:08.0811 5648 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
10:11:08.0811 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
10:11:08.0814 5648 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
10:11:08.0814 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
10:11:08.0817 5648 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
10:11:08.0817 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
10:11:08.0820 5648 [ B5DEC0D4CBBC333CA99FE10B06D4747E ] C:\WINDOWS\SysWOW64\iertutil.dll
10:11:08.0820 5648 C:\WINDOWS\SysWOW64\iertutil.dll - ok
10:11:08.0822 5648 [ 702254574E7E52052DE39408457B7149 ] C:\WINDOWS\SysWOW64\version.dll
10:11:08.0823 5648 C:\WINDOWS\SysWOW64\version.dll - ok
10:11:08.0825 5648 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\WINDOWS\SysWOW64\msvcp60.dll
10:11:08.0825 5648 C:\WINDOWS\SysWOW64\msvcp60.dll - ok
10:11:08.0828 5648 [ 2FA119EA55E06150030683C409FDD8B7 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagentutilities.dll
10:11:08.0828 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagentutilities.dll - ok
10:11:08.0831 5648 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\WINDOWS\SysWOW64\setupapi.dll
10:11:08.0831 5648 C:\WINDOWS\SysWOW64\setupapi.dll - ok
10:11:08.0834 5648 [ F436E847FA799ECD75AD8C313673F450 ] C:\WINDOWS\SysWOW64\cfgmgr32.dll
10:11:08.0834 5648 C:\WINDOWS\SysWOW64\cfgmgr32.dll - ok
10:11:08.0836 5648 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\WINDOWS\SysWOW64\devobj.dll
10:11:08.0836 5648 C:\WINDOWS\SysWOW64\devobj.dll - ok
10:11:08.0839 5648 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\WINDOWS\SysWOW64\rasapi32.dll
10:11:08.0839 5648 C:\WINDOWS\SysWOW64\rasapi32.dll - ok
10:11:08.0841 5648 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\WINDOWS\SysWOW64\rasman.dll
10:11:08.0841 5648 C:\WINDOWS\SysWOW64\rasman.dll - ok
10:11:08.0844 5648 [ D40E7650264807F75A697775C692577A ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnapi.dll
10:11:08.0844 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnapi.dll - ok
10:11:08.0847 5648 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\WINDOWS\SysWOW64\dbghelp.dll
10:11:08.0847 5648 C:\WINDOWS\SysWOW64\dbghelp.dll - ok
10:11:08.0849 5648 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\WINDOWS\SysWOW64\mswsock.dll
10:11:08.0849 5648 C:\WINDOWS\SysWOW64\mswsock.dll - ok
10:11:08.0852 5648 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\WINDOWS\SysWOW64\WSHTCPIP.DLL
10:11:08.0852 5648 C:\WINDOWS\SysWOW64\WSHTCPIP.DLL - ok
10:11:08.0855 5648 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\WINDOWS\SysWOW64\netapi32.dll
10:11:08.0855 5648 C:\WINDOWS\SysWOW64\netapi32.dll - ok
10:11:08.0857 5648 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\WINDOWS\SysWOW64\netutils.dll
10:11:08.0857 5648 C:\WINDOWS\SysWOW64\netutils.dll - ok
10:11:08.0860 5648 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\WINDOWS\SysWOW64\srvcli.dll
10:11:08.0860 5648 C:\WINDOWS\SysWOW64\srvcli.dll - ok
10:11:08.0862 5648 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\WINDOWS\SysWOW64\cryptsp.dll
10:11:08.0862 5648 C:\WINDOWS\SysWOW64\cryptsp.dll - ok
10:11:08.0865 5648 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\WINDOWS\SysWOW64\wkscli.dll
10:11:08.0865 5648 C:\WINDOWS\SysWOW64\wkscli.dll - ok
10:11:08.0867 5648 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\WINDOWS\SysWOW64\rsaenh.dll
10:11:08.0867 5648 C:\WINDOWS\SysWOW64\rsaenh.dll - ok
10:11:08.0870 5648 [ 5D380498B11905A10DF61870A82B64C7 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\Plugins\acfeedback.dll
10:11:08.0870 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\Plugins\acfeedback.dll - ok
10:11:08.0874 5648 [ 461B54C8673FBA7556D39DAC34B6DB18 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
10:11:08.0874 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll - ok
10:11:08.0876 5648 [ E799257C2CAF6F7B3AF6932F367723FC ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\Plugins\vpnipsec.dll
10:11:08.0876 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\Plugins\vpnipsec.dll - ok
10:11:08.0879 5648 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\WINDOWS\SysWOW64\profapi.dll
10:11:08.0879 5648 C:\WINDOWS\SysWOW64\profapi.dll - ok
10:11:08.0882 5648 [ FF5688D309347F2720911D8796912834 ] C:\WINDOWS\SysWOW64\clbcatq.dll
10:11:08.0882 5648 C:\WINDOWS\SysWOW64\clbcatq.dll - ok
10:11:08.0884 5648 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\WINDOWS\SysWOW64\msxml6.dll
10:11:08.0884 5648 C:\WINDOWS\SysWOW64\msxml6.dll - ok
10:11:08.0887 5648 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\WINDOWS\System32\dhcpcore.dll
10:11:08.0887 5648 C:\WINDOWS\System32\dhcpcore.dll - ok
10:11:08.0889 5648 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\WINDOWS\System32\dllhost.exe
10:11:08.0889 5648 C:\WINDOWS\System32\dllhost.exe - ok
10:11:08.0892 5648 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\WINDOWS\System32\dnsrslvr.dll
10:11:08.0892 5648 C:\WINDOWS\System32\dnsrslvr.dll - ok
10:11:08.0895 5648 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\WINDOWS\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
10:11:08.0895 5648 C:\WINDOWS\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
10:11:08.0898 5648 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\WINDOWS\System32\dhcpcore6.dll
10:11:08.0898 5648 C:\WINDOWS\System32\dhcpcore6.dll - ok
10:11:08.0900 5648 [ 0040C486584A8E582C861CFB57AB5387 ] C:\WINDOWS\System32\FWPUCLNT.DLL
10:11:08.0900 5648 C:\WINDOWS\System32\FWPUCLNT.DLL - ok
10:11:08.0903 5648 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\WINDOWS\System32\dnsext.dll
10:11:08.0903 5648 C:\WINDOWS\System32\dnsext.dll - ok
10:11:08.0906 5648 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\WINDOWS\System32\dhcpcsvc6.dll
10:11:08.0906 5648 C:\WINDOWS\System32\dhcpcsvc6.dll - ok
10:11:08.0908 5648 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\WINDOWS\System32\dhcpcsvc.dll
10:11:08.0908 5648 C:\WINDOWS\System32\dhcpcsvc.dll - ok
10:11:08.0911 5648 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\WINDOWS\System32\IDStore.dll
10:11:08.0911 5648 C:\WINDOWS\System32\IDStore.dll - ok
10:11:08.0913 5648 [ 69CB1A65B835EE6ADF9E16ED6D443072 ] C:\WINDOWS\SysWOW64\urlmon.dll
10:11:08.0914 5648 C:\WINDOWS\SysWOW64\urlmon.dll - ok
10:11:08.0916 5648 [ AAF932B4011D14052955D4B212A4DA8D ] C:\WINDOWS\System32\shsvcs.dll
10:11:08.0916 5648 C:\WINDOWS\System32\shsvcs.dll - ok
10:11:08.0919 5648 [ 418E881201583A3039D81F43E39E6C78 ] C:\WINDOWS\SysWOW64\winsta.dll
10:11:08.0919 5648 C:\WINDOWS\SysWOW64\winsta.dll - ok
10:11:08.0922 5648 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\WINDOWS\SysWOW64\userenv.dll
10:11:08.0922 5648 C:\WINDOWS\SysWOW64\userenv.dll - ok
10:11:08.0924 5648 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
10:11:08.0924 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
10:11:08.0927 5648 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\WINDOWS\System32\schedsvc.dll
10:11:08.0927 5648 C:\WINDOWS\System32\schedsvc.dll - ok
10:11:08.0930 5648 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\WINDOWS\System32\ktmw32.dll
10:11:08.0930 5648 C:\WINDOWS\System32\ktmw32.dll - ok
10:11:08.0932 5648 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\WINDOWS\System32\mpr.dll
10:11:08.0932 5648 C:\WINDOWS\System32\mpr.dll - ok
10:11:08.0935 5648 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\WINDOWS\System32\userinit.exe
10:11:08.0935 5648 C:\WINDOWS\System32\userinit.exe - ok
10:11:08.0937 5648 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\WINDOWS\System32\fveapi.dll
10:11:08.0937 5648 C:\WINDOWS\System32\fveapi.dll - ok
10:11:08.0940 5648 [ 694865362F0965779F92BCFE97712323 ] C:\WINDOWS\System32\tbs.dll
10:11:08.0940 5648 C:\WINDOWS\System32\tbs.dll - ok
10:11:08.0942 5648 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\WINDOWS\System32\fvecerts.dll
10:11:08.0942 5648 C:\WINDOWS\System32\fvecerts.dll - ok
10:11:08.0945 5648 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\WINDOWS\System32\taskcomp.dll
10:11:08.0945 5648 C:\WINDOWS\System32\taskcomp.dll - ok
10:11:08.0948 5648 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\WINDOWS\System32\wiarpc.dll
10:11:08.0948 5648 C:\WINDOWS\System32\wiarpc.dll - ok
10:11:08.0950 5648 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\WINDOWS\System32\drivers\http.sys
10:11:08.0950 5648 C:\WINDOWS\System32\drivers\http.sys - ok
10:11:08.0953 5648 [ 639774C9ACD063F028F6084ABF5593AD ] C:\WINDOWS\System32\taskhost.exe
10:11:08.0953 5648 C:\WINDOWS\System32\taskhost.exe - ok
10:11:08.0955 5648 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\WINDOWS\System32\spoolsv.exe
10:11:08.0956 5648 C:\WINDOWS\System32\spoolsv.exe - ok
10:11:08.0958 5648 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\WINDOWS\SysWOW64\wship6.dll
10:11:08.0958 5648 C:\WINDOWS\SysWOW64\wship6.dll - ok
10:11:08.0960 5648 [ A90DC9ABD65DB1A8902F361103029952 ] C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
10:11:08.0961 5648 C:\WINDOWS\SysWOW64\IPHLPAPI.DLL - ok
10:11:08.0963 5648 [ CFF35B879D1618D42C86644C717BA947 ] C:\WINDOWS\SysWOW64\winnsi.dll
10:11:08.0963 5648 C:\WINDOWS\SysWOW64\winnsi.dll - ok
10:11:08.0965 5648 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
10:11:08.0965 5648 C:\WINDOWS\SysWOW64\dhcpcsvc6.dll - ok
10:11:08.0968 5648 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\WINDOWS\SysWOW64\dhcpcsvc.dll
10:11:08.0968 5648 C:\WINDOWS\SysWOW64\dhcpcsvc.dll - ok
10:11:08.0971 5648 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
10:11:08.0971 5648 C:\WINDOWS\SysWOW64\FWPUCLNT.DLL - ok
10:11:08.0974 5648 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\WINDOWS\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
10:11:08.0974 5648 C:\WINDOWS\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
10:11:08.0977 5648 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\WINDOWS\System32\dwm.exe
10:11:08.0977 5648 C:\WINDOWS\System32\dwm.exe - ok
10:11:08.0980 5648 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\WINDOWS\System32\dwmredir.dll
10:11:08.0980 5648 C:\WINDOWS\System32\dwmredir.dll - ok
10:11:08.0982 5648 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\WINDOWS\System32\esent.dll
10:11:08.0982 5648 C:\WINDOWS\System32\esent.dll - ok
10:11:08.0984 5648 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\WINDOWS\System32\dwmcore.dll
10:11:08.0984 5648 C:\WINDOWS\System32\dwmcore.dll - ok
10:11:08.0987 5648 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\WINDOWS\System32\d3d10_1.dll
10:11:08.0987 5648 C:\WINDOWS\System32\d3d10_1.dll - ok
10:11:08.0989 5648 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\WINDOWS\System32\d3d10_1core.dll
10:11:08.0989 5648 C:\WINDOWS\System32\d3d10_1core.dll - ok
10:11:08.0992 5648 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\WINDOWS\System32\dxgi.dll
10:11:08.0992 5648 C:\WINDOWS\System32\dxgi.dll - ok
10:11:08.0995 5648 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\WINDOWS\System32\PlaySndSrv.dll
10:11:08.0995 5648 C:\WINDOWS\System32\PlaySndSrv.dll - ok
10:11:08.0997 5648 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\WINDOWS\explorer.exe
10:11:08.0997 5648 C:\WINDOWS\explorer.exe - ok
10:11:09.0000 5648 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\WINDOWS\System32\MsCtfMonitor.dll
10:11:09.0000 5648 C:\WINDOWS\System32\MsCtfMonitor.dll - ok
10:11:09.0002 5648 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\WINDOWS\System32\msutb.dll
10:11:09.0002 5648 C:\WINDOWS\System32\msutb.dll - ok
10:11:09.0005 5648 [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\WINDOWS\System32\d3d11.dll
10:11:09.0005 5648 C:\WINDOWS\System32\d3d11.dll - ok
10:11:09.0008 5648 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\WINDOWS\System32\HotStartUserAgent.dll
10:11:09.0008 5648 C:\WINDOWS\System32\HotStartUserAgent.dll - ok
10:11:09.0011 5648 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\WINDOWS\System32\winmm.dll
10:11:09.0011 5648 C:\WINDOWS\System32\winmm.dll - ok
10:11:09.0013 5648 [ EED05D42D91835064703E2318552ED25 ] C:\WINDOWS\System32\ExplorerFrame.dll
10:11:09.0013 5648 C:\WINDOWS\System32\ExplorerFrame.dll - ok
10:11:09.0016 5648 [ DD439A3AB75B1E5D693FE89BB509E417 ] C:\WINDOWS\System32\igd10umd64.dll
10:11:09.0016 5648 C:\WINDOWS\System32\igd10umd64.dll - ok
10:11:09.0018 5648 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\WINDOWS\System32\EhStorShell.dll
10:11:09.0018 5648 C:\WINDOWS\System32\EhStorShell.dll - ok
10:11:09.0021 5648 [ EE7029327D8BE48635FBBCB705E764A4 ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\bushell.dll
10:11:09.0021 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\bushell.dll - ok
10:11:09.0024 5648 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\WINDOWS\System32\taskeng.exe
10:11:09.0024 5648 C:\WINDOWS\System32\taskeng.exe - ok
10:11:09.0026 5648 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\msvcp100.dll
10:11:09.0026 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\msvcp100.dll - ok
10:11:09.0029 5648 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\msvcr100.dll
10:11:09.0029 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\msvcr100.dll - ok
10:11:09.0033 5648 [ 49BBDF031B41646088A10C43BB207765 ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\ccl120u.dll
10:11:09.0033 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\ccl120u.dll - ok
10:11:09.0035 5648 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\WINDOWS\System32\TSChannel.dll
10:11:09.0035 5648 C:\WINDOWS\System32\TSChannel.dll - ok
10:11:09.0038 5648 [ A5FAA9C3A2632397F207AAC6C3E07DF5 ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\efacli64.dll
10:11:09.0038 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\efacli64.dll - ok
10:11:09.0040 5648 [ 037A719DAD50603202C978CD802623E4 ] C:\WINDOWS\System32\ntshrui.dll
10:11:09.0040 5648 C:\WINDOWS\System32\ntshrui.dll - ok
10:11:09.0043 5648 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\WINDOWS\System32\cscapi.dll
10:11:09.0043 5648 C:\WINDOWS\System32\cscapi.dll - ok
10:11:09.0047 5648 [ 1D63F4366288B8A7595397E27010FD44 ] C:\WINDOWS\System32\IconCodecService.dll
10:11:09.0047 5648 C:\WINDOWS\System32\IconCodecService.dll - ok
10:11:09.0049 5648 [ 862586AD4B1355F7DCDE111EE0AAF350 ] C:\WINDOWS\System32\d3dx10_40.dll
10:11:09.0049 5648 C:\WINDOWS\System32\d3dx10_40.dll - ok
10:11:09.0052 5648 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\WINDOWS\System32\BFE.DLL
10:11:09.0052 5648 C:\WINDOWS\System32\BFE.DLL - ok
10:11:09.0055 5648 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\WINDOWS\System32\uDWM.dll
10:11:09.0055 5648 C:\WINDOWS\System32\uDWM.dll - ok
10:11:09.0058 5648 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\WINDOWS\System32\drivers\bowser.sys
10:11:09.0058 5648 C:\WINDOWS\System32\drivers\bowser.sys - ok
10:11:09.0060 5648 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\WINDOWS\System32\drivers\mpsdrv.sys
10:11:09.0060 5648 C:\WINDOWS\System32\drivers\mpsdrv.sys - ok
10:11:09.0063 5648 [ A5D9106A73DC88564C825D317CAC68AC ] C:\WINDOWS\System32\drivers\mrxsmb.sys
10:11:09.0063 5648 C:\WINDOWS\System32\drivers\mrxsmb.sys - ok
10:11:09.0066 5648 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\WINDOWS\System32\drivers\mrxsmb10.sys
10:11:09.0066 5648 C:\WINDOWS\System32\drivers\mrxsmb10.sys - ok
10:11:09.0068 5648 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\WINDOWS\System32\wfapigp.dll
10:11:09.0068 5648 C:\WINDOWS\System32\wfapigp.dll - ok
10:11:09.0071 5648 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\WINDOWS\System32\drivers\mrxsmb20.sys
10:11:09.0071 5648 C:\WINDOWS\System32\drivers\mrxsmb20.sys - ok
10:11:09.0073 5648 [ 70A5C0BC7228EFA99BFD2AFED9212D2C ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\ac_sock_fltr_api.dll
10:11:09.0073 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\ac_sock_fltr_api.dll - ok
10:11:09.0076 5648 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\WINDOWS\System32\wkssvc.dll
10:11:09.0076 5648 C:\WINDOWS\System32\wkssvc.dll - ok
10:11:09.0079 5648 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\WINDOWS\System32\mscms.dll
10:11:09.0079 5648 C:\WINDOWS\System32\mscms.dll - ok
10:11:09.0082 5648 [ ED6D98E58406F2779C844943076EB4EE ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe
10:11:09.0082 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe - ok
10:11:09.0084 5648 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\WINDOWS\SysWOW64\wintrust.dll
10:11:09.0084 5648 C:\WINDOWS\SysWOW64\wintrust.dll - ok
10:11:09.0087 5648 [ 3AEAA8B561E63452C655DC0584922257 ] C:\WINDOWS\System32\pcasvc.dll
10:11:09.0087 5648 C:\WINDOWS\System32\pcasvc.dll - ok
10:11:09.0090 5648 [ E60878164EAB0FFA8024451E579DBEE4 ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\Swordfish.dll
10:11:09.0090 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\Swordfish.dll - ok
10:11:09.0092 5648 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\WINDOWS\SysWOW64\imagehlp.dll
10:11:09.0092 5648 C:\WINDOWS\SysWOW64\imagehlp.dll - ok
10:11:09.0095 5648 [ 6313F223E817CC09AA41811DAA7F541D ] C:\WINDOWS\System32\snmptrap.exe
10:11:09.0095 5648 C:\WINDOWS\System32\snmptrap.exe - ok
10:11:09.0098 5648 [ D3F6A83F6EC6B76B19342F348AD5A6D5 ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sqlite3.dll
10:11:09.0098 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sqlite3.dll - ok
10:11:09.0101 5648 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\WINDOWS\System32\RdpGroupPolicyExtension.dll
10:11:09.0101 5648 C:\WINDOWS\System32\RdpGroupPolicyExtension.dll - ok
10:11:09.0104 5648 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\WINDOWS\SysWOW64\ncrypt.dll
10:11:09.0104 5648 C:\WINDOWS\SysWOW64\ncrypt.dll - ok
10:11:09.0107 5648 [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
10:11:09.0107 5648 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
10:11:09.0110 5648 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\WINDOWS\SysWOW64\bcrypt.dll
10:11:09.0110 5648 C:\WINDOWS\SysWOW64\bcrypt.dll - ok
10:11:09.0113 5648 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\WINDOWS\SysWOW64\bcryptprimitives.dll
10:11:09.0113 5648 C:\WINDOWS\SysWOW64\bcryptprimitives.dll - ok
10:11:09.0115 5648 [ 908ACB1F594274965A53926B10C81E89 ] C:\WINDOWS\System32\provsvc.dll
10:11:09.0115 5648 C:\WINDOWS\System32\provsvc.dll - ok
10:11:09.0118 5648 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\WINDOWS\System32\sstpsvc.dll
10:11:09.0118 5648 C:\WINDOWS\System32\sstpsvc.dll - ok
10:11:09.0120 5648 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\WINDOWS\SysWOW64\gpapi.dll
10:11:09.0120 5648 C:\WINDOWS\SysWOW64\gpapi.dll - ok
10:11:09.0123 5648 [ F401929EE0CC92BFE7F15161CA535383 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:11:09.0123 5648 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
10:11:09.0126 5648 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
10:11:09.0126 5648 C:\WINDOWS\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
10:11:09.0129 5648 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
10:11:09.0129 5648 C:\WINDOWS\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
10:11:09.0132 5648 [ D7016846DBD0D73E6FBF5E68E0EA370E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
10:11:09.0132 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
10:11:09.0136 5648 [ 53A6FFB9FFF5C3E64B64E9B68C31D4E5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
10:11:09.0136 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
10:11:09.0139 5648 [ 4EBBC2B0AD7F9075AE9D6835D2A62B6E ] C:\WINDOWS\System32\sc.exe
10:11:09.0139 5648 C:\WINDOWS\System32\sc.exe - ok
10:11:09.0142 5648 [ D3259D0DFC6A69AF54240A59A86F07BD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
10:11:09.0142 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
10:11:09.0145 5648 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\WINDOWS\System32\conhost.exe
10:11:09.0145 5648 C:\WINDOWS\System32\conhost.exe - ok
10:11:09.0148 5648 [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
10:11:09.0148 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
10:11:09.0150 5648 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\WINDOWS\SysWOW64\wsock32.dll
10:11:09.0150 5648 C:\WINDOWS\SysWOW64\wsock32.dll - ok
10:11:09.0153 5648 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
10:11:09.0153 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
10:11:09.0156 5648 [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
10:11:09.0156 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
10:11:09.0159 5648 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:11:09.0159 5648 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
10:11:09.0162 5648 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\WINDOWS\SysWOW64\winmm.dll
10:11:09.0162 5648 C:\WINDOWS\SysWOW64\winmm.dll - ok
10:11:09.0165 5648 [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
10:11:09.0165 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
10:11:09.0168 5648 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
10:11:09.0168 5648 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
10:11:09.0171 5648 [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
10:11:09.0171 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
10:11:09.0174 5648 [ 352B3DC62A0D259A82A052238425C872 ] C:\WINDOWS\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
10:11:09.0174 5648 C:\WINDOWS\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
10:11:09.0177 5648 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\WINDOWS\SysWOW64\WinSCard.dll
10:11:09.0177 5648 C:\WINDOWS\SysWOW64\WinSCard.dll - ok
10:11:09.0179 5648 [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
10:11:09.0179 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
10:11:09.0182 5648 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\WINDOWS\SysWOW64\msi.dll
10:11:09.0182 5648 C:\WINDOWS\SysWOW64\msi.dll - ok
10:11:09.0185 5648 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\WINDOWS\SysWOW64\cscapi.dll
10:11:09.0185 5648 C:\WINDOWS\SysWOW64\cscapi.dll - ok
10:11:09.0187 5648 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\WINDOWS\SysWOW64\ntmarta.dll
10:11:09.0188 5648 C:\WINDOWS\SysWOW64\ntmarta.dll - ok
10:11:09.0190 5648 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\WINDOWS\SysWOW64\Wldap32.dll
10:11:09.0190 5648 C:\WINDOWS\SysWOW64\Wldap32.dll - ok
10:11:09.0194 5648 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
10:11:09.0194 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
10:11:09.0198 5648 [ 3B7D8EAE5E44CBDA4CD772720594F116 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
10:11:09.0198 5648 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
10:11:09.0200 5648 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\WINDOWS\SysWOW64\dnssd.dll
10:11:09.0200 5648 C:\WINDOWS\SysWOW64\dnssd.dll - ok
10:11:09.0204 5648 [ B0BF87F9E247BB0621BCE59EB8CD113F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
10:11:09.0204 5648 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
10:11:09.0206 5648 [ 88390FE440DCC3F10556AE41F4EDFCA1 ] C:\WINDOWS\System32\drivers\asdrs.sys
10:11:09.0206 5648 C:\WINDOWS\System32\drivers\asdrs.sys - ok
10:11:09.0209 5648 [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
10:11:09.0210 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
10:11:09.0212 5648 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
10:11:09.0212 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
10:11:09.0216 5648 [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
10:11:09.0216 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
10:11:09.0220 5648 [ 25F0095BA5A30A31CA538698D6FE234C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
10:11:09.0220 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
10:11:09.0223 5648 [ 568B0D8B88DACCF1F4D48E362C69BD62 ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDSrv.exe
10:11:09.0223 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDSrv.exe - ok
10:11:09.0226 5648 [ F81491FAD124CA40545A823CFC87B48F ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\sqlite3.dll
10:11:09.0226 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\sqlite3.dll - ok
10:11:09.0229 5648 [ 7F00CBFCE925F38524BDD4BCB3ADF97A ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\Swordfish.dll
10:11:09.0229 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\Swordfish.dll - ok
10:11:09.0232 5648 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\WINDOWS\SysWOW64\fltLib.dll
10:11:09.0232 5648 C:\WINDOWS\SysWOW64\fltLib.dll - ok
10:11:09.0235 5648 [ 2D6D1BCBE6B7D0688681CE71C4A4C828 ] C:\WINDOWS\System32\drivers\asdws.sys
10:11:09.0235 5648 C:\WINDOWS\System32\drivers\asdws.sys - ok
10:11:09.0237 5648 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
10:11:09.0237 5648 C:\Program Files\Bonjour\mDNSResponder.exe - ok
10:11:09.0240 5648 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\WINDOWS\System32\cryptsvc.dll
10:11:09.0240 5648 C:\WINDOWS\System32\cryptsvc.dll - ok
10:11:09.0242 5648 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\WINDOWS\System32\dps.dll
10:11:09.0243 5648 C:\WINDOWS\System32\dps.dll - ok
10:11:09.0245 5648 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\WINDOWS\System32\taskschd.dll
10:11:09.0245 5648 C:\WINDOWS\System32\taskschd.dll - ok
10:11:09.0248 5648 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\WINDOWS\System32\cryptnet.dll
10:11:09.0248 5648 C:\WINDOWS\System32\cryptnet.dll - ok
10:11:09.0250 5648 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\WINDOWS\System32\vssapi.dll
10:11:09.0250 5648 C:\WINDOWS\System32\vssapi.dll - ok
10:11:09.0253 5648 [ 83158CA47591AF55A9759B5C648B0462 ] C:\Program Files (x86)\Fast Free Converter\FastFreeConverterUpdt.exe
10:11:09.0253 5648 C:\Program Files (x86)\Fast Free Converter\FastFreeConverterUpdt.exe - ok
10:11:09.0256 5648 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
10:11:09.0256 5648 C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
10:11:09.0259 5648 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\WINDOWS\System32\mscoree.dll
10:11:09.0259 5648 C:\WINDOWS\System32\mscoree.dll - ok
10:11:09.0262 5648 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\WINDOWS\System32\vsstrace.dll
10:11:09.0262 5648 C:\WINDOWS\System32\vsstrace.dll - ok
10:11:09.0265 5648 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
10:11:09.0266 5648 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
10:11:09.0269 5648 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
10:11:09.0269 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
10:11:09.0272 5648 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\WINDOWS\SysWOW64\apphelp.dll
10:11:09.0272 5648 C:\WINDOWS\SysWOW64\apphelp.dll - ok
10:11:09.0275 5648 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
10:11:09.0275 5648 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
10:11:09.0276 5648 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
10:11:09.0276 5648 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
10:11:09.0279 5648 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\WINDOWS\SysWOW64\mstask.dll
10:11:09.0279 5648 C:\WINDOWS\SysWOW64\mstask.dll - ok
10:11:09.0282 5648 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\WINDOWS\System32\dbghelp.dll
10:11:09.0282 5648 C:\WINDOWS\System32\dbghelp.dll - ok
10:11:09.0285 5648 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\WINDOWS\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
10:11:09.0285 5648 C:\WINDOWS\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
10:11:09.0288 5648 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
10:11:09.0288 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
10:11:09.0291 5648 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
10:11:09.0291 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
10:11:09.0294 5648 [ D36AE1B392FAA88FBEF39DE1142DF051 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll
10:11:09.0294 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll - ok
10:11:09.0297 5648 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
10:11:09.0297 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
10:11:09.0300 5648 [ 89344657836F91640F3DDB235D0E7F73 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
10:11:09.0300 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
10:11:09.0303 5648 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
10:11:09.0303 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
10:11:09.0306 5648 [ C264145F107437CBD3B30303733AEE4F ] C:\WINDOWS\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
10:11:09.0306 5648 C:\WINDOWS\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
10:11:09.0309 5648 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
10:11:09.0309 5648 C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
10:11:09.0313 5648 [ AD5DF6F4FBBC798636EDC66BFEC7D0DE ] C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
10:11:09.0313 5648 C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe - ok
10:11:09.0316 5648 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\WINDOWS\System32\shfolder.dll
10:11:09.0316 5648 C:\WINDOWS\System32\shfolder.dll - ok
10:11:09.0319 5648 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\WINDOWS\SysWOW64\winspool.drv
10:11:09.0319 5648 C:\WINDOWS\SysWOW64\winspool.drv - ok
10:11:09.0322 5648 [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:11:09.0322 5648 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
10:11:09.0325 5648 [ FCD84C381E0140AF901E58D48882D26B ] C:\WINDOWS\System32\IKEEXT.DLL
10:11:09.0325 5648 C:\WINDOWS\System32\IKEEXT.DLL - ok
10:11:09.0328 5648 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\WINDOWS\System32\vpnikeapi.dll
10:11:09.0328 5648 C:\WINDOWS\System32\vpnikeapi.dll - ok
10:11:09.0331 5648 [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
10:11:09.0331 5648 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
10:11:09.0334 5648 [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
10:11:09.0334 5648 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
10:11:09.0337 5648 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:11:09.0337 5648 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
10:11:09.0341 5648 [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
10:11:09.0341 5648 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
10:11:09.0344 5648 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\WINDOWS\SysWOW64\mpr.dll
10:11:09.0344 5648 C:\WINDOWS\SysWOW64\mpr.dll - ok
10:11:09.0347 5648 [ A592A054D78750B4D73ABAA4C94DECDF ] C:\Program Files\Microsoft LifeCam\MSCamS64.exe
10:11:09.0347 5648 C:\Program Files\Microsoft LifeCam\MSCamS64.exe - ok
10:11:09.0350 5648 [ BE165318E0052A91F7EA36F515B5F2B1 ] C:\WINDOWS\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll
10:11:09.0350 5648 C:\WINDOWS\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll - ok
10:11:09.0353 5648 [ D1D5DAB39DCB4BE0359943738D87409B ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
10:11:09.0353 5648 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
10:11:09.0356 5648 [ 0D7BE936A44E6B70F822D272A5CEBC22 ] C:\WINDOWS\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
10:11:09.0356 5648 C:\WINDOWS\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll - ok
10:11:09.0359 5648 [ 4A9258B9597A31DB68EC9740F3A8A70B ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccsvchst.exe
10:11:09.0359 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccsvchst.exe - ok
10:11:09.0362 5648 [ 74F7559C028245A9CC1645F1EC687FC9 ] C:\Program Files\Microsoft LifeCam\CAL264.dll
10:11:09.0362 5648 C:\Program Files\Microsoft LifeCam\CAL264.dll - ok
10:11:09.0366 5648 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\WINDOWS\SysWOW64\uxtheme.dll
10:11:09.0366 5648 C:\WINDOWS\SysWOW64\uxtheme.dll - ok
10:11:09.0369 5648 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\msvcp100.dll
10:11:09.0369 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\msvcp100.dll - ok
10:11:09.0371 5648 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\WINDOWS\SysWOW64\dwmapi.dll
10:11:09.0371 5648 C:\WINDOWS\SysWOW64\dwmapi.dll - ok
10:11:09.0374 5648 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\msvcr100.dll
10:11:09.0374 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\msvcr100.dll - ok
10:11:09.0377 5648 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\WINDOWS\System32\devenum.dll
10:11:09.0377 5648 C:\WINDOWS\System32\devenum.dll - ok
10:11:09.0379 5648 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\WINDOWS\System32\msdmo.dll
10:11:09.0379 5648 C:\WINDOWS\System32\msdmo.dll - ok
10:11:09.0382 5648 [ 1473768973453DE50DC738C2955FC4DD ] C:\WINDOWS\System32\wdmaud.drv
10:11:09.0382 5648 C:\WINDOWS\System32\wdmaud.drv - ok
10:11:09.0385 5648 [ 947D20D286D8C8D9405158DD13EC7D00 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccl120u.dll
10:11:09.0385 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccl120u.dll - ok
10:11:09.0387 5648 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\WINDOWS\System32\ksuser.dll
10:11:09.0387 5648 C:\WINDOWS\System32\ksuser.dll - ok
10:11:09.0390 5648 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\WINDOWS\System32\AudioSes.dll
10:11:09.0390 5648 C:\WINDOWS\System32\AudioSes.dll - ok
10:11:09.0393 5648 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\WINDOWS\System32\msacm32.drv
10:11:09.0393 5648 C:\WINDOWS\System32\msacm32.drv - ok
10:11:09.0395 5648 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\WINDOWS\System32\msacm32.dll
10:11:09.0395 5648 C:\WINDOWS\System32\msacm32.dll - ok
10:11:09.0398 5648 [ 1727B2A2F379A32B864C096FA794AADC ] C:\WINDOWS\System32\aepic.dll
10:11:09.0398 5648 C:\WINDOWS\System32\aepic.dll - ok
10:11:09.0401 5648 [ 2C148C79EEDCD3AB9830E8B66413A891 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccvrtrst.dll
10:11:09.0401 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccvrtrst.dll - ok
10:11:09.0404 5648 [ 8AD77806D336673F270DB31645267293 ] C:\WINDOWS\System32\nlasvc.dll
10:11:09.0404 5648 C:\WINDOWS\System32\nlasvc.dll - ok
10:11:09.0406 5648 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\WINDOWS\System32\sfc.dll
10:11:09.0406 5648 C:\WINDOWS\System32\sfc.dll - ok
10:11:09.0409 5648 [ CA2A0750ED830678997695FF61B04C30 ] C:\WINDOWS\System32\midimap.dll
10:11:09.0409 5648 C:\WINDOWS\System32\midimap.dll - ok
10:11:09.0411 5648 [ 895C9AB0A855547445C4181195230757 ] C:\WINDOWS\System32\sfc_os.dll
10:11:09.0412 5648 C:\WINDOWS\System32\sfc_os.dll - ok
10:11:09.0414 5648 [ 296B4C4BF16C4DFAB2DD72D60459C223 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\efacli.dll
10:11:09.0414 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\efacli.dll - ok
10:11:09.0418 5648 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\WINDOWS\System32\ncsi.dll
10:11:09.0418 5648 C:\WINDOWS\System32\ncsi.dll - ok
10:11:09.0422 5648 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\WINDOWS\System32\winhttp.dll
10:11:09.0422 5648 C:\WINDOWS\System32\winhttp.dll - ok
10:11:09.0424 5648 [ 42500A9FC8D6A025CF2D839053A240DE ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccsvc.dll
10:11:09.0424 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccsvc.dll - ok
10:11:09.0427 5648 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\WINDOWS\System32\drivers\PEAuth.sys
10:11:09.0427 5648 C:\WINDOWS\System32\drivers\PEAuth.sys - ok
10:11:09.0430 5648 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\WINDOWS\System32\webio.dll
10:11:09.0430 5648 C:\WINDOWS\System32\webio.dll - ok
10:11:09.0433 5648 [ 2393B4D684AF9E3FBD26C37ACF7FB629 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\srtsp32.dll
10:11:09.0434 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\srtsp32.dll - ok
10:11:09.0437 5648 [ 6DC6C59DCBD3AB604A9F3703BE770790 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccipc.dll
10:11:09.0437 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccipc.dll - ok
10:11:09.0439 5648 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\WINDOWS\System32\ssdpapi.dll
10:11:09.0439 5648 C:\WINDOWS\System32\ssdpapi.dll - ok
10:11:09.0442 5648 [ 2DFAB8C3C394E95D262E1325BDA5DFE4 ] C:\WINDOWS\SysWOW64\ntoskrnl.exe
10:11:09.0442 5648 C:\WINDOWS\SysWOW64\ntoskrnl.exe - ok
10:11:09.0444 5648 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\WINDOWS\System32\drivers\secdrv.sys
10:11:09.0445 5648 C:\WINDOWS\System32\drivers\secdrv.sys - ok
10:11:09.0447 5648 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\WINDOWS\System32\seclogon.dll
10:11:09.0447 5648 C:\WINDOWS\System32\seclogon.dll - ok
10:11:09.0450 5648 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\WINDOWS\SysWOW64\RpcRtRemote.dll
10:11:09.0450 5648 C:\WINDOWS\SysWOW64\RpcRtRemote.dll - ok
10:11:09.0453 5648 [ 8F1DE0C717BEE342D9838C6A9E78DA6B ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\dimaster.dll
10:11:09.0453 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\dimaster.dll - ok
10:11:09.0456 5648 [ CA9F7888B524D8100B977C81F44C3234 ] C:\WINDOWS\SysWOW64\winhttp.dll
10:11:09.0456 5648 C:\WINDOWS\SysWOW64\winhttp.dll - ok
10:11:09.0458 5648 [ C6CC9297BD53E5229653303E556AA539 ] C:\WINDOWS\System32\drivers\Sftfslh.sys
10:11:09.0459 5648 C:\WINDOWS\System32\drivers\Sftfslh.sys - ok
10:11:09.0461 5648 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\WINDOWS\SysWOW64\webio.dll
10:11:09.0461 5648 C:\WINDOWS\SysWOW64\webio.dll - ok
10:11:09.0464 5648 [ A113AFEED3159A1ED52D78CB0226006D ] C:\WINDOWS\SysWOW64\secur32.dll
10:11:09.0464 5648 C:\WINDOWS\SysWOW64\secur32.dll - ok
10:11:09.0467 5648 [ 5EF95EC020E8772D12742A74F235DE4B ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccset.dll
10:11:09.0467 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccset.dll - ok
10:11:09.0470 5648 [ 38037E0B9A784759C6571B70686E2E48 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cosvcplg.dll
10:11:09.0470 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cosvcplg.dll - ok
10:11:09.0474 5648 [ 312FC312F84305E10828FDBF92CE4300 ] C:\Program Files (x86)\Mozilla FireFox\firefox.exe
10:11:09.0474 5648 C:\Program Files (x86)\Mozilla FireFox\firefox.exe - ok
10:11:09.0477 5648 [ 48E33D9B6C2E9ED45E3E63ECBCED2941 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccgevt.dll
10:11:09.0477 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccgevt.dll - ok
10:11:09.0480 5648 [ 130EA63F8E1760FDB1A0FF5368610F36 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccglog.dll
10:11:09.0480 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccglog.dll - ok
10:11:09.0483 5648 [ 61A38D83520601D191DB323BBA4B6F6E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\coFFPlgn.dll
10:11:09.0483 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\coFFPlgn.dll - ok
10:11:09.0486 5648 [ 5B5F77CFC1D2AD465A4639259BD2C937 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccjobmgr.dll
10:11:09.0486 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccjobmgr.dll - ok
10:11:09.0489 5648 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\WINDOWS\System32\drivers\Sftplaylh.sys
10:11:09.0489 5648 C:\WINDOWS\System32\drivers\Sftplaylh.sys - ok
10:11:09.0492 5648 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
10:11:09.0492 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
10:11:09.0496 5648 [ 5848CACC81F3C081EC43967DD4B51D74 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccsubeng.dll
10:11:09.0496 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccsubeng.dll - ok
10:11:09.0499 5648 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\WINDOWS\SysWOW64\powrprof.dll
10:11:09.0499 5648 C:\WINDOWS\SysWOW64\powrprof.dll - ok
10:11:09.0501 5648 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\WINDOWS\System32\aeevts.dll
10:11:09.0501 5648 C:\WINDOWS\System32\aeevts.dll - ok
10:11:09.0504 5648 [ E0C464D663F4D362F619120BBC0F6AAC ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccemlpxy.dll
10:11:09.0504 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccemlpxy.dll - ok
10:11:09.0507 5648 [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\WINDOWS\SysWOW64\userinit.exe
10:11:09.0507 5648 C:\WINDOWS\SysWOW64\userinit.exe - ok
10:11:09.0510 5648 [ 5A79B1723A1128E57239B5A713377E8E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\iron.dll
10:11:09.0510 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\iron.dll - ok
10:11:09.0513 5648 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:11:09.0513 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
10:11:09.0516 5648 [ 61A38D83520601D191DB323BBA4B6F6E ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn\components\coFFPlgn.dll
10:11:09.0516 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn\components\coFFPlgn.dll - ok
10:11:09.0519 5648 [ D0F2ED77E20B1E3E5A0B6EA0C56667D8 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\busvc.dll
10:11:09.0519 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\busvc.dll - ok
10:11:09.0522 5648 [ C5B0324DB461559ADD070E632A6919FA ] C:\WINDOWS\SysWOW64\wbem\wbemprox.dll
10:11:09.0522 5648 C:\WINDOWS\SysWOW64\wbem\wbemprox.dll - ok
10:11:09.0524 5648 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\WINDOWS\SysWOW64\wbemcomn.dll
10:11:09.0524 5648 C:\WINDOWS\SysWOW64\wbemcomn.dll - ok
10:11:09.0526 5648 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\WINDOWS\SysWOW64\propsys.dll
10:11:09.0526 5648 C:\WINDOWS\SysWOW64\propsys.dll - ok
10:11:09.0530 5648 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\WINDOWS\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
10:11:09.0530 5648 C:\WINDOWS\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
10:11:09.0533 5648 [ 2146C133412A3E09E60D7D08CDD387DF ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symredir.dll
10:11:09.0533 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symredir.dll - ok
10:11:09.0535 5648 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\WINDOWS\SysWOW64\msxml3.dll
10:11:09.0535 5648 C:\WINDOWS\SysWOW64\msxml3.dll - ok
10:11:09.0538 5648 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
10:11:09.0538 5648 C:\WINDOWS\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
10:11:09.0541 5648 [ CB1C8439ED43D461C52928F7F8C13E8D ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bucomm.dll
10:11:09.0541 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bucomm.dll - ok
10:11:09.0544 5648 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\WINDOWS\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
10:11:09.0544 5648 C:\WINDOWS\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
10:11:09.0547 5648 [ 5D0883F60FA3E3E6BADBDF4671EDC037 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bueng.dll
10:11:09.0547 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bueng.dll - ok
10:11:09.0553 5648 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
10:11:09.0553 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
10:11:09.0556 5648 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\WINDOWS\SysWOW64\credssp.dll
10:11:09.0556 5648 C:\WINDOWS\SysWOW64\credssp.dll - ok
10:11:09.0558 5648 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] C:\Program Files (x86)\Skype\Updater\Updater.exe
10:11:09.0558 5648 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
10:11:09.0561 5648 [ 6A9A804175AC6015F8843838D1FB9970 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sndsvc.dll
10:11:09.0561 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sndsvc.dll - ok
10:11:09.0565 5648 [ 378D2F34B3E266BC15A54DD3A7664614 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\isDataPr.dll
10:11:09.0565 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\isDataPr.dll - ok
10:11:09.0568 5648 [ A10F446963B39EEAB50868944A3D8E99 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symrdrsv.dll
10:11:09.0568 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symrdrsv.dll - ok
10:11:09.0571 5648 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\WINDOWS\System32\drivers\srvnet.sys
10:11:09.0571 5648 C:\WINDOWS\System32\drivers\srvnet.sys - ok
10:11:09.0574 5648 [ 618C716D47910C575F89F22A17EF303E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\hncore.dll
10:11:09.0574 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\hncore.dll - ok
10:11:09.0576 5648 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\WINDOWS\SysWOW64\svchost.exe
10:11:09.0576 5648 C:\WINDOWS\SysWOW64\svchost.exe - ok
10:11:09.0579 5648 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\WINDOWS\SysWOW64\actxprxy.dll
10:11:09.0579 5648 C:\WINDOWS\SysWOW64\actxprxy.dll - ok
10:11:09.0581 5648 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\WINDOWS\System32\drivers\tcpipreg.sys
10:11:09.0581 5648 C:\WINDOWS\System32\drivers\tcpipreg.sys - ok
10:11:09.0584 5648 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\WINDOWS\System32\wiaservc.dll
10:11:09.0584 5648 C:\WINDOWS\System32\wiaservc.dll - ok
10:11:09.0586 5648 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\WINDOWS\System32\sysmain.dll
10:11:09.0586 5648 C:\WINDOWS\System32\sysmain.dll - ok
10:11:09.0589 5648 [ A2A729F6925252E3DB9ADF3E4FA39A48 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symneti.dll
10:11:09.0589 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symneti.dll - ok
10:11:09.0592 5648 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
10:11:09.0592 5648 C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
10:11:09.0595 5648 [ 1C9D80CC3849B3788048078C26486E1A ] C:\WINDOWS\System32\w32time.dll
10:11:09.0595 5648 C:\WINDOWS\System32\w32time.dll - ok
10:11:09.0598 5648 [ EFAD4EBB5C0F3359A76E54B4FD5884D9 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\appmgr32.dll
10:11:09.0598 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\appmgr32.dll - ok
10:11:09.0600 5648 [ 19B07E7E8915D701225DA41CB3877306 ] C:\WINDOWS\System32\wbem\WMIsvc.dll
10:11:09.0600 5648 C:\WINDOWS\System32\wbem\WMIsvc.dll - ok
10:11:09.0603 5648 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\WINDOWS\System32\trkwks.dll
10:11:09.0603 5648 C:\WINDOWS\System32\trkwks.dll - ok
10:11:09.0606 5648 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\WINDOWS\SysWOW64\logoncli.dll
10:11:09.0606 5648 C:\WINDOWS\SysWOW64\logoncli.dll - ok
10:11:09.0608 5648 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\WINDOWS\SysWOW64\wiatrace.dll
10:11:09.0608 5648 C:\WINDOWS\SysWOW64\wiatrace.dll - ok
10:11:09.0610 5648 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\WINDOWS\System32\wiatrace.dll
10:11:09.0610 5648 C:\WINDOWS\System32\wiatrace.dll - ok
10:11:09.0613 5648 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\WINDOWS\SysWOW64\cryptdll.dll
10:11:09.0613 5648 C:\WINDOWS\SysWOW64\cryptdll.dll - ok
10:11:09.0616 5648 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\WINDOWS\System32\wbemcomn.dll
10:11:09.0616 5648 C:\WINDOWS\System32\wbemcomn.dll - ok
10:11:09.0619 5648 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\WINDOWS\SysWOW64\rtutils.dll
10:11:09.0619 5648 C:\WINDOWS\SysWOW64\rtutils.dll - ok
10:11:09.0621 5648 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
10:11:09.0621 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
10:11:09.0624 5648 [ 421553807EA94BB1DA98FC73643B733A ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ncw.dll
10:11:09.0624 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ncw.dll - ok
10:11:09.0627 5648 [ 13337A3FB17F2242487FD45488ED0485 ] C:\WINDOWS\SysWOW64\vssapi.dll
10:11:09.0627 5648 C:\WINDOWS\SysWOW64\vssapi.dll - ok
10:11:09.0630 5648 [ B5B2896034D8ADEBD79E0C281B52508F ] C:\WINDOWS\AppPatch\AcGenral.dll
10:11:09.0630 5648 C:\WINDOWS\AppPatch\AcGenral.dll - ok
10:11:09.0632 5648 [ 701C9EB15E1E23D22F7C7184C0506673 ] C:\WINDOWS\SysWOW64\wbem\WmiDcPrv.dll
10:11:09.0632 5648 C:\WINDOWS\SysWOW64\wbem\WmiDcPrv.dll - ok
10:11:09.0635 5648 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\WINDOWS\SysWOW64\msv1_0.dll
10:11:09.0635 5648 C:\WINDOWS\SysWOW64\msv1_0.dll - ok
10:11:09.0638 5648 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\WINDOWS\System32\wbem\WmiDcPrv.dll
10:11:09.0638 5648 C:\WINDOWS\System32\wbem\WmiDcPrv.dll - ok
10:11:09.0640 5648 [ B940289C83121046BD6A60ACC6028593 ] C:\WINDOWS\SysWOW64\vsstrace.dll
10:11:09.0641 5648 C:\WINDOWS\SysWOW64\vsstrace.dll - ok
10:11:09.0643 5648 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\WINDOWS\SysWOW64\samcli.dll
10:11:09.0643 5648 C:\WINDOWS\SysWOW64\samcli.dll - ok
10:11:09.0646 5648 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\WINDOWS\SysWOW64\ntshrui.dll
10:11:09.0646 5648 C:\WINDOWS\SysWOW64\ntshrui.dll - ok
10:11:09.0649 5648 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\WINDOWS\System32\wbem\WinMgmtR.dll
10:11:09.0649 5648 C:\WINDOWS\System32\wbem\WinMgmtR.dll - ok
10:11:09.0652 5648 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
10:11:09.0652 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
10:11:09.0654 5648 [ AAF7BEB63E2CC499834B608A85A55E4E ] C:\WINDOWS\SysWOW64\wsdchngr.dll
10:11:09.0655 5648 C:\WINDOWS\SysWOW64\wsdchngr.dll - ok
10:11:09.0658 5648 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\WINDOWS\SysWOW64\msacm32.dll
10:11:09.0658 5648 C:\WINDOWS\SysWOW64\msacm32.dll - ok
10:11:09.0661 5648 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\WINDOWS\System32\wsdchngr.dll
10:11:09.0661 5648 C:\WINDOWS\System32\wsdchngr.dll - ok
10:11:09.0664 5648 [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\WINDOWS\SysWOW64\fundisc.dll
10:11:09.0664 5648 C:\WINDOWS\SysWOW64\fundisc.dll - ok
10:11:09.0667 5648 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\WINDOWS\SysWOW64\wbem\fastprox.dll
10:11:09.0667 5648 C:\WINDOWS\SysWOW64\wbem\fastprox.dll - ok
10:11:09.0669 5648 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\WINDOWS\System32\fundisc.dll
10:11:09.0669 5648 C:\WINDOWS\System32\fundisc.dll - ok
10:11:09.0672 5648 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\WINDOWS\SysWOW64\sfc.dll
10:11:09.0672 5648 C:\WINDOWS\SysWOW64\sfc.dll - ok
10:11:09.0674 5648 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
10:11:09.0674 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
10:11:09.0677 5648 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\WINDOWS\System32\wbem\fastprox.dll
10:11:09.0677 5648 C:\WINDOWS\System32\wbem\fastprox.dll - ok
10:11:09.0679 5648 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\WINDOWS\SysWOW64\atl.dll
10:11:09.0679 5648 C:\WINDOWS\SysWOW64\atl.dll - ok
10:11:09.0681 5648 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\WINDOWS\SysWOW64\sfc_os.dll
10:11:09.0681 5648 C:\WINDOWS\SysWOW64\sfc_os.dll - ok
10:11:09.0684 5648 [ 4E8374EA870FF75CFCA9759A16F09EDC ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avmodule.dll
10:11:09.0684 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avmodule.dll - ok
10:11:09.0686 5648 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\WINDOWS\System32\msxml6.dll
10:11:09.0687 5648 C:\WINDOWS\System32\msxml6.dll - ok
10:11:09.0689 5648 [ E3E811471DE781900FF21C1FD84E941E ] C:\WINDOWS\SysWOW64\ntdsapi.dll
10:11:09.0689 5648 C:\WINDOWS\SysWOW64\ntdsapi.dll - ok
10:11:09.0691 5648 [ EE26D130808D16C0E417BBBED0451B34 ] C:\WINDOWS\System32\ntdsapi.dll
10:11:09.0691 5648 C:\WINDOWS\System32\ntdsapi.dll - ok
10:11:09.0694 5648 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
10:11:09.0694 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
10:11:09.0696 5648 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\WINDOWS\System32\wbem\wbemprox.dll
10:11:09.0696 5648 C:\WINDOWS\System32\wbem\wbemprox.dll - ok
10:11:09.0699 5648 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\WINDOWS\System32\fdPnp.dll
10:11:09.0699 5648 C:\WINDOWS\System32\fdPnp.dll - ok
10:11:09.0701 5648 [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\WINDOWS\SysWOW64\fdPnp.dll
10:11:09.0701 5648 C:\WINDOWS\SysWOW64\fdPnp.dll - ok
10:11:09.0704 5648 [ 022E082550DB4ABA33AAF06DD1C9048D ] C:\WINDOWS\System32\CNQ2414C.dll
10:11:09.0704 5648 C:\WINDOWS\System32\CNQ2414C.dll - ok
10:11:09.0706 5648 [ 460DB20D7693499A7AC641D4E3E9BB38 ] C:\WINDOWS\SysWOW64\CNQ2414L.dll
10:11:09.0706 5648 C:\WINDOWS\SysWOW64\CNQ2414L.dll - ok
10:11:09.0710 5648 [ 3C75BBDAF02AEEC247DF1A2861BB0D28 ] C:\WINDOWS\System32\CNQ2414L.dll
10:11:09.0710 5648 C:\WINDOWS\System32\CNQ2414L.dll - ok
10:11:09.0712 5648 [ 42055125F06DFE49A5F7D690A3A48428 ] C:\WINDOWS\twain_32\CNQ2414\SG_ENU.dll
10:11:09.0712 5648 C:\WINDOWS\twain_32\CNQ2414\SG_ENU.dll - ok
10:11:09.0714 5648 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\WINDOWS\SysWOW64\dsrole.dll
10:11:09.0714 5648 C:\WINDOWS\SysWOW64\dsrole.dll - ok
10:11:09.0717 5648 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\WINDOWS\SysWOW64\slc.dll
10:11:09.0717 5648 C:\WINDOWS\SysWOW64\slc.dll - ok
10:11:09.0720 5648 [ A329EE5A003E92538DF55D72CAF17A80 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\defutdcd.dll
10:11:09.0720 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\defutdcd.dll - ok
10:11:09.0723 5648 [ EE08B2980F2E472A70E7CB639A8F930E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avpsvc32.dll
10:11:09.0723 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avpsvc32.dll - ok
10:11:09.0725 5648 [ 7735DB4DA857915D4270D0C3B36F083B ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltpe.dll
10:11:09.0725 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltpe.dll - ok
10:11:09.0728 5648 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\WINDOWS\SysWOW64\ktmw32.dll
10:11:09.0728 5648 C:\WINDOWS\SysWOW64\ktmw32.dll - ok
10:11:09.0731 5648 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\WINDOWS\SysWOW64\mscoree.dll
10:11:09.0731 5648 C:\WINDOWS\SysWOW64\mscoree.dll - ok
10:11:09.0734 5648 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\WINDOWS\SysWOW64\msimg32.dll
10:11:09.0734 5648 C:\WINDOWS\SysWOW64\msimg32.dll - ok
10:11:09.0738 5648 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\WINDOWS\SysWOW64\comdlg32.dll
10:11:09.0738 5648 C:\WINDOWS\SysWOW64\comdlg32.dll - ok
10:11:09.0741 5648 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
10:11:09.0741 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
10:11:09.0744 5648 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
10:11:09.0744 5648 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
10:11:09.0746 5648 [ 0B6118058942961D504AAEA04FECB116 ] C:\WINDOWS\SysWOW64\ieframe.dll
10:11:09.0746 5648 C:\WINDOWS\SysWOW64\ieframe.dll - ok
10:11:09.0750 5648 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
10:11:09.0750 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
10:11:09.0752 5648 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
10:11:09.0752 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
10:11:09.0755 5648 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
10:11:09.0755 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
10:11:09.0758 5648 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\WINDOWS\SysWOW64\oledlg.dll
10:11:09.0758 5648 C:\WINDOWS\SysWOW64\oledlg.dll - ok
10:11:09.0761 5648 [ 7717F84F483002815490033BF069DABD ] C:\WINDOWS\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
10:11:09.0761 5648 C:\WINDOWS\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
10:11:09.0766 5648 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
10:11:09.0766 5648 C:\WINDOWS\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
10:11:09.0768 5648 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\WINDOWS\SysWOW64\oleacc.dll
10:11:09.0768 5648 C:\WINDOWS\SysWOW64\oleacc.dll - ok
10:11:09.0771 5648 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\WINDOWS\AppPatch\AcLayers.dll
10:11:09.0771 5648 C:\WINDOWS\AppPatch\AcLayers.dll - ok
10:11:09.0774 5648 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\WINDOWS\SysWOW64\samlib.dll
10:11:09.0774 5648 C:\WINDOWS\SysWOW64\samlib.dll - ok
10:11:09.0778 5648 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:11:09.0778 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
10:11:09.0781 5648 [ 08C2957BB30058E663720C5606885653 ] C:\WINDOWS\System32\iphlpsvc.dll
10:11:09.0781 5648 C:\WINDOWS\System32\iphlpsvc.dll - ok
10:11:09.0784 5648 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
10:11:09.0784 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
10:11:09.0787 5648 [ 3F50200237961034FACE602373838980 ] C:\WINDOWS\SysWOW64\FirewallAPI.dll
10:11:09.0787 5648 C:\WINDOWS\SysWOW64\FirewallAPI.dll - ok
10:11:09.0789 5648 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
10:11:09.0790 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
10:11:09.0792 5648 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
10:11:09.0792 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
10:11:09.0795 5648 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
10:11:09.0795 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
10:11:09.0798 5648 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
10:11:09.0798 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
10:11:09.0801 5648 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
10:11:09.0801 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
10:11:09.0803 5648 [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\WINDOWS\SysWOW64\sqmapi.dll
10:11:09.0803 5648 C:\WINDOWS\SysWOW64\sqmapi.dll - ok
10:11:09.0806 5648 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\WINDOWS\SysWOW64\riched20.dll
10:11:09.0806 5648 C:\WINDOWS\SysWOW64\riched20.dll - ok
10:11:09.0809 5648 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
10:11:09.0809 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
10:11:09.0811 5648 [ 27B9E163740A226B65E4B9E186117911 ] C:\WINDOWS\System32\sqmapi.dll
10:11:09.0811 5648 C:\WINDOWS\System32\sqmapi.dll - ok
10:11:09.0814 5648 [ 162D247E995EAEBF3EF4289069E1111C ] C:\WINDOWS\SysWOW64\devrtl.dll
10:11:09.0814 5648 C:\WINDOWS\SysWOW64\devrtl.dll - ok
10:11:09.0816 5648 [ A399514D3B28C9A3453A486BBAAFF1C7 ] C:\WINDOWS\SysWOW64\wdscore.dll
10:11:09.0816 5648 C:\WINDOWS\SysWOW64\wdscore.dll - ok
10:11:09.0819 5648 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\WINDOWS\System32\wdscore.dll
10:11:09.0819 5648 C:\WINDOWS\System32\wdscore.dll - ok
10:11:09.0822 5648 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
10:11:09.0822 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
10:11:09.0824 5648 [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\WINDOWS\SysWOW64\netcfgx.dll
10:11:09.0824 5648 C:\WINDOWS\SysWOW64\netcfgx.dll - ok
10:11:09.0827 5648 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
10:11:09.0827 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
10:11:09.0830 5648 [ 03706015DB44368375AEBE6339490E66 ] C:\WINDOWS\System32\netcfgx.dll
10:11:09.0830 5648 C:\WINDOWS\System32\netcfgx.dll - ok
10:11:09.0833 5648 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\WINDOWS\SysWOW64\SensApi.dll
10:11:09.0833 5648 C:\WINDOWS\SysWOW64\SensApi.dll - ok
10:11:09.0835 5648 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\WINDOWS\SysWOW64\cryptnet.dll
10:11:09.0835 5648 C:\WINDOWS\SysWOW64\cryptnet.dll - ok
10:11:09.0838 5648 [ 6383C60EC0133B14F5705F96369421B2 ] C:\WINDOWS\SysWOW64\hnetcfg.dll
10:11:09.0838 5648 C:\WINDOWS\SysWOW64\hnetcfg.dll - ok
10:11:09.0841 5648 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
10:11:09.0841 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
10:11:09.0843 5648 [ 3B367397320C26DBA890B260F80D1B1B ] C:\WINDOWS\System32\hnetcfg.dll
10:11:09.0843 5648 C:\WINDOWS\System32\hnetcfg.dll - ok
10:11:09.0846 5648 [ FFC9128367BA19F175562CAFE23BAF8F ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ducclib.dll
10:11:09.0846 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ducclib.dll - ok
10:11:09.0849 5648 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\WINDOWS\System32\drivers\srv2.sys
10:11:09.0849 5648 C:\WINDOWS\System32\drivers\srv2.sys - ok
10:11:09.0851 5648 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\WINDOWS\SysWOW64\netprofm.dll
10:11:09.0851 5648 C:\WINDOWS\SysWOW64\netprofm.dll - ok
10:11:09.0854 5648 [ 780836BB63852990382DF27DE7FEFD20 ] C:\WINDOWS\System32\bcdedit.exe
10:11:09.0854 5648 C:\WINDOWS\System32\bcdedit.exe - ok
10:11:09.0857 5648 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
10:11:09.0857 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
10:11:09.0860 5648 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\WINDOWS\System32\wscsvc.dll
10:11:09.0860 5648 C:\WINDOWS\System32\wscsvc.dll - ok
10:11:09.0862 5648 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\WINDOWS\System32\drivers\Sftredirlh.sys
10:11:09.0862 5648 C:\WINDOWS\System32\drivers\Sftredirlh.sys - ok
10:11:09.0865 5648 [ 876AFFC7ED37A39109E85E32947ABBF7 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\NAVENG32.DLL
10:11:09.0865 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\NAVENG32.DLL - ok
10:11:09.0869 5648 [ AF78F66116814FDD6677CEBD73035CDD ] C:\WINDOWS\SysWOW64\schannel.dll
10:11:09.0869 5648 C:\WINDOWS\SysWOW64\schannel.dll - ok
10:11:09.0871 5648 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\WINDOWS\SysWOW64\dssenh.dll
10:11:09.0871 5648 C:\WINDOWS\SysWOW64\dssenh.dll - ok
10:11:09.0874 5648 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\WINDOWS\System32\dssenh.dll
10:11:09.0874 5648 C:\WINDOWS\System32\dssenh.dll - ok
10:11:09.0877 5648 [ 9A69BFE3B99D31B9B0ACBF72583DE694 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sqsvc.dll
10:11:09.0877 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sqsvc.dll - ok
10:11:09.0880 5648 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\WINDOWS\SysWOW64\nlaapi.dll
10:11:09.0880 5648 C:\WINDOWS\SysWOW64\nlaapi.dll - ok
10:11:09.0884 5648 [ 45D9F6CD2469CDB6A640DD4BD2B01471 ] C:\WINDOWS\SysWOW64\nci.dll
10:11:09.0884 5648 C:\WINDOWS\SysWOW64\nci.dll - ok
10:11:09.0887 5648 [ 6963189184AE11B9E552FD59E6972F0D ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avifc.dll
10:11:09.0887 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avifc.dll - ok
10:11:09.0890 5648 [ FEB91B4DA0D540865260A33838654FA3 ] C:\WINDOWS\System32\nci.dll
10:11:09.0890 5648 C:\WINDOWS\System32\nci.dll - ok
10:11:09.0893 5648 [ 18F2D656D28363939DEE16ADE2F7F127 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bhclient.dll
10:11:09.0893 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bhclient.dll - ok
10:11:09.0895 5648 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\WINDOWS\System32\wbem\wbemcore.dll
10:11:09.0895 5648 C:\WINDOWS\System32\wbem\wbemcore.dll - ok
10:11:09.0898 5648 [ 5949989FFE62C5EC8B91B9A37D658B90 ] C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe
10:11:09.0898 5648 C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe - ok
10:11:09.0901 5648 [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\WINDOWS\SysWOW64\wbem\esscli.dll
10:11:09.0901 5648 C:\WINDOWS\SysWOW64\wbem\esscli.dll - ok
10:11:09.0904 5648 [ C37DA71CC1666F1034C1E53D55825B7F ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avmail.dll
10:11:09.0904 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avmail.dll - ok
10:11:09.0907 5648 [ 087D8668C71634A3A3761135ABF16EEE ] C:\WINDOWS\System32\wbem\esscli.dll
10:11:09.0907 5648 C:\WINDOWS\System32\wbem\esscli.dll - ok
10:11:09.0912 5648 [ 8B6D1DF2AE9B007387A3CBC31A6D5CB6 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\asengine.dll
10:11:09.0912 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\asengine.dll - ok
10:11:09.0914 5648 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\WINDOWS\SysWOW64\wbem\wbemsvc.dll
10:11:09.0914 5648 C:\WINDOWS\SysWOW64\wbem\wbemsvc.dll - ok
10:11:09.0917 5648 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\WINDOWS\System32\wbem\wbemsvc.dll
10:11:09.0917 5648 C:\WINDOWS\System32\wbem\wbemsvc.dll - ok
10:11:09.0920 5648 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\WINDOWS\SysWOW64\dnsapi.dll
10:11:09.0920 5648 C:\WINDOWS\SysWOW64\dnsapi.dll - ok
10:11:09.0923 5648 [ 5610B0425518D185331CB8E968D060E6 ] C:\WINDOWS\SysWOW64\wbem\wmiutils.dll
10:11:09.0923 5648 C:\WINDOWS\SysWOW64\wbem\wmiutils.dll - ok
10:11:09.0926 5648 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\WINDOWS\System32\wbem\wmiutils.dll
10:11:09.0926 5648 C:\WINDOWS\System32\wbem\wmiutils.dll - ok
10:11:09.0929 5648 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
10:11:09.0929 5648 C:\Program Files\Bonjour\mdnsNSP.dll - ok
10:11:09.0932 5648 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\WINDOWS\System32\wbem\repdrvfs.dll
10:11:09.0932 5648 C:\WINDOWS\System32\wbem\repdrvfs.dll - ok
10:11:09.0935 5648 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\WINDOWS\System32\wbem\WmiPrvSD.dll
10:11:09.0935 5648 C:\WINDOWS\System32\wbem\WmiPrvSD.dll - ok
10:11:09.0938 5648 [ A4CC7227A452C4909F9499D91B184364 ] C:\WINDOWS\SysWOW64\ncobjapi.dll
10:11:09.0938 5648 C:\WINDOWS\SysWOW64\ncobjapi.dll - ok
10:11:09.0940 5648 [ 7F21DA4760CE9B4B1B12CBC58C2A642A ] C:\WINDOWS\SysWOW64\apisetschema.dll
10:11:09.0940 5648 C:\WINDOWS\SysWOW64\apisetschema.dll - ok
10:11:09.0943 5648 [ D2F7A0ADC2EE0F65AB1F19D2E00C16B8 ] C:\WINDOWS\SysWOW64\sc.exe
10:11:09.0943 5648 C:\WINDOWS\SysWOW64\sc.exe - ok
10:11:09.0946 5648 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
10:11:09.0946 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
10:11:09.0950 5648 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
10:11:09.0950 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
10:11:09.0953 5648 [ 9D7D3F1FC08F765C9D0319A4AE01B2E4 ] C:\Program Files (x86)\Constant Guard Protection Suite\PluginCore.dll
10:11:09.0953 5648 C:\Program Files (x86)\Constant Guard Protection Suite\PluginCore.dll - ok
10:11:09.0956 5648 [ 7765680E25E329708CB034B180CF9FCD ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
10:11:09.0957 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
10:11:09.0959 5648 [ 52D2CA4EBC69FF163D011140F86C3489 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\571b85634abf2fba6bab80c21a347081\System.Xml.ni.dll
10:11:09.0959 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\571b85634abf2fba6bab80c21a347081\System.Xml.ni.dll - ok
10:11:09.0963 5648 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
10:11:09.0963 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
10:11:09.0966 5648 [ 3DFF0C51DDD9B1A5B4F5186F2B542807 ] C:\Program Files (x86)\Constant Guard Protection Suite\IdVaultCore.dll
10:11:09.0966 5648 C:\Program Files (x86)\Constant Guard Protection Suite\IdVaultCore.dll - ok
10:11:09.0969 5648 [ 1E3CB1435EC745058628AE40FEA9F471 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
10:11:09.0969 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll - ok
10:11:09.0972 5648 [ F4A85ECD7322A834AA764B09519866DD ] C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvcLib.dll
10:11:09.0973 5648 C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvcLib.dll - ok
10:11:09.0976 5648 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
10:11:09.0976 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
10:11:09.0979 5648 [ EE74A0FF7C5752E49911986F22BBAEEF ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
10:11:09.0979 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll - ok
10:11:09.0982 5648 [ DACDAFCC3AA61AFC6D3C50BC28EC753C ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\qsplugin.dll
10:11:09.0982 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\qsplugin.dll - ok
10:11:09.0985 5648 [ 8F233549D204B3B557613DEF847E60F7 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltlms.dll
10:11:09.0985 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltlms.dll - ok
10:11:09.0987 5648 [ 1FD37C00535502429DD964EC53D66FB8 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bhsvcplg.dll
10:11:09.0987 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\bhsvcplg.dll - ok
10:11:09.0990 5648 [ 5C0EDB94D4C363FE711500F3C3234412 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\tudatapr.dll
10:11:09.0990 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\tudatapr.dll - ok
10:11:09.0993 5648 [ 6A30447888A32EC1E789B512F17E2AEB ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\spocclnt.dll
10:11:09.0993 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\spocclnt.dll - ok
10:11:09.0995 5648 [ 3BF2BA1D4AB36149C34CC89B7792A811 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\dscli.dll
10:11:09.0995 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\dscli.dll - ok
10:11:09.0998 5648 [ CA0D17C1DD55F0832F405FBC4E8B8849 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\datastor.dll
10:11:09.0998 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\datastor.dll - ok
10:11:10.0001 5648 [ 1EB1EC4C57B8DDBB9598FC040D4C75B2 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sqlite.dll
10:11:10.0001 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sqlite.dll - ok
10:11:10.0004 5648 [ D91EE56D00661C87EE7DEB547093CC9E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\comm.dll
10:11:10.0004 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\comm.dll - ok
10:11:10.0006 5648 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\WINDOWS\System32\ncobjapi.dll
10:11:10.0006 5648 C:\WINDOWS\System32\ncobjapi.dll - ok
10:11:10.0009 5648 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\WINDOWS\System32\wbem\wbemess.dll
10:11:10.0009 5648 C:\WINDOWS\System32\wbem\wbemess.dll - ok
10:11:10.0011 5648 [ 23511B7C2D462D4D1D0F69707A68B211 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\nahelper.dll
10:11:10.0011 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\nahelper.dll - ok
10:11:10.0014 5648 [ C5D664FCEFE3B7E1541B38529A9E994A ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ipsplug.dll
10:11:10.0014 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ipsplug.dll - ok
10:11:10.0017 5648 [ 14D289F63D9538306CB560C4CD12172F ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130426.001\IDSxpx86.dll
10:11:10.0017 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130426.001\IDSxpx86.dll - ok
10:11:10.0019 5648 [ 8B09F292C71D2BEDDEEF3C5466D42A6C ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\isdatasv.dll
10:11:10.0019 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\isdatasv.dll - ok
10:11:10.0022 5648 [ 556241BBC3F4B22EAFB5FE301824A0B7 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\codatapr.dll
10:11:10.0022 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\codatapr.dll - ok
10:11:10.0025 5648 [ C76DD749BFD788CE22557EA0CA009332 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\coshdobj.dll
10:11:10.0025 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\coshdobj.dll - ok
10:11:10.0027 5648 [ 5B2B0479AB99D21306D7D3827AB2C022 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\budatacl.dll
10:11:10.0027 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\budatacl.dll - ok
10:11:10.0030 5648 [ 5CCE0787CAFAC66ECE38D5DD0CF705FA ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwcore.dll
10:11:10.0030 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwcore.dll - ok
10:11:10.0033 5648 [ 7446F60479ACD132F142FECDE892D81E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\proxyclt.dll
10:11:10.0033 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\proxyclt.dll - ok
10:11:10.0035 5648 [ 1E3E02A9F1457E8084199CACCFDB0CC2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130412.001\BHEngine.dll
10:11:10.0035 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130412.001\BHEngine.dll - ok
10:11:10.0038 5648 [ 2AB78E9B2E37475C4137FF6C58EC4A49 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwgenplg.dll
10:11:10.0038 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwgenplg.dll - ok
10:11:10.0041 5648 [ 53641905572A3503CB2C3DE25EA6DC56 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwsetup.dll
10:11:10.0041 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwsetup.dll - ok
10:11:10.0044 5648 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\WINDOWS\SysWOW64\shfolder.dll
10:11:10.0044 5648 C:\WINDOWS\SysWOW64\shfolder.dll - ok
10:11:10.0047 5648 [ 996C6E958FD4981C2C44F3C754A23F44 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\idsaux.dll
10:11:10.0047 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\idsaux.dll - ok
10:11:10.0049 5648 [ 335FF3E253F33D774BE397DBC8BDD654 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\npctray.dll
10:11:10.0049 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\npctray.dll - ok
10:11:10.0052 5648 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130426.001\IPSFFPl.dll
10:11:10.0052 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130426.001\IPSFFPl.dll - ok
10:11:10.0055 5648 [ DE955485DF0140A80C079C925EA1F961 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\uimain.dll
10:11:10.0055 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\uimain.dll - ok
10:11:10.0059 5648 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\WINDOWS\SysWOW64\d3d9.dll
10:11:10.0059 5648 C:\WINDOWS\SysWOW64\d3d9.dll - ok
10:11:10.0061 5648 [ 77B1471A490B53B24EFE136F09F76550 ] C:\WINDOWS\SysWOW64\d3d8thk.dll
10:11:10.0061 5648 C:\WINDOWS\SysWOW64\d3d8thk.dll - ok
10:11:10.0064 5648 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFFPlgn\components\IPSFFPl.dll
10:11:10.0065 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFFPlgn\components\IPSFFPl.dll - ok
10:11:10.0068 5648 [ 90272C1F29116D119655B70D1E3F4EE9 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symhtmdx.dll
10:11:10.0068 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symhtmdx.dll - ok
10:11:10.0071 5648 [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe
10:11:10.0071 5648 C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe - ok
10:11:10.0074 5648 [ 4277F5164DE9B7C665BB928B9145BEE0 ] C:\WINDOWS\SysWOW64\DWrite.dll
10:11:10.0074 5648 C:\WINDOWS\SysWOW64\DWrite.dll - ok
10:11:10.0076 5648 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\WINDOWS\System32\wbem\WmiPrvSE.exe
10:11:10.0076 5648 C:\WINDOWS\System32\wbem\WmiPrvSE.exe - ok
10:11:10.0080 5648 [ A0617B5753E31126AD29C03154F4F329 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll
10:11:10.0080 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
10:11:10.0083 5648 [ 51D2F66C0C55419CA4A797C8D1B0AD8D ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
10:11:10.0083 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll - ok
10:11:10.0087 5648 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
10:11:10.0087 5648 C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
10:11:10.0090 5648 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\WINDOWS\SysWOW64\rasadhlp.dll
10:11:10.0090 5648 C:\WINDOWS\SysWOW64\rasadhlp.dll - ok
10:11:10.0093 5648 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\WINDOWS\System32\rasadhlp.dll
10:11:10.0093 5648 C:\WINDOWS\System32\rasadhlp.dll - ok
10:11:10.0096 5648 [ A7174C768B031F370757BF9B0092EB31 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\wscstub.exe
10:11:10.0096 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\wscstub.exe - ok
10:11:10.0098 5648 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\WINDOWS\System32\p2pcollab.dll
10:11:10.0098 5648 C:\WINDOWS\System32\p2pcollab.dll - ok
10:11:10.0101 5648 [ 582AC6D9873E31DFA28A4547270862DD ] C:\WINDOWS\System32\QAGENTRT.DLL
10:11:10.0101 5648 C:\WINDOWS\System32\QAGENTRT.DLL - ok
10:11:10.0103 5648 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\WINDOWS\System32\fveui.dll
10:11:10.0103 5648 C:\WINDOWS\System32\fveui.dll - ok
10:11:10.0106 5648 [ C916116D04CEEFCEF1B5A046123E431C ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\distrptr.dll
10:11:10.0106 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\distrptr.dll - ok
10:11:10.0109 5648 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
10:11:10.0109 5648 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
10:11:10.0112 5648 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\csc.exe
10:11:10.0112 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
10:11:10.0114 5648 [ 220159496484D34009DE71CA1A68E0D4 ] C:\WINDOWS\System32\wbem\NCProv.dll
10:11:10.0114 5648 C:\WINDOWS\System32\wbem\NCProv.dll - ok
10:11:10.0117 5648 [ 3C1936A12C62254F914A01BBC6A8DC69 ] C:\WINDOWS\SysWOW64\d3d10_1.dll
10:11:10.0117 5648 C:\WINDOWS\SysWOW64\d3d10_1.dll - ok
10:11:10.0120 5648 [ 291AF50F1AE4F7BC8F8CCFA7CF65C4D5 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ispwd.dll
10:11:10.0120 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ispwd.dll - ok
10:11:10.0124 5648 [ EF982260A3102B065D94F1E5959EC8B9 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\dd20416f723ee13ffb4173ec1afc4ec4\System.Data.ni.dll
10:11:10.0124 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\dd20416f723ee13ffb4173ec1afc4ec4\System.Data.ni.dll - ok
10:11:10.0127 5648 [ 7D4DC95A1F5E0818E74A399960569EA1 ] C:\WINDOWS\SysWOW64\wuapi.dll
10:11:10.0127 5648 C:\WINDOWS\SysWOW64\wuapi.dll - ok
10:11:10.0130 5648 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
10:11:10.0130 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
10:11:10.0133 5648 [ D4212AB475A3B25EC4DF574536C3EDC5 ] C:\WINDOWS\SysWOW64\d3d10_1core.dll
10:11:10.0133 5648 C:\WINDOWS\SysWOW64\d3d10_1core.dll - ok
10:11:10.0135 5648 [ D4F264FE23F8953D840904418220C15E ] C:\WINDOWS\SysWOW64\dxgi.dll
10:11:10.0135 5648 C:\WINDOWS\SysWOW64\dxgi.dll - ok
10:11:10.0138 5648 [ AB77DCB4E93BDAEA27AC56B11FE1CEE3 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\buprov.dll
10:11:10.0138 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\buprov.dll - ok
10:11:10.0141 5648 [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4 ] C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
10:11:10.0141 5648 C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
10:11:10.0144 5648 [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\WINDOWS\SysWOW64\d3d11.dll
10:11:10.0144 5648 C:\WINDOWS\SysWOW64\d3d11.dll - ok
10:11:10.0147 5648 [ 4FC36B1BA8C8642EDD310A93D36008B1 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\gwrks32.dll
10:11:10.0147 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\gwrks32.dll - ok
10:11:10.0150 5648 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\WINDOWS\System32\wbem\wmiprov.dll
10:11:10.0150 5648 C:\WINDOWS\System32\wbem\wmiprov.dll - ok
10:11:10.0153 5648 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\WINDOWS\System32\wuapi.dll
10:11:10.0153 5648 C:\WINDOWS\System32\wuapi.dll - ok
10:11:10.0155 5648 [ 00120204D347C4FECE76F18E2A2EE295 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\gearaw32.dll
10:11:10.0155 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\gearaw32.dll - ok
10:11:10.0158 5648 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] C:\WINDOWS\System32\drivers\acpi.sys
10:11:10.0158 5648 C:\WINDOWS\System32\drivers\acpi.sys - ok
10:11:10.0161 5648 [ E139610FCEE825F15626C79A2AFE9FF1 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwhelper.dll
10:11:10.0161 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwhelper.dll - ok
10:11:10.0164 5648 [ D2D7E13F2702AC32EB95B386178E67E6 ] C:\WINDOWS\System32\igdumd64.dll
10:11:10.0164 5648 C:\WINDOWS\System32\igdumd64.dll - ok
10:11:10.0167 5648 [ 760E38053BF56E501D562B70AD796B88 ] C:\WINDOWS\System32\drivers\ndis.sys
10:11:10.0167 5648 C:\WINDOWS\System32\drivers\ndis.sys - ok
10:11:10.0169 5648 [ C31D4483AF606DD707FB77EBA6E037BE ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltlmh.exe
10:11:10.0169 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltlmh.exe - ok
10:11:10.0172 5648 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
10:11:10.0172 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
10:11:10.0175 5648 [ 8ADBD72F4DC0EB90CFD37763BE3ECB27 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
10:11:10.0175 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll - ok
10:11:10.0177 5648 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\alink.dll
10:11:10.0177 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
10:11:10.0180 5648 [ 7FD4BC81F660AB157AC7A3BC0CDE9303 ] C:\Program Files (x86)\Constant Guard Protection Suite\CommonDotNET.dll
10:11:10.0180 5648 C:\Program Files (x86)\Constant Guard Protection Suite\CommonDotNET.dll - ok
10:11:10.0183 5648 [ 5440EE9CD44616D60CDE57EBDB286E95 ] C:\WINDOWS\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
10:11:10.0183 5648 C:\WINDOWS\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll - ok
10:11:10.0186 5648 [ 20F53F9DA0336C73616D124E48CC3387 ] C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
10:11:10.0186 5648 C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
10:11:10.0188 5648 [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\WINDOWS\SysWOW64\WindowsCodecs.dll
10:11:10.0188 5648 C:\WINDOWS\SysWOW64\WindowsCodecs.dll - ok
10:11:10.0191 5648 [ 1C5B55CDAAD2ECC2F5CC847EB8580421 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ashelper.dll
10:11:10.0191 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ashelper.dll - ok
10:11:10.0194 5648 [ 5B3FA17E1CD6FBBDF41AC34DAEECC256 ] C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
10:11:10.0194 5648 C:\WINDOWS\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll - ok
10:11:10.0198 5648 [ CFFFAAF1140F0F94CB6B824424ACDB55 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\asoehook.dll
10:11:10.0198 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\asoehook.dll - ok
10:11:10.0201 5648 [ 5259D6B68ABB8253792458FE94D9D006 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
10:11:10.0201 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll - ok
10:11:10.0204 5648 [ 8C0B098B41A27B08D58CAE7A61A3BA19 ] C:\WINDOWS\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
10:11:10.0204 5648 C:\WINDOWS\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll - ok
10:11:10.0207 5648 [ 963E668A6185A40FD0293B821B39CEF1 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avpapp32.dll
10:11:10.0207 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\avpapp32.dll - ok
10:11:10.0210 5648 [ E955300DF949977878C705EC8681009A ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
10:11:10.0210 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
10:11:10.0214 5648 [ 1511E3FF120FDC870CBEF0E71F2C63FA ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\buuiplg.dll
10:11:10.0214 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\buuiplg.dll - ok
10:11:10.0218 5648 [ C8C7DE6765F98F0F5341692991F4E75E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltaldis.dll
10:11:10.0218 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\cltaldis.dll - ok
10:11:10.0221 5648 [ 6CF16A22EE332110D0826E6819D42E38 ] C:\Program Files (x86)\Norton Security Suite\MUI\20.2.0.19\09\01\cltres.loc
10:11:10.0221 5648 C:\Program Files (x86)\Norton Security Suite\MUI\20.2.0.19\09\01\cltres.loc - ok
10:11:10.0224 5648 [ 8D79650FE1AF415D02DE87CBA6690928 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwsesal.dll
10:11:10.0224 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\fwsesal.dll - ok
10:11:10.0227 5648 [ ED797D8DC2C92401985D162E42FFA450 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
10:11:10.0227 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
10:11:10.0231 5648 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\WINDOWS\SysWOW64\ExplorerFrame.dll
10:11:10.0231 5648 C:\WINDOWS\SysWOW64\ExplorerFrame.dll - ok
10:11:10.0233 5648 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\WINDOWS\SysWOW64\duser.dll
10:11:10.0233 5648 C:\WINDOWS\SysWOW64\duser.dll - ok
10:11:10.0236 5648 [ B39B8CC163C41B12FE83E777199F3378 ] C:\WINDOWS\SysWOW64\tzres.dll
10:11:10.0236 5648 C:\WINDOWS\SysWOW64\tzres.dll - ok
10:11:10.0239 5648 [ EE06B85BC69F18826302348A2AD089E0 ] C:\WINDOWS\SysWOW64\dui70.dll
10:11:10.0239 5648 C:\WINDOWS\SysWOW64\dui70.dll - ok
10:11:10.0242 5648 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\WINDOWS\SysWOW64\taskschd.dll
10:11:10.0242 5648 C:\WINDOWS\SysWOW64\taskschd.dll - ok
10:11:10.0246 5648 [ 7EB8D9157EFBBBAF1F0EEC2C01980B53 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\coactmgr.dll
10:11:10.0246 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\coactmgr.dll - ok
10:11:10.0248 5648 [ 45D5610E63EA3EAFCE94B12EC3F3EF7E ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\wincfi39.dll
10:11:10.0248 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\wincfi39.dll - ok
10:11:10.0251 5648 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\WINDOWS\SysWOW64\wshqos.dll
10:11:10.0251 5648 C:\WINDOWS\SysWOW64\wshqos.dll - ok
10:11:10.0255 5648 [ 7A6986DD659B96398A11AF5173892715 ] C:\WINDOWS\SysWOW64\cabinet.dll
10:11:10.0255 5648 C:\WINDOWS\SysWOW64\cabinet.dll - ok
10:11:10.0258 5648 [ FA43D418BC945D27D0625B697B8442B5 ] C:\WINDOWS\System32\cabinet.dll
10:11:10.0258 5648 C:\WINDOWS\System32\cabinet.dll - ok
10:11:10.0261 5648 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\WINDOWS\System32\wbem\cimwin32.dll
10:11:10.0261 5648 C:\WINDOWS\System32\wbem\cimwin32.dll - ok
10:11:10.0264 5648 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
10:11:10.0264 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
10:11:10.0266 5648 [ FB633DCC8664E4CCACF562DB5BAE38CF ] C:\WINDOWS\SysWOW64\wups.dll
10:11:10.0266 5648 C:\WINDOWS\SysWOW64\wups.dll - ok
10:11:10.0269 5648 [ E746ED90132C6B6313CE9179F56BD31D ] C:\WINDOWS\System32\wups.dll
10:11:10.0269 5648 C:\WINDOWS\System32\wups.dll - ok
10:11:10.0272 5648 [ ECF18C562BD3604293944120CA1DC208 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\3e79256ce40faa9682f9e3511ca115ea\System.ServiceModel.ni.dll
10:11:10.0272 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\3e79256ce40faa9682f9e3511ca115ea\System.ServiceModel.ni.dll - ok
10:11:10.0275 5648 [ C679F9E548ECB2E75A2879A3AACB6104 ] C:\WINDOWS\SysWOW64\igdumdx32.dll
10:11:10.0275 5648 C:\WINDOWS\SysWOW64\igdumdx32.dll - ok
10:11:10.0278 5648 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
10:11:10.0278 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
10:11:10.0281 5648 [ 8020C0923CB26676E998D0BD246CFAEF ] C:\WINDOWS\SysWOW64\igdumd32.dll
10:11:10.0281 5648 C:\WINDOWS\SysWOW64\igdumd32.dll - ok
10:11:10.0284 5648 [ 8B1590C627138166C015A5680ABF6BB2 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
10:11:10.0284 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll - ok
10:11:10.0286 5648 [ BE39E22059A3082D5289739299C33C01 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
10:11:10.0286 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
10:11:10.0289 5648 [ A3F51E726D98510C0A9B3D9F92D0686A ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Services\64cf6c356be66bb17c4667d6d8aa467b\System.Web.Services.ni.dll
10:11:10.0289 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web.Services\64cf6c356be66bb17c4667d6d8aa467b\System.Web.Services.ni.dll - ok
10:11:10.0291 5648 [ 61B1ED5F429EFAC7E2036769870AB93E ] C:\WINDOWS\SysWOW64\certcli.dll
10:11:10.0291 5648 C:\WINDOWS\SysWOW64\certcli.dll - ok
10:11:10.0294 5648 [ F440CA42C6FA9D5A29E24C2F927134F1 ] C:\Program Files (x86)\Constant Guard Protection Suite\Plugins.Comcast.dll
10:11:10.0294 5648 C:\Program Files (x86)\Constant Guard Protection Suite\Plugins.Comcast.dll - ok
10:11:10.0298 5648 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
10:11:10.0298 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
10:11:10.0300 5648 [ F39DC6D46330AF6E73B085355E3CBCC7 ] C:\Program Files (x86)\Constant Guard Protection Suite\WebServiceProxies.dll
10:11:10.0300 5648 C:\Program Files (x86)\Constant Guard Protection Suite\WebServiceProxies.dll - ok
10:11:10.0303 5648 [ 7EC0743DBACC4F137BBAEF2E9DE05417 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\1ea01658676f73cf48ebde8e904a0464\System.Configuration.Install.ni.dll
10:11:10.0303 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\1ea01658676f73cf48ebde8e904a0464\System.Configuration.Install.ni.dll - ok
10:11:10.0306 5648 [ 794D4B48DFB6E999537C7C3947863463 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
10:11:10.0306 5648 C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe - ok
10:11:10.0310 5648 [ CD67A4A62C98DEFA693A4D79EB8282BC ] C:\WINDOWS\SysWOW64\en-US\kernel32.dll.mui
10:11:10.0310 5648 C:\WINDOWS\SysWOW64\en-US\kernel32.dll.mui - ok
10:11:10.0313 5648 [ CE7803953FE7314061B3F9188D310EB2 ] C:\WINDOWS\SysWOW64\en-US\KernelBase.dll.mui
10:11:10.0313 5648 C:\WINDOWS\SysWOW64\en-US\KernelBase.dll.mui - ok
10:11:10.0316 5648 [ D041C1DD6B60C7D8C84F11FB1A5616BF ] C:\WINDOWS\SysWOW64\en-US\sechost.dll.mui
10:11:10.0316 5648 C:\WINDOWS\SysWOW64\en-US\sechost.dll.mui - ok
10:11:10.0319 5648 [ C82886A0C88DA48CF36DC2B9CA701E11 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symerr.exe
10:11:10.0319 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\symerr.exe - ok
10:11:10.0323 5648 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\WINDOWS\SysWOW64\wer.dll
10:11:10.0323 5648 C:\WINDOWS\SysWOW64\wer.dll - ok
10:11:10.0326 5648 [ 1A4EE6D16D40CF36C6BC01B208C97CE1 ] C:\Program Files (x86)\Norton Security Suite\MUI\20.2.0.19\09\01\isres.loc
10:11:10.0326 5648 C:\Program Files (x86)\Norton Security Suite\MUI\20.2.0.19\09\01\isres.loc - ok
10:11:10.0329 5648 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\WINDOWS\SysWOW64\Faultrep.dll
10:11:10.0329 5648 C:\WINDOWS\SysWOW64\Faultrep.dll - ok
10:11:10.0332 5648 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\WINDOWS\SysWOW64\xmllite.dll
10:11:10.0332 5648 C:\WINDOWS\SysWOW64\xmllite.dll - ok
10:11:10.0336 5648 [ A2BD298E0D4EAB4618DDA2C4C237261C ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\eb33bf977e97e97b12e82c18e36fbaee\SMDiagnostics.ni.dll
10:11:10.0336 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\eb33bf977e97e97b12e82c18e36fbaee\SMDiagnostics.ni.dll - ok
10:11:10.0339 5648 [ 1087649B78D941BFF585E079D8B4D39A ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sdkcmn.dll
10:11:10.0339 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\sdkcmn.dll - ok
10:11:10.0342 5648 [ 18C8A54EC323F530FFB82CFC514FA4E6 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\uialert.dll
10:11:10.0342 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\uialert.dll - ok
10:11:10.0345 5648 [ DD80D3894F5E1D36864D9727214605CD ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
10:11:10.0345 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll - ok
10:11:10.0348 5648 [ 84C62605B877A378FE6F76E380D97E7B ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\2ad51da1b752b19c992fcefd56eb7c01\System.Runtime.Serialization.ni.dll
10:11:10.0348 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\2ad51da1b752b19c992fcefd56eb7c01\System.Runtime.Serialization.ni.dll - ok
10:11:10.0351 5648 [ 0133E5265FDD7063F87856C9BD5156C9 ] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
10:11:10.0351 5648 C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe - ok
10:11:10.0354 5648 [ 6B44700917F45B19B96B46B345B6F0E7 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe
10:11:10.0354 5648 C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe - ok
10:11:10.0356 5648 [ D0481FB85BEEDD30A0884BE327880F80 ] C:\WINDOWS\SysWOW64\framedynos.dll
10:11:10.0356 5648 C:\WINDOWS\SysWOW64\framedynos.dll - ok
10:11:10.0360 5648 [ 0B7FBCAF83258819112F4AE22EA07F17 ] C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
10:11:10.0360 5648 C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe - ok
10:11:10.0362 5648 [ 1B6A47288EA57C7CF96B013324C67FEB ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\219c68f83fa608b496b163fd6782e696\System.IdentityModel.ni.dll
10:11:10.0362 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\219c68f83fa608b496b163fd6782e696\System.IdentityModel.ni.dll - ok
10:11:10.0365 5648 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\WINDOWS\System32\framedynos.dll
10:11:10.0365 5648 C:\WINDOWS\System32\framedynos.dll - ok
10:11:10.0368 5648 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\WINDOWS\SysWOW64\sxs.dll
10:11:10.0368 5648 C:\WINDOWS\SysWOW64\sxs.dll - ok
10:11:10.0371 5648 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
10:11:10.0371 5648 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
10:11:10.0374 5648 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\WINDOWS\SysWOW64\prnfldr.dll
10:11:10.0374 5648 C:\WINDOWS\SysWOW64\prnfldr.dll - ok
10:11:10.0377 5648 [ 244C6722289F4869068992FD7D8A8832 ] C:\WINDOWS\SysWOW64\wbem\wbemdisp.dll
10:11:10.0377 5648 C:\WINDOWS\SysWOW64\wbem\wbemdisp.dll - ok
10:11:10.0379 5648 [ 972DCC74D4CDCB64086E7CFACBDB74CB ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
10:11:10.0379 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
10:11:10.0382 5648 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\WINDOWS\System32\wbem\Win32_EncryptableVolume.dll
10:11:10.0383 5648 C:\WINDOWS\System32\wbem\Win32_EncryptableVolume.dll - ok
10:11:10.0385 5648 [ 2FE8F6A30802B69A3F501607F346DEEA ] C:\WINDOWS\System32\hkcmd.exe
10:11:10.0385 5648 C:\WINDOWS\System32\hkcmd.exe - ok
10:11:10.0389 5648 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\WINDOWS\System32\drivers\srv.sys
10:11:10.0389 5648 C:\WINDOWS\System32\drivers\srv.sys - ok
10:11:10.0392 5648 [ 390679F7A217A5E73D756276C40AE887 ] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
10:11:10.0392 5648 C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe - ok
10:11:10.0395 5648 [ 810A5F70CEB063CEC85360394BEC2C56 ] C:\WINDOWS\System32\igfxtray.exe
10:11:10.0395 5648 C:\WINDOWS\System32\igfxtray.exe - ok
10:11:10.0398 5648 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
10:11:10.0398 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
10:11:10.0401 5648 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\WINDOWS\SysWOW64\linkinfo.dll
10:11:10.0401 5648 C:\WINDOWS\SysWOW64\linkinfo.dll - ok
10:11:10.0404 5648 [ 0647EF247A5D0402E74FE89F5F6A8A11 ] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
10:11:10.0404 5648 C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe - ok
10:11:10.0407 5648 [ 452FA961163EF4AEE4815796A13AB2CF ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
10:11:10.0407 5648 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
10:11:10.0410 5648 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
10:11:10.0410 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
10:11:10.0415 5648 [ C0B2F3C5F2972DD151DBE7E58DF0E215 ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\uistub.exe
10:11:10.0415 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\uistub.exe - ok
10:11:10.0418 5648 [ 108C2CFA5527458C096A699929ECBD80 ] C:\WINDOWS\SysWOW64\credui.dll
10:11:10.0418 5648 C:\WINDOWS\SysWOW64\credui.dll - ok
10:11:10.0421 5648 [ 2C82FC5FFEE266879FA9B528072C1342 ] C:\Program Files (x86)\Consumer Input\dca-ua.exe
10:11:10.0421 5648 C:\Program Files (x86)\Consumer Input\dca-ua.exe - ok
10:11:10.0423 5648 [ CA1941B93BA45B7EA4D7D9F451B25C84 ] C:\WINDOWS\System32\igfxpers.exe
10:11:10.0423 5648 C:\WINDOWS\System32\igfxpers.exe - ok
10:11:10.0427 5648 [ 565A30B70BE8A9B171839003F2D69683 ] C:\WINDOWS\SysWOW64\hlink.dll
10:11:10.0427 5648 C:\WINDOWS\SysWOW64\hlink.dll - ok
10:11:10.0430 5648 [ 51D832E9F377A3D57E44F199CE10B637 ] C:\Program Files (x86)\System Registration\prodreg.exe
10:11:10.0430 5648 C:\Program Files (x86)\System Registration\prodreg.exe - ok
10:11:10.0433 5648 [ B45F2C4076ACFD9714037B7C69D90167 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
10:11:10.0434 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
10:11:10.0436 5648 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\WINDOWS\System32\srvsvc.dll
10:11:10.0436 5648 C:\WINDOWS\System32\srvsvc.dll - ok
10:11:10.0439 5648 [ C3ED5765C078E2A84870267F814DFCAD ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\C2RICONS.EXE
10:11:10.0439 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\C2RICONS.EXE - ok
10:11:10.0442 5648 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\WINDOWS\System32\browser.dll
10:11:10.0442 5648 C:\WINDOWS\System32\browser.dll - ok
10:11:10.0445 5648 [ 859642746B575ECE7DEAE9915631CB87 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
10:11:10.0445 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE - ok
10:11:10.0448 5648 [ 34086F1DBB4065047EA3671CB70505CC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
10:11:10.0448 5648 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
10:11:10.0450 5648 [ 3B78ACCCAA5132638E7CF419F4A965C7 ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
10:11:10.0450 5648 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE - ok
10:11:10.0453 5648 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
10:11:10.0453 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
10:11:10.0456 5648 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\WINDOWS\SysWOW64\netmsg.dll
10:11:10.0456 5648 C:\WINDOWS\SysWOW64\netmsg.dll - ok
10:11:10.0459 5648 [ 9644172ECFF38CC8E7B0241DA317CD90 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHBS.EXE
10:11:10.0459 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHBS.EXE - ok
10:11:10.0462 5648 [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
10:11:10.0462 5648 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
10:11:10.0465 5648 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\WINDOWS\System32\netmsg.dll
10:11:10.0465 5648 C:\WINDOWS\System32\netmsg.dll - ok
10:11:10.0469 5648 [ 86DE6FC591B5BA79C342691D224765EB ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\MAPISERVER.EXE
10:11:10.0469 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\MAPISERVER.EXE - ok
10:11:10.0472 5648 [ 89E783711AF91AF09E1EF30EF3107446 ] C:\WINDOWS\SysWOW64\sscore.dll
10:11:10.0472 5648 C:\WINDOWS\SysWOW64\sscore.dll - ok
10:11:10.0475 5648 [ 1B625CFE31F86BE43F279CFFFBFD4BF1 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualOWSSuppHost.exe
10:11:10.0475 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualOWSSuppHost.exe - ok
10:11:10.0479 5648 [ 1FB5BAE5A38D2CACCCB40A82F5BE6C90 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualOWSSuppManager.exe
10:11:10.0479 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualOWSSuppManager.exe - ok
10:11:10.0482 5648 [ 82F048F42A370B3BCD665A73212909F9 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualSearchProtocolHost.exe
10:11:10.0482 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualSearchProtocolHost.exe - ok
10:11:10.0484 5648 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\WINDOWS\System32\sscore.dll
10:11:10.0484 5648 C:\WINDOWS\System32\sscore.dll - ok
10:11:10.0487 5648 [ AE9898D5600A232CD8AE3298692162E5 ] C:\WINDOWS\SysWOW64\clusapi.dll
10:11:10.0487 5648 C:\WINDOWS\SysWOW64\clusapi.dll - ok
10:11:10.0490 5648 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
10:11:10.0490 5648 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
10:11:10.0492 5648 [ 7B7C677C14CAEF21C6C1FF5D64CE2360 ] C:\Program Files (x86)\Norton Security Suite\Branding\20.1.0.24\09\01\isBrand.loc
10:11:10.0492 5648 C:\Program Files (x86)\Norton Security Suite\Branding\20.1.0.24\09\01\isBrand.loc - ok
10:11:10.0495 5648 [ 81749E073AC5857B044A686B406E5244 ] C:\WINDOWS\System32\clusapi.dll
10:11:10.0495 5648 C:\WINDOWS\System32\clusapi.dll - ok
10:11:10.0498 5648 [ 8A473A9DB2B1EEA71F01E743245B4468 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\userctxt.dll
10:11:10.0498 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\userctxt.dll - ok
10:11:10.0501 5648 [ A5A39BAA44C805C4C6E9615BEF5A69B5 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
10:11:10.0501 5648 C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe - ok
10:11:10.0504 5648 [ 2AF094C822BD6094F14A8E85FB51D52A ] C:\WINDOWS\SysWOW64\resutils.dll
10:11:10.0504 5648 C:\WINDOWS\SysWOW64\resutils.dll - ok
10:11:10.0506 5648 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\WINDOWS\SysWOW64\wscisvif.dll
10:11:10.0506 5648 C:\WINDOWS\SysWOW64\wscisvif.dll - ok
10:11:10.0509 5648 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\WINDOWS\System32\resutils.dll
10:11:10.0509 5648 C:\WINDOWS\System32\resutils.dll - ok
10:11:10.0512 5648 [ A8CDF3768604FF95B54669E20053D569 ] C:\WINDOWS\SysWOW64\wscapi.dll
10:11:10.0512 5648 C:\WINDOWS\SysWOW64\wscapi.dll - ok
10:11:10.0515 5648 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\WINDOWS\SysWOW64\wscproxystub.dll
10:11:10.0515 5648 C:\WINDOWS\SysWOW64\wscproxystub.dll - ok
10:11:10.0518 5648 [ C370525EA8EDA4E066CC1A4A095A0559 ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe
10:11:10.0518 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe - ok
10:11:10.0521 5648 [ 86B82A4B7D600778C0B31CD090A0578F ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDTray.exe
10:11:10.0521 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDTray.exe - ok
10:11:10.0525 5648 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\WINDOWS\SysWOW64\cmd.exe
10:11:10.0525 5648 C:\WINDOWS\SysWOW64\cmd.exe - ok
10:11:10.0528 5648 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\WINDOWS\System32\winspool.drv
10:11:10.0528 5648 C:\WINDOWS\System32\winspool.drv - ok
10:11:10.0530 5648 [ 3CBECBC83287258DC78B7D2F2821F7E5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
10:11:10.0530 5648 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
10:11:10.0535 5648 [ C85FDF74CEE86E2F08BB17280131CEC6 ] C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
10:11:10.0535 5648 C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe - ok
10:11:10.0537 5648 [ EAFC149CD3BD78C443E31BB157841197 ] C:\WINDOWS\SysWOW64\tbs.dll
10:11:10.0537 5648 C:\WINDOWS\SysWOW64\tbs.dll - ok
10:11:10.0540 5648 [ 9FF8F684BACF326082E5562F7C104A79 ] C:\WINDOWS\SysWOW64\d2d1.dll
10:11:10.0540 5648 C:\WINDOWS\SysWOW64\d2d1.dll - ok
10:11:10.0543 5648 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\WINDOWS\System32\umb.dll
10:11:10.0543 5648 C:\WINDOWS\System32\umb.dll - ok
10:11:10.0547 5648 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\WINDOWS\System32\localspl.dll
10:11:10.0547 5648 C:\WINDOWS\System32\localspl.dll - ok
10:11:10.0550 5648 [ 907281ED4AD35D41B29FFDC211EBAD80 ] C:\WINDOWS\SysWOW64\wmi.dll
10:11:10.0550 5648 C:\WINDOWS\SysWOW64\wmi.dll - ok
10:11:10.0554 5648 [ C00DB14550E4BD49737F311C644E45FF ] C:\WINDOWS\System32\wmi.dll
10:11:10.0554 5648 C:\WINDOWS\System32\wmi.dll - ok
10:11:10.0556 5648 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\WINDOWS\System32\spoolss.dll
10:11:10.0556 5648 C:\WINDOWS\System32\spoolss.dll - ok
10:11:10.0559 5648 [ C4002B6B41975F057D98C439030CEA07 ] C:\WINDOWS\ehome\ehrecvr.exe
10:11:10.0559 5648 C:\WINDOWS\ehome\ehrecvr.exe - ok
10:11:10.0562 5648 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\WINDOWS\System32\PrintIsolationProxy.dll
10:11:10.0562 5648 C:\WINDOWS\System32\PrintIsolationProxy.dll - ok
10:11:10.0565 5648 [ 4705E8EF9934482C5BB488CE28AFC681 ] C:\WINDOWS\ehome\ehsched.exe
10:11:10.0565 5648 C:\WINDOWS\ehome\ehsched.exe - ok
10:11:10.0567 5648 [ A45DF599526357A2D4E418FCB2ACFB3D ] C:\WINDOWS\System32\CNBLM3_3.DLL
10:11:10.0567 5648 C:\WINDOWS\System32\CNBLM3_3.DLL - ok
10:11:10.0570 5648 [ 6A08F1C87BBF6197F5DAD95CF41E5175 ] C:\WINDOWS\SysWOW64\PresentationHost.exe
10:11:10.0571 5648 C:\WINDOWS\SysWOW64\PresentationHost.exe - ok
10:11:10.0573 5648 [ 19E41CCCEE697CC9465396B370929792 ] C:\WINDOWS\System32\FXSMON.dll
10:11:10.0573 5648 C:\WINDOWS\System32\FXSMON.dll - ok
10:11:10.0576 5648 [ D2600D5000CFD439AA791E56BD763AD8 ] C:\WINDOWS\System32\pdfcmnnt.dll
10:11:10.0576 5648 C:\WINDOWS\System32\pdfcmnnt.dll - ok
10:11:10.0578 5648 [ E495E408C93141E8FC72DC0C6046DDFA ] C:\WINDOWS\SysWOW64\perfhost.exe
10:11:10.0578 5648 C:\WINDOWS\SysWOW64\perfhost.exe - ok
10:11:10.0580 5648 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\WINDOWS\System32\tcpmon.dll
10:11:10.0580 5648 C:\WINDOWS\System32\tcpmon.dll - ok
10:11:10.0583 5648 [ 773212B2AAA24C1E31F10246B15B276C ] C:\WINDOWS\servicing\TrustedInstaller.exe
10:11:10.0583 5648 C:\WINDOWS\servicing\TrustedInstaller.exe - ok
10:11:10.0585 5648 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
10:11:10.0585 5648 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
10:11:10.0588 5648 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\WINDOWS\SysWOW64\dllhost.exe
10:11:10.0588 5648 C:\WINDOWS\SysWOW64\dllhost.exe - ok
10:11:10.0590 5648 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\WINDOWS\System32\snmpapi.dll
10:11:10.0590 5648 C:\WINDOWS\System32\snmpapi.dll - ok
10:11:10.0593 5648 [ 236F286E103FD44BD85FDD93097FD5DD ] C:\WINDOWS\SysWOW64\SearchIndexer.exe
10:11:10.0593 5648 C:\WINDOWS\SysWOW64\SearchIndexer.exe - ok
10:11:10.0595 5648 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\WINDOWS\SysWOW64\snmpapi.dll
10:11:10.0595 5648 C:\WINDOWS\SysWOW64\snmpapi.dll - ok
10:11:10.0597 5648 [ FFF9D00CF16397C64317F213484F94BD ] C:\WINDOWS\System32\wsnmp32.dll
10:11:10.0597 5648 C:\WINDOWS\System32\wsnmp32.dll - ok
10:11:10.0600 5648 [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\WINDOWS\SysWOW64\wsnmp32.dll
10:11:10.0600 5648 C:\WINDOWS\SysWOW64\wsnmp32.dll - ok
10:11:10.0602 5648 [ F14A9B1778376D0B1788E402AC1F831A ] C:\WINDOWS\SysWOW64\shacct.dll
10:11:10.0602 5648 C:\WINDOWS\SysWOW64\shacct.dll - ok
10:11:10.0605 5648 [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\WINDOWS\SysWOW64\IDStore.dll
10:11:10.0605 5648 C:\WINDOWS\SysWOW64\IDStore.dll - ok
10:11:10.0607 5648 [ 3A058BC58D6E0505CFE2963A6E7BC994 ] C:\WINDOWS\SysWOW64\ZALSDKCore.dll
10:11:10.0608 5648 C:\WINDOWS\SysWOW64\ZALSDKCore.dll - ok
10:11:10.0610 5648 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\WINDOWS\SysWOW64\security.dll
10:11:10.0610 5648 C:\WINDOWS\SysWOW64\security.dll - ok
10:11:10.0613 5648 [ B157C7776894BB8E0C71323E46F5FB45 ] C:\Program Files (x86)\Constant Guard Protection Suite\Interop.Shell32.dll
10:11:10.0613 5648 C:\Program Files (x86)\Constant Guard Protection Suite\Interop.Shell32.dll - ok
10:11:10.0616 5648 [ 61AFCBE8163970125EA36B1B8DC4142B ] C:\Program Files (x86)\Constant Guard Protection Suite\Interop.SHDocVw.dll
10:11:10.0616 5648 C:\Program Files (x86)\Constant Guard Protection Suite\Interop.SHDocVw.dll - ok
10:11:10.0619 5648 [ F86654DF03C8AD1C2CE6F95FA5240060 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\77dfcfed5fd5f67d0d3edc545935bb21\System.Core.ni.dll
10:11:10.0619 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\77dfcfed5fd5f67d0d3edc545935bb21\System.Core.ni.dll - ok
10:11:10.0621 5648 [ DF72A9936D0C3F517083119648814B09 ] C:\WINDOWS\System32\usbmon.dll
10:11:10.0621 5648 C:\WINDOWS\System32\usbmon.dll - ok
10:11:10.0624 5648 [ 322307C99A1CBF053CC9DCB0BD44C2EE ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\23da92e38ffc0bbf6673adb1892aa0f4\UIAutomationProvider.ni.dll
10:11:10.0624 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\23da92e38ffc0bbf6673adb1892aa0f4\UIAutomationProvider.ni.dll - ok
10:11:10.0627 5648 [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\WINDOWS\SysWOW64\WlS0WndH.dll
10:11:10.0627 5648 C:\WINDOWS\SysWOW64\WlS0WndH.dll - ok
10:11:10.0630 5648 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\WINDOWS\System32\WSDMon.dll
10:11:10.0630 5648 C:\WINDOWS\System32\WSDMon.dll - ok
10:11:10.0632 5648 [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\WINDOWS\SysWOW64\WSDApi.dll
10:11:10.0633 5648 C:\WINDOWS\SysWOW64\WSDApi.dll - ok
10:11:10.0637 5648 [ F1B205F932F62F94506A5F332C895DAF ] C:\WINDOWS\System32\WSDApi.dll
10:11:10.0637 5648 C:\WINDOWS\System32\WSDApi.dll - ok
10:11:10.0640 5648 [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\WINDOWS\SysWOW64\webservices.dll
10:11:10.0640 5648 C:\WINDOWS\SysWOW64\webservices.dll - ok
10:11:10.0642 5648 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\WINDOWS\System32\webservices.dll
10:11:10.0642 5648 C:\WINDOWS\System32\webservices.dll - ok
10:11:10.0646 5648 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\WINDOWS\System32\spool\prtprocs\x64\winprint.dll
10:11:10.0646 5648 C:\WINDOWS\System32\spool\prtprocs\x64\winprint.dll - ok
10:11:10.0649 5648 [ 371D003DE5D81C7465A0E8CD911D2E9C ] C:\WINDOWS\System32\spool\prtprocs\x64\CNBPP3.DLL
10:11:10.0649 5648 C:\WINDOWS\System32\spool\prtprocs\x64\CNBPP3.DLL - ok
10:11:10.0652 5648 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\WINDOWS\SysWOW64\SPInf.dll
10:11:10.0652 5648 C:\WINDOWS\SysWOW64\SPInf.dll - ok
10:11:10.0655 5648 [ 52CCA2E9FFD0653CACED1E808AADE4B6 ] C:\WINDOWS\SysWOW64\win32spl.dll
10:11:10.0655 5648 C:\WINDOWS\SysWOW64\win32spl.dll - ok
10:11:10.0658 5648 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\WINDOWS\System32\win32spl.dll
10:11:10.0658 5648 C:\WINDOWS\System32\win32spl.dll - ok
10:11:10.0661 5648 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\WINDOWS\System32\inetpp.dll
10:11:10.0661 5648 C:\WINDOWS\System32\inetpp.dll - ok
10:11:10.0663 5648 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\WINDOWS\System32\appinfo.dll
10:11:10.0663 5648 C:\WINDOWS\System32\appinfo.dll - ok
10:11:10.0666 5648 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\WINDOWS\SysWOW64\npmproxy.dll
10:11:10.0666 5648 C:\WINDOWS\SysWOW64\npmproxy.dll - ok
10:11:10.0669 5648 [ F7073C962C4FB7C415565DDE109DE49F ] C:\WINDOWS\System32\npmproxy.dll
10:11:10.0669 5648 C:\WINDOWS\System32\npmproxy.dll - ok
10:11:10.0671 5648 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\WINDOWS\System32\SearchIndexer.exe
10:11:10.0672 5648 C:\WINDOWS\System32\SearchIndexer.exe - ok
10:11:10.0674 5648 [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\WINDOWS\SysWOW64\tquery.dll
10:11:10.0674 5648 C:\WINDOWS\SysWOW64\tquery.dll - ok
10:11:10.0676 5648 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\WINDOWS\System32\tquery.dll
10:11:10.0676 5648 C:\WINDOWS\System32\tquery.dll - ok
10:11:10.0679 5648 [ 0241CB16136B9A4939CA0395768AE286 ] C:\WINDOWS\SysWOW64\mssrch.dll
10:11:10.0679 5648 C:\WINDOWS\SysWOW64\mssrch.dll - ok
10:11:10.0682 5648 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\WINDOWS\System32\mssrch.dll
10:11:10.0682 5648 C:\WINDOWS\System32\mssrch.dll - ok
10:11:10.0684 5648 [ D44741F65A1D71F65814A12CF6E2400A ] C:\WINDOWS\SysWOW64\runonce.exe
10:11:10.0684 5648 C:\WINDOWS\SysWOW64\runonce.exe - ok
10:11:10.0687 5648 [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\WINDOWS\SysWOW64\esent.dll
10:11:10.0687 5648 C:\WINDOWS\SysWOW64\esent.dll - ok
10:11:10.0689 5648 [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\WINDOWS\SysWOW64\msidle.dll
10:11:10.0689 5648 C:\WINDOWS\SysWOW64\msidle.dll - ok
10:11:10.0691 5648 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\WINDOWS\System32\msidle.dll
10:11:10.0691 5648 C:\WINDOWS\System32\msidle.dll - ok
10:11:10.0694 5648 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\WINDOWS\SysWOW64\wdi.dll
10:11:10.0694 5648 C:\WINDOWS\SysWOW64\wdi.dll - ok
10:11:10.0697 5648 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\WINDOWS\System32\wdi.dll
10:11:10.0697 5648 C:\WINDOWS\System32\wdi.dll - ok
10:11:10.0700 5648 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\WINDOWS\System32\wpdbusenum.dll
10:11:10.0700 5648 C:\WINDOWS\System32\wpdbusenum.dll - ok
10:11:10.0703 5648 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\WINDOWS\System32\perftrack.dll
10:11:10.0703 5648 C:\WINDOWS\System32\perftrack.dll - ok
10:11:10.0706 5648 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\WINDOWS\System32\aelupsvc.dll
10:11:10.0706 5648 C:\WINDOWS\System32\aelupsvc.dll - ok
10:11:10.0709 5648 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\WINDOWS\System32\runonce.exe
10:11:10.0709 5648 C:\WINDOWS\System32\runonce.exe - ok
10:11:10.0711 5648 [ E98278865E8DABA21CFE5FE4BE34210A ] C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
10:11:10.0711 5648 C:\WINDOWS\SysWOW64\PortableDeviceApi.dll - ok
10:11:10.0714 5648 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\WINDOWS\System32\IPSECSVC.DLL
10:11:10.0714 5648 C:\WINDOWS\System32\IPSECSVC.DLL - ok
10:11:10.0717 5648 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\WINDOWS\System32\diagperf.dll
10:11:10.0718 5648 C:\WINDOWS\System32\diagperf.dll - ok
10:11:10.0721 5648 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\WINDOWS\System32\wer.dll
10:11:10.0721 5648 C:\WINDOWS\System32\wer.dll - ok
10:11:10.0723 5648 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\WINDOWS\System32\pnpts.dll
10:11:10.0723 5648 C:\WINDOWS\System32\pnpts.dll - ok
10:11:10.0726 5648 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\WINDOWS\SysWOW64\authz.dll
10:11:10.0726 5648 C:\WINDOWS\SysWOW64\authz.dll - ok
10:11:10.0729 5648 [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
10:11:10.0729 5648 C:\WINDOWS\SysWOW64\FwRemoteSvr.dll - ok
10:11:10.0731 5648 [ 7FFD52D73352806969D424EF327D10A7 ] C:\WINDOWS\SysWOW64\radardt.dll
10:11:10.0731 5648 C:\WINDOWS\SysWOW64\radardt.dll - ok
10:11:10.0734 5648 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\WINDOWS\System32\PortableDeviceApi.dll
10:11:10.0734 5648 C:\WINDOWS\System32\PortableDeviceApi.dll - ok
10:11:10.0737 5648 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\WINDOWS\System32\FwRemoteSvr.dll
10:11:10.0737 5648 C:\WINDOWS\System32\FwRemoteSvr.dll - ok
10:11:10.0739 5648 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\WINDOWS\System32\radardt.dll
10:11:10.0739 5648 C:\WINDOWS\System32\radardt.dll - ok
10:11:10.0742 5648 [ E811F8510B133E70CF6E509FB809824F ] C:\WINDOWS\System32\wdiasqmmodule.dll
10:11:10.0742 5648 C:\WINDOWS\System32\wdiasqmmodule.dll - ok
10:11:10.0745 5648 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\WINDOWS\SysWOW64\winbrand.dll
10:11:10.0745 5648 C:\WINDOWS\SysWOW64\winbrand.dll - ok
10:11:10.0748 5648 [ 84FA403E67CCF1A031FAEB39A091A7C0 ] C:\WINDOWS\SysWOW64\en-US\cmd.exe.mui
10:11:10.0748 5648 C:\WINDOWS\SysWOW64\en-US\cmd.exe.mui - ok
10:11:10.0751 5648 [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\WINDOWS\SysWOW64\Apphlpdm.dll
10:11:10.0751 5648 C:\WINDOWS\SysWOW64\Apphlpdm.dll - ok
10:11:10.0753 5648 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\WINDOWS\System32\Apphlpdm.dll
10:11:10.0753 5648 C:\WINDOWS\System32\Apphlpdm.dll - ok
10:11:10.0755 5648 [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll
10:11:10.0755 5648 C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll - ok
10:11:10.0758 5648 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\WINDOWS\System32\PortableDeviceConnectApi.dll
10:11:10.0758 5648 C:\WINDOWS\System32\PortableDeviceConnectApi.dll - ok
10:11:10.0761 5648 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\WINDOWS\SysWOW64\NapiNSP.dll
10:11:10.0761 5648 C:\WINDOWS\SysWOW64\NapiNSP.dll - ok
10:11:10.0763 5648 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\WINDOWS\SysWOW64\shdocvw.dll
10:11:10.0763 5648 C:\WINDOWS\SysWOW64\shdocvw.dll - ok
10:11:10.0766 5648 [ 58A0CDABEA255616827B1C22C9994466 ] C:\WINDOWS\System32\NapiNSP.dll
10:11:10.0766 5648 C:\WINDOWS\System32\NapiNSP.dll - ok
10:11:10.0769 5648 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\WINDOWS\SysWOW64\pnrpnsp.dll
10:11:10.0769 5648 C:\WINDOWS\SysWOW64\pnrpnsp.dll - ok
10:11:10.0773 5648 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\WINDOWS\System32\pnrpnsp.dll
10:11:10.0773 5648 C:\WINDOWS\System32\pnrpnsp.dll - ok
10:11:10.0778 5648 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\WINDOWS\SysWOW64\winrnr.dll
10:11:10.0778 5648 C:\WINDOWS\SysWOW64\winrnr.dll - ok
10:11:10.0781 5648 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\WINDOWS\System32\winrnr.dll
10:11:10.0781 5648 C:\WINDOWS\System32\winrnr.dll - ok
10:11:10.0784 5648 [ 198366199A9F342EF87978D79308B49F ] C:\WINDOWS\SysWOW64\RacEngn.dll
10:11:10.0784 5648 C:\WINDOWS\SysWOW64\RacEngn.dll - ok
10:11:10.0786 5648 [ 71C4F42DC8DB668E826DA79462EA741E ] C:\WINDOWS\SysWOW64\KBDUS.DLL
10:11:10.0786 5648 C:\WINDOWS\SysWOW64\KBDUS.DLL - ok
10:11:10.0789 5648 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\WINDOWS\SysWOW64\mssprxy.dll
10:11:10.0789 5648 C:\WINDOWS\SysWOW64\mssprxy.dll - ok
10:11:10.0791 5648 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\WINDOWS\SysWOW64\wevtapi.dll
10:11:10.0791 5648 C:\WINDOWS\SysWOW64\wevtapi.dll - ok
10:11:10.0794 5648 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\WINDOWS\System32\mssprxy.dll
10:11:10.0794 5648 C:\WINDOWS\System32\mssprxy.dll - ok
10:11:10.0796 5648 [ B6C756FA661C5EB7B3547E60647F87A7 ] C:\WINDOWS\SysWOW64\sqlceoledb30.dll
10:11:10.0796 5648 C:\WINDOWS\SysWOW64\sqlceoledb30.dll - ok
10:11:10.0799 5648 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Mom\AppData\Local\Temp\6A494DA3-BC8C-48AE-8EDE-9FEB5F4EFCEC.exe
10:11:10.0799 5648 C:\Users\Mom\AppData\Local\Temp\6A494DA3-BC8C-48AE-8EDE-9FEB5F4EFCEC.exe - ok
10:11:10.0802 5648 [ 13CDD3FF0961A2EC6D9829A1640DD6DC ] C:\WINDOWS\SysWOW64\sqlcese30.dll
10:11:10.0802 5648 C:\WINDOWS\SysWOW64\sqlcese30.dll - ok
10:11:10.0805 5648 [ 60236C8C3B8C2D8B9A59326890533EB8 ] C:\WINDOWS\SysWOW64\sqlceqp30.dll
10:11:10.0805 5648 C:\WINDOWS\SysWOW64\sqlceqp30.dll - ok
10:11:10.0807 5648 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\WINDOWS\SysWOW64\WinSATAPI.dll
10:11:10.0807 5648 C:\WINDOWS\SysWOW64\WinSATAPI.dll - ok
10:11:10.0810 5648 [ B63E24E9271E99FD4540E3CA22A937DA ] C:\WINDOWS\SysWOW64\en-US\tquery.dll.mui
10:11:10.0810 5648 C:\WINDOWS\SysWOW64\en-US\tquery.dll.mui - ok
10:11:10.0812 5648 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\WINDOWS\System32\en-US\tquery.dll.mui
10:11:10.0812 5648 C:\WINDOWS\System32\en-US\tquery.dll.mui - ok
10:11:10.0815 5648 [ C2A9093E56551AACD417926F14F848E8 ] C:\WINDOWS\SysWOW64\msxml6r.dll
10:11:10.0815 5648 C:\WINDOWS\SysWOW64\msxml6r.dll - ok
10:11:10.0818 5648 [ B79515AFF098E5A56DFBD316152534DE ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
10:11:10.0818 5648 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
10:11:10.0821 5648 [ 330A6E9A4A6FA657EBB094FCD82EFA9D ] C:\WINDOWS\SysWOW64\en-US\WinSATAPI.dll.mui
10:11:10.0821 5648 C:\WINDOWS\SysWOW64\en-US\WinSATAPI.dll.mui - ok
10:11:10.0824 5648 [ 7275B97E8961258CDE8DB71BC70551B9 ] C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Microsoft\reliability\Sqm\Manifest\Sqm29.bin
10:11:10.0824 5648 C:\WINDOWS\ServiceProfiles\LocalService\AppData\Local\Microsoft\reliability\Sqm\Manifest\Sqm29.bin - ok
10:11:10.0827 5648 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\WINDOWS\SysWOW64\p2pcollab.dll
10:11:10.0827 5648 C:\WINDOWS\SysWOW64\p2pcollab.dll - ok
10:11:10.0829 5648 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\WINDOWS\System32\drivers\WUDFRd.sys
10:11:10.0829 5648 C:\WINDOWS\System32\drivers\WUDFRd.sys - ok
10:11:10.0832 5648 [ 53631CCF0043B82B9EE3E80CC0C4B434 ] C:\WINDOWS\System32\kernelceip.dll
10:11:10.0832 5648 C:\WINDOWS\System32\kernelceip.dll - ok
10:11:10.0835 5648 [ DE06228E1EBFD6F38B8A4F5312C49678 ] C:\WINDOWS\System32\regidle.dll
10:11:10.0835 5648 C:\WINDOWS\System32\regidle.dll - ok
10:11:10.0837 5648 [ 846D0E4DB261CFAF363902E41498E961 ] C:\WINDOWS\SysWOW64\EhStorShell.dll
10:11:10.0837 5648 C:\WINDOWS\SysWOW64\EhStorShell.dll - ok
10:11:10.0840 5648 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\WINDOWS\SysWOW64\imageres.dll
10:11:10.0840 5648 C:\WINDOWS\SysWOW64\imageres.dll - ok
10:11:10.0843 5648 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\WINDOWS\System32\drivers\WUDFPf.sys
10:11:10.0843 5648 C:\WINDOWS\System32\drivers\WUDFPf.sys - ok
10:11:10.0845 5648 [ B20F051B03A966392364C83F009F7D17 ] C:\WINDOWS\System32\WUDFSvc.dll
10:11:10.0845 5648 C:\WINDOWS\System32\WUDFSvc.dll - ok
10:11:10.0848 5648 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\WINDOWS\System32\WUDFHost.exe
10:11:10.0848 5648 C:\WINDOWS\System32\WUDFHost.exe - ok
10:11:10.0851 5648 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\WINDOWS\System32\WUDFx.dll
10:11:10.0851 5648 C:\WINDOWS\System32\WUDFx.dll - ok
10:11:10.0853 5648 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\WINDOWS\System32\drivers\UMDF\WpdFs.dll
10:11:10.0853 5648 C:\WINDOWS\System32\drivers\UMDF\WpdFs.dll - ok
10:11:10.0856 5648 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\WINDOWS\SysWOW64\WMVCORE.DLL
10:11:10.0856 5648 C:\WINDOWS\SysWOW64\WMVCORE.DLL - ok
10:11:10.0858 5648 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\WINDOWS\System32\WMVCORE.DLL
10:11:10.0859 5648 C:\WINDOWS\System32\WMVCORE.DLL - ok
10:11:10.0861 5648 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\WINDOWS\SysWOW64\WMASF.DLL
10:11:10.0861 5648 C:\WINDOWS\SysWOW64\WMASF.DLL - ok
10:11:10.0864 5648 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\WINDOWS\System32\WMASF.DLL
10:11:10.0864 5648 C:\WINDOWS\System32\WMASF.DLL - ok
10:11:10.0866 5648 [ 81490FDAE27F0082E5CC2DC78DCA96FA ] C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll
10:11:10.0866 5648 C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll - ok
10:11:10.0869 5648 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\WINDOWS\System32\PortableDeviceClassExtension.dll
10:11:10.0869 5648 C:\WINDOWS\System32\PortableDeviceClassExtension.dll - ok
10:11:10.0872 5648 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\WINDOWS\SysWOW64\PortableDeviceTypes.dll
10:11:10.0872 5648 C:\WINDOWS\SysWOW64\PortableDeviceTypes.dll - ok
10:11:10.0875 5648 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\WINDOWS\SysWOW64\es.dll
10:11:10.0875 5648 C:\WINDOWS\SysWOW64\es.dll - ok
10:11:10.0877 5648 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\WINDOWS\System32\PortableDeviceTypes.dll
10:11:10.0877 5648 C:\WINDOWS\System32\PortableDeviceTypes.dll - ok
10:11:10.0880 5648 [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\WINDOWS\SysWOW64\dimsjob.dll
10:11:10.0880 5648 C:\WINDOWS\SysWOW64\dimsjob.dll - ok
10:11:10.0882 5648 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\WINDOWS\System32\dimsjob.dll
10:11:10.0882 5648 C:\WINDOWS\System32\dimsjob.dll - ok
10:11:10.0885 5648 [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\WINDOWS\SysWOW64\pautoenr.dll
10:11:10.0885 5648 C:\WINDOWS\SysWOW64\pautoenr.dll - ok
10:11:10.0887 5648 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\WINDOWS\System32\pautoenr.dll
10:11:10.0887 5648 C:\WINDOWS\System32\pautoenr.dll - ok
10:11:10.0891 5648 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\WINDOWS\System32\certcli.dll
10:11:10.0891 5648 C:\WINDOWS\System32\certcli.dll - ok
10:11:10.0893 5648 [ 29BC473072568C072EC8B176498DE996 ] C:\WINDOWS\SysWOW64\CertEnroll.dll
10:11:10.0893 5648 C:\WINDOWS\SysWOW64\CertEnroll.dll - ok
10:11:10.0896 5648 [ 263B26106606A010CF877472B535E4BB ] C:\WINDOWS\System32\CertEnroll.dll
10:11:10.0896 5648 C:\WINDOWS\System32\CertEnroll.dll - ok
10:11:10.0898 5648 [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\WINDOWS\SysWOW64\SndVolSSO.dll
10:11:10.0898 5648 C:\WINDOWS\SysWOW64\SndVolSSO.dll - ok
10:11:10.0901 5648 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\WINDOWS\SysWOW64\hid.dll
10:11:10.0901 5648 C:\WINDOWS\SysWOW64\hid.dll - ok
10:11:10.0904 5648 [ CDE71F79668F9F37B96EA8B45480D737 ] C:\Users\Mom\AppData\Local\Temp\uninst1.exe
10:11:10.0904 5648 C:\Users\Mom\AppData\Local\Temp\uninst1.exe - ok
10:11:10.0906 5648 [ 243974EC02F7AE49E4179C54624143AB ] C:\WINDOWS\SysWOW64\MMDevAPI.dll
10:11:10.0906 5648 C:\WINDOWS\SysWOW64\MMDevAPI.dll - ok
10:11:10.0909 5648 [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\WINDOWS\SysWOW64\timedate.cpl
10:11:10.0909 5648 C:\WINDOWS\SysWOW64\timedate.cpl - ok
10:11:10.0912 5648 [ FB10715E4099AF9FA389C71873245226 ] C:\WINDOWS\System32\timedate.cpl
10:11:10.0912 5648 C:\WINDOWS\System32\timedate.cpl - ok
10:11:10.0914 5648 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\WINDOWS\System32\actxprxy.dll
10:11:10.0914 5648 C:\WINDOWS\System32\actxprxy.dll - ok
10:11:10.0918 5648 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\WINDOWS\System32\shdocvw.dll
10:11:10.0918 5648 C:\WINDOWS\System32\shdocvw.dll - ok
10:11:10.0921 5648 [ 00B0ACE97EAA8A8F1CC1867E49B1FE74 ] C:\WINDOWS\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
10:11:10.0921 5648 C:\WINDOWS\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe - ok
10:11:10.0924 5648 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\WINDOWS\SysWOW64\msiltcfg.dll
10:11:10.0924 5648 C:\WINDOWS\SysWOW64\msiltcfg.dll - ok
10:11:10.0926 5648 [ 69754747274B76E7FAF287239333D7E6 ] C:\WINDOWS\System32\msiltcfg.dll
10:11:10.0926 5648 C:\WINDOWS\System32\msiltcfg.dll - ok
10:11:10.0929 5648 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\WINDOWS\System32\msi.dll
10:11:10.0929 5648 C:\WINDOWS\System32\msi.dll - ok
10:11:10.0933 5648 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
10:11:10.0933 5648 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
10:11:10.0936 5648 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\WINDOWS\System32\linkinfo.dll
10:11:10.0936 5648 C:\WINDOWS\System32\linkinfo.dll - ok
10:11:10.0939 5648 [ 4E9592BB2C100E571F82640E59E9ECD5 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
10:11:10.0939 5648 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
10:11:10.0942 5648 [ D6BAEADAD8C792724AEDA91D619A4774 ] C:\Users\Mom\Desktop\TechnicLauncher.exe
10:11:10.0942 5648 C:\Users\Mom\Desktop\TechnicLauncher.exe - ok
10:11:10.0945 5648 [ F3AF9E6BE544B4A28B2ABFF08292CDE6 ] C:\Users\Mom\Desktop\Minecraft.exe
10:11:10.0945 5648 C:\Users\Mom\Desktop\Minecraft.exe - ok
10:11:10.0948 5648 [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\WINDOWS\SysWOW64\gameux.dll
10:11:10.0948 5648 C:\WINDOWS\SysWOW64\gameux.dll - ok
10:11:10.0950 5648 [ 9C3E9D1CD36966A3C2509732066484EF ] C:\Program Files (x86)\flippit\Minecraft Version Changer\Minecraft Version Changer.exe
10:11:10.0951 5648 C:\Program Files (x86)\flippit\Minecraft Version Changer\Minecraft Version Changer.exe - ok
10:11:10.0953 5648 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\WINDOWS\System32\gameux.dll
10:11:10.0953 5648 C:\WINDOWS\System32\gameux.dll - ok
10:11:10.0956 5648 [ 6554208814632C25C77EE02355EB8E95 ] C:\Program Files\Internet Explorer\iexplore.exe
10:11:10.0956 5648 C:\Program Files\Internet Explorer\iexplore.exe - ok
10:11:10.0959 5648 [ C7C92C88CAC832CCB382526447C7BC09 ] C:\Users\Mom\AppData\Roaming\Spotify\spotify.exe
10:11:10.0959 5648 C:\Users\Mom\AppData\Roaming\Spotify\spotify.exe - ok
10:11:10.0961 5648 [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\WINDOWS\SysWOW64\msftedit.dll
10:11:10.0961 5648 C:\WINDOWS\SysWOW64\msftedit.dll - ok
10:11:10.0964 5648 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\WINDOWS\System32\msftedit.dll
10:11:10.0964 5648 C:\WINDOWS\System32\msftedit.dll - ok
10:11:10.0967 5648 [ C225E5307D8D4982A1687F2702C37C78 ] C:\WINDOWS\SysWOW64\msls31.dll
10:11:10.0967 5648 C:\WINDOWS\SysWOW64\msls31.dll - ok
10:11:10.0970 5648 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\WINDOWS\System32\msls31.dll
10:11:10.0970 5648 C:\WINDOWS\System32\msls31.dll - ok
10:11:10.0972 5648 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
10:11:10.0972 5648 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
10:11:10.0975 5648 [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\WINDOWS\SysWOW64\authui.dll
10:11:10.0975 5648 C:\WINDOWS\SysWOW64\authui.dll - ok
10:11:10.0978 5648 [ 28CA821606669BB9215CE010767720FA ] C:\WINDOWS\SysWOW64\cryptui.dll
10:11:10.0978 5648 C:\WINDOWS\SysWOW64\cryptui.dll - ok
10:11:10.0980 5648 [ AA92C4CA02533CC14437DF9D183FEC30 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
10:11:10.0981 5648 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
10:11:10.0983 5648 [ 34EBD4FF6A24D86BB4716D6AFCC1A89B ] C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
10:11:10.0983 5648 C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe - ok
10:11:10.0986 5648 [ 4848D6C95136402FEEE539AA73565216 ] C:\Program Files (x86)\Microsoft Office\Options14\MSOO.EXE
10:11:10.0986 5648 C:\Program Files (x86)\Microsoft Office\Options14\MSOO.EXE - ok
10:11:10.0989 5648 [ 7BFCDB133CB2915019074E5BF687A63E ] C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.EXE
10:11:10.0990 5648 C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.EXE - ok
10:11:10.0992 5648 [ B0DB4C35C028CCC350069AA8297847F2 ] C:\Program Files (x86)\Microsoft Office\Office12\POWERPNT.EXE
10:11:10.0992 5648 C:\Program Files (x86)\Microsoft Office\Office12\POWERPNT.EXE - ok
10:11:10.0995 5648 [ 6C8C001EF62CEFA7E333AF8D0AAED564 ] C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
10:11:10.0995 5648 C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE - ok
10:11:10.0999 5648 [ 196506408EEBAAE7A50AEC996BA875FD ] C:\Program Files (x86)\Microsoft Office\Office12\MSTORE.EXE
10:11:10.0999 5648 C:\Program Files (x86)\Microsoft Office\Office12\MSTORE.EXE - ok
10:11:11.0002 5648 [ 9E7C3FA7B1A462A09D4153CED41FEB61 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\OFFDIAG.EXE
10:11:11.0002 5648 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\OFFDIAG.EXE - ok
10:11:11.0005 5648 [ 602F7A721C4E684CA16629CC4587FF9D ] C:\Program Files (x86)\Microsoft Office\Office12\OIS.EXE
10:11:11.0005 5648 C:\Program Files (x86)\Microsoft Office\Office12\OIS.EXE - ok
10:11:11.0008 5648 [ 5F53F85E6FC0F6F242B34931777938EC ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccscanw.dll
10:11:11.0008 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ccscanw.dll - ok
10:11:11.0010 5648 [ D744D5B8145C2303B19A288AF695E9AD ] C:\WINDOWS\System32\ieframe.dll
10:11:11.0010 5648 C:\WINDOWS\System32\ieframe.dll - ok
10:11:11.0013 5648 [ F890C197ADF21D08DBA4643C9AA54B9F ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ecmldr32.dll
10:11:11.0013 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\ecmldr32.dll - ok
10:11:11.0016 5648 [ D66D82989DCF0D0C269DC21E413E2208 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\ECMSVR32.DLL
10:11:11.0016 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\ECMSVR32.DLL - ok
10:11:11.0019 5648 [ 956019F9950947A06389BAA6BE8438CA ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\NAVEX32A.DLL
10:11:11.0019 5648 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130427.007\NAVEX32A.DLL - ok
10:11:11.0022 5648 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\WINDOWS\System32\drivers\fastfat.sys
10:11:11.0022 5648 C:\WINDOWS\System32\drivers\fastfat.sys - ok
10:11:11.0025 5648 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\WINDOWS\System32\drivers\28329088.sys
10:11:11.0025 5648 C:\WINDOWS\System32\drivers\28329088.sys - ok
10:11:11.0028 5648 [ FB4045578F5180BDB1963AB352B78548 ] C:\WINDOWS\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
10:11:11.0028 5648 C:\WINDOWS\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
10:11:11.0031 5648 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\WINDOWS\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
10:11:11.0031 5648 C:\WINDOWS\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
10:11:11.0034 5648 [ 2DDEA2C345DA5BC589EFD398F220DB0E ] C:\WINDOWS\SysWOW64\SyncCenter.dll
10:11:11.0034 5648 C:\WINDOWS\SysWOW64\SyncCenter.dll - ok
10:11:11.0037 5648 [ 101797BA603D227946B4B5109867EB19 ] C:\WINDOWS\System32\SyncCenter.dll
10:11:11.0037 5648 C:\WINDOWS\System32\SyncCenter.dll - ok
10:11:11.0039 5648 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\WINDOWS\System32\DeviceCenter.dll
10:11:11.0039 5648 C:\WINDOWS\System32\DeviceCenter.dll - ok
10:11:11.0041 5648 [ 56CEED370508F69A1BA04939BD1BADDA ] C:\WINDOWS\SysWOW64\msutb.dll
10:11:11.0041 5648 C:\WINDOWS\SysWOW64\msutb.dll - ok
10:11:11.0044 5648 [ 8B285BDAB7735FDFB18E6F7122923B77 ] C:\WINDOWS\SysWOW64\UIAnimation.dll
10:11:11.0044 5648 C:\WINDOWS\SysWOW64\UIAnimation.dll - ok
10:11:11.0047 5648 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\WINDOWS\System32\UIAnimation.dll
10:11:11.0047 5648 C:\WINDOWS\System32\UIAnimation.dll - ok
10:11:11.0049 5648 [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\WINDOWS\SysWOW64\networkexplorer.dll
10:11:11.0049 5648 C:\WINDOWS\SysWOW64\networkexplorer.dll - ok
10:11:11.0052 5648 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\WINDOWS\System32\networkexplorer.dll
10:11:11.0052 5648 C:\WINDOWS\System32\networkexplorer.dll - ok
10:11:11.0055 5648 [ 9110FFAD124283F37D38771BB60556AF ] C:\WINDOWS\System32\dsound.dll
10:11:11.0055 5648 C:\WINDOWS\System32\dsound.dll - ok
10:11:11.0057 5648 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\WINDOWS\SysWOW64\dsound.dll
10:11:11.0057 5648 C:\WINDOWS\SysWOW64\dsound.dll - ok
10:11:11.0060 5648 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\WINDOWS\SysWOW64\opengl32.dll
10:11:11.0060 5648 C:\WINDOWS\SysWOW64\opengl32.dll - ok
10:11:11.0062 5648 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\WINDOWS\System32\opengl32.dll
10:11:11.0062 5648 C:\WINDOWS\System32\opengl32.dll - ok
10:11:11.0065 5648 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\WINDOWS\SysWOW64\glu32.dll
10:11:11.0065 5648 C:\WINDOWS\SysWOW64\glu32.dll - ok
10:11:11.0068 5648 [ F2967C0A97C0EA67D79D7F557213950D ] C:\WINDOWS\System32\glu32.dll
10:11:11.0068 5648 C:\WINDOWS\System32\glu32.dll - ok
10:11:11.0070 5648 [ B1CA4AA760FF0DDFA1C38E95D19CFEFB ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
10:11:11.0070 5648 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
10:11:11.0073 5648 [ 0654195051D1024C005E7BE135A6FEE7 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
10:11:11.0073 5648 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
10:11:11.0077 5648 [ E7FE89F69C3CC65CAD3D1ADC5D6A9F41 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
10:11:11.0077 5648 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
10:11:11.0080 5648 [ A1CC24FDE33D63E9762840E66697D8E5 ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\libcurl.dll
10:11:11.0080 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\libcurl.dll - ok
10:11:11.0083 5648 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\WINDOWS\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
10:11:11.0083 5648 C:\WINDOWS\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
10:11:11.0086 5648 [ E0CD5872CA4552056C4C705361A6BB5A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
10:11:11.0086 5648 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
10:11:11.0089 5648 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\WINDOWS\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
10:11:11.0089 5648 C:\WINDOWS\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
10:11:11.0092 5648 [ 9422A2BD1EF0C182C0FA3E39B88934FD ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL
10:11:11.0092 5648 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL - ok
10:11:11.0095 5648 [ E348062333014DA795838F3FAF4B98B4 ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEACNF.EXE
10:11:11.0095 5648 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEACNF.EXE - ok
10:11:11.0097 5648 [ 163A95975E1D8819E653AA3E961371CA ] C:\WINDOWS\twain_32.dll
10:11:11.0097 5648 C:\WINDOWS\twain_32.dll - ok
10:11:11.0100 5648 [ D6692338B985D4A0CA52B828314D897D ] C:\WINDOWS\SysWOW64\drprov.dll
10:11:11.0100 5648 C:\WINDOWS\SysWOW64\drprov.dll - ok
10:11:11.0103 5648 [ 63F2B3B0E7BEA4754ED7315EE9DF2CCC ] C:\WINDOWS\twain_32\CNQ2414\CISDS.DS
10:11:11.0103 5648 C:\WINDOWS\twain_32\CNQ2414\CISDS.DS - ok
10:11:11.0106 5648 [ 5F639198C4137075DA50E61C23963C11 ] C:\WINDOWS\System32\drprov.dll
10:11:11.0106 5648 C:\WINDOWS\System32\drprov.dll - ok
10:11:11.0108 5648 [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\WINDOWS\twain_32\wiatwain.ds
10:11:11.0108 5648 C:\WINDOWS\twain_32\wiatwain.ds - ok
10:11:11.0111 5648 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\WINDOWS\SysWOW64\ntlanman.dll
10:11:11.0111 5648 C:\WINDOWS\SysWOW64\ntlanman.dll - ok
10:11:11.0114 5648 [ 80279007CAB3549A5999348BD0C23732 ] C:\WINDOWS\SysWOW64\wiadss.dll
10:11:11.0114 5648 C:\WINDOWS\SysWOW64\wiadss.dll - ok
10:11:11.0117 5648 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\WINDOWS\System32\ntlanman.dll
10:11:11.0117 5648 C:\WINDOWS\System32\ntlanman.dll - ok
10:11:11.0119 5648 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\WINDOWS\SysWOW64\davclnt.dll
10:11:11.0119 5648 C:\WINDOWS\SysWOW64\davclnt.dll - ok
10:11:11.0122 5648 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\WINDOWS\System32\davclnt.dll
10:11:11.0122 5648 C:\WINDOWS\System32\davclnt.dll - ok
10:11:11.0125 5648 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\WINDOWS\SysWOW64\davhlpr.dll
10:11:11.0125 5648 C:\WINDOWS\SysWOW64\davhlpr.dll - ok
10:11:11.0128 5648 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\WINDOWS\System32\davhlpr.dll
10:11:11.0128 5648 C:\WINDOWS\System32\davhlpr.dll - ok
10:11:11.0130 5648 [ 518318A103C888001054EFA1236E5033 ] C:\WINDOWS\SysWOW64\dfshim.dll
10:11:11.0130 5648 C:\WINDOWS\SysWOW64\dfshim.dll - ok
10:11:11.0133 5648 [ E1DCEE9E3EC0522DF24397BE1A64E449 ] C:\WINDOWS\System32\dfshim.dll
10:11:11.0133 5648 C:\WINDOWS\System32\dfshim.dll - ok
10:11:11.0136 5648 [ BA32509D9B340162327B341013DE6522 ] C:\WINDOWS\SysWOW64\tapi32.dll
10:11:11.0136 5648 C:\WINDOWS\SysWOW64\tapi32.dll - ok
10:11:11.0138 5648 [ A9F245315D01D12AD4FBBEDE8E804BF6 ] C:\Program Files\Dell\DellDock\DellDock.exe
10:11:11.0138 5648 C:\Program Files\Dell\DellDock\DellDock.exe - ok
10:11:11.0141 5648 [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\WINDOWS\SysWOW64\stobject.dll
10:11:11.0141 5648 C:\WINDOWS\SysWOW64\stobject.dll - ok
10:11:11.0144 5648 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\WINDOWS\System32\stobject.dll
10:11:11.0144 5648 C:\WINDOWS\System32\stobject.dll - ok
10:11:11.0146 5648 [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\WINDOWS\SysWOW64\batmeter.dll
10:11:11.0146 5648 C:\WINDOWS\SysWOW64\batmeter.dll - ok
10:11:11.0149 5648 [ BB1DCBA6C366ECAA43A68F9C1CB788DB ] C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\libcurl.dll
10:11:11.0149 5648 C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\toolbox\adblocker\libcurl.dll - ok
10:11:11.0152 5648 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\WINDOWS\System32\batmeter.dll
10:11:11.0152 5648 C:\WINDOWS\System32\batmeter.dll - ok
10:11:11.0155 5648 [ 088CF5B6380FB9002F2A4246F812225D ] C:\WINDOWS\SysWOW64\asycfilt.dll
10:11:11.0155 5648 C:\WINDOWS\SysWOW64\asycfilt.dll - ok
10:11:11.0157 5648 [ 20437681A7678D440BBEE38C0453B852 ] C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll
10:11:11.0157 5648 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll - ok
10:11:11.0161 5648 [ 3DBEAEE8645FAF1232CE464C2CAC12EF ] C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\clr.dll
10:11:11.0161 5648 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
10:11:11.0163 5648 [ C335EC1182AC10B188705554E0BC1186 ] C:\WINDOWS\SysWOW64\msvfw32.dll
10:11:11.0163 5648 C:\WINDOWS\SysWOW64\msvfw32.dll - ok
10:11:11.0166 5648 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\WINDOWS\System32\ddraw.dll
10:11:11.0166 5648 C:\WINDOWS\System32\ddraw.dll - ok
10:11:11.0168 5648 [ 198552AEFECA69D646867EC8D792DE95 ] C:\WINDOWS\SysWOW64\ddraw.dll
10:11:11.0168 5648 C:\WINDOWS\SysWOW64\ddraw.dll - ok
10:11:11.0171 5648 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\WINDOWS\SysWOW64\dciman32.dll
10:11:11.0171 5648 C:\WINDOWS\SysWOW64\dciman32.dll - ok
10:11:11.0173 5648 [ 29C22748937F45C26590909E9F8E7137 ] C:\WINDOWS\System32\dciman32.dll
10:11:11.0173 5648 C:\WINDOWS\System32\dciman32.dll - ok
10:11:11.0176 5648 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\WINDOWS\System32\msimg32.dll
10:11:11.0176 5648 C:\WINDOWS\System32\msimg32.dll - ok
10:11:11.0178 5648 [ E5F7C30EDF0892667933BE879F067D67 ] C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
10:11:11.0178 5648 C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll - ok
10:11:11.0180 5648 [ CB21CD39637AC13F3455454B2F648257 ] C:\WINDOWS\System32\msvcr100_clr0400.dll
10:11:11.0180 5648 C:\WINDOWS\System32\msvcr100_clr0400.dll - ok
10:11:11.0183 5648 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\WINDOWS\System32\oledlg.dll
10:11:11.0183 5648 C:\WINDOWS\System32\oledlg.dll - ok
10:11:11.0186 5648 [ 5DFE72B9F1FF669070FC032090B7B982 ] C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
10:11:11.0186 5648 C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe - ok
10:11:11.0188 5648 [ 672D7C5080ACB003343006405DA2E621 ] C:\WINDOWS\SysWOW64\thumbcache.dll
10:11:11.0188 5648 C:\WINDOWS\SysWOW64\thumbcache.dll - ok
10:11:11.0190 5648 [ 24F4B480F335A6C724AF352253C5D98B ] C:\WINDOWS\System32\thumbcache.dll
10:11:11.0190 5648 C:\WINDOWS\System32\thumbcache.dll - ok
10:11:11.0193 5648 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\WINDOWS\System32\prnfldr.dll
10:11:11.0193 5648 C:\WINDOWS\System32\prnfldr.dll - ok
10:11:11.0196 5648 [ C940F2F5C60B3727C5F18840735B229C ] C:\WINDOWS\SysWOW64\AudioSes.dll
10:11:11.0196 5648 C:\WINDOWS\SysWOW64\AudioSes.dll - ok
10:11:11.0198 5648 [ 5C4AFB5C6ED90291BE565082A1DBFC9E ] C:\WINDOWS\System32\RtkCfg64.dll
10:11:11.0198 5648 C:\WINDOWS\System32\RtkCfg64.dll - ok
10:11:11.0201 5648 [ 64817817D46F2C57694C7BBAA242008B ] C:\WINDOWS\System32\RtkAPO64.dll
10:11:11.0201 5648 C:\WINDOWS\System32\RtkAPO64.dll - ok
10:11:11.0203 5648 [ BDA0B954A30498B5A7EDC6204CBA07ED ] C:\WINDOWS\SysWOW64\kerberos.dll
10:11:11.0203 5648 C:\WINDOWS\SysWOW64\kerberos.dll - ok
10:11:11.0206 5648 [ 3FF0FA0A81910617739644A06D06D016 ] C:\WINDOWS\SysWOW64\fdProxy.dll
10:11:11.0206 5648 C:\WINDOWS\SysWOW64\fdProxy.dll - ok
10:11:11.0209 5648 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\WINDOWS\System32\fdProxy.dll
10:11:11.0209 5648 C:\WINDOWS\System32\fdProxy.dll - ok
10:11:11.0211 5648 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] C:\WINDOWS\SysWOW64\provsvc.dll
10:11:11.0211 5648 C:\WINDOWS\SysWOW64\provsvc.dll - ok
10:11:11.0214 5648 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\WINDOWS\System32\DXP.dll
10:11:11.0214 5648 C:\WINDOWS\System32\DXP.dll - ok
10:11:11.0217 5648 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
10:11:11.0217 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
10:11:11.0220 5648 [ 3A3ED96B1BDA53DB3D8B17923C2CC9C0 ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\ccvrtrst.dll
10:11:11.0220 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\ccvrtrst.dll - ok
10:11:11.0222 5648 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\WINDOWS\System32\riched20.dll
10:11:11.0222 5648 C:\WINDOWS\System32\riched20.dll - ok
10:11:11.0225 5648 [ 5A7C9952A1BD6745D420193FC8DA9661 ] C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\ccset.dll
10:11:11.0225 5648 C:\Program Files (x86)\Norton Security Suite\Engine64\20.2.0.19\ccset.dll - ok
10:11:11.0228 5648 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\WINDOWS\System32\SensApi.dll
10:11:11.0228 5648 C:\WINDOWS\System32\SensApi.dll - ok
10:11:11.0230 5648 [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\WINDOWS\SysWOW64\Syncreg.dll
10:11:11.0231 5648 C:\WINDOWS\SysWOW64\Syncreg.dll - ok
10:11:11.0234 5648 [ 2153AD6068E042310CC34AE785475788 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\MyDock.Util\fc117348f1a7916804177334ca601d04\MyDock.Util.ni.dll
10:11:11.0234 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\MyDock.Util\fc117348f1a7916804177334ca601d04\MyDock.Util.ni.dll - ok
10:11:11.0237 5648 [ 12F0D265D1B13A6E6EF2BB8D3574B0DB ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\DellDock\942972b57ba8d2d5c2b1e2a06c4d83a0\DellDock.ni.exe
10:11:11.0237 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\DellDock\942972b57ba8d2d5c2b1e2a06c4d83a0\DellDock.ni.exe - ok
10:11:11.0241 5648 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\WINDOWS\System32\consent.exe
10:11:11.0242 5648 C:\WINDOWS\System32\consent.exe - ok
10:11:11.0244 5648 [ D5369247B6C11EAE2C0650D8303E23B4 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
10:11:11.0244 5648 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
10:11:11.0247 5648 [ C836175870E00ACC546066632E15BD10 ] C:\WINDOWS\ehome\ehSSO.dll
10:11:11.0247 5648 C:\WINDOWS\ehome\ehSSO.dll - ok
10:11:11.0251 5648 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\WINDOWS\SysWOW64\netshell.dll
10:11:11.0251 5648 C:\WINDOWS\SysWOW64\netshell.dll - ok
10:11:11.0254 5648 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\WINDOWS\SysWOW64\sti.dll
10:11:11.0254 5648 C:\WINDOWS\SysWOW64\sti.dll - ok
10:11:11.0256 5648 [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\WINDOWS\SysWOW64\AltTab.dll
10:11:11.0256 5648 C:\WINDOWS\SysWOW64\AltTab.dll - ok
10:11:11.0259 5648 [ 8D08F057D2927914E6D413F98969ACAD ] C:\WINDOWS\winsxs\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.7600.16385_en-us_581cd2bf5825dde9\comctl32.dll.mui
10:11:11.0259 5648 C:\WINDOWS\winsxs\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.7600.16385_en-us_581cd2bf5825dde9\comctl32.dll.mui - ok
10:11:11.0263 5648 [ 735263DA17BF5BAF9CCD483843BF9D5A ] C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
10:11:11.0263 5648 C:\WINDOWS\SysWOW64\WPDShServiceObj.dll - ok
10:11:11.0266 5648 [ D412B1B72C5AB020218E9A047D90CA05 ] C:\WINDOWS\SysWOW64\wmsgapi.dll
10:11:11.0266 5648 C:\WINDOWS\SysWOW64\wmsgapi.dll - ok
10:11:11.0269 5648 [ A9AB99EE7D39725EAFEC82732D2B3271 ] C:\Program Files\iPod\bin\iPodService.exe
10:11:11.0269 5648 C:\Program Files\iPod\bin\iPodService.exe - ok
10:11:11.0271 5648 [ 3D6F22551D422F97AACB0BB927E4C846 ] C:\WINDOWS\SysWOW64\pnidui.dll
10:11:11.0271 5648 C:\WINDOWS\SysWOW64\pnidui.dll - ok
10:11:11.0274 5648 [ BD626EF05967D14C772B8096292731A3 ] C:\WINDOWS\SysWOW64\QUTIL.DLL
10:11:11.0274 5648 C:\WINDOWS\SysWOW64\QUTIL.DLL - ok
10:11:11.0278 5648 [ B43687C534A49700BF4B3C9898763752 ] C:\WINDOWS\SysWOW64\MsCtfMonitor.dll
10:11:11.0278 5648 C:\WINDOWS\SysWOW64\MsCtfMonitor.dll - ok
10:11:11.0281 5648 [ BFC43967D25EA76082B9369B619AE5A7 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
10:11:11.0281 5648 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
10:11:11.0284 5648 [ 5CB4174FB02E0BD4639B6EBDE31EC8E1 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
10:11:11.0284 5648 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
10:11:11.0287 5648 [ 674B0C0F6A448EB185CAAB9C51D44032 ] C:\WINDOWS\SysWOW64\srchadmin.dll
10:11:11.0287 5648 C:\WINDOWS\SysWOW64\srchadmin.dll - ok
10:11:11.0290 5648 [ 140D9F911182357626165EA0BEB98C4F ] C:\WINDOWS\SysWOW64\ncsi.dll
10:11:11.0290 5648 C:\WINDOWS\SysWOW64\ncsi.dll - ok
10:11:11.0292 5648 [ EF71BA5DF59034962B0C62314A71351A ] C:\WINDOWS\SysWOW64\dhcpcore6.dll
10:11:11.0292 5648 C:\WINDOWS\SysWOW64\dhcpcore6.dll - ok
10:11:11.0295 5648 [ 9B9A0802B4E34CC4D9DB04AB6ABFA8AE ] C:\WINDOWS\SysWOW64\input.dll
10:11:11.0295 5648 C:\WINDOWS\SysWOW64\input.dll - ok
10:11:11.0297 5648 [ D629F73E88B2DA7F5BDA2C06466DCCC4 ] C:\WINDOWS\IME\SPTIP.DLL
10:11:11.0297 5648 C:\WINDOWS\IME\SPTIP.DLL - ok
10:11:11.0300 5648 [ 9A39A2A5F443A756C568C6ED5748AFE4 ] C:\WINDOWS\SysWOW64\ActionCenter.dll
10:11:11.0300 5648 C:\WINDOWS\SysWOW64\ActionCenter.dll - ok
10:11:11.0302 5648 [ 3EE10E01F87C77690AAE39DA7B8FDC2D ] C:\Program Files\Windows NT\TableTextService\TableTextService.dll
10:11:11.0302 5648 C:\Program Files\Windows NT\TableTextService\TableTextService.dll - ok
10:11:11.0305 5648 [ 0D71F2F6B428C2AA051E7441FDD15C78 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\2e1b9c0b0e0a3674f45a2e2d4385bc5b\VistaBridgeLibrary.ni.dll
10:11:11.0306 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\2e1b9c0b0e0a3674f45a2e2d4385bc5b\VistaBridgeLibrary.ni.dll - ok
10:11:11.0308 5648 [ DDD29EAB49CD1C6D3A88EAD9BB4CE5BA ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\MenuSkinning\adafaccbad1cb256c754eef42d807e83\MenuSkinning.ni.dll
10:11:11.0308 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\MenuSkinning\adafaccbad1cb256c754eef42d807e83\MenuSkinning.ni.dll - ok
10:11:11.0311 5648 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\WINDOWS\SysWOW64\wdmaud.drv
10:11:11.0311 5648 C:\WINDOWS\SysWOW64\wdmaud.drv - ok
10:11:11.0314 5648 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\WINDOWS\SysWOW64\ksuser.dll
10:11:11.0314 5648 C:\WINDOWS\SysWOW64\ksuser.dll - ok
10:11:11.0316 5648 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\WINDOWS\SysWOW64\avrt.dll
10:11:11.0316 5648 C:\WINDOWS\SysWOW64\avrt.dll - ok
10:11:11.0318 5648 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\WINDOWS\System32\Syncreg.dll
10:11:11.0319 5648 C:\WINDOWS\System32\Syncreg.dll - ok
10:11:11.0321 5648 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\WINDOWS\System32\ActionCenter.dll
10:11:11.0321 5648 C:\WINDOWS\System32\ActionCenter.dll - ok
10:11:11.0324 5648 [ 07393A09C46083588E751B63B03C8301 ] C:\WINDOWS\SysWOW64\msacm32.drv
10:11:11.0324 5648 C:\WINDOWS\SysWOW64\msacm32.drv - ok
10:11:11.0326 5648 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\WINDOWS\SysWOW64\midimap.dll
10:11:11.0326 5648 C:\WINDOWS\SysWOW64\midimap.dll - ok
10:11:11.0330 5648 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\WINDOWS\System32\netshell.dll
10:11:11.0330 5648 C:\WINDOWS\System32\netshell.dll - ok
10:11:11.0333 5648 [ BD4C1D83353BFB80F6BA019F6D0BA95B ] C:\WINDOWS\ehome\ehshell.exe
10:11:11.0333 5648 C:\WINDOWS\ehome\ehshell.exe - ok
10:11:11.0335 5648 [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\WINDOWS\SysWOW64\AudioEng.dll
10:11:11.0336 5648 C:\WINDOWS\SysWOW64\AudioEng.dll - ok
10:11:11.0338 5648 [ 28638660E651578C354BF43CD646EF6D ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
10:11:11.0338 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
10:11:11.0342 5648 [ 43C9CF6825CEA58F1815B7C3DBBB385C ] C:\WINDOWS\SysWOW64\Wpc.dll
10:11:11.0342 5648 C:\WINDOWS\SysWOW64\Wpc.dll - ok
10:11:11.0345 5648 [ 3DFF0C51DDD9B1A5B4F5186F2B542807 ] C:\Program Files (x86)\Google\Chrome\Application\IdVaultCore.dll
10:11:11.0345 5648 C:\Program Files (x86)\Google\Chrome\Application\IdVaultCore.dll - ok
10:11:11.0347 5648 [ 027675ED9B34EE1B91505C3B8752649F ] C:\WINDOWS\System32\Wpc.dll
10:11:11.0347 5648 C:\WINDOWS\System32\Wpc.dll - ok
10:11:11.0350 5648 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\WINDOWS\System32\WPDShServiceObj.dll
10:11:11.0350 5648 C:\WINDOWS\System32\WPDShServiceObj.dll - ok
10:11:11.0352 5648 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
10:11:11.0352 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
10:11:11.0356 5648 [ 8569E35D00F45972E506502EEE622BA4 ] C:\WINDOWS\System32\srchadmin.dll
10:11:11.0356 5648 C:\WINDOWS\System32\srchadmin.dll - ok
10:11:11.0359 5648 [ B5993A8EA3B0B051E2C7A0A800784601 ] C:\Users\Mom\Desktop\7zip_installer_d162802.exe
10:11:11.0359 5648 C:\Users\Mom\Desktop\7zip_installer_d162802.exe - ok
10:11:11.0362 5648 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\WINDOWS\System32\AltTab.dll
10:11:11.0362 5648 C:\WINDOWS\System32\AltTab.dll - ok
10:11:11.0365 5648 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\WINDOWS\System32\pnidui.dll
10:11:11.0365 5648 C:\WINDOWS\System32\pnidui.dll - ok
10:11:11.0368 5648 [ 407C688281A4B16239AA25D3723907C9 ] C:\Users\Mom\Desktop\ComboFix.exe
10:11:11.0368 5648 C:\Users\Mom\Desktop\ComboFix.exe - ok
10:11:11.0371 5648 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
10:11:11.0371 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
10:11:11.0374 5648 [ C765A00160CCD3AFC0A64DC017E5D574 ] C:\Program Files (x86)\Google\Chrome\Application\IdVaultCore.XmlSerializers.dll
10:11:11.0374 5648 C:\Program Files (x86)\Google\Chrome\Application\IdVaultCore.XmlSerializers.dll - ok
10:11:11.0377 5648 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
10:11:11.0377 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
10:11:11.0380 5648 [ 9E55A574E3A1688BE8C42568E48C81DC ] C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\fsx.exe
10:11:11.0380 5648 C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\fsx.exe - ok
10:11:11.0383 5648 [ C765A00160CCD3AFC0A64DC017E5D574 ] C:\Program Files (x86)\Constant Guard Protection Suite\IdVaultCore.XmlSerializers.dll
10:11:11.0383 5648 C:\Program Files (x86)\Constant Guard Protection Suite\IdVaultCore.XmlSerializers.dll - ok
10:11:11.0386 5648 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\WINDOWS\System32\QUTIL.DLL
10:11:11.0386 5648 C:\WINDOWS\System32\QUTIL.DLL - ok
10:11:11.0388 5648 [ E3D5E244807AD655787FCD25477CC1BC ] C:\WINDOWS\SysWOW64\bthprops.cpl
10:11:11.0388 5648 C:\WINDOWS\SysWOW64\bthprops.cpl - ok
10:11:11.0392 5648 [ 7FD4BC81F660AB157AC7A3BC0CDE9303 ] C:\Program Files (x86)\Google\Chrome\Application\CommonDotNET.dll
10:11:11.0392 5648 C:\Program Files (x86)\Google\Chrome\Application\CommonDotNET.dll - ok
10:11:11.0394 5648 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\WINDOWS\System32\bthprops.cpl
10:11:11.0394 5648 C:\WINDOWS\System32\bthprops.cpl - ok
10:11:11.0397 5648 [ 0181B4C10F409299E0D8EE130EF87353 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
10:11:11.0397 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
10:11:11.0400 5648 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Mom\Desktop\tdsskiller.exe
10:11:11.0400 5648 C:\Users\Mom\Desktop\tdsskiller.exe - ok
10:11:11.0403 5648 [ 45375DF47ED4D0535739465105AAABE3 ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
10:11:11.0403 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
10:11:11.0406 5648 [ 3BF7213044DD0701E9E03CFED78BB088 ] C:\Program Files (x86)\Google\Chrome\Application\Microsoft.mshtml.dll
10:11:11.0406 5648 C:\Program Files (x86)\Google\Chrome\Application\Microsoft.mshtml.dll - ok
10:11:11.0410 5648 [ 9DF7A7C74D8632CB5EBD37E3A374825E ] C:\WINDOWS\SysWOW64\webcheck.dll
10:11:11.0410 5648 C:\WINDOWS\SysWOW64\webcheck.dll - ok
10:11:11.0413 5648 [ C393CD1EC45F71DF2A2BB6E8B6DC3718 ] C:\Program Files\Dell\DellDock\MyDockLib.dll
10:11:11.0413 5648 C:\Program Files\Dell\DellDock\MyDockLib.dll - ok
10:11:11.0416 5648 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\WINDOWS\System32\webcheck.dll
10:11:11.0416 5648 C:\WINDOWS\System32\webcheck.dll - ok
10:11:11.0418 5648 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\WINDOWS\SysWOW64\mlang.dll
10:11:11.0418 5648 C:\WINDOWS\SysWOW64\mlang.dll - ok
10:11:11.0421 5648 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
10:11:11.0421 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
10:11:11.0424 5648 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\WINDOWS\System32\mlang.dll
10:11:11.0424 5648 C:\WINDOWS\System32\mlang.dll - ok
10:11:11.0427 5648 [ 2D11BC8B460957E62E4420373A0D8BDA ] C:\WINDOWS\SysWOW64\imapi2.dll
10:11:11.0427 5648 C:\WINDOWS\SysWOW64\imapi2.dll - ok
10:11:11.0430 5648 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\csc.exe
10:11:11.0430 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
10:11:11.0432 5648 [ 8130391F82D52D36C0441F714136957F ] C:\WINDOWS\System32\imapi2.dll
10:11:11.0432 5648 C:\WINDOWS\System32\imapi2.dll - ok
10:11:11.0435 5648 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
10:11:11.0435 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
10:11:11.0438 5648 [ C7952D0A4C43A965A1741916BB134751 ] C:\WINDOWS\SysWOW64\hgcpl.dll
10:11:11.0438 5648 C:\WINDOWS\SysWOW64\hgcpl.dll - ok
10:11:11.0440 5648 [ 3BF7213044DD0701E9E03CFED78BB088 ] C:\Program Files (x86)\Constant Guard Protection Suite\Microsoft.mshtml.dll
10:11:11.0440 5648 C:\Program Files (x86)\Constant Guard Protection Suite\Microsoft.mshtml.dll - ok
10:11:11.0443 5648 [ EE338F7673C339D5497C97E86D1011A3 ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\alink.dll
10:11:11.0443 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
10:11:11.0446 5648 [ E3A4D59ED585226D381225521BF2A36D ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
10:11:11.0446 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
10:11:11.0449 5648 [ 449F7C92A14B7F50B898FC67202A326C ] C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
10:11:11.0449 5648 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
10:11:11.0452 5648 [ 847D3AE376C0817161A14A82C8922A9E ] C:\WINDOWS\System32\netman.dll
10:11:11.0452 5648 C:\WINDOWS\System32\netman.dll - ok
10:11:11.0454 5648 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\WINDOWS\System32\sti.dll
10:11:11.0454 5648 C:\WINDOWS\System32\sti.dll - ok
10:11:11.0457 5648 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\WINDOWS\System32\AudioEng.dll
10:11:11.0457 5648 C:\WINDOWS\System32\AudioEng.dll - ok
10:11:11.0459 5648 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\WINDOWS\System32\hgcpl.dll
10:11:11.0459 5648 C:\WINDOWS\System32\hgcpl.dll - ok
10:11:11.0463 5648 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\WINDOWS\System32\FXSST.dll
10:11:11.0463 5648 C:\WINDOWS\System32\FXSST.dll - ok
10:11:11.0465 5648 [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\WINDOWS\SysWOW64\AUDIOKSE.dll
10:11:11.0465 5648 C:\WINDOWS\SysWOW64\AUDIOKSE.dll - ok
10:11:11.0468 5648 [ D8BFD3E541D03293A42E8BAD84FA3824 ] C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL
10:11:11.0468 5648 C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL - ok
10:11:11.0471 5648 [ C1395286B822E306B4FE1568A8A77813 ] C:\WINDOWS\System32\AUDIOKSE.dll
10:11:11.0471 5648 C:\WINDOWS\System32\AUDIOKSE.dll - ok
10:11:11.0474 5648 [ 942E57152F1CD0533644AB30EF1A4728 ] C:\WINDOWS\SysWOW64\FXSAPI.dll
10:11:11.0474 5648 C:\WINDOWS\SysWOW64\FXSAPI.dll - ok
10:11:11.0477 5648 [ 650CAEA856943E29F25A25D31E004B18 ] C:\WINDOWS\System32\FXSAPI.dll
10:11:11.0477 5648 C:\WINDOWS\System32\FXSAPI.dll - ok
10:11:11.0480 5648 [ 04CFE870C30640C9A369E0FE8C654B98 ] C:\WINDOWS\System32\MBWrp64.dll
10:11:11.0480 5648 C:\WINDOWS\System32\MBWrp64.dll - ok
10:11:11.0483 5648 [ 2C0787E77689E577C16235F463423DB6 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.43\chrome_launcher.exe
10:11:11.0483 5648 C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.43\chrome_launcher.exe - ok
10:11:11.0486 5648 [ C4096CA42199428B3D63DC206C197F0E ] C:\WINDOWS\SysWOW64\FXSRESM.dll
10:11:11.0486 5648 C:\WINDOWS\SysWOW64\FXSRESM.dll - ok
10:11:11.0489 5648 [ 016F661A5E4BAAF60452945770B1D686 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\chrome_launcher.exe
10:11:11.0489 5648 C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\chrome_launcher.exe - ok
10:11:11.0492 5648 [ F4B233C49ABD64B98272E4273B1D78B8 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Accessibility\8856f5a897356823c4afd49a886f7c5c\Accessibility.ni.dll
10:11:11.0492 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Accessibility\8856f5a897356823c4afd49a886f7c5c\Accessibility.ni.dll - ok
10:11:11.0495 5648 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\WINDOWS\System32\FXSRESM.dll
10:11:11.0495 5648 C:\WINDOWS\System32\FXSRESM.dll - ok
10:11:11.0497 5648 [ 4398FC24DCF85FD2B6BA3D042B41C136 ] C:\WINDOWS\System32\MBTHX64.dll
10:11:11.0497 5648 C:\WINDOWS\System32\MBTHX64.dll - ok
10:11:11.0500 5648 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\WINDOWS\System32\FXSSVC.exe
10:11:11.0500 5648 C:\WINDOWS\System32\FXSSVC.exe - ok
10:11:11.0502 5648 [ D39DA70FEA6BD713682F70635587DA9E ] C:\WINDOWS\SysWOW64\rasdlg.dll
10:11:11.0502 5648 C:\WINDOWS\SysWOW64\rasdlg.dll - ok
10:11:11.0507 5648 [ 25D74864274539330DCC4234140D11AF ] C:\WINDOWS\System32\MBAPO64.dll
10:11:11.0507 5648 C:\WINDOWS\System32\MBAPO64.dll - ok
10:11:11.0510 5648 [ D2155709E336C3BC15729EB87FEC6064 ] C:\WINDOWS\System32\rasdlg.dll
10:11:11.0510 5648 C:\WINDOWS\System32\rasdlg.dll - ok
10:11:11.0513 5648 [ EB35E676252DEAB2EDDDB77E189B77B1 ] C:\Program Files (x86)\Canon\MP Navigator EX 4.0\mpnex40.exe
10:11:11.0513 5648 C:\Program Files (x86)\Canon\MP Navigator EX 4.0\mpnex40.exe - ok
10:11:11.0516 5648 [ 640D47075C679D1A9F6A1BCDE0444884 ] C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.111.1\IdVault.BHO.dll
10:11:11.0516 5648 C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.111.1\IdVault.BHO.dll - ok
10:11:11.0520 5648 [ 825F9D1D4832301ECF9280E4CA33C6B9 ] C:\Program Files (x86)\Canon\IJEREG\CanoScan LiDE 110\IJEREG.exe
10:11:11.0520 5648 C:\Program Files (x86)\Canon\IJEREG\CanoScan LiDE 110\IJEREG.exe - ok
10:11:11.0523 5648 [ 640D47075C679D1A9F6A1BCDE0444884 ] C:\Program Files (x86)\Constant Guard Protection Suite\IdVault.BHO.dll
10:11:11.0523 5648 C:\Program Files (x86)\Constant Guard Protection Suite\IdVault.BHO.dll - ok
10:11:11.0526 5648 [ A904081158043C37470D656D6013B168 ] C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
10:11:11.0526 5648 C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe - ok
10:11:11.0529 5648 [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\WINDOWS\SysWOW64\mprapi.dll
10:11:11.0529 5648 C:\WINDOWS\SysWOW64\mprapi.dll - ok
10:11:11.0531 5648 [ 7F8678C59F188528D60104E697C2361E ] C:\WINDOWS\SysWOW64\mscms.dll
10:11:11.0531 5648 C:\WINDOWS\SysWOW64\mscms.dll - ok
10:11:11.0534 5648 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\WINDOWS\System32\WMALFXGFXDSP.dll
10:11:11.0534 5648 C:\WINDOWS\System32\WMALFXGFXDSP.dll - ok
10:11:11.0537 5648 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\WINDOWS\System32\mprapi.dll
10:11:11.0537 5648 C:\WINDOWS\System32\mprapi.dll - ok
10:11:11.0539 5648 [ D7FC9CA10821119F6B79092D0273E25D ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\9266d6e1f8057b5b62b460cbf33cda21\System.WorkflowServices.ni.dll
10:11:11.0539 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\9266d6e1f8057b5b62b460cbf33cda21\System.WorkflowServices.ni.dll - ok
10:11:11.0542 5648 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\WINDOWS\SysWOW64\icm32.dll
10:11:11.0542 5648 C:\WINDOWS\SysWOW64\icm32.dll - ok
10:11:11.0544 5648 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\WINDOWS\SysWOW64\mfplat.dll
10:11:11.0544 5648 C:\WINDOWS\SysWOW64\mfplat.dll - ok
10:11:11.0547 5648 [ C011C1EE7BD7FCCEF320F298DC9FAD45 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\1e04a5319c58010e945220af2751d34e\System.ServiceModel.Web.ni.dll
10:11:11.0547 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\1e04a5319c58010e945220af2751d34e\System.ServiceModel.Web.ni.dll - ok
10:11:11.0551 5648 [ 04B88428A872390D235BE52D38A9D4EF ] C:\WINDOWS\SysWOW64\dot3api.dll
10:11:11.0552 5648 C:\WINDOWS\SysWOW64\dot3api.dll - ok
10:11:11.0554 5648 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\WINDOWS\System32\dot3api.dll
10:11:11.0554 5648 C:\WINDOWS\System32\dot3api.dll - ok
10:11:11.0557 5648 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\WINDOWS\System32\mfplat.dll
10:11:11.0557 5648 C:\WINDOWS\System32\mfplat.dll - ok
10:11:11.0559 5648 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\WINDOWS\SysWOW64\eappcfg.dll
10:11:11.0559 5648 C:\WINDOWS\SysWOW64\eappcfg.dll - ok
10:11:11.0562 5648 [ 0D753307D274F3688BD21C377B616700 ] C:\WINDOWS\System32\eappcfg.dll
10:11:11.0562 5648 C:\WINDOWS\System32\eappcfg.dll - ok
10:11:11.0565 5648 [ 8063046AA70B97CA9985672B8848FB2E ] C:\WINDOWS\SysWOW64\wlanhlp.dll
10:11:11.0565 5648 C:\WINDOWS\SysWOW64\wlanhlp.dll - ok
10:11:11.0568 5648 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\WINDOWS\System32\wlanhlp.dll
10:11:11.0568 5648 C:\WINDOWS\System32\wlanhlp.dll - ok
10:11:11.0571 5648 [ B010CF886420EE29C2C276646721D255 ] C:\WINDOWS\SysWOW64\wlanapi.dll
10:11:11.0571 5648 C:\WINDOWS\SysWOW64\wlanapi.dll - ok
10:11:11.0574 5648 [ 357BE883C5236BFC7341CB9E82308908 ] C:\WINDOWS\System32\wlanapi.dll
10:11:11.0574 5648 C:\WINDOWS\System32\wlanapi.dll - ok
10:11:11.0576 5648 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\WINDOWS\SysWOW64\wlanutil.dll
10:11:11.0576 5648 C:\WINDOWS\SysWOW64\wlanutil.dll - ok
10:11:11.0579 5648 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\WINDOWS\System32\wlanutil.dll
10:11:11.0579 5648 C:\WINDOWS\System32\wlanutil.dll - ok
10:11:11.0583 5648 [ F748F53FE09D21D8ECBB6421E6792024 ] C:\WINDOWS\SysWOW64\onex.dll
10:11:11.0583 5648 C:\WINDOWS\SysWOW64\onex.dll - ok
10:11:11.0585 5648 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\WINDOWS\System32\onex.dll
10:11:11.0585 5648 C:\WINDOWS\System32\onex.dll - ok
10:11:11.0588 5648 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\WINDOWS\SysWOW64\eappprxy.dll
10:11:11.0588 5648 C:\WINDOWS\SysWOW64\eappprxy.dll - ok
10:11:11.0590 5648 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\WINDOWS\System32\eappprxy.dll
10:11:11.0590 5648 C:\WINDOWS\System32\eappprxy.dll - ok
10:11:11.0593 5648 [ E1BB40258A2E41B8E347152A0613C4B1 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Security\3abd733e8fa28fafbfc99458fdf691da\System.Security.ni.dll
10:11:11.0593 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Security\3abd733e8fa28fafbfc99458fdf691da\System.Security.ni.dll - ok
10:11:11.0596 5648 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
10:11:11.0596 5648 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
10:11:11.0599 5648 [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\WINDOWS\SysWOW64\WWanAPI.dll
10:11:11.0599 5648 C:\WINDOWS\SysWOW64\WWanAPI.dll - ok
10:11:11.0602 5648 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\WINDOWS\System32\WWanAPI.dll
10:11:11.0602 5648 C:\WINDOWS\System32\WWanAPI.dll - ok
10:11:11.0605 5648 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
10:11:11.0605 5648 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
10:11:11.0608 5648 [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\WINDOWS\SysWOW64\wwapi.dll
10:11:11.0608 5648 C:\WINDOWS\SysWOW64\wwapi.dll - ok
10:11:11.0612 5648 [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\WINDOWS\SysWOW64\wmp.dll
10:11:11.0612 5648 C:\WINDOWS\SysWOW64\wmp.dll - ok
10:11:11.0615 5648 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\WINDOWS\System32\wwapi.dll
10:11:11.0615 5648 C:\WINDOWS\System32\wwapi.dll - ok
10:11:11.0618 5648 [ D39DA5B7139B4B5147B3C6A94978B5AA ] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
10:11:11.0618 5648 C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe - ok
10:11:11.0621 5648 [ 02530B0B7E048DD5AC8D52DAEACAEB2B ] C:\WINDOWS\SysWOW64\QAGENT.DLL
10:11:11.0621 5648 C:\WINDOWS\SysWOW64\QAGENT.DLL - ok
10:11:11.0625 5648 [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\WINDOWS\SysWOW64\wmploc.DLL
10:11:11.0625 5648 C:\WINDOWS\SysWOW64\wmploc.DLL - ok
10:11:11.0629 5648 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\WINDOWS\System32\QAGENT.DLL
10:11:11.0629 5648 C:\WINDOWS\System32\QAGENT.DLL - ok
10:11:11.0632 5648 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\WINDOWS\SysWOW64\pcwum.dll
10:11:11.0632 5648 C:\WINDOWS\SysWOW64\pcwum.dll - ok
10:11:11.0636 5648 [ E4F6125ED5185F8FA37CC4F449B85526 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
10:11:11.0636 5648 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
10:11:11.0639 5648 [ 535C4B88EF6F89EAC0B923AF94451C9C ] C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe
10:11:11.0639 5648 C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe - ok
10:11:11.0642 5648 [ 01073F2BA36792C9BFD1BD622A6247B3 ] C:\WINDOWS\System32\wpccpl.dll
10:11:11.0642 5648 C:\WINDOWS\System32\wpccpl.dll - ok
10:11:11.0644 5648 [ 5CF15474FFDB5005E54958DF6EDD97AB ] C:\WINDOWS\SysWOW64\wmdrmdev.dll
10:11:11.0644 5648 C:\WINDOWS\SysWOW64\wmdrmdev.dll - ok
10:11:11.0647 5648 [ CFE0D54AF7E1B87C92ED99E596410737 ] C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
10:11:11.0647 5648 C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe - ok
10:11:11.0650 5648 [ BA502FE020F2B4880D7130480ECDDCAF ] C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE
10:11:11.0650 5648 C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE - ok
10:11:11.0653 5648 [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\WINDOWS\SysWOW64\drmv2clt.dll
10:11:11.0653 5648 C:\WINDOWS\SysWOW64\drmv2clt.dll - ok
10:11:11.0656 5648 [ E2327D6860A0BDA5F06D753F8A6AF934 ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\navw32.exe
10:11:11.0656 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\navw32.exe - ok
10:11:11.0659 5648 [ 04ECDBFCFE16887E16CD4FE6B341EA88 ] C:\Program Files\Dell Support Center\pcdrcui.exe
10:11:11.0659 5648 C:\Program Files\Dell Support Center\pcdrcui.exe - ok
10:11:11.0662 5648 [ 0E0301A03F09BCB07F60BF211778C702 ] C:\Program Files\Dell Support Center\pcdlauncher.exe
10:11:11.0662 5648 C:\Program Files\Dell Support Center\pcdlauncher.exe - ok
10:11:11.0666 5648 [ 869581140E87B4FABE1E68A9D8C84AF7 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\ProtectRP\ProtectRP.exe
10:11:11.0666 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\ProtectRP\ProtectRP.exe - ok
10:11:11.0668 5648 [ EA2B00551F3E7B3D5F7FB730A55F8246 ] C:\WINDOWS\SysWOW64\blackbox.dll
10:11:11.0668 5648 C:\WINDOWS\SysWOW64\blackbox.dll - ok
10:11:11.0671 5648 [ 347AAE83C7C7B787CED89544532AA47D ] C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
10:11:11.0671 5648 C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll - ok
10:11:11.0674 5648 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\WINDOWS\System32\PhotoMetadataHandler.dll
10:11:11.0674 5648 C:\WINDOWS\System32\PhotoMetadataHandler.dll - ok
10:11:11.0676 5648 [ AF2340DC7B439FC3429DA92E8EA35750 ] C:\WINDOWS\SysWOW64\migwiz\migwiz.exe
10:11:11.0676 5648 C:\WINDOWS\SysWOW64\migwiz\migwiz.exe - ok
10:11:11.0679 5648 [ BEAC1C0FBA6212F388559E1B68BA1EE2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\PSTImageExt\STImageExtPlg.exe
10:11:11.0679 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\PSTImageExt\STImageExtPlg.exe - ok
10:11:11.0682 5648 [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\WINDOWS\SysWOW64\upnp.dll
10:11:11.0682 5648 C:\WINDOWS\SysWOW64\upnp.dll - ok
10:11:11.0684 5648 [ 62A6EB5771580CAE445804389F3F7432 ] C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
10:11:11.0684 5648 C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll - ok
10:11:11.0687 5648 [ F1C19F0AA151B90A7416FA1D50DDB582 ] C:\WINDOWS\System32\WindowsCodecsExt.dll
10:11:11.0687 5648 C:\WINDOWS\System32\WindowsCodecsExt.dll - ok
10:11:11.0690 5648 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\WINDOWS\SysWOW64\ssdpapi.dll
10:11:11.0690 5648 C:\WINDOWS\SysWOW64\ssdpapi.dll - ok
10:11:11.0692 5648 [ 044C1D87174661B431F440B17850EE9D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Upgrade\UpgradePlg.exe
10:11:11.0692 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Upgrade\UpgradePlg.exe - ok
10:11:11.0695 5648 [ 1D296F090ED401967B30BD2B970DC306 ] C:\WINDOWS\System32\icm32.dll
10:11:11.0695 5648 C:\WINDOWS\System32\icm32.dll - ok
10:11:11.0698 5648 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\WINDOWS\System32\ssdpsrv.dll
10:11:11.0698 5648 C:\WINDOWS\System32\ssdpsrv.dll - ok
10:11:11.0700 5648 [ 6AED23C7B6E189EA826BCDCCD41E0FF0 ] C:\ProgramData\Dell\DellDock\uninstaller.exe
10:11:11.0700 5648 C:\ProgramData\Dell\DellDock\uninstaller.exe - ok
10:11:11.0703 5648 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\WINDOWS\SysWOW64\IconCodecService.dll
10:11:11.0703 5648 C:\WINDOWS\SysWOW64\IconCodecService.dll - ok
10:11:11.0706 5648 [ 715BFF236158F61C042928A53C0D5AA8 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
10:11:11.0706 5648 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
10:11:11.0708 5648 [ 89F4D0DD6606A2FE15931E6888DBBC8D ] C:\WINDOWS\SysWOW64\stdole2.tlb
10:11:11.0708 5648 C:\WINDOWS\SysWOW64\stdole2.tlb - ok
10:11:11.0711 5648 [ 7633F554EEAFDE7F144B41C2FCAF5F63 ] C:\WINDOWS\System32\SnippingTool.exe
10:11:11.0711 5648 C:\WINDOWS\System32\SnippingTool.exe - ok
10:11:11.0713 5648 [ 41446E7545BB7B4167DE8A274CC924E3 ] C:\Program Files\Internet Explorer\ieproxy.dll
10:11:11.0714 5648 C:\Program Files\Internet Explorer\ieproxy.dll - ok
10:11:11.0716 5648 [ 481B9CCFE45A50085E8254C921C0AC30 ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
10:11:11.0716 5648 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll - ok
10:11:11.0719 5648 [ 20A20A911CD79A6F6839167149A05668 ] C:\WINDOWS\SysWOW64\syncui.dll
10:11:11.0719 5648 C:\WINDOWS\SysWOW64\syncui.dll - ok
10:11:11.0722 5648 [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\WINDOWS\SysWOW64\wmpps.dll
10:11:11.0722 5648 C:\WINDOWS\SysWOW64\wmpps.dll - ok
10:11:11.0724 5648 [ B8963976FB0DBDE1114E822CB72609CD ] C:\Users\Mom\AppData\Local\Strongvault Online Backup\CtxMenu.dll
10:11:11.0724 5648 C:\Users\Mom\AppData\Local\Strongvault Online Backup\CtxMenu.dll - ok
10:11:11.0727 5648 [ 7B97346CE563B74BBCC120FC83E5A6D9 ] C:\WINDOWS\SysWOW64\wmpmde.dll
10:11:11.0727 5648 C:\WINDOWS\SysWOW64\wmpmde.dll - ok
10:11:11.0730 5648 [ 8CD1DEE212E52B9C22E66DBA44991D32 ] C:\WINDOWS\SysWOW64\httpapi.dll
10:11:11.0730 5648 C:\WINDOWS\SysWOW64\httpapi.dll - ok
10:11:11.0733 5648 [ CBBD4D79EEC3EF5A4ADAE9697944C6B9 ] C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
10:11:11.0733 5648 C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL - ok
10:11:11.0735 5648 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\WINDOWS\SysWOW64\devenum.dll
10:11:11.0735 5648 C:\WINDOWS\SysWOW64\devenum.dll - ok
10:11:11.0738 5648 [ 7069AAB8536F29ED7323140973A2894B ] C:\WINDOWS\SysWOW64\msdmo.dll
10:11:11.0738 5648 C:\WINDOWS\SysWOW64\msdmo.dll - ok
10:11:11.0740 5648 [ 9972A6ED4F2388DBFA8E0A96F6F3FDF1 ] C:\WINDOWS\SysWOW64\msvcr70.dll
10:11:11.0740 5648 C:\WINDOWS\SysWOW64\msvcr70.dll - ok
10:11:11.0743 5648 [ 833FBB672460EFCE8011D262175FAD33 ] C:\WINDOWS\SysWOW64\upnphost.dll
10:11:11.0743 5648 C:\WINDOWS\SysWOW64\upnphost.dll - ok
10:11:11.0746 5648 [ A45CB10FC8C4DCA23F96FE4D334F64FE ] C:\WINDOWS\SysWOW64\msxml3r.dll
10:11:11.0746 5648 C:\WINDOWS\SysWOW64\msxml3r.dll - ok
10:11:11.0748 5648 [ 03AA82C3772DE28C96E4C83A4A07AF61 ] C:\WINDOWS\SysWOW64\en-US\FirewallAPI.dll.mui
10:11:11.0748 5648 C:\WINDOWS\SysWOW64\en-US\FirewallAPI.dll.mui - ok
10:11:11.0751 5648 [ 71E68F2443A80BD4DA89181889C457EA ] C:\WINDOWS\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
10:11:11.0751 5648 C:\WINDOWS\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\UPnP Device Host\upnphost\udhisapi.dll - ok
10:11:11.0754 5648 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\WINDOWS\System32\wsock32.dll
10:11:11.0754 5648 C:\WINDOWS\System32\wsock32.dll - ok
10:11:11.0757 5648 [ 423982DD851406A52B6399DDB196C606 ] C:\WINDOWS\System32\wmdrmdev.dll
10:11:11.0757 5648 C:\WINDOWS\System32\wmdrmdev.dll - ok
10:11:11.0759 5648 [ 2C1055E2C6D42753241FB2A129136994 ] C:\WINDOWS\System32\drmv2clt.dll
10:11:11.0759 5648 C:\WINDOWS\System32\drmv2clt.dll - ok
10:11:11.0762 5648 [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
10:11:11.0762 5648 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
10:11:11.0765 5648 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\WINDOWS\SysWOW64\rundll32.exe
10:11:11.0765 5648 C:\WINDOWS\SysWOW64\rundll32.exe - ok
10:11:11.0767 5648 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\WINDOWS\System32\wmp.dll
10:11:11.0768 5648 C:\WINDOWS\System32\wmp.dll - ok
10:11:11.0770 5648 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\WINDOWS\System32\blackbox.dll
10:11:11.0770 5648 C:\WINDOWS\System32\blackbox.dll - ok
10:11:11.0773 5648 [ BFC68382466436FAE8B7A27966FB98CB ] C:\WINDOWS\AppPatch\acwow64.dll
10:11:11.0773 5648 C:\WINDOWS\AppPatch\acwow64.dll - ok
10:11:11.0776 5648 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\WINDOWS\System32\upnp.dll
10:11:11.0776 5648 C:\WINDOWS\System32\upnp.dll - ok
10:11:11.0778 5648 [ CF4B9326EA3AF8D69EB743FB34AC8BF5 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\78967b28f748b8807eaa97c1cb454adc\WindowsFormsIntegration.ni.dll
10:11:11.0778 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\78967b28f748b8807eaa97c1cb454adc\WindowsFormsIntegration.ni.dll - ok
10:11:11.0782 5648 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\WINDOWS\System32\wmploc.DLL
10:11:11.0782 5648 C:\WINDOWS\System32\wmploc.DLL - ok
10:11:11.0785 5648 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\WINDOWS\System32\wmpps.dll
10:11:11.0785 5648 C:\WINDOWS\System32\wmpps.dll - ok
10:11:11.0788 5648 [ F149E8CAE538DBF7059B00326673F602 ] C:\WINDOWS\System32\wmpmde.dll
10:11:11.0788 5648 C:\WINDOWS\System32\wmpmde.dll - ok
10:11:11.0790 5648 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\WINDOWS\System32\httpapi.dll
10:11:11.0790 5648 C:\WINDOWS\System32\httpapi.dll - ok
10:11:11.0793 5648 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\WINDOWS\System32\WinSATAPI.dll
10:11:11.0793 5648 C:\WINDOWS\System32\WinSATAPI.dll - ok
10:11:11.0795 5648 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\WINDOWS\System32\MSMPEG2ENC.DLL
10:11:11.0795 5648 C:\WINDOWS\System32\MSMPEG2ENC.DLL - ok
10:11:11.0797 5648 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\WINDOWS\System32\upnphost.dll
10:11:11.0797 5648 C:\WINDOWS\System32\upnphost.dll - ok
10:11:11.0800 5648 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\WINDOWS\System32\msxml3.dll
10:11:11.0800 5648 C:\WINDOWS\System32\msxml3.dll - ok
10:11:11.0802 5648 [ F88A52EB62019D6A62FDD9E08034DBD8 ] C:\WINDOWS\SysWOW64\autochk.exe
10:11:11.0802 5648 C:\WINDOWS\SysWOW64\autochk.exe - ok
10:11:11.0805 5648 [ B5C5DCAD3899512020D135600129D665 ] C:\WINDOWS\SysWOW64\wininit.exe
10:11:11.0805 5648 C:\WINDOWS\SysWOW64\wininit.exe - ok
10:11:11.0809 5648 [ 230EA9ABBC3432CDE388F4891E76E867 ] C:\WINDOWS\SysWOW64\udhisapi.dll
10:11:11.0809 5648 C:\WINDOWS\SysWOW64\udhisapi.dll - ok
10:11:11.0812 5648 [ 71E68F2443A80BD4DA89181889C457EA ] C:\WINDOWS\System32\udhisapi.dll
10:11:11.0812 5648 C:\WINDOWS\System32\udhisapi.dll - ok
10:11:11.0815 5648 [ 2C180B3424E627CA83DE860275C70FB2 ] C:\Program Files (x86)\Constant Guard Protection Suite\sqlite3.dll
10:11:11.0815 5648 C:\Program Files (x86)\Constant Guard Protection Suite\sqlite3.dll - ok
10:11:11.0818 5648 [ 8000C3DF097C04DC25CC56880CE89AB3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsLauncher.exe
10:11:11.0818 5648 C:\Program Files (x86)\Dell DataSafe Local Backup\DsLauncher.exe - ok
10:11:11.0822 5648 [ 534A3CB0847BA114F0D8A5F2BB2EF6D0 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
10:11:11.0822 5648 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe - ok
10:11:11.0824 5648 [ B55F3AA2B058B47F3F94A52B15B630DA ] C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.XmlSerializers.dll
10:11:11.0824 5648 C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.XmlSerializers.dll - ok
10:11:11.0827 5648 [ 4F2659160AFCCA990305816946F69407 ] C:\WINDOWS\SysWOW64\taskeng.exe
10:11:11.0827 5648 C:\WINDOWS\SysWOW64\taskeng.exe - ok
10:11:11.0829 5648 [ F2C82BA7E80C6054D5D20F3FBD4CFD34 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
10:11:11.0829 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE - ok
10:11:11.0834 5648 [ C7A51D3F93E2A7917C924111D80F4222 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualSearchHost.exe
10:11:11.0834 5648 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\VirtualSearchHost.exe - ok
10:11:11.0837 5648 [ E1AC89F6C5252057E6062843E36A6701 ] C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
10:11:11.0837 5648 C:\WINDOWS\SysWOW64\SearchProtocolHost.exe - ok
10:11:11.0839 5648 [ 45FB05F743E626D9E239E52602CEA041 ] C:\WINDOWS\SysWOW64\msctfui.dll
10:11:11.0839 5648 C:\WINDOWS\SysWOW64\msctfui.dll - ok
10:11:11.0842 5648 [ 80739D6157FDF84E444C659AC3B0E41E ] C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
10:11:11.0842 5648 C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll - ok
10:11:11.0845 5648 [ A6CD6B3F71E13E2E45B727FB8A47EA87 ] C:\WINDOWS\SysWOW64\SearchFilterHost.exe
10:11:11.0845 5648 C:\WINDOWS\SysWOW64\SearchFilterHost.exe - ok
10:11:11.0849 5648 [ F4687BCD29BA7D958DD942DB0624D5A2 ] C:\WINDOWS\SysWOW64\MigAutoPlay.exe
10:11:11.0849 5648 C:\WINDOWS\SysWOW64\MigAutoPlay.exe - ok
10:11:11.0851 5648 [ 8F1913EE046F16D263A793D53BC108DB ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\536d704e93ffec9b54e4a0312fb5b996\System.Transactions.ni.dll
10:11:11.0852 5648 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Transactions\536d704e93ffec9b54e4a0312fb5b996\System.Transactions.ni.dll - ok
10:11:11.0854 5648 [ 5F3F1BF5F5B43293953FC915845910C4 ] C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
10:11:11.0854 5648 C:\WINDOWS\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
10:11:11.0857 5648 [ A2F2CB2B9EF133B3D24BCE7180B3596E ] C:\Users\Mom\AppData\Local\Strongvault Online Backup\SMessaging.exe
10:11:11.0857 5648 C:\Users\Mom\AppData\Local\Strongvault Online Backup\SMessaging.exe - ok
10:11:11.0860 5648 [ 9F15AADFE9F45251B8D100DE52D85E14 ] C:\Program Files (x86)\Strongvault Online Backup\SMessenger.exe
10:11:11.0860 5648 C:\Program Files (x86)\Strongvault Online Backup\SMessenger.exe - ok
10:11:11.0863 5648 [ E29BF277699B948BD42964F74E4AE7CA ] C:\Users\Mom\AppData\Roaming\Genieo\Application\Updater\bin\genupdater.exe
10:11:11.0863 5648 C:\Users\Mom\AppData\Roaming\Genieo\Application\Updater\bin\genupdater.exe - ok
10:11:11.0865 5648 [ A74ADEDB91F7BCFC58630BF35194EE1B ] C:\Users\Mom\AppData\Roaming\Genieo\Application\TrayUi\bin\gentray.exe
10:11:11.0866 5648 C:\Users\Mom\AppData\Roaming\Genieo\Application\TrayUi\bin\gentray.exe - ok
10:11:11.0869 5648 [ BA323907025874262DBD552F5BBBEFBD ] C:\Users\Mom\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
10:11:11.0869 5648 C:\Users\Mom\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
10:11:11.0871 5648 [ 46FD58A19453BC8C54E1F2EA7255869D ] C:\Program Files (x86)\Steam\steam.exe
10:11:11.0872 5648 C:\Program Files (x86)\Steam\steam.exe - ok
10:11:11.0875 5648 [ 5ECB7DFFC56E2C2CEDE08F4E18613E7D ] C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\qbackup.dll
10:11:11.0875 5648 C:\Program Files (x86)\Norton Security Suite\Engine\20.2.0.19\qbackup.dll - ok
10:11:11.0878 5648 [ 8ACF67C60AFC9918FE12C1588AC3B8EF ] C:\Program Files\CCleaner\CCleaner64.exe
10:11:11.0878 5648 C:\Program Files\CCleaner\CCleaner64.exe - ok
10:11:11.0881 5648 [ CC783B19C58E4AC43921F716344922BC ] C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
10:11:11.0881 5648 C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe - ok
10:11:11.0884 5648 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\WINDOWS\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
10:11:11.0884 5648 C:\WINDOWS\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe - ok
10:11:11.0886 5648 ============================================================
10:11:11.0886 5648 Scan finished
10:11:11.0886 5648 ============================================================
10:11:11.0891 5192 Detected object count: 4
10:11:11.0891 5192 Actual detected object count: 4
10:11:46.0824 5192 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
10:11:46.0824 5192 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:11:46.0825 5192 FastFreeConverterUpdt ( UnsignedFile.Multi.Generic ) - skipped by user
10:11:46.0825 5192 FastFreeConverterUpdt ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:11:46.0829 5192 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
10:11:46.0829 5192 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:11:46.0829 5192 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
10:11:46.0830 5192 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

#14
Denise0811

Posted 28 April 2013 - 09:38 AM

Member

Topic Starter
Member
31 posts

When I ran the Malwarebytes Anti Rootkit it said no malware was found and no cleanup was necessary.

#15
gringo_pr

Posted 28 April 2013 - 02:31 PM

Trusted Helper

Malware Removal
7,268 posts

Hello

I would like you to rerun TDSSKiller and this time when it gets to this part

\Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
\Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
I want you to select Delete this time instead of skip.

Gringo