Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Need help removing Win32/Olmarik.tdl4 Trojan [Closed]


  • This topic is locked This topic is locked

#1
ButterflyX

ButterflyX

    Member

  • Member
  • PipPip
  • 13 posts
Eset found win32/Olmarik.tdl4trojan and cannot delete. Possible other viruses, malware, adware, Trojans. I do not know but really need help cleaning my pc. Please Help!
  • 0

Advertisements


#2
Phel

Phel

    Trusted Helper

  • Malware Removal
  • 1,386 posts
Hello, ButterflyX and welcome to GeeksToGo!

You can call me Phel and today I will help you with your trouble.

Please, read these instructions carefully, because they contain some very useful information.

Please, let me know, if you don't understand something. It is really important to understand any instruction. Also, please read all instructions carefully before performing them. Feel free to ask questions, if you aren't sure.

Please, be patient. You should stay here until your computer will become really clean. Malware Removal isn't very fast procedure, it usually has multiple steps, but result should be glad.;)

Please note, that my answers could come with a slight delay, because they are checked by my teacher.

To start with I need to get some logs. Please, follow these steps:

Download OTL to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic

  • 0

#3
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
[2013/04/18 19:49:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Extensions
[2013/04/05 20:30:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions
[2013/04/05 20:30:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}
[2013/04/05 20:30:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\[email protected]
[2013/06/20 16:50:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\extensions
[2013/02/03 14:21:10 | 000,213,444 | ---- | M] () (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\[email protected]
[2013/06/20 15:38:46 | 000,002,443 | ---- | M] () -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\searchplugins\Web Search.xml
[2013/06/20 16:48:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/06/20 15:44:02 | 000,000,000 | ---D | M] (BasicServe) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{740B3FD5-4483-469D-BE7F-8555B153BD04}
[2013/04/10 02:58:33 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013/04/10 02:57:54 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://feed.snap.do/...Date=20/06/2013
CHR - plugin: First user (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Error reading preferences file
CHR - Extension: We-Care.com Reminder = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ippkomaaonokjnfjoikaemidanojkfmm\1.0.0.32_0\
CHR - Extension: DefaultTab = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.19_0\
CHR - Extension: Norton Identity Protection = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.11.8_0\
CHR - Extension: Yontoo = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.3_0\
CHR - Extension: ArcadeCandy Games = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfegheljpcijmdgonkecjpcaopjlpac\1.30.455_0\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
O2 - BHO: (SearchYa Helper Object) - {25927741-5E5B-4D27-8D8B-9188FE64373F} - C:\Program Files (x86)\SearchYa!\1.8.8.0\bh\searchya.dll (Montera Technologeis LTD)
O2 - BHO: (Toolbar BHO) - {27488090-768a-4d20-a938-f223f71c344c} - C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qbar.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Search Assistant BHO) - {bd3ea7c2-3af8-4463-9a9c-6eb8e136cb02} - C:\Program Files (x86)\Zwinky_5q\bar\1.bin\5qSrcAs.dll (MindSpark)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (ChromeFrame BHO) - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\npchrome_frame.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (Zwinky) - {3033124f-06bf-4829-873a-310a125b4d4c} - C:\Program Files (x86)\Zwinky_5q\bar\1.bin\5qbar.dll (MindSpark)
O3 - HKLM\..\Toolbar: (SearchYa Toolbar) - {33AA308B-B565-4376-AC66-59EE9B6AD13E} - C:\Program Files (x86)\SearchYa!\1.8.8.0\searchyaTlbr.dll (Montera Technologeis LTD)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [Stage Remote] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe ()
O4 - HKLM..\Run: [RoxWatchTray] c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKLM..\Run: [SpeetItUpFree] C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe (MicroSmarts LLC.)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O4 - HKLM..\Run: [Zwinky Search Scope Monitor] "C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qsrchmn.exe" /m=2 /w /h File not found
O4 - HKLM..\Run: [Zwinky_5q Browser Plugin Loader] C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qbrmon.exe File not found
O4 - HKCU..\Run: [BitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray File not found
O4 - HKCU..\Run: [DW7] "C:\Program Files (x86)\The Weather Channel\The Weather Channel App\TWCApp.exe" File not found
O4 - HKCU..\Run: [Facebook Update] C:\Users\Darrishi\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [Football News] C:\Program Files (x86)\Football News App\Football News.exe (Digital Distribution)
O4 - HKCU..\Run: [HP Deskjet 3510 series (NET)] C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKCU..\Run: [Microsoft] C:\Program Files (x86)\MSBuild\Microsoft\MSServices.lnk File not found
O4 - HKCU..\Run: [Smart PC Cleaner] C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe (Smart PC Cleaner)
O4 - HKCU..\Run: [SmileboxTray] C:\Users\Darrishi\AppData\Roaming\Smilebox\SmileboxTray.exe (Smilebox, Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8216212B-28D3-4939-95BB-9E10050C9B72}: DhcpNameServer = 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\gcf - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\gcf {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\npchrome_frame.dll (Google Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{220a4cc4-5a85-11e1-b468-24b6fd03e3c1}\Shell - "" = AutoRun
O33 - MountPoints2\{220a4cc4-5a85-11e1-b468-24b6fd03e3c1}\Shell\AutoRun\command - "" = E:\WIN\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/06/25 17:26:32 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.scr
[2013/06/25 17:14:49 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe
[2013/06/22 13:49:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/06/22 13:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/06/22 13:47:18 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/06/22 12:46:12 | 000,000,000 | ---D | C] -- C:\ProgramData\PC-Doctor for Windows
[2013/06/22 12:43:02 | 000,000,000 | ---D | C] -- C:\Program Files\My Dell
[2013/06/20 18:36:36 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Local\ESET
[2013/06/20 18:28:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013/06/20 18:28:23 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013/06/20 18:28:23 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013/06/20 16:45:04 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\337
[2013/06/20 16:44:55 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\Omiga Plus
[2013/06/20 16:44:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Omiga Plus
[2013/06/20 16:44:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[2013/06/20 16:44:51 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\WinZipper
[2013/06/20 16:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZipper
[2013/06/20 15:41:32 | 000,000,000 | ---D | C] -- C:\ProgramData\BasicServe
[2013/06/20 15:41:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BasicServe
[2013/06/20 15:40:47 | 000,000,000 | ---D | C] -- C:\ProgramData\eSafe
[2013/06/18 17:24:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/06/18 17:23:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/06/18 15:41:20 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\DSite
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/06/25 17:26:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.scr
[2013/06/25 17:15:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe
[2013/06/25 16:08:43 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013/06/25 16:08:38 | 3149,086,720 | -HS- | M] () -- C:\hiberfil.sys
[2013/06/25 14:43:40 | 000,083,108 | ---- | M] () -- C:\Users\Darrishi\Documents\Resume D.pdf
[2013/06/25 13:44:00 | 000,000,902 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/25 13:42:01 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2013/06/25 13:37:01 | 000,000,940 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-2156880048-3041143366-1235793399-1000UA.job
[2013/06/25 13:13:02 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/25 13:13:02 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/25 11:05:58 | 000,000,918 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-2156880048-3041143366-1235793399-1000Core.job
[2013/06/25 11:03:24 | 000,814,580 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2013/06/25 11:03:24 | 000,686,034 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2013/06/25 11:03:24 | 000,130,216 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2013/06/22 13:49:58 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/20 16:55:51 | 620,608,757 | ---- | M] () -- C:\windows\MEMORY.DMP
[2013/06/20 15:50:54 | 000,002,104 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/06/20 15:41:35 | 000,000,000 | ---- | M] () -- C:\ProgramData\2c28212626213121442337_c
[2013/06/20 15:25:20 | 000,322,280 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2013/06/19 11:50:48 | 000,000,127 | ---- | M] () -- C:\windows\SysNative\MRT.INI
[2013/06/18 16:03:08 | 000,000,298 | ---- | M] () -- C:\windows\tasks\DSite.job
[2013/06/18 14:15:49 | 000,000,894 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore1ce6c4fdc8756cc.job
[2013/05/28 16:24:14 | 334,200,831 | ---- | M] () -- C:\Users\Darrishi\Documents\DVD.ISO
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/06/25 14:43:39 | 000,083,108 | ---- | C] () -- C:\Users\Darrishi\Documents\Resume D.pdf
[2013/06/22 13:49:58 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/20 16:50:49 | 000,001,166 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/06/20 15:41:35 | 000,000,000 | ---- | C] () -- C:\ProgramData\2c28212626213121442337_c
[2013/06/18 15:41:21 | 000,000,298 | ---- | C] () -- C:\windows\tasks\DSite.job
[2013/06/18 14:15:49 | 000,000,894 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore1ce6c4fdc8756cc.job
[2013/05/28 16:22:27 | 334,200,831 | ---- | C] () -- C:\Users\Darrishi\Documents\DVD.ISO
[2013/02/24 14:12:29 | 000,009,808 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\BabMaint.exe
[2013/02/17 13:49:38 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2012/06/12 13:40:17 | 000,007,168 | ---- | C] () -- C:\Users\Darrishi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/10 00:13:40 | 000,000,197 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\burnaware.ini
[2012/04/09 23:21:57 | 000,000,000 | ---- | C] () -- C:\Users\Darrishi\AppData\Local\rx_image32.Cache
[2011/12/10 02:21:29 | 000,963,116 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2011/12/10 02:21:28 | 000,216,876 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2011/12/10 02:21:28 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2011/12/10 02:20:50 | 000,000,096 | ---- | C] () -- C:\windows\LaunApp.ini
[2011/12/10 02:20:23 | 000,000,023 | ---- | C] () -- C:\windows\WisSysInfo.ini
[2011/12/10 02:20:22 | 000,000,325 | ---- | C] () -- C:\windows\Prelaunch.ini
[2011/12/10 02:20:22 | 000,000,271 | ---- | C] () -- C:\windows\WisPriority.ini
[2011/12/10 02:20:22 | 000,000,032 | ---- | C] () -- C:\windows\WisHWDest.ini
[2011/12/10 02:20:22 | 000,000,028 | ---- | C] () -- C:\windows\WisLangCode.ini
[2011/12/10 01:06:19 | 000,017,776 | ---- | C] () -- C:\windows\EvtMessage.dll
[2011/12/10 01:02:48 | 000,808,796 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011/07/29 07:40:44 | 000,000,035 | ---- | C] () -- C:\windows\DELL_LANGCODE.ini
[2011/07/29 07:40:44 | 000,000,033 | ---- | C] () -- C:\windows\DELL_OSTYPE.ini

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 01:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 00:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/06/20 16:45:04 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\337
[2013/02/24 14:12:29 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\BabSolution
[2013/02/03 14:21:21 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Babylon
[2013/05/11 08:08:04 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\BitComet
[2012/02/12 12:33:48 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Blio
[2013/01/17 21:37:46 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\DefaultTab
[2013/06/18 15:41:20 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\DSite
[2012/02/08 22:07:34 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Fingertapps
[2012/05/08 17:38:10 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\FontCatch
[2012/04/10 00:26:44 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\HandBrake
[2012/02/20 19:21:42 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\IDT
[2012/04/10 14:36:35 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\ImgBurn
[2013/05/03 09:56:11 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Iminent
[2012/02/08 22:07:19 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Leadertech
[2012/04/24 23:04:06 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\MusicNet
[2013/01/17 21:38:33 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\MusicOasis
[2013/06/20 16:52:13 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Omiga Plus
[2012/05/15 10:51:21 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\OpenCandy
[2012/03/08 17:50:52 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\PCDr
[2012/05/08 18:03:23 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\PlayFirst
[2013/02/17 14:23:12 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Searchya
[2012/02/18 20:10:53 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Sierra Wireless
[2013/02/03 17:02:41 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Smilebox
[2013/06/25 12:56:13 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\SoftGrid Client
[2013/02/21 03:55:51 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Strongvault
[2012/02/11 16:32:46 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\TP
[2013/04/05 20:27:24 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\TypingTrainer8
[2013/06/20 16:44:51 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\WinZipper
[2013/05/26 20:57:34 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Yontoo
[2012/02/18 19:12:40 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\YoudaGames
[2013/04/03 12:30:43 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\ZinioReader4

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:FFF962B8

< End of report >
  • 0

#4
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
OTL Extras logfile created on: 6/25/2013 5:23:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Darrishi\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.91 Gb Total Physical Memory | 3.01 Gb Available Physical Memory | 76.94% Memory free
7.82 Gb Paging File | 7.01 Gb Available in Paging File | 89.63% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 377.89 Gb Free Space | 83.79% Space Free | Partition Type: NTFS

Computer Name: DARRISHI-PC | User Name: Darrishi | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0197C532-1995-4FFE-9FD1-FBA0E936512C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0B4CC7DD-E161-482A-9542-9BC5DCF25203}" = rport=445 | protocol=6 | dir=out | app=system |
"{1A55F1A5-90D3-4EB8-A8F9-179976DB9DBB}" = rport=138 | protocol=17 | dir=out | app=system |
"{1EA2741D-EF5C-4DDD-BD81-42A5D429B1AF}" = lport=9700 | protocol=6 | dir=in | name=syncup_tcp_9700 |
"{1F02BB5B-690F-4C01-A162-0B983B973CC0}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3DE615CE-DFC1-4C66-AF38-3562AE1B3956}" = lport=10243 | protocol=6 | dir=in | app=system |
"{3E8C5FD0-71B4-4FDC-AB3E-123CA91B051F}" = rport=139 | protocol=6 | dir=out | app=system |
"{41358569-010A-4E90-8735-6685A8E0E652}" = lport=445 | protocol=6 | dir=in | app=system |
"{48E71708-7562-4595-BEFF-4B3B580DB63E}" = lport=9701 | protocol=6 | dir=in | name=syncup_tcp_9701 |
"{527861E3-C26B-4FFB-AE0A-693AC5C6D819}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{60AB6712-D06F-467D-98D7-3FC00EA62507}" = rport=10243 | protocol=6 | dir=out | app=system |
"{75B21347-8621-4CA5-BBA7-4F1A4B3D8EB4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{76C848CE-1DB9-409C-A8A4-8D5D1C010D2B}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{7B406267-753A-4107-8CD1-85097464C07D}" = lport=9700 | protocol=17 | dir=in | name=syncup_udp_9700 |
"{7F5D1FD9-F014-476D-A39B-4130D674AFF7}" = lport=138 | protocol=17 | dir=in | app=system |
"{83DD2AB0-7C86-4607-B358-D71D4BD62356}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A2C505BB-58BF-4C13-9C6A-F7CA3F6E1B4D}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B39127A7-72C5-4BB4-8B51-0AD5527DE0BA}" = rport=137 | protocol=17 | dir=out | app=system |
"{B54A54C4-D0DA-4684-A298-2D3E96BB200E}" = lport=9702 | protocol=6 | dir=in | name=syncup_tcp_9702 |
"{DDB41D1E-43D7-41D8-BA1A-356CCA2771A0}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E0D18C92-4460-458A-8AFA-B27E0A9BCD07}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E336D77A-0FAD-4865-8CB6-44DBA7EF4190}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E76C6642-F500-42CE-949B-54487CF9AB07}" = lport=137 | protocol=17 | dir=in | app=system |
"{E8961D68-D5BE-4915-97D3-ADDCE6B9B226}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E9099AFE-639C-45E5-A565-16B06AB75B80}" = lport=139 | protocol=6 | dir=in | app=system |
"{F0967B1F-EF16-428B-87E3-74EA20F104DA}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F569847C-FBEA-4FA5-8FA4-B9920CF3D258}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{FE718B9B-661F-4D33-8052-6A2BE7E93252}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FFFAC322-C3F9-40E3-BD6B-E87F3091C253}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0579DA93-8F69-4DED-8747-3D5490A2A3B5}" = dir=in | app=c:\users\darrishi\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{0F571EBB-9C5A-4C72-A5FA-903E03EB6A4A}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{1364F801-4AC5-4FF1-82D2-8A6D377C36BB}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{1BB21F38-3A06-4ADC-91AB-8B6CEF4D1F5E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2184AE51-6D49-4F33-9A64-D172B398FF10}" = protocol=17 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"{244B040F-3DF7-46A9-8D10-896705747CCB}" = protocol=58 | dir=out | [email protected],-28546 |
"{24C9B94C-E19A-4F03-A39A-93A8BAF5749A}" = protocol=6 | dir=in | app=c:\program files (x86)\dell\stage remote\controller.exe |
"{29B47D3F-C780-43C8-817C-DB190A3FA3E4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2CA1D53D-4B28-4F37-BED1-FFC02F89DC93}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{30A44A77-782D-40E8-9FB9-4E1205D708C7}" = protocol=58 | dir=in | [email protected],-28545 |
"{339EC487-2055-410F-A813-7A020C71D36A}" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |
"{356992D3-ED13-4925-AC3A-146ABECA6EDF}" = dir=in | app=c:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicator.exe |
"{36C31268-4E48-49AD-BB1B-4A7362D14C33}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{39F5527C-63F8-46C1-95EB-429927DAF6B8}" = protocol=6 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"{3B37C936-24A9-4344-86EF-24B49695ED78}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3FC25270-C523-4C11-BC35-0836C42343EA}" = protocol=6 | dir=in | app=c:\program files (x86)\dell\stage remote\stageremote.exe |
"{46008B95-8B03-4F37-831F-462DE22296E0}" = dir=in | app=c:\program files\dell stage\musicstage\musicstageengine.exe |
"{488F13F7-F3A1-4009-B3BB-2B2495413C72}" = protocol=17 | dir=in | app=c:\program files (x86)\dell\stage remote\stageremote.exe |
"{4AB42D20-4149-472F-A039-D87C0D4CE144}" = protocol=17 | dir=in | app=c:\program files (x86)\dell\stage remote\installerhelp.exe |
"{4B0350B8-5F49-4336-BBF4-A5FC15F91CBF}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{50005231-8597-47F2-8631-C7C82E6157CD}" = protocol=6 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{50C41F9C-43A4-4C11-9FA5-17384183BAEF}" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |
"{532C8A00-F1E4-48B0-8E2A-EB4DE6B8C630}" = protocol=1 | dir=out | [email protected],-28544 |
"{5B6D2113-434D-426B-A113-4EC69D656DA6}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{643C7EF3-38D0-48F1-9FC9-B3BE0410A28D}" = protocol=17 | dir=in | app=c:\program files (x86)\dell\stage remote\stageremoteservice.exe |
"{643D6BC3-3EBA-46DD-BEF2-EA58CBFBE2FD}" = protocol=17 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{649B89F5-E303-4D9D-B6EB-739F68355DA1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{67B44696-A7A7-4756-9DA6-237D862C88B6}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{740AA7DE-DF75-4310-9445-C6EFFF9724CE}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{7846E050-A64F-4011-8739-C362495E71B3}" = protocol=17 | dir=in | app=c:\program files (x86)\dell\stage remote\controller.exe |
"{82A70F04-3518-4167-842E-B82AD9394473}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{8717039B-4324-46EC-95DE-33757B521EDE}" = protocol=1 | dir=in | [email protected],-28543 |
"{8D80F602-EA46-452A-A395-5660A38761F9}" = protocol=17 | dir=in | app=c:\program files (x86)\dell\stage remote\dmr.exe |
"{8EAB01C1-DF08-4A2A-A2EA-7AE6A8BEF554}" = protocol=6 | dir=in | app=c:\program files (x86)\dell\stage remote\installerhelp.exe |
"{9080ACD8-7698-4F0B-BB68-12AD86AF6C72}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\nero\bdcore\nero blu-ray player\blu-rayplayer.exe |
"{9A38016F-7470-4BC7-AEFF-0A073ED2B458}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\nero\bdcore\nero blu-ray player\blu-rayplayer.exe |
"{9B4E8888-0FAA-4F69-B047-BA71D67E25D9}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{9C49E6DA-7D3D-4230-8AF1-8C12123FDDA7}" = dir=in | app=c:\program files\hp\hp deskjet 3510 series\bin\hpnetworkcommunicatorcom.exe |
"{AB3794DD-3D48-47F9-B677-E5A89FBD1EE5}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AEB3275B-9ED4-454C-83BB-E48AD3907511}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B8E8EA8C-A7CF-485C-9A2A-355AED78E522}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{B9C489A6-9425-4FFB-8238-DFDBD7232E38}" = protocol=6 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{BBFF13B2-55E2-416C-ADA7-57F238B8FA15}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{C5563194-AE4B-4EAF-955C-34CEDC02A13C}" = protocol=17 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{C9283950-3164-48DC-AF68-EE651FF56E5D}" = protocol=6 | dir=out | app=system |
"{CF0DE715-C4C7-47F3-9E42-577D41FA4580}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D22FCE58-0CC5-483A-B42F-1E5D2DA49BF6}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D2510CB0-2F49-4317-8AC7-9BC4CB5E7CE8}" = dir=in | app=c:\program files\dell stage\dell stage\stage_primary.exe |
"{D82F7083-34A8-4386-9303-D10356CEC0DC}" = protocol=6 | dir=in | app=c:\program files (x86)\dell\stage remote\dmr.exe |
"{D9AFA7C8-EFCA-4A7F-A61F-4ABF36C5C7D4}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{E01C2738-EFC8-4917-81AD-B88E271D4407}" = dir=in | app=c:\program files (x86)\dell\videostage\videostage.exe |
"{E78D705D-49B7-41AA-B4D6-9F3EFFA967D5}" = protocol=17 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{EEB50F09-FFF2-46E4-A041-49B2FE5CBFB7}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{F024C6A2-4AA1-49C9-9E4B-CECAC05125B8}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{F18A89BB-D4C0-4A5B-9184-98F7CFFD970A}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{F2A321F3-A205-4287-BD94-8C013E1DCEA5}" = protocol=6 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{F349615D-4C1E-44E0-9391-8731B1E0892C}" = dir=in | app=c:\program files\hp\hp deskjet 3510 series\bin\devicesetup.exe |
"{F6374A50-4D7F-4919-8824-C57C00610E5D}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F78B009C-3837-4D90-A8AB-0964445A9755}" = dir=in | app=c:\program files\dell stage\dell stage\accuweather\accuweather.exe |
"{FEC6A2EB-4CD0-464C-A6B2-A2DFC9AEDE19}" = protocol=6 | dir=in | app=c:\program files (x86)\dell\stage remote\stageremoteservice.exe |
"TCP Query User{B098D4E3-7F36-43AD-9B13-B37081FE3782}C:\program files (x86)\frostwire 5\frostwire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |
"UDP Query User{2645B9F7-600A-47C2-9FCF-960F4BDBC0E6}C:\program files (x86)\frostwire 5\frostwire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{26A24AE4-039D-4CA4-87B4-2F86416027FF}" = Java™ 6 Update 27 (64-bit)
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{76FF0F03-B707-4332-B5D1-A56C8303514E}" = iTunes
"{791D3241-C6A4-417F-82E6-00543B6E5012}" = HP Deskjet 3510 series Product Improvement Study
"{7F20F2D1-C425-4432-96BA-EBD0C2181493}" = HP Deskjet 3510 series Basic Device Software
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{C2C49561-CD30-4A44-92AB-81BC2ECA2CB0}" = ESET NOD32 Antivirus
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"PC-Doctor for Windows" = My Dell

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01070EBF-D92B-4E09-8A5C-F33CE8B9D9D5}" = Blio
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0ECFCB07-9BFE-4970-ACA1-D568D982760B}" = Complete Care Business Service Agreement
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1798D459-6B8B-474B-868D-1229EADA3B95}" = Adobe AIR
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}" = Bing Bar
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{3250260C-7A95-4632-893B-89657EB5545B}" = PhotoShowExpress
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{39D06E77-8921-4056-8901-36D0035BAECA}" = Dell Stage
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{40F06490-8C14-43AA-99D3-EEEFDBAC3CFC}" = SyncUP
"{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}" = Banctec Service Agreement
"{451517F1-7E41-400B-AA36-FB7E2563526D}" = Dell Wireless Driver Installation
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{5600094C-5EA0-4BE8-9ECE-4C9B726AC9D9}" = Sierra Wireless USB MUX Driver Package
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}" = Roxio Creator Starter
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7746BFAA-2B5D-4FFD-A0E8-4558F4668105}" = Roxio Burn
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{7EC66A95-AC2D-4127-940B-0445A526AB2F}" = Dell DataSafe Online
"{7FB00B6B-6843-97EC-EED6-78BD6D35370A}" = Zinio Reader 4
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{889DF117-14D1-44EE-9F31-C5FB5D47F68B}" = Yontoo 2.04.1
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140011-0066-0409-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - English
"{903679E8-44C8-4C07-9600-05C92654FC50}" = QualxServ Service Agreement
"{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}" = Dell MusicStage
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{95B672AC-91E5-4DDB-82C0-6D1F1BC9E784}_is1" = The Football News App Installer
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{97486FBE-A3FC-4783-8D55-EA37E9D171CC}" = HP Update
"{97C1C98D-6AE5-4C71-9B00-EBBD9E014450}" = HP Deskjet 3510 series Help
"{9A00EC4E-27E1-42C4-98DD-662F32AC8870}" = Sonic CinePlayer Decoder Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A121EEDE-C68F-461D-91AA-D48BA226AF1C}" = Roxio Activation Module
"{A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}" = Nero Blu-ray Player
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}" = Dell Home Systems Service Agreement
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.2) MUI
"{AF4D3C63-009B-4A17-B02E-D395065DD3F0}" = Dell Stage Remote
"{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}" = DirectX 9 Runtime
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C33AA6D6-F5EC-48F3-AFDC-8141345D473A}" = Premium Service Agreement
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D92C9CCE-E5F0-4125-977A-0590F3225B74}" = SyncUP
"{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E4335E82-17B3-460F-9E70-39D9BC269DB3}" = Dell PhotoStage
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EF56258E-0326-48C5-A86C-3BAC26FC15DF}" = Roxio Creator Starter
"{EF85FEF4-EB92-4075-A6D2-5F519BB30A2C}" = Accidental Damage Services Agreement
"{F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}" = Roxio Creator Starter
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F47C37A4-7189-430A-B81D-739FF8A7A554}" = Consumer In-Home Service Agreement
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"BasicServe" = BasicServe 1.0 build 111
"Build-a-lot On Vacation Free Trial_is1" = Build-a-lot On Vacation Free Trial
"Burger Shop 2™" = Burger Shop 2™
"BurnAware Free_is1" = BurnAware Free 4.8
"Cooking Dash™" = Cooking Dash™
"DefaultTab" = DefaultTab
"Dell Webcam Central" = Dell Webcam Central
"eSafeSecControl" = eSafe Security Control 1.0.0.2522
"freeocr_is1" = FreeOCR v4.2
"FrostWire 5" = FrostWire 5.3.6
"Google Chrome" = Google Chrome
"Google Chrome Frame" = Google Chrome Frame
"HandBrake" = HandBrake 0.9.6
"HP Photo Creations" = HP Photo Creations
"ImgBurn" = ImgBurn
"InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}" = Dell VideoStage
"Mozilla Firefox 20.0.1 (x86 en-US)" = Mozilla Firefox 20.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.Click2Run" = Microsoft Office Click-to-Run 2010
"searchya" = SearchYa!
"Smart PC Cleaner_is1" = Smart PC Cleaner v3.0
"SpeedItup Free_is1" = SpeedItup Free 7.85
"Wedding Dash® 4-Ever" = Wedding Dash® 4-Ever
"WinLiveSuite" = Windows Live Essentials
"WinZipper" = WinZipper
"Yahoo! Companion" = Yahoo! Toolbar
"Yahoo! Software Update" = Yahoo! Software Update
"ZinioReader4" = Zinio Reader 4
"Zwinky_5qbar Uninstall" = Zwinky Toolbar

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Smilebox" = Smilebox
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2/22/2013 2:37:05 PM | Computer Name = Darrishi-PC | Source = Google Update | ID = 20
Description =

Error - 2/22/2013 2:44:02 PM | Computer Name = Darrishi-PC | Source = .NET Runtime | ID = 1026
Description =

Error - 2/22/2013 2:44:02 PM | Computer Name = Darrishi-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Handbrake.exe, version: 0.9.6.4466, time
stamp: 0x4f4d2772 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000005 Fault offset: 0x000007ff001528af Faulting process id: 0xcf8c Faulting
application start time: 0x01ce112c86b2b862 Faulting application path: C:\Program
Files\Handbrake\Handbrake.exe Faulting module path: unknown Report Id: d371abbc-7d1f-11e2-a2dd-24b6fd03e3c1

Error - 2/22/2013 5:37:05 PM | Computer Name = Darrishi-PC | Source = Google Update | ID = 20
Description =

Error - 2/22/2013 8:37:05 PM | Computer Name = Darrishi-PC | Source = Google Update | ID = 20
Description =

Error - 2/23/2013 12:37:20 AM | Computer Name = Darrishi-PC | Source = Google Update | ID = 20
Description =

Error - 2/23/2013 2:37:05 AM | Computer Name = Darrishi-PC | Source = Google Update | ID = 20
Description =

Error - 2/23/2013 3:54:57 AM | Computer Name = Darrishi-PC | Source = CVHSVC | ID = 100
Description = Information only. (Patch task for {90140011-0066-0409-0000-0000000FF1CE}):
DownloadLatest Failed: There are currently no active network connections. Background
Intelligent Transfer Service (BITS) will try again when an adapter is connected.


Error - 2/23/2013 5:37:05 AM | Computer Name = Darrishi-PC | Source = Google Update | ID = 20
Description =

Error - 2/23/2013 8:37:05 AM | Computer Name = Darrishi-PC | Source = Google Update | ID = 20
Description =

[ Media Center Events ]
Error - 12/29/2012 3:51:21 PM | Computer Name = Darrishi-PC | Source = MCUpdate | ID = 0
Description = 2:51:21 PM - Error connecting to the internet. 2:51:21 PM - Unable
to contact server..

[ System Events ]
Error - 6/25/2013 5:27:17 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:28:23 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:28:23 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:28:23 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:29:27 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:29:27 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:29:27 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:33:51 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:33:51 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068

Error - 6/25/2013 5:33:51 PM | Computer Name = Darrishi-PC | Source = Service Control Manager | ID = 7001
Description = The Computer Browser service depends on the Server service which failed
to start because of the following error: %%1068


< End of report >
  • 0

#5
Phel

Phel

    Trusted Helper

  • Malware Removal
  • 1,386 posts
Hey,

Seems that you posted OTL.txt log incorrectly. Please, follow these steps:

  • Find OTL.txt log on your Desktop.
  • Double click on it. Notepad window should appear.
  • Now press the following key sequences - Ctrl+A and after that - Ctrl+C.
  • The contents of OTL.txt log are in in you clipboard now. Paste them in your next message.

Eset found win32/Olmarik.tdl4trojan and cannot delete


Can you please say, what files/objects had ESET identified under this infection name?
  • 0

#6
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
OTL logfile created on: 6/25/2013 5:26:47 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Darrishi\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.91 Gb Total Physical Memory | 2.88 Gb Available Physical Memory | 73.64% Memory free
7.82 Gb Paging File | 6.86 Gb Available in Paging File | 87.74% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 377.88 Gb Free Space | 83.78% Space Free | Partition Type: NTFS

Computer Name: DARRISHI-PC | User Name: Darrishi | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/06/25 17:26:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.scr
PRC - [2013/06/25 17:15:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - [2013/04/09 22:56:46 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2013/03/21 15:19:46 | 001,341,664 | ---- | M] (ESET) [Auto | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2011/05/27 15:06:16 | 000,301,568 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010/09/22 20:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/03 06:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Stopped] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV - [2013/06/20 16:44:50 | 000,424,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) [Auto | Stopped] -- C:\Program Files (x86)\WinZipper\winzipersvc.exe -- (winzipersvc)
SRV - [2013/06/20 15:40:47 | 000,361,536 | ---- | M] (eSafe Security Co., Ltd.) [Auto | Stopped] -- C:\ProgramData\eSafe\eSafeSvc.exe -- (eSafeSvc)
SRV - [2013/06/18 16:42:19 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/06/17 04:26:14 | 000,022,528 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\BasicServe\basicserve.exe -- (BasicServe Service)
SRV - [2013/04/10 02:58:17 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/11/14 02:04:22 | 000,568,832 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe -- (DefaultTabSearch)
SRV - [2012/07/13 17:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2012/06/11 16:22:16 | 000,240,208 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE -- (BBUpdate)
SRV - [2012/06/11 16:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE -- (BBSvc)
SRV - [2012/01/03 06:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/10/01 09:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 09:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/08/18 12:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Stopped] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2011/02/01 15:20:48 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/01 15:20:46 | 000,326,168 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2011/01/12 20:00:42 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/11/25 07:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 07:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/08/25 22:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 15:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/02/20 11:07:38 | 000,213,416 | ---- | M] (ESET) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013/01/10 15:08:16 | 000,139,768 | ---- | M] (ESET) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2013/01/10 15:08:14 | 000,150,616 | ---- | M] (ESET) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/04/20 13:53:00 | 000,047,208 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tbhsd.sys -- (tbhsd)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/10/01 09:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2011/10/01 09:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2011/10/01 09:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2011/10/01 09:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2011/07/22 12:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 17:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Stopped] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/05/27 15:06:16 | 000,528,384 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2011/05/17 02:55:28 | 000,533,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/04/21 22:17:10 | 002,727,424 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2011/03/31 23:35:12 | 000,355,960 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2011/03/25 22:17:48 | 012,262,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/20 13:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011/01/12 19:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/11/20 23:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 23:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 23:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/10/29 20:11:42 | 000,250,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/10/19 18:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 05:28:16 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/06/16 00:58:22 | 000,035,840 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BVRPMPR5a64.SYS -- (BVRPMPR5a64)
DRV:64bit: - [2010/05/17 18:24:30 | 000,049,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\swmsflt.sys -- (swmsflt)
DRV:64bit: - [2010/03/19 05:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/08/13 16:10:20 | 000,034,304 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\swvspser.sys -- (swvspser)
DRV:64bit: - [2009/08/04 12:42:00 | 000,211,328 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\swmx00.sys -- (SWMX00)
DRV:64bit: - [2009/08/04 12:40:58 | 000,285,696 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SWNC5E00.sys -- (SWNC5E00)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006/11/01 14:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{5D75CE2D-E618-F9C4-E20D-083DEA9B961B}: "URL" = http://dts.search-re...q={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://www.searchya....=1416253892&ir=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snap.do/...e={installDate}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snap.do/...e={installDate}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snap.do/...e={installDate}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do/...e={installDate}
IE - HKCU\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/...e={installDate}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF}: "URL" = http://www.basicserv...s={searchTerms}
IE - HKCU\..\SearchScopes\{FB030CAD-B35C-41A2-AC4E-6E3263D02994}: "URL" = http://www.mysearchr...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://feed.snap.do/...ate=20/06/2013"
FF - prefs.js..extensions.enabledAddons: %7B740B3FD5-4483-469D-BE7F-8555B153BD04%7D:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - prefs.js..keyword.URL: "http://www.basicserv...ogle&keywords="
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@Zwinky_5q.com/Plugin: C:\Program Files (x86)\Zwinky_5q\bar\1.bin\NP5qStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Darrishi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Darrishi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [2013/06/20 18:28:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]_5q.com: C:\Program Files (x86)\Zwinky_5q\bar\1.bin [2013/04/05 20:29:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/05/26 20:58:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013/06/20 18:28:27 | 000,000,000 | ---D | M]

[2013/04/18 19:49:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Extensions
[2013/04/05 20:30:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions
[2013/04/05 20:30:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}
[2013/04/05 20:30:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\[email protected]
[2013/06/20 16:50:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\extensions
[2013/02/03 14:21:10 | 000,213,444 | ---- | M] () (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\[email protected]
[2013/06/20 15:38:46 | 000,002,443 | ---- | M] () -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\searchplugins\Web Search.xml
[2013/06/20 16:48:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/06/20 15:44:02 | 000,000,000 | ---D | M] (BasicServe) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{740B3FD5-4483-469D-BE7F-8555B153BD04}
[2013/04/10 02:58:33 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013/04/10 02:57:54 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://feed.snap.do/...Date=20/06/2013
CHR - plugin: First user (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Error reading preferences file
CHR - Extension: We-Care.com Reminder = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ippkomaaonokjnfjoikaemidanojkfmm\1.0.0.32_0\
CHR - Extension: DefaultTab = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.19_0\
CHR - Extension: Norton Identity Protection = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.11.8_0\
CHR - Extension: Yontoo = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.3_0\
CHR - Extension: ArcadeCandy Games = C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnfegheljpcijmdgonkecjpcaopjlpac\1.30.455_0\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
O2 - BHO: (SearchYa Helper Object) - {25927741-5E5B-4D27-8D8B-9188FE64373F} - C:\Program Files (x86)\SearchYa!\1.8.8.0\bh\searchya.dll (Montera Technologeis LTD)
O2 - BHO: (Toolbar BHO) - {27488090-768a-4d20-a938-f223f71c344c} - C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qbar.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Search Assistant BHO) - {bd3ea7c2-3af8-4463-9a9c-6eb8e136cb02} - C:\Program Files (x86)\Zwinky_5q\bar\1.bin\5qSrcAs.dll (MindSpark)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (ChromeFrame BHO) - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\npchrome_frame.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (Zwinky) - {3033124f-06bf-4829-873a-310a125b4d4c} - C:\Program Files (x86)\Zwinky_5q\bar\1.bin\5qbar.dll (MindSpark)
O3 - HKLM\..\Toolbar: (SearchYa Toolbar) - {33AA308B-B565-4376-AC66-59EE9B6AD13E} - C:\Program Files (x86)\SearchYa!\1.8.8.0\searchyaTlbr.dll (Montera Technologeis LTD)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [Stage Remote] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe ()
O4 - HKLM..\Run: [RoxWatchTray] c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKLM..\Run: [SpeetItUpFree] C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe (MicroSmarts LLC.)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O4 - HKLM..\Run: [Zwinky Search Scope Monitor] "C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qsrchmn.exe" /m=2 /w /h File not found
O4 - HKLM..\Run: [Zwinky_5q Browser Plugin Loader] C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qbrmon.exe File not found
O4 - HKCU..\Run: [BitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray File not found
O4 - HKCU..\Run: [DW7] "C:\Program Files (x86)\The Weather Channel\The Weather Channel App\TWCApp.exe" File not found
O4 - HKCU..\Run: [Facebook Update] C:\Users\Darrishi\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [Football News] C:\Program Files (x86)\Football News App\Football News.exe (Digital Distribution)
O4 - HKCU..\Run: [HP Deskjet 3510 series (NET)] C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKCU..\Run: [Microsoft] C:\Program Files (x86)\MSBuild\Microsoft\MSServices.lnk File not found
O4 - HKCU..\Run: [Smart PC Cleaner] C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe (Smart PC Cleaner)
O4 - HKCU..\Run: [SmileboxTray] C:\Users\Darrishi\AppData\Roaming\Smilebox\SmileboxTray.exe (Smilebox, Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8216212B-28D3-4939-95BB-9E10050C9B72}: DhcpNameServer = 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\gcf - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\gcf {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\npchrome_frame.dll (Google Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{220a4cc4-5a85-11e1-b468-24b6fd03e3c1}\Shell - "" = AutoRun
O33 - MountPoints2\{220a4cc4-5a85-11e1-b468-24b6fd03e3c1}\Shell\AutoRun\command - "" = E:\WIN\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/06/25 17:26:32 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.scr
[2013/06/25 17:14:49 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe
[2013/06/22 13:49:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/06/22 13:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/06/22 13:47:18 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/06/22 12:46:12 | 000,000,000 | ---D | C] -- C:\ProgramData\PC-Doctor for Windows
[2013/06/22 12:43:02 | 000,000,000 | ---D | C] -- C:\Program Files\My Dell
[2013/06/20 18:36:36 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Local\ESET
[2013/06/20 18:28:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013/06/20 18:28:23 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013/06/20 18:28:23 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013/06/20 16:45:04 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\337
[2013/06/20 16:44:55 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\Omiga Plus
[2013/06/20 16:44:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Omiga Plus
[2013/06/20 16:44:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[2013/06/20 16:44:51 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\WinZipper
[2013/06/20 16:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZipper
[2013/06/20 15:41:32 | 000,000,000 | ---D | C] -- C:\ProgramData\BasicServe
[2013/06/20 15:41:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BasicServe
[2013/06/20 15:40:47 | 000,000,000 | ---D | C] -- C:\ProgramData\eSafe
[2013/06/18 17:24:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/06/18 17:23:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/06/18 15:41:20 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\DSite
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/06/25 17:26:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.scr
[2013/06/25 17:15:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe
[2013/06/25 16:08:43 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013/06/25 16:08:38 | 3149,086,720 | -HS- | M] () -- C:\hiberfil.sys
[2013/06/25 14:43:40 | 000,083,108 | ---- | M] () -- C:\Users\Darrishi\Documents\Resume D.pdf
[2013/06/25 13:44:00 | 000,000,902 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/25 13:42:01 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2013/06/25 13:37:01 | 000,000,940 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-2156880048-3041143366-1235793399-1000UA.job
[2013/06/25 13:13:02 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/25 13:13:02 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/25 11:05:58 | 000,000,918 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-2156880048-3041143366-1235793399-1000Core.job
[2013/06/25 11:03:24 | 000,814,580 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2013/06/25 11:03:24 | 000,686,034 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2013/06/25 11:03:24 | 000,130,216 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2013/06/22 13:49:58 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/20 16:55:51 | 620,608,757 | ---- | M] () -- C:\windows\MEMORY.DMP
[2013/06/20 15:50:54 | 000,002,104 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/06/20 15:41:35 | 000,000,000 | ---- | M] () -- C:\ProgramData\2c28212626213121442337_c
[2013/06/20 15:25:20 | 000,322,280 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2013/06/19 11:50:48 | 000,000,127 | ---- | M] () -- C:\windows\SysNative\MRT.INI
[2013/06/18 16:03:08 | 000,000,298 | ---- | M] () -- C:\windows\tasks\DSite.job
[2013/06/18 14:15:49 | 000,000,894 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore1ce6c4fdc8756cc.job
[2013/05/28 16:24:14 | 334,200,831 | ---- | M] () -- C:\Users\Darrishi\Documents\DVD.ISO
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/06/25 14:43:39 | 000,083,108 | ---- | C] () -- C:\Users\Darrishi\Documents\Resume D.pdf
[2013/06/22 13:49:58 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/20 16:50:49 | 000,001,166 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/06/20 15:41:35 | 000,000,000 | ---- | C] () -- C:\ProgramData\2c28212626213121442337_c
[2013/06/18 15:41:21 | 000,000,298 | ---- | C] () -- C:\windows\tasks\DSite.job
[2013/06/18 14:15:49 | 000,000,894 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore1ce6c4fdc8756cc.job
[2013/05/28 16:22:27 | 334,200,831 | ---- | C] () -- C:\Users\Darrishi\Documents\DVD.ISO
[2013/02/24 14:12:29 | 000,009,808 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\BabMaint.exe
[2013/02/17 13:49:38 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2012/06/12 13:40:17 | 000,007,168 | ---- | C] () -- C:\Users\Darrishi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/10 00:13:40 | 000,000,197 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\burnaware.ini
[2012/04/09 23:21:57 | 000,000,000 | ---- | C] () -- C:\Users\Darrishi\AppData\Local\rx_image32.Cache
[2011/12/10 02:21:29 | 000,963,116 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2011/12/10 02:21:28 | 000,216,876 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2011/12/10 02:21:28 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2011/12/10 02:20:50 | 000,000,096 | ---- | C] () -- C:\windows\LaunApp.ini
[2011/12/10 02:20:23 | 000,000,023 | ---- | C] () -- C:\windows\WisSysInfo.ini
[2011/12/10 02:20:22 | 000,000,325 | ---- | C] () -- C:\windows\Prelaunch.ini
[2011/12/10 02:20:22 | 000,000,271 | ---- | C] () -- C:\windows\WisPriority.ini
[2011/12/10 02:20:22 | 000,000,032 | ---- | C] () -- C:\windows\WisHWDest.ini
[2011/12/10 02:20:22 | 000,000,028 | ---- | C] () -- C:\windows\WisLangCode.ini
[2011/12/10 01:06:19 | 000,017,776 | ---- | C] () -- C:\windows\EvtMessage.dll
[2011/12/10 01:02:48 | 000,808,796 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011/07/29 07:40:44 | 000,000,035 | ---- | C] () -- C:\windows\DELL_LANGCODE.ini
[2011/07/29 07:40:44 | 000,000,033 | ---- | C] () -- C:\windows\DELL_OSTYPE.ini

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 01:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 00:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/06/20 16:45:04 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\337
[2013/02/24 14:12:29 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\BabSolution
[2013/02/03 14:21:21 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Babylon
[2013/05/11 08:08:04 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\BitComet
[2012/02/12 12:33:48 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Blio
[2013/01/17 21:37:46 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\DefaultTab
[2013/06/18 15:41:20 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\DSite
[2012/02/08 22:07:34 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Fingertapps
[2012/05/08 17:38:10 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\FontCatch
[2012/04/10 00:26:44 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\HandBrake
[2012/02/20 19:21:42 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\IDT
[2012/04/10 14:36:35 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\ImgBurn
[2013/05/03 09:56:11 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Iminent
[2012/02/08 22:07:19 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Leadertech
[2012/04/24 23:04:06 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\MusicNet
[2013/01/17 21:38:33 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\MusicOasis
[2013/06/20 16:52:13 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Omiga Plus
[2012/05/15 10:51:21 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\OpenCandy
[2012/03/08 17:50:52 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\PCDr
[2012/05/08 18:03:23 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\PlayFirst
[2013/02/17 14:23:12 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Searchya
[2012/02/18 20:10:53 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Sierra Wireless
[2013/02/03 17:02:41 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Smilebox
[2013/06/25 12:56:13 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\SoftGrid Client
[2013/02/21 03:55:51 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Strongvault
[2012/02/11 16:32:46 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\TP
[2013/04/05 20:27:24 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\TypingTrainer8
[2013/06/20 16:44:51 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\WinZipper
[2013/05/26 20:57:34 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Yontoo
[2012/02/18 19:12:40 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\YoudaGames
[2013/04/03 12:30:43 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\ZinioReader4

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:FFF962B8

< End of report >
  • 0

#7
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
ESET
Object: Operating Memory
Threat: Win32/Olmarik.TDL4 Trojan
An active rootkit has been found in the operating memory

object: MBR sector of the 0. physical disk
Threat: Win32/Olmarik.AYX Trojan
Please submit this object to ESET for analysis

Edited by ButterflyX, 26 June 2013 - 07:33 AM.

  • 0

#8
Phel

Phel

    Trusted Helper

  • Malware Removal
  • 1,386 posts
Have you installed these programs:

  • Smart PC Cleaner v3.0
  • SpeedItup Free 7.85

and We-Care.com Reminder Chrome extension?

Backdoor warning.

Your computer is infected with Backdoor.

What is Backdoor?

Backdoor is malware, which allows another person to remotely control your computer, so this infection can execute files, download files from the internet or steal your data.

How can you deal with this infection?

We can clean this infection. However, we aren't sure, that you can trust your computer even after removal of this infection. So, there is only one way to completely remove this infection - format your hard drive and reinstall Windows.

Please, read info here to learn more, why you need to reinstall Windows.

So, If you decided to format hard drive and reinstall Windows, please, let me know about it. If you didn't, please, follow these steps:

Step 1. TDSSKiller scan.

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Step 2. Uninstalling programs.

  • Open Start menu.
  • Click on Control Panel.
  • Click on Programs and Features. New window should appear.
  • Uninstall these programs one by one, selecting each program and clicking Uninstall button.

Programs to uninstall:

  • Smilebox
  • Zwinky Toolbar
  • WinZipper
  • DefaultTab
  • SearchYa!
  • BasicServe 1.0 build 111
  • eSafe Security Control 1.0.0.2522
  • Yontoo 2.04.1

Step 3. AdwCleaner scan.

  • Please, download AdwCleaner from here to your Desktop.
  • Right click on adwcleaner.exe file on your Desktop->Run as Administrator.
  • Adwcleaner window should appear.
  • Click on the Delete button.
  • Click on OK.
  • Computer will be rebooted automatically, when program will finish it's job.
  • After fix Notepad window with report should appear. Post the contents of the report in your next message.

Step 4. Uninstall Chrome extensions.

  • Launch your Google Chrome browser.
  • In the address bar type the following:

    chrome:extensions
  • Extension list will appear.
  • Find there ArcadeCandy Games, Yontoo, DefaultTab extensions.
  • Click on the recycle bin icon near them (uninstall them).
  • Restart your browser.

Step 5. Changing Chrome homepage.

Your current Chrome homepage is malicious.

Please, follow this instruction and set your homepage to www.google.com or to something else, what you want.

Step 6. OTL fix.

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    SRV - [2013/06/17 04:26:14 | 000,022,528 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\BasicServe\basicserve.exe -- (BasicServe Service)
    SRV - [2012/11/14 02:04:22 | 000,568,832 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe -- (DefaultTabSearch)
    SRV - [2013/06/20 15:40:47 | 000,361,536 | ---- | M] (eSafe Security Co., Ltd.) [Auto | Stopped] -- C:\ProgramData\eSafe\eSafeSvc.exe -- (eSafeSvc)
    SRV - [2013/06/20 16:44:50 | 000,424,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) [Auto | Stopped] -- C:\Program Files (x86)\WinZipper\winzipersvc.exe -- (winzipersvc)
    IE:64bit: - HKLM\..\SearchScopes\{5D75CE2D-E618-F9C4-E20D-083DEA9B961B}: "URL" = http://dts.search-re...q={searchTerms}
    IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://www.searchya....=1416253892&ir=
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snap.do/...e={installDate}
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snap.do/...e={installDate}
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snap.do/...e={installDate}
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snap.do/...e={installDate}
    IE - HKCU\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snap.do/...e={installDate}
    IE - HKCU\..\SearchScopes\{47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF}: "URL" = http://www.basicserv...s={searchTerms}
    IE - HKCU\..\SearchScopes\{FB030CAD-B35C-41A2-AC4E-6E3263D02994}: "URL" = http://www.mysearchr...q={searchTerms}
    FF - prefs.js..browser.search.selectedEngine: "Web Search"
    FF - prefs.js..browser.startup.homepage: "http://feed.snap.do/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=b6f7f35a-fe3d-452c-940c-f367d1a945a3&searchtype=hp&installDate=20/06/2013"
    FF - prefs.js..keyword.URL: "http://www.basicserve.com/?prt=bscsrvlink3&sp=google&keywords="
    FF - prefs.js..extensions.enabledAddons: %7B740B3FD5-4483-469D-BE7F-8555B153BD04%7D:1.0
    FF - HKLM\Software\MozillaPlugins\@Zwinky_5q.com/Plugin: C:\Program Files (x86)\Zwinky_5q\bar\1.bin\NP5qStub.dll (MindSpark)
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]_5q.com: C:\Program Files (x86)\Zwinky_5q\bar\1.bin [2013/04/05 20:29:21 | 000,000,000 | ---D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Mozilla Firefox\extensions\[email protected]
    [2013/04/05 20:30:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}
    [2013/04/05 20:30:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\[email protected]
    [2013/02/03 14:21:10 | 000,213,444 | ---- | M] () (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\[email protected]
    [2013/06/20 15:38:46 | 000,002,443 | ---- | M] () -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\searchplugins\Web Search.xml
    [2013/06/20 15:44:02 | 000,000,000 | ---D | M] (BasicServe) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{740B3FD5-4483-469D-BE7F-8555B153BD04}
    O2 - BHO: (SearchYa Helper Object) - {25927741-5E5B-4D27-8D8B-9188FE64373F} - C:\Program Files (x86)\SearchYa!\1.8.8.0\bh\searchya.dll (Montera Technologeis LTD)
    O2 - BHO: (Toolbar BHO) - {27488090-768a-4d20-a938-f223f71c344c} - C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qbar.dll File not found
    O2 - BHO: (Search Assistant BHO) - {bd3ea7c2-3af8-4463-9a9c-6eb8e136cb02} - C:\Program Files (x86)\Zwinky_5q\bar\1.bin\5qSrcAs.dll (MindSpark)
    O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
    O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
    O3 - HKLM\..\Toolbar: (Zwinky) - {3033124f-06bf-4829-873a-310a125b4d4c} - C:\Program Files (x86)\Zwinky_5q\bar\1.bin\5qbar.dll (MindSpark)
    O3 - HKLM\..\Toolbar: (SearchYa Toolbar) - {33AA308B-B565-4376-AC66-59EE9B6AD13E} - C:\Program Files (x86)\SearchYa!\1.8.8.0\searchyaTlbr.dll (Montera Technologeis LTD)
    O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No CLSID value found.
    O4 - HKLM..\Run: [] File not found
    O4 - HKLM..\Run: [Zwinky Search Scope Monitor] "C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qsrchmn.exe" /m=2 /w /h File not found
    O4 - HKLM..\Run: [Zwinky_5q Browser Plugin Loader] C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qbrmon.exe File not found
    O4 - HKCU..\Run: [SmileboxTray] C:\Users\Darrishi\AppData\Roaming\Smilebox\SmileboxTray.exe (Smilebox, Inc.)
    O4 - HKCU..\Run: [Microsoft] C:\Program Files (x86)\MSBuild\Microsoft\MSServices.lnk File not found
    2013/06/20 15:41:32 | 000,000,000 | ---D | C] -- C:\ProgramData\BasicServe
    [2013/06/20 15:41:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BasicServe
    [2013/06/20 15:40:47 | 000,000,000 | ---D | C] -- C:\ProgramData\eSafe
    [2013/06/18 15:41:20 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\DSite
    [1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
    [2013/06/20 15:41:35 | 000,000,000 | ---- | M] () -- C:\ProgramData\2c28212626213121442337_c
    [2013/06/18 16:03:08 | 000,000,298 | ---- | M] () -- C:\windows\tasks\DSite.job
    [2013/06/20 16:45:04 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\337
    [2013/06/20 16:44:55 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\Omiga Plus
    [2013/06/20 16:44:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Omiga Plus
    [2013/06/20 16:44:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
    [2013/06/20 16:44:51 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Roaming\WinZipper
    [2013/06/20 16:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZipper
    [2013/02/24 14:12:29 | 000,009,808 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\BabMaint.exe
    [2013/02/24 14:12:29 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\BabSolution
    [2013/02/03 14:21:21 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Babylon
    [2013/01/17 21:37:46 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\DefaultTab
    [2013/05/03 09:56:11 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Iminent
    [2013/06/20 16:52:13 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Omiga Plus
    [2013/02/21 03:55:51 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Strongvault
    [2012/05/15 10:51:21 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\OpenCandy
    [2013/06/20 16:44:51 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\WinZipper
    [2013/05/26 20:57:34 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Yontoo
    [2013/02/17 14:23:12 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Searchya
    [2013/02/03 17:02:41 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Smilebox
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:FFF962B8
    
    :Commands 
    [EMPTYTEMP]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC in Normal mode when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

So, please, don't forget to post in your next message:

  • OTL log
  • AdwCleaner log
  • TDSSKiller log

  • 0

#9
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
16:57:20.0343 4904 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:57:20.0889 4904 ============================================================
16:57:20.0889 4904 Current date / time: 2013/06/26 16:57:20.0889
16:57:20.0889 4904 SystemInfo:
16:57:20.0889 4904
16:57:20.0889 4904 OS Version: 6.1.7601 ServicePack: 1.0
16:57:20.0889 4904 Product type: Workstation
16:57:20.0889 4904 ComputerName: DARRISHI-PC
16:57:20.0889 4904 UserName: Darrishi
16:57:20.0889 4904 Windows directory: C:\windows
16:57:20.0889 4904 System windows directory: C:\windows
16:57:20.0889 4904 Running under WOW64
16:57:20.0889 4904 Processor architecture: Intel x64
16:57:20.0889 4904 Number of processors: 2
16:57:20.0889 4904 Page size: 0x1000
16:57:20.0889 4904 Boot type: Normal boot
16:57:20.0889 4904 ============================================================
16:57:31.0923 4904 BG loaded
16:57:33.0109 4904 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:57:33.0124 4904 ============================================================
16:57:33.0124 4904 \Device\Harddisk0\DR0:
16:57:33.0124 4904 MBR partitions:
16:57:33.0124 4904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
16:57:33.0124 4904 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
16:57:33.0124 4904 ============================================================
16:57:33.0358 4904 C: <-> \Device\Harddisk0\DR0\Partition2
16:57:33.0358 4904 ============================================================
16:57:33.0358 4904 Initialize success
16:57:33.0358 4904 ============================================================
16:58:24.0167 7096 ============================================================
16:58:24.0167 7096 Scan started
16:58:24.0167 7096 Mode: Manual; SigCheck; TDLFS;
16:58:24.0167 7096 ============================================================
16:58:25.0742 7096 ================ Scan system memory ========================
16:58:25.0742 7096 System memory - ok
16:58:25.0742 7096 ================ Scan services =============================
16:58:26.0101 7096 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:58:26.0226 7096 !SASCORE ( UnsignedFile.Multi.Generic ) - warning
16:58:26.0226 7096 !SASCORE - detected UnsignedFile.Multi.Generic (1)
16:58:27.0958 7096 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
16:58:28.0145 7096 1394ohci - ok
16:58:28.0223 7096 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
16:58:28.0238 7096 ACPI - ok
16:58:28.0316 7096 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
16:58:28.0628 7096 AcpiPmi - ok
16:58:28.0925 7096 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:58:28.0925 7096 AdobeARMservice - ok
16:58:29.0564 7096 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:58:29.0580 7096 AdobeFlashPlayerUpdateSvc - ok
16:58:29.0689 7096 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
16:58:29.0720 7096 adp94xx - ok
16:58:29.0845 7096 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
16:58:29.0892 7096 adpahci - ok
16:58:30.0017 7096 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
16:58:30.0032 7096 adpu320 - ok
16:58:30.0126 7096 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
16:58:31.0202 7096 AeLookupSvc - ok
16:58:31.0327 7096 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
16:58:31.0514 7096 AESTFilters - ok
16:58:31.0686 7096 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
16:58:31.0858 7096 AFD - ok
16:58:31.0982 7096 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
16:58:32.0014 7096 agp440 - ok
16:58:32.0107 7096 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
16:58:32.0138 7096 ALG - ok
16:58:32.0232 7096 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
16:58:32.0263 7096 aliide - ok
16:58:32.0341 7096 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
16:58:32.0372 7096 amdide - ok
16:58:32.0435 7096 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
16:58:32.0513 7096 AmdK8 - ok
16:58:32.0544 7096 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
16:58:32.0638 7096 AmdPPM - ok
16:58:32.0716 7096 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
16:58:32.0731 7096 amdsata - ok
16:58:32.0762 7096 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
16:58:32.0778 7096 amdsbs - ok
16:58:32.0950 7096 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
16:58:32.0965 7096 amdxata - ok
16:58:33.0106 7096 [ 6690E42CED5D067233ABAD42DA141213 ] ApfiltrService C:\windows\system32\DRIVERS\Apfiltr.sys
16:58:33.0137 7096 ApfiltrService - ok
16:58:33.0215 7096 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
16:58:34.0869 7096 AppID - ok
16:58:34.0932 7096 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
16:58:35.0025 7096 AppIDSvc - ok
16:58:35.0166 7096 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\windows\System32\appinfo.dll
16:58:35.0244 7096 Appinfo - ok
16:58:35.0431 7096 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:58:35.0447 7096 Apple Mobile Device - ok
16:58:35.0946 7096 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
16:58:35.0961 7096 arc - ok
16:58:37.0147 7096 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
16:58:37.0194 7096 arcsas - ok
16:58:39.0300 7096 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:58:39.0315 7096 aspnet_state - ok
16:58:39.0378 7096 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
16:58:39.0678 7096 AsyncMac - ok
16:58:39.0730 7096 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
16:58:39.0751 7096 atapi - ok
16:58:40.0005 7096 [ 5493ED5D300AFC7A9A0A87FCA08E5381 ] athr C:\windows\system32\DRIVERS\athrx.sys
16:58:40.0130 7096 athr - ok
16:58:40.0317 7096 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
16:58:40.0395 7096 AudioEndpointBuilder - ok
16:58:40.0489 7096 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
16:58:40.0551 7096 AudioSrv - ok
16:58:40.0692 7096 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
16:58:40.0785 7096 AxInstSV - ok
16:58:40.0848 7096 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
16:58:40.0910 7096 b06bdrv - ok
16:58:40.0988 7096 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
16:58:41.0098 7096 b57nd60a - ok
16:58:41.0223 7096 [ 3EF1391B810D919E22D2A467B9442094 ] BasicServe Service C:\Program Files (x86)\BasicServe\basicserve.exe
16:58:41.0254 7096 BasicServe Service ( UnsignedFile.Multi.Generic ) - warning
16:58:41.0254 7096 BasicServe Service - detected UnsignedFile.Multi.Generic (1)
16:58:41.0504 7096 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
16:58:41.0520 7096 BBSvc - ok
16:58:41.0566 7096 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
16:58:41.0582 7096 BBUpdate - ok
16:58:41.0660 7096 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
16:58:41.0738 7096 BDESVC - ok
16:58:41.0785 7096 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
16:58:41.0910 7096 Beep - ok
16:58:41.0956 7096 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
16:58:42.0019 7096 BFE - ok
16:58:42.0081 7096 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
16:58:42.0175 7096 BITS - ok
16:58:42.0237 7096 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
16:58:42.0268 7096 blbdrive - ok
16:58:42.0346 7096 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:58:42.0378 7096 Bonjour Service - ok
16:58:42.0440 7096 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
16:58:42.0534 7096 bowser - ok
16:58:42.0580 7096 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
16:58:42.0627 7096 BrFiltLo - ok
16:58:42.0643 7096 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
16:58:42.0658 7096 BrFiltUp - ok
16:58:42.0705 7096 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
16:58:42.0768 7096 Browser - ok
16:58:42.0814 7096 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
16:58:42.0908 7096 Brserid - ok
16:58:42.0939 7096 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
16:58:43.0002 7096 BrSerWdm - ok
16:58:43.0048 7096 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
16:58:43.0111 7096 BrUsbMdm - ok
16:58:43.0142 7096 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
16:58:43.0189 7096 BrUsbSer - ok
16:58:43.0251 7096 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
16:58:43.0329 7096 BthEnum - ok
16:58:43.0376 7096 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
16:58:43.0438 7096 BTHMODEM - ok
16:58:43.0485 7096 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
16:58:43.0563 7096 BthPan - ok
16:58:43.0610 7096 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
16:58:43.0782 7096 BTHPORT - ok
16:58:43.0828 7096 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
16:58:44.0000 7096 bthserv - ok
16:58:44.0062 7096 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
16:58:44.0109 7096 BTHUSB - ok
16:58:44.0156 7096 [ 9887CA12F407D7FBC7F48F3678F5F0B6 ] BVRPMPR5a64 C:\windows\system32\drivers\BVRPMPR5a64.SYS
16:58:44.0187 7096 BVRPMPR5a64 - ok
16:58:44.0218 7096 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
16:58:44.0624 7096 cdfs - ok
16:58:44.0749 7096 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
16:58:44.0889 7096 cdrom - ok
16:58:44.0920 7096 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
16:58:45.0014 7096 CertPropSvc - ok
16:58:45.0061 7096 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
16:58:45.0093 7096 circlass - ok
16:58:45.0140 7096 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
16:58:45.0155 7096 CLFS - ok
16:58:45.0218 7096 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:58:45.0249 7096 clr_optimization_v2.0.50727_32 - ok
16:58:45.0296 7096 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:58:45.0311 7096 clr_optimization_v2.0.50727_64 - ok
16:58:45.0389 7096 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:58:45.0499 7096 clr_optimization_v4.0.30319_32 - ok
16:58:45.0514 7096 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:58:45.0592 7096 clr_optimization_v4.0.30319_64 - ok
16:58:45.0623 7096 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
16:58:45.0655 7096 CmBatt - ok
16:58:45.0779 7096 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
16:58:45.0795 7096 cmdide - ok
16:58:45.0826 7096 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
16:58:45.0857 7096 CNG - ok
16:58:45.0904 7096 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
16:58:45.0920 7096 Compbatt - ok
16:58:45.0935 7096 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
16:58:46.0045 7096 CompositeBus - ok
16:58:46.0076 7096 COMSysApp - ok
16:58:46.0169 7096 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
16:58:46.0185 7096 crcdisk - ok
16:58:46.0247 7096 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\windows\system32\cryptsvc.dll
16:58:46.0294 7096 CryptSvc - ok
16:58:46.0388 7096 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\windows\system32\DRIVERS\CtClsFlt.sys
16:58:46.0481 7096 CtClsFlt - ok
16:58:46.0653 7096 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
16:58:46.0684 7096 cvhsvc - ok
16:58:46.0778 7096 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
16:58:46.0856 7096 DcomLaunch - ok
16:58:47.0043 7096 [ D0B322012EBAB1F29E3AD4A8568B2DBA ] DefaultTabSearch C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
16:58:47.0121 7096 DefaultTabSearch ( UnsignedFile.Multi.Generic ) - warning
16:58:47.0121 7096 DefaultTabSearch - detected UnsignedFile.Multi.Generic (1)
16:58:47.0527 7096 DefaultTabUpdate - ok
16:58:47.0589 7096 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
16:58:47.0667 7096 defragsvc - ok
16:58:47.0745 7096 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
16:58:47.0901 7096 DfsC - ok
16:58:48.0010 7096 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
16:58:48.0088 7096 Dhcp - ok
16:58:48.0135 7096 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
16:58:48.0213 7096 discache - ok
16:58:48.0260 7096 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
16:58:48.0275 7096 Disk - ok
16:58:48.0307 7096 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
16:58:48.0353 7096 Dnscache - ok
16:58:48.0369 7096 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
16:58:48.0447 7096 dot3svc - ok
16:58:48.0463 7096 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
16:58:48.0525 7096 DPS - ok
16:58:48.0572 7096 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
16:58:48.0619 7096 drmkaud - ok
16:58:48.0728 7096 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
16:58:48.0759 7096 DXGKrnl - ok
16:58:48.0868 7096 [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] eamonm C:\windows\system32\DRIVERS\eamonm.sys
16:58:48.0868 7096 eamonm - ok
16:58:48.0931 7096 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
16:58:48.0993 7096 EapHost - ok
16:58:49.0305 7096 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
16:58:49.0477 7096 ebdrv - ok
16:58:49.0508 7096 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
16:58:49.0570 7096 EFS - ok
16:58:49.0695 7096 [ 9E39134330C18CBAC0F24C1283701D7E ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys
16:58:49.0695 7096 ehdrv - ok
16:58:49.0851 7096 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
16:58:49.0991 7096 ehRecvr - ok
16:58:50.0023 7096 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
16:58:50.0038 7096 ehSched - ok
16:58:50.0491 7096 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
16:58:50.0522 7096 ekrn - ok
16:58:50.0631 7096 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
16:58:50.0709 7096 elxstor - ok
16:58:50.0771 7096 [ B4E8DC817963B256537B1EC09AF0647E ] epfwwfpr C:\windows\system32\DRIVERS\epfwwfpr.sys
16:58:50.0787 7096 epfwwfpr - ok
16:58:50.0818 7096 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
16:58:51.0037 7096 ErrDev - ok
16:58:51.0302 7096 [ 7D8DD3520A5B113A248B4867492E7DFE ] eSafeSvc C:\ProgramData\eSafe\eSafeSvc.exe
16:58:51.0317 7096 eSafeSvc - ok
16:58:51.0395 7096 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
16:58:51.0458 7096 EventSystem - ok
16:58:51.0473 7096 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
16:58:51.0520 7096 exfat - ok
16:58:51.0583 7096 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
16:58:51.0645 7096 fastfat - ok
16:58:51.0692 7096 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
16:58:51.0739 7096 Fax - ok
16:58:51.0770 7096 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
16:58:51.0817 7096 fdc - ok
16:58:51.0863 7096 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
16:58:51.0926 7096 fdPHost - ok
16:58:51.0941 7096 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
16:58:52.0004 7096 FDResPub - ok
16:58:52.0035 7096 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
16:58:52.0051 7096 FileInfo - ok
16:58:52.0066 7096 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
16:58:52.0129 7096 Filetrace - ok
16:58:52.0160 7096 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
16:58:52.0175 7096 flpydisk - ok
16:58:52.0207 7096 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
16:58:52.0222 7096 FltMgr - ok
16:58:52.0316 7096 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll
16:58:52.0347 7096 FontCache - ok
16:58:52.0409 7096 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:58:52.0425 7096 FontCache3.0.0.0 - ok
16:58:52.0456 7096 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
16:58:52.0472 7096 FsDepends - ok
16:58:52.0565 7096 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
16:58:52.0581 7096 Fs_Rec - ok
16:58:52.0768 7096 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
16:58:53.0642 7096 fvevol - ok
16:58:53.0798 7096 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
16:58:53.0813 7096 gagp30kx - ok
16:58:53.0907 7096 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
16:58:53.0923 7096 GEARAspiWDM - ok
16:58:54.0141 7096 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
16:58:54.0219 7096 gpsvc - ok
16:58:54.0391 7096 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:58:54.0469 7096 gupdate - ok
16:58:54.0469 7096 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:58:54.0484 7096 gupdatem - ok
16:58:54.0625 7096 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:58:54.0718 7096 gusvc - ok
16:58:54.0749 7096 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
16:58:54.0874 7096 hcw85cir - ok
16:58:54.0937 7096 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
16:58:55.0108 7096 HdAudAddService - ok
16:58:55.0139 7096 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
16:58:55.0217 7096 HDAudBus - ok
16:58:55.0280 7096 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
16:58:55.0373 7096 HidBatt - ok
16:58:55.0420 7096 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
16:58:55.0514 7096 HidBth - ok
16:58:55.0592 7096 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
16:58:55.0623 7096 HidIr - ok
16:58:55.0701 7096 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
16:58:55.0795 7096 hidserv - ok
16:58:55.0966 7096 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
16:58:55.0966 7096 HidUsb - ok
16:58:56.0013 7096 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
16:58:56.0091 7096 hkmsvc - ok
16:58:56.0169 7096 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
16:58:56.0325 7096 HomeGroupListener - ok
16:58:56.0356 7096 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
16:58:56.0434 7096 HomeGroupProvider - ok
16:58:56.0465 7096 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
16:58:56.0481 7096 HpSAMD - ok
16:58:56.0528 7096 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
16:58:56.0590 7096 HTTP - ok
16:58:56.0606 7096 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
16:58:56.0653 7096 hwpolicy - ok
16:58:56.0731 7096 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
16:58:56.0746 7096 i8042prt - ok
16:58:56.0793 7096 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
16:58:56.0809 7096 iaStor - ok
16:58:57.0308 7096 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:58:57.0308 7096 IAStorDataMgrSvc - ok
16:58:57.0479 7096 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
16:58:57.0526 7096 iaStorV - ok
16:58:57.0635 7096 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:58:57.0682 7096 idsvc - ok
16:58:58.0634 7096 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
16:58:59.0180 7096 igfx - ok
16:58:59.0211 7096 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
16:58:59.0227 7096 iirsp - ok
16:58:59.0351 7096 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
16:58:59.0429 7096 IKEEXT - ok
16:58:59.0570 7096 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
16:58:59.0601 7096 IntcDAud - ok
16:58:59.0632 7096 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
16:58:59.0632 7096 intelide - ok
16:58:59.0679 7096 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
16:58:59.0710 7096 intelppm - ok
16:58:59.0757 7096 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
16:58:59.0819 7096 IPBusEnum - ok
16:58:59.0851 7096 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
16:58:59.0913 7096 IpFilterDriver - ok
16:58:59.0991 7096 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
16:59:00.0085 7096 iphlpsvc - ok
16:59:00.0100 7096 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
16:59:00.0147 7096 IPMIDRV - ok
16:59:00.0163 7096 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
16:59:00.0241 7096 IPNAT - ok
16:59:00.0428 7096 [ 0FF335D687C85097725A53458160E81E ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:59:00.0475 7096 iPod Service - ok
16:59:00.0506 7096 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
16:59:00.0521 7096 IRENUM - ok
16:59:00.0568 7096 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
16:59:00.0599 7096 isapnp - ok
16:59:00.0631 7096 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
16:59:00.0646 7096 iScsiPrt - ok
16:59:00.0677 7096 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
16:59:00.0693 7096 kbdclass - ok
16:59:00.0724 7096 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
16:59:00.0849 7096 kbdhid - ok
16:59:00.0880 7096 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
16:59:00.0896 7096 KeyIso - ok
16:59:00.0958 7096 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
16:59:00.0989 7096 KSecDD - ok
16:59:01.0021 7096 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
16:59:01.0036 7096 KSecPkg - ok
16:59:01.0083 7096 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
16:59:01.0161 7096 ksthunk - ok
16:59:01.0239 7096 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
16:59:01.0317 7096 KtmRm - ok
16:59:01.0379 7096 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
16:59:01.0457 7096 LanmanServer - ok
16:59:01.0567 7096 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
16:59:01.0645 7096 LanmanWorkstation - ok
16:59:01.0723 7096 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
16:59:01.0785 7096 lltdio - ok
16:59:01.0879 7096 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
16:59:02.0035 7096 lltdsvc - ok
16:59:02.0050 7096 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
16:59:02.0081 7096 lmhosts - ok
16:59:02.0253 7096 [ 98B16E756243BEA9410E32025B19C06F ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:59:02.0269 7096 LMS - ok
16:59:02.0300 7096 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
16:59:02.0315 7096 LSI_FC - ok
16:59:02.0347 7096 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
16:59:02.0362 7096 LSI_SAS - ok
16:59:02.0378 7096 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
16:59:02.0378 7096 LSI_SAS2 - ok
16:59:02.0409 7096 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
16:59:02.0425 7096 LSI_SCSI - ok
16:59:02.0456 7096 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
16:59:02.0565 7096 luafv - ok
16:59:02.0612 7096 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
16:59:02.0643 7096 Mcx2Svc - ok
16:59:02.0690 7096 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
16:59:02.0705 7096 megasas - ok
16:59:02.0737 7096 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
16:59:02.0752 7096 MegaSR - ok
16:59:02.0768 7096 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
16:59:02.0783 7096 MEIx64 - ok
16:59:02.0815 7096 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
16:59:02.0877 7096 MMCSS - ok
16:59:02.0908 7096 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
16:59:02.0971 7096 Modem - ok
16:59:03.0002 7096 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
16:59:03.0033 7096 monitor - ok
16:59:03.0080 7096 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
16:59:03.0095 7096 mouclass - ok
16:59:03.0127 7096 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
16:59:03.0158 7096 mouhid - ok
16:59:03.0189 7096 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
16:59:03.0220 7096 mountmgr - ok
16:59:03.0314 7096 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:59:03.0329 7096 MozillaMaintenance - ok
16:59:03.0376 7096 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
16:59:03.0392 7096 mpio - ok
16:59:03.0423 7096 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
16:59:03.0470 7096 mpsdrv - ok
16:59:03.0517 7096 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
16:59:03.0579 7096 MpsSvc - ok
16:59:03.0610 7096 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
16:59:03.0657 7096 MRxDAV - ok
16:59:03.0719 7096 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
16:59:03.0782 7096 mrxsmb - ok
16:59:03.0797 7096 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
16:59:03.0813 7096 mrxsmb10 - ok
16:59:03.0891 7096 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
16:59:03.0891 7096 mrxsmb20 - ok
16:59:03.0938 7096 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
16:59:03.0953 7096 msahci - ok
16:59:03.0985 7096 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
16:59:04.0000 7096 msdsm - ok
16:59:04.0016 7096 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
16:59:04.0047 7096 MSDTC - ok
16:59:04.0078 7096 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
16:59:04.0125 7096 Msfs - ok
16:59:04.0141 7096 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
16:59:04.0203 7096 mshidkmdf - ok
16:59:04.0219 7096 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
16:59:04.0219 7096 msisadrv - ok
16:59:04.0250 7096 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
16:59:04.0312 7096 MSiSCSI - ok
16:59:04.0328 7096 msiserver - ok
16:59:04.0375 7096 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
16:59:04.0437 7096 MSKSSRV - ok
16:59:04.0453 7096 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
16:59:04.0499 7096 MSPCLOCK - ok
16:59:04.0546 7096 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
16:59:04.0609 7096 MSPQM - ok
16:59:04.0671 7096 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
16:59:04.0702 7096 MsRPC - ok
16:59:04.0749 7096 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
16:59:04.0765 7096 mssmbios - ok
16:59:04.0796 7096 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
16:59:04.0858 7096 MSTEE - ok
16:59:04.0874 7096 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
16:59:04.0889 7096 MTConfig - ok
16:59:04.0936 7096 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
16:59:04.0952 7096 Mup - ok
16:59:05.0045 7096 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
16:59:05.0139 7096 napagent - ok
16:59:05.0233 7096 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
16:59:05.0295 7096 NativeWifiP - ok
16:59:05.0467 7096 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
16:59:05.0482 7096 NAUpdate - ok
16:59:05.0638 7096 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
16:59:05.0685 7096 NDIS - ok
16:59:05.0732 7096 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
16:59:05.0950 7096 NdisCap - ok
16:59:05.0997 7096 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
16:59:06.0044 7096 NdisTapi - ok
16:59:06.0091 7096 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
16:59:06.0153 7096 Ndisuio - ok
16:59:06.0184 7096 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
16:59:06.0262 7096 NdisWan - ok
16:59:06.0309 7096 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
16:59:06.0340 7096 NDProxy - ok
16:59:06.0371 7096 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
16:59:06.0434 7096 NetBIOS - ok
16:59:06.0465 7096 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
16:59:06.0496 7096 NetBT - ok
16:59:06.0512 7096 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
16:59:06.0527 7096 Netlogon - ok
16:59:06.0590 7096 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
16:59:06.0683 7096 Netman - ok
16:59:06.0746 7096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:59:06.0777 7096 NetMsmqActivator - ok
16:59:06.0777 7096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:59:06.0793 7096 NetPipeActivator - ok
16:59:06.0871 7096 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
16:59:06.0949 7096 netprofm - ok
16:59:06.0964 7096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:59:06.0980 7096 NetTcpActivator - ok
16:59:06.0980 7096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:59:06.0995 7096 NetTcpPortSharing - ok
16:59:07.0027 7096 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
16:59:07.0058 7096 nfrd960 - ok
16:59:07.0136 7096 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
16:59:07.0183 7096 NlaSvc - ok
16:59:07.0604 7096 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
16:59:07.0651 7096 NOBU - ok
16:59:07.0682 7096 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
16:59:07.0713 7096 Npfs - ok
16:59:07.0760 7096 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
16:59:07.0869 7096 nsi - ok
16:59:07.0900 7096 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
16:59:07.0978 7096 nsiproxy - ok
16:59:08.0056 7096 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
16:59:08.0134 7096 Ntfs - ok
16:59:08.0165 7096 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
16:59:08.0228 7096 Null - ok
16:59:08.0259 7096 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
16:59:08.0275 7096 nvraid - ok
16:59:08.0306 7096 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
16:59:08.0368 7096 nvstor - ok
16:59:08.0399 7096 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
16:59:08.0431 7096 nv_agp - ok
16:59:08.0446 7096 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
16:59:08.0462 7096 ohci1394 - ok
16:59:08.0524 7096 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:59:08.0555 7096 ose - ok
16:59:08.0945 7096 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:59:09.0133 7096 osppsvc - ok
16:59:09.0164 7096 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
16:59:09.0195 7096 p2pimsvc - ok
16:59:09.0226 7096 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
16:59:09.0242 7096 p2psvc - ok
16:59:09.0273 7096 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
16:59:09.0320 7096 Parport - ok
16:59:09.0351 7096 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
16:59:09.0367 7096 partmgr - ok
16:59:09.0367 7096 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
16:59:09.0413 7096 PcaSvc - ok
16:59:09.0445 7096 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
16:59:09.0460 7096 pci - ok
16:59:09.0476 7096 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
16:59:09.0491 7096 pciide - ok
16:59:09.0507 7096 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
16:59:09.0538 7096 pcmcia - ok
16:59:09.0554 7096 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
16:59:09.0569 7096 pcw - ok
16:59:09.0585 7096 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
16:59:09.0663 7096 PEAUTH - ok
16:59:10.0505 7096 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
16:59:10.0552 7096 PerfHost - ok
16:59:10.0771 7096 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
16:59:10.0927 7096 pla - ok
16:59:11.0036 7096 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
16:59:11.0098 7096 PlugPlay - ok
16:59:11.0129 7096 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
16:59:11.0176 7096 PNRPAutoReg - ok
16:59:11.0239 7096 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
16:59:11.0270 7096 PNRPsvc - ok
16:59:11.0426 7096 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
16:59:11.0488 7096 PolicyAgent - ok
16:59:11.0551 7096 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
16:59:11.0613 7096 Power - ok
16:59:11.0644 7096 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
16:59:11.0738 7096 PptpMiniport - ok
16:59:11.0769 7096 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
16:59:11.0847 7096 Processor - ok
16:59:11.0909 7096 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
16:59:11.0956 7096 ProfSvc - ok
16:59:12.0003 7096 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
16:59:12.0034 7096 ProtectedStorage - ok
16:59:12.0065 7096 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
16:59:12.0159 7096 Psched - ok
16:59:12.0175 7096 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
16:59:12.0190 7096 PxHlpa64 - ok
16:59:12.0315 7096 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
16:59:12.0424 7096 ql2300 - ok
16:59:12.0455 7096 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
16:59:12.0471 7096 ql40xx - ok
16:59:12.0487 7096 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
16:59:12.0518 7096 QWAVE - ok
16:59:12.0549 7096 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
16:59:12.0611 7096 QWAVEdrv - ok
16:59:12.0643 7096 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
16:59:12.0721 7096 RasAcd - ok
16:59:12.0767 7096 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
16:59:12.0814 7096 RasAgileVpn - ok
16:59:12.0845 7096 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
16:59:12.0908 7096 RasAuto - ok
16:59:12.0923 7096 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
16:59:13.0001 7096 Rasl2tp - ok
16:59:13.0033 7096 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
16:59:13.0079 7096 RasMan - ok
16:59:13.0111 7096 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
16:59:13.0189 7096 RasPppoe - ok
16:59:13.0204 7096 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
16:59:13.0267 7096 RasSstp - ok
16:59:13.0329 7096 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
16:59:13.0391 7096 rdbss - ok
16:59:13.0423 7096 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
16:59:13.0469 7096 rdpbus - ok
16:59:13.0485 7096 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
16:59:13.0547 7096 RDPCDD - ok
16:59:13.0579 7096 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
16:59:13.0657 7096 RDPENCDD - ok
16:59:13.0688 7096 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
16:59:13.0735 7096 RDPREFMP - ok
16:59:13.0781 7096 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
16:59:13.0797 7096 RDPWD - ok
16:59:13.0828 7096 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
16:59:13.0859 7096 rdyboost - ok
16:59:13.0875 7096 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
16:59:13.0984 7096 RemoteAccess - ok
16:59:14.0000 7096 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
16:59:14.0047 7096 RemoteRegistry - ok
16:59:14.0093 7096 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
16:59:14.0171 7096 RFCOMM - ok
16:59:14.0530 7096 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
16:59:14.0561 7096 RoxMediaDB12OEM - ok
16:59:14.0655 7096 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
16:59:14.0671 7096 RoxWatch12 - ok
16:59:14.0717 7096 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
16:59:14.0795 7096 RpcEptMapper - ok
16:59:14.0811 7096 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
16:59:14.0827 7096 RpcLocator - ok
16:59:14.0858 7096 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
16:59:14.0905 7096 RpcSs - ok
16:59:14.0936 7096 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
16:59:14.0983 7096 rspndr - ok
16:59:15.0045 7096 [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
16:59:15.0076 7096 RSUSBSTOR - ok
16:59:15.0107 7096 [ E50CFB92986DCAB49DE93788FD695813 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
16:59:15.0123 7096 RTL8167 - ok
16:59:15.0139 7096 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
16:59:15.0154 7096 SamSs - ok
16:59:15.0217 7096 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:59:15.0217 7096 SASDIFSV - ok
16:59:15.0217 7096 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:59:15.0232 7096 SASKUTIL - ok
16:59:15.0263 7096 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
16:59:15.0279 7096 sbp2port - ok
16:59:15.0310 7096 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
16:59:15.0373 7096 SCardSvr - ok
16:59:15.0404 7096 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
16:59:15.0466 7096 scfilter - ok
16:59:15.0591 7096 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
16:59:15.0669 7096 Schedule - ok
16:59:15.0716 7096 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
16:59:15.0763 7096 SCPolicySvc - ok
16:59:15.0809 7096 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
16:59:15.0841 7096 SDRSVC - ok
16:59:15.0872 7096 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
16:59:15.0950 7096 secdrv - ok
16:59:15.0981 7096 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
16:59:16.0028 7096 seclogon - ok
16:59:16.0043 7096 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
16:59:16.0121 7096 SENS - ok
16:59:16.0153 7096 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
16:59:16.0184 7096 SensrSvc - ok
16:59:16.0231 7096 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
16:59:16.0293 7096 Serenum - ok
16:59:16.0324 7096 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
16:59:16.0355 7096 Serial - ok
16:59:16.0371 7096 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
16:59:16.0402 7096 sermouse - ok
16:59:16.0433 7096 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
16:59:16.0543 7096 SessionEnv - ok
16:59:16.0543 7096 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
16:59:16.0558 7096 sffdisk - ok
16:59:16.0558 7096 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
16:59:16.0621 7096 sffp_mmc - ok
16:59:16.0699 7096 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
16:59:16.0745 7096 sffp_sd - ok
16:59:16.0761 7096 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
16:59:16.0808 7096 sfloppy - ok
16:59:16.0886 7096 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
16:59:16.0917 7096 Sftfs - ok
16:59:17.0057 7096 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:59:17.0089 7096 sftlist - ok
16:59:17.0151 7096 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
16:59:17.0151 7096 Sftplay - ok
16:59:17.0213 7096 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
16:59:17.0229 7096 Sftredir - ok
16:59:17.0666 7096 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
16:59:17.0713 7096 SftService - ok
16:59:17.0728 7096 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
16:59:17.0744 7096 Sftvol - ok
16:59:17.0806 7096 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:59:17.0822 7096 sftvsa - ok
16:59:17.0853 7096 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
16:59:17.0915 7096 SharedAccess - ok
16:59:17.0947 7096 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
16:59:18.0025 7096 ShellHWDetection - ok
16:59:18.0071 7096 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
16:59:18.0071 7096 SiSRaid2 - ok
16:59:18.0118 7096 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
16:59:18.0134 7096 SiSRaid4 - ok
16:59:18.0134 7096 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
16:59:18.0196 7096 Smb - ok
16:59:18.0259 7096 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
16:59:18.0305 7096 SNMPTRAP - ok
16:59:18.0352 7096 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
16:59:18.0383 7096 spldr - ok
16:59:18.0508 7096 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
16:59:18.0524 7096 Spooler - ok
16:59:18.0695 7096 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
16:59:18.0820 7096 sppsvc - ok
16:59:18.0836 7096 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
16:59:18.0883 7096 sppuinotify - ok
16:59:18.0929 7096 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
16:59:19.0007 7096 srv - ok
16:59:19.0085 7096 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
16:59:19.0148 7096 srv2 - ok
16:59:19.0179 7096 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
16:59:19.0210 7096 srvnet - ok
16:59:19.0241 7096 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
16:59:19.0319 7096 SSDPSRV - ok
16:59:19.0351 7096 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
16:59:19.0413 7096 SstpSvc - ok
16:59:19.0522 7096 [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
16:59:19.0569 7096 STacSV - ok
16:59:19.0600 7096 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
16:59:19.0631 7096 stexstor - ok
16:59:19.0709 7096 [ EBA98394A7D58F7552C52192BD8FA7E6 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
16:59:19.0772 7096 STHDA - ok
16:59:19.0834 7096 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
16:59:19.0881 7096 StillCam - ok
16:59:19.0928 7096 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
16:59:19.0959 7096 stisvc - ok
16:59:19.0990 7096 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
16:59:20.0006 7096 stllssvr - ok
16:59:20.0068 7096 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
16:59:20.0084 7096 swenum - ok
16:59:20.0131 7096 [ 8715291C6DE589A3ED0B18B0BEC1C37F ] swmsflt C:\windows\system32\DRIVERS\swmsflt.sys
16:59:20.0131 7096 swmsflt - ok
16:59:20.0193 7096 [ A8E9E76CC2F342F205273702969C84C9 ] SWMX00 C:\windows\system32\DRIVERS\swmx00.sys
16:59:20.0209 7096 SWMX00 - ok
16:59:20.0287 7096 [ B053610BB36D9BD1BFF7102727427600 ] SWNC5E00 C:\windows\system32\DRIVERS\SWNC5E00.sys
16:59:20.0318 7096 SWNC5E00 - ok
16:59:20.0380 7096 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
16:59:20.0521 7096 swprv - ok
16:59:20.0567 7096 [ 190975A4168F19DA5C02D3F41E84D5D2 ] swvspser C:\windows\system32\DRIVERS\swvspser.sys
16:59:20.0599 7096 swvspser - ok
16:59:20.0692 7096 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
16:59:20.0770 7096 SysMain - ok
16:59:20.0817 7096 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
16:59:20.0848 7096 TabletInputService - ok
16:59:20.0942 7096 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
16:59:21.0035 7096 TapiSrv - ok
16:59:21.0082 7096 [ 4430E9B4C60AAB672D16E801BAD0555E ] tbhsd C:\windows\system32\drivers\tbhsd.sys
16:59:21.0113 7096 tbhsd - ok
16:59:21.0129 7096 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
16:59:21.0176 7096 TBS - ok
16:59:21.0238 7096 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\windows\system32\drivers\tcpip.sys
16:59:21.0332 7096 Tcpip - ok
16:59:21.0425 7096 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
16:59:21.0472 7096 TCPIP6 - ok
16:59:21.0519 7096 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
16:59:21.0535 7096 tcpipreg - ok
16:59:21.0550 7096 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
16:59:21.0581 7096 TDPIPE - ok
16:59:21.0628 7096 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
16:59:21.0675 7096 TDTCP - ok
16:59:21.0753 7096 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
16:59:21.0784 7096 tdx - ok
16:59:21.0815 7096 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
16:59:21.0847 7096 TermDD - ok
16:59:21.0925 7096 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
16:59:22.0018 7096 TermService - ok
16:59:22.0049 7096 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
16:59:22.0065 7096 Themes - ok
16:59:22.0127 7096 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
16:59:22.0174 7096 THREADORDER - ok
16:59:22.0221 7096 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
16:59:22.0299 7096 TrkWks - ok
16:59:22.0377 7096 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
16:59:22.0408 7096 TrustedInstaller - ok
16:59:22.0580 7096 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
16:59:22.0829 7096 tssecsrv - ok
16:59:22.0861 7096 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
16:59:22.0892 7096 TsUsbFlt - ok
16:59:22.0939 7096 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
16:59:22.0985 7096 TsUsbGD - ok
16:59:23.0017 7096 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
16:59:23.0063 7096 tunnel - ok
16:59:23.0110 7096 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
16:59:23.0126 7096 uagp35 - ok
16:59:23.0157 7096 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
16:59:23.0219 7096 udfs - ok
16:59:23.0266 7096 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
16:59:23.0297 7096 UI0Detect - ok
16:59:23.0313 7096 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
16:59:23.0329 7096 uliagpkx - ok
16:59:23.0344 7096 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
16:59:23.0407 7096 umbus - ok
16:59:23.0407 7096 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
16:59:23.0438 7096 UmPass - ok
16:59:23.0703 7096 [ 7A78ED1088890114DFDE2C4AB038D6B6 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:59:23.0765 7096 UNS - ok
16:59:23.0797 7096 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
16:59:23.0875 7096 upnphost - ok
16:59:23.0921 7096 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
16:59:23.0937 7096 USBAAPL64 - ok
16:59:23.0984 7096 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
16:59:24.0015 7096 usbccgp - ok
16:59:24.0077 7096 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
16:59:24.0093 7096 usbcir - ok
16:59:24.0124 7096 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
16:59:24.0155 7096 usbehci - ok
16:59:24.0202 7096 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
16:59:24.0233 7096 usbhub - ok
16:59:24.0265 7096 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
16:59:24.0296 7096 usbohci - ok
16:59:24.0343 7096 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
16:59:24.0374 7096 usbprint - ok
16:59:24.0405 7096 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
16:59:24.0436 7096 usbscan - ok
16:59:24.0483 7096 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
16:59:24.0514 7096 USBSTOR - ok
16:59:24.0577 7096 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
16:59:24.0623 7096 usbuhci - ok
16:59:24.0670 7096 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
16:59:24.0686 7096 usbvideo - ok
16:59:24.0701 7096 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
16:59:24.0764 7096 UxSms - ok
16:59:24.0811 7096 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
16:59:24.0811 7096 VaultSvc - ok
16:59:24.0857 7096 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
16:59:24.0873 7096 vdrvroot - ok
16:59:24.0904 7096 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
16:59:24.0982 7096 vds - ok
16:59:24.0982 7096 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
16:59:24.0998 7096 vga - ok
16:59:25.0029 7096 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
16:59:25.0091 7096 VgaSave - ok
16:59:25.0107 7096 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
16:59:25.0123 7096 vhdmp - ok
16:59:25.0138 7096 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
16:59:25.0154 7096 viaide - ok
16:59:25.0185 7096 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
16:59:25.0201 7096 volmgr - ok
16:59:25.0216 7096 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
16:59:25.0232 7096 volmgrx - ok
16:59:25.0247 7096 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
16:59:25.0294 7096 volsnap - ok
16:59:25.0310 7096 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
16:59:25.0325 7096 vsmraid - ok
16:59:25.0450 7096 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
16:59:25.0559 7096 VSS - ok
16:59:25.0575 7096 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
16:59:25.0622 7096 vwifibus - ok
16:59:25.0669 7096 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
16:59:25.0700 7096 vwififlt - ok
16:59:25.0747 7096 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
16:59:25.0778 7096 vwifimp - ok
16:59:25.0809 7096 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
16:59:25.0856 7096 W32Time - ok
16:59:25.0903 7096 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
16:59:25.0949 7096 WacomPen - ok
16:59:25.0981 7096 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
16:59:26.0043 7096 WANARP - ok
16:59:26.0074 7096 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
16:59:26.0105 7096 Wanarpv6 - ok
16:59:26.0199 7096 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
16:59:26.0277 7096 WatAdminSvc - ok
16:59:26.0386 7096 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
16:59:26.0464 7096 wbengine - ok
16:59:26.0511 7096 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
16:59:26.0527 7096 WbioSrvc - ok
16:59:26.0589 7096 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
16:59:26.0620 7096 wcncsvc - ok
16:59:26.0683 7096 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
16:59:26.0714 7096 WcsPlugInService - ok
16:59:26.0745 7096 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
16:59:26.0761 7096 Wd - ok
16:59:26.0839 7096 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
16:59:26.0885 7096 Wdf01000 - ok
16:59:26.0917 7096 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
16:59:26.0963 7096 WdiServiceHost - ok
16:59:26.0963 7096 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
16:59:26.0979 7096 WdiSystemHost - ok
16:59:27.0010 7096 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
16:59:27.0088 7096 WebClient - ok
16:59:27.0104 7096 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
16:59:27.0182 7096 Wecsvc - ok
16:59:27.0213 7096 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
16:59:27.0244 7096 wercplsupport - ok
16:59:27.0260 7096 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
16:59:27.0307 7096 WerSvc - ok
16:59:27.0338 7096 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
16:59:27.0385 7096 WfpLwf - ok
16:59:27.0400 7096 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
16:59:27.0416 7096 WimFltr - ok
16:59:27.0447 7096 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
16:59:27.0447 7096 WIMMount - ok
16:59:27.0463 7096 WinDefend - ok
16:59:27.0478 7096 WinHttpAutoProxySvc - ok
16:59:27.0556 7096 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
16:59:27.0587 7096 Winmgmt - ok
16:59:27.0697 7096 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
16:59:27.0837 7096 WinRM - ok
16:59:27.0899 7096 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
16:59:27.0946 7096 WinUsb - ok
16:59:28.0071 7096 [ F720502AAA03FAB627A96E5EAADAA28D ] winzipersvc C:\Program Files (x86)\WinZipper\winzipersvc.exe
16:59:28.0102 7096 winzipersvc - ok
16:59:28.0149 7096 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
16:59:28.0196 7096 Wlansvc - ok
16:59:28.0274 7096 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:59:28.0289 7096 wlcrasvc - ok
16:59:28.0430 7096 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:59:28.0477 7096 wlidsvc - ok
16:59:28.0508 7096 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
16:59:28.0523 7096 WmiAcpi - ok
16:59:28.0570 7096 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
16:59:28.0601 7096 wmiApSrv - ok
16:59:28.0648 7096 WMPNetworkSvc - ok
16:59:28.0679 7096 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
16:59:28.0695 7096 WPCSvc - ok
16:59:28.0711 7096 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
16:59:28.0726 7096 WPDBusEnum - ok
16:59:28.0789 7096 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
16:59:28.0835 7096 ws2ifsl - ok
16:59:28.0898 7096 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
16:59:28.0945 7096 wscsvc - ok
16:59:28.0960 7096 WSearch - ok
16:59:29.0054 7096 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
16:59:29.0101 7096 wuauserv - ok
16:59:29.0147 7096 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
16:59:29.0179 7096 WudfPf - ok
16:59:29.0225 7096 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
16:59:29.0257 7096 WUDFRd - ok
16:59:29.0303 7096 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
16:59:29.0335 7096 wudfsvc - ok
16:59:29.0397 7096 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\windows\System32\wwansvc.dll
16:59:29.0413 7096 WwanSvc - ok
16:59:29.0491 7096 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
16:59:29.0506 7096 YahooAUService - ok
16:59:29.0537 7096 Zwinky_5qService - ok
16:59:29.0584 7096 ================ Scan global ===============================
16:59:29.0600 7096 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
16:59:29.0647 7096 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
16:59:29.0662 7096 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
16:59:29.0693 7096 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
16:59:29.0709 7096 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
16:59:29.0709 7096 [Global] - ok
16:59:29.0709 7096 ================ Scan MBR ==================================
16:59:29.0725 7096 [ B8219E126CCFCA2511CA3F82E8C3CEDF ] \Device\Harddisk0\DR0
16:59:29.0803 7096 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - infected
16:59:29.0803 7096 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Harbinger.a (0)
16:59:29.0974 7096 ================ Scan VBR ==================================
16:59:29.0974 7096 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
16:59:29.0974 7096 \Device\Harddisk0\DR0\Partition1 - ok
16:59:30.0021 7096 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
16:59:30.0021 7096 \Device\Harddisk0\DR0\Partition2 - ok
16:59:30.0021 7096 ================ Scan active images ========================
16:59:30.0021 7096 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
16:59:30.0021 7096 C:\Windows\System32\drivers\crashdmp.sys - ok
16:59:30.0021 7096 [ D469B77687E12FE43E344806740B624D ] C:\Windows\System32\drivers\iaStor.sys
16:59:30.0021 7096 C:\Windows\System32\drivers\iaStor.sys - ok
16:59:30.0037 7096 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
16:59:30.0037 7096 C:\Windows\System32\drivers\dumpfve.sys - ok
16:59:30.0037 7096 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
16:59:30.0037 7096 C:\Windows\System32\drivers\cdrom.sys - ok
16:59:30.0052 7096 [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] C:\Windows\System32\drivers\eamonm.sys
16:59:30.0052 7096 C:\Windows\System32\drivers\eamonm.sys - ok
16:59:30.0052 7096 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
16:59:30.0052 7096 C:\Windows\System32\drivers\null.sys - ok
16:59:30.0052 7096 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
16:59:30.0052 7096 C:\Windows\System32\drivers\beep.sys - ok
16:59:30.0068 7096 [ 9E39134330C18CBAC0F24C1283701D7E ] C:\Windows\System32\drivers\ehdrv.sys
16:59:30.0068 7096 C:\Windows\System32\drivers\ehdrv.sys - ok
16:59:30.0068 7096 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
16:59:30.0068 7096 C:\Windows\System32\drivers\videoprt.sys - ok
16:59:30.0068 7096 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
16:59:30.0068 7096 C:\Windows\System32\drivers\watchdog.sys - ok
16:59:30.0083 7096 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
16:59:30.0083 7096 C:\Windows\System32\drivers\RDPCDD.sys - ok
16:59:30.0083 7096 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
16:59:30.0083 7096 C:\Windows\System32\drivers\vga.sys - ok
16:59:30.0083 7096 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
16:59:30.0083 7096 C:\Windows\System32\drivers\RDPENCDD.sys - ok
16:59:30.0099 7096 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
16:59:30.0099 7096 C:\Windows\System32\drivers\RDPREFMP.sys - ok
16:59:30.0099 7096 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
16:59:30.0099 7096 C:\Windows\System32\drivers\msfs.sys - ok
16:59:30.0099 7096 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
16:59:30.0099 7096 C:\Windows\System32\drivers\npfs.sys - ok
16:59:30.0115 7096 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
16:59:30.0115 7096 C:\Windows\System32\drivers\netbt.sys - ok
16:59:30.0115 7096 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
16:59:30.0115 7096 C:\Windows\System32\drivers\tdi.sys - ok
16:59:30.0130 7096 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
16:59:30.0130 7096 C:\Windows\System32\drivers\tdx.sys - ok
16:59:30.0130 7096 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
16:59:30.0130 7096 C:\Windows\System32\drivers\afd.sys - ok
16:59:30.0130 7096 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
16:59:30.0130 7096 C:\Windows\System32\drivers\pacer.sys - ok
16:59:30.0146 7096 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
16:59:30.0146 7096 C:\Windows\System32\drivers\wfplwf.sys - ok
16:59:30.0146 7096 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
16:59:30.0146 7096 C:\Windows\System32\drivers\netbios.sys - ok
16:59:30.0161 7096 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
16:59:30.0161 7096 C:\Windows\System32\drivers\vwififlt.sys - ok
16:59:30.0161 7096 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
16:59:30.0161 7096 C:\Windows\System32\drivers\wanarp.sys - ok
16:59:30.0161 7096 [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
16:59:30.0161 7096 C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
16:59:30.0177 7096 [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
16:59:30.0177 7096 C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
16:59:30.0177 7096 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
16:59:30.0177 7096 C:\Windows\System32\drivers\termdd.sys - ok
16:59:30.0177 7096 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
16:59:30.0177 7096 C:\Windows\System32\drivers\rdbss.sys - ok
16:59:30.0193 7096 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
16:59:30.0193 7096 C:\Windows\System32\drivers\discache.sys - ok
16:59:30.0193 7096 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
16:59:30.0193 7096 C:\Windows\System32\drivers\mssmbios.sys - ok
16:59:30.0193 7096 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
16:59:30.0193 7096 C:\Windows\System32\drivers\nsiproxy.sys - ok
16:59:30.0208 7096 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
16:59:30.0208 7096 C:\Windows\System32\drivers\blbdrive.sys - ok
16:59:30.0208 7096 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
16:59:30.0208 7096 C:\Windows\System32\drivers\dfsc.sys - ok
16:59:30.0208 7096 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
16:59:30.0208 7096 C:\Windows\System32\drivers\tunnel.sys - ok
16:59:30.0208 7096 [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
16:59:30.0208 7096 C:\Windows\System32\smss.exe - ok
16:59:30.0224 7096 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
16:59:30.0224 7096 C:\Windows\System32\ntdll.dll - ok
16:59:30.0224 7096 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
16:59:30.0224 7096 C:\Windows\System32\autochk.exe - ok
16:59:30.0224 7096 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
16:59:30.0224 7096 C:\Windows\System32\ws2_32.dll - ok
16:59:30.0239 7096 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
16:59:30.0239 7096 C:\Windows\System32\difxapi.dll - ok
16:59:30.0239 7096 [ 795C99DC4F574C97C03D0BB39CF099EE ] C:\Windows\System32\drivers\igdkmd64.sys
16:59:30.0239 7096 C:\Windows\System32\drivers\igdkmd64.sys - ok
16:59:30.0239 7096 [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
16:59:30.0239 7096 C:\Windows\System32\drivers\dxgkrnl.sys - ok
16:59:30.0255 7096 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
16:59:30.0255 7096 C:\Windows\System32\drivers\dxgmms1.sys - ok
16:59:30.0255 7096 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] C:\Windows\System32\drivers\HECIx64.sys
16:59:30.0255 7096 C:\Windows\System32\drivers\HECIx64.sys - ok
16:59:30.0271 7096 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
16:59:30.0271 7096 C:\Windows\System32\drivers\usbehci.sys - ok
16:59:30.0271 7096 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
16:59:30.0271 7096 C:\Windows\System32\drivers\usbport.sys - ok
16:59:30.0271 7096 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
16:59:30.0271 7096 C:\Windows\System32\drivers\hdaudbus.sys - ok
16:59:30.0286 7096 [ E50CFB92986DCAB49DE93788FD695813 ] C:\Windows\System32\drivers\Rt64win7.sys
16:59:30.0286 7096 C:\Windows\System32\drivers\Rt64win7.sys - ok
16:59:30.0286 7096 [ 5493ED5D300AFC7A9A0A87FCA08E5381 ] C:\Windows\System32\drivers\athrx.sys
16:59:30.0286 7096 C:\Windows\System32\drivers\athrx.sys - ok
16:59:30.0286 7096 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
16:59:30.0286 7096 C:\Windows\System32\drivers\vwifibus.sys - ok
16:59:30.0302 7096 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
16:59:30.0302 7096 C:\Windows\System32\drivers\i8042prt.sys - ok
16:59:30.0302 7096 [ 6690E42CED5D067233ABAD42DA141213 ] C:\Windows\System32\drivers\Apfiltr.sys
16:59:30.0302 7096 C:\Windows\System32\drivers\Apfiltr.sys - ok
16:59:30.0302 7096 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
16:59:30.0302 7096 C:\Windows\System32\drivers\mouclass.sys - ok
16:59:30.0317 7096 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
16:59:30.0317 7096 C:\Windows\System32\drivers\kbdclass.sys - ok
16:59:30.0317 7096 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
16:59:30.0317 7096 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
16:59:30.0317 7096 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
16:59:30.0317 7096 C:\Windows\System32\drivers\intelppm.sys - ok
16:59:30.0333 7096 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
16:59:30.0333 7096 C:\Windows\System32\drivers\CmBatt.sys - ok
16:59:30.0333 7096 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
16:59:30.0333 7096 C:\Windows\System32\drivers\CompositeBus.sys - ok
16:59:30.0349 7096 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
16:59:30.0349 7096 C:\Windows\System32\drivers\wmiacpi.sys - ok
16:59:30.0349 7096 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
16:59:30.0349 7096 C:\Windows\System32\drivers\agilevpn.sys - ok
16:59:30.0349 7096 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
16:59:30.0349 7096 C:\Windows\System32\drivers\rasl2tp.sys - ok
16:59:30.0364 7096 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
16:59:30.0364 7096 C:\Windows\System32\drivers\ndistapi.sys - ok
16:59:30.0364 7096 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
16:59:30.0364 7096 C:\Windows\System32\drivers\ndiswan.sys - ok
16:59:30.0364 7096 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
16:59:30.0364 7096 C:\Windows\System32\drivers\raspppoe.sys - ok
16:59:30.0380 7096 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
16:59:30.0380 7096 C:\Windows\System32\drivers\raspptp.sys - ok
16:59:30.0380 7096 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
16:59:30.0380 7096 C:\Windows\System32\drivers\rassstp.sys - ok
16:59:30.0380 7096 [ 190975A4168F19DA5C02D3F41E84D5D2 ] C:\Windows\System32\drivers\swvspser.sys
16:59:30.0380 7096 C:\Windows\System32\drivers\swvspser.sys - ok
16:59:30.0395 7096 [ DECACB6921DED1A38642642685D77DAC ] C:\Windows\System32\drivers\serscan.sys
16:59:30.0395 7096 C:\Windows\System32\drivers\serscan.sys - ok
16:59:30.0395 7096 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
16:59:30.0395 7096 C:\Windows\System32\imm32.dll - ok
16:59:30.0395 7096 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
16:59:30.0395 7096 C:\Windows\System32\oleaut32.dll - ok
16:59:30.0411 7096 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
16:59:30.0411 7096 C:\Windows\System32\drivers\ks.sys - ok
16:59:30.0411 7096 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] C:\Windows\System32\drivers\CtClsFlt.sys
16:59:30.0411 7096 C:\Windows\System32\drivers\CtClsFlt.sys - ok
16:59:30.0411 7096 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
16:59:30.0411 7096 C:\Windows\System32\drivers\ksthunk.sys - ok
16:59:30.0427 7096 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
16:59:30.0427 7096 C:\Windows\System32\drivers\swenum.sys - ok
16:59:30.0427 7096 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
16:59:30.0427 7096 C:\Windows\System32\drivers\umbus.sys - ok
16:59:30.0427 7096 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
16:59:30.0427 7096 C:\Windows\System32\drivers\usbhub.sys - ok
16:59:30.0442 7096 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
16:59:30.0442 7096 C:\Windows\System32\kernel32.dll - ok
16:59:30.0442 7096 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
16:59:30.0442 7096 C:\Windows\System32\rpcrt4.dll - ok
16:59:30.0442 7096 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
16:59:30.0442 7096 C:\Windows\System32\Wldap32.dll - ok
16:59:30.0458 7096 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
16:59:30.0458 7096 C:\Windows\System32\user32.dll - ok
16:59:30.0458 7096 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
16:59:30.0458 7096 C:\Windows\System32\drivers\ndproxy.sys - ok
16:59:30.0473 7096 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
16:59:30.0473 7096 C:\Windows\System32\drivers\drmk.sys - ok
16:59:30.0473 7096 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
16:59:30.0473 7096 C:\Windows\System32\drivers\portcls.sys - ok
16:59:30.0489 7096 [ EBA98394A7D58F7552C52192BD8FA7E6 ] C:\Windows\System32\drivers\stwrt64.sys
16:59:30.0489 7096 C:\Windows\System32\drivers\stwrt64.sys - ok
16:59:30.0489 7096 [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
16:59:30.0489 7096 C:\Windows\System32\drivers\IntcDAud.sys - ok
16:59:30.0489 7096 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
16:59:30.0489 7096 C:\Windows\System32\msctf.dll - ok
16:59:30.0505 7096 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
16:59:30.0505 7096 C:\Windows\System32\gdi32.dll - ok
16:59:30.0505 7096 [ 12716D987D475B051F35895659159705 ] C:\Windows\System32\wininet.dll
16:59:30.0505 7096 C:\Windows\System32\wininet.dll - ok
16:59:30.0505 7096 [ C9152A497D0CA33CE9D729F1179DDB01 ] C:\Windows\System32\urlmon.dll
16:59:30.0505 7096 C:\Windows\System32\urlmon.dll - ok
16:59:30.0520 7096 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
16:59:30.0520 7096 C:\Windows\System32\comdlg32.dll - ok
16:59:30.0520 7096 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
16:59:30.0520 7096 C:\Windows\System32\imagehlp.dll - ok
16:59:30.0520 7096 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
16:59:30.0520 7096 C:\Windows\System32\lpk.dll - ok
16:59:30.0536 7096 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
16:59:30.0536 7096 C:\Windows\System32\nsi.dll - ok
16:59:30.0536 7096 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
16:59:30.0536 7096 C:\Windows\System32\usp10.dll - ok
16:59:30.0536 7096 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
16:59:30.0536 7096 C:\Windows\System32\shlwapi.dll - ok
16:59:30.0551 7096 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
16:59:30.0551 7096 C:\Windows\System32\clbcatq.dll - ok
16:59:30.0551 7096 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
16:59:30.0551 7096 C:\Windows\System32\advapi32.dll - ok
16:59:30.0567 7096 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
16:59:30.0567 7096 C:\Windows\System32\setupapi.dll - ok
16:59:30.0567 7096 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
16:59:30.0567 7096 C:\Windows\System32\ole32.dll - ok
16:59:30.0567 7096 [ 1BDF694C5BA91A1576DA907DA3077EF8 ] C:\Windows\System32\iertutil.dll
16:59:30.0567 7096 C:\Windows\System32\iertutil.dll - ok
16:59:30.0583 7096 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
16:59:30.0583 7096 C:\Windows\System32\msvcrt.dll - ok
16:59:30.0583 7096 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
16:59:30.0583 7096 C:\Windows\System32\normaliz.dll - ok
16:59:30.0583 7096 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
16:59:30.0583 7096 C:\Windows\System32\psapi.dll - ok
16:59:30.0598 7096 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
16:59:30.0598 7096 C:\Windows\System32\sechost.dll - ok
16:59:30.0598 7096 [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
16:59:30.0598 7096 C:\Windows\System32\shell32.dll - ok
16:59:30.0598 7096 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
16:59:30.0598 7096 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
16:59:30.0614 7096 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
16:59:30.0614 7096 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
16:59:30.0614 7096 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
16:59:30.0614 7096 C:\Windows\System32\devobj.dll - ok
16:59:30.0629 7096 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
16:59:30.0629 7096 C:\Windows\System32\cfgmgr32.dll - ok
16:59:30.0629 7096 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
16:59:30.0629 7096 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
16:59:30.0629 7096 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
16:59:30.0629 7096 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
16:59:30.0645 7096 [ A96D5ECA5742603E0E345C4F6B801F5E ] C:\Windows\System32\crypt32.dll
16:59:30.0645 7096 C:\Windows\System32\crypt32.dll - ok
16:59:30.0645 7096 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
16:59:30.0645 7096 C:\Windows\System32\KernelBase.dll - ok
16:59:30.0645 7096 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
16:59:30.0645 7096 C:\Windows\System32\wintrust.dll - ok
16:59:30.0661 7096 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
16:59:30.0661 7096 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
16:59:30.0661 7096 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
16:59:30.0661 7096 C:\Windows\System32\comctl32.dll - ok
16:59:30.0661 7096 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
16:59:30.0661 7096 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
16:59:30.0676 7096 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
16:59:30.0676 7096 C:\Windows\System32\msasn1.dll - ok
16:59:30.0676 7096 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
16:59:30.0676 7096 C:\Windows\SysWOW64\normaliz.dll - ok
16:59:30.0676 7096 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
16:59:30.0676 7096 C:\Windows\System32\drivers\dxapi.sys - ok
16:59:30.0692 7096 [ A11523523B31086DD760C0189C763359 ] C:\Windows\System32\win32k.sys
16:59:30.0692 7096 C:\Windows\System32\win32k.sys - ok
16:59:30.0692 7096 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
16:59:30.0692 7096 C:\Windows\System32\csrss.exe - ok
16:59:30.0692 7096 [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
16:59:30.0692 7096 C:\Windows\System32\csrsrv.dll - ok
16:59:30.0707 7096 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
16:59:30.0707 7096 C:\Windows\System32\basesrv.dll - ok
16:59:30.0707 7096 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
16:59:30.0707 7096 C:\Windows\System32\winsrv.dll - ok
16:59:30.0707 7096 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
16:59:30.0707 7096 C:\Windows\System32\drivers\monitor.sys - ok
16:59:30.0723 7096 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
16:59:30.0723 7096 C:\Windows\System32\tsddd.dll - ok
16:59:30.0723 7096 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
16:59:30.0723 7096 C:\Windows\System32\sxssrv.dll - ok
16:59:30.0723 7096 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
16:59:30.0723 7096 C:\Windows\System32\wininit.exe - ok
16:59:30.0739 7096 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
16:59:30.0739 7096 C:\Windows\System32\cdd.dll - ok
16:59:30.0739 7096 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
16:59:30.0739 7096 C:\Windows\System32\profapi.dll - ok
16:59:30.0739 7096 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
16:59:30.0739 7096 C:\Windows\System32\version.dll - ok
16:59:30.0754 7096 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
16:59:30.0754 7096 C:\Windows\System32\KBDUS.DLL - ok
16:59:30.0754 7096 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
16:59:30.0754 7096 C:\Windows\System32\RpcRtRemote.dll - ok
16:59:30.0754 7096 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
16:59:30.0754 7096 C:\Windows\System32\sxs.dll - ok
16:59:30.0770 7096 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
16:59:30.0770 7096 C:\Windows\System32\WlS0WndH.dll - ok
16:59:30.0770 7096 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
16:59:30.0770 7096 C:\Windows\System32\cryptbase.dll - ok
16:59:30.0770 7096 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
16:59:30.0770 7096 C:\Windows\System32\apphelp.dll - ok
16:59:30.0785 7096 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
16:59:30.0785 7096 C:\Windows\System32\lsm.exe - ok
16:59:30.0785 7096 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
16:59:30.0785 7096 C:\Windows\System32\services.exe - ok
16:59:30.0785 7096 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
16:59:30.0785 7096 C:\Windows\System32\lsass.exe - ok
16:59:30.0801 7096 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
16:59:30.0801 7096 C:\Windows\System32\winlogon.exe - ok
16:59:30.0801 7096 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
16:59:30.0801 7096 C:\Windows\System32\sspicli.dll - ok
16:59:30.0801 7096 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
16:59:30.0801 7096 C:\Windows\System32\scesrv.dll - ok
16:59:30.0817 7096 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
16:59:30.0817 7096 C:\Windows\System32\scext.dll - ok
16:59:30.0817 7096 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
16:59:30.0817 7096 C:\Windows\System32\secur32.dll - ok
16:59:30.0832 7096 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
16:59:30.0832 7096 C:\Windows\System32\srvcli.dll - ok
16:59:30.0832 7096 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
16:59:30.0832 7096 C:\Windows\System32\sysntfy.dll - ok
16:59:30.0832 7096 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
16:59:30.0832 7096 C:\Windows\System32\wmsgapi.dll - ok
16:59:30.0848 7096 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
16:59:30.0848 7096 C:\Windows\System32\sspisrv.dll - ok
16:59:30.0848 7096 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
16:59:30.0848 7096 C:\Windows\System32\lsasrv.dll - ok
16:59:30.0848 7096 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
16:59:30.0848 7096 C:\Windows\System32\samsrv.dll - ok
16:59:30.0863 7096 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
16:59:30.0863 7096 C:\Windows\System32\cryptdll.dll - ok
16:59:30.0863 7096 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
16:59:30.0863 7096 C:\Windows\System32\wevtapi.dll - ok
16:59:30.0863 7096 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
16:59:30.0863 7096 C:\Windows\System32\authz.dll - ok
16:59:30.0879 7096 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
16:59:30.0879 7096 C:\Windows\System32\cngaudit.dll - ok
16:59:30.0879 7096 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
16:59:30.0879 7096 C:\Windows\System32\bcrypt.dll - ok
16:59:30.0879 7096 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
16:59:30.0879 7096 C:\Windows\System32\ncrypt.dll - ok
16:59:30.0895 7096 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
16:59:30.0895 7096 C:\Windows\System32\winsta.dll - ok
16:59:30.0895 7096 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
16:59:30.0895 7096 C:\Windows\System32\msprivs.dll - ok
16:59:30.0895 7096 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
16:59:30.0895 7096 C:\Windows\System32\netjoin.dll - ok
16:59:30.0910 7096 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
16:59:30.0910 7096 C:\Windows\System32\negoexts.dll - ok
16:59:30.0910 7096 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
16:59:30.0910 7096 C:\Windows\System32\kerberos.dll - ok
16:59:30.0910 7096 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
16:59:30.0910 7096 C:\Windows\System32\cryptsp.dll - ok
16:59:30.0926 7096 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
16:59:30.0926 7096 C:\Windows\System32\mswsock.dll - ok
16:59:30.0926 7096 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
16:59:30.0926 7096 C:\Windows\System32\msv1_0.dll - ok
16:59:30.0926 7096 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
16:59:30.0926 7096 C:\Windows\System32\wship6.dll - ok
16:59:30.0941 7096 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
16:59:30.0941 7096 C:\Windows\System32\netlogon.dll - ok
16:59:30.0941 7096 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
16:59:30.0941 7096 C:\Windows\System32\dnsapi.dll - ok
16:59:30.0941 7096 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
16:59:30.0941 7096 C:\Windows\System32\logoncli.dll - ok
16:59:30.0957 7096 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
16:59:30.0957 7096 C:\Windows\System32\schannel.dll - ok
16:59:30.0957 7096 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
16:59:30.0957 7096 C:\Windows\System32\wdigest.dll - ok
16:59:30.0957 7096 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
16:59:30.0957 7096 C:\Windows\System32\rsaenh.dll - ok
16:59:30.0973 7096 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
16:59:30.0973 7096 C:\Windows\System32\atmfd.dll - ok
16:59:30.0973 7096 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
16:59:30.0973 7096 C:\Windows\System32\TSpkg.dll - ok
16:59:30.0973 7096 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
16:59:30.0973 7096 C:\Windows\System32\pku2u.dll - ok
16:59:30.0988 7096 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
16:59:30.0988 7096 C:\Windows\System32\LIVESSP.DLL - ok
16:59:30.0988 7096 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
16:59:30.0988 7096 C:\Windows\System32\bcryptprimitives.dll - ok
16:59:30.0988 7096 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
16:59:30.0988 7096 C:\Windows\System32\credssp.dll - ok
16:59:31.0004 7096 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
16:59:31.0004 7096 C:\Windows\System32\efslsaext.dll - ok
16:59:31.0004 7096 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
16:59:31.0004 7096 C:\Windows\System32\scecli.dll - ok
16:59:31.0004 7096 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
16:59:31.0004 7096 C:\Windows\System32\ubpm.dll - ok
16:59:31.0019 7096 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
16:59:31.0019 7096 C:\Windows\System32\svchost.exe - ok
16:59:31.0019 7096 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
16:59:31.0019 7096 C:\Windows\System32\umpnpmgr.dll - ok
16:59:31.0019 7096 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
16:59:31.0019 7096 C:\Windows\System32\SPInf.dll - ok
16:59:31.0035 7096 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
16:59:31.0035 7096 C:\Windows\System32\devrtl.dll - ok
16:59:31.0035 7096 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
16:59:31.0035 7096 C:\Windows\System32\userenv.dll - ok
16:59:31.0035 7096 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
16:59:31.0035 7096 C:\Windows\System32\gpapi.dll - ok
16:59:31.0051 7096 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
16:59:31.0051 7096 C:\Windows\System32\umpo.dll - ok
16:59:31.0051 7096 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
16:59:31.0051 7096 C:\Windows\System32\pcwum.dll - ok
16:59:31.0066 7096 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
16:59:31.0066 7096 C:\Windows\System32\powrprof.dll - ok
16:59:31.0066 7096 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
16:59:31.0066 7096 C:\Windows\System32\drivers\luafv.sys - ok
16:59:31.0066 7096 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
16:59:31.0066 7096 C:\Windows\System32\drivers\Sftvollh.sys - ok
16:59:31.0082 7096 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
16:59:31.0082 7096 C:\Windows\System32\rpcss.dll - ok
16:59:31.0082 7096 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
16:59:31.0082 7096 C:\Windows\System32\RpcEpMap.dll - ok
16:59:31.0082 7096 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
16:59:31.0082 7096 C:\Windows\System32\wshqos.dll - ok
16:59:31.0097 7096 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
16:59:31.0097 7096 C:\Windows\System32\WSHTCPIP.DLL - ok
16:59:31.0097 7096 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
16:59:31.0097 7096 C:\Windows\System32\LogonUI.exe - ok
16:59:31.0097 7096 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
16:59:31.0097 7096 C:\Windows\System32\FirewallAPI.dll - ok
16:59:31.0113 7096 [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
16:59:31.0113 7096 C:\Windows\System32\authui.dll - ok
16:59:31.0113 7096 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
16:59:31.0113 7096 C:\Windows\System32\wevtsvc.dll - ok
16:59:31.0113 7096 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
16:59:31.0113 7096 C:\Windows\System32\cryptui.dll - ok
16:59:31.0129 7096 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
16:59:31.0129 7096 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
16:59:31.0129 7096 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
16:59:31.0129 7096 C:\Windows\System32\samlib.dll - ok
16:59:31.0129 7096 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
16:59:31.0129 7096 C:\Windows\System32\shacct.dll - ok
16:59:31.0144 7096 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
16:59:31.0144 7096 C:\Windows\System32\propsys.dll - ok
16:59:31.0144 7096 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
16:59:31.0144 7096 C:\Windows\System32\uxtheme.dll - ok
16:59:31.0144 7096 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
16:59:31.0144 7096 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
16:59:31.0160 7096 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
16:59:31.0160 7096 C:\Windows\System32\audiosrv.dll - ok
16:59:31.0160 7096 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
16:59:31.0160 7096 C:\Windows\System32\avrt.dll - ok
16:59:31.0160 7096 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
16:59:31.0160 7096 C:\Windows\System32\MMDevAPI.dll - ok
16:59:31.0175 7096 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
16:59:31.0175 7096 C:\Windows\System32\dui70.dll - ok
16:59:31.0175 7096 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
16:59:31.0175 7096 C:\Windows\System32\FntCache.dll - ok
16:59:31.0175 7096 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
16:59:31.0175 7096 C:\Windows\System32\duser.dll - ok
16:59:31.0191 7096 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
16:59:31.0191 7096 C:\Windows\System32\SndVolSSO.dll - ok
16:59:31.0191 7096 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
16:59:31.0191 7096 C:\Windows\System32\hid.dll - ok
16:59:31.0191 7096 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
16:59:31.0191 7096 C:\Windows\System32\dwmapi.dll - ok
16:59:31.0207 7096 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
16:59:31.0207 7096 C:\Windows\System32\xmllite.dll - ok
16:59:31.0207 7096 [ 3D7BB6DD7A87B3E36E44CA94444247A8 ] C:\Windows\System32\WindowsCodecs.dll
16:59:31.0207 7096 C:\Windows\System32\WindowsCodecs.dll - ok
16:59:31.0207 7096 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
16:59:31.0207 7096 C:\Windows\System32\winbrand.dll - ok
16:59:31.0222 7096 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
16:59:31.0222 7096 C:\Windows\System32\VaultCredProvider.dll - ok
16:59:31.0222 7096 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
16:59:31.0222 7096 C:\Windows\System32\wtsapi32.dll - ok
16:59:31.0222 7096 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
16:59:31.0222 7096 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
16:59:31.0238 7096 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
16:59:31.0238 7096 C:\Windows\System32\BioCredProv.dll - ok
16:59:31.0238 7096 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
16:59:31.0238 7096 C:\Windows\System32\winbio.dll - ok
16:59:31.0238 7096 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
16:59:31.0238 7096 C:\Windows\System32\credui.dll - ok
16:59:31.0253 7096 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
16:59:31.0253 7096 C:\Windows\System32\vaultcli.dll - ok
16:59:31.0253 7096 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
16:59:31.0253 7096 C:\Windows\System32\netapi32.dll - ok
16:59:31.0253 7096 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
16:59:31.0253 7096 C:\Windows\System32\netutils.dll - ok
16:59:31.0269 7096 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
16:59:31.0269 7096 C:\Windows\System32\wkscli.dll - ok
16:59:31.0269 7096 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
16:59:31.0269 7096 C:\Windows\System32\samcli.dll - ok
16:59:31.0269 7096 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
16:59:31.0269 7096 C:\Windows\System32\certCredProvider.dll - ok
16:59:31.0285 7096 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
16:59:31.0285 7096 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
16:59:31.0285 7096 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
16:59:31.0285 7096 C:\Windows\System32\rasplap.dll - ok
16:59:31.0285 7096 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
16:59:31.0285 7096 C:\Windows\System32\rasapi32.dll - ok
16:59:31.0300 7096 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
16:59:31.0300 7096 C:\Windows\System32\rasman.dll - ok
16:59:31.0300 7096 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
16:59:31.0300 7096 C:\Windows\System32\rtutils.dll - ok
16:59:31.0300 7096 [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0 ] C:\Program Files\IDT\WDM\stacsv64.exe
16:59:31.0300 7096 C:\Program Files\IDT\WDM\stacsv64.exe - ok
16:59:31.0316 7096 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
16:59:31.0316 7096 C:\Windows\System32\mmcss.dll - ok
16:59:31.0316 7096 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
16:59:31.0316 7096 C:\Windows\System32\atl.dll - ok
16:59:31.0331 7096 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
16:59:31.0331 7096 C:\Windows\System32\dsound.dll - ok
16:59:31.0331 7096 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
16:59:31.0331 7096 C:\Windows\System32\wlansvc.dll - ok
16:59:31.0331 7096 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
16:59:31.0331 7096 C:\Windows\System32\adtschema.dll - ok
16:59:31.0347 7096 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
16:59:31.0347 7096 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
16:59:31.0347 7096 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
16:59:31.0347 7096 C:\Windows\System32\netprofm.dll - ok
16:59:31.0347 7096 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
16:59:31.0347 7096 C:\Windows\System32\winmm.dll - ok
16:59:31.0363 7096 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
16:59:31.0363 7096 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
16:59:31.0363 7096 [ 30E1D211F233DFB9FD74B13B88F6857F ] C:\Windows\System32\stapi64.dll
16:59:31.0363 7096 C:\Windows\System32\stapi64.dll - ok
16:59:31.0363 7096 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
16:59:31.0363 7096 C:\Windows\System32\winhttp.dll - ok
16:59:31.0378 7096 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
16:59:31.0378 7096 C:\Windows\System32\webio.dll - ok
16:59:31.0378 7096 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
16:59:31.0378 7096 C:\Windows\System32\audiodg.exe - ok
16:59:31.0378 7096 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
16:59:31.0378 7096 C:\Windows\System32\IPHLPAPI.DLL - ok
16:59:31.0394 7096 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
16:59:31.0394 7096 C:\Windows\System32\dhcpcsvc.dll - ok
16:59:31.0394 7096 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
16:59:31.0394 7096 C:\Windows\System32\winnsi.dll - ok
16:59:31.0394 7096 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
16:59:31.0394 7096 C:\Windows\System32\dhcpcsvc6.dll - ok
16:59:31.0409 7096 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
16:59:31.0409 7096 C:\Windows\System32\nlaapi.dll - ok
16:59:31.0409 7096 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
16:59:31.0409 7096 C:\Windows\System32\AudioSes.dll - ok
16:59:31.0409 7096 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
16:59:31.0409 7096 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
16:59:31.0425 7096 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
16:59:31.0425 7096 C:\Program Files\Bonjour\mdnsNSP.dll - ok
16:59:31.0425 7096 [ 9A6949BA7D5D77B3625FB20F6ED7F54B ] C:\Windows\System32\stapo64.dll
16:59:31.0425 7096 C:\Windows\System32\stapo64.dll - ok
16:59:31.0425 7096 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
16:59:31.0425 7096 C:\Windows\System32\rasadhlp.dll - ok
16:59:31.0441 7096 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
16:59:31.0441 7096 C:\Windows\System32\AudioEng.dll - ok
16:59:31.0441 7096 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
16:59:31.0441 7096 C:\Windows\System32\WMALFXGFXDSP.dll - ok
16:59:31.0441 7096 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
16:59:31.0441 7096 C:\Windows\System32\mfplat.dll - ok
16:59:31.0456 7096 [ 64A14D7A28C7FEA8DB495F7FEDD302B6 ] C:\Windows\System32\imapo64.dll
16:59:31.0456 7096 C:\Windows\System32\imapo64.dll - ok
16:59:31.0456 7096 [ 90F4D286C592EE0AD634A87EE4DAF24E ] C:\Windows\System32\imthx64.dll
16:59:31.0456 7096 C:\Windows\System32\imthx64.dll - ok
16:59:31.0456 7096 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
16:59:31.0456 7096 C:\Windows\System32\AESTAR64.dll - ok
16:59:31.0472 7096 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
16:59:31.0472 7096 C:\Windows\System32\drivers\fltMgr.sys - ok
16:59:31.0472 7096 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
16:59:31.0472 7096 C:\Windows\System32\PSHED.DLL - ok
16:59:31.0472 7096 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
16:59:31.0472 7096 C:\Windows\System32\MPSSVC.dll - ok
16:59:31.0487 7096 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
16:59:31.0487 7096 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
16:59:31.0487 7096 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
16:59:31.0487 7096 C:\Windows\System32\ntmarta.dll - ok
16:59:31.0503 7096 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
16:59:31.0503 7096 C:\Windows\System32\gpsvc.dll - ok
16:59:31.0503 7096 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
16:59:31.0503 7096 C:\Windows\System32\profsvc.dll - ok
16:59:31.0503 7096 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
16:59:31.0503 7096 C:\Windows\System32\dsrole.dll - ok
16:59:31.0519 7096 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
16:59:31.0519 7096 C:\Windows\System32\themeservice.dll - ok
16:59:31.0519 7096 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
16:59:31.0519 7096 C:\Windows\System32\slc.dll - ok
16:59:31.0519 7096 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
16:59:31.0519 7096 C:\Windows\System32\es.dll - ok
16:59:31.0519 7096 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
16:59:31.0519 7096 C:\Windows\System32\UXInit.dll - ok
16:59:31.0534 7096 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
16:59:31.0534 7096 C:\Windows\System32\comres.dll - ok
16:59:31.0534 7096 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
16:59:31.0534 7096 C:\Windows\System32\drivers\lltdio.sys - ok
16:59:31.0534 7096 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
16:59:31.0534 7096 C:\Windows\System32\Sens.dll - ok
16:59:31.0550 7096 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
16:59:31.0550 7096 C:\Windows\System32\uxsms.dll - ok
16:59:31.0550 7096 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
16:59:31.0550 7096 C:\Windows\System32\drivers\nwifi.sys - ok
16:59:31.0565 7096 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
16:59:31.0565 7096 C:\Windows\System32\drivers\ndisuio.sys - ok
16:59:31.0565 7096 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
16:59:31.0565 7096 C:\Windows\System32\dhcpcore.dll - ok
16:59:31.0565 7096 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
16:59:31.0565 7096 C:\Windows\System32\drivers\rspndr.sys - ok
16:59:31.0581 7096 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
16:59:31.0581 7096 C:\Windows\System32\lmhsvc.dll - ok
16:59:31.0581 7096 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
16:59:31.0581 7096 C:\Windows\System32\nrpsrv.dll - ok
16:59:31.0581 7096 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
16:59:31.0581 7096 C:\Windows\System32\nsisvc.dll - ok
16:59:31.0597 7096 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
16:59:31.0597 7096 C:\Windows\System32\dhcpcore6.dll - ok
16:59:31.0597 7096 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
16:59:31.0597 7096 C:\Windows\System32\dnsrslvr.dll - ok
16:59:31.0597 7096 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
16:59:31.0597 7096 C:\Windows\System32\eapphost.dll - ok
16:59:31.0612 7096 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
16:59:31.0612 7096 C:\Windows\System32\eapsvc.dll - ok
16:59:31.0612 7096 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
16:59:31.0612 7096 C:\Windows\System32\FWPUCLNT.DLL - ok
16:59:31.0612 7096 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
16:59:31.0612 7096 C:\Windows\System32\keyiso.dll - ok
16:59:31.0628 7096 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
16:59:31.0628 7096 C:\Windows\System32\dnsext.dll - ok
16:59:31.0628 7096 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
16:59:31.0628 7096 C:\Windows\System32\umb.dll - ok
16:59:31.0643 7096 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
16:59:31.0643 7096 C:\Windows\System32\wlanmsm.dll - ok
16:59:31.0643 7096 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
16:59:31.0643 7096 C:\Windows\System32\wlansec.dll - ok
16:59:31.0643 7096 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
16:59:31.0643 7096 C:\Windows\System32\imageres.dll - ok
16:59:31.0659 7096 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
16:59:31.0659 7096 C:\Windows\System32\eappprxy.dll - ok
16:59:31.0659 7096 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
16:59:31.0659 7096 C:\Windows\System32\onex.dll - ok
16:59:31.0659 7096 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
16:59:31.0659 7096 C:\Windows\System32\eappcfg.dll - ok
16:59:31.0675 7096 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
16:59:31.0675 7096 C:\Windows\System32\l2gpstore.dll - ok
16:59:31.0675 7096 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
16:59:31.0675 7096 C:\Windows\System32\wlanutil.dll - ok
16:59:31.0675 7096 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
16:59:31.0675 7096 C:\Windows\System32\wlgpclnt.dll - ok
16:59:31.0690 7096 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
16:59:31.0690 7096 C:\Windows\System32\WinSCard.dll - ok
16:59:31.0690 7096 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
16:59:31.0690 7096 C:\Windows\System32\msxml6.dll - ok
16:59:31.0690 7096 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
16:59:31.0690 7096 C:\Windows\System32\shsvcs.dll - ok
16:59:31.0706 7096 [ 7D8DD3520A5B113A248B4867492E7DFE ] C:\ProgramData\eSafe\eSafeSvc.exe
16:59:31.0706 7096 C:\ProgramData\eSafe\eSafeSvc.exe - ok
16:59:31.0706 7096 [ 11338E0557B07BC32CDB980B6EDB35AA ] C:\Windows\System32\ci.dll
16:59:31.0706 7096 C:\Windows\System32\ci.dll - ok
16:59:31.0706 7096 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
16:59:31.0706 7096 C:\Windows\SysWOW64\ntdll.dll - ok
16:59:31.0721 7096 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
16:59:31.0721 7096 C:\Windows\System32\fveapi.dll - ok
16:59:31.0721 7096 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
16:59:31.0721 7096 C:\Windows\System32\fvecerts.dll - ok
16:59:31.0721 7096 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
16:59:31.0721 7096 C:\Windows\System32\tbs.dll - ok
16:59:31.0737 7096 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
16:59:31.0737 7096 C:\Windows\System32\wiarpc.dll - ok
16:59:31.0737 7096 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
16:59:31.0737 7096 C:\Windows\System32\wow64.dll - ok
16:59:31.0737 7096 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
16:59:31.0737 7096 C:\Windows\System32\wow64win.dll - ok
16:59:31.0753 7096 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
16:59:31.0753 7096 C:\Windows\System32\wow64cpu.dll - ok
16:59:31.0753 7096 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
16:59:31.0753 7096 C:\Windows\SysWOW64\kernel32.dll - ok
16:59:31.0753 7096 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
16:59:31.0753 7096 C:\Windows\System32\netcfgx.dll - ok
16:59:31.0768 7096 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
16:59:31.0768 7096 C:\Windows\System32\drivers\vwifimp.sys - ok
16:59:31.0768 7096 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
16:59:31.0768 7096 C:\Windows\SysWOW64\KernelBase.dll - ok
16:59:31.0784 7096 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
16:59:31.0784 7096 C:\Windows\SysWOW64\user32.dll - ok
16:59:31.0784 7096 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
16:59:31.0784 7096 C:\Windows\SysWOW64\gdi32.dll - ok
16:59:31.0784 7096 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
16:59:31.0784 7096 C:\Windows\SysWOW64\lpk.dll - ok
16:59:31.0799 7096 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
16:59:31.0799 7096 C:\Windows\SysWOW64\usp10.dll - ok
16:59:31.0799 7096 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
16:59:31.0799 7096 C:\Windows\SysWOW64\msvcrt.dll - ok
16:59:31.0799 7096 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
16:59:31.0799 7096 C:\Windows\SysWOW64\advapi32.dll - ok
16:59:31.0815 7096 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
16:59:31.0815 7096 C:\Windows\SysWOW64\sechost.dll - ok
16:59:31.0815 7096 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
16:59:31.0815 7096 C:\Windows\SysWOW64\rpcrt4.dll - ok
16:59:31.0815 7096 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
16:59:31.0815 7096 C:\Windows\SysWOW64\cryptbase.dll - ok
16:59:31.0831 7096 [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
16:59:31.0831 7096 C:\Windows\SysWOW64\shell32.dll - ok
16:59:31.0831 7096 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
16:59:31.0831 7096 C:\Windows\SysWOW64\sspicli.dll - ok
16:59:31.0831 7096 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
16:59:31.0831 7096 C:\Windows\SysWOW64\shlwapi.dll - ok
16:59:31.0846 7096 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
16:59:31.0846 7096 C:\Windows\SysWOW64\winhttp.dll - ok
16:59:31.0846 7096 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
16:59:31.0846 7096 C:\Windows\SysWOW64\webio.dll - ok
16:59:31.0846 7096 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
16:59:31.0846 7096 C:\Windows\SysWOW64\SensApi.dll - ok
16:59:31.0862 7096 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
16:59:31.0862 7096 C:\Windows\SysWOW64\version.dll - ok
16:59:31.0862 7096 [ 2473CA6595A2659D7039A4A89FECA269 ] C:\Windows\SysWOW64\wininet.dll
16:59:31.0862 7096 C:\Windows\SysWOW64\wininet.dll - ok
16:59:31.0877 7096 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
16:59:31.0877 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
16:59:31.0877 7096 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
16:59:31.0877 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
16:59:31.0877 7096 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
16:59:31.0877 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
16:59:31.0893 7096 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
16:59:31.0893 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
16:59:31.0893 7096 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
16:59:31.0893 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
16:59:31.0893 7096 [ F383B1AD5D7FDC1ACB0D900B50572F8D ] C:\Windows\SysWOW64\iertutil.dll
16:59:31.0893 7096 C:\Windows\SysWOW64\iertutil.dll - ok
16:59:31.0909 7096 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
16:59:31.0909 7096 C:\Windows\SysWOW64\imm32.dll - ok
16:59:31.0909 7096 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
16:59:31.0909 7096 C:\Windows\SysWOW64\profapi.dll - ok
16:59:31.0909 7096 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
16:59:31.0909 7096 C:\Windows\SysWOW64\psapi.dll - ok
16:59:31.0924 7096 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
16:59:31.0924 7096 C:\Windows\SysWOW64\userenv.dll - ok
16:59:31.0924 7096 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
16:59:31.0924 7096 C:\Windows\SysWOW64\msctf.dll - ok
16:59:31.0940 7096 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
16:59:31.0940 7096 C:\Windows\SysWOW64\ole32.dll - ok
16:59:31.0940 7096 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
16:59:31.0940 7096 C:\Windows\SysWOW64\oleaut32.dll - ok
16:59:31.0940 7096 [ B3DC4D1658093C1E486CA9F22180BECF ] C:\Windows\SysWOW64\urlmon.dll
16:59:31.0940 7096 C:\Windows\SysWOW64\urlmon.dll - ok
16:59:31.0955 7096 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
16:59:31.0955 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
16:59:31.0955 7096 [ F720502AAA03FAB627A96E5EAADAA28D ] C:\Program Files (x86)\WinZipper\winzipersvc.exe
16:59:31.0955 7096 C:\Program Files (x86)\WinZipper\winzipersvc.exe - ok
16:59:31.0955 7096 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
16:59:31.0955 7096 C:\Windows\System32\schedsvc.dll - ok
16:59:31.0971 7096 [ 0B85D02C302D381DE200F87D747CABD4 ] C:\Program Files (x86)\WinZipper\ebase.dll
16:59:31.0971 7096 C:\Program Files (x86)\WinZipper\ebase.dll - ok
16:59:31.0971 7096 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
16:59:31.0971 7096 C:\Windows\System32\ktmw32.dll - ok
16:59:31.0971 7096 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
16:59:31.0971 7096 C:\Windows\SysWOW64\ws2_32.dll - ok
16:59:31.0987 7096 [ BF6FE24C8C344DEE4ADA87F93D55B069 ] C:\Windows\SysWOW64\msvcr100.dll
16:59:31.0987 7096 C:\Windows\SysWOW64\msvcr100.dll - ok
16:59:31.0987 7096 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
16:59:31.0987 7096 C:\Windows\SysWOW64\nsi.dll - ok
16:59:31.0987 7096 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
16:59:31.0987 7096 C:\Windows\System32\taskcomp.dll - ok
16:59:32.0002 7096 [ CC2973069AD865E3B1DC2FDF61134E97 ] C:\Windows\SysWOW64\msvcp100.dll
16:59:32.0002 7096 C:\Windows\SysWOW64\msvcp100.dll - ok
16:59:32.0002 7096 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
16:59:32.0002 7096 C:\Windows\SysWOW64\winmm.dll - ok
16:59:32.0002 7096 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
16:59:32.0002 7096 C:\Windows\SysWOW64\powrprof.dll - ok
16:59:32.0018 7096 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
16:59:32.0018 7096 C:\Windows\SysWOW64\setupapi.dll - ok
16:59:32.0018 7096 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
16:59:32.0018 7096 C:\Windows\SysWOW64\cfgmgr32.dll - ok
16:59:32.0033 7096 [ 684667AEAE2C96E4831C2F16213F2979 ] C:\Program Files (x86)\WinZipper\sqlite3.dll
16:59:32.0033 7096 C:\Program Files (x86)\WinZipper\sqlite3.dll - ok
16:59:32.0033 7096 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
16:59:32.0033 7096 C:\Windows\SysWOW64\devobj.dll - ok
16:59:32.0033 7096 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
16:59:32.0033 7096 C:\Windows\SysWOW64\wtsapi32.dll - ok
16:59:32.0049 7096 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
16:59:32.0049 7096 C:\Windows\System32\drivers\http.sys - ok
16:59:32.0049 7096 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
16:59:32.0049 7096 C:\Windows\System32\spoolsv.exe - ok
16:59:32.0049 7096 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
16:59:32.0049 7096 C:\Windows\System32\BFE.DLL - ok
16:59:32.0065 7096 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
16:59:32.0065 7096 C:\Windows\System32\drivers\bowser.sys - ok
16:59:32.0065 7096 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
16:59:32.0065 7096 C:\Windows\System32\drivers\mpsdrv.sys - ok
16:59:32.0080 7096 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
16:59:32.0080 7096 C:\Windows\System32\drivers\mrxsmb.sys - ok
16:59:32.0080 7096 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
16:59:32.0080 7096 C:\Windows\System32\drivers\mrxsmb10.sys - ok
16:59:32.0080 7096 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
16:59:32.0080 7096 C:\Windows\System32\drivers\mrxsmb20.sys - ok
16:59:32.0096 7096 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
16:59:32.0096 7096 C:\Windows\System32\wkssvc.dll - ok
16:59:32.0096 7096 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
16:59:32.0096 7096 C:\Windows\System32\wfapigp.dll - ok
16:59:32.0096 7096 [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:59:32.0096 7096 C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE - ok
16:59:32.0111 7096 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
16:59:32.0111 7096 C:\Windows\System32\mscms.dll - ok
16:59:32.0111 7096 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
16:59:32.0111 7096 C:\Windows\System32\pcasvc.dll - ok
16:59:32.0127 7096 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
16:59:32.0127 7096 C:\Windows\System32\snmptrap.exe - ok
16:59:32.0127 7096 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:59:32.0127 7096 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
16:59:32.0127 7096 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
16:59:32.0127 7096 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
16:59:32.0143 7096 [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
16:59:32.0143 7096 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
16:59:32.0143 7096 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
16:59:32.0143 7096 C:\Windows\System32\sstpsvc.dll - ok
16:59:32.0158 7096 [ 92245C959E5BC378809D2CC5E9F6E9C7 ] C:\Windows\SysWOW64\crypt32.dll
16:59:32.0158 7096 C:\Windows\SysWOW64\crypt32.dll - ok
16:59:32.0158 7096 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
16:59:32.0158 7096 C:\Windows\System32\provsvc.dll - ok
16:59:32.0158 7096 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
16:59:32.0158 7096 C:\Windows\SysWOW64\msasn1.dll - ok
16:59:32.0158 7096 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
16:59:32.0158 7096 C:\Windows\SysWOW64\wintrust.dll - ok
16:59:32.0174 7096 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
16:59:32.0174 7096 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
16:59:32.0174 7096 [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Program Files\IDT\WDM\AESTSr64.exe
16:59:32.0174 7096 C:\Program Files\IDT\WDM\AESTSr64.exe - ok
16:59:32.0189 7096 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:59:32.0189 7096 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
16:59:32.0189 7096 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
16:59:32.0189 7096 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
16:59:32.0189 7096 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
16:59:32.0189 7096 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
16:59:32.0205 7096 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
16:59:32.0205 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
16:59:32.0205 7096 [ 6953E980ADCA0BE816C7FF463695499A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
16:59:32.0205 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
16:59:32.0221 7096 [ 6D41F6AA35220E7A54543075B27E8F83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
16:59:32.0221 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
16:59:32.0221 7096 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
16:59:32.0221 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
16:59:32.0221 7096 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
16:59:32.0221 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
16:59:32.0236 7096 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
16:59:32.0236 7096 C:\Windows\SysWOW64\wsock32.dll - ok
16:59:32.0236 7096 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
16:59:32.0236 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
16:59:32.0252 7096 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
16:59:32.0252 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
16:59:32.0252 7096 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
16:59:32.0252 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
16:59:32.0252 7096 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
16:59:32.0252 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
16:59:32.0267 7096 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
16:59:32.0267 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
16:59:32.0267 7096 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
16:59:32.0267 7096 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
16:59:32.0267 7096 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
16:59:32.0283 7096 C:\Windows\SysWOW64\dnssd.dll - ok
16:59:32.0283 7096 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
16:59:32.0283 7096 C:\Windows\SysWOW64\ntmarta.dll - ok
16:59:32.0283 7096 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
16:59:32.0283 7096 C:\Windows\SysWOW64\Wldap32.dll - ok
16:59:32.0299 7096 [ 3EF1391B810D919E22D2A467B9442094 ] C:\Program Files (x86)\BasicServe\basicserve.exe
16:59:32.0299 7096 C:\Program Files (x86)\BasicServe\basicserve.exe - ok
16:59:32.0299 7096 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
16:59:32.0299 7096 C:\Windows\SysWOW64\mswsock.dll - ok
16:59:32.0299 7096 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
16:59:32.0299 7096 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
16:59:32.0314 7096 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
16:59:32.0314 7096 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
16:59:32.0314 7096 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
16:59:32.0314 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
16:59:32.0330 7096 [ F48FEB7DA35821DA15E0B006DCB9A169 ] C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
16:59:32.0330 7096 C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE - ok
16:59:32.0330 7096 [ A7DDDDE163F16AB49DF3DE9EEC715495 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
16:59:32.0330 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
16:59:32.0330 7096 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
16:59:32.0330 7096 C:\Windows\SysWOW64\msi.dll - ok
16:59:32.0345 7096 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
16:59:32.0345 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
16:59:32.0345 7096 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
16:59:32.0345 7096 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
16:59:32.0345 7096 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
16:59:32.0345 7096 C:\Windows\SysWOW64\winnsi.dll - ok
16:59:32.0361 7096 [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
16:59:32.0361 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
16:59:32.0361 7096 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
16:59:32.0361 7096 C:\Program Files\Bonjour\mDNSResponder.exe - ok
16:59:32.0361 7096 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
16:59:32.0361 7096 C:\Windows\SysWOW64\clbcatq.dll - ok
16:59:32.0377 7096 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
16:59:32.0377 7096 C:\Windows\SysWOW64\cryptsp.dll - ok
16:59:32.0377 7096 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
16:59:32.0377 7096 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
16:59:32.0377 7096 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
16:59:32.0377 7096 C:\Windows\SysWOW64\rsaenh.dll - ok
16:59:32.0392 7096 [ D0B322012EBAB1F29E3AD4A8568B2DBA ] C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
16:59:32.0392 7096 C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe - ok
16:59:32.0392 7096 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] C:\Windows\System32\cryptsvc.dll
16:59:32.0392 7096 C:\Windows\System32\cryptsvc.dll - ok
16:59:32.0408 7096 [ 2C4C22EA1735F21F355EB1A39832F7DF ] C:\Windows\System32\cryptnet.dll
16:59:32.0408 7096 C:\Windows\System32\cryptnet.dll - ok
16:59:32.0408 7096 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
16:59:32.0408 7096 C:\Windows\System32\vssapi.dll - ok
16:59:32.0408 7096 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
16:59:32.0408 7096 C:\Windows\System32\vsstrace.dll - ok
16:59:32.0423 7096 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
16:59:32.0423 7096 C:\Windows\SysWOW64\netapi32.dll - ok
16:59:32.0423 7096 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
16:59:32.0423 7096 C:\Windows\SysWOW64\netutils.dll - ok
16:59:32.0423 7096 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
16:59:32.0423 7096 C:\Windows\SysWOW64\samcli.dll - ok
16:59:32.0439 7096 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
16:59:32.0439 7096 C:\Windows\SysWOW64\srvcli.dll - ok
16:59:32.0439 7096 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
16:59:32.0439 7096 C:\Windows\SysWOW64\wkscli.dll - ok
16:59:32.0439 7096 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
16:59:32.0439 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe - ok
16:59:32.0455 7096 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
16:59:32.0455 7096 C:\Windows\System32\dps.dll - ok
16:59:32.0455 7096 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
16:59:32.0455 7096 C:\Windows\System32\efscore.dll - ok
16:59:32.0470 7096 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
16:59:32.0470 7096 C:\Windows\System32\efssvc.dll - ok
16:59:32.0470 7096 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
16:59:32.0470 7096 C:\Windows\System32\efsutil.dll - ok
16:59:32.0470 7096 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
16:59:32.0470 7096 C:\Windows\System32\taskschd.dll - ok
16:59:32.0486 7096 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
16:59:32.0486 7096 C:\Windows\System32\wdi.dll - ok
16:59:32.0486 7096 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
16:59:32.0486 7096 C:\Windows\SysWOW64\secur32.dll - ok
16:59:32.0501 7096 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
16:59:32.0501 7096 C:\Windows\SysWOW64\credssp.dll - ok
16:59:32.0501 7096 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
16:59:32.0501 7096 C:\Windows\SysWOW64\schannel.dll - ok
16:59:32.0501 7096 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
16:59:32.0501 7096 C:\Windows\System32\dssenh.dll - ok
16:59:32.0517 7096 [ FCA0837B2739C044EEC00AF0DDD73FFC ] C:\Windows\SysWOW64\ieframe.dll
16:59:32.0517 7096 C:\Windows\SysWOW64\ieframe.dll - ok
16:59:32.0517 7096 [ B4E8DC817963B256537B1EC09AF0647E ] C:\Windows\System32\drivers\epfwwfpr.sys
16:59:32.0517 7096 C:\Windows\System32\drivers\epfwwfpr.sys - ok
16:59:32.0517 7096 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
16:59:32.0533 7096 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe - ok
16:59:32.0533 7096 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
16:59:32.0533 7096 C:\Windows\System32\FDResPub.dll - ok
16:59:32.0533 7096 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
16:59:32.0533 7096 C:\Windows\System32\IKEEXT.DLL - ok
16:59:32.0533 7096 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
16:59:32.0533 7096 C:\Windows\System32\nlasvc.dll - ok
16:59:32.0548 7096 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
16:59:32.0548 7096 C:\Windows\System32\WSDApi.dll - ok
16:59:32.0548 7096 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
16:59:32.0548 7096 C:\Windows\System32\ncsi.dll - ok
16:59:32.0548 7096 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
16:59:32.0548 7096 C:\Windows\System32\webservices.dll - ok
16:59:32.0564 7096 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
16:59:32.0564 7096 C:\Windows\System32\ssdpapi.dll - ok
16:59:32.0564 7096 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
16:59:32.0564 7096 C:\Windows\System32\fundisc.dll - ok
16:59:32.0564 7096 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
16:59:32.0564 7096 C:\Windows\System32\httpapi.dll - ok
16:59:32.0564 7096 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
16:59:32.0564 7096 C:\Windows\System32\vpnikeapi.dll - ok
16:59:32.0579 7096 [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll
16:59:32.0579 7096 C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll - ok
16:59:32.0579 7096 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
16:59:32.0579 7096 C:\Windows\System32\wsock32.dll - ok
16:59:32.0579 7096 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
16:59:32.0579 7096 C:\Windows\System32\aepic.dll - ok
16:59:32.0595 7096 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
16:59:32.0595 7096 C:\Windows\System32\drivers\PEAuth.sys - ok
16:59:32.0595 7096 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
16:59:32.0595 7096 C:\Windows\System32\sfc.dll - ok
16:59:32.0595 7096 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
16:59:32.0595 7096 C:\Windows\System32\sfc_os.dll - ok
16:59:32.0611 7096 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
16:59:32.0611 7096 C:\Windows\System32\drivers\secdrv.sys - ok
16:59:32.0611 7096 [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
16:59:32.0611 7096 C:\Windows\System32\drivers\Sftfslh.sys - ok
16:59:32.0611 7096 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
16:59:32.0611 7096 C:\Windows\System32\drivers\Sftplaylh.sys - ok
16:59:32.0626 7096 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
16:59:32.0626 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
16:59:32.0626 7096 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
16:59:32.0626 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
16:59:32.0626 7096 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
16:59:32.0626 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
16:59:32.0626 7096 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
16:59:32.0626 7096 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
16:59:32.0642 7096 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
16:59:32.0642 7096 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
16:59:32.0642 7096 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
16:59:32.0642 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
16:59:32.0642 7096 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
16:59:32.0642 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
16:59:32.0657 7096 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
16:59:32.0657 7096 C:\Windows\SysWOW64\cryptui.dll - ok
16:59:32.0657 7096 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
16:59:32.0657 7096 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
16:59:32.0657 7096 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
16:59:32.0657 7096 C:\Windows\SysWOW64\msxml3.dll - ok
16:59:32.0673 7096 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
16:59:32.0673 7096 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
16:59:32.0673 7096 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
16:59:32.0673 7096 C:\Windows\SysWOW64\wbemcomn.dll - ok
16:59:32.0673 7096 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
16:59:32.0673 7096 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
16:59:32.0689 7096 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
16:59:32.0689 7096 C:\Windows\System32\drivers\srvnet.sys - ok
16:59:32.0689 7096 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
16:59:32.0689 7096 C:\Windows\SysWOW64\winsta.dll - ok
16:59:32.0689 7096 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
16:59:32.0689 7096 C:\Windows\System32\aeevts.dll - ok
16:59:32.0704 7096 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
16:59:32.0704 7096 C:\Windows\System32\drivers\tcpipreg.sys - ok
16:59:32.0704 7096 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
16:59:32.0704 7096 C:\Windows\System32\sysmain.dll - ok
16:59:32.0704 7096 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
16:59:32.0704 7096 C:\Windows\System32\wiaservc.dll - ok
16:59:32.0720 7096 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
16:59:32.0720 7096 C:\Windows\System32\wiatrace.dll - ok
16:59:32.0720 7096 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
16:59:32.0720 7096 C:\Windows\System32\fdPnp.dll - ok
16:59:32.0720 7096 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
16:59:32.0720 7096 C:\Windows\System32\wsdchngr.dll - ok
16:59:32.0735 7096 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:59:32.0735 7096 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
16:59:32.0735 7096 [ EE22584E155C7B37D491B17D00A38B1E ] C:\Windows\System32\HPWia2_DJ3510.dll
16:59:32.0735 7096 C:\Windows\System32\HPWia2_DJ3510.dll - ok
16:59:32.0735 7096 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
16:59:32.0735 7096 C:\Windows\System32\trkwks.dll - ok
16:59:32.0751 7096 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
16:59:32.0751 7096 C:\Windows\System32\wbem\WMIsvc.dll - ok
16:59:32.0751 7096 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
16:59:32.0751 7096 C:\Windows\System32\wbemcomn.dll - ok
16:59:32.0751 7096 [ A4523F192E580B7397E5E0CF1AF0BBBC ] C:\Windows\System32\HPScanTRDrv_DJ3510.dll
16:59:32.0751 7096 C:\Windows\System32\HPScanTRDrv_DJ3510.dll - ok
16:59:32.0751 7096 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
16:59:32.0751 7096 C:\Windows\System32\wbem\WinMgmtR.dll - ok
16:59:32.0767 7096 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
16:59:32.0767 7096 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
16:59:32.0767 7096 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
16:59:32.0767 7096 C:\Windows\System32\wbem\wbemcore.dll - ok
16:59:32.0782 7096 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
16:59:32.0782 7096 C:\Windows\System32\wbem\fastprox.dll - ok
16:59:32.0782 7096 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
16:59:32.0782 7096 C:\Windows\System32\ntdsapi.dll - ok
16:59:32.0782 7096 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
16:59:32.0782 7096 C:\Windows\System32\wbem\wbemprox.dll - ok
16:59:32.0798 7096 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
16:59:32.0798 7096 C:\Windows\SysWOW64\wer.dll - ok
16:59:32.0798 7096 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
16:59:32.0798 7096 C:\Windows\SysWOW64\rasapi32.dll - ok
16:59:32.0798 7096 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
16:59:32.0798 7096 C:\Windows\SysWOW64\Faultrep.dll - ok
16:59:32.0813 7096 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
16:59:32.0813 7096 C:\Windows\SysWOW64\mpr.dll - ok
16:59:32.0813 7096 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
16:59:32.0813 7096 C:\Windows\SysWOW64\rasman.dll - ok
16:59:32.0813 7096 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
16:59:32.0813 7096 C:\Windows\SysWOW64\wlanapi.dll - ok
16:59:32.0829 7096 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
16:59:32.0829 7096 C:\Windows\SysWOW64\wlanutil.dll - ok
16:59:32.0829 7096 [ 48B05932113F99C3A357A21669CC508A ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnHips.dll
16:59:32.0829 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnHips.dll - ok
16:59:32.0829 7096 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
16:59:32.0829 7096 C:\Windows\System32\SensApi.dll - ok
16:59:32.0845 7096 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
16:59:32.0845 7096 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
16:59:32.0845 7096 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
16:59:32.0845 7096 C:\Windows\System32\wer.dll - ok
16:59:32.0845 7096 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
16:59:32.0845 7096 C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
16:59:32.0860 7096 [ 95346F73CC53DE9AE25FA799F86FA65F ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnScan.dll
16:59:32.0860 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnScan.dll - ok
16:59:32.0860 7096 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
16:59:32.0860 7096 C:\Windows\SysWOW64\imagehlp.dll - ok
16:59:32.0860 7096 [ F7D487120B62FEF12B47EC686FFB96BE ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnAmon.dll
16:59:32.0860 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnAmon.dll - ok
16:59:32.0876 7096 [ 39A73D4D1831BC27688634D3541CF6EC ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
16:59:32.0876 7096 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
16:59:32.0876 7096 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
16:59:32.0876 7096 C:\Windows\System32\wbem\esscli.dll - ok
16:59:32.0876 7096 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
16:59:32.0876 7096 C:\Windows\System32\winspool.drv - ok
16:59:32.0891 7096 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
16:59:32.0891 7096 C:\Windows\SysWOW64\apphelp.dll - ok
16:59:32.0891 7096 [ DD502A2E7B85EA7A3814C1034E6C23D3 ] C:\Windows\AppPatch\AcGenral.dll
16:59:32.0891 7096 C:\Windows\AppPatch\AcGenral.dll - ok
16:59:32.0891 7096 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
16:59:32.0891 7096 C:\Windows\System32\msxml3.dll - ok
16:59:32.0907 7096 [ 1A129605FF35F649357AAFE188D94026 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEmon.dll
16:59:32.0907 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEmon.dll - ok
16:59:32.0907 7096 [ A8680E030E7B680566A99E9AD11F307C ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnDmon.dll
16:59:32.0907 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnDmon.dll - ok
16:59:32.0923 7096 [ 46867D025760A245C6018760A78A8893 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEpfw.dll
16:59:32.0923 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEpfw.dll - ok
16:59:32.0923 7096 [ 8C08120E5CD0921B50E67BE66A2302DD ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnUpdate.dll
16:59:32.0923 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnUpdate.dll - ok
16:59:32.0923 7096 [ 1E989EED38E93495C0A8093213977599 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\updater.dll
16:59:32.0923 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\updater.dll - ok
16:59:32.0938 7096 [ 9D567FD00FA6A9370F0B263E6ABA6426 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnMailPlugins.dll
16:59:32.0938 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnMailPlugins.dll - ok
16:59:32.0938 7096 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
16:59:32.0938 7096 C:\Windows\System32\wbem\wbemsvc.dll - ok
16:59:32.0938 7096 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
16:59:32.0938 7096 C:\Windows\System32\wbem\wmiutils.dll - ok
16:59:32.0954 7096 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
16:59:32.0954 7096 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
16:59:32.0954 7096 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
16:59:32.0954 7096 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
16:59:32.0954 7096 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
16:59:32.0954 7096 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
16:59:32.0954 7096 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
16:59:32.0954 7096 C:\Windows\System32\wbem\repdrvfs.dll - ok
16:59:32.0969 7096 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
16:59:32.0969 7096 C:\Windows\SysWOW64\ntdsapi.dll - ok
16:59:32.0969 7096 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
16:59:32.0969 7096 C:\Windows\SysWOW64\uxtheme.dll - ok
16:59:32.0969 7096 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
16:59:32.0969 7096 C:\Windows\SysWOW64\msacm32.dll - ok
16:59:32.0985 7096 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
16:59:32.0985 7096 C:\Windows\SysWOW64\sfc.dll - ok
16:59:32.0985 7096 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
16:59:32.0985 7096 C:\Windows\SysWOW64\dwmapi.dll - ok
16:59:32.0985 7096 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
16:59:32.0985 7096 C:\Windows\SysWOW64\sfc_os.dll - ok
16:59:33.0016 7096 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
16:59:33.0016 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
16:59:33.0016 7096 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
16:59:33.0016 7096 C:\Windows\System32\iphlpsvc.dll - ok
16:59:33.0016 7096 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
16:59:33.0016 7096 C:\Windows\System32\sqmapi.dll - ok
16:59:33.0032 7096 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
16:59:33.0032 7096 C:\Windows\System32\wdscore.dll - ok
16:59:33.0032 7096 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
16:59:33.0032 7096 C:\Windows\System32\hnetcfg.dll - ok
16:59:33.0032 7096 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
16:59:33.0032 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
16:59:33.0047 7096 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
16:59:33.0047 7096 C:\Windows\System32\nci.dll - ok
16:59:33.0047 7096 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
16:59:33.0047 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
16:59:33.0047 7096 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
16:59:33.0047 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
16:59:33.0063 7096 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
16:59:33.0063 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
16:59:33.0063 7096 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
16:59:33.0063 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
16:59:33.0063 7096 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
16:59:33.0063 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
16:59:33.0094 7096 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
16:59:33.0094 7096 C:\Windows\SysWOW64\logoncli.dll - ok
16:59:33.0094 7096 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
16:59:33.0094 7096 C:\Windows\SysWOW64\dnsapi.dll - ok
16:59:33.0094 7096 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
16:59:33.0094 7096 C:\Windows\SysWOW64\wship6.dll - ok
16:59:33.0110 7096 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
16:59:33.0110 7096 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
16:59:33.0110 7096 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
16:59:33.0110 7096 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
16:59:33.0125 7096 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
16:59:33.0125 7096 C:\Windows\System32\drivers\srv2.sys - ok
16:59:33.0125 7096 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
16:59:33.0125 7096 C:\Windows\SysWOW64\rasadhlp.dll - ok
16:59:33.0125 7096 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
16:59:33.0125 7096 C:\Windows\System32\drivers\srv.sys - ok
16:59:33.0141 7096 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
16:59:33.0141 7096 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
16:59:33.0141 7096 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
16:59:33.0141 7096 C:\Windows\System32\ncobjapi.dll - ok
16:59:33.0141 7096 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
16:59:33.0141 7096 C:\Windows\System32\wbem\wbemess.dll - ok
16:59:33.0157 7096 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
16:59:33.0157 7096 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
16:59:33.0157 7096 [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\SysWOW64\schedcli.dll
16:59:33.0157 7096 C:\Windows\SysWOW64\schedcli.dll - ok
16:59:33.0157 7096 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
16:59:33.0157 7096 C:\Windows\System32\drivers\Sftredirlh.sys - ok
16:59:33.0172 7096 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
16:59:33.0172 7096 C:\Windows\SysWOW64\fltLib.dll - ok
16:59:33.0172 7096 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
16:59:33.0172 7096 C:\Windows\System32\wbem\cimwin32.dll - ok
16:59:33.0172 7096 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
16:59:33.0172 7096 C:\Windows\SysWOW64\msxml6.dll - ok
16:59:33.0172 7096 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
16:59:33.0172 7096 C:\Windows\System32\framedynos.dll - ok
16:59:33.0188 7096 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
16:59:33.0188 7096 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
16:59:33.0188 7096 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
16:59:33.0188 7096 C:\Windows\System32\wmi.dll - ok
16:59:33.0188 7096 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
16:59:33.0188 7096 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
16:59:33.0203 7096 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
16:59:33.0203 7096 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
16:59:33.0203 7096 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
16:59:33.0203 7096 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
16:59:33.0203 7096 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
16:59:33.0203 7096 C:\Windows\SysWOW64\dbghelp.dll - ok
16:59:33.0219 7096 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
16:59:33.0219 7096 C:\Windows\SysWOW64\credui.dll - ok
16:59:33.0219 7096 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
16:59:33.0219 7096 C:\Windows\SysWOW64\oleacc.dll - ok
16:59:33.0219 7096 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
16:59:33.0219 7096 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
16:59:33.0219 7096 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
16:59:33.0219 7096 C:\Windows\SysWOW64\hlink.dll - ok
16:59:33.0235 7096 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
16:59:33.0235 7096 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
16:59:33.0235 7096 [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
16:59:33.0235 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
16:59:33.0250 7096 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
16:59:33.0250 7096 C:\Windows\SysWOW64\msv1_0.dll - ok
16:59:33.0250 7096 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
16:59:33.0250 7096 C:\Windows\SysWOW64\cryptdll.dll - ok
16:59:33.0250 7096 [ AB2F2F56064E8AA8634C790956860A3D ] C:\Windows\System32\ieframe.dll
16:59:33.0250 7096 C:\Windows\System32\ieframe.dll - ok
16:59:33.0266 7096 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
16:59:33.0266 7096 C:\Windows\SysWOW64\ncrypt.dll - ok
16:59:33.0266 7096 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
16:59:33.0266 7096 C:\Windows\SysWOW64\bcrypt.dll - ok
16:59:33.0266 7096 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
16:59:33.0266 7096 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
16:59:33.0281 7096 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
16:59:33.0281 7096 C:\Windows\SysWOW64\gpapi.dll - ok
16:59:33.0281 7096 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
16:59:33.0281 7096 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
16:59:33.0281 7096 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
16:59:33.0281 7096 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
16:59:33.0297 7096 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
16:59:33.0297 7096 C:\Windows\System32\browser.dll - ok
16:59:33.0297 7096 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
16:59:33.0297 7096 C:\Windows\System32\srvsvc.dll - ok
16:59:33.0297 7096 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
16:59:33.0313 7096 C:\Windows\System32\netmsg.dll - ok
16:59:33.0313 7096 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
16:59:33.0313 7096 C:\Windows\System32\clusapi.dll - ok
16:59:33.0313 7096 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
16:59:33.0313 7096 C:\Windows\System32\sscore.dll - ok
16:59:33.0328 7096 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
16:59:33.0328 7096 C:\Windows\System32\resutils.dll - ok
16:59:33.0328 7096 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
16:59:33.0328 7096 C:\Windows\System32\mprapi.dll - ok
16:59:33.0328 7096 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
16:59:33.0328 7096 C:\Windows\System32\ndiscapCfg.dll - ok
16:59:33.0344 7096 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
16:59:33.0344 7096 C:\Windows\System32\rascfg.dll - ok
16:59:33.0344 7096 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
16:59:33.0344 7096 C:\Windows\System32\mprmsg.dll - ok
16:59:33.0359 7096 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
16:59:33.0359 7096 C:\Windows\System32\tcpipcfg.dll - ok
16:59:33.0359 7096 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
16:59:33.0359 7096 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
16:59:33.0359 7096 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
16:59:33.0359 7096 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
16:59:33.0359 7096 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
16:59:33.0359 7096 C:\Windows\System32\localspl.dll - ok
16:59:33.0375 7096 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
16:59:33.0375 7096 C:\Windows\System32\spoolss.dll - ok
16:59:33.0375 7096 [ F18B69DD21C97874D9EE60E6B700C276 ] C:\Windows\System32\hpinkstsAD11LM.dll
16:59:33.0375 7096 C:\Windows\System32\hpinkstsAD11LM.dll - ok
16:59:33.0391 7096 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
16:59:33.0391 7096 C:\Windows\System32\PrintIsolationProxy.dll - ok
16:59:33.0391 7096 [ 3D7C1DFE052288F40AC9ABFB2A824B92 ] C:\Windows\System32\HPDiscoPMAD11.dll
16:59:33.0391 7096 C:\Windows\System32\HPDiscoPMAD11.dll - ok
16:59:33.0391 7096 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
16:59:33.0391 7096 C:\Windows\System32\wsnmp32.dll - ok
16:59:33.0391 7096 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
16:59:33.0391 7096 C:\Windows\System32\FXSMON.dll - ok
16:59:33.0406 7096 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
16:59:33.0406 7096 C:\Windows\System32\tcpmon.dll - ok
16:59:33.0406 7096 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
16:59:33.0406 7096 C:\Windows\System32\snmpapi.dll - ok
16:59:33.0406 7096 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
16:59:33.0406 7096 C:\Windows\System32\usbmon.dll - ok
16:59:33.0422 7096 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
16:59:33.0422 7096 C:\Windows\System32\WSDMon.dll - ok
16:59:33.0422 7096 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
16:59:33.0422 7096 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
16:59:33.0422 7096 [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
16:59:33.0422 7096 C:\Windows\System32\win32spl.dll - ok
16:59:33.0437 7096 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
16:59:33.0437 7096 C:\Windows\System32\inetpp.dll - ok
16:59:33.0437 7096 [ 8A8B277067C22F4BF6AA9A31692FC4D3 ] C:\Windows\SysWOW64\cryptnet.dll
16:59:33.0437 7096 C:\Windows\SysWOW64\cryptnet.dll - ok
16:59:33.0437 7096 [ 5FEAB868CAEDBBD1B7A145CA8261E4AA ] C:\Windows\SysWOW64\WerFault.exe
16:59:33.0437 7096 C:\Windows\SysWOW64\WerFault.exe - ok
16:59:33.0437 7096 [ 8E8C92DD50F6B34907813AFDC0C8F7DD ] C:\Windows\SysWOW64\dbgeng.dll
16:59:33.0437 7096 C:\Windows\SysWOW64\dbgeng.dll - ok
16:59:33.0453 7096 [ F2C82BA7E80C6054D5D20F3FBD4CFD34 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
16:59:33.0453 7096 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE - ok
16:59:33.0453 7096 [ 193B810608624D9D66B40E7CE3B86905 ] C:\Windows\SysWOW64\sftldr_wow64.dll
16:59:33.0453 7096 C:\Windows\SysWOW64\sftldr_wow64.dll - ok
16:59:33.0453 7096 [ 56DE449CE5F659D4492E81094542392B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sentinel.dll
16:59:33.0453 7096 C:\Program Files (x86)\Microsoft Application Virtualization Client\sentinel.dll - ok
16:59:33.0469 7096 [ 5C41AF3F4B83340D2783CE8FDE30566A ] C:\Windows\System32\mshtml.dll
16:59:33.0469 7096 C:\Windows\System32\mshtml.dll - ok
16:59:33.0469 7096 [ 8784236EED5079493DA9FC95B28B89F8 ] C:\Windows\System32\WerFault.exe
16:59:33.0469 7096 C:\Windows\System32\WerFault.exe - ok
16:59:33.0469 7096 [ E2A516749713AC6F657EBDA2BF7856B4 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\eplgOE.dll
16:59:33.0469 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\eplgOE.dll - ok
16:59:33.0484 7096 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
16:59:33.0484 7096 C:\Windows\System32\cscapi.dll - ok
16:59:33.0484 7096 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
16:59:33.0484 7096 C:\Windows\System32\wshbth.dll - ok
16:59:33.0484 7096 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
16:59:33.0484 7096 C:\Windows\System32\mlang.dll - ok
16:59:33.0500 7096 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
16:59:33.0500 7096 C:\Windows\SysWOW64\rundll32.exe - ok
16:59:33.0500 7096 [ 396D851E3B6ECB9990718C25567ABBB9 ] C:\Windows\System32\jscript9.dll
16:59:33.0500 7096 C:\Windows\System32\jscript9.dll - ok
16:59:33.0515 7096 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
16:59:33.0515 7096 C:\Windows\AppPatch\AcLayers.dll - ok
16:59:33.0515 7096 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
16:59:33.0515 7096 C:\Windows\SysWOW64\winspool.drv - ok
16:59:33.0515 7096 [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll
16:59:33.0515 7096 C:\Windows\AppPatch\acwow64.dll - ok
16:59:33.0531 7096 [ 48A33E6876A1ADD9E0C809AA461A9BA1 ] C:\Program Files\ESET\ESET NOD32 Antivirus\eplgOE.dll
16:59:33.0531 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eplgOE.dll - ok
16:59:33.0531 7096 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
16:59:33.0531 7096 C:\Windows\System32\msimtf.dll - ok
16:59:33.0531 7096 [ 7E8A672B7B06A6EB11960C22E0360C59 ] C:\Windows\System32\d2d1.dll
16:59:33.0531 7096 C:\Windows\System32\d2d1.dll - ok
16:59:33.0547 7096 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
16:59:33.0547 7096 C:\Windows\System32\rundll32.exe - ok
16:59:33.0562 7096 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
16:59:33.0562 7096 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
16:59:33.0562 7096 [ 63BB89DED1E9104E68D33E54DE4D340D ] C:\Windows\System32\DWrite.dll
16:59:33.0562 7096 C:\Windows\System32\DWrite.dll - ok
16:59:33.0562 7096 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
16:59:33.0562 7096 C:\Windows\System32\dxgi.dll - ok
16:59:33.0578 7096 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
16:59:33.0578 7096 C:\Windows\SysWOW64\es.dll - ok
16:59:33.0578 7096 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
16:59:33.0578 7096 C:\Windows\SysWOW64\wscapi.dll - ok
16:59:33.0578 7096 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
16:59:33.0578 7096 C:\Windows\SysWOW64\wscisvif.dll - ok
16:59:33.0593 7096 [ 4C92EB7535CAA1681A77D928FBF9771F ] C:\Windows\System32\d3d11.dll
16:59:33.0593 7096 C:\Windows\System32\d3d11.dll - ok
16:59:33.0593 7096 [ C498EF41B93986BCBD483597573EB96D ] C:\Windows\System32\d3d10warp.dll
16:59:33.0593 7096 C:\Windows\System32\d3d10warp.dll - ok
16:59:33.0593 7096 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
16:59:33.0593 7096 C:\Windows\System32\diagperf.dll - ok
16:59:33.0609 7096 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
16:59:33.0609 7096 C:\Windows\System32\npmproxy.dll - ok
16:59:33.0609 7096 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
16:59:33.0609 7096 C:\Windows\System32\wpdbusenum.dll - ok
16:59:33.0609 7096 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
16:59:33.0609 7096 C:\Windows\System32\NapiNSP.dll - ok
16:59:33.0625 7096 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
16:59:33.0625 7096 C:\Windows\System32\PortableDeviceApi.dll - ok
16:59:33.0625 7096 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
16:59:33.0625 7096 C:\Windows\System32\pnrpnsp.dll - ok
16:59:33.0625 7096 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
16:59:33.0625 7096 C:\Windows\System32\winrnr.dll - ok
16:59:33.0640 7096 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
16:59:33.0640 7096 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
16:59:33.0640 7096 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
16:59:33.0640 7096 C:\Windows\System32\Apphlpdm.dll - ok
16:59:33.0640 7096 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
16:59:33.0640 7096 C:\Windows\System32\perftrack.dll - ok
16:59:33.0656 7096 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
16:59:33.0656 7096 C:\Windows\System32\pnpts.dll - ok
16:59:33.0656 7096 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
16:59:33.0656 7096 C:\Windows\System32\radardt.dll - ok
16:59:33.0656 7096 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
16:59:33.0656 7096 C:\Windows\System32\taskhost.exe - ok
16:59:33.0671 7096 [ 5B15164486C66B76699E1CD2CD2F3A2A ] C:\Windows\System32\imgutil.dll
16:59:33.0671 7096 C:\Windows\System32\imgutil.dll - ok
16:59:33.0671 7096 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
16:59:33.0671 7096 C:\Windows\System32\dimsjob.dll - ok
16:59:33.0671 7096 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
16:59:33.0671 7096 C:\Windows\System32\pautoenr.dll - ok
16:59:33.0687 7096 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
16:59:33.0687 7096 C:\Windows\System32\certcli.dll - ok
16:59:33.0687 7096 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
16:59:33.0687 7096 C:\Windows\SysWOW64\netprofm.dll - ok
16:59:33.0687 7096 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
16:59:33.0687 7096 C:\Windows\System32\IPSECSVC.DLL - ok
16:59:33.0687 7096 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
16:59:33.0687 7096 C:\Windows\System32\CertEnroll.dll - ok
16:59:33.0703 7096 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
16:59:33.0703 7096 C:\Windows\SysWOW64\nlaapi.dll - ok
16:59:33.0703 7096 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
16:59:33.0703 7096 C:\Windows\System32\aelupsvc.dll - ok
16:59:33.0703 7096 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
16:59:33.0703 7096 C:\Windows\System32\wersvc.dll - ok
16:59:33.0718 7096 [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe
16:59:33.0718 7096 C:\Windows\System32\wermgr.exe - ok
16:59:33.0718 7096 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
16:59:33.0718 7096 C:\Windows\SysWOW64\npmproxy.dll - ok
16:59:33.0734 7096 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
16:59:33.0734 7096 C:\Windows\System32\FwRemoteSvr.dll - ok
16:59:33.0734 7096 [ EDF4DEC1041EEAF78A0B1E16C1BB4CC4 ] C:\Windows\System32\fthsvc.dll
16:59:33.0734 7096 C:\Windows\System32\fthsvc.dll - ok
16:59:33.0734 7096 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
16:59:33.0734 7096 C:\Windows\System32\wdiasqmmodule.dll - ok
16:59:33.0749 7096 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
16:59:33.0749 7096 C:\Windows\SysWOW64\rtutils.dll - ok
16:59:33.0749 7096 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
16:59:33.0749 7096 C:\Windows\System32\drivers\fastfat.sys - ok
16:59:33.0765 7096 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
16:59:33.0765 7096 C:\Windows\System32\UIAutomationCore.dll - ok
16:59:33.0765 7096 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
16:59:33.0765 7096 C:\Windows\System32\oleacc.dll - ok
16:59:33.0765 7096 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
16:59:33.0765 7096 C:\Windows\System32\msls31.dll - ok
16:59:33.0781 7096 [ 78DF0192939C425CE2AA0920CADAAE6F ] C:\Windows\System32\Macromed\Flash\Flash64_11_7_700_224.ocx
16:59:33.0781 7096 C:\Windows\System32\Macromed\Flash\Flash64_11_7_700_224.ocx - ok
16:59:33.0781 7096 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
16:59:33.0781 7096 C:\Windows\System32\msimg32.dll - ok
16:59:33.0781 7096 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
16:59:33.0781 7096 C:\Windows\System32\esent.dll - ok
16:59:33.0796 7096 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
16:59:33.0796 7096 C:\Windows\System32\wbem\NCProv.dll - ok
16:59:33.0796 7096 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
16:59:33.0796 7096 C:\Windows\System32\dllhost.exe - ok
16:59:33.0796 7096 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
16:59:33.0796 7096 C:\Windows\System32\IDStore.dll - ok
16:59:33.0812 7096 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
16:59:33.0812 7096 C:\Windows\System32\AtBroker.exe - ok
16:59:33.0812 7096 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
16:59:33.0812 7096 C:\Windows\System32\mpr.dll - ok
16:59:33.0812 7096 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
16:59:33.0812 7096 C:\Windows\System32\userinit.exe - ok
16:59:33.0812 7096 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
16:59:33.0812 7096 C:\Windows\SysWOW64\sxs.dll - ok
16:59:33.0827 7096 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
16:59:33.0827 7096 C:\Windows\System32\taskeng.exe - ok
16:59:33.0827 7096 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
16:59:33.0827 7096 C:\Windows\System32\PlaySndSrv.dll - ok
16:59:33.0827 7096 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
16:59:33.0827 7096 C:\Windows\System32\dwm.exe - ok
16:59:33.0843 7096 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
16:59:33.0843 7096 C:\Windows\System32\HotStartUserAgent.dll - ok
16:59:33.0843 7096 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
16:59:33.0843 7096 C:\Windows\System32\MsCtfMonitor.dll - ok
16:59:33.0843 7096 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
16:59:33.0843 7096 C:\Windows\System32\msutb.dll - ok
16:59:33.0859 7096 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
16:59:33.0859 7096 C:\Windows\System32\dwmredir.dll - ok
16:59:33.0859 7096 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
16:59:33.0859 7096 C:\Windows\System32\TSChannel.dll - ok
16:59:33.0859 7096 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
16:59:33.0859 7096 C:\Windows\System32\dwmcore.dll - ok
16:59:33.0874 7096 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:59:33.0874 7096 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
16:59:33.0874 7096 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
16:59:33.0874 7096 C:\Windows\explorer.exe - ok
16:59:33.0874 7096 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
16:59:33.0874 7096 C:\Windows\System32\d3d10_1.dll - ok
16:59:33.0890 7096 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
16:59:33.0890 7096 C:\Windows\System32\d3d10_1core.dll - ok
16:59:33.0890 7096 [ 4AE47FECD971F2B36FF750E407591FD0 ] C:\Windows\System32\igd10umd64.dll
16:59:33.0890 7096 C:\Windows\System32\igd10umd64.dll - ok
16:59:33.0890 7096 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
16:59:33.0890 7096 C:\Windows\SysWOW64\NapiNSP.dll - ok
16:59:33.0905 7096 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
16:59:33.0905 7096 C:\Windows\SysWOW64\pnrpnsp.dll - ok
16:59:33.0905 7096 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
16:59:33.0905 7096 C:\Windows\SysWOW64\winrnr.dll - ok
16:59:33.0905 7096 [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
16:59:33.0905 7096 C:\Windows\SysWOW64\wshbth.dll - ok
16:59:33.0921 7096 [ 19F75D71E4256F5113D64CE2BB66B838 ] C:\Windows\SysWOW64\slwga.dll
16:59:33.0921 7096 C:\Windows\SysWOW64\slwga.dll - ok
16:59:33.0921 7096 [ 8E4B58E12B3FA65ED1462846906E0B59 ] C:\Windows\SysWOW64\sppc.dll
16:59:33.0921 7096 C:\Windows\SysWOW64\sppc.dll - ok
16:59:33.0921 7096 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
16:59:33.0921 7096 C:\Windows\SysWOW64\slc.dll - ok
16:59:33.0937 7096 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
16:59:33.0937 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
16:59:33.0937 7096 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
16:59:33.0937 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
16:59:33.0937 7096 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
16:59:33.0937 7096 C:\Windows\System32\ExplorerFrame.dll - ok
16:59:33.0952 7096 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
16:59:33.0952 7096 C:\Windows\SysWOW64\propsys.dll - ok
16:59:33.0952 7096 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
16:59:33.0952 7096 C:\Windows\SysWOW64\mscoree.dll - ok
16:59:33.0968 7096 [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll
16:59:33.0968 7096 C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok
16:59:33.0968 7096 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
16:59:33.0968 7096 C:\Windows\System32\uDWM.dll - ok
16:59:33.0968 7096 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
16:59:33.0968 7096 C:\Windows\SysWOW64\linkinfo.dll - ok
16:59:33.0983 7096 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
16:59:33.0983 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
16:59:33.0983 7096 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
16:59:33.0983 7096 C:\Windows\System32\EhStorShell.dll - ok
16:59:33.0983 7096 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
16:59:33.0983 7096 C:\Windows\System32\ntshrui.dll - ok
16:59:33.0999 7096 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
16:59:33.0999 7096 C:\Windows\System32\IconCodecService.dll - ok
16:59:33.0999 7096 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
16:59:33.0999 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
16:59:34.0015 7096 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
16:59:34.0015 7096 C:\Windows\System32\appinfo.dll - ok
16:59:34.0015 7096 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
16:59:34.0015 7096 C:\Windows\SysWOW64\devrtl.dll - ok
16:59:34.0015 7096 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
16:59:34.0015 7096 C:\Windows\SysWOW64\cscapi.dll - ok
16:59:34.0030 7096 [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
16:59:34.0030 7096 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
16:59:34.0030 7096 [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
16:59:34.0030 7096 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
16:59:34.0030 7096 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
16:59:34.0030 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
16:59:34.0046 7096 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
16:59:34.0046 7096 C:\Windows\SysWOW64\mstask.dll - ok
16:59:34.0046 7096 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
16:59:34.0046 7096 C:\Windows\System32\runonce.exe - ok
16:59:34.0046 7096 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
16:59:34.0046 7096 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
16:59:34.0061 7096 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
16:59:34.0061 7096 C:\Windows\SysWOW64\runonce.exe - ok
16:59:34.0061 7096 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
16:59:34.0061 7096 C:\Windows\System32\dbghelp.dll - ok
16:59:34.0061 7096 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
16:59:34.0061 7096 C:\Windows\SysWOW64\comdlg32.dll - ok
16:59:34.0077 7096 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
16:59:34.0077 7096 C:\Windows\SysWOW64\msimg32.dll - ok
16:59:34.0077 7096 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
16:59:34.0077 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
16:59:34.0077 7096 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
16:59:34.0077 7096 C:\Windows\SysWOW64\oledlg.dll - ok
16:59:34.0077 7096 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
16:59:34.0093 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
16:59:34.0093 7096 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
16:59:34.0093 7096 C:\Windows\SysWOW64\cmd.exe - ok
16:59:34.0093 7096 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
16:59:34.0093 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
16:59:34.0108 7096 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
16:59:34.0108 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
16:59:34.0108 7096 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
16:59:34.0108 7096 C:\Windows\System32\conhost.exe - ok
16:59:34.0108 7096 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
16:59:34.0108 7096 C:\Windows\SysWOW64\winbrand.dll - ok
16:59:34.0124 7096 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
16:59:34.0124 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
16:59:34.0124 7096 [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
16:59:34.0124 7096 C:\Windows\SysWOW64\shdocvw.dll - ok
16:59:34.0124 7096 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
16:59:34.0124 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
16:59:34.0124 7096 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
16:59:34.0124 7096 C:\Windows\SysWOW64\riched20.dll - ok
16:59:34.0139 7096 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
16:59:34.0139 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
16:59:34.0139 7096 [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
16:59:34.0139 7096 C:\Windows\System32\bcdedit.exe - ok
16:59:34.0139 7096 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
16:59:34.0139 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
16:59:34.0155 7096 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Darrishi\AppData\Local\Temp\76D51915-B7CB-4EF0-895F-97404D61A5D8.exe
16:59:34.0155 7096 C:\Users\Darrishi\AppData\Local\Temp\76D51915-B7CB-4EF0-895F-97404D61A5D8.exe - ok
16:59:34.0155 7096 [ 7F683A346C425ACD4F098BAA7C5792FC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll
16:59:34.0155 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll - ok
16:59:34.0155 7096 [ 5B2E4E90C04FB9AE9F2C5E99FF59B283 ] C:\Windows\SysWOW64\WindowsCodecs.dll
16:59:34.0155 7096 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
16:59:34.0171 7096 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
16:59:34.0171 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
16:59:34.0171 7096 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
16:59:34.0171 7096 C:\Windows\SysWOW64\EhStorShell.dll - ok
16:59:34.0171 7096 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
16:59:34.0171 7096 C:\Windows\SysWOW64\ntshrui.dll - ok
16:59:34.0186 7096 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
16:59:34.0186 7096 C:\Windows\SysWOW64\imageres.dll - ok
16:59:34.0186 7096 [ B7A68C8F0EA038CB13E7B99AF9CDE513 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll
16:59:34.0186 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll - ok
16:59:34.0186 7096 [ C6458BF42FD8A9194EA4B2C81AA3B157 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll
16:59:34.0186 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll - ok
16:59:34.0202 7096 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
16:59:34.0202 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
16:59:34.0217 7096 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
16:59:34.0217 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
16:59:34.0217 7096 [ 88DC26C8BC98DFF1B55985E25DF53262 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll
16:59:34.0217 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll - ok
16:59:34.0233 7096 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
16:59:34.0233 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
16:59:34.0233 7096 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
16:59:34.0233 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
16:59:34.0233 7096 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
16:59:34.0233 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
16:59:34.0249 7096 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
16:59:34.0249 7096 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
16:59:34.0249 7096 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
16:59:34.0249 7096 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
16:59:34.0249 7096 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
16:59:34.0249 7096 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
16:59:34.0264 7096 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
16:59:34.0264 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
16:59:34.0264 7096 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
16:59:34.0264 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
16:59:34.0264 7096 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
16:59:34.0264 7096 C:\Windows\SysWOW64\d3d9.dll - ok
16:59:34.0280 7096 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
16:59:34.0280 7096 C:\Windows\SysWOW64\d3d8thk.dll - ok
16:59:34.0280 7096 [ 56FAE4983A955B04216D1FE54FC7BAD7 ] C:\Windows\SysWOW64\igdumdx32.dll
16:59:34.0280 7096 C:\Windows\SysWOW64\igdumdx32.dll - ok
16:59:34.0280 7096 [ 2C8F782CB58DF73AB1952AA41879DF76 ] C:\Windows\SysWOW64\igdumd32.dll
16:59:34.0280 7096 C:\Windows\SysWOW64\igdumd32.dll - ok
16:59:34.0280 7096 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
16:59:34.0280 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
16:59:34.0295 7096 [ 8D17F8532958E0AC4A32B0E7E3C94EF2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll
16:59:34.0295 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll - ok
16:59:34.0295 7096 [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
16:59:34.0295 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
16:59:34.0295 7096 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
16:59:34.0295 7096 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
16:59:34.0311 7096 [ D66E000EF14A2F45EC7F350A21994A12 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll
16:59:34.0311 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll - ok
16:59:34.0311 7096 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
16:59:34.0311 7096 C:\Windows\System32\qmgr.dll - ok
16:59:34.0327 7096 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
16:59:34.0327 7096 C:\Windows\System32\bitsperf.dll - ok
16:59:34.0327 7096 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
16:59:34.0327 7096 C:\Windows\System32\bitsigd.dll - ok
16:59:34.0327 7096 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
16:59:34.0327 7096 C:\Windows\System32\upnp.dll - ok
16:59:34.0342 7096 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
16:59:34.0342 7096 C:\Windows\System32\ssdpsrv.dll - ok
16:59:34.0342 7096 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:59:34.0342 7096 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
16:59:34.0342 7096 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
16:59:34.0342 7096 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
16:59:34.0358 7096 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:59:34.0358 7096 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
16:59:34.0358 7096 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
16:59:34.0358 7096 C:\Windows\System32\msvcr100_clr0400.dll - ok
16:59:34.0358 7096 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
16:59:34.0358 7096 C:\Windows\System32\mscoree.dll - ok
16:59:34.0373 7096 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
16:59:34.0373 7096 C:\Windows\System32\browcli.dll - ok
16:59:34.0373 7096 [ 11AFB3767663997E0CE911CD015599C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll
16:59:34.0373 7096 C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll - ok
16:59:34.0373 7096 [ 983FC69644DDF0486C8DFEA262948D1A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:59:34.0373 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
16:59:34.0389 7096 [ B78B6459C2DCCA129489A86F7D63B359 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
16:59:34.0389 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
16:59:34.0389 7096 [ C9B83ECFEB79BE7D2AF72DEEB284E161 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
16:59:34.0389 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
16:59:34.0389 7096 [ AF1BE886962EF0572F50ACFB35FAA4FD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\b377ef75161b610c4d4972c82eadc7b5\IAStorDataMgrSvc.ni.exe
16:59:34.0389 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\b377ef75161b610c4d4972c82eadc7b5\IAStorDataMgrSvc.ni.exe - ok
16:59:34.0405 7096 [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
16:59:34.0405 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
16:59:34.0405 7096 [ 190E647AEA2B3D41BAF380267CCBB471 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll
16:59:34.0405 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll - ok
16:59:34.0420 7096 [ 1E00AE49880D32903EF5E96581836B15 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
16:59:34.0420 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
16:59:34.0420 7096 [ 89277D2B021BAF81EC0C17DB15E91FB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\9a77e21d5d9ce623b4a48011e4346e24\IAStorDataMgr.ni.dll
16:59:34.0420 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\9a77e21d5d9ce623b4a48011e4346e24\IAStorDataMgr.ni.dll - ok
16:59:34.0420 7096 [ 8B74CF5C79886915BAA8DF737641CF2B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\27649bdc3da750e2e072dedbff56cc0b\IAStorUtil.ni.dll
16:59:34.0420 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\27649bdc3da750e2e072dedbff56cc0b\IAStorUtil.ni.dll - ok
16:59:34.0436 7096 [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
16:59:34.0436 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
16:59:34.0436 7096 [ 79FE066095E0DA6B8153F108CB7980F0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\aba32239352f1d058c2bd7c55ee256e2\IsdiInterop.ni.dll
16:59:34.0436 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\aba32239352f1d058c2bd7c55ee256e2\IsdiInterop.ni.dll - ok
16:59:34.0451 7096 [ CFFD30379256A23678247C61060EC70C ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
16:59:34.0451 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
16:59:34.0451 7096 [ 98B16E756243BEA9410E32025B19C06F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:59:34.0451 7096 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
16:59:34.0451 7096 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
16:59:34.0451 7096 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
16:59:34.0467 7096 [ 4BDB0C8B30015004CD31CCDAA28DBF5F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\09a468fb987e5a5f345346b0910c89ca\IAStorCommon.ni.dll
16:59:34.0467 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\09a468fb987e5a5f345346b0910c89ca\IAStorCommon.ni.dll - ok
16:59:34.0467 7096 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] C:\Program Files (x86)\Nero\Update\NASvc.exe
16:59:34.0467 7096 C:\Program Files (x86)\Nero\Update\NASvc.exe - ok
16:59:34.0483 7096 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
16:59:34.0483 7096 C:\Windows\SysWOW64\xmllite.dll - ok
16:59:34.0483 7096 [ 2B73088CC2CA757A172B425C9398E5BC ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
16:59:34.0483 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe - ok
16:59:34.0483 7096 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
16:59:34.0483 7096 C:\Windows\System32\qmgrprxy.dll - ok
16:59:34.0498 7096 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
16:59:34.0498 7096 C:\Windows\SysWOW64\qmgrprxy.dll - ok
16:59:34.0498 7096 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
16:59:34.0498 7096 C:\Windows\SysWOW64\msvcp71.dll - ok
16:59:34.0514 7096 [ B29280AA00BC34FEECDC0426B11B9DAC ] C:\Windows\SysWOW64\RstrtMgr.dll
16:59:34.0514 7096 C:\Windows\SysWOW64\RstrtMgr.dll - ok
16:59:34.0514 7096 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
16:59:34.0514 7096 C:\Windows\SysWOW64\msiltcfg.dll - ok
16:59:34.0514 7096 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
16:59:34.0514 7096 C:\Windows\SysWOW64\msvcr71.dll - ok
16:59:34.0529 7096 [ A51A7D0C82C93827532DF3B8FE7804EA ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll
16:59:34.0529 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll - ok
16:59:34.0529 7096 [ 3B1247FC09F82A1ECD1294EA13C79C3E ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll
16:59:34.0529 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll - ok
16:59:34.0529 7096 [ 39F03455A7C449FFFB2BC4BBDE480EB5 ] C:\Program Files (x86)\Nero\Update\NASvcPS.dll
16:59:34.0529 7096 C:\Program Files (x86)\Nero\Update\NASvcPS.dll - ok
16:59:34.0545 7096 [ AAA0B3B32484156599B3BE5E3B88528A ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll
16:59:34.0545 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll - ok
16:59:34.0545 7096 [ CF8D43B5CE132414CC0667E9C5EB5574 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll
16:59:34.0545 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll - ok
16:59:34.0545 7096 [ 837115C004022C7C9317848645D714FD ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll
16:59:34.0545 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
16:59:34.0561 7096 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
16:59:34.0561 7096 C:\Windows\System32\sppsvc.exe - ok
16:59:34.0561 7096 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
16:59:34.0561 7096 C:\Windows\SysWOW64\snmpapi.dll - ok
16:59:34.0561 7096 [ 6046C98205A35C2CEC330B15F88D4443 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
16:59:34.0561 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll - ok
16:59:34.0576 7096 [ 5BD85ABB12E057257D9D93C0838ABC0B ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll
16:59:34.0576 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
16:59:34.0576 7096 [ 72E6BB97A33137004FAC46CA43938F6C ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll
16:59:34.0576 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll - ok
16:59:34.0576 7096 [ 132AB9DB9A673FC20EE2D786E8CEC447 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll
16:59:34.0576 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll - ok
16:59:34.0592 7096 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
16:59:34.0592 7096 C:\Windows\System32\drivers\spsys.sys - ok
16:59:34.0592 7096 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
16:59:34.0592 7096 C:\Windows\System32\schedcli.dll - ok
16:59:34.0592 7096 [ 807B6562009E5858C93E1C0F435C0382 ] C:\Windows\SysWOW64\netbios.dll
16:59:34.0592 7096 C:\Windows\SysWOW64\netbios.dll - ok
16:59:34.0607 7096 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
16:59:34.0607 7096 C:\Program Files\Windows Defender\MpSvc.dll - ok
16:59:34.0607 7096 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
16:59:34.0607 7096 C:\Windows\System32\sppwinob.dll - ok
16:59:34.0607 7096 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
16:59:34.0607 7096 C:\Program Files\Windows Defender\MpClient.dll - ok
16:59:34.0623 7096 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
16:59:34.0623 7096 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
16:59:34.0623 7096 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
16:59:34.0623 7096 C:\Windows\System32\wmdrmdev.dll - ok
16:59:34.0623 7096 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
16:59:34.0623 7096 C:\Windows\System32\sppobjs.dll - ok
16:59:34.0639 7096 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
16:59:34.0639 7096 C:\Windows\System32\wscsvc.dll - ok
16:59:34.0639 7096 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
16:59:34.0639 7096 C:\Windows\System32\drmv2clt.dll - ok
16:59:34.0639 7096 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
16:59:34.0639 7096 C:\Windows\System32\SearchIndexer.exe - ok
16:59:34.0654 7096 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
16:59:34.0654 7096 C:\Windows\System32\p2pcollab.dll - ok
16:59:34.0654 7096 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
16:59:34.0654 7096 C:\Windows\System32\QAGENTRT.DLL - ok
16:59:34.0654 7096 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
16:59:34.0654 7096 C:\Windows\System32\fveui.dll - ok
16:59:34.0670 7096 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
16:59:34.0670 7096 C:\Windows\System32\wuapi.dll - ok
16:59:34.0670 7096 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
16:59:34.0670 7096 C:\Windows\System32\tquery.dll - ok
16:59:34.0670 7096 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
16:59:34.0670 7096 C:\Windows\System32\cabinet.dll - ok
16:59:34.0685 7096 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
16:59:34.0685 7096 C:\Windows\System32\mssrch.dll - ok
16:59:34.0685 7096 [ 0A313C6E5F7856D0A622E3C9346E9365 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
16:59:34.0685 7096 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
16:59:34.0685 7096 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
16:59:34.0685 7096 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
16:59:34.0701 7096 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
16:59:34.0701 7096 C:\Windows\System32\msidle.dll - ok
16:59:34.0701 7096 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
16:59:34.0701 7096 C:\Windows\System32\timedate.cpl - ok
16:59:34.0701 7096 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
16:59:34.0701 7096 C:\Windows\System32\actxprxy.dll - ok
16:59:34.0717 7096 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
16:59:34.0717 7096 C:\Windows\System32\wups.dll - ok
16:59:34.0717 7096 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
16:59:34.0717 7096 C:\Windows\System32\wmp.dll - ok
16:59:34.0717 7096 [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
16:59:34.0717 7096 C:\Windows\System32\shdocvw.dll - ok
16:59:34.0732 7096 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
16:59:34.0732 7096 C:\Windows\System32\linkinfo.dll - ok
16:59:34.0732 7096 [ EDC77CF787FA015205936C9A3228486E ] C:\Program Files\Internet Explorer\iexplore.exe
16:59:34.0732 7096 C:\Program Files\Internet Explorer\iexplore.exe - ok
16:59:34.0732 7096 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
16:59:34.0732 7096 C:\Windows\System32\msftedit.dll - ok
16:59:34.0748 7096 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
16:59:34.0748 7096 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
16:59:34.0748 7096 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
16:59:34.0748 7096 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
16:59:34.0748 7096 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
16:59:34.0748 7096 C:\Windows\System32\DeviceCenter.dll - ok
16:59:34.0763 7096 [ E62FF21F5B5F69CFA5BB2F97C03C0A5B ] C:\PROGRA~2\Dell\VIDEOS~1\MUITRA~1\STMTEN~1.DLL
16:59:34.0763 7096 C:\PROGRA~2\Dell\VIDEOS~1\MUITRA~1\STMTEN~1.DLL - ok
16:59:34.0763 7096 [ 87D32202404483FA9860BC3774F04031 ] C:\Windows\System32\igfxtray.exe
16:59:34.0763 7096 C:\Windows\System32\igfxtray.exe - ok
16:59:34.0763 7096 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
16:59:34.0763 7096 C:\Windows\System32\gameux.dll - ok
16:59:34.0779 7096 [ 2C108AE88C8C051466E2E79721870ACB ] C:\Windows\System32\hccutils.dll
16:59:34.0779 7096 C:\Windows\System32\hccutils.dll - ok
16:59:34.0779 7096 [ E48592D99D6024DDCC76F2FB0347A9C7 ] C:\Windows\System32\hkcmd.exe
16:59:34.0779 7096 C:\Windows\System32\hkcmd.exe - ok
16:59:34.0795 7096 [ 6DD6B4511D51987765AB492B809602FB ] C:\Windows\System32\igfxsrvc.exe
16:59:34.0795 7096 C:\Windows\System32\igfxsrvc.exe - ok
16:59:34.0795 7096 [ 88A186BC307825427338252EB4A82D87 ] C:\Windows\System32\igfxpers.exe
16:59:34.0795 7096 C:\Windows\System32\igfxpers.exe - ok
16:59:34.0795 7096 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
16:59:34.0795 7096 C:\Windows\System32\wmploc.DLL - ok
16:59:34.0810 7096 [ 527BA8F96712AB5535A84B3AE15E66E3 ] C:\Program Files\DellTPad\Apoint.exe
16:59:34.0810 7096 C:\Program Files\DellTPad\Apoint.exe - ok
16:59:34.0810 7096 [ 3C957189B31C34D3AD21967B12B6AED7 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
16:59:34.0810 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe - ok
16:59:34.0810 7096 [ D5A3EB5ED95E36B643E55F9F489FC8FC ] C:\Program Files\IDT\WDM\sttray64.exe
16:59:34.0810 7096 C:\Program Files\IDT\WDM\sttray64.exe - ok
16:59:34.0810 7096 [ B74C5AD12D3B307893D1019A370B77B1 ] C:\Program Files\Dell\QuickSet\quickset.exe
16:59:34.0810 7096 C:\Program Files\Dell\QuickSet\quickset.exe - ok
16:59:34.0826 7096 [ 1136B11FB4B6A598051BD9648A798F7C ] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
16:59:34.0826 7096 C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe - ok
16:59:34.0826 7096 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
16:59:34.0826 7096 C:\Windows\System32\msiltcfg.dll - ok
16:59:34.0826 7096 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
16:59:34.0826 7096 C:\Windows\System32\msi.dll - ok
16:59:34.0841 7096 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
16:59:34.0841 7096 C:\Windows\System32\thumbcache.dll - ok
16:59:34.0841 7096 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
16:59:34.0841 7096 C:\Windows\System32\networkexplorer.dll - ok
16:59:34.0857 7096 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
16:59:34.0857 7096 C:\Windows\System32\mfc42u.dll - ok
16:59:34.0857 7096 [ 8E1BB39C377F70829184217BBBD0DFED ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
16:59:34.0857 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe - ok
16:59:34.0857 7096 [ BD4C1D83353BFB80F6BA019F6D0BA95B ] C:\Windows\ehome\ehshell.exe
16:59:34.0857 7096 C:\Windows\ehome\ehshell.exe - ok
16:59:34.0873 7096 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
16:59:34.0873 7096 C:\Windows\System32\wdmaud.drv - ok
16:59:34.0873 7096 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
16:59:34.0873 7096 C:\Windows\System32\odbc32.dll - ok
16:59:34.0873 7096 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
16:59:34.0888 7096 C:\Windows\System32\wlanapi.dll - ok
16:59:34.0888 7096 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
16:59:34.0888 7096 C:\Windows\System32\oledlg.dll - ok
16:59:34.0888 7096 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
16:59:34.0888 7096 C:\Windows\System32\ksuser.dll - ok
16:59:34.0888 7096 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
16:59:34.0888 7096 C:\Windows\System32\msacm32.dll - ok
16:59:34.0904 7096 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
16:59:34.0904 7096 C:\Windows\System32\msacm32.drv - ok
16:59:34.0919 7096 [ DD49535AFDF652DBE62CD59F62C1CBEB ] C:\Program Files\IDT\WDM\stlang64.dll
16:59:34.0919 7096 C:\Program Files\IDT\WDM\stlang64.dll - ok
16:59:34.0919 7096 [ 00000000000000000000000000000000 ] C:\Windows\System32\MRT.exe
16:59:34.0919 7096 C:\Windows\System32\MRT.exe - ok
16:59:34.0919 7096 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
16:59:34.0919 7096 C:\Windows\System32\midimap.dll - ok
16:59:34.0935 7096 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
16:59:34.0935 7096 C:\Windows\System32\stobject.dll - ok
16:59:34.0935 7096 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
16:59:34.0935 7096 C:\Windows\System32\batmeter.dll - ok
16:59:34.0951 7096 [ A5BE518E515EF80EFD10B6727F31E366 ] C:\Program Files\Internet Explorer\ieproxy.dll
16:59:34.0951 7096 C:\Program Files\Internet Explorer\ieproxy.dll - ok
16:59:34.0951 7096 [ 320889E9BD1F1A041CB69E6A81E484EC ] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
16:59:34.0951 7096 C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE - ok
16:59:34.0951 7096 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
16:59:34.0951 7096 C:\Windows\System32\wmpps.dll - ok
16:59:34.0966 7096 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
16:59:34.0966 7096 C:\Windows\System32\odbcint.dll - ok
16:59:34.0966 7096 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
16:59:34.0966 7096 C:\Windows\System32\l3codeca.acm - ok
16:59:34.0966 7096 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
16:59:34.0966 7096 C:\Windows\System32\wbem\wmiprov.dll - ok
16:59:34.0982 7096 [ 08690151B983903A5D9447DE818EAEC8 ] C:\Windows\System32\igfxdev.dll
16:59:34.0982 7096 C:\Windows\System32\igfxdev.dll - ok
16:59:34.0982 7096 [ 7945EBC57F8B0E410AD0BF10A7452685 ] C:\Windows\System32\igfxsrvc.dll
16:59:34.0982 7096 C:\Windows\System32\igfxsrvc.dll - ok
16:59:34.0982 7096 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
16:59:34.0982 7096 C:\Windows\System32\IccLibDll_x64.dll - ok
16:59:34.0997 7096 [ 7594DBEF5C0A10CCD9C235DCA7D290B4 ] C:\Windows\System32\igfxrenu.lrc
16:59:34.0997 7096 C:\Windows\System32\igfxrenu.lrc - ok
16:59:34.0997 7096 [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
16:59:34.0997 7096 C:\Windows\System32\consent.exe - ok
16:59:34.0997 7096 [ 993F16F20CF32DD55B8894338BF88537 ] C:\Program Files\DellTPad\Apoint.dll
16:59:34.0997 7096 C:\Program Files\DellTPad\Apoint.dll - ok
16:59:35.0013 7096 [ 3BD1F79DCD7ECE5B4E58DA1F5B774A8B ] C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll
16:59:35.0013 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll - ok
16:59:35.0013 7096 [ C9CA9CF174E87DF735E3232755D18A5B ] C:\Program Files (x86)\Dell\Stage Remote\QtCore4.dll
16:59:35.0013 7096 C:\Program Files (x86)\Dell\Stage Remote\QtCore4.dll - ok
16:59:35.0013 7096 [ 0CF139EA902D1E3976A0673DD27ABB64 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll
16:59:35.0013 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll - ok
16:59:35.0029 7096 [ A85E08154B2E2543675AE41721782672 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll
16:59:35.0029 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll - ok
16:59:35.0029 7096 [ E937B2952DF62B980E8B0028D00BB4C2 ] C:\Windows\System32\Vxdif.dll
16:59:35.0029 7096 C:\Windows\System32\Vxdif.dll - ok
16:59:35.0029 7096 [ 1CE9AB3BC19744C854CD0F2DBA3A11A2 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll
16:59:35.0029 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll - ok
16:59:35.0044 7096 [ 67611DEA70471375E1913A4CFC6A6575 ] C:\Program Files\DellTPad\EzAuto.dll
16:59:35.0044 7096 C:\Program Files\DellTPad\EzAuto.dll - ok
16:59:35.0044 7096 [ B03F39264477EC8A979C67C789A7B62A ] C:\Program Files\DellTPad\ApMsgFwd.exe
16:59:35.0044 7096 C:\Program Files\DellTPad\ApMsgFwd.exe - ok
16:59:35.0044 7096 [ 09DEF3ABB6A196749299359AC5578DD8 ] C:\Windows\SysWOW64\msxml4.dll
16:59:35.0044 7096 C:\Windows\SysWOW64\msxml4.dll - ok
16:59:35.0060 7096 [ F62E1670868E9EF413B7D7C3039AF66A ] C:\Program Files (x86)\Dell\Stage Remote\QtGui4.dll
16:59:35.0060 7096 C:\Program Files (x86)\Dell\Stage Remote\QtGui4.dll - ok
16:59:35.0060 7096 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\83423978.sys
16:59:35.0060 7096 C:\Windows\System32\drivers\83423978.sys - ok
16:59:35.0075 7096 [ FC877611E178FA17E23F99D9694590A0 ] C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll
16:59:35.0075 7096 C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll - ok
16:59:35.0075 7096 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
16:59:35.0075 7096 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
16:59:35.0075 7096 [ C9380B96A0D51B8109D19D13467ADA0B ] C:\Windows\SysWOW64\msjet40.dll
16:59:35.0075 7096 C:\Windows\SysWOW64\msjet40.dll - ok
16:59:35.0091 7096 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
16:59:35.0091 7096 C:\Windows\System32\AUDIOKSE.dll - ok
16:59:35.0091 7096 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
16:59:35.0091 7096 C:\Windows\System32\prnfldr.dll - ok
16:59:35.0091 7096 [ 6322276923D9598F8AF770470D6AFD74 ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\hpqDTSS.exe
16:59:35.0091 7096 C:\Program Files\HP\HP Deskjet 3510 series\Bin\hpqDTSS.exe - ok
16:59:35.0107 7096 [ 1F55C7C1E338047DC5E329011A781FB3 ] C:\Windows\SysWOW64\mswstr10.dll
16:59:35.0107 7096 C:\Windows\SysWOW64\mswstr10.dll - ok
16:59:35.0107 7096 [ C046C2BF5248587F6DB073E37D94C35C ] C:\Program Files (x86)\Dell\Stage Remote\QtNetwork4.dll
16:59:35.0107 7096 C:\Program Files (x86)\Dell\Stage Remote\QtNetwork4.dll - ok
16:59:35.0107 7096 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
16:59:35.0107 7096 C:\Windows\SysWOW64\duser.dll - ok
16:59:35.0122 7096 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
16:59:35.0122 7096 C:\Windows\SysWOW64\dui70.dll - ok
16:59:35.0122 7096 [ 339A5D2292110494B9594AB050AA55A6 ] C:\Program Files (x86)\Dell\Stage Remote\QtXml4.dll
16:59:35.0122 7096 C:\Program Files (x86)\Dell\Stage Remote\QtXml4.dll - ok
16:59:35.0138 7096 [ 73D1680C94C1B57F6D8E49B2AE8122ED ] C:\Windows\SysWOW64\vbajet32.dll
16:59:35.0138 7096 C:\Windows\SysWOW64\vbajet32.dll - ok
16:59:35.0138 7096 [ EFF10B20A6F094BC75385791C526546D ] C:\Windows\SysWOW64\expsrv.dll
16:59:35.0138 7096 C:\Windows\SysWOW64\expsrv.dll - ok
16:59:35.0138 7096 [ C78B64296C72D5B3EA07019790A602B9 ] C:\Program Files (x86)\Dell\Stage Remote\DMSAdapter.dll
16:59:35.0138 7096 C:\Program Files (x86)\Dell\Stage Remote\DMSAdapter.dll - ok
16:59:35.0153 7096 [ 6299D41BE07A4584147ACD7D922454F8 ] C:\Program Files (x86)\Dell\Stage Remote\DHServerAgent.dll
16:59:35.0153 7096 C:\Program Files (x86)\Dell\Stage Remote\DHServerAgent.dll - ok
16:59:35.0153 7096 [ 2BB97FDD3FF685138A292164E7DE9A9D ] C:\Program Files (x86)\Dell\Stage Remote\UMediaManager.dll
16:59:35.0153 7096 C:\Program Files (x86)\Dell\Stage Remote\UMediaManager.dll - ok
16:59:35.0153 7096 [ F774DB03213C2014363DE8D22DD6BBEF ] C:\Windows\SysWOW64\msjtes40.dll
16:59:35.0153 7096 C:\Windows\SysWOW64\msjtes40.dll - ok
16:59:35.0169 7096 [ C819AACFC675D2BCA7C715822913B676 ] C:\Program Files (x86)\Dell\Stage Remote\ASDBTool.dll
16:59:35.0169 7096 C:\Program Files (x86)\Dell\Stage Remote\ASDBTool.dll - ok
16:59:35.0169 7096 [ 17932262563F8288D261E28F873FA6A9 ] C:\Program Files (x86)\Dell\Stage Remote\sqlite3.dll
16:59:35.0169 7096 C:\Program Files (x86)\Dell\Stage Remote\sqlite3.dll - ok
16:59:35.0169 7096 [ F2FA17A0F2B20A29D7DB354F286FDB97 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSAlbumObjects.dll
16:59:35.0169 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSAlbumObjects.dll - ok
16:59:35.0185 7096 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll
16:59:35.0185 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll - ok
16:59:35.0185 7096 [ 0C7315CAFF701909AC65C087752B7E3A ] C:\Program Files (x86)\Dell\Stage Remote\ASTransMgr.dll
16:59:35.0185 7096 C:\Program Files (x86)\Dell\Stage Remote\ASTransMgr.dll - ok
16:59:35.0200 7096 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
16:59:35.0200 7096 C:\Windows\System32\UIAnimation.dll - ok
16:59:35.0200 7096 [ 0FBE8505FF8E52130EF4E90E2BD8F4CA ] C:\Program Files (x86)\Dell\Stage Remote\ASXmlTool.dll
16:59:35.0200 7096 C:\Program Files (x86)\Dell\Stage Remote\ASXmlTool.dll - ok
16:59:35.0200 7096 [ 8E757681A3245A407584A3D2FF3D65B8 ] C:\Program Files (x86)\Dell\Stage Remote\DataService.dll
16:59:35.0200 7096 C:\Program Files (x86)\Dell\Stage Remote\DataService.dll - ok
16:59:35.0216 7096 [ C265BFF559718F341D16C8355B4EDAED ] C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
16:59:35.0216 7096 C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe - ok
16:59:35.0216 7096 [ B6B8A7F49301F0EF589B8BC8C4B24E98 ] C:\Program Files (x86)\Dell\Stage Remote\en-US\UI\ManagerUI.dll
16:59:35.0216 7096 C:\Program Files (x86)\Dell\Stage Remote\en-US\UI\ManagerUI.dll - ok
16:59:35.0216 7096 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
16:59:35.0216 7096 C:\Windows\System32\DXP.dll - ok
16:59:35.0216 7096 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
16:59:35.0216 7096 C:\Windows\System32\Syncreg.dll - ok
16:59:35.0231 7096 [ A9CABA9A7D2E60FACD21A11815D3991D ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qsvg4.dll
16:59:35.0231 7096 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qsvg4.dll - ok
16:59:35.0231 7096 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
16:59:35.0231 7096 C:\Windows\ehome\ehSSO.dll - ok
16:59:35.0231 7096 [ 4C312A09E91A48C26317AAF6EFF93310 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll
16:59:35.0231 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll - ok
16:59:35.0247 7096 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
16:59:35.0247 7096 C:\Windows\System32\netshell.dll - ok
16:59:35.0247 7096 [ 4DE57667406BB17A77BD056B9BEE7CF1 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qgif4.dll
16:59:35.0247 7096 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qgif4.dll - ok
16:59:35.0247 7096 [ 5FE1636D3B4E8285AABA3D940147DC09 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qico4.dll
16:59:35.0247 7096 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qico4.dll - ok
16:59:35.0263 7096 [ 77198B03A8E31A7D01947A7D9673B708 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qjpeg4.dll
16:59:35.0263 7096 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qjpeg4.dll - ok
16:59:35.0263 7096 [ 466B9A9914DB2B01A20B1207C3E65C0F ] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
16:59:35.0263 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe - ok
16:59:35.0263 7096 [ F07F47EE8F2D7785CEBA2B0CA10C6E68 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qmng4.dll
16:59:35.0263 7096 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qmng4.dll - ok
16:59:35.0263 7096 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
16:59:35.0263 7096 C:\Windows\System32\AltTab.dll - ok
16:59:35.0278 7096 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
16:59:35.0278 7096 C:\Windows\System32\ActionCenter.dll - ok
16:59:35.0278 7096 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
16:59:35.0278 7096 C:\Windows\System32\WPDShServiceObj.dll - ok
16:59:35.0278 7096 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
16:59:35.0278 7096 C:\Windows\System32\PortableDeviceTypes.dll - ok
16:59:35.0294 7096 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
16:59:35.0294 7096 C:\Windows\System32\FXSST.dll - ok
16:59:35.0294 7096 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
16:59:35.0294 7096 C:\Windows\System32\FXSAPI.dll - ok
16:59:35.0294 7096 [ 9EB925EDC8CF1C3D06E50E9348B54A0A ] C:\Users\Darrishi\AppData\Local\Facebook\Update\FacebookUpdate.exe
16:59:35.0294 7096 C:\Users\Darrishi\AppData\Local\Facebook\Update\FacebookUpdate.exe - ok
16:59:35.0294 7096 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
16:59:35.0294 7096 C:\Windows\System32\pnidui.dll - ok
16:59:35.0309 7096 [ 791A7314CE8EE46FA9D4B8276D7DE0C9 ] C:\Program Files (x86)\Dell\Stage Remote\EndPointCtrl.dll
16:59:35.0309 7096 C:\Program Files (x86)\Dell\Stage Remote\EndPointCtrl.dll - ok
16:59:35.0309 7096 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
16:59:35.0309 7096 C:\Program Files\Windows Defender\MpRTP.dll - ok
16:59:35.0309 7096 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
16:59:35.0309 7096 C:\Windows\System32\tdh.dll - ok
16:59:35.0309 7096 [ 304AEF86D74CC76FF803876C95890507 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll
16:59:35.0309 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll - ok
16:59:35.0325 7096 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
16:59:35.0325 7096 C:\Windows\SysWOW64\MMDevAPI.dll - ok
16:59:35.0325 7096 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
16:59:35.0325 7096 C:\Windows\SysWOW64\AudioSes.dll - ok
16:59:35.0325 7096 [ FD97807051658AE27799BE3A557D3776 ] C:\Program Files\DellTPad\ApntEx.exe
16:59:35.0341 7096 C:\Program Files\DellTPad\ApntEx.exe - ok
16:59:35.0341 7096 [ 1B0E5412AB8F30B8ED2AEAC2C530EB90 ] C:\Program Files\DellTPad\hidfind.exe
16:59:35.0341 7096 C:\Program Files\DellTPad\hidfind.exe - ok
16:59:35.0341 7096 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
16:59:35.0341 7096 C:\Windows\System32\QUTIL.DLL - ok
16:59:35.0341 7096 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
16:59:35.0341 7096 C:\Windows\System32\FXSRESM.dll - ok
16:59:35.0356 7096 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
16:59:35.0356 7096 C:\Windows\System32\srchadmin.dll - ok
16:59:35.0356 7096 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
16:59:35.0356 7096 C:\Windows\SysWOW64\opengl32.dll - ok
16:59:35.0356 7096 [ 57859BFB9050DC43CBD89B25569BA790 ] C:\Users\Darrishi\AppData\Roaming\Smilebox\SmileboxTray.exe
16:59:35.0356 7096 C:\Users\Darrishi\AppData\Roaming\Smilebox\SmileboxTray.exe - ok
16:59:35.0356 7096 [ 268EF3344DA4258AADBF6AC2614A70C6 ] C:\Windows\Installer\{76FF0F03-B707-4332-B5D1-A56C8303514E}\iTunesIco.exe
16:59:35.0356 7096 C:\Windows\Installer\{76FF0F03-B707-4332-B5D1-A56C8303514E}\iTunesIco.exe - ok
16:59:35.0372 7096 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
16:59:35.0372 7096 C:\Windows\System32\mssprxy.dll - ok
16:59:35.0372 7096 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
16:59:35.0372 7096 C:\Windows\SysWOW64\glu32.dll - ok
16:59:35.0372 7096 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
16:59:35.0372 7096 C:\Windows\System32\FXSSVC.exe - ok
16:59:35.0372 7096 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
16:59:35.0372 7096 C:\Windows\SysWOW64\ddraw.dll - ok
16:59:35.0387 7096 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
16:59:35.0387 7096 C:\Windows\SysWOW64\dciman32.dll - ok
16:59:35.0387 7096 [ EA42F79A76F4795E0930FB1E9FFFA5CF ] C:\Program Files\ESET\ESET NOD32 Antivirus\mfc80u.dll
16:59:35.0387 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\mfc80u.dll - ok
16:59:35.0387 7096 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
16:59:35.0387 7096 C:\Windows\System32\bthprops.cpl - ok
16:59:35.0403 7096 [ 636BA18F8E53B47A896D20EB7D0852D2 ] C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe
16:59:35.0403 7096 C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe - ok
16:59:35.0403 7096 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
16:59:35.0403 7096 C:\Windows\System32\mstask.dll - ok
16:59:35.0403 7096 [ 91595FA51248C92A998D5281FC37981B ] C:\Program Files (x86)\Football News App\Football News.exe
16:59:35.0403 7096 C:\Program Files (x86)\Football News App\Football News.exe - ok
16:59:35.0419 7096 [ ABB1B50F36CCBEF119FBEF8FDF14AD61 ] C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL
16:59:35.0419 7096 C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL - ok
16:59:35.0419 7096 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
16:59:35.0419 7096 C:\Windows\System32\netman.dll - ok
16:59:35.0419 7096 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
16:59:35.0419 7096 C:\Windows\System32\en-US\tquery.dll.mui - ok
16:59:35.0419 7096 [ 22F7B9670AD770C7ED7F4738204C8E5C ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe
16:59:35.0419 7096 C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe - ok
16:59:35.0434 7096 [ FB355B817AE641BBAE08607E58CB5CE2 ] C:\Windows\System32\hhctrl.ocx
16:59:35.0434 7096 C:\Windows\System32\hhctrl.ocx - ok
16:59:35.0434 7096 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
16:59:35.0434 7096 C:\Windows\System32\rasdlg.dll - ok
16:59:35.0434 7096 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
16:59:35.0434 7096 C:\Windows\System32\dot3api.dll - ok
16:59:35.0434 7096 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
16:59:35.0434 7096 C:\Windows\System32\wlanhlp.dll - ok
16:59:35.0450 7096 [ BA9976AF1946D955E46E44AFF26D856F ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpengine.dll
16:59:35.0450 7096 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpengine.dll - ok
16:59:35.0450 7096 [ 23FD249DDA90DA342745A5D7D2FE4367 ] C:\Program Files\Handbrake\Handbrake.exe
16:59:35.0450 7096 C:\Program Files\Handbrake\Handbrake.exe - ok
16:59:35.0450 7096 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
16:59:35.0450 7096 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
16:59:35.0465 7096 [ 8504944851DF6175CC489A8F3328459E ] C:\Windows\SysWOW64\d3d10.dll
16:59:35.0465 7096 C:\Windows\SysWOW64\d3d10.dll - ok
16:59:35.0465 7096 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
16:59:35.0465 7096 C:\Windows\System32\WWanAPI.dll - ok
16:59:35.0465 7096 [ FB3F036EF6A467F7AF46C821FF5D198D ] C:\Windows\SysWOW64\d3d10core.dll
16:59:35.0465 7096 C:\Windows\SysWOW64\d3d10core.dll - ok
16:59:35.0465 7096 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
16:59:35.0465 7096 C:\Windows\System32\wwapi.dll - ok
16:59:35.0481 7096 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
16:59:35.0481 7096 C:\Windows\System32\QAGENT.DLL - ok
16:59:35.0481 7096 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
16:59:35.0481 7096 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
16:59:35.0481 7096 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
16:59:35.0481 7096 C:\Windows\SysWOW64\dxgi.dll - ok
16:59:35.0481 7096 [ 3E130FA0D5289C8812021FF57F3851F5 ] C:\Program Files\Internet Explorer\sqmapi.dll
16:59:35.0481 7096 C:\Program Files\Internet Explorer\sqmapi.dll - ok
16:59:35.0497 7096 [ 73002E0D22C773438681CCFCFC4942FF ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\HP Deskjet 3510 series.exe
16:59:35.0497 7096 C:\Program Files\HP\HP Deskjet 3510 series\Bin\HP Deskjet 3510 series.exe - ok
16:59:35.0497 7096 [ 6DE66FE7C526637E74CD066461C7C871 ] C:\Windows\SysWOW64\d3d11.dll
16:59:35.0497 7096 C:\Windows\SysWOW64\d3d11.dll - ok
16:59:35.0497 7096 [ 3002F70621759E90876752319ABA5CA5 ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiHips.dll
16:59:35.0497 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiHips.dll - ok
16:59:35.0512 7096 [ 0DFF557D796B6ABFB28208C6680FB5C9 ] C:\Windows\SysWOW64\igd10umd32.dll
16:59:35.0512 7096 C:\Windows\SysWOW64\igd10umd32.dll - ok
16:59:35.0512 7096 [ D72C94B32300A3D31F04C90846EA2D8D ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll
16:59:35.0512 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll - ok
16:59:35.0512 7096 [ D9396E531B6735151AF9C10B01378D8E ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll
16:59:35.0512 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll - ok
16:59:35.0512 7096 [ 46D1B83CE0E88F578DD12790AF02EE2B ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll
16:59:35.0512 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll - ok
16:59:35.0528 7096 [ 8DB479E065F2B546BFBD7323E5EE5B02 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_224.ocx
16:59:35.0528 7096 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_224.ocx - ok
16:59:35.0528 7096 [ 49D3F53BEA86A4EFEFA53550E0DBFDB1 ] C:\Users\Darrishi\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
16:59:35.0528 7096 C:\Users\Darrishi\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll - ok
16:59:35.0528 7096 [ 5B9820B52C903533E64BD780B12DB0AD ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll
16:59:35.0543 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll - ok
16:59:35.0543 7096 [ 484C12B7D5784A12F74F1FA3C2C996DB ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll
16:59:35.0543 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll - ok
16:59:35.0543 7096 [ 84F6AC61338BC5D5703461B5E018C7EA ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll
16:59:35.0543 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll - ok
16:59:35.0543 7096 [ A3A64659AD62EC5E1B2D2621F62D048C ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll
16:59:35.0543 7096 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll - ok
16:59:35.0559 7096 [ E389EA130C4A9A4DBA0F138222261056 ] C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe
16:59:35.0559 7096 C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe - ok
16:59:35.0559 7096 [ 2A88B53F4042FC869CEDCE37B7544CE7 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
16:59:35.0559 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe - ok
16:59:35.0559 7096 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
16:59:35.0559 7096 C:\Windows\SysWOW64\dsound.dll - ok
16:59:35.0559 7096 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
16:59:35.0559 7096 C:\Windows\SysWOW64\mscms.dll - ok
16:59:35.0575 7096 [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\SysWOW64\thumbcache.dll
16:59:35.0575 7096 C:\Windows\SysWOW64\thumbcache.dll - ok
16:59:35.0575 7096 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
16:59:35.0575 7096 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
16:59:35.0575 7096 [ 26535C8F7105D7C2767C93FDFC49CF57 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasbase.vdm
16:59:35.0575 7096 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasbase.vdm - ok
16:59:35.0590 7096 [ 2EF0B3C51971F51ED700C01CFBC5B82A ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
16:59:35.0590 7096 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
16:59:35.0590 7096 [ 4FB1BBDF3E82A2F56D8D16FB9DB8D28F ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationUI.dll
16:59:35.0590 7096 C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationUI.dll - ok
16:59:35.0590 7096 [ A65DA4C5932140068F577A890BAEB907 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasdlta.vdm
16:59:35.0590 7096 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasdlta.vdm - ok
16:59:35.0590 7096 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
16:59:35.0590 7096 C:\Windows\SysWOW64\dllhost.exe - ok
16:59:35.0606 7096 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
16:59:35.0606 7096 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
16:59:35.0606 7096 [ 41D1214B86A06FD29423A797EBDA17E4 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
16:59:35.0606 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
16:59:35.0606 7096 [ A7749965A3923D024922A86BAAECAFF4 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
16:59:35.0606 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe - ok
16:59:35.0621 7096 [ 4164A47F3A2DA7EA44572904C3DF44A4 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
16:59:35.0621 7096 C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe - ok
16:59:35.0621 7096 [ 96E019ADDAD4F0632B9C0383BD1C020D ] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe
16:59:35.0621 7096 C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe - ok
16:59:35.0621 7096 [ 3181F76ED237CC3D50D10CEA05AF8B60 ] C:\Windows\System32\riched32.dll
16:59:35.0621 7096 C:\Windows\System32\riched32.dll - ok
16:59:35.0637 7096 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
16:59:35.0637 7096 C:\Windows\System32\riched20.dll - ok
16:59:35.0637 7096 [ EBE1962DC5EEFC13D20543013A891ABC ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
16:59:35.0637 7096 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe - ok
16:59:35.0637 7096 [ 544013C383833189A61C2F72B8814319 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
16:59:35.0637 7096 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
16:59:35.0637 7096 [ 3043374E292DED8C59D1C6570578F2F0 ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
16:59:35.0637 7096 C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe - ok
16:59:35.0653 7096 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
16:59:35.0653 7096 C:\Windows\SysWOW64\Nlsdl.dll - ok
16:59:35.0653 7096 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
16:59:35.0653 7096 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
16:59:35.0653 7096 [ 07DD9DCD1CC2840751A1F8772F3C0195 ] C:\Program Files\Microsoft Games\Chess\Chess.exe
16:59:35.0653 7096 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
16:59:35.0653 7096 [ B9E362680ADB83F0E0134F4567DBF656 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll
16:59:35.0653 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll - ok
16:59:35.0668 7096 [ 53E81C75B3C260C8FE9FD9ED4D8DB8F0 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll
16:59:35.0668 7096 C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll - ok
16:59:35.0668 7096 [ C8841EF9357DD13468CDAFC28BFBC86F ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
16:59:35.0668 7096 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
16:59:35.0668 7096 [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
16:59:35.0668 7096 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
16:59:35.0684 7096 [ 582C53ABD87EE9276E615AE3B804C6FB ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileProtocolHandler.dll
16:59:35.0684 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileProtocolHandler.dll - ok
16:59:35.0684 7096 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
16:59:35.0684 7096 C:\Windows\SysWOW64\shfolder.dll - ok
16:59:35.0684 7096 [ AD7E89D547F133D178EA7B4C3CB1B134 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
16:59:35.0684 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe - ok
16:59:35.0684 7096 [ 59831274CF0D1E83BC02C9E856AC9F69 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl
16:59:35.0699 7096 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl - ok
16:59:35.0699 7096 [ 4CDB3900C3E4FD3132770E30A6FCA6CF ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFormatLoaderPNG.dll
16:59:35.0699 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFormatLoaderPNG.dll - ok
16:59:35.0699 7096 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
16:59:35.0699 7096 C:\Windows\SysWOW64\devenum.dll - ok
16:59:35.0699 7096 [ 61E4289E91E88C90478D7F4BEB10DCF7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
16:59:35.0699 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
16:59:35.0715 7096 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
16:59:35.0715 7096 C:\Windows\SysWOW64\IconCodecService.dll - ok
16:59:35.0715 7096 [ 9C2078437D6FC541BD268BA903F6AEB4 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
16:59:35.0715 7096 C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe - ok
16:59:35.0715 7096 [ EF7B4AF560498EB0D038139AD304B84F ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\CPSVideoObjects.dll
16:59:35.0715 7096 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\CPSVideoObjects.dll - ok
16:59:35.0731 7096 [ 66B6C65CBA8FE3CE4C6528281F537EB0 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\APSPluginDialogs.dll
16:59:35.0731 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\APSPluginDialogs.dll - ok
16:59:35.0731 7096 [ 8FE495D5EEF0B391CBFE24E80AB9BB33 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\AlbumCommonPlugins.dll
16:59:35.0731 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\AlbumCommonPlugins.dll - ok
16:59:35.0731 7096 [ 7FF64140B84F5394F4B86113A0578A9C ] C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe
16:59:35.0731 7096 C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe - ok
16:59:35.0746 7096 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
16:59:35.0746 7096 C:\Windows\SysWOW64\avicap32.dll - ok
16:59:35.0746 7096 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
16:59:35.0746 7096 C:\Windows\SysWOW64\msvfw32.dll - ok
16:59:35.0746 7096 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
16:59:35.0746 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
16:59:35.0746 7096 [ AE5C224D43DA6879A580D1C89BC66C94 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSHelpRunner12OEM.exe
16:59:35.0746 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSHelpRunner12OEM.exe - ok
16:59:35.0762 7096 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
16:59:35.0762 7096 C:\Windows\SysWOW64\vfwwdm32.dll - ok
16:59:35.0762 7096 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
16:59:35.0762 7096 C:\Windows\SysWOW64\WMVCORE.DLL - ok
16:59:35.0762 7096 [ 1BC8A289BFDE02DF0DA6C06689FA89C3 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll
16:59:35.0762 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll - ok
16:59:35.0777 7096 [ D6E46FE21CC8E662A7A88000FDD77DAF ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
16:59:35.0777 7096 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
16:59:35.0777 7096 [ E325D1DB76B13B33692D6318F67DC4EC ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll
16:59:35.0777 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll - ok
16:59:35.0777 7096 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
16:59:35.0777 7096 C:\Windows\SysWOW64\WMASF.DLL - ok
16:59:35.0777 7096 [ 8F17CA7CD61AF4602FC88647BAEA9F54 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll
16:59:35.0777 7096 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll - ok
16:59:35.0793 7096 [ E947636009834772DDA3C55AA1D67F82 ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RMFMediaObjects.dll
16:59:35.0793 7096 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RMFMediaObjects.dll - ok
16:59:35.0793 7096 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
16:59:35.0793 7096 C:\Windows\SysWOW64\msdmo.dll - ok
16:59:35.0793 7096 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
16:59:35.0793 7096 C:\Windows\SysWOW64\quartz.dll - ok
16:59:35.0809 7096 [ C477E60DAE2E1A572BB4A1CDDC54CE9E ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUPermits12OEM.dll
16:59:35.0809 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUPermits12OEM.dll - ok
16:59:35.0809 7096 [ 36C4358A1E67C4E5F26926F8B3829B88 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUError12OEM.dll
16:59:35.0809 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUError12OEM.dll - ok
16:59:35.0809 7096 [ 7A6FCD13C25F88D9C873E6D6DE12F471 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxAudioCodec3.dll
16:59:35.0809 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxAudioCodec3.dll - ok
16:59:35.0809 7096 [ 3494C165F17A9C417E47552D40E99A88 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
16:59:35.0809 7096 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
16:59:35.0824 7096 [ 1B97EF29D7B71B2E6C947FEC98B97A99 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAAC3.dll
16:59:35.0824 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAAC3.dll - ok
16:59:35.0824 7096 [ 6DFCB2E2B14B62DEC099049B1EB2A273 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAC33.dll
16:59:35.0824 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAC33.dll - ok
16:59:35.0824 7096 [ 7F9B7E94781806B1755FC5F0D8557DBE ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACFLAC3.dll
16:59:35.0824 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACFLAC3.dll - ok
16:59:35.0840 7096 [ 1C2CFC0F355B8B18BEFCE04239C8B569 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACM4B3.dll
16:59:35.0840 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACM4B3.dll - ok
16:59:35.0840 7096 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
16:59:35.0840 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
16:59:35.0840 7096 [ E0203FF20BB8C2E5B2E53F233C744B39 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMonkey3.dll
16:59:35.0840 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMonkey3.dll - ok
16:59:35.0855 7096 [ 3477E2590B504AFBBFA6E74022770E74 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACMP3CTD3.dll
16:59:35.0855 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACMP3CTD3.dll - ok
16:59:35.0855 7096 [ 444FA2C08C116D3CD3E608630F1E16F6 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP3Lame3.dll
16:59:35.0855 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP3Lame3.dll - ok
16:59:35.0855 7096 [ 9DE86B052E0D79E1E32EA5235AB1B400 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP43.dll
16:59:35.0855 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP43.dll - ok
16:59:35.0855 7096 [ BB8E454BEA6FC5DE0B4723CFDC13AEEE ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll
16:59:35.0855 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll - ok
16:59:35.0871 7096 [ BB50B21FEE2A6F3E5FC92B330ECCF050 ] C:\Windows\SysWOW64\hhctrl.ocx
16:59:35.0871 7096 C:\Windows\SysWOW64\hhctrl.ocx - ok
16:59:35.0871 7096 [ 5D392A7D71DAD0F80FC68E9617169C3F ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMPEG23.dll
16:59:35.0871 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMPEG23.dll - ok
16:59:35.0871 7096 [ 146995EC977146E160DB98B995868D64 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSExtendedControls.dll
16:59:35.0871 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSExtendedControls.dll - ok
16:59:35.0887 7096 [ D36FD2B40C3A3C67ACA6E49D705BFB90 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll
16:59:35.0887 7096 C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll - ok
16:59:35.0887 7096 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
16:59:35.0887 7096 C:\Windows\SysWOW64\olepro32.dll - ok
16:59:35.0887 7096 [ 13820B972D74B3DE4F6552A57AC799A7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
16:59:35.0887 7096 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
16:59:35.0887 7096 [ 014DA9958A30049922365CC0F816ABCD ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMsftMP33.dll
16:59:35.0887 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMsftMP33.dll - ok
16:59:35.0902 7096 [ C75D75FB41978FB8516BC3E8D3F4AEA5 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACOgg3.dll
16:59:35.0902 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACOgg3.dll - ok
16:59:35.0902 7096 [ 735EB35AA67F3D5A7E039AFB2F0106D0 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACWav3.dll
16:59:35.0902 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACWav3.dll - ok
16:59:35.0902 7096 [ 36BF0D6A7E76E4DFB6A9A511721CB40E ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACWMA3.dll
16:59:35.0902 7096 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACWMA3.dll - ok
16:59:35.0918 7096 [ 4804BF25E3E67F5B1A868A5C731C468E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll
16:59:35.0918 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll - ok
16:59:35.0918 7096 [ 58299D95B1CD0F7CCCE54460543B1512 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
16:59:35.0918 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
16:59:35.0918 7096 [ DD80D3894F5E1D36864D9727214605CD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
16:59:35.0918 7096 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll - ok
16:59:35.0918 7096 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll
16:59:35.0918 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll - ok
16:59:35.0933 7096 [ 2ACF02F2AE84B6FA383328F564A88599 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll
16:59:35.0933 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll - ok
16:59:35.0933 7096 [ 782C0478147AAE87D8F114BC90E6AE8F ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\MPEG\TSMPEGSource.dll
16:59:35.0933 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\MPEG\TSMPEGSource.dll - ok
16:59:35.0949 7096 [ 246560C5B7995489F25BF9175F2B6380 ] C:\Windows\SysWOW64\mpg2splt.ax
16:59:35.0949 7096 C:\Windows\SysWOW64\mpg2splt.ax - ok
16:59:35.0949 7096 [ 4C312A09E91A48C26317AAF6EFF93310 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
16:59:35.0949 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll - ok
16:59:35.0949 7096 [ 5934096ED53A6AF9579C472AB0D7C84C ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
16:59:35.0949 7096 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
16:59:35.0949 7096 [ 05920BD009621D06722A1CD339DA6481 ] C:\Windows\SysWOW64\mshtml.dll
16:59:35.0965 7096 C:\Windows\SysWOW64\mshtml.dll - ok
16:59:35.0965 7096 [ E3697AAB25598A0CB9601E079C579A28 ] C:\Program Files (x86)\Roxio\OEM\Common\SonicHDDemuxer.dll
16:59:35.0965 7096 C:\Program Files (x86)\Roxio\OEM\Common\SonicHDDemuxer.dll - ok
16:59:35.0965 7096 [ C2A12B061F591E093E3FD99D75811398 ] C:\Windows\SysWOW64\imaadp32.acm
16:59:35.0965 7096 C:\Windows\SysWOW64\imaadp32.acm - ok
16:59:35.0965 7096 [ BF3D6F7D929E018703BE2D4556DD679A ] C:\Windows\SysWOW64\msg711.acm
16:59:35.0965 7096 C:\Windows\SysWOW64\msg711.acm - ok
16:59:35.0980 7096 [ AE796D3FD1C69CE62BB6AFACDFB950AA ] C:\Windows\SysWOW64\msgsm32.acm
16:59:35.0980 7096 C:\Windows\SysWOW64\msgsm32.acm - ok
16:59:35.0980 7096 [ 8EE566982477BC5886FE622CEBEE9C86 ] C:\Windows\SysWOW64\msadp32.acm
16:59:35.0980 7096 C:\Windows\SysWOW64\msadp32.acm - ok
16:59:35.0980 7096 [ 1C7F1C3EA5894995E6C563E9AE9F029F ] C:\Windows\SysWOW64\l3codeca.acm
16:59:35.0980 7096 C:\Windows\SysWOW64\l3codeca.acm - ok
16:59:35.0980 7096 [ 164C6CBA43431D7F767174FD3D99A0A4 ] C:\Windows\SysWOW64\sirenacm.dll
16:59:35.0980 7096 C:\Windows\SysWOW64\sirenacm.dll - ok
16:59:35.0996 7096 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
16:59:35.0996 7096 C:\Windows\SysWOW64\wdmaud.drv - ok
16:59:35.0996 7096 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
16:59:35.0996 7096 C:\Windows\SysWOW64\ksuser.dll - ok
16:59:35.0996 7096 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
16:59:35.0996 7096 C:\Windows\SysWOW64\avrt.dll - ok
16:59:35.0996 7096 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
16:59:35.0996 7096 C:\Windows\SysWOW64\msacm32.drv - ok
16:59:36.0011 7096 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
16:59:36.0011 7096 C:\Windows\SysWOW64\midimap.dll - ok
16:59:36.0011 7096 [ 304AEF86D74CC76FF803876C95890507 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
16:59:36.0011 7096 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll - ok
16:59:36.0011 7096 [ 2829EA1CDA353987B5552DB955F3B736 ] C:\Windows\SysWOW64\msmpeg2adec.dll
16:59:36.0011 7096 C:\Windows\SysWOW64\msmpeg2adec.dll - ok
16:59:36.0027 7096 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
16:59:36.0027 7096 C:\Windows\SysWOW64\mfplat.dll - ok
16:59:36.0027 7096 [ 02824F5BF13F683117DBE322FB17FCB9 ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\VOBFormatter.ax
16:59:36.0027 7096 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\VOBFormatter.ax - ok
16:59:36.0027 7096 [ 461EE80F1526E7219ADDCA9FBC8519DF ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\PDebug12OEM.dll
16:59:36.0027 7096 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\PDebug12OEM.dll - ok
16:59:36.0027 7096 [ F0EB32C56DB100EBD04E0779B806F582 ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RxErrorReporting.dll
16:59:36.0027 7096 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RxErrorReporting.dll - ok
16:59:36.0043 7096 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
16:59:36.0043 7096 C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll - ok
16:59:36.0043 7096 [ 738B5ABCCF24F9ADAEFE0D28CFF40583 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll
16:59:36.0043 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll - ok
16:59:36.0043 7096 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
16:59:36.0043 7096 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
16:59:36.0058 7096 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
16:59:36.0058 7096 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
16:59:36.0058 7096 [ 4620D45507C453697E4BCDB28C01C582 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\2ffef4ff54c15b578bfede370af4b745\System.Core.ni.dll
16:59:36.0058 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\2ffef4ff54c15b578bfede370af4b745\System.Core.ni.dll - ok
16:59:36.0058 7096 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
16:59:36.0058 7096 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
16:59:36.0058 7096 [ D9709FA638B789C1C961F028135CC696 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll
16:59:36.0058 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll - ok
16:59:36.0074 7096 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
16:59:36.0074 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
16:59:36.0074 7096 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
16:59:36.0074 7096 C:\Windows\System32\shfolder.dll - ok
16:59:36.0074 7096 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
16:59:36.0074 7096 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
16:59:36.0089 7096 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
16:59:36.0089 7096 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
16:59:36.0089 7096 ============================================================
16:59:36.0089 7096 Scan finished
16:59:36.0089 7096 ============================================================
16:59:36.0089 7088 Detected object count: 4
16:59:36.0089 7088 Actual detected object count: 4
17:00:36.0173 7088 !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
17:00:36.0173 7088 !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:00:36.0173 7088 BasicServe Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:00:36.0173 7088 BasicServe Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:00:36.0173 7088 DefaultTabSearch ( UnsignedFile.Multi.Generic ) - skipped by user
17:00:36.0173 7088 DefaultTabSearch ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:00:41.0415 7088 \Device\Harddisk0\DR0\# - copied to quarantine
17:00:41.0415 7088 \Device\Harddisk0\DR0 - copied to quarantine
17:00:41.0758 7088 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - will be cured on reboot
17:00:41.0758 7088 \Device\Harddisk0\DR0 - ok
17:00:41.0867 7088 \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - User select action: Cure
17:02:15.0285 4772 Deinitialize success
  • 0

#10
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
No I did not install these programs
Smart PC Cleaner v3.0
SpeedItup Free 7.85
and computer is saying does not exist cannot uninstall

zwinky toolbar is saying. There was a problem starting C:\PROGRA~2\ZWINKY~2\bar\1.bin\5qBar.dll The specific module could not be found.

SearchYa! The uninstallation requires your browser to be closed during the process, but my browsers are closed and the message keeps popping up preventing me from uninstalling.

I also have a The Football news app installer that I did not install and can't uninstall
  • 0

Advertisements


#11
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
# AdwCleaner v2.303 - Logfile created 06/26/2013 at 17:57:35
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Darrishi - DARRISHI-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Darrishi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KA6YVFZR\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : DefaultTabUpdate
Stopped & Deleted : Zwinky_5qService

***** [Files / Folders] *****

File Deleted : C:\Users\Darrishi\AppData\Roaming\BabMaint.exe
File Deleted : C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\searchplugins\Web Search.xml
File Deleted : C:\windows\Tasks\DSite.job
Folder Deleted : C:\Program Files (x86)\Common Files\Wondershare
Folder Deleted : C:\Program Files (x86)\Iminent
Folder Deleted : C:\Program Files (x86)\SearchYa!
Folder Deleted : C:\Program Files (x86)\TornTV.com
Folder Deleted : C:\Program Files (x86)\Wondershare
Folder Deleted : C:\Program Files (x86)\Zwinky_5q
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\eSafe
Folder Deleted : C:\ProgramData\Iminent
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\WeCareReminder
Folder Deleted : C:\Users\Darrishi\AppData\Local\Coupon Companion Plugin
Folder Deleted : C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Folder Deleted : C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Folder Deleted : C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc
Folder Deleted : C:\Users\Darrishi\AppData\Local\PackageAware
Folder Deleted : C:\Users\Darrishi\AppData\Local\Wondershare
Folder Deleted : C:\Users\Darrishi\AppData\LocalLow\Delta
Folder Deleted : C:\Users\Darrishi\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\Darrishi\AppData\LocalLow\Zwinky_5q
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\337
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\DSite
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\Iminent
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions\[email protected]
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\SearchYa
Folder Deleted : C:\Users\Darrishi\AppData\Roaming\Yontoo

***** [Registry] *****

Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\Zwinky_5q
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\GameFlakeSA
Key Deleted : HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25927741-5E5B-4D27-8D8B-9188FE64373F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{27488090-768A-4D20-A938-F223F71C344C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3033124F-06BF-4829-873A-310A125B4D4C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{33AA308B-B565-4376-AC66-59EE9B6AD13E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BD3EA7C2-3AF8-4463-9A9C-6EB8E136CB02}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{148DCAEC-C91D-441D-A0E7-519A0673E7F5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25927741-5E5B-4D27-8D8B-9188FE64373F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{27488090-768A-4D20-A938-F223F71C344C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3033124F-06BF-4829-873A-310A125B4D4C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{33AA308B-B565-4376-AC66-59EE9B6AD13E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD3EA7C2-3AF8-4463-9A9C-6EB8E136CB02}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F464A68D-1CF2-4991-93AB-A84351D7F676}
Key Deleted : HKCU\Software\searchya
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{15F6BCB7-BB0F-4A66-8762-4765B05597EB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1973277F-87B0-4EA3-9ED2-470A91D284CF}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX.1
Key Deleted : HKLM\SOFTWARE\Classes\esrv.searchyaESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.searchyaESrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\I
Key Deleted : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Key Deleted : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Key Deleted : HKLM\SOFTWARE\Classes\ironsource.searchyaappCore
Key Deleted : HKLM\SOFTWARE\Classes\ironsource.searchyaappCore.1
Key Deleted : HKLM\SOFTWARE\Classes\ironsource.searchyadskBnd
Key Deleted : HKLM\SOFTWARE\Classes\ironsource.searchyadskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\ironsource.searchyaHlpr
Key Deleted : HKLM\SOFTWARE\Classes\ironsource.searchyaHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{06CEAB46-0EFC-479A-B66B-AB6B11E1138A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{15496D19-91EA-4930-9150-B24A27FE3DE1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{15F6BCB7-BB0F-4A66-8762-4765B05597EB}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3B82BA62-32FD-4623-BB38-464D186E7453}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A8AE59A-2F19-4777-B0B4-177188AB839B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{644413C0-4090-4A84-BC29-DC69E91A7D73}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{648CEC5D-18E0-4445-9A17-C1589D0C9169}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{69332529-EEC8-4D0D-9FD3-202C4AE8E589}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{782D4CC0-74AE-41B6-B445-3D4C23AE6B9A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A283A85F-ED85-43CE-9199-952A2D106802}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B2828F8B-EDAF-4A77-974E-78AE784A9AA3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B6CC4C24-962F-4314-9358-C998FD4B4288}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BD48A3C7-5201-4093-AB66-04BD35BAC3D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.DynamicBarButton
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.DynamicBarButton.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.FeedManager
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.FeedManager.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.HTMLMenu
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.HTMLMenu.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.HTMLPanel
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.HTMLPanel.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.MultipleButton
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.MultipleButton.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.PseudoTransparentPlugin
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.PseudoTransparentPlugin.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.Radio
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.Radio.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.RadioSettings
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.RadioSettings.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.ScriptButton
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.ScriptButton.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.SettingsPlugin
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.SettingsPlugin.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.SkinLauncher
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.SkinLauncher.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.ThirdPartyInstaller
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.ThirdPartyInstaller.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.UrlAlertButton
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.UrlAlertButton.1
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.XMLSessionPlugin
Key Deleted : HKLM\SOFTWARE\Classes\Zwinky_5q.XMLSessionPlugin.1
Key Deleted : HKLM\Software\Desksvc
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\InstallIQ
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IminentSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{076A9B45-DE24-4CDF-89BE-716C279B3B55}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{148DCAEC-C91D-441D-A0E7-519A0673E7F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{315C7727-2B4D-4EF9-95FA-EA6CDA9AEB9D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{35DAB87A-026F-4503-B5F1-6774E16EAFFA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8C775DBE-2382-4EAB-A48A-6859C3B9EF29}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A00289B5-2C16-4EC7-9780-2B56977ADC65}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F464A68D-1CF2-4991-93AB-A84351D7F676}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@Zwinky_5q.com/Plugin
Key Deleted : HKLM\Software\V9
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00FB52B5-0779-46DD-AFC6-C6EB55F21A26}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{076A9B45-DE24-4CDF-89BE-716C279B3B55}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{148DCAEC-C91D-441D-A0E7-519A0673E7F5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{25927741-5E5B-4D27-8D8B-9188FE64373F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{27488090-768A-4D20-A938-F223F71C344C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3033124F-06BF-4829-873A-310A125B4D4C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{315C7727-2B4D-4EF9-95FA-EA6CDA9AEB9D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{33AA308B-B565-4376-AC66-59EE9B6AD13E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{35DAB87A-026F-4503-B5F1-6774E16EAFFA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4A75066C-E359-4CE6-830C-E09830A3CD2D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{54B24FA9-87E8-47FC-8589-F9D382D8B299}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5B45AC88-523C-431E-86D7-F339B2EE262E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{61789F17-B8ED-4867-BA4A-DC19DAC8EF5B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6801410E-CC88-42D6-A93B-909E95645407}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{70658616-D7AE-4F31-BD19-4F1775792E9B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E0AE9C4-366B-43F2-91FF-329D170BC335}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{8B0C188C-F6F3-484D-8225-E40262DDE633}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{8C775DBE-2382-4EAB-A48A-6859C3B9EF29}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A00289B5-2C16-4EC7-9780-2B56977ADC65}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BD3EA7C2-3AF8-4463-9A9C-6EB8E136CB02}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C6A7154F-EA0E-4DE3-AFB9-144FC620E780}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D675A74C-29F6-4AA7-A098-66373D746CB9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DA4EBFA0-6BA0-4E18-817F-304B4192C393}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F2E03ADB-A325-4084-BA22-2F2260F6A90F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F346CF98-FA03-4E7A-81B6-EB19B718F9C1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F90EAF3D-6A09-4FAF-A84C-E6E91F97561B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FBC663ED-1560-421B-BD71-F5B94DCEA09C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2E9A2DCB-F5DB-40D0-8E62-3B47DD476A77}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{328D6F78-0DBB-4F17-ACD5-26A2EA4EF251}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{59B23951-2232-4AFB-81D4-64A8A16D457A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{81E522F1-9E90-47DD-A2CE-39B0C00274A0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8E096DFB-6AB7-45C7-BF64-B313C7096529}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{98623C86-E768-4C5A-B23B-EE8CE3727CD3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{996A9940-2F2C-4486-A479-439C4A15F278}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9B7D44BA-376C-456F-B289-5034270322FD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BD8FF26-2C71-4D35-9FE2-AD8D25AECC36}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCE6E914-AEF0-4FEE-8FC8-06F9B42BF890}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BD8D5FFA-4F92-48AD-BFBE-7896916656F5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C92E6D80-EC54-45CC-AC4B-A7CF42F11B52}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D1CB564E-F38A-4F2A-8257-60E3F8BE9F34}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F293BBC0-DA7E-4CF1-9EEA-CE90CFE0DF86}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FEFBC559-C3C7-4287-B05B-49D489B80749}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{328D6F78-0DBB-4F17-ACD5-26A2EA4EF251}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{61789F17-B8ED-4867-BA4A-DC19DAC8EF5B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7695996F-9846-4A09-A037-632E45737712}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{819DC4CA-4FFF-4C2E-800D-F346471D99BC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{98623C86-E768-4C5A-B23B-EE8CE3727CD3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B803084B-B069-485E-B5D0-F9A6D318AF02}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25927741-5E5B-4D27-8D8B-9188FE64373F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27488090-768A-4D20-A938-F223F71C344C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BD3EA7C2-3AF8-4463-9A9C-6EB8E136CB02}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\searchya
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Zwinky_5qbar Uninstall
Key Deleted : HKLM\Software\Zwinky_5q
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E9A2DCB-F5DB-40D0-8E62-3B47DD476A77}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{328D6F78-0DBB-4F17-ACD5-26A2EA4EF251}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59B23951-2232-4AFB-81D4-64A8A16D457A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E522F1-9E90-47DD-A2CE-39B0C00274A0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8E096DFB-6AB7-45C7-BF64-B313C7096529}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{98623C86-E768-4C5A-B23B-EE8CE3727CD3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{996A9940-2F2C-4486-A479-439C4A15F278}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B7D44BA-376C-456F-B289-5034270322FD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BD8FF26-2C71-4D35-9FE2-AD8D25AECC36}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCE6E914-AEF0-4FEE-8FC8-06F9B42BF890}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD8D5FFA-4F92-48AD-BFBE-7896916656F5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C92E6D80-EC54-45CC-AC4B-A7CF42F11B52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D1CB564E-F38A-4F2A-8257-60E3F8BE9F34}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F293BBC0-DA7E-4CF1-9EEA-CE90CFE0DF86}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FEFBC559-C3C7-4287-B05B-49D489B80749}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Zwinky Search Scope Monitor]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Zwinky_5q Browser Plugin Loader]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]_5q.com]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{3033124F-06BF-4829-873A-310A125B4D4C}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{33AA308B-B565-4376-AC66-59EE9B6AD13E}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Page] = hxxp://feed.snap.do/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=b6f7f35a-fe3d-452c-940c-f367d1a945a3&searchtype=ds&q={searchTerms}&installDate={installDate} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Search Bar] = hxxp://feed.snap.do/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=b6f7f35a-fe3d-452c-940c-f367d1a945a3&searchtype=ds&q={searchTerms}&installDate={installDate} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://feed.snap.do/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=b6f7f35a-fe3d-452c-940c-f367d1a945a3&searchtype=ds&q={searchTerms}&installDate={installDate} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://feed.snap.do/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=b6f7f35a-fe3d-452c-940c-f367d1a945a3&searchtype=ds&q={searchTerms}&installDate={installDate} --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\SearchUrl - Default] = hxxp://feed.snap.do/?publisher=VertiTechnologyYB&dpid=VertiTechnologyYB&co=US&userid=b6f7f35a-fe3d-452c-940c-f367d1a945a3&searchtype=ds&q={searchTerms}&installDate={installDate} --> hxxp://www.google.com

-\\ Mozilla Firefox v20.0.1 (en-US)

File : C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\prefs.js

C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\user.js ... Deleted !

[OK] File is clean.

File : C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\prefs.js

Deleted : user_pref("browser.search.selectedEngine", "Web Search");
Deleted : user_pref("browser.startup.homepage", "hxxp://feed.snap.do/?publisher=VertiTechnologyYB&dpid=VertiTe[...]
Deleted : user_pref("extensions.helperbar.SmartbarDisabled", false);
Deleted : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);

-\\ Google Chrome v27.0.1453.116

File : C:\Users\Darrishi\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [36497 octets] - [26/06/2013 17:57:35]

########## EOF - C:\AdwCleaner[S1].txt - [36558 octets] ##########
  • 0

#12
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
OTL logfile created on: 6/26/2013 6:30:34 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Darrishi\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.91 Gb Total Physical Memory | 2.40 Gb Available Physical Memory | 61.50% Memory free
7.82 Gb Paging File | 5.90 Gb Available in Paging File | 75.45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.01 Gb Total Space | 380.20 Gb Free Space | 84.30% Space Free | Partition Type: NTFS

Computer Name: DARRISHI-PC | User Name: Darrishi | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/06/25 17:15:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe
PRC - [2013/03/21 15:19:46 | 001,341,664 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2012/06/11 16:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
PRC - [2012/02/06 18:26:08 | 000,066,872 | ---- | M] () -- C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe
PRC - [2012/01/03 06:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/10/01 09:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011/10/01 09:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011/09/06 14:29:20 | 004,259,648 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
PRC - [2011/08/18 12:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
PRC - [2011/08/18 12:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2011/08/01 14:56:48 | 000,460,096 | ---- | M] (SoftThinks - Dell) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
PRC - [2011/06/29 10:52:54 | 000,474,176 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
PRC - [2011/06/27 21:26:30 | 002,022,976 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
PRC - [2011/05/30 11:30:00 | 000,885,760 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
PRC - [2011/05/30 11:29:22 | 001,719,144 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
PRC - [2011/05/30 11:29:20 | 002,055,816 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
PRC - [2011/04/13 12:39:14 | 000,503,942 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
PRC - [2011/01/12 20:00:38 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/11/25 07:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
PRC - [2010/11/25 07:33:58 | 000,240,112 | ---- | M] (Sonic Solutions) -- C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
PRC - [2010/11/25 07:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
PRC - [2010/11/25 07:29:20 | 000,018,928 | ---- | M] (Sonic Solutions) -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSHelpRunner12OEM.exe
PRC - [2010/11/17 12:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
PRC - [2010/02/28 03:33:14 | 000,077,664 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe


========== Modules (No Company Name) ==========

MOD - [2013/06/20 18:55:21 | 002,297,856 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll
MOD - [2013/06/20 15:34:46 | 014,340,608 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll
MOD - [2013/06/20 15:34:13 | 012,436,480 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll
MOD - [2013/06/20 15:33:26 | 012,237,824 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll
MOD - [2013/06/20 15:31:56 | 003,347,968 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll
MOD - [2013/06/20 15:31:46 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll
MOD - [2013/02/05 04:42:31 | 000,475,648 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\27649bdc3da750e2e072dedbff56cc0b\IAStorUtil.ni.dll
MOD - [2013/02/05 04:40:31 | 000,368,128 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
MOD - [2013/02/05 04:40:13 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
MOD - [2013/02/05 04:39:39 | 001,592,832 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013/02/05 04:39:19 | 005,453,312 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013/02/05 04:39:15 | 007,989,760 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013/02/05 04:39:09 | 011,493,376 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2012/02/06 18:26:08 | 000,066,872 | ---- | M] () -- C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe
MOD - [2011/11/02 00:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/02 00:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/08/18 12:05:54 | 002,751,808 | ---- | M] () -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
MOD - [2011/06/29 10:52:54 | 000,474,176 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
MOD - [2011/06/27 21:26:30 | 002,022,976 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
MOD - [2011/06/27 21:25:30 | 000,058,944 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\DataService.dll
MOD - [2011/06/25 01:21:46 | 000,322,624 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\en-US\UI\ManagerUI.dll
MOD - [2011/06/25 01:20:26 | 000,565,968 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\sqlite3.dll
MOD - [2011/05/30 11:30:00 | 000,885,760 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
MOD - [2011/05/30 11:29:22 | 001,719,144 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
MOD - [2011/05/30 11:29:20 | 002,055,816 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
MOD - [2011/05/30 11:25:32 | 007,938,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll
MOD - [2011/05/30 11:25:32 | 002,225,664 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll
MOD - [2011/05/30 11:25:10 | 007,938,048 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
MOD - [2011/05/30 11:25:10 | 002,225,664 | ---- | M] () -- C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
MOD - [2010/11/25 00:44:02 | 000,375,280 | ---- | M] () -- c:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
MOD - [2010/11/17 12:35:34 | 000,514,544 | ---- | M] () -- C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
MOD - [2010/07/22 04:02:46 | 000,219,632 | ---- | M] () -- c:\Program Files (x86)\Roxio\OEM\Common\SonicHDDemuxer.dll
MOD - [2010/03/22 17:52:42 | 006,776,832 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\QtGui4.dll
MOD - [2010/03/16 22:28:28 | 000,326,144 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\QtXml4.dll
MOD - [2010/03/16 22:28:16 | 000,635,904 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\QtNetwork4.dll
MOD - [2010/03/16 22:28:04 | 001,926,144 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\QtCore4.dll
MOD - [2010/03/11 21:52:34 | 000,225,280 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qmng4.dll
MOD - [2010/03/11 21:52:34 | 000,028,160 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qgif4.dll
MOD - [2010/03/05 17:07:58 | 000,125,952 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qjpeg4.dll
MOD - [2010/03/05 17:07:58 | 000,031,744 | ---- | M] () -- C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qico4.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/04/09 22:56:46 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2013/03/21 15:19:46 | 001,341,664 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2011/05/27 15:06:16 | 000,301,568 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2010/09/22 20:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/03 06:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV - [2013/06/18 16:42:19 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/04/10 02:58:17 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/07/13 17:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2012/06/11 16:22:16 | 000,240,208 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE -- (BBUpdate)
SRV - [2012/06/11 16:22:16 | 000,193,616 | ---- | M] (Microsoft Corporation.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE -- (BBSvc)
SRV - [2012/01/03 06:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/10/01 09:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 09:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/08/18 12:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2011/02/01 15:20:48 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/01 15:20:46 | 000,326,168 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2011/01/12 20:00:42 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/11/25 07:34:18 | 000,219,632 | ---- | M] (Sonic Solutions) [Auto | Running] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe -- (RoxWatch12)
SRV - [2010/11/25 07:33:18 | 001,116,656 | ---- | M] (Sonic Solutions) [On_Demand | Running] -- c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe -- (RoxMediaDB12OEM)
SRV - [2010/08/25 22:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 15:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/02/20 11:07:38 | 000,213,416 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013/01/10 15:08:16 | 000,139,768 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2013/01/10 15:08:14 | 000,150,616 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/04/20 13:53:00 | 000,047,208 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tbhsd.sys -- (tbhsd)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/10/01 09:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2011/10/01 09:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2011/10/01 09:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2011/10/01 09:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2011/07/22 12:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 17:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/05/27 15:06:16 | 000,528,384 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2011/05/17 02:55:28 | 000,533,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/04/21 22:17:10 | 002,727,424 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2011/03/31 23:35:12 | 000,355,960 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2011/03/25 22:17:48 | 012,262,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/20 13:20:46 | 000,176,096 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV:64bit: - [2011/01/12 19:51:44 | 000,439,320 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/11/20 23:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 23:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 23:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/10/29 20:11:42 | 000,250,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/10/19 18:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 05:28:16 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2010/06/16 00:58:22 | 000,035,840 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BVRPMPR5a64.SYS -- (BVRPMPR5a64)
DRV:64bit: - [2010/05/17 18:24:30 | 000,049,232 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\swmsflt.sys -- (swmsflt)
DRV:64bit: - [2010/03/19 05:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/08/13 16:10:20 | 000,034,304 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\swvspser.sys -- (swvspser)
DRV:64bit: - [2009/08/04 12:42:00 | 000,211,328 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\swmx00.sys -- (SWMX00)
DRV:64bit: - [2009/08/04 12:40:58 | 000,285,696 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SWNC5E00.sys -- (SWNC5E00)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2006/11/01 14:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{2F1E335A-858A-4BE9-8F6B-D0AF1D018B53}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
IE - HKCU\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll (Yahoo! Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons:
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Darrishi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Darrishi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [2013/06/20 18:28:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/05/26 20:58:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013/06/20 18:28:27 | 000,000,000 | ---D | M]

[2013/04/18 19:49:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Extensions
[2013/06/26 18:23:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions
[2013/06/20 16:50:51 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\extensions
[2013/06/20 16:48:23 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
File not found (No name found) -- C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\EXTENSIONS\{740B3FD5-4483-469D-BE7F-8555B153BD04}
[2013/04/10 02:58:33 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013/04/10 02:57:54 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml

========== Chrome ==========

CHR - default_search_provider: Web (Enabled)
CHR - default_search_provider: search_url = http://feed.snap.do/...Date=20/06/2013
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u00C3\u201A\u00E2\u201E\u00A2 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (ChromeFrame BHO) - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\npchrome_frame.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [DellStage] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe ()
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4:64bit: - HKLM..\Run: [Stage Remote] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [AccuWeatherWidget] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe ()
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] c:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe ()
O4 - HKLM..\Run: [RoxWatchTray] c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe (Sonic Solutions)
O4 - HKLM..\Run: [SpeetItUpFree] C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe (MicroSmarts LLC.)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe File not found
O4 - HKCU..\Run: [BitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray File not found
O4 - HKCU..\Run: [DW7] "C:\Program Files (x86)\The Weather Channel\The Weather Channel App\TWCApp.exe" File not found
O4 - HKCU..\Run: [Facebook Update] C:\Users\Darrishi\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [Football News] C:\Program Files (x86)\Football News App\Football News.exe (Digital Distribution)
O4 - HKCU..\Run: [HP Deskjet 3510 series (NET)] C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKCU..\Run: [Smart PC Cleaner] C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe (Smart PC Cleaner)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8216212B-28D3-4939-95BB-9E10050C9B72}: DhcpNameServer = 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\gcf - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\gcf {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\npchrome_frame.dll (Google Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{220a4cc4-5a85-11e1-b468-24b6fd03e3c1}\Shell - "" = AutoRun
O33 - MountPoints2\{220a4cc4-5a85-11e1-b468-24b6fd03e3c1}\Shell\AutoRun\command - "" = E:\WIN\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/06/26 18:23:43 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/06/26 17:00:36 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2013/06/26 16:51:19 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Darrishi\Desktop\tdsskiller.exe
[2013/06/25 17:26:32 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.scr
[2013/06/25 17:14:49 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe
[2013/06/22 13:49:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/06/22 13:47:29 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/06/22 13:47:18 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/06/22 12:46:12 | 000,000,000 | ---D | C] -- C:\ProgramData\PC-Doctor for Windows
[2013/06/22 12:43:02 | 000,000,000 | ---D | C] -- C:\Program Files\My Dell
[2013/06/20 18:36:36 | 000,000,000 | ---D | C] -- C:\Users\Darrishi\AppData\Local\ESET
[2013/06/20 18:28:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013/06/20 18:28:23 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013/06/20 18:28:23 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013/06/18 17:24:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/06/18 17:23:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java

========== Files - Modified Within 30 Days ==========

[2013/06/26 18:36:00 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/26 18:36:00 | 000,020,928 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/26 18:28:14 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013/06/26 18:28:08 | 3149,086,720 | -HS- | M] () -- C:\hiberfil.sys
[2013/06/26 16:54:46 | 000,000,830 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2013/06/26 16:52:36 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Darrishi\Desktop\tdsskiller.exe
[2013/06/26 16:38:06 | 562,445,557 | ---- | M] () -- C:\windows\MEMORY.DMP
[2013/06/25 17:26:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.scr
[2013/06/25 17:15:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darrishi\Desktop\OTL.exe
[2013/06/25 14:43:40 | 000,083,108 | ---- | M] () -- C:\Users\Darrishi\Documents\Resume D.pdf
[2013/06/25 13:44:00 | 000,000,902 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/25 13:37:01 | 000,000,940 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-2156880048-3041143366-1235793399-1000UA.job
[2013/06/25 11:05:58 | 000,000,918 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-2156880048-3041143366-1235793399-1000Core.job
[2013/06/25 11:03:24 | 000,814,580 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2013/06/25 11:03:24 | 000,686,034 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2013/06/25 11:03:24 | 000,130,216 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2013/06/22 13:49:58 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/20 15:50:54 | 000,002,104 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/06/20 15:25:20 | 000,322,280 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2013/06/19 11:50:48 | 000,000,127 | ---- | M] () -- C:\windows\SysNative\MRT.INI
[2013/06/18 14:15:49 | 000,000,894 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore1ce6c4fdc8756cc.job
[2013/05/28 16:24:14 | 334,200,831 | ---- | M] () -- C:\Users\Darrishi\Documents\DVD.ISO

========== Files Created - No Company Name ==========

[2013/06/25 14:43:39 | 000,083,108 | ---- | C] () -- C:\Users\Darrishi\Documents\Resume D.pdf
[2013/06/22 13:49:58 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/06/20 16:50:49 | 000,001,166 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/06/18 14:15:49 | 000,000,894 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore1ce6c4fdc8756cc.job
[2013/05/28 16:22:27 | 334,200,831 | ---- | C] () -- C:\Users\Darrishi\Documents\DVD.ISO
[2013/02/17 13:49:38 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2012/06/12 13:40:17 | 000,007,168 | ---- | C] () -- C:\Users\Darrishi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/10 00:13:40 | 000,000,197 | ---- | C] () -- C:\Users\Darrishi\AppData\Roaming\burnaware.ini
[2012/04/09 23:21:57 | 000,000,000 | ---- | C] () -- C:\Users\Darrishi\AppData\Local\rx_image32.Cache
[2011/12/10 02:21:29 | 000,963,116 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2011/12/10 02:21:28 | 000,216,876 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2011/12/10 02:21:28 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2011/12/10 02:20:50 | 000,000,096 | ---- | C] () -- C:\windows\LaunApp.ini
[2011/12/10 02:20:23 | 000,000,023 | ---- | C] () -- C:\windows\WisSysInfo.ini
[2011/12/10 02:20:22 | 000,000,325 | ---- | C] () -- C:\windows\Prelaunch.ini
[2011/12/10 02:20:22 | 000,000,271 | ---- | C] () -- C:\windows\WisPriority.ini
[2011/12/10 02:20:22 | 000,000,032 | ---- | C] () -- C:\windows\WisHWDest.ini
[2011/12/10 02:20:22 | 000,000,028 | ---- | C] () -- C:\windows\WisLangCode.ini
[2011/12/10 01:06:19 | 000,017,776 | ---- | C] () -- C:\windows\EvtMessage.dll
[2011/12/10 01:02:48 | 000,808,796 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011/07/29 07:40:44 | 000,000,035 | ---- | C] () -- C:\windows\DELL_LANGCODE.ini
[2011/07/29 07:40:44 | 000,000,033 | ---- | C] () -- C:\windows\DELL_OSTYPE.ini

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/27 01:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/27 00:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/05/11 08:08:04 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\BitComet
[2012/02/12 12:33:48 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Blio
[2012/02/08 22:07:34 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Fingertapps
[2012/05/08 17:38:10 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\FontCatch
[2012/04/10 00:26:44 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\HandBrake
[2012/02/20 19:21:42 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\IDT
[2012/04/10 14:36:35 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\ImgBurn
[2012/02/08 22:07:19 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Leadertech
[2012/04/24 23:04:06 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\MusicNet
[2013/01/17 21:38:33 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\MusicOasis
[2012/03/08 17:50:52 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\PCDr
[2012/05/08 18:03:23 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\PlayFirst
[2012/02/18 20:10:53 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\Sierra Wireless
[2013/06/25 12:56:13 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\SoftGrid Client
[2012/02/11 16:32:46 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\TP
[2013/04/05 20:27:24 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\TypingTrainer8
[2012/02/18 19:12:40 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\YoudaGames
[2013/04/03 12:30:43 | 000,000,000 | ---D | M] -- C:\Users\Darrishi\AppData\Roaming\ZinioReader4

========== Purity Check ==========



< End of report >
  • 0

#13
Phel

Phel

    Trusted Helper

  • Malware Removal
  • 1,386 posts
How your computer is running now?

Please, follow these steps:

Step 1. TDSSKiller scan.

Please, run TDSSKiller scan once more, as it is written in Step 1 in my previous message. After that post a new log.

Step 2. AdwCleaner scan.

  • Right click on adwcleaner.exe file on your Desktop->Run as Administrator.
  • Adwcleaner window should appear.
  • Click on the Delete button.
  • Click on OK.
  • Computer will be rebooted automatically, when program will finish it's job.

After reboot:

  • Right click on adwcleaner.exe file on your Desktop->Run as Administrator.
  • AdwCleaner window should appear.
  • Click on the Search button.
  • After scan Notepad window with report should appear. Post the contents of the report in your next message.

Step 3. Changing Chrome Search provider.

Your current Chrome Search provider is malicious.

Please, follow this instruction and set your Search provider to www.google.com or to something else, what you you want.

Step 4. OTL fix.

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    File not found (No name found) -- C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\EXTENSIONS\{740B3FD5-4483-469D-BE7F-8555B153BD04}
    O4 - HKLM..\Run: [SpeetItUpFree] C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe (MicroSmarts LLC.)
    O4 - HKCU..\Run: [Football News] C:\Program Files (x86)\Football News App\Football News.exe (Digital Distribution)
    O4 - HKCU..\Run: [DW7] "C:\Program Files (x86)\The Weather Channel\The Weather Channel App\TWCApp.exe" File not found
    O4 - HKCU..\Run: [BitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray File not found
    O4 - HKCU..\Run: [Smart PC Cleaner] C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe (Smart PC Cleaner)
    
    :Files
    C:\Program Files (x86)\SpeedItup Free
    C:\Program Files (x86)\Football News App
    C:\Program Files (x86)\Smart PC Cleaner
    
    :Commands 
    [REBOOT]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

So, please, don't forget to post in your next message:

  • TDSSKiller log
  • OTL log
  • AdwCleaner log

  • 0

#14
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
14:06:13.0429 1072 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
14:06:13.0959 1072 ============================================================
14:06:13.0959 1072 Current date / time: 2013/06/27 14:06:13.0959
14:06:13.0959 1072 SystemInfo:
14:06:13.0959 1072
14:06:13.0959 1072 OS Version: 6.1.7601 ServicePack: 1.0
14:06:13.0959 1072 Product type: Workstation
14:06:13.0959 1072 ComputerName: DARRISHI-PC
14:06:13.0959 1072 UserName: Darrishi
14:06:13.0959 1072 Windows directory: C:\windows
14:06:13.0959 1072 System windows directory: C:\windows
14:06:13.0959 1072 Running under WOW64
14:06:13.0959 1072 Processor architecture: Intel x64
14:06:13.0959 1072 Number of processors: 2
14:06:13.0959 1072 Page size: 0x1000
14:06:13.0959 1072 Boot type: Normal boot
14:06:13.0959 1072 ============================================================
14:06:41.0556 1072 BG loaded
14:06:44.0067 1072 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:06:44.0083 1072 ============================================================
14:06:44.0083 1072 \Device\Harddisk0\DR0:
14:06:44.0083 1072 MBR partitions:
14:06:44.0083 1072 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
14:06:44.0083 1072 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
14:06:44.0083 1072 ============================================================
14:06:44.0192 1072 C: <-> \Device\Harddisk0\DR0\Partition2
14:06:44.0192 1072 ============================================================
14:06:44.0192 1072 Initialize success
14:06:44.0192 1072 ============================================================
14:10:05.0368 0584 ============================================================
14:10:05.0368 0584 Scan started
14:10:05.0368 0584 Mode: Manual; SigCheck; TDLFS;
14:10:05.0368 0584 ============================================================
14:10:07.0488 0584 ================ Scan system memory ========================
14:10:07.0488 0584 System memory - ok
14:10:07.0489 0584 ================ Scan services =============================
14:10:07.0847 0584 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
14:10:07.0935 0584 !SASCORE ( UnsignedFile.Multi.Generic ) - warning
14:10:07.0935 0584 !SASCORE - detected UnsignedFile.Multi.Generic (1)
14:10:08.0246 0584 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
14:10:08.0349 0584 1394ohci - ok
14:10:08.0379 0584 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
14:10:08.0399 0584 ACPI - ok
14:10:08.0434 0584 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
14:10:08.0543 0584 AcpiPmi - ok
14:10:08.0646 0584 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:10:08.0655 0584 AdobeARMservice - ok
14:10:08.0846 0584 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:10:08.0863 0584 AdobeFlashPlayerUpdateSvc - ok
14:10:08.0911 0584 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
14:10:08.0960 0584 adp94xx - ok
14:10:09.0013 0584 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
14:10:09.0058 0584 adpahci - ok
14:10:09.0085 0584 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
14:10:09.0102 0584 adpu320 - ok
14:10:09.0142 0584 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
14:10:09.0297 0584 AeLookupSvc - ok
14:10:09.0363 0584 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
14:10:09.0433 0584 AESTFilters - ok
14:10:09.0493 0584 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
14:10:09.0559 0584 AFD - ok
14:10:09.0588 0584 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
14:10:09.0616 0584 agp440 - ok
14:10:09.0671 0584 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
14:10:09.0769 0584 ALG - ok
14:10:09.0799 0584 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
14:10:09.0842 0584 aliide - ok
14:10:09.0881 0584 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
14:10:09.0931 0584 amdide - ok
14:10:09.0960 0584 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
14:10:10.0021 0584 AmdK8 - ok
14:10:10.0058 0584 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
14:10:10.0166 0584 AmdPPM - ok
14:10:10.0215 0584 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
14:10:10.0287 0584 amdsata - ok
14:10:10.0320 0584 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
14:10:10.0371 0584 amdsbs - ok
14:10:10.0388 0584 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
14:10:10.0413 0584 amdxata - ok
14:10:10.0446 0584 [ 6690E42CED5D067233ABAD42DA141213 ] ApfiltrService C:\windows\system32\DRIVERS\Apfiltr.sys
14:10:10.0509 0584 ApfiltrService - ok
14:10:10.0552 0584 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
14:10:10.0744 0584 AppID - ok
14:10:10.0773 0584 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
14:10:10.0848 0584 AppIDSvc - ok
14:10:11.0047 0584 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\windows\System32\appinfo.dll
14:10:11.0195 0584 Appinfo - ok
14:10:11.0258 0584 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:10:11.0285 0584 Apple Mobile Device - ok
14:10:11.0313 0584 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
14:10:11.0339 0584 arc - ok
14:10:11.0383 0584 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
14:10:11.0423 0584 arcsas - ok
14:10:11.0552 0584 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:10:11.0601 0584 aspnet_state - ok
14:10:11.0629 0584 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
14:10:11.0762 0584 AsyncMac - ok
14:10:11.0812 0584 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
14:10:11.0855 0584 atapi - ok
14:10:11.0967 0584 [ 5493ED5D300AFC7A9A0A87FCA08E5381 ] athr C:\windows\system32\DRIVERS\athrx.sys
14:10:12.0071 0584 athr - ok
14:10:12.0111 0584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
14:10:12.0190 0584 AudioEndpointBuilder - ok
14:10:12.0221 0584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
14:10:12.0263 0584 AudioSrv - ok
14:10:12.0285 0584 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
14:10:12.0381 0584 AxInstSV - ok
14:10:12.0438 0584 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
14:10:12.0544 0584 b06bdrv - ok
14:10:12.0573 0584 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
14:10:12.0655 0584 b57nd60a - ok
14:10:12.0793 0584 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
14:10:12.0828 0584 BBSvc - ok
14:10:13.0113 0584 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
14:10:13.0163 0584 BBUpdate - ok
14:10:13.0253 0584 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
14:10:13.0332 0584 BDESVC - ok
14:10:13.0366 0584 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
14:10:13.0457 0584 Beep - ok
14:10:13.0528 0584 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
14:10:13.0624 0584 BFE - ok
14:10:13.0655 0584 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
14:10:13.0745 0584 BITS - ok
14:10:13.0799 0584 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
14:10:13.0863 0584 blbdrive - ok
14:10:13.0909 0584 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:10:13.0944 0584 Bonjour Service - ok
14:10:13.0966 0584 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
14:10:14.0037 0584 bowser - ok
14:10:14.0070 0584 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
14:10:14.0128 0584 BrFiltLo - ok
14:10:14.0158 0584 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
14:10:14.0174 0584 BrFiltUp - ok
14:10:14.0195 0584 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
14:10:14.0272 0584 Browser - ok
14:10:14.0290 0584 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
14:10:14.0389 0584 Brserid - ok
14:10:14.0405 0584 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
14:10:14.0475 0584 BrSerWdm - ok
14:10:14.0516 0584 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
14:10:14.0596 0584 BrUsbMdm - ok
14:10:14.0605 0584 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
14:10:14.0628 0584 BrUsbSer - ok
14:10:14.0690 0584 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
14:10:14.0797 0584 BthEnum - ok
14:10:14.0867 0584 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
14:10:15.0010 0584 BTHMODEM - ok
14:10:15.0105 0584 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
14:10:15.0158 0584 BthPan - ok
14:10:15.0220 0584 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
14:10:15.0342 0584 BTHPORT - ok
14:10:15.0376 0584 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
14:10:15.0459 0584 bthserv - ok
14:10:15.0489 0584 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
14:10:15.0546 0584 BTHUSB - ok
14:10:15.0614 0584 [ 9887CA12F407D7FBC7F48F3678F5F0B6 ] BVRPMPR5a64 C:\windows\system32\drivers\BVRPMPR5a64.SYS
14:10:15.0672 0584 BVRPMPR5a64 - ok
14:10:15.0699 0584 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
14:10:15.0769 0584 cdfs - ok
14:10:15.0825 0584 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
14:10:15.0883 0584 cdrom - ok
14:10:15.0928 0584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
14:10:16.0004 0584 CertPropSvc - ok
14:10:16.0036 0584 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
14:10:16.0092 0584 circlass - ok
14:10:16.0123 0584 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
14:10:16.0168 0584 CLFS - ok
14:10:16.0233 0584 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:10:16.0258 0584 clr_optimization_v2.0.50727_32 - ok
14:10:16.0294 0584 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:10:16.0315 0584 clr_optimization_v2.0.50727_64 - ok
14:10:16.0364 0584 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:10:16.0465 0584 clr_optimization_v4.0.30319_32 - ok
14:10:16.0492 0584 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:10:16.0572 0584 clr_optimization_v4.0.30319_64 - ok
14:10:16.0609 0584 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
14:10:16.0672 0584 CmBatt - ok
14:10:16.0701 0584 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
14:10:16.0745 0584 cmdide - ok
14:10:16.0779 0584 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
14:10:16.0858 0584 CNG - ok
14:10:16.0976 0584 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
14:10:17.0015 0584 Compbatt - ok
14:10:17.0081 0584 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
14:10:17.0146 0584 CompositeBus - ok
14:10:17.0187 0584 COMSysApp - ok
14:10:17.0204 0584 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
14:10:17.0222 0584 crcdisk - ok
14:10:17.0263 0584 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\windows\system32\cryptsvc.dll
14:10:17.0324 0584 CryptSvc - ok
14:10:17.0423 0584 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\windows\system32\DRIVERS\CtClsFlt.sys
14:10:17.0538 0584 CtClsFlt - ok
14:10:17.0634 0584 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
14:10:17.0674 0584 cvhsvc - ok
14:10:17.0710 0584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
14:10:17.0816 0584 DcomLaunch - ok
14:10:17.0856 0584 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
14:10:17.0952 0584 defragsvc - ok
14:10:17.0988 0584 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
14:10:18.0071 0584 DfsC - ok
14:10:18.0124 0584 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
14:10:18.0220 0584 Dhcp - ok
14:10:18.0252 0584 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
14:10:18.0340 0584 discache - ok
14:10:18.0405 0584 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
14:10:18.0453 0584 Disk - ok
14:10:18.0487 0584 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
14:10:18.0554 0584 Dnscache - ok
14:10:18.0570 0584 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
14:10:18.0648 0584 dot3svc - ok
14:10:18.0679 0584 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
14:10:18.0760 0584 DPS - ok
14:10:18.0804 0584 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
14:10:18.0896 0584 drmkaud - ok
14:10:19.0056 0584 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
14:10:19.0111 0584 DXGKrnl - ok
14:10:19.0180 0584 [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] eamonm C:\windows\system32\DRIVERS\eamonm.sys
14:10:19.0225 0584 eamonm - ok
14:10:19.0268 0584 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
14:10:19.0362 0584 EapHost - ok
14:10:19.0466 0584 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
14:10:19.0624 0584 ebdrv - ok
14:10:19.0667 0584 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
14:10:19.0726 0584 EFS - ok
14:10:19.0787 0584 [ 9E39134330C18CBAC0F24C1283701D7E ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys
14:10:19.0832 0584 ehdrv - ok
14:10:19.0909 0584 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
14:10:20.0028 0584 ehRecvr - ok
14:10:20.0050 0584 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
14:10:20.0065 0584 ehSched - ok
14:10:20.0280 0584 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
14:10:20.0324 0584 ekrn - ok
14:10:20.0375 0584 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
14:10:20.0446 0584 elxstor - ok
14:10:20.0492 0584 [ B4E8DC817963B256537B1EC09AF0647E ] epfwwfpr C:\windows\system32\DRIVERS\epfwwfpr.sys
14:10:20.0516 0584 epfwwfpr - ok
14:10:20.0530 0584 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
14:10:20.0575 0584 ErrDev - ok
14:10:20.0645 0584 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
14:10:20.0715 0584 EventSystem - ok
14:10:20.0739 0584 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
14:10:20.0780 0584 exfat - ok
14:10:20.0811 0584 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
14:10:20.0985 0584 fastfat - ok
14:10:21.0063 0584 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
14:10:21.0151 0584 Fax - ok
14:10:21.0172 0584 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
14:10:21.0241 0584 fdc - ok
14:10:21.0282 0584 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
14:10:21.0370 0584 fdPHost - ok
14:10:21.0393 0584 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
14:10:21.0434 0584 FDResPub - ok
14:10:21.0470 0584 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
14:10:21.0500 0584 FileInfo - ok
14:10:21.0516 0584 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
14:10:21.0586 0584 Filetrace - ok
14:10:21.0616 0584 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
14:10:21.0640 0584 flpydisk - ok
14:10:21.0664 0584 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
14:10:21.0678 0584 FltMgr - ok
14:10:21.0745 0584 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\windows\system32\FntCache.dll
14:10:21.0798 0584 FontCache - ok
14:10:21.0858 0584 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:10:21.0879 0584 FontCache3.0.0.0 - ok
14:10:21.0901 0584 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
14:10:21.0913 0584 FsDepends - ok
14:10:21.0935 0584 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
14:10:21.0951 0584 Fs_Rec - ok
14:10:21.0986 0584 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
14:10:22.0021 0584 fvevol - ok
14:10:22.0039 0584 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
14:10:22.0090 0584 gagp30kx - ok
14:10:22.0109 0584 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
14:10:22.0162 0584 GEARAspiWDM - ok
14:10:22.0211 0584 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
14:10:22.0263 0584 gpsvc - ok
14:10:22.0337 0584 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:10:22.0362 0584 gupdate - ok
14:10:22.0391 0584 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:10:22.0401 0584 gupdatem - ok
14:10:22.0456 0584 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:10:22.0488 0584 gusvc - ok
14:10:22.0508 0584 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
14:10:22.0583 0584 hcw85cir - ok
14:10:22.0603 0584 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
14:10:22.0677 0584 HdAudAddService - ok
14:10:22.0702 0584 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
14:10:22.0737 0584 HDAudBus - ok
14:10:22.0756 0584 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
14:10:22.0819 0584 HidBatt - ok
14:10:22.0846 0584 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
14:10:22.0962 0584 HidBth - ok
14:10:23.0027 0584 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
14:10:23.0111 0584 HidIr - ok
14:10:23.0134 0584 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
14:10:23.0209 0584 hidserv - ok
14:10:23.0251 0584 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
14:10:23.0277 0584 HidUsb - ok
14:10:23.0325 0584 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
14:10:23.0412 0584 hkmsvc - ok
14:10:23.0436 0584 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
14:10:23.0504 0584 HomeGroupListener - ok
14:10:23.0539 0584 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
14:10:23.0588 0584 HomeGroupProvider - ok
14:10:23.0658 0584 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
14:10:23.0691 0584 HpSAMD - ok
14:10:23.0734 0584 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
14:10:23.0824 0584 HTTP - ok
14:10:23.0848 0584 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
14:10:23.0860 0584 hwpolicy - ok
14:10:23.0882 0584 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
14:10:23.0909 0584 i8042prt - ok
14:10:23.0950 0584 [ D469B77687E12FE43E344806740B624D ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
14:10:23.0977 0584 iaStor - ok
14:10:24.0026 0584 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:10:24.0047 0584 IAStorDataMgrSvc - ok
14:10:24.0078 0584 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
14:10:24.0169 0584 iaStorV - ok
14:10:24.0230 0584 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:10:24.0298 0584 idsvc - ok
14:10:24.0586 0584 [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
14:10:24.0835 0584 igfx - ok
14:10:24.0880 0584 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
14:10:24.0901 0584 iirsp - ok
14:10:24.0947 0584 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
14:10:25.0033 0584 IKEEXT - ok
14:10:25.0090 0584 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
14:10:25.0135 0584 IntcDAud - ok
14:10:25.0140 0584 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
14:10:25.0152 0584 intelide - ok
14:10:25.0188 0584 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
14:10:25.0237 0584 intelppm - ok
14:10:25.0271 0584 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
14:10:25.0358 0584 IPBusEnum - ok
14:10:25.0390 0584 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
14:10:25.0442 0584 IpFilterDriver - ok
14:10:25.0490 0584 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
14:10:25.0575 0584 iphlpsvc - ok
14:10:25.0590 0584 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
14:10:25.0640 0584 IPMIDRV - ok
14:10:25.0680 0584 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
14:10:25.0767 0584 IPNAT - ok
14:10:25.0875 0584 [ 0FF335D687C85097725A53458160E81E ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:10:25.0900 0584 iPod Service - ok
14:10:25.0930 0584 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
14:10:25.0959 0584 IRENUM - ok
14:10:25.0979 0584 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
14:10:26.0003 0584 isapnp - ok
14:10:26.0026 0584 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
14:10:26.0077 0584 iScsiPrt - ok
14:10:26.0090 0584 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
14:10:26.0102 0584 kbdclass - ok
14:10:26.0131 0584 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
14:10:26.0184 0584 kbdhid - ok
14:10:26.0214 0584 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
14:10:26.0244 0584 KeyIso - ok
14:10:26.0264 0584 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
14:10:26.0282 0584 KSecDD - ok
14:10:26.0300 0584 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
14:10:26.0336 0584 KSecPkg - ok
14:10:26.0353 0584 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
14:10:26.0442 0584 ksthunk - ok
14:10:26.0493 0584 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
14:10:26.0580 0584 KtmRm - ok
14:10:26.0642 0584 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
14:10:26.0739 0584 LanmanServer - ok
14:10:26.0777 0584 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
14:10:26.0860 0584 LanmanWorkstation - ok
14:10:26.0899 0584 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
14:10:27.0024 0584 lltdio - ok
14:10:27.0062 0584 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
14:10:27.0163 0584 lltdsvc - ok
14:10:27.0193 0584 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
14:10:27.0230 0584 lmhosts - ok
14:10:27.0295 0584 [ 98B16E756243BEA9410E32025B19C06F ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:10:27.0325 0584 LMS - ok
14:10:27.0351 0584 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
14:10:27.0408 0584 LSI_FC - ok
14:10:27.0430 0584 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
14:10:27.0476 0584 LSI_SAS - ok
14:10:27.0480 0584 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
14:10:27.0505 0584 LSI_SAS2 - ok
14:10:27.0514 0584 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
14:10:27.0547 0584 LSI_SCSI - ok
14:10:27.0573 0584 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
14:10:27.0648 0584 luafv - ok
14:10:27.0698 0584 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
14:10:27.0747 0584 Mcx2Svc - ok
14:10:27.0769 0584 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
14:10:27.0822 0584 megasas - ok
14:10:27.0842 0584 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
14:10:27.0880 0584 MegaSR - ok
14:10:27.0896 0584 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
14:10:27.0906 0584 MEIx64 - ok
14:10:27.0942 0584 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
14:10:28.0031 0584 MMCSS - ok
14:10:28.0060 0584 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
14:10:28.0166 0584 Modem - ok
14:10:28.0188 0584 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
14:10:28.0235 0584 monitor - ok
14:10:28.0272 0584 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
14:10:28.0284 0584 mouclass - ok
14:10:28.0321 0584 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
14:10:28.0375 0584 mouhid - ok
14:10:28.0404 0584 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
14:10:28.0434 0584 mountmgr - ok
14:10:28.0540 0584 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:10:28.0572 0584 MozillaMaintenance - ok
14:10:28.0601 0584 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
14:10:28.0633 0584 mpio - ok
14:10:28.0647 0584 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
14:10:28.0697 0584 mpsdrv - ok
14:10:28.0748 0584 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
14:10:28.0842 0584 MpsSvc - ok
14:10:28.0871 0584 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
14:10:28.0948 0584 MRxDAV - ok
14:10:28.0987 0584 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
14:10:29.0064 0584 mrxsmb - ok
14:10:29.0102 0584 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
14:10:29.0156 0584 mrxsmb10 - ok
14:10:29.0175 0584 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
14:10:29.0218 0584 mrxsmb20 - ok
14:10:29.0249 0584 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
14:10:29.0288 0584 msahci - ok
14:10:29.0301 0584 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
14:10:29.0330 0584 msdsm - ok
14:10:29.0348 0584 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
14:10:29.0398 0584 MSDTC - ok
14:10:29.0432 0584 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
14:10:29.0483 0584 Msfs - ok
14:10:29.0492 0584 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
14:10:29.0565 0584 mshidkmdf - ok
14:10:29.0590 0584 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
14:10:29.0633 0584 msisadrv - ok
14:10:29.0671 0584 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
14:10:29.0770 0584 MSiSCSI - ok
14:10:29.0774 0584 msiserver - ok
14:10:29.0819 0584 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
14:10:29.0895 0584 MSKSSRV - ok
14:10:29.0921 0584 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
14:10:30.0550 0584 MSPCLOCK - ok
14:10:30.0600 0584 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
14:10:30.0706 0584 MSPQM - ok
14:10:30.0755 0584 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
14:10:30.0801 0584 MsRPC - ok
14:10:30.0823 0584 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
14:10:30.0834 0584 mssmbios - ok
14:10:30.0848 0584 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
14:10:30.0936 0584 MSTEE - ok
14:10:30.0940 0584 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
14:10:30.0956 0584 MTConfig - ok
14:10:30.0972 0584 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
14:10:31.0041 0584 Mup - ok
14:10:31.0091 0584 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
14:10:31.0181 0584 napagent - ok
14:10:31.0239 0584 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
14:10:31.0369 0584 NativeWifiP - ok
14:10:31.0508 0584 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
14:10:31.0537 0584 NAUpdate - ok
14:10:31.0584 0584 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
14:10:31.0653 0584 NDIS - ok
14:10:31.0688 0584 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
14:10:31.0777 0584 NdisCap - ok
14:10:31.0804 0584 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
14:10:31.0841 0584 NdisTapi - ok
14:10:31.0857 0584 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
14:10:31.0895 0584 Ndisuio - ok
14:10:31.0910 0584 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
14:10:31.0996 0584 NdisWan - ok
14:10:32.0042 0584 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
14:10:32.0114 0584 NDProxy - ok
14:10:32.0138 0584 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
14:10:32.0227 0584 NetBIOS - ok
14:10:32.0255 0584 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
14:10:32.0293 0584 NetBT - ok
14:10:32.0310 0584 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
14:10:32.0322 0584 Netlogon - ok
14:10:32.0366 0584 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
14:10:32.0468 0584 Netman - ok
14:10:32.0501 0584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:32.0565 0584 NetMsmqActivator - ok
14:10:32.0573 0584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:32.0583 0584 NetPipeActivator - ok
14:10:32.0604 0584 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
14:10:32.0682 0584 netprofm - ok
14:10:32.0687 0584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:32.0697 0584 NetTcpActivator - ok
14:10:32.0701 0584 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:10:32.0711 0584 NetTcpPortSharing - ok
14:10:32.0760 0584 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
14:10:32.0810 0584 nfrd960 - ok
14:10:32.0844 0584 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
14:10:32.0904 0584 NlaSvc - ok
14:10:33.0052 0584 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
14:10:33.0105 0584 NOBU - ok
14:10:33.0116 0584 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
14:10:33.0181 0584 Npfs - ok
14:10:33.0209 0584 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
14:10:33.0306 0584 nsi - ok
14:10:33.0340 0584 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
14:10:33.0406 0584 nsiproxy - ok
14:10:33.0489 0584 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
14:10:33.0610 0584 Ntfs - ok
14:10:33.0622 0584 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
14:10:33.0671 0584 Null - ok
14:10:33.0686 0584 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
14:10:33.0715 0584 nvraid - ok
14:10:33.0734 0584 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
14:10:33.0822 0584 nvstor - ok
14:10:33.0847 0584 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
14:10:33.0877 0584 nv_agp - ok
14:10:33.0889 0584 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
14:10:33.0917 0584 ohci1394 - ok
14:10:33.0952 0584 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:10:33.0981 0584 ose - ok
14:10:34.0173 0584 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:10:34.0387 0584 osppsvc - ok
14:10:34.0410 0584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
14:10:34.0486 0584 p2pimsvc - ok
14:10:34.0514 0584 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
14:10:34.0559 0584 p2psvc - ok
14:10:34.0591 0584 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
14:10:34.0627 0584 Parport - ok
14:10:34.0660 0584 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
14:10:34.0693 0584 partmgr - ok
14:10:34.0700 0584 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
14:10:34.0771 0584 PcaSvc - ok
14:10:34.0800 0584 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
14:10:34.0827 0584 pci - ok
14:10:34.0861 0584 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
14:10:34.0898 0584 pciide - ok
14:10:34.0916 0584 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
14:10:34.0947 0584 pcmcia - ok
14:10:34.0960 0584 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
14:10:34.0972 0584 pcw - ok
14:10:34.0998 0584 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
14:10:35.0109 0584 PEAUTH - ok
14:10:35.0195 0584 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
14:10:35.0261 0584 PerfHost - ok
14:10:35.0352 0584 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
14:10:35.0486 0584 pla - ok
14:10:35.0532 0584 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
14:10:35.0612 0584 PlugPlay - ok
14:10:35.0640 0584 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
14:10:35.0691 0584 PNRPAutoReg - ok
14:10:35.0719 0584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
14:10:35.0734 0584 PNRPsvc - ok
14:10:35.0768 0584 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
14:10:35.0861 0584 PolicyAgent - ok
14:10:35.0909 0584 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
14:10:35.0976 0584 Power - ok
14:10:36.0021 0584 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
14:10:36.0131 0584 PptpMiniport - ok
14:10:36.0160 0584 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
14:10:36.0234 0584 Processor - ok
14:10:36.0278 0584 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
14:10:36.0353 0584 ProfSvc - ok
14:10:36.0361 0584 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
14:10:36.0373 0584 ProtectedStorage - ok
14:10:36.0404 0584 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
14:10:36.0492 0584 Psched - ok
14:10:36.0525 0584 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
14:10:36.0567 0584 PxHlpa64 - ok
14:10:36.0643 0584 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
14:10:36.0760 0584 ql2300 - ok
14:10:36.0769 0584 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
14:10:36.0784 0584 ql40xx - ok
14:10:36.0815 0584 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
14:10:36.0855 0584 QWAVE - ok
14:10:36.0869 0584 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
14:10:36.0923 0584 QWAVEdrv - ok
14:10:36.0926 0584 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
14:10:36.0982 0584 RasAcd - ok
14:10:37.0027 0584 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
14:10:37.0074 0584 RasAgileVpn - ok
14:10:37.0105 0584 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
14:10:37.0171 0584 RasAuto - ok
14:10:37.0213 0584 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
14:10:37.0306 0584 Rasl2tp - ok
14:10:37.0354 0584 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
14:10:37.0402 0584 RasMan - ok
14:10:37.0424 0584 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
14:10:37.0506 0584 RasPppoe - ok
14:10:37.0531 0584 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
14:10:37.0597 0584 RasSstp - ok
14:10:37.0674 0584 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
14:10:37.0779 0584 rdbss - ok
14:10:37.0823 0584 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
14:10:37.0918 0584 rdpbus - ok
14:10:37.0960 0584 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
14:10:38.0051 0584 RDPCDD - ok
14:10:38.0074 0584 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
14:10:38.0146 0584 RDPENCDD - ok
14:10:38.0181 0584 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
14:10:38.0235 0584 RDPREFMP - ok
14:10:38.0272 0584 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
14:10:38.0324 0584 RDPWD - ok
14:10:38.0355 0584 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
14:10:38.0393 0584 rdyboost - ok
14:10:38.0420 0584 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
14:10:38.0507 0584 RemoteAccess - ok
14:10:38.0559 0584 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
14:10:38.0627 0584 RemoteRegistry - ok
14:10:38.0672 0584 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
14:10:38.0770 0584 RFCOMM - ok
14:10:38.0937 0584 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
14:10:38.0964 0584 RoxMediaDB12OEM - ok
14:10:39.0012 0584 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
14:10:39.0023 0584 RoxWatch12 - ok
14:10:39.0063 0584 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
14:10:39.0125 0584 RpcEptMapper - ok
14:10:39.0151 0584 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
14:10:39.0166 0584 RpcLocator - ok
14:10:39.0191 0584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
14:10:39.0252 0584 RpcSs - ok
14:10:39.0272 0584 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
14:10:39.0321 0584 rspndr - ok
14:10:39.0370 0584 [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
14:10:39.0403 0584 RSUSBSTOR - ok
14:10:39.0430 0584 [ E50CFB92986DCAB49DE93788FD695813 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
14:10:39.0467 0584 RTL8167 - ok
14:10:39.0486 0584 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
14:10:39.0497 0584 SamSs - ok
14:10:39.0541 0584 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
14:10:39.0562 0584 SASDIFSV - ok
14:10:39.0567 0584 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
14:10:39.0575 0584 SASKUTIL - ok
14:10:39.0609 0584 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
14:10:39.0648 0584 sbp2port - ok
14:10:39.0673 0584 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
14:10:39.0754 0584 SCardSvr - ok
14:10:39.0767 0584 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
14:10:39.0835 0584 scfilter - ok
14:10:39.0890 0584 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
14:10:40.0007 0584 Schedule - ok
14:10:40.0039 0584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
14:10:40.0094 0584 SCPolicySvc - ok
14:10:40.0166 0584 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
14:10:40.0261 0584 SDRSVC - ok
14:10:40.0295 0584 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
14:10:40.0382 0584 secdrv - ok
14:10:40.0416 0584 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
14:10:40.0454 0584 seclogon - ok
14:10:40.0468 0584 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
14:10:40.0547 0584 SENS - ok
14:10:40.0579 0584 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
14:10:40.0657 0584 SensrSvc - ok
14:10:40.0709 0584 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
14:10:40.0787 0584 Serenum - ok
14:10:40.0821 0584 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
14:10:40.0934 0584 Serial - ok
14:10:40.0963 0584 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
14:10:41.0016 0584 sermouse - ok
14:10:41.0068 0584 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
14:10:41.0144 0584 SessionEnv - ok
14:10:41.0148 0584 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
14:10:41.0179 0584 sffdisk - ok
14:10:41.0183 0584 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
14:10:41.0232 0584 sffp_mmc - ok
14:10:41.0256 0584 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
14:10:41.0310 0584 sffp_sd - ok
14:10:41.0340 0584 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
14:10:41.0393 0584 sfloppy - ok
14:10:41.0454 0584 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys
14:10:41.0494 0584 Sftfs - ok
14:10:41.0603 0584 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:10:41.0639 0584 sftlist - ok
14:10:41.0668 0584 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys
14:10:41.0683 0584 Sftplay - ok
14:10:41.0694 0584 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys
14:10:41.0716 0584 Sftredir - ok
14:10:41.0918 0584 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
14:10:41.0964 0584 SftService - ok
14:10:41.0978 0584 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys
14:10:41.0987 0584 Sftvol - ok
14:10:42.0028 0584 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:10:42.0056 0584 sftvsa - ok
14:10:42.0101 0584 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
14:10:42.0196 0584 SharedAccess - ok
14:10:42.0227 0584 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
14:10:42.0312 0584 ShellHWDetection - ok
14:10:42.0343 0584 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
14:10:42.0389 0584 SiSRaid2 - ok
14:10:42.0412 0584 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
14:10:42.0470 0584 SiSRaid4 - ok
14:10:42.0484 0584 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
14:10:42.0566 0584 Smb - ok
14:10:42.0605 0584 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
14:10:42.0655 0584 SNMPTRAP - ok
14:10:42.0687 0584 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
14:10:42.0727 0584 spldr - ok
14:10:42.0756 0584 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
14:10:42.0809 0584 Spooler - ok
14:10:43.0170 0584 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
14:10:43.0299 0584 sppsvc - ok
14:10:43.0316 0584 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
14:10:43.0355 0584 sppuinotify - ok
14:10:43.0413 0584 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
14:10:43.0576 0584 srv - ok
14:10:43.0596 0584 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
14:10:43.0674 0584 srv2 - ok
14:10:43.0716 0584 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
14:10:43.0755 0584 srvnet - ok
14:10:43.0788 0584 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
14:10:43.0853 0584 SSDPSRV - ok
14:10:43.0884 0584 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
14:10:43.0949 0584 SstpSvc - ok
14:10:44.0054 0584 [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
14:10:44.0124 0584 STacSV - ok
14:10:44.0145 0584 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
14:10:44.0164 0584 stexstor - ok
14:10:44.0212 0584 [ EBA98394A7D58F7552C52192BD8FA7E6 ] STHDA C:\windows\system32\DRIVERS\stwrt64.sys
14:10:44.0292 0584 STHDA - ok
14:10:44.0341 0584 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
14:10:44.0422 0584 StillCam - ok
14:10:44.0530 0584 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
14:10:44.0563 0584 stisvc - ok
14:10:44.0602 0584 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
14:10:44.0646 0584 stllssvr - ok
14:10:44.0688 0584 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
14:10:44.0733 0584 swenum - ok
14:10:44.0756 0584 [ 8715291C6DE589A3ED0B18B0BEC1C37F ] swmsflt C:\windows\system32\DRIVERS\swmsflt.sys
14:10:44.0796 0584 swmsflt - ok
14:10:44.0834 0584 [ A8E9E76CC2F342F205273702969C84C9 ] SWMX00 C:\windows\system32\DRIVERS\swmx00.sys
14:10:44.0869 0584 SWMX00 - ok
14:10:44.0924 0584 [ B053610BB36D9BD1BFF7102727427600 ] SWNC5E00 C:\windows\system32\DRIVERS\SWNC5E00.sys
14:10:45.0023 0584 SWNC5E00 - ok
14:10:45.0078 0584 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
14:10:45.0192 0584 swprv - ok
14:10:45.0233 0584 [ 190975A4168F19DA5C02D3F41E84D5D2 ] swvspser C:\windows\system32\DRIVERS\swvspser.sys
14:10:45.0271 0584 swvspser - ok
14:10:45.0369 0584 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
14:10:45.0468 0584 SysMain - ok
14:10:45.0508 0584 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
14:10:45.0556 0584 TabletInputService - ok
14:10:45.0593 0584 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
14:10:45.0708 0584 TapiSrv - ok
14:10:45.0751 0584 [ 4430E9B4C60AAB672D16E801BAD0555E ] tbhsd C:\windows\system32\drivers\tbhsd.sys
14:10:45.0764 0584 tbhsd - ok
14:10:45.0779 0584 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
14:10:45.0853 0584 TBS - ok
14:10:45.0954 0584 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\windows\system32\drivers\tcpip.sys
14:10:46.0103 0584 Tcpip - ok
14:10:46.0173 0584 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
14:10:46.0226 0584 TCPIP6 - ok
14:10:46.0254 0584 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
14:10:46.0284 0584 tcpipreg - ok
14:10:46.0312 0584 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
14:10:46.0372 0584 TDPIPE - ok
14:10:46.0407 0584 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
14:10:46.0474 0584 TDTCP - ok
14:10:46.0519 0584 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
14:10:46.0608 0584 tdx - ok
14:10:46.0634 0584 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
14:10:46.0658 0584 TermDD - ok
14:10:46.0726 0584 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
14:10:46.0845 0584 TermService - ok
14:10:46.0856 0584 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
14:10:46.0874 0584 Themes - ok
14:10:46.0903 0584 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
14:10:46.0958 0584 THREADORDER - ok
14:10:46.0996 0584 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
14:10:47.0081 0584 TrkWks - ok
14:10:47.0224 0584 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
14:10:47.0273 0584 TrustedInstaller - ok
14:10:47.0293 0584 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
14:10:47.0359 0584 tssecsrv - ok
14:10:47.0387 0584 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
14:10:47.0457 0584 TsUsbFlt - ok
14:10:47.0487 0584 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
14:10:47.0559 0584 TsUsbGD - ok
14:10:47.0609 0584 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
14:10:47.0685 0584 tunnel - ok
14:10:47.0733 0584 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
14:10:47.0787 0584 uagp35 - ok
14:10:47.0806 0584 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
14:10:47.0893 0584 udfs - ok
14:10:47.0946 0584 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
14:10:47.0987 0584 UI0Detect - ok
14:10:48.0018 0584 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
14:10:48.0064 0584 uliagpkx - ok
14:10:48.0076 0584 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
14:10:48.0138 0584 umbus - ok
14:10:48.0146 0584 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
14:10:48.0180 0584 UmPass - ok
14:10:48.0521 0584 [ 7A78ED1088890114DFDE2C4AB038D6B6 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:10:48.0579 0584 UNS - ok
14:10:48.0714 0584 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
14:10:48.0829 0584 upnphost - ok
14:10:48.0877 0584 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
14:10:48.0919 0584 USBAAPL64 - ok
14:10:48.0969 0584 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
14:10:49.0089 0584 usbccgp - ok
14:10:49.0117 0584 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
14:10:49.0160 0584 usbcir - ok
14:10:49.0188 0584 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
14:10:49.0293 0584 usbehci - ok
14:10:49.0349 0584 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
14:10:49.0405 0584 usbhub - ok
14:10:49.0456 0584 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
14:10:49.0522 0584 usbohci - ok
14:10:49.0560 0584 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
14:10:49.0641 0584 usbprint - ok
14:10:49.0689 0584 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
14:10:49.0733 0584 usbscan - ok
14:10:49.0776 0584 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
14:10:49.0886 0584 USBSTOR - ok
14:10:49.0918 0584 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
14:10:49.0971 0584 usbuhci - ok
14:10:50.0007 0584 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
14:10:50.0056 0584 usbvideo - ok
14:10:50.0073 0584 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
14:10:50.0147 0584 UxSms - ok
14:10:50.0171 0584 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
14:10:50.0184 0584 VaultSvc - ok
14:10:50.0219 0584 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
14:10:50.0271 0584 vdrvroot - ok
14:10:50.0365 0584 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
14:10:50.0502 0584 vds - ok
14:10:50.0540 0584 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
14:10:50.0575 0584 vga - ok
14:10:50.0598 0584 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
14:10:50.0743 0584 VgaSave - ok
14:10:50.0787 0584 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
14:10:50.0908 0584 vhdmp - ok
14:10:50.0928 0584 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
14:10:50.0953 0584 viaide - ok
14:10:50.0966 0584 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
14:10:51.0005 0584 volmgr - ok
14:10:51.0024 0584 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
14:10:51.0043 0584 volmgrx - ok
14:10:51.0060 0584 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
14:10:51.0101 0584 volsnap - ok
14:10:51.0131 0584 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
14:10:51.0162 0584 vsmraid - ok
14:10:51.0320 0584 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
14:10:51.0479 0584 VSS - ok
14:10:51.0527 0584 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
14:10:51.0598 0584 vwifibus - ok
14:10:51.0635 0584 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
14:10:51.0705 0584 vwififlt - ok
14:10:51.0757 0584 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
14:10:51.0816 0584 vwifimp - ok
14:10:51.0839 0584 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
14:10:51.0885 0584 W32Time - ok
14:10:51.0913 0584 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
14:10:51.0959 0584 WacomPen - ok
14:10:52.0001 0584 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
14:10:52.0147 0584 WANARP - ok
14:10:52.0243 0584 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
14:10:52.0302 0584 Wanarpv6 - ok
14:10:52.0440 0584 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
14:10:52.0543 0584 WatAdminSvc - ok
14:10:52.0765 0584 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
14:10:53.0144 0584 wbengine - ok
14:10:53.0173 0584 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
14:10:53.0199 0584 WbioSrvc - ok
14:10:53.0221 0584 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
14:10:53.0269 0584 wcncsvc - ok
14:10:53.0298 0584 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
14:10:53.0322 0584 WcsPlugInService - ok
14:10:53.0349 0584 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
14:10:53.0361 0584 Wd - ok
14:10:53.0390 0584 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
14:10:53.0442 0584 Wdf01000 - ok
14:10:53.0462 0584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
14:10:53.0577 0584 WdiServiceHost - ok
14:10:53.0584 0584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
14:10:53.0605 0584 WdiSystemHost - ok
14:10:53.0638 0584 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
14:10:53.0683 0584 WebClient - ok
14:10:53.0716 0584 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
14:10:53.0785 0584 Wecsvc - ok
14:10:53.0816 0584 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
14:10:53.0859 0584 wercplsupport - ok
14:10:53.0905 0584 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
14:10:53.0960 0584 WerSvc - ok
14:10:53.0975 0584 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
14:10:54.0037 0584 WfpLwf - ok
14:10:54.0066 0584 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
14:10:54.0096 0584 WimFltr - ok
14:10:54.0106 0584 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
14:10:54.0138 0584 WIMMount - ok
14:10:54.0157 0584 WinDefend - ok
14:10:54.0163 0584 WinHttpAutoProxySvc - ok
14:10:54.0219 0584 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
14:10:54.0284 0584 Winmgmt - ok
14:10:54.0554 0584 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
14:10:54.0688 0584 WinRM - ok
14:10:54.0741 0584 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
14:10:54.0777 0584 WinUsb - ok
14:10:54.0828 0584 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
14:10:54.0905 0584 Wlansvc - ok
14:10:54.0967 0584 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:10:54.0997 0584 wlcrasvc - ok
14:10:55.0137 0584 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:10:55.0182 0584 wlidsvc - ok
14:10:55.0232 0584 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
14:10:55.0285 0584 WmiAcpi - ok
14:10:55.0330 0584 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
14:10:55.0393 0584 wmiApSrv - ok
14:10:55.0446 0584 WMPNetworkSvc - ok
14:10:55.0474 0584 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
14:10:55.0517 0584 WPCSvc - ok
14:10:55.0531 0584 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
14:10:55.0548 0584 WPDBusEnum - ok
14:10:55.0576 0584 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
14:10:55.0645 0584 ws2ifsl - ok
14:10:55.0713 0584 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
14:10:55.0773 0584 wscsvc - ok
14:10:55.0776 0584 WSearch - ok
14:10:55.0872 0584 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
14:10:55.0930 0584 wuauserv - ok
14:10:55.0966 0584 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
14:10:56.0026 0584 WudfPf - ok
14:10:56.0055 0584 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
14:10:56.0102 0584 WUDFRd - ok
14:10:56.0187 0584 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
14:10:56.0244 0584 wudfsvc - ok
14:10:56.0321 0584 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\windows\System32\wwansvc.dll
14:10:56.0422 0584 WwanSvc - ok
14:10:56.0540 0584 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
14:10:56.0578 0584 YahooAUService - ok
14:10:56.0613 0584 ================ Scan global ===============================
14:10:56.0654 0584 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
14:10:56.0707 0584 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
14:10:56.0725 0584 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
14:10:56.0759 0584 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
14:10:56.0856 0584 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
14:10:56.0866 0584 [Global] - ok
14:10:56.0867 0584 ================ Scan MBR ==================================
14:10:56.0879 0584 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:11:02.0611 0584 \Device\Harddisk0\DR0 - ok
14:11:02.0613 0584 ================ Scan VBR ==================================
14:11:02.0652 0584 [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
14:11:02.0657 0584 \Device\Harddisk0\DR0\Partition1 - ok
14:11:02.0676 0584 [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2
14:11:02.0681 0584 \Device\Harddisk0\DR0\Partition2 - ok
14:11:02.0683 0584 ================ Scan active images ========================
14:11:02.0688 0584 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
14:11:02.0688 0584 C:\Windows\System32\drivers\crashdmp.sys - ok
14:11:02.0698 0584 [ D469B77687E12FE43E344806740B624D ] C:\Windows\System32\drivers\iaStor.sys
14:11:02.0698 0584 C:\Windows\System32\drivers\iaStor.sys - ok
14:11:02.0702 0584 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
14:11:02.0702 0584 C:\Windows\System32\drivers\dumpfve.sys - ok
14:11:02.0707 0584 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
14:11:02.0707 0584 C:\Windows\System32\drivers\cdrom.sys - ok
14:11:02.0711 0584 [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] C:\Windows\System32\drivers\eamonm.sys
14:11:02.0711 0584 C:\Windows\System32\drivers\eamonm.sys - ok
14:11:02.0716 0584 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
14:11:02.0716 0584 C:\Windows\System32\drivers\beep.sys - ok
14:11:02.0720 0584 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
14:11:02.0720 0584 C:\Windows\System32\drivers\null.sys - ok
14:11:02.0725 0584 [ 9E39134330C18CBAC0F24C1283701D7E ] C:\Windows\System32\drivers\ehdrv.sys
14:11:02.0725 0584 C:\Windows\System32\drivers\ehdrv.sys - ok
14:11:02.0729 0584 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
14:11:02.0729 0584 C:\Windows\System32\drivers\videoprt.sys - ok
14:11:02.0733 0584 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
14:11:02.0733 0584 C:\Windows\System32\drivers\watchdog.sys - ok
14:11:02.0737 0584 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
14:11:02.0737 0584 C:\Windows\System32\drivers\RDPCDD.sys - ok
14:11:02.0742 0584 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
14:11:02.0742 0584 C:\Windows\System32\drivers\vga.sys - ok
14:11:02.0746 0584 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
14:11:02.0746 0584 C:\Windows\System32\drivers\RDPENCDD.sys - ok
14:11:02.0750 0584 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
14:11:02.0751 0584 C:\Windows\System32\drivers\RDPREFMP.sys - ok
14:11:02.0754 0584 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
14:11:02.0755 0584 C:\Windows\System32\drivers\msfs.sys - ok
14:11:02.0759 0584 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
14:11:02.0759 0584 C:\Windows\System32\drivers\npfs.sys - ok
14:11:02.0763 0584 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
14:11:02.0763 0584 C:\Windows\System32\drivers\tdi.sys - ok
14:11:02.0770 0584 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
14:11:02.0770 0584 C:\Windows\System32\drivers\tdx.sys - ok
14:11:02.0774 0584 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
14:11:02.0774 0584 C:\Windows\System32\drivers\netbt.sys - ok
14:11:02.0779 0584 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
14:11:02.0779 0584 C:\Windows\System32\drivers\afd.sys - ok
14:11:02.0782 0584 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
14:11:02.0782 0584 C:\Windows\System32\drivers\pacer.sys - ok
14:11:02.0787 0584 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
14:11:02.0787 0584 C:\Windows\System32\drivers\wfplwf.sys - ok
14:11:02.0790 0584 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
14:11:02.0790 0584 C:\Windows\System32\drivers\netbios.sys - ok
14:11:02.0795 0584 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
14:11:02.0795 0584 C:\Windows\System32\drivers\vwififlt.sys - ok
14:11:02.0799 0584 [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
14:11:02.0799 0584 C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
14:11:02.0803 0584 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
14:11:02.0804 0584 C:\Windows\System32\drivers\termdd.sys - ok
14:11:02.0807 0584 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
14:11:02.0807 0584 C:\Windows\System32\drivers\wanarp.sys - ok
14:11:02.0812 0584 [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
14:11:02.0812 0584 C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
14:11:02.0817 0584 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
14:11:02.0817 0584 C:\Windows\System32\drivers\rdbss.sys - ok
14:11:02.0821 0584 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
14:11:02.0821 0584 C:\Windows\System32\drivers\mssmbios.sys - ok
14:11:02.0824 0584 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
14:11:02.0824 0584 C:\Windows\System32\drivers\nsiproxy.sys - ok
14:11:02.0829 0584 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
14:11:02.0829 0584 C:\Windows\System32\drivers\dfsc.sys - ok
14:11:02.0834 0584 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
14:11:02.0834 0584 C:\Windows\System32\drivers\discache.sys - ok
14:11:02.0838 0584 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
14:11:02.0838 0584 C:\Windows\System32\drivers\blbdrive.sys - ok
14:11:02.0842 0584 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
14:11:02.0842 0584 C:\Windows\System32\drivers\tunnel.sys - ok
14:11:02.0847 0584 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
14:11:02.0847 0584 C:\Windows\System32\ntdll.dll - ok
14:11:02.0851 0584 [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
14:11:02.0851 0584 C:\Windows\System32\smss.exe - ok
14:11:02.0854 0584 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
14:11:02.0854 0584 C:\Windows\System32\autochk.exe - ok
14:11:02.0859 0584 [ 795C99DC4F574C97C03D0BB39CF099EE ] C:\Windows\System32\drivers\igdkmd64.sys
14:11:02.0859 0584 C:\Windows\System32\drivers\igdkmd64.sys - ok
14:11:02.0863 0584 [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
14:11:02.0863 0584 C:\Windows\System32\drivers\dxgkrnl.sys - ok
14:11:02.0867 0584 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
14:11:02.0867 0584 C:\Windows\System32\drivers\dxgmms1.sys - ok
14:11:02.0871 0584 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
14:11:02.0871 0584 C:\Windows\System32\shlwapi.dll - ok
14:11:02.0875 0584 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] C:\Windows\System32\drivers\HECIx64.sys
14:11:02.0876 0584 C:\Windows\System32\drivers\HECIx64.sys - ok
14:11:02.0880 0584 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
14:11:02.0880 0584 C:\Windows\System32\drivers\usbport.sys - ok
14:11:02.0884 0584 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
14:11:02.0884 0584 C:\Windows\System32\drivers\hdaudbus.sys - ok
14:11:02.0888 0584 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
14:11:02.0888 0584 C:\Windows\System32\drivers\usbehci.sys - ok
14:11:02.0894 0584 [ E50CFB92986DCAB49DE93788FD695813 ] C:\Windows\System32\drivers\Rt64win7.sys
14:11:02.0894 0584 C:\Windows\System32\drivers\Rt64win7.sys - ok
14:11:02.0898 0584 [ 5493ED5D300AFC7A9A0A87FCA08E5381 ] C:\Windows\System32\drivers\athrx.sys
14:11:02.0898 0584 C:\Windows\System32\drivers\athrx.sys - ok
14:11:02.0902 0584 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
14:11:02.0902 0584 C:\Windows\System32\drivers\vwifibus.sys - ok
14:11:02.0906 0584 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
14:11:02.0906 0584 C:\Windows\System32\drivers\i8042prt.sys - ok
14:11:02.0911 0584 [ 6690E42CED5D067233ABAD42DA141213 ] C:\Windows\System32\drivers\Apfiltr.sys
14:11:02.0911 0584 C:\Windows\System32\drivers\Apfiltr.sys - ok
14:11:02.0916 0584 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
14:11:02.0916 0584 C:\Windows\System32\drivers\mouclass.sys - ok
14:11:02.0920 0584 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
14:11:02.0920 0584 C:\Windows\System32\drivers\kbdclass.sys - ok
14:11:02.0924 0584 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
14:11:02.0924 0584 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
14:11:02.0929 0584 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
14:11:02.0929 0584 C:\Windows\System32\drivers\intelppm.sys - ok
14:11:02.0932 0584 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
14:11:02.0933 0584 C:\Windows\System32\drivers\CmBatt.sys - ok
14:11:02.0937 0584 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
14:11:02.0937 0584 C:\Windows\System32\drivers\wmiacpi.sys - ok
14:11:02.0941 0584 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
14:11:02.0941 0584 C:\Windows\System32\drivers\CompositeBus.sys - ok
14:11:02.0948 0584 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
14:11:02.0948 0584 C:\Windows\System32\drivers\agilevpn.sys - ok
14:11:02.0953 0584 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
14:11:02.0953 0584 C:\Windows\System32\drivers\rasl2tp.sys - ok
14:11:02.0958 0584 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
14:11:02.0958 0584 C:\Windows\System32\drivers\ndistapi.sys - ok
14:11:02.0962 0584 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
14:11:02.0963 0584 C:\Windows\System32\drivers\ndiswan.sys - ok
14:11:02.0967 0584 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
14:11:02.0967 0584 C:\Windows\System32\drivers\raspppoe.sys - ok
14:11:02.0970 0584 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
14:11:02.0971 0584 C:\Windows\System32\drivers\raspptp.sys - ok
14:11:02.0975 0584 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
14:11:02.0975 0584 C:\Windows\System32\drivers\rassstp.sys - ok
14:11:02.0979 0584 [ 190975A4168F19DA5C02D3F41E84D5D2 ] C:\Windows\System32\drivers\swvspser.sys
14:11:02.0979 0584 C:\Windows\System32\drivers\swvspser.sys - ok
14:11:02.0983 0584 [ DECACB6921DED1A38642642685D77DAC ] C:\Windows\System32\drivers\serscan.sys
14:11:02.0983 0584 C:\Windows\System32\drivers\serscan.sys - ok
14:11:02.0987 0584 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] C:\Windows\System32\drivers\CtClsFlt.sys
14:11:02.0987 0584 C:\Windows\System32\drivers\CtClsFlt.sys - ok
14:11:02.0992 0584 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
14:11:02.0992 0584 C:\Windows\System32\drivers\ks.sys - ok
14:11:02.0996 0584 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
14:11:02.0996 0584 C:\Windows\System32\drivers\ksthunk.sys - ok
14:11:03.0000 0584 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
14:11:03.0000 0584 C:\Windows\System32\drivers\swenum.sys - ok
14:11:03.0005 0584 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
14:11:03.0005 0584 C:\Windows\System32\drivers\umbus.sys - ok
14:11:03.0009 0584 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
14:11:03.0009 0584 C:\Windows\System32\drivers\usbhub.sys - ok
14:11:03.0013 0584 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
14:11:03.0013 0584 C:\Windows\System32\drivers\ndproxy.sys - ok
14:11:03.0018 0584 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
14:11:03.0018 0584 C:\Windows\System32\drivers\drmk.sys - ok
14:11:03.0021 0584 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
14:11:03.0021 0584 C:\Windows\System32\drivers\portcls.sys - ok
14:11:03.0026 0584 [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
14:11:03.0026 0584 C:\Windows\System32\drivers\IntcDAud.sys - ok
14:11:03.0031 0584 [ EBA98394A7D58F7552C52192BD8FA7E6 ] C:\Windows\System32\drivers\stwrt64.sys
14:11:03.0031 0584 C:\Windows\System32\drivers\stwrt64.sys - ok
14:11:03.0035 0584 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
14:11:03.0035 0584 C:\Windows\System32\rpcrt4.dll - ok
14:11:03.0040 0584 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
14:11:03.0040 0584 C:\Windows\System32\kernel32.dll - ok
14:11:03.0044 0584 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
14:11:03.0044 0584 C:\Windows\System32\usp10.dll - ok
14:11:03.0048 0584 [ 1BDF694C5BA91A1576DA907DA3077EF8 ] C:\Windows\System32\iertutil.dll
14:11:03.0048 0584 C:\Windows\System32\iertutil.dll - ok
14:11:03.0052 0584 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
14:11:03.0052 0584 C:\Windows\System32\imagehlp.dll - ok
14:11:03.0056 0584 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
14:11:03.0056 0584 C:\Windows\System32\nsi.dll - ok
14:11:03.0060 0584 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
14:11:03.0060 0584 C:\Windows\System32\lpk.dll - ok
14:11:03.0064 0584 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
14:11:03.0064 0584 C:\Windows\System32\setupapi.dll - ok
14:11:03.0068 0584 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
14:11:03.0068 0584 C:\Windows\System32\oleaut32.dll - ok
14:11:03.0072 0584 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
14:11:03.0072 0584 C:\Windows\System32\comdlg32.dll - ok
14:11:03.0075 0584 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
14:11:03.0075 0584 C:\Windows\System32\clbcatq.dll - ok
14:11:03.0080 0584 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
14:11:03.0080 0584 C:\Windows\System32\msvcrt.dll - ok
14:11:03.0084 0584 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
14:11:03.0084 0584 C:\Windows\System32\drivers\hidclass.sys - ok
14:11:03.0089 0584 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
14:11:03.0089 0584 C:\Windows\System32\drivers\hidparse.sys - ok
14:11:03.0093 0584 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
14:11:03.0093 0584 C:\Windows\System32\drivers\hidusb.sys - ok
14:11:03.0097 0584 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
14:11:03.0097 0584 C:\Windows\System32\drivers\usbd.sys - ok
14:11:03.0101 0584 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
14:11:03.0101 0584 C:\Windows\System32\drivers\kbdhid.sys - ok
14:11:03.0105 0584 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
14:11:03.0105 0584 C:\Windows\System32\imm32.dll - ok
14:11:03.0109 0584 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
14:11:03.0109 0584 C:\Windows\System32\user32.dll - ok
14:11:03.0113 0584 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
14:11:03.0113 0584 C:\Windows\System32\ole32.dll - ok
14:11:03.0117 0584 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
14:11:03.0117 0584 C:\Windows\System32\sechost.dll - ok
14:11:03.0121 0584 [ C9152A497D0CA33CE9D729F1179DDB01 ] C:\Windows\System32\urlmon.dll
14:11:03.0121 0584 C:\Windows\System32\urlmon.dll - ok
14:11:03.0125 0584 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
14:11:03.0125 0584 C:\Windows\System32\advapi32.dll - ok
14:11:03.0130 0584 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
14:11:03.0130 0584 C:\Windows\System32\Wldap32.dll - ok
14:11:03.0134 0584 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
14:11:03.0134 0584 C:\Windows\System32\difxapi.dll - ok
14:11:03.0138 0584 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
14:11:03.0138 0584 C:\Windows\System32\psapi.dll - ok
14:11:03.0143 0584 [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
14:11:03.0143 0584 C:\Windows\System32\shell32.dll - ok
14:11:03.0146 0584 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
14:11:03.0147 0584 C:\Windows\System32\msctf.dll - ok
14:11:03.0150 0584 [ 12716D987D475B051F35895659159705 ] C:\Windows\System32\wininet.dll
14:11:03.0150 0584 C:\Windows\System32\wininet.dll - ok
14:11:03.0154 0584 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
14:11:03.0154 0584 C:\Windows\System32\gdi32.dll - ok
14:11:03.0158 0584 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
14:11:03.0158 0584 C:\Windows\System32\ws2_32.dll - ok
14:11:03.0163 0584 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
14:11:03.0163 0584 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
14:11:03.0167 0584 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
14:11:03.0167 0584 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
14:11:03.0171 0584 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
14:11:03.0171 0584 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
14:11:03.0175 0584 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
14:11:03.0175 0584 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
14:11:03.0180 0584 [ A96D5ECA5742603E0E345C4F6B801F5E ] C:\Windows\System32\crypt32.dll
14:11:03.0180 0584 C:\Windows\System32\crypt32.dll - ok
14:11:03.0183 0584 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
14:11:03.0184 0584 C:\Windows\System32\devobj.dll - ok
14:11:03.0188 0584 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
14:11:03.0188 0584 C:\Windows\System32\KernelBase.dll - ok
14:11:03.0191 0584 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
14:11:03.0191 0584 C:\Windows\System32\normaliz.dll - ok
14:11:03.0196 0584 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
14:11:03.0196 0584 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
14:11:03.0200 0584 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
14:11:03.0200 0584 C:\Windows\System32\comctl32.dll - ok
14:11:03.0204 0584 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
14:11:03.0204 0584 C:\Windows\System32\wintrust.dll - ok
14:11:03.0208 0584 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
14:11:03.0208 0584 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
14:11:03.0214 0584 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
14:11:03.0214 0584 C:\Windows\System32\cfgmgr32.dll - ok
14:11:03.0218 0584 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
14:11:03.0218 0584 C:\Windows\System32\msasn1.dll - ok
14:11:03.0222 0584 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
14:11:03.0222 0584 C:\Windows\SysWOW64\normaliz.dll - ok
14:11:03.0226 0584 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
14:11:03.0226 0584 C:\Windows\System32\drivers\dxapi.sys - ok
14:11:03.0230 0584 [ A11523523B31086DD760C0189C763359 ] C:\Windows\System32\win32k.sys
14:11:03.0231 0584 C:\Windows\System32\win32k.sys - ok
14:11:03.0234 0584 [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
14:11:03.0234 0584 C:\Windows\System32\csrsrv.dll - ok
14:11:03.0238 0584 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
14:11:03.0238 0584 C:\Windows\System32\csrss.exe - ok
14:11:03.0242 0584 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
14:11:03.0242 0584 C:\Windows\System32\basesrv.dll - ok
14:11:03.0246 0584 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
14:11:03.0246 0584 C:\Windows\System32\winsrv.dll - ok
14:11:03.0251 0584 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
14:11:03.0251 0584 C:\Windows\System32\drivers\monitor.sys - ok
14:11:03.0255 0584 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
14:11:03.0255 0584 C:\Windows\System32\sxssrv.dll - ok
14:11:03.0259 0584 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
14:11:03.0259 0584 C:\Windows\System32\tsddd.dll - ok
14:11:03.0264 0584 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
14:11:03.0264 0584 C:\Windows\System32\wininit.exe - ok
14:11:03.0268 0584 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
14:11:03.0268 0584 C:\Windows\System32\profapi.dll - ok
14:11:03.0272 0584 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
14:11:03.0272 0584 C:\Windows\System32\RpcRtRemote.dll - ok
14:11:03.0275 0584 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
14:11:03.0276 0584 C:\Windows\System32\KBDUS.DLL - ok
14:11:03.0280 0584 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
14:11:03.0280 0584 C:\Windows\System32\cdd.dll - ok
14:11:03.0283 0584 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
14:11:03.0284 0584 C:\Windows\System32\sxs.dll - ok
14:11:03.0288 0584 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
14:11:03.0288 0584 C:\Windows\System32\WlS0WndH.dll - ok
14:11:03.0292 0584 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
14:11:03.0292 0584 C:\Windows\System32\cryptbase.dll - ok
14:11:03.0296 0584 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
14:11:03.0296 0584 C:\Windows\System32\apphelp.dll - ok
14:11:03.0300 0584 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
14:11:03.0300 0584 C:\Windows\System32\services.exe - ok
14:11:03.0304 0584 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
14:11:03.0304 0584 C:\Windows\System32\lsasrv.dll - ok
14:11:03.0308 0584 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
14:11:03.0308 0584 C:\Windows\System32\lsass.exe - ok
14:11:03.0313 0584 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
14:11:03.0313 0584 C:\Windows\System32\lsm.exe - ok
14:11:03.0316 0584 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
14:11:03.0316 0584 C:\Windows\System32\sspisrv.dll - ok
14:11:03.0321 0584 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
14:11:03.0321 0584 C:\Windows\System32\sspicli.dll - ok
14:11:03.0323 0584 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
14:11:03.0323 0584 C:\Windows\System32\sysntfy.dll - ok
14:11:03.0329 0584 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
14:11:03.0329 0584 C:\Windows\System32\wmsgapi.dll - ok
14:11:03.0333 0584 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
14:11:03.0333 0584 C:\Windows\System32\samsrv.dll - ok
14:11:03.0337 0584 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
14:11:03.0337 0584 C:\Windows\System32\scesrv.dll - ok
14:11:03.0341 0584 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
14:11:03.0341 0584 C:\Windows\System32\scext.dll - ok
14:11:03.0346 0584 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
14:11:03.0346 0584 C:\Windows\System32\secur32.dll - ok
14:11:03.0349 0584 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
14:11:03.0349 0584 C:\Windows\System32\cryptdll.dll - ok
14:11:03.0356 0584 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
14:11:03.0356 0584 C:\Windows\System32\wevtapi.dll - ok
14:11:03.0360 0584 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
14:11:03.0360 0584 C:\Windows\System32\srvcli.dll - ok
14:11:03.0363 0584 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
14:11:03.0363 0584 C:\Windows\System32\authz.dll - ok
14:11:03.0367 0584 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
14:11:03.0367 0584 C:\Windows\System32\cngaudit.dll - ok
14:11:03.0371 0584 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
14:11:03.0371 0584 C:\Windows\System32\ncrypt.dll - ok
14:11:03.0375 0584 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
14:11:03.0375 0584 C:\Windows\System32\bcrypt.dll - ok
14:11:03.0379 0584 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
14:11:03.0379 0584 C:\Windows\System32\msprivs.dll - ok
14:11:03.0384 0584 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
14:11:03.0384 0584 C:\Windows\System32\atmfd.dll - ok
14:11:03.0388 0584 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
14:11:03.0388 0584 C:\Windows\System32\netjoin.dll - ok
14:11:03.0392 0584 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
14:11:03.0392 0584 C:\Windows\System32\negoexts.dll - ok
14:11:03.0397 0584 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
14:11:03.0397 0584 C:\Windows\System32\kerberos.dll - ok
14:11:03.0401 0584 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
14:11:03.0401 0584 C:\Windows\System32\cryptsp.dll - ok
14:11:03.0405 0584 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
14:11:03.0405 0584 C:\Windows\System32\msv1_0.dll - ok
14:11:03.0409 0584 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
14:11:03.0409 0584 C:\Windows\System32\mswsock.dll - ok
14:11:03.0413 0584 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
14:11:03.0413 0584 C:\Windows\System32\wship6.dll - ok
14:11:03.0417 0584 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
14:11:03.0417 0584 C:\Windows\System32\netlogon.dll - ok
14:11:03.0421 0584 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
14:11:03.0422 0584 C:\Windows\System32\dnsapi.dll - ok
14:11:03.0425 0584 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
14:11:03.0425 0584 C:\Windows\System32\logoncli.dll - ok
14:11:03.0430 0584 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
14:11:03.0430 0584 C:\Windows\System32\schannel.dll - ok
14:11:03.0434 0584 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
14:11:03.0434 0584 C:\Windows\System32\wdigest.dll - ok
14:11:03.0438 0584 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
14:11:03.0438 0584 C:\Windows\System32\rsaenh.dll - ok
14:11:03.0441 0584 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
14:11:03.0441 0584 C:\Windows\System32\pku2u.dll - ok
14:11:03.0446 0584 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
14:11:03.0446 0584 C:\Windows\System32\TSpkg.dll - ok
14:11:03.0450 0584 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
14:11:03.0450 0584 C:\Windows\System32\LIVESSP.DLL - ok
14:11:03.0454 0584 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
14:11:03.0454 0584 C:\Windows\System32\winlogon.exe - ok
14:11:03.0458 0584 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
14:11:03.0458 0584 C:\Windows\System32\winsta.dll - ok
14:11:03.0462 0584 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
14:11:03.0462 0584 C:\Windows\System32\bcryptprimitives.dll - ok
14:11:03.0466 0584 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
14:11:03.0466 0584 C:\Windows\System32\credssp.dll - ok
14:11:03.0470 0584 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
14:11:03.0470 0584 C:\Windows\System32\efslsaext.dll - ok
14:11:03.0474 0584 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
14:11:03.0474 0584 C:\Windows\System32\scecli.dll - ok
14:11:03.0479 0584 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
14:11:03.0479 0584 C:\Windows\System32\ubpm.dll - ok
14:11:03.0483 0584 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
14:11:03.0483 0584 C:\Windows\System32\svchost.exe - ok
14:11:03.0488 0584 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
14:11:03.0488 0584 C:\Windows\System32\umpnpmgr.dll - ok
14:11:03.0491 0584 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
14:11:03.0491 0584 C:\Windows\System32\devrtl.dll - ok
14:11:03.0496 0584 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
14:11:03.0496 0584 C:\Windows\System32\SPInf.dll - ok
14:11:03.0500 0584 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
14:11:03.0500 0584 C:\Windows\System32\gpapi.dll - ok
14:11:03.0504 0584 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
14:11:03.0504 0584 C:\Windows\System32\userenv.dll - ok
14:11:03.0508 0584 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
14:11:03.0508 0584 C:\Windows\System32\umpo.dll - ok
14:11:03.0512 0584 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
14:11:03.0512 0584 C:\Windows\System32\pcwum.dll - ok
14:11:03.0516 0584 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
14:11:03.0516 0584 C:\Windows\System32\powrprof.dll - ok
14:11:03.0520 0584 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
14:11:03.0520 0584 C:\Windows\System32\drivers\luafv.sys - ok
14:11:03.0524 0584 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
14:11:03.0524 0584 C:\Windows\System32\drivers\Sftvollh.sys - ok
14:11:03.0529 0584 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
14:11:03.0529 0584 C:\Windows\System32\RpcEpMap.dll - ok
14:11:03.0532 0584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
14:11:03.0532 0584 C:\Windows\System32\rpcss.dll - ok
14:11:03.0536 0584 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
14:11:03.0536 0584 C:\Windows\System32\wshqos.dll - ok
14:11:03.0540 0584 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
14:11:03.0540 0584 C:\Windows\System32\WSHTCPIP.DLL - ok
14:11:03.0545 0584 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
14:11:03.0545 0584 C:\Windows\System32\FirewallAPI.dll - ok
14:11:03.0548 0584 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
14:11:03.0549 0584 C:\Windows\System32\LogonUI.exe - ok
14:11:03.0552 0584 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
14:11:03.0552 0584 C:\Windows\System32\version.dll - ok
14:11:03.0556 0584 [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
14:11:03.0557 0584 C:\Windows\System32\authui.dll - ok
14:11:03.0561 0584 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
14:11:03.0561 0584 C:\Windows\System32\wevtsvc.dll - ok
14:11:03.0565 0584 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
14:11:03.0565 0584 C:\Windows\System32\audiosrv.dll - ok
14:11:03.0568 0584 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
14:11:03.0568 0584 C:\Windows\System32\avrt.dll - ok
14:11:03.0573 0584 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
14:11:03.0573 0584 C:\Windows\System32\mmcss.dll - ok
14:11:03.0575 0584 [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0 ] C:\Program Files\IDT\WDM\stacsv64.exe
14:11:03.0575 0584 C:\Program Files\IDT\WDM\stacsv64.exe - ok
14:11:03.0580 0584 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
14:11:03.0580 0584 C:\Windows\System32\FntCache.dll - ok
14:11:03.0584 0584 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
14:11:03.0584 0584 C:\Windows\System32\cryptui.dll - ok
14:11:03.0588 0584 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
14:11:03.0588 0584 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
14:11:03.0592 0584 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
14:11:03.0592 0584 C:\Windows\System32\samlib.dll - ok
14:11:03.0597 0584 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
14:11:03.0597 0584 C:\Windows\System32\shacct.dll - ok
14:11:03.0601 0584 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
14:11:03.0601 0584 C:\Windows\System32\propsys.dll - ok
14:11:03.0606 0584 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
14:11:03.0606 0584 C:\Windows\System32\uxtheme.dll - ok
14:11:03.0610 0584 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
14:11:03.0610 0584 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
14:11:03.0616 0584 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
14:11:03.0616 0584 C:\Windows\System32\dui70.dll - ok
14:11:03.0619 0584 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
14:11:03.0619 0584 C:\Windows\System32\duser.dll - ok
14:11:03.0625 0584 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
14:11:03.0625 0584 C:\Windows\System32\atl.dll - ok
14:11:03.0630 0584 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
14:11:03.0630 0584 C:\Windows\System32\MMDevAPI.dll - ok
14:11:03.0636 0584 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
14:11:03.0636 0584 C:\Windows\System32\SndVolSSO.dll - ok
14:11:03.0640 0584 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
14:11:03.0640 0584 C:\Windows\System32\hid.dll - ok
14:11:03.0645 0584 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
14:11:03.0645 0584 C:\Windows\System32\dwmapi.dll - ok
14:11:03.0650 0584 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
14:11:03.0650 0584 C:\Windows\System32\xmllite.dll - ok
14:11:03.0656 0584 [ 3D7BB6DD7A87B3E36E44CA94444247A8 ] C:\Windows\System32\WindowsCodecs.dll
14:11:03.0656 0584 C:\Windows\System32\WindowsCodecs.dll - ok
14:11:03.0660 0584 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
14:11:03.0660 0584 C:\Windows\System32\winbrand.dll - ok
14:11:03.0666 0584 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
14:11:03.0666 0584 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
14:11:03.0672 0584 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
14:11:03.0672 0584 C:\Windows\System32\VaultCredProvider.dll - ok
14:11:03.0676 0584 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
14:11:03.0677 0584 C:\Windows\System32\wtsapi32.dll - ok
14:11:03.0682 0584 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
14:11:03.0682 0584 C:\Windows\System32\BioCredProv.dll - ok
14:11:03.0686 0584 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
14:11:03.0686 0584 C:\Windows\System32\credui.dll - ok
14:11:03.0691 0584 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
14:11:03.0691 0584 C:\Windows\System32\winbio.dll - ok
14:11:03.0696 0584 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
14:11:03.0696 0584 C:\Windows\System32\netapi32.dll - ok
14:11:03.0701 0584 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
14:11:03.0701 0584 C:\Windows\System32\netutils.dll - ok
14:11:03.0705 0584 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
14:11:03.0705 0584 C:\Windows\System32\vaultcli.dll - ok
14:11:03.0709 0584 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
14:11:03.0709 0584 C:\Windows\System32\samcli.dll - ok
14:11:03.0714 0584 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
14:11:03.0714 0584 C:\Windows\System32\wkscli.dll - ok
14:11:03.0717 0584 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
14:11:03.0718 0584 C:\Windows\System32\certCredProvider.dll - ok
14:11:03.0722 0584 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
14:11:03.0722 0584 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
14:11:03.0727 0584 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
14:11:03.0728 0584 C:\Windows\System32\rasplap.dll - ok
14:11:03.0732 0584 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
14:11:03.0732 0584 C:\Windows\System32\rasapi32.dll - ok
14:11:03.0736 0584 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
14:11:03.0736 0584 C:\Windows\System32\rasman.dll - ok
14:11:03.0740 0584 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
14:11:03.0740 0584 C:\Windows\System32\rtutils.dll - ok
14:11:03.0744 0584 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
14:11:03.0745 0584 C:\Windows\System32\dsound.dll - ok
14:11:03.0749 0584 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
14:11:03.0749 0584 C:\Windows\System32\winmm.dll - ok
14:11:03.0753 0584 [ 30E1D211F233DFB9FD74B13B88F6857F ] C:\Windows\System32\stapi64.dll
14:11:03.0753 0584 C:\Windows\System32\stapi64.dll - ok
14:11:03.0757 0584 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
14:11:03.0757 0584 C:\Windows\System32\netprofm.dll - ok
14:11:03.0762 0584 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
14:11:03.0762 0584 C:\Windows\System32\AudioSes.dll - ok
14:11:03.0766 0584 [ 9A6949BA7D5D77B3625FB20F6ED7F54B ] C:\Windows\System32\stapo64.dll
14:11:03.0766 0584 C:\Windows\System32\stapo64.dll - ok
14:11:03.0770 0584 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
14:11:03.0770 0584 C:\Windows\System32\AudioEng.dll - ok
14:11:03.0774 0584 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
14:11:03.0774 0584 C:\Windows\System32\WMALFXGFXDSP.dll - ok
14:11:03.0779 0584 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
14:11:03.0779 0584 C:\Windows\System32\mfplat.dll - ok
14:11:03.0783 0584 [ 64A14D7A28C7FEA8DB495F7FEDD302B6 ] C:\Windows\System32\imapo64.dll
14:11:03.0783 0584 C:\Windows\System32\imapo64.dll - ok
14:11:03.0787 0584 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
14:11:03.0787 0584 C:\Windows\System32\IPHLPAPI.DLL - ok
14:11:03.0793 0584 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
14:11:03.0793 0584 C:\Windows\System32\winnsi.dll - ok
14:11:03.0796 0584 [ 90F4D286C592EE0AD634A87EE4DAF24E ] C:\Windows\System32\imthx64.dll
14:11:03.0796 0584 C:\Windows\System32\imthx64.dll - ok
14:11:03.0800 0584 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
14:11:03.0800 0584 C:\Windows\System32\AESTAR64.dll - ok
14:11:03.0804 0584 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
14:11:03.0804 0584 C:\Windows\System32\audiodg.exe - ok
14:11:03.0808 0584 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
14:11:03.0808 0584 C:\Windows\System32\ntmarta.dll - ok
14:11:03.0812 0584 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
14:11:03.0813 0584 C:\Windows\System32\gpsvc.dll - ok
14:11:03.0817 0584 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
14:11:03.0817 0584 C:\Windows\System32\wdmaud.drv - ok
14:11:03.0820 0584 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
14:11:03.0821 0584 C:\Windows\System32\ksuser.dll - ok
14:11:03.0825 0584 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
14:11:03.0825 0584 C:\Windows\System32\nlaapi.dll - ok
14:11:03.0830 0584 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
14:11:03.0831 0584 C:\Windows\System32\midimap.dll - ok
14:11:03.0835 0584 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
14:11:03.0835 0584 C:\Windows\System32\msacm32.dll - ok
14:11:03.0839 0584 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
14:11:03.0839 0584 C:\Windows\System32\msacm32.drv - ok
14:11:03.0843 0584 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
14:11:03.0843 0584 C:\Windows\System32\profsvc.dll - ok
14:11:03.0847 0584 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
14:11:03.0847 0584 C:\Windows\System32\dsrole.dll - ok
14:11:03.0851 0584 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
14:11:03.0851 0584 C:\Windows\System32\es.dll - ok
14:11:03.0855 0584 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
14:11:03.0855 0584 C:\Windows\System32\slc.dll - ok
14:11:03.0859 0584 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
14:11:03.0859 0584 C:\Windows\System32\themeservice.dll - ok
14:11:03.0863 0584 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
14:11:03.0863 0584 C:\Windows\System32\AUDIOKSE.dll - ok
14:11:03.0869 0584 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
14:11:03.0869 0584 C:\Windows\System32\Sens.dll - ok
14:11:03.0872 0584 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
14:11:03.0872 0584 C:\Windows\System32\uxsms.dll - ok
14:11:03.0877 0584 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
14:11:03.0877 0584 C:\Windows\System32\drivers\lltdio.sys - ok
14:11:03.0881 0584 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
14:11:03.0881 0584 C:\Windows\System32\drivers\nwifi.sys - ok
14:11:03.0885 0584 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
14:11:03.0885 0584 C:\Windows\System32\drivers\ndisuio.sys - ok
14:11:03.0889 0584 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
14:11:03.0889 0584 C:\Windows\System32\drivers\rspndr.sys - ok
14:11:03.0893 0584 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
14:11:03.0893 0584 C:\Windows\System32\lmhsvc.dll - ok
14:11:03.0898 0584 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
14:11:03.0898 0584 C:\Windows\System32\nrpsrv.dll - ok
14:11:03.0903 0584 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
14:11:03.0903 0584 C:\Windows\System32\nsisvc.dll - ok
14:11:03.0906 0584 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
14:11:03.0906 0584 C:\Windows\System32\dhcpcore.dll - ok
14:11:03.0910 0584 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
14:11:03.0910 0584 C:\Windows\System32\dnsrslvr.dll - ok
14:11:03.0914 0584 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
14:11:03.0914 0584 C:\Windows\System32\keyiso.dll - ok
14:11:03.0918 0584 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
14:11:03.0918 0584 C:\Windows\System32\dhcpcore6.dll - ok
14:11:03.0922 0584 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
14:11:03.0922 0584 C:\Windows\System32\eapphost.dll - ok
14:11:03.0926 0584 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
14:11:03.0926 0584 C:\Windows\System32\eapsvc.dll - ok
14:11:03.0930 0584 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
14:11:03.0930 0584 C:\Windows\System32\FWPUCLNT.DLL - ok
14:11:03.0935 0584 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
14:11:03.0935 0584 C:\Windows\System32\umb.dll - ok
14:11:03.0938 0584 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
14:11:03.0938 0584 C:\Windows\System32\wlansvc.dll - ok
14:11:03.0942 0584 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
14:11:03.0943 0584 C:\Windows\System32\dnsext.dll - ok
14:11:03.0947 0584 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
14:11:03.0947 0584 C:\Windows\System32\wlanmsm.dll - ok
14:11:03.0951 0584 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
14:11:03.0951 0584 C:\Windows\System32\dhcpcsvc.dll - ok
14:11:03.0955 0584 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
14:11:03.0955 0584 C:\Windows\System32\dhcpcsvc6.dll - ok
14:11:03.0959 0584 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
14:11:03.0959 0584 C:\Windows\System32\wlansec.dll - ok
14:11:03.0963 0584 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
14:11:03.0963 0584 C:\Windows\System32\eappcfg.dll - ok
14:11:03.0967 0584 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
14:11:03.0967 0584 C:\Windows\System32\eappprxy.dll - ok
14:11:03.0971 0584 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
14:11:03.0971 0584 C:\Windows\System32\onex.dll - ok
14:11:03.0975 0584 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
14:11:03.0975 0584 C:\Windows\System32\l2gpstore.dll - ok
14:11:03.0981 0584 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
14:11:03.0981 0584 C:\Windows\System32\WinSCard.dll - ok
14:11:03.0985 0584 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
14:11:03.0985 0584 C:\Windows\System32\wlanutil.dll - ok
14:11:03.0989 0584 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
14:11:03.0989 0584 C:\Windows\System32\wlgpclnt.dll - ok
14:11:03.0993 0584 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
14:11:03.0993 0584 C:\Windows\System32\msxml6.dll - ok
14:11:03.0998 0584 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
14:11:03.0998 0584 C:\Windows\System32\UXInit.dll - ok
14:11:04.0002 0584 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
14:11:04.0002 0584 C:\Windows\System32\imageres.dll - ok
14:11:04.0007 0584 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
14:11:04.0007 0584 C:\Windows\System32\shsvcs.dll - ok
14:11:04.0011 0584 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
14:11:04.0011 0584 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
14:11:04.0015 0584 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
14:11:04.0015 0584 C:\Windows\System32\comres.dll - ok
14:11:04.0019 0584 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
14:11:04.0019 0584 C:\Windows\System32\schedsvc.dll - ok
14:11:04.0023 0584 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
14:11:04.0023 0584 C:\Windows\System32\ktmw32.dll - ok
14:11:04.0028 0584 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
14:11:04.0028 0584 C:\Windows\System32\fveapi.dll - ok
14:11:04.0031 0584 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
14:11:04.0031 0584 C:\Windows\System32\fvecerts.dll - ok
14:11:04.0037 0584 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
14:11:04.0037 0584 C:\Windows\System32\taskcomp.dll - ok
14:11:04.0040 0584 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
14:11:04.0040 0584 C:\Windows\System32\tbs.dll - ok
14:11:04.0045 0584 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
14:11:04.0045 0584 C:\Windows\System32\wiarpc.dll - ok
14:11:04.0049 0584 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
14:11:04.0049 0584 C:\Windows\System32\drivers\http.sys - ok
14:11:04.0053 0584 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
14:11:04.0053 0584 C:\Windows\System32\netcfgx.dll - ok
14:11:04.0057 0584 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
14:11:04.0057 0584 C:\Windows\System32\drivers\vwifimp.sys - ok
14:11:04.0061 0584 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
14:11:04.0062 0584 C:\Windows\System32\spoolsv.exe - ok
14:11:04.0065 0584 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
14:11:04.0065 0584 C:\Windows\System32\MPSSVC.dll - ok
14:11:04.0070 0584 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
14:11:04.0070 0584 C:\Windows\System32\adtschema.dll - ok
14:11:04.0074 0584 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
14:11:04.0074 0584 C:\Windows\System32\BFE.DLL - ok
14:11:04.0077 0584 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
14:11:04.0077 0584 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
14:11:04.0081 0584 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
14:11:04.0081 0584 C:\Windows\System32\drivers\fltMgr.sys - ok
14:11:04.0085 0584 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
14:11:04.0085 0584 C:\Windows\System32\drivers\bowser.sys - ok
14:11:04.0090 0584 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
14:11:04.0090 0584 C:\Windows\System32\drivers\mpsdrv.sys - ok
14:11:04.0096 0584 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
14:11:04.0096 0584 C:\Windows\System32\wfapigp.dll - ok
14:11:04.0100 0584 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
14:11:04.0100 0584 C:\Windows\System32\drivers\mrxsmb.sys - ok
14:11:04.0104 0584 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
14:11:04.0104 0584 C:\Windows\System32\drivers\mrxsmb10.sys - ok
14:11:04.0109 0584 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
14:11:04.0109 0584 C:\Windows\System32\drivers\mrxsmb20.sys - ok
14:11:04.0113 0584 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
14:11:04.0113 0584 C:\Windows\System32\wkssvc.dll - ok
14:11:04.0121 0584 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
14:11:04.0121 0584 C:\Windows\System32\PSHED.DLL - ok
14:11:04.0124 0584 [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
14:11:04.0124 0584 C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE - ok
14:11:04.0129 0584 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
14:11:04.0129 0584 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
14:11:04.0134 0584 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
14:11:04.0134 0584 C:\Windows\System32\mscms.dll - ok
14:11:04.0137 0584 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
14:11:04.0137 0584 C:\Windows\System32\pcasvc.dll - ok
14:11:04.0141 0584 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
14:11:04.0141 0584 C:\Windows\System32\snmptrap.exe - ok
14:11:04.0147 0584 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:11:04.0147 0584 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
14:11:04.0151 0584 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
14:11:04.0151 0584 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
14:11:04.0155 0584 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
14:11:04.0155 0584 C:\Windows\SysWOW64\ntdll.dll - ok
14:11:04.0160 0584 [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
14:11:04.0160 0584 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
14:11:04.0164 0584 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
14:11:04.0164 0584 C:\Windows\System32\sstpsvc.dll - ok
14:11:04.0168 0584 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
14:11:04.0168 0584 C:\Windows\System32\provsvc.dll - ok
14:11:04.0172 0584 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
14:11:04.0172 0584 C:\Windows\System32\wow64.dll - ok
14:11:04.0176 0584 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
14:11:04.0176 0584 C:\Windows\System32\wow64win.dll - ok
14:11:04.0181 0584 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
14:11:04.0181 0584 C:\Windows\System32\wow64cpu.dll - ok
14:11:04.0185 0584 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
14:11:04.0185 0584 C:\Windows\SysWOW64\kernel32.dll - ok
14:11:04.0190 0584 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
14:11:04.0190 0584 C:\Windows\SysWOW64\KernelBase.dll - ok
14:11:04.0193 0584 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
14:11:04.0193 0584 C:\Windows\SysWOW64\user32.dll - ok
14:11:04.0198 0584 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
14:11:04.0198 0584 C:\Windows\SysWOW64\gdi32.dll - ok
14:11:04.0202 0584 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
14:11:04.0202 0584 C:\Windows\SysWOW64\lpk.dll - ok
14:11:04.0206 0584 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
14:11:04.0206 0584 C:\Windows\SysWOW64\usp10.dll - ok
14:11:04.0211 0584 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
14:11:04.0211 0584 C:\Windows\SysWOW64\msvcrt.dll - ok
14:11:04.0215 0584 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
14:11:04.0215 0584 C:\Windows\SysWOW64\advapi32.dll - ok
14:11:04.0219 0584 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
14:11:04.0219 0584 C:\Windows\SysWOW64\rpcrt4.dll - ok
14:11:04.0223 0584 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
14:11:04.0223 0584 C:\Windows\SysWOW64\sechost.dll - ok
14:11:04.0227 0584 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
14:11:04.0227 0584 C:\Windows\SysWOW64\cryptbase.dll - ok
14:11:04.0232 0584 [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
14:11:04.0232 0584 C:\Windows\SysWOW64\shell32.dll - ok
14:11:04.0236 0584 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
14:11:04.0236 0584 C:\Windows\SysWOW64\sspicli.dll - ok
14:11:04.0240 0584 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
14:11:04.0240 0584 C:\Windows\SysWOW64\ole32.dll - ok
14:11:04.0244 0584 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
14:11:04.0244 0584 C:\Windows\SysWOW64\shlwapi.dll - ok
14:11:04.0251 0584 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
14:11:04.0251 0584 C:\Windows\SysWOW64\oleaut32.dll - ok
14:11:04.0254 0584 [ 92245C959E5BC378809D2CC5E9F6E9C7 ] C:\Windows\SysWOW64\crypt32.dll
14:11:04.0254 0584 C:\Windows\SysWOW64\crypt32.dll - ok
14:11:04.0260 0584 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
14:11:04.0260 0584 C:\Windows\SysWOW64\msasn1.dll - ok
14:11:04.0265 0584 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
14:11:04.0265 0584 C:\Windows\SysWOW64\wintrust.dll - ok
14:11:04.0271 0584 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
14:11:04.0271 0584 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
14:11:04.0277 0584 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
14:11:04.0277 0584 C:\Windows\SysWOW64\imm32.dll - ok
14:11:04.0282 0584 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
14:11:04.0282 0584 C:\Windows\SysWOW64\msctf.dll - ok
14:11:04.0286 0584 [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Program Files\IDT\WDM\AESTSr64.exe
14:11:04.0286 0584 C:\Program Files\IDT\WDM\AESTSr64.exe - ok
14:11:04.0291 0584 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:11:04.0291 0584 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
14:11:04.0296 0584 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
14:11:04.0296 0584 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
14:11:04.0301 0584 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
14:11:04.0301 0584 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
14:11:04.0307 0584 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
14:11:04.0307 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
14:11:04.0312 0584 [ 6D41F6AA35220E7A54543075B27E8F83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
14:11:04.0312 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
14:11:04.0316 0584 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
14:11:04.0316 0584 C:\Windows\SysWOW64\version.dll - ok
14:11:04.0321 0584 [ 6953E980ADCA0BE816C7FF463695499A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
14:11:04.0321 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
14:11:04.0325 0584 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
14:11:04.0325 0584 C:\Windows\SysWOW64\ws2_32.dll - ok
14:11:04.0329 0584 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
14:11:04.0329 0584 C:\Windows\SysWOW64\nsi.dll - ok
14:11:04.0333 0584 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
14:11:04.0333 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
14:11:04.0337 0584 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
14:11:04.0337 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
14:11:04.0342 0584 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
14:11:04.0342 0584 C:\Windows\SysWOW64\wsock32.dll - ok
14:11:04.0346 0584 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
14:11:04.0346 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
14:11:04.0351 0584 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
14:11:04.0351 0584 C:\Windows\SysWOW64\winmm.dll - ok
14:11:04.0355 0584 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
14:11:04.0355 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
14:11:04.0359 0584 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
14:11:04.0360 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
14:11:04.0364 0584 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
14:11:04.0364 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
14:11:04.0369 0584 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
14:11:04.0369 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
14:11:04.0373 0584 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
14:11:04.0374 0584 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
14:11:04.0377 0584 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
14:11:04.0377 0584 C:\Windows\SysWOW64\setupapi.dll - ok
14:11:04.0383 0584 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
14:11:04.0383 0584 C:\Windows\SysWOW64\cfgmgr32.dll - ok
14:11:04.0387 0584 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
14:11:04.0387 0584 C:\Windows\SysWOW64\devobj.dll - ok
14:11:04.0391 0584 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
14:11:04.0391 0584 C:\Windows\SysWOW64\userenv.dll - ok
14:11:04.0396 0584 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
14:11:04.0396 0584 C:\Windows\SysWOW64\dnssd.dll - ok
14:11:04.0399 0584 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
14:11:04.0399 0584 C:\Windows\SysWOW64\ntmarta.dll - ok
14:11:04.0404 0584 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
14:11:04.0404 0584 C:\Windows\SysWOW64\profapi.dll - ok
14:11:04.0408 0584 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
14:11:04.0408 0584 C:\Windows\SysWOW64\wtsapi32.dll - ok
14:11:04.0412 0584 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
14:11:04.0412 0584 C:\Windows\SysWOW64\Wldap32.dll - ok
14:11:04.0417 0584 [ F48FEB7DA35821DA15E0B006DCB9A169 ] C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
14:11:04.0417 0584 C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE - ok
14:11:04.0421 0584 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
14:11:04.0421 0584 C:\Windows\SysWOW64\mswsock.dll - ok
14:11:04.0425 0584 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
14:11:04.0425 0584 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
14:11:04.0430 0584 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
14:11:04.0430 0584 C:\Windows\SysWOW64\msi.dll - ok
14:11:04.0435 0584 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
14:11:04.0435 0584 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
14:11:04.0438 0584 [ 2473CA6595A2659D7039A4A89FECA269 ] C:\Windows\SysWOW64\wininet.dll
14:11:04.0439 0584 C:\Windows\SysWOW64\wininet.dll - ok
14:11:04.0443 0584 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
14:11:04.0443 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
14:11:04.0449 0584 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
14:11:04.0449 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
14:11:04.0453 0584 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
14:11:04.0453 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
14:11:04.0457 0584 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
14:11:04.0457 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
14:11:04.0462 0584 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
14:11:04.0462 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
14:11:04.0466 0584 [ F383B1AD5D7FDC1ACB0D900B50572F8D ] C:\Windows\SysWOW64\iertutil.dll
14:11:04.0466 0584 C:\Windows\SysWOW64\iertutil.dll - ok
14:11:04.0470 0584 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
14:11:04.0470 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
14:11:04.0474 0584 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
14:11:04.0474 0584 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
14:11:04.0479 0584 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
14:11:04.0479 0584 C:\Windows\SysWOW64\SensApi.dll - ok
14:11:04.0483 0584 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
14:11:04.0483 0584 C:\Windows\SysWOW64\winnsi.dll - ok
14:11:04.0487 0584 [ A7DDDDE163F16AB49DF3DE9EEC715495 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
14:11:04.0487 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
14:11:04.0492 0584 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
14:11:04.0492 0584 C:\Program Files\Bonjour\mDNSResponder.exe - ok
14:11:04.0496 0584 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
14:11:04.0496 0584 C:\Windows\SysWOW64\clbcatq.dll - ok
14:11:04.0500 0584 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] C:\Windows\System32\cryptsvc.dll
14:11:04.0500 0584 C:\Windows\System32\cryptsvc.dll - ok
14:11:04.0504 0584 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
14:11:04.0504 0584 C:\Windows\System32\dps.dll - ok
14:11:04.0509 0584 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
14:11:04.0509 0584 C:\Windows\System32\efssvc.dll - ok
14:11:04.0513 0584 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
14:11:04.0513 0584 C:\Windows\SysWOW64\cryptsp.dll - ok
14:11:04.0517 0584 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
14:11:04.0517 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
14:11:04.0522 0584 [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
14:11:04.0522 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
14:11:04.0526 0584 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
14:11:04.0526 0584 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
14:11:04.0530 0584 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
14:11:04.0530 0584 C:\Windows\SysWOW64\rsaenh.dll - ok
14:11:04.0534 0584 [ 2C4C22EA1735F21F355EB1A39832F7DF ] C:\Windows\System32\cryptnet.dll
14:11:04.0534 0584 C:\Windows\System32\cryptnet.dll - ok
14:11:04.0538 0584 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
14:11:04.0538 0584 C:\Windows\System32\vssapi.dll - ok
14:11:04.0542 0584 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
14:11:04.0542 0584 C:\Windows\System32\efscore.dll - ok
14:11:04.0546 0584 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
14:11:04.0546 0584 C:\Windows\System32\vsstrace.dll - ok
14:11:04.0550 0584 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
14:11:04.0550 0584 C:\Windows\System32\efsutil.dll - ok
14:11:04.0555 0584 [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
14:11:04.0555 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe - ok
14:11:04.0559 0584 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
14:11:04.0559 0584 C:\Windows\SysWOW64\secur32.dll - ok
14:11:04.0563 0584 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
14:11:04.0563 0584 C:\Windows\System32\taskschd.dll - ok
14:11:04.0567 0584 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
14:11:04.0567 0584 C:\Windows\SysWOW64\credssp.dll - ok
14:11:04.0571 0584 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
14:11:04.0571 0584 C:\Windows\SysWOW64\schannel.dll - ok
14:11:04.0575 0584 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
14:11:04.0575 0584 C:\Windows\System32\dssenh.dll - ok
14:11:04.0578 0584 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
14:11:04.0578 0584 C:\Windows\SysWOW64\psapi.dll - ok
14:11:04.0582 0584 [ B4E8DC817963B256537B1EC09AF0647E ] C:\Windows\System32\drivers\epfwwfpr.sys
14:11:04.0582 0584 C:\Windows\System32\drivers\epfwwfpr.sys - ok
14:11:04.0587 0584 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
14:11:04.0587 0584 C:\Windows\System32\FDResPub.dll - ok
14:11:04.0591 0584 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
14:11:04.0591 0584 C:\Windows\System32\IKEEXT.DLL - ok
14:11:04.0595 0584 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
14:11:04.0595 0584 C:\Windows\System32\WSDApi.dll - ok
14:11:04.0599 0584 [ FCA0837B2739C044EEC00AF0DDD73FFC ] C:\Windows\SysWOW64\ieframe.dll
14:11:04.0600 0584 C:\Windows\SysWOW64\ieframe.dll - ok
14:11:04.0603 0584 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
14:11:04.0603 0584 C:\Windows\System32\webservices.dll - ok
14:11:04.0608 0584 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] C:\Program Files (x86)\Nero\Update\NASvc.exe
14:11:04.0608 0584 C:\Program Files (x86)\Nero\Update\NASvc.exe - ok
14:11:04.0612 0584 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
14:11:04.0612 0584 C:\Windows\System32\fundisc.dll - ok
14:11:04.0617 0584 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
14:11:04.0617 0584 C:\Windows\System32\vpnikeapi.dll - ok
14:11:04.0621 0584 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
14:11:04.0621 0584 C:\Windows\System32\winhttp.dll - ok
14:11:04.0625 0584 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
14:11:04.0625 0584 C:\Windows\System32\webio.dll - ok
14:11:04.0631 0584 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
14:11:04.0631 0584 C:\Windows\System32\httpapi.dll - ok
14:11:04.0636 0584 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
14:11:04.0636 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
14:11:04.0640 0584 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
14:11:04.0640 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
14:11:04.0644 0584 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
14:11:04.0644 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
14:11:04.0650 0584 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
14:11:04.0650 0584 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
14:11:04.0654 0584 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
14:11:04.0654 0584 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
14:11:04.0658 0584 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
14:11:04.0658 0584 C:\Windows\SysWOW64\cryptui.dll - ok
14:11:04.0663 0584 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
14:11:04.0663 0584 C:\Windows\SysWOW64\powrprof.dll - ok
14:11:04.0667 0584 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
14:11:04.0667 0584 C:\Windows\SysWOW64\wer.dll - ok
14:11:04.0671 0584 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
14:11:04.0671 0584 C:\Windows\SysWOW64\netapi32.dll - ok
14:11:04.0676 0584 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
14:11:04.0676 0584 C:\Windows\SysWOW64\netutils.dll - ok
14:11:04.0680 0584 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
14:11:04.0681 0584 C:\Windows\SysWOW64\samcli.dll - ok
14:11:04.0685 0584 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
14:11:04.0685 0584 C:\Windows\SysWOW64\srvcli.dll - ok
14:11:04.0689 0584 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
14:11:04.0689 0584 C:\Windows\SysWOW64\wkscli.dll - ok
14:11:04.0693 0584 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
14:11:04.0693 0584 C:\Windows\SysWOW64\rasapi32.dll - ok
14:11:04.0697 0584 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
14:11:04.0698 0584 C:\Windows\SysWOW64\mpr.dll - ok
14:11:04.0701 0584 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
14:11:04.0701 0584 C:\Windows\SysWOW64\rasman.dll - ok
14:11:04.0705 0584 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
14:11:04.0705 0584 C:\Windows\SysWOW64\Faultrep.dll - ok
14:11:04.0709 0584 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
14:11:04.0709 0584 C:\Windows\SysWOW64\wlanapi.dll - ok
14:11:04.0714 0584 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
14:11:04.0714 0584 C:\Windows\SysWOW64\wlanutil.dll - ok
14:11:04.0718 0584 [ 48B05932113F99C3A357A21669CC508A ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnHips.dll
14:11:04.0718 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnHips.dll - ok
14:11:04.0722 0584 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
14:11:04.0722 0584 C:\Windows\SysWOW64\webio.dll - ok
14:11:04.0727 0584 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
14:11:04.0727 0584 C:\Windows\SysWOW64\winhttp.dll - ok
14:11:04.0732 0584 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
14:11:04.0732 0584 C:\Windows\SysWOW64\xmllite.dll - ok
14:11:04.0735 0584 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
14:11:04.0735 0584 C:\Windows\System32\nlasvc.dll - ok
14:11:04.0739 0584 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
14:11:04.0739 0584 C:\Windows\SysWOW64\cryptdll.dll - ok
14:11:04.0744 0584 [ 95346F73CC53DE9AE25FA799F86FA65F ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnScan.dll
14:11:04.0744 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnScan.dll - ok
14:11:04.0749 0584 [ F7D487120B62FEF12B47EC686FFB96BE ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnAmon.dll
14:11:04.0749 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnAmon.dll - ok
14:11:04.0753 0584 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
14:11:04.0753 0584 C:\Windows\System32\ncsi.dll - ok
14:11:04.0757 0584 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
14:11:04.0757 0584 C:\Windows\System32\ssdpapi.dll - ok
14:11:04.0761 0584 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
14:11:04.0761 0584 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe - ok
14:11:04.0766 0584 [ 1A129605FF35F649357AAFE188D94026 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEmon.dll
14:11:04.0766 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEmon.dll - ok
14:11:04.0770 0584 [ A8680E030E7B680566A99E9AD11F307C ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnDmon.dll
14:11:04.0770 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnDmon.dll - ok
14:11:04.0774 0584 [ 46867D025760A245C6018760A78A8893 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEpfw.dll
14:11:04.0775 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnEpfw.dll - ok
14:11:04.0780 0584 [ 8C08120E5CD0921B50E67BE66A2302DD ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnUpdate.dll
14:11:04.0780 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnUpdate.dll - ok
14:11:04.0784 0584 [ 1E989EED38E93495C0A8093213977599 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\updater.dll
14:11:04.0784 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\updater.dll - ok
14:11:04.0789 0584 [ 9D567FD00FA6A9370F0B263E6ABA6426 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnMailPlugins.dll
14:11:04.0789 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrnMailPlugins.dll - ok
14:11:04.0793 0584 [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll
14:11:04.0793 0584 C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll - ok
14:11:04.0798 0584 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
14:11:04.0798 0584 C:\Windows\System32\wsock32.dll - ok
14:11:04.0802 0584 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
14:11:04.0802 0584 C:\Windows\System32\drivers\PEAuth.sys - ok
14:11:04.0806 0584 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
14:11:04.0806 0584 C:\Windows\System32\aepic.dll - ok
14:11:04.0810 0584 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
14:11:04.0810 0584 C:\Windows\System32\drivers\secdrv.sys - ok
14:11:04.0815 0584 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
14:11:04.0818 0584 C:\Windows\System32\sfc.dll - ok
14:11:04.0820 0584 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
14:11:04.0820 0584 C:\Windows\System32\sfc_os.dll - ok
14:11:04.0824 0584 [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
14:11:04.0824 0584 C:\Windows\System32\drivers\Sftfslh.sys - ok
14:11:04.0827 0584 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
14:11:04.0827 0584 C:\Windows\System32\drivers\Sftplaylh.sys - ok
14:11:04.0832 0584 [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\SysWOW64\schedcli.dll
14:11:04.0832 0584 C:\Windows\SysWOW64\schedcli.dll - ok
14:11:04.0837 0584 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
14:11:04.0837 0584 C:\Windows\SysWOW64\sfc.dll - ok
14:11:04.0840 0584 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
14:11:04.0840 0584 C:\Windows\SysWOW64\sfc_os.dll - ok
14:11:04.0845 0584 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
14:11:04.0845 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
14:11:04.0849 0584 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:11:04.0849 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
14:11:04.0854 0584 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
14:11:04.0854 0584 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
14:11:04.0859 0584 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
14:11:04.0859 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
14:11:04.0865 0584 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
14:11:04.0865 0584 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
14:11:04.0868 0584 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
14:11:04.0868 0584 C:\Windows\System32\drivers\srvnet.sys - ok
14:11:04.0872 0584 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
14:11:04.0873 0584 C:\Windows\System32\sysmain.dll - ok
14:11:04.0877 0584 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
14:11:04.0877 0584 C:\Windows\System32\wiaservc.dll - ok
14:11:04.0881 0584 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
14:11:04.0882 0584 C:\Windows\System32\wiatrace.dll - ok
14:11:04.0885 0584 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
14:11:04.0885 0584 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
14:11:04.0889 0584 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
14:11:04.0890 0584 C:\Windows\SysWOW64\wbemcomn.dll - ok
14:11:04.0893 0584 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
14:11:04.0893 0584 C:\Windows\System32\aeevts.dll - ok
14:11:04.0898 0584 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
14:11:04.0898 0584 C:\Windows\System32\drivers\tcpipreg.sys - ok
14:11:04.0902 0584 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
14:11:04.0902 0584 C:\Windows\System32\trkwks.dll - ok
14:11:04.0907 0584 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
14:11:04.0907 0584 C:\Windows\System32\wbem\WMIsvc.dll - ok
14:11:04.0912 0584 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
14:11:04.0912 0584 C:\Windows\System32\wsdchngr.dll - ok
14:11:04.0915 0584 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
14:11:04.0915 0584 C:\Windows\System32\fdPnp.dll - ok
14:11:04.0919 0584 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:11:04.0919 0584 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
14:11:04.0924 0584 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
14:11:04.0924 0584 C:\Windows\SysWOW64\msxml3.dll - ok
14:11:04.0929 0584 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
14:11:04.0929 0584 C:\Windows\SysWOW64\winsta.dll - ok
14:11:04.0932 0584 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
14:11:04.0932 0584 C:\Windows\System32\wbemcomn.dll - ok
14:11:04.0936 0584 [ EE22584E155C7B37D491B17D00A38B1E ] C:\Windows\System32\HPWia2_DJ3510.dll
14:11:04.0936 0584 C:\Windows\System32\HPWia2_DJ3510.dll - ok
14:11:04.0942 0584 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
14:11:04.0942 0584 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
14:11:04.0945 0584 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
14:11:04.0945 0584 C:\Windows\System32\SensApi.dll - ok
14:11:04.0950 0584 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
14:11:04.0950 0584 C:\Windows\System32\wbem\WinMgmtR.dll - ok
14:11:04.0954 0584 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
14:11:04.0954 0584 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
14:11:04.0958 0584 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
14:11:04.0958 0584 C:\Windows\System32\wbem\wbemcore.dll - ok
14:11:04.0963 0584 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
14:11:04.0963 0584 C:\Windows\System32\wbem\fastprox.dll - ok
14:11:04.0968 0584 [ A4523F192E580B7397E5E0CF1AF0BBBC ] C:\Windows\System32\HPScanTRDrv_DJ3510.dll
14:11:04.0968 0584 C:\Windows\System32\HPScanTRDrv_DJ3510.dll - ok
14:11:04.0971 0584 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
14:11:04.0971 0584 C:\Windows\System32\ntdsapi.dll - ok
14:11:04.0976 0584 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
14:11:04.0976 0584 C:\Windows\System32\wbem\esscli.dll - ok
14:11:04.0980 0584 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
14:11:04.0980 0584 C:\Windows\System32\wer.dll - ok
14:11:04.0985 0584 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
14:11:04.0985 0584 C:\Windows\System32\wbem\wbemprox.dll - ok
14:11:04.0988 0584 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
14:11:04.0988 0584 C:\Windows\System32\wbem\wbemsvc.dll - ok
14:11:04.0993 0584 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
14:11:04.0993 0584 C:\Windows\System32\wbem\wmiutils.dll - ok
14:11:04.0998 0584 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
14:11:04.0998 0584 C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
14:11:05.0002 0584 [ 39A73D4D1831BC27688634D3541CF6EC ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
14:11:05.0003 0584 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
14:11:05.0007 0584 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
14:11:05.0007 0584 C:\Windows\System32\msxml3.dll - ok
14:11:05.0012 0584 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
14:11:05.0012 0584 C:\Windows\System32\winspool.drv - ok
14:11:05.0015 0584 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
14:11:05.0015 0584 C:\Windows\SysWOW64\imagehlp.dll - ok
14:11:05.0019 0584 [ DD502A2E7B85EA7A3814C1034E6C23D3 ] C:\Windows\AppPatch\AcGenral.dll
14:11:05.0019 0584 C:\Windows\AppPatch\AcGenral.dll - ok
14:11:05.0024 0584 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
14:11:05.0024 0584 C:\Windows\SysWOW64\apphelp.dll - ok
14:11:05.0029 0584 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
14:11:05.0029 0584 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
14:11:05.0033 0584 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
14:11:05.0033 0584 C:\Windows\SysWOW64\uxtheme.dll - ok
14:11:05.0038 0584 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
14:11:05.0038 0584 C:\Windows\SysWOW64\msacm32.dll - ok
14:11:05.0042 0584 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
14:11:05.0042 0584 C:\Windows\SysWOW64\dwmapi.dll - ok
14:11:05.0047 0584 [ B3DC4D1658093C1E486CA9F22180BECF ] C:\Windows\SysWOW64\urlmon.dll
14:11:05.0047 0584 C:\Windows\SysWOW64\urlmon.dll - ok
14:11:05.0051 0584 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:11:05.0051 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
14:11:05.0056 0584 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
14:11:05.0056 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
14:11:05.0060 0584 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
14:11:05.0060 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
14:11:05.0065 0584 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
14:11:05.0065 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
14:11:05.0070 0584 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
14:11:05.0070 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
14:11:05.0074 0584 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
14:11:05.0075 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
14:11:05.0077 0584 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
14:11:05.0077 0584 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
14:11:05.0083 0584 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
14:11:05.0083 0584 C:\Windows\SysWOW64\logoncli.dll - ok
14:11:05.0086 0584 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
14:11:05.0086 0584 C:\Windows\System32\drivers\srv2.sys - ok
14:11:05.0090 0584 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
14:11:05.0090 0584 C:\Windows\System32\drivers\srv.sys - ok
14:11:05.0094 0584 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
14:11:05.0094 0584 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
14:11:05.0098 0584 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
14:11:05.0099 0584 C:\Windows\System32\drivers\Sftredirlh.sys - ok
14:11:05.0102 0584 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
14:11:05.0102 0584 C:\Windows\SysWOW64\fltLib.dll - ok
14:11:05.0106 0584 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
14:11:05.0106 0584 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
14:11:05.0110 0584 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
14:11:05.0110 0584 C:\Windows\SysWOW64\ntdsapi.dll - ok
14:11:05.0115 0584 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
14:11:05.0115 0584 C:\Windows\System32\wbem\repdrvfs.dll - ok
14:11:05.0119 0584 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
14:11:05.0119 0584 C:\Windows\System32\iphlpsvc.dll - ok
14:11:05.0122 0584 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
14:11:05.0123 0584 C:\Windows\System32\sqmapi.dll - ok
14:11:05.0127 0584 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
14:11:05.0127 0584 C:\Windows\System32\wdscore.dll - ok
14:11:05.0131 0584 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
14:11:05.0131 0584 C:\Windows\System32\browser.dll - ok
14:11:05.0135 0584 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
14:11:05.0135 0584 C:\Windows\System32\netmsg.dll - ok
14:11:05.0139 0584 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
14:11:05.0139 0584 C:\Windows\System32\srvsvc.dll - ok
14:11:05.0143 0584 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
14:11:05.0143 0584 C:\Windows\System32\clusapi.dll - ok
14:11:05.0148 0584 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
14:11:05.0148 0584 C:\Windows\System32\sscore.dll - ok
14:11:05.0152 0584 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
14:11:05.0152 0584 C:\Windows\System32\resutils.dll - ok
14:11:05.0156 0584 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
14:11:05.0156 0584 C:\Windows\System32\hnetcfg.dll - ok
14:11:05.0160 0584 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
14:11:05.0160 0584 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
14:11:05.0165 0584 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
14:11:05.0165 0584 C:\Program Files\Bonjour\mdnsNSP.dll - ok
14:11:05.0169 0584 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
14:11:05.0169 0584 C:\Windows\System32\rasadhlp.dll - ok
14:11:05.0173 0584 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
14:11:05.0173 0584 C:\Windows\System32\localspl.dll - ok
14:11:05.0177 0584 [ F18B69DD21C97874D9EE60E6B700C276 ] C:\Windows\System32\hpinkstsAD11LM.dll
14:11:05.0178 0584 C:\Windows\System32\hpinkstsAD11LM.dll - ok
14:11:05.0182 0584 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
14:11:05.0182 0584 C:\Windows\System32\PrintIsolationProxy.dll - ok
14:11:05.0186 0584 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
14:11:05.0186 0584 C:\Windows\System32\spoolss.dll - ok
14:11:05.0190 0584 [ 3D7C1DFE052288F40AC9ABFB2A824B92 ] C:\Windows\System32\HPDiscoPMAD11.dll
14:11:05.0190 0584 C:\Windows\System32\HPDiscoPMAD11.dll - ok
14:11:05.0195 0584 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
14:11:05.0195 0584 C:\Windows\System32\wsnmp32.dll - ok
14:11:05.0199 0584 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
14:11:05.0199 0584 C:\Windows\System32\FXSMON.dll - ok
14:11:05.0203 0584 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
14:11:05.0203 0584 C:\Windows\System32\tcpmon.dll - ok
14:11:05.0207 0584 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
14:11:05.0207 0584 C:\Windows\System32\snmpapi.dll - ok
14:11:05.0211 0584 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
14:11:05.0211 0584 C:\Windows\System32\usbmon.dll - ok
14:11:05.0215 0584 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
14:11:05.0216 0584 C:\Windows\System32\WSDMon.dll - ok
14:11:05.0220 0584 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
14:11:05.0220 0584 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
14:11:05.0224 0584 [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
14:11:05.0224 0584 C:\Windows\System32\win32spl.dll - ok
14:11:05.0228 0584 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
14:11:05.0228 0584 C:\Windows\System32\inetpp.dll - ok
14:11:05.0232 0584 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
14:11:05.0232 0584 C:\Windows\System32\cscapi.dll - ok
14:11:05.0236 0584 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
14:11:05.0237 0584 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
14:11:05.0240 0584 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
14:11:05.0240 0584 C:\Windows\System32\ncobjapi.dll - ok
14:11:05.0245 0584 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
14:11:05.0245 0584 C:\Windows\System32\wbem\wbemess.dll - ok
14:11:05.0249 0584 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
14:11:05.0249 0584 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
14:11:05.0253 0584 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
14:11:05.0253 0584 C:\Windows\System32\wbem\cimwin32.dll - ok
14:11:05.0257 0584 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
14:11:05.0257 0584 C:\Windows\System32\framedynos.dll - ok
14:11:05.0261 0584 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
14:11:05.0261 0584 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
14:11:05.0265 0584 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
14:11:05.0265 0584 C:\Windows\System32\wmi.dll - ok
14:11:05.0269 0584 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
14:11:05.0269 0584 C:\Windows\SysWOW64\msxml6.dll - ok
14:11:05.0273 0584 [ E2A516749713AC6F657EBDA2BF7856B4 ] C:\Program Files\ESET\ESET NOD32 Antivirus\x86\eplgOE.dll
14:11:05.0273 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\x86\eplgOE.dll - ok
14:11:05.0278 0584 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
14:11:05.0278 0584 C:\Windows\SysWOW64\rundll32.exe - ok
14:11:05.0282 0584 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
14:11:05.0282 0584 C:\Windows\AppPatch\AcLayers.dll - ok
14:11:05.0286 0584 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
14:11:05.0286 0584 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
14:11:05.0291 0584 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
14:11:05.0291 0584 C:\Windows\System32\dllhost.exe - ok
14:11:05.0296 0584 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
14:11:05.0296 0584 C:\Windows\SysWOW64\winspool.drv - ok
14:11:05.0300 0584 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
14:11:05.0300 0584 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
14:11:05.0304 0584 [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll
14:11:05.0305 0584 C:\Windows\AppPatch\acwow64.dll - ok
14:11:05.0308 0584 [ 48A33E6876A1ADD9E0C809AA461A9BA1 ] C:\Program Files\ESET\ESET NOD32 Antivirus\eplgOE.dll
14:11:05.0309 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eplgOE.dll - ok
14:11:05.0313 0584 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
14:11:05.0313 0584 C:\Windows\System32\rundll32.exe - ok
14:11:05.0317 0584 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
14:11:05.0317 0584 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
14:11:05.0322 0584 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
14:11:05.0322 0584 C:\Windows\System32\IDStore.dll - ok
14:11:05.0326 0584 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
14:11:05.0326 0584 C:\Windows\System32\taskhost.exe - ok
14:11:05.0329 0584 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
14:11:05.0329 0584 C:\Windows\SysWOW64\wship6.dll - ok
14:11:05.0333 0584 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
14:11:05.0333 0584 C:\Windows\SysWOW64\dnsapi.dll - ok
14:11:05.0337 0584 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
14:11:05.0337 0584 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
14:11:05.0341 0584 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
14:11:05.0341 0584 C:\Windows\System32\drivers\fastfat.sys - ok
14:11:05.0346 0584 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
14:11:05.0346 0584 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
14:11:05.0350 0584 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
14:11:05.0350 0584 C:\Windows\System32\taskeng.exe - ok
14:11:05.0354 0584 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
14:11:05.0354 0584 C:\Windows\SysWOW64\dbghelp.dll - ok
14:11:05.0358 0584 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
14:11:05.0358 0584 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
14:11:05.0362 0584 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
14:11:05.0362 0584 C:\Windows\SysWOW64\es.dll - ok
14:11:05.0366 0584 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
14:11:05.0366 0584 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
14:11:05.0370 0584 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
14:11:05.0370 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
14:11:05.0374 0584 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
14:11:05.0374 0584 C:\Windows\SysWOW64\wscisvif.dll - ok
14:11:05.0378 0584 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
14:11:05.0378 0584 C:\Windows\SysWOW64\wscapi.dll - ok
14:11:05.0382 0584 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
14:11:05.0382 0584 C:\Windows\SysWOW64\rasadhlp.dll - ok
14:11:05.0387 0584 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
14:11:05.0387 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
14:11:05.0391 0584 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
14:11:05.0391 0584 C:\Windows\System32\PlaySndSrv.dll - ok
14:11:05.0395 0584 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
14:11:05.0395 0584 C:\Windows\SysWOW64\propsys.dll - ok
14:11:05.0399 0584 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
14:11:05.0399 0584 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
14:11:05.0404 0584 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
14:11:05.0404 0584 C:\Windows\SysWOW64\mscoree.dll - ok
14:11:05.0408 0584 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
14:11:05.0408 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
14:11:05.0413 0584 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
14:11:05.0413 0584 C:\Windows\SysWOW64\rtutils.dll - ok
14:11:05.0417 0584 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
14:11:05.0417 0584 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
14:11:05.0421 0584 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
14:11:05.0421 0584 C:\Windows\System32\wdi.dll - ok
14:11:05.0426 0584 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
14:11:05.0426 0584 C:\Windows\System32\Apphlpdm.dll - ok
14:11:05.0431 0584 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
14:11:05.0431 0584 C:\Windows\System32\diagperf.dll - ok
14:11:05.0435 0584 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
14:11:05.0435 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
14:11:05.0440 0584 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
14:11:05.0440 0584 C:\Windows\System32\qmgr.dll - ok
14:11:05.0443 0584 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
14:11:05.0444 0584 C:\Windows\System32\AtBroker.exe - ok
14:11:05.0448 0584 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
14:11:05.0448 0584 C:\Windows\SysWOW64\msimg32.dll - ok
14:11:05.0452 0584 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
14:11:05.0452 0584 C:\Windows\System32\TSChannel.dll - ok
14:11:05.0457 0584 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
14:11:05.0457 0584 C:\Windows\SysWOW64\comdlg32.dll - ok
14:11:05.0462 0584 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
14:11:05.0462 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
14:11:05.0467 0584 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
14:11:05.0467 0584 C:\Windows\System32\wpdbusenum.dll - ok
14:11:05.0470 0584 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
14:11:05.0471 0584 C:\Windows\System32\perftrack.dll - ok
14:11:05.0475 0584 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
14:11:05.0475 0584 C:\Windows\System32\bitsperf.dll - ok
14:11:05.0479 0584 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
14:11:05.0480 0584 C:\Windows\System32\mpr.dll - ok
14:11:05.0483 0584 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
14:11:05.0483 0584 C:\Windows\System32\pnpts.dll - ok
14:11:05.0487 0584 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
14:11:05.0487 0584 C:\Windows\System32\HotStartUserAgent.dll - ok
14:11:05.0492 0584 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
14:11:05.0492 0584 C:\Windows\System32\PortableDeviceApi.dll - ok
14:11:05.0497 0584 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
14:11:05.0497 0584 C:\Windows\System32\userinit.exe - ok
14:11:05.0502 0584 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
14:11:05.0502 0584 C:\Windows\System32\wdiasqmmodule.dll - ok
14:11:05.0506 0584 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
14:11:05.0506 0584 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
14:11:05.0511 0584 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
14:11:05.0511 0584 C:\Windows\System32\bitsigd.dll - ok
14:11:05.0516 0584 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
14:11:05.0516 0584 C:\Windows\System32\MsCtfMonitor.dll - ok
14:11:05.0520 0584 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
14:11:05.0520 0584 C:\Windows\System32\radardt.dll - ok
14:11:05.0524 0584 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
14:11:05.0524 0584 C:\Windows\SysWOW64\oledlg.dll - ok
14:11:05.0529 0584 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
14:11:05.0529 0584 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
14:11:05.0532 0584 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
14:11:05.0532 0584 C:\Windows\System32\msutb.dll - ok
14:11:05.0536 0584 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
14:11:05.0536 0584 C:\Windows\System32\upnp.dll - ok
14:11:05.0540 0584 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:11:05.0540 0584 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
14:11:05.0546 0584 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
14:11:05.0546 0584 C:\Windows\SysWOW64\oleacc.dll - ok
14:11:05.0549 0584 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
14:11:05.0549 0584 C:\Windows\System32\dwm.exe - ok
14:11:05.0554 0584 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
14:11:05.0554 0584 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
14:11:05.0558 0584 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
14:11:05.0558 0584 C:\Windows\System32\IPSECSVC.DLL - ok
14:11:05.0562 0584 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
14:11:05.0562 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
14:11:05.0567 0584 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
14:11:05.0567 0584 C:\Windows\System32\dwmredir.dll - ok
14:11:05.0571 0584 [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll
14:11:05.0571 0584 C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok
14:11:05.0575 0584 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
14:11:05.0575 0584 C:\Windows\System32\aelupsvc.dll - ok
14:11:05.0579 0584 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
14:11:05.0579 0584 C:\Windows\System32\esent.dll - ok
14:11:05.0582 0584 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
14:11:05.0582 0584 C:\Windows\System32\ssdpsrv.dll - ok
14:11:05.0586 0584 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
14:11:05.0586 0584 C:\Windows\System32\dwmcore.dll - ok
14:11:05.0590 0584 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
14:11:05.0591 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
14:11:05.0596 0584 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
14:11:05.0596 0584 C:\Windows\explorer.exe - ok
14:11:05.0599 0584 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
14:11:05.0599 0584 C:\Windows\System32\npmproxy.dll - ok
14:11:05.0603 0584 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
14:11:05.0603 0584 C:\Windows\System32\d3d10_1.dll - ok
14:11:05.0607 0584 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
14:11:05.0608 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
14:11:05.0612 0584 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
14:11:05.0613 0584 C:\Windows\System32\FwRemoteSvr.dll - ok
14:11:05.0618 0584 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
14:11:05.0618 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
14:11:05.0621 0584 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
14:11:05.0621 0584 C:\Windows\System32\d3d10_1core.dll - ok
14:11:05.0625 0584 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
14:11:05.0625 0584 C:\Windows\System32\ndiscapCfg.dll - ok
14:11:05.0630 0584 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
14:11:05.0630 0584 C:\Windows\System32\dxgi.dll - ok
14:11:05.0633 0584 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
14:11:05.0633 0584 C:\Windows\System32\rascfg.dll - ok
14:11:05.0638 0584 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
14:11:05.0638 0584 C:\Windows\System32\ExplorerFrame.dll - ok
14:11:05.0642 0584 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
14:11:05.0642 0584 C:\Windows\System32\mprapi.dll - ok
14:11:05.0647 0584 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
14:11:05.0647 0584 C:\Windows\SysWOW64\cscapi.dll - ok
14:11:05.0650 0584 [ 4C92EB7535CAA1681A77D928FBF9771F ] C:\Windows\System32\d3d11.dll
14:11:05.0651 0584 C:\Windows\System32\d3d11.dll - ok
14:11:05.0654 0584 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
14:11:05.0654 0584 C:\Windows\System32\qmgrprxy.dll - ok
14:11:05.0659 0584 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
14:11:05.0659 0584 C:\Windows\SysWOW64\devrtl.dll - ok
14:11:05.0663 0584 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
14:11:05.0663 0584 C:\Windows\System32\mprmsg.dll - ok
14:11:05.0667 0584 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
14:11:05.0667 0584 C:\Windows\System32\NapiNSP.dll - ok
14:11:05.0671 0584 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
14:11:05.0671 0584 C:\Windows\SysWOW64\qmgrprxy.dll - ok
14:11:05.0676 0584 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
14:11:05.0676 0584 C:\Windows\System32\pnrpnsp.dll - ok
14:11:05.0680 0584 [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
14:11:05.0680 0584 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
14:11:05.0684 0584 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
14:11:05.0684 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
14:11:05.0688 0584 [ B29280AA00BC34FEECDC0426B11B9DAC ] C:\Windows\SysWOW64\RstrtMgr.dll
14:11:05.0688 0584 C:\Windows\SysWOW64\RstrtMgr.dll - ok
14:11:05.0692 0584 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
14:11:05.0692 0584 C:\Windows\System32\winrnr.dll - ok
14:11:05.0697 0584 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
14:11:05.0697 0584 C:\Windows\System32\tcpipcfg.dll - ok
14:11:05.0701 0584 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
14:11:05.0701 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
14:11:05.0705 0584 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
14:11:05.0705 0584 C:\Windows\System32\wshbth.dll - ok
14:11:05.0709 0584 [ 4AE47FECD971F2B36FF750E407591FD0 ] C:\Windows\System32\igd10umd64.dll
14:11:05.0709 0584 C:\Windows\System32\igd10umd64.dll - ok
14:11:05.0713 0584 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
14:11:05.0713 0584 C:\Windows\SysWOW64\ncrypt.dll - ok
14:11:05.0718 0584 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
14:11:05.0718 0584 C:\Windows\SysWOW64\riched20.dll - ok
14:11:05.0722 0584 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
14:11:05.0722 0584 C:\Windows\System32\dimsjob.dll - ok
14:11:05.0726 0584 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
14:11:05.0726 0584 C:\Windows\SysWOW64\bcrypt.dll - ok
14:11:05.0731 0584 [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
14:11:05.0731 0584 C:\Windows\System32\bcdedit.exe - ok
14:11:05.0734 0584 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
14:11:05.0735 0584 C:\Windows\SysWOW64\msiltcfg.dll - ok
14:11:05.0738 0584 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
14:11:05.0739 0584 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
14:11:05.0743 0584 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
14:11:05.0743 0584 C:\Windows\System32\conhost.exe - ok
14:11:05.0747 0584 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
14:11:05.0747 0584 C:\Windows\System32\nci.dll - ok
14:11:05.0751 0584 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
14:11:05.0751 0584 C:\Windows\System32\pautoenr.dll - ok
14:11:05.0755 0584 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
14:11:05.0755 0584 C:\Windows\System32\wlaninst.dll - ok
14:11:05.0760 0584 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
14:11:05.0760 0584 C:\Windows\System32\certcli.dll - ok
14:11:05.0764 0584 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
14:11:05.0764 0584 C:\Windows\System32\EhStorShell.dll - ok
14:11:05.0771 0584 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
14:11:05.0771 0584 C:\Windows\SysWOW64\gpapi.dll - ok
14:11:05.0774 0584 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
14:11:05.0774 0584 C:\Windows\System32\ntshrui.dll - ok
14:11:05.0779 0584 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
14:11:05.0779 0584 C:\Windows\System32\wwaninst.dll - ok
14:11:05.0784 0584 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
14:11:05.0785 0584 C:\Windows\System32\CertEnroll.dll - ok
14:11:05.0789 0584 [ 8A8B277067C22F4BF6AA9A31692FC4D3 ] C:\Windows\SysWOW64\cryptnet.dll
14:11:05.0789 0584 C:\Windows\SysWOW64\cryptnet.dll - ok
14:11:05.0793 0584 [ 39F03455A7C449FFFB2BC4BBDE480EB5 ] C:\Program Files (x86)\Nero\Update\NASvcPS.dll
14:11:05.0793 0584 C:\Program Files (x86)\Nero\Update\NASvcPS.dll - ok
14:11:05.0798 0584 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
14:11:05.0798 0584 C:\Windows\System32\IconCodecService.dll - ok
14:11:05.0802 0584 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
14:11:05.0802 0584 C:\Windows\System32\actxprxy.dll - ok
14:11:05.0806 0584 [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
14:11:05.0806 0584 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
14:11:05.0810 0584 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
14:11:05.0810 0584 C:\Windows\System32\appinfo.dll - ok
14:11:05.0817 0584 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
14:11:05.0817 0584 C:\Windows\System32\uDWM.dll - ok
14:11:05.0822 0584 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
14:11:05.0822 0584 C:\Windows\System32\dbghelp.dll - ok
14:11:05.0826 0584 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
14:11:05.0826 0584 C:\Windows\SysWOW64\mstask.dll - ok
14:11:05.0830 0584 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
14:11:05.0830 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
14:11:05.0832 0584 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
14:11:05.0833 0584 C:\Windows\System32\runonce.exe - ok
14:11:05.0837 0584 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
14:11:05.0837 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
14:11:05.0841 0584 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
14:11:05.0841 0584 C:\Windows\SysWOW64\runonce.exe - ok
14:11:05.0846 0584 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
14:11:05.0846 0584 C:\Windows\SysWOW64\cmd.exe - ok
14:11:05.0850 0584 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
14:11:05.0850 0584 C:\Windows\SysWOW64\winbrand.dll - ok
14:11:05.0854 0584 [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
14:11:05.0854 0584 C:\Windows\SysWOW64\shdocvw.dll - ok
14:11:05.0858 0584 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Darrishi\AppData\Local\Temp\23A1EFDC-04FB-44F8-AFD4-19BCDEFC8C66.exe
14:11:05.0858 0584 C:\Users\Darrishi\AppData\Local\Temp\23A1EFDC-04FB-44F8-AFD4-19BCDEFC8C66.exe - ok
14:11:05.0863 0584 [ 7F683A346C425ACD4F098BAA7C5792FC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll
14:11:05.0863 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll - ok
14:11:05.0868 0584 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
14:11:05.0868 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
14:11:05.0872 0584 [ 5B2E4E90C04FB9AE9F2C5E99FF59B283 ] C:\Windows\SysWOW64\WindowsCodecs.dll
14:11:05.0872 0584 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
14:11:05.0877 0584 [ B7A68C8F0EA038CB13E7B99AF9CDE513 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll
14:11:05.0877 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll - ok
14:11:05.0881 0584 [ C6458BF42FD8A9194EA4B2C81AA3B157 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll
14:11:05.0881 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll - ok
14:11:05.0886 0584 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
14:11:05.0886 0584 C:\Windows\SysWOW64\EhStorShell.dll - ok
14:11:05.0890 0584 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
14:11:05.0890 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
14:11:05.0895 0584 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
14:11:05.0895 0584 C:\Windows\SysWOW64\ntshrui.dll - ok
14:11:05.0900 0584 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
14:11:05.0900 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
14:11:05.0904 0584 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
14:11:05.0904 0584 C:\Windows\SysWOW64\slc.dll - ok
14:11:05.0908 0584 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
14:11:05.0908 0584 C:\Windows\SysWOW64\imageres.dll - ok
14:11:05.0913 0584 [ 88DC26C8BC98DFF1B55985E25DF53262 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll
14:11:05.0913 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll - ok
14:11:05.0917 0584 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
14:11:05.0917 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
14:11:05.0922 0584 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
14:11:05.0922 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
14:11:05.0926 0584 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
14:11:05.0926 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
14:11:05.0931 0584 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
14:11:05.0931 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
14:11:05.0935 0584 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
14:11:05.0935 0584 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
14:11:05.0940 0584 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
14:11:05.0940 0584 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
14:11:05.0944 0584 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
14:11:05.0944 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
14:11:05.0950 0584 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
14:11:05.0950 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
14:11:05.0954 0584 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
14:11:05.0954 0584 C:\Windows\SysWOW64\d3d9.dll - ok
14:11:05.0959 0584 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
14:11:05.0959 0584 C:\Windows\SysWOW64\d3d8thk.dll - ok
14:11:05.0963 0584 [ 56FAE4983A955B04216D1FE54FC7BAD7 ] C:\Windows\SysWOW64\igdumdx32.dll
14:11:05.0963 0584 C:\Windows\SysWOW64\igdumdx32.dll - ok
14:11:05.0967 0584 [ 2C8F782CB58DF73AB1952AA41879DF76 ] C:\Windows\SysWOW64\igdumd32.dll
14:11:05.0967 0584 C:\Windows\SysWOW64\igdumd32.dll - ok
14:11:05.0971 0584 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
14:11:05.0971 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
14:11:05.0976 0584 [ 8D17F8532958E0AC4A32B0E7E3C94EF2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll
14:11:05.0976 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll - ok
14:11:05.0981 0584 [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
14:11:05.0981 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
14:11:05.0986 0584 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
14:11:05.0986 0584 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
14:11:05.0990 0584 [ D66E000EF14A2F45EC7F350A21994A12 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll
14:11:05.0990 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll - ok
14:11:05.0996 0584 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
14:11:05.0996 0584 C:\Windows\System32\wbem\NCProv.dll - ok
14:11:05.0999 0584 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
14:11:05.0999 0584 C:\Windows\System32\timedate.cpl - ok
14:11:06.0003 0584 [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
14:11:06.0003 0584 C:\Windows\System32\shdocvw.dll - ok
14:11:06.0007 0584 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
14:11:06.0007 0584 C:\Windows\System32\linkinfo.dll - ok
14:11:06.0012 0584 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
14:11:06.0012 0584 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
14:11:06.0016 0584 [ E62FF21F5B5F69CFA5BB2F97C03C0A5B ] C:\PROGRA~2\Dell\VIDEOS~1\MUITRA~1\STMTEN~1.DLL
14:11:06.0016 0584 C:\PROGRA~2\Dell\VIDEOS~1\MUITRA~1\STMTEN~1.DLL - ok
14:11:06.0020 0584 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
14:11:06.0020 0584 C:\Windows\System32\msftedit.dll - ok
14:11:06.0024 0584 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
14:11:06.0024 0584 C:\Windows\System32\gameux.dll - ok
14:11:06.0028 0584 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
14:11:06.0028 0584 C:\Windows\System32\msls31.dll - ok
14:11:06.0032 0584 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
14:11:06.0032 0584 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
14:11:06.0036 0584 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
14:11:06.0037 0584 C:\Windows\System32\DeviceCenter.dll - ok
14:11:06.0040 0584 [ 87D32202404483FA9860BC3774F04031 ] C:\Windows\System32\igfxtray.exe
14:11:06.0041 0584 C:\Windows\System32\igfxtray.exe - ok
14:11:06.0046 0584 [ E48592D99D6024DDCC76F2FB0347A9C7 ] C:\Windows\System32\hkcmd.exe
14:11:06.0046 0584 C:\Windows\System32\hkcmd.exe - ok
14:11:06.0050 0584 [ 2C108AE88C8C051466E2E79721870ACB ] C:\Windows\System32\hccutils.dll
14:11:06.0050 0584 C:\Windows\System32\hccutils.dll - ok
14:11:06.0053 0584 [ 88A186BC307825427338252EB4A82D87 ] C:\Windows\System32\igfxpers.exe
14:11:06.0053 0584 C:\Windows\System32\igfxpers.exe - ok
14:11:06.0058 0584 [ 6DD6B4511D51987765AB492B809602FB ] C:\Windows\System32\igfxsrvc.exe
14:11:06.0058 0584 C:\Windows\System32\igfxsrvc.exe - ok
14:11:06.0063 0584 [ 527BA8F96712AB5535A84B3AE15E66E3 ] C:\Program Files\DellTPad\Apoint.exe
14:11:06.0063 0584 C:\Program Files\DellTPad\Apoint.exe - ok
14:11:06.0066 0584 [ D5A3EB5ED95E36B643E55F9F489FC8FC ] C:\Program Files\IDT\WDM\sttray64.exe
14:11:06.0068 0584 C:\Program Files\IDT\WDM\sttray64.exe - ok
14:11:06.0071 0584 [ 7945EBC57F8B0E410AD0BF10A7452685 ] C:\Windows\System32\igfxsrvc.dll
14:11:06.0071 0584 C:\Windows\System32\igfxsrvc.dll - ok
14:11:06.0075 0584 [ 08690151B983903A5D9447DE818EAEC8 ] C:\Windows\System32\igfxdev.dll
14:11:06.0075 0584 C:\Windows\System32\igfxdev.dll - ok
14:11:06.0080 0584 [ B74C5AD12D3B307893D1019A370B77B1 ] C:\Program Files\Dell\QuickSet\quickset.exe
14:11:06.0080 0584 C:\Program Files\Dell\QuickSet\quickset.exe - ok
14:11:06.0083 0584 [ 7594DBEF5C0A10CCD9C235DCA7D290B4 ] C:\Windows\System32\igfxrenu.lrc
14:11:06.0083 0584 C:\Windows\System32\igfxrenu.lrc - ok
14:11:06.0087 0584 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
14:11:06.0087 0584 C:\Windows\System32\IccLibDll_x64.dll - ok
14:11:06.0091 0584 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
14:11:06.0091 0584 C:\Windows\System32\msiltcfg.dll - ok
14:11:06.0095 0584 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
14:11:06.0096 0584 C:\Windows\System32\msi.dll - ok
14:11:06.0100 0584 [ 1136B11FB4B6A598051BD9648A798F7C ] C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
14:11:06.0100 0584 C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe - ok
14:11:06.0104 0584 [ 8E1BB39C377F70829184217BBBD0DFED ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
14:11:06.0104 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe - ok
14:11:06.0108 0584 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
14:11:06.0109 0584 C:\Windows\System32\mfc42u.dll - ok
14:11:06.0112 0584 [ 993F16F20CF32DD55B8894338BF88537 ] C:\Program Files\DellTPad\Apoint.dll
14:11:06.0113 0584 C:\Program Files\DellTPad\Apoint.dll - ok
14:11:06.0117 0584 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
14:11:06.0117 0584 C:\Windows\System32\wlanapi.dll - ok
14:11:06.0120 0584 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
14:11:06.0120 0584 C:\Windows\System32\odbc32.dll - ok
14:11:06.0125 0584 [ E937B2952DF62B980E8B0028D00BB4C2 ] C:\Windows\System32\Vxdif.dll
14:11:06.0125 0584 C:\Windows\System32\Vxdif.dll - ok
14:11:06.0129 0584 [ AB2F2F56064E8AA8634C790956860A3D ] C:\Windows\System32\ieframe.dll
14:11:06.0129 0584 C:\Windows\System32\ieframe.dll - ok
14:11:06.0133 0584 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
14:11:06.0133 0584 C:\Windows\System32\oledlg.dll - ok
14:11:06.0137 0584 [ 67611DEA70471375E1913A4CFC6A6575 ] C:\Program Files\DellTPad\EzAuto.dll
14:11:06.0137 0584 C:\Program Files\DellTPad\EzAuto.dll - ok
14:11:06.0141 0584 [ DD49535AFDF652DBE62CD59F62C1CBEB ] C:\Program Files\IDT\WDM\stlang64.dll
14:11:06.0141 0584 C:\Program Files\IDT\WDM\stlang64.dll - ok
14:11:06.0145 0584 [ 3BD1F79DCD7ECE5B4E58DA1F5B774A8B ] C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll
14:11:06.0145 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll - ok
14:11:06.0150 0584 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
14:11:06.0150 0584 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
14:11:06.0154 0584 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
14:11:06.0154 0584 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
14:11:06.0158 0584 [ B03F39264477EC8A979C67C789A7B62A ] C:\Program Files\DellTPad\ApMsgFwd.exe
14:11:06.0158 0584 C:\Program Files\DellTPad\ApMsgFwd.exe - ok
14:11:06.0163 0584 [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
14:11:06.0163 0584 C:\Windows\System32\consent.exe - ok
14:11:06.0167 0584 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
14:11:06.0167 0584 C:\Windows\System32\stobject.dll - ok
14:11:06.0171 0584 [ C9CA9CF174E87DF735E3232755D18A5B ] C:\Program Files (x86)\Dell\Stage Remote\QtCore4.dll
14:11:06.0171 0584 C:\Program Files (x86)\Dell\Stage Remote\QtCore4.dll - ok
14:11:06.0175 0584 [ F62E1670868E9EF413B7D7C3039AF66A ] C:\Program Files (x86)\Dell\Stage Remote\QtGui4.dll
14:11:06.0175 0584 C:\Program Files (x86)\Dell\Stage Remote\QtGui4.dll - ok
14:11:06.0179 0584 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
14:11:06.0179 0584 C:\Windows\System32\odbcint.dll - ok
14:11:06.0184 0584 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
14:11:06.0184 0584 C:\Windows\System32\batmeter.dll - ok
14:11:06.0187 0584 [ 00000000000000000000000000000000 ] C:\Windows\System32\MRT.exe
14:11:06.0188 0584 C:\Windows\System32\MRT.exe - ok
14:11:06.0192 0584 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
14:11:06.0192 0584 C:\Windows\System32\prnfldr.dll - ok
14:11:06.0196 0584 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
14:11:06.0196 0584 C:\Windows\System32\wbem\wmiprov.dll - ok
14:11:06.0201 0584 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
14:11:06.0201 0584 C:\Windows\System32\thumbcache.dll - ok
14:11:06.0205 0584 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
14:11:06.0205 0584 C:\Windows\System32\msimg32.dll - ok
14:11:06.0210 0584 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
14:11:06.0210 0584 C:\Windows\System32\DXP.dll - ok
14:11:06.0213 0584 [ C046C2BF5248587F6DB073E37D94C35C ] C:\Program Files (x86)\Dell\Stage Remote\QtNetwork4.dll
14:11:06.0213 0584 C:\Program Files (x86)\Dell\Stage Remote\QtNetwork4.dll - ok
14:11:06.0218 0584 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
14:11:06.0218 0584 C:\Windows\System32\Syncreg.dll - ok
14:11:06.0222 0584 [ 339A5D2292110494B9594AB050AA55A6 ] C:\Program Files (x86)\Dell\Stage Remote\QtXml4.dll
14:11:06.0222 0584 C:\Program Files (x86)\Dell\Stage Remote\QtXml4.dll - ok
14:11:06.0226 0584 [ C78B64296C72D5B3EA07019790A602B9 ] C:\Program Files (x86)\Dell\Stage Remote\DMSAdapter.dll
14:11:06.0226 0584 C:\Program Files (x86)\Dell\Stage Remote\DMSAdapter.dll - ok
14:11:06.0230 0584 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
14:11:06.0230 0584 C:\Windows\ehome\ehSSO.dll - ok
14:11:06.0235 0584 [ 6299D41BE07A4584147ACD7D922454F8 ] C:\Program Files (x86)\Dell\Stage Remote\DHServerAgent.dll
14:11:06.0235 0584 C:\Program Files (x86)\Dell\Stage Remote\DHServerAgent.dll - ok
14:11:06.0239 0584 [ 466B9A9914DB2B01A20B1207C3E65C0F ] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
14:11:06.0239 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe - ok
14:11:06.0243 0584 [ 2BB97FDD3FF685138A292164E7DE9A9D ] C:\Program Files (x86)\Dell\Stage Remote\UMediaManager.dll
14:11:06.0243 0584 C:\Program Files (x86)\Dell\Stage Remote\UMediaManager.dll - ok
14:11:06.0248 0584 [ C819AACFC675D2BCA7C715822913B676 ] C:\Program Files (x86)\Dell\Stage Remote\ASDBTool.dll
14:11:06.0248 0584 C:\Program Files (x86)\Dell\Stage Remote\ASDBTool.dll - ok
14:11:06.0252 0584 [ 17932262563F8288D261E28F873FA6A9 ] C:\Program Files (x86)\Dell\Stage Remote\sqlite3.dll
14:11:06.0252 0584 C:\Program Files (x86)\Dell\Stage Remote\sqlite3.dll - ok
14:11:06.0256 0584 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
14:11:06.0256 0584 C:\Windows\System32\ActionCenter.dll - ok
14:11:06.0260 0584 [ 0C7315CAFF701909AC65C087752B7E3A ] C:\Program Files (x86)\Dell\Stage Remote\ASTransMgr.dll
14:11:06.0260 0584 C:\Program Files (x86)\Dell\Stage Remote\ASTransMgr.dll - ok
14:11:06.0264 0584 [ 0FBE8505FF8E52130EF4E90E2BD8F4CA ] C:\Program Files (x86)\Dell\Stage Remote\ASXmlTool.dll
14:11:06.0265 0584 C:\Program Files (x86)\Dell\Stage Remote\ASXmlTool.dll - ok
14:11:06.0269 0584 [ 8E757681A3245A407584A3D2FF3D65B8 ] C:\Program Files (x86)\Dell\Stage Remote\DataService.dll
14:11:06.0269 0584 C:\Program Files (x86)\Dell\Stage Remote\DataService.dll - ok
14:11:06.0273 0584 [ C265BFF559718F341D16C8355B4EDAED ] C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
14:11:06.0273 0584 C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe - ok
14:11:06.0277 0584 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll
14:11:06.0277 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll - ok
14:11:06.0281 0584 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
14:11:06.0282 0584 C:\Windows\System32\netshell.dll - ok
14:11:06.0286 0584 [ FD97807051658AE27799BE3A557D3776 ] C:\Program Files\DellTPad\ApntEx.exe
14:11:06.0286 0584 C:\Program Files\DellTPad\ApntEx.exe - ok
14:11:06.0290 0584 [ 320889E9BD1F1A041CB69E6A81E484EC ] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
14:11:06.0290 0584 C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE - ok
14:11:06.0294 0584 [ B6B8A7F49301F0EF589B8BC8C4B24E98 ] C:\Program Files (x86)\Dell\Stage Remote\en-US\UI\ManagerUI.dll
14:11:06.0294 0584 C:\Program Files (x86)\Dell\Stage Remote\en-US\UI\ManagerUI.dll - ok
14:11:06.0299 0584 [ 1B0E5412AB8F30B8ED2AEAC2C530EB90 ] C:\Program Files\DellTPad\hidfind.exe
14:11:06.0299 0584 C:\Program Files\DellTPad\hidfind.exe - ok
14:11:06.0303 0584 [ A9CABA9A7D2E60FACD21A11815D3991D ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qsvg4.dll
14:11:06.0303 0584 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qsvg4.dll - ok
14:11:06.0307 0584 [ 4DE57667406BB17A77BD056B9BEE7CF1 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qgif4.dll
14:11:06.0307 0584 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qgif4.dll - ok
14:11:06.0312 0584 [ 5FE1636D3B4E8285AABA3D940147DC09 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qico4.dll
14:11:06.0312 0584 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qico4.dll - ok
14:11:06.0316 0584 [ 77198B03A8E31A7D01947A7D9673B708 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qjpeg4.dll
14:11:06.0316 0584 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qjpeg4.dll - ok
14:11:06.0321 0584 [ 791A7314CE8EE46FA9D4B8276D7DE0C9 ] C:\Program Files (x86)\Dell\Stage Remote\EndPointCtrl.dll
14:11:06.0321 0584 C:\Program Files (x86)\Dell\Stage Remote\EndPointCtrl.dll - ok
14:11:06.0325 0584 [ F07F47EE8F2D7785CEBA2B0CA10C6E68 ] C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qmng4.dll
14:11:06.0325 0584 C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qmng4.dll - ok
14:11:06.0330 0584 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
14:11:06.0330 0584 C:\Windows\SysWOW64\MMDevAPI.dll - ok
14:11:06.0332 0584 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
14:11:06.0332 0584 C:\Windows\SysWOW64\AudioSes.dll - ok
14:11:06.0337 0584 [ 4C312A09E91A48C26317AAF6EFF93310 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll
14:11:06.0337 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll - ok
14:11:06.0341 0584 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
14:11:06.0341 0584 C:\Windows\System32\FXSST.dll - ok
14:11:06.0345 0584 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
14:11:06.0345 0584 C:\Windows\System32\FXSAPI.dll - ok
14:11:06.0350 0584 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
14:11:06.0350 0584 C:\Windows\System32\FXSRESM.dll - ok
14:11:06.0353 0584 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
14:11:06.0353 0584 C:\Windows\System32\WPDShServiceObj.dll - ok
14:11:06.0357 0584 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
14:11:06.0357 0584 C:\Windows\System32\PortableDeviceTypes.dll - ok
14:11:06.0363 0584 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
14:11:06.0363 0584 C:\Windows\System32\networkexplorer.dll - ok
14:11:06.0366 0584 [ 304AEF86D74CC76FF803876C95890507 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll
14:11:06.0366 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll - ok
14:11:06.0370 0584 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
14:11:06.0370 0584 C:\Windows\System32\AltTab.dll - ok
14:11:06.0374 0584 [ 9EB925EDC8CF1C3D06E50E9348B54A0A ] C:\Users\Darrishi\AppData\Local\Facebook\Update\FacebookUpdate.exe
14:11:06.0374 0584 C:\Users\Darrishi\AppData\Local\Facebook\Update\FacebookUpdate.exe - ok
14:11:06.0378 0584 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
14:11:06.0378 0584 C:\Windows\System32\pnidui.dll - ok
14:11:06.0383 0584 [ 49D3F53BEA86A4EFEFA53550E0DBFDB1 ] C:\Users\Darrishi\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll
14:11:06.0383 0584 C:\Users\Darrishi\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll - ok
14:11:06.0389 0584 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
14:11:06.0389 0584 C:\Windows\SysWOW64\opengl32.dll - ok
14:11:06.0393 0584 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
14:11:06.0393 0584 C:\Windows\System32\QUTIL.DLL - ok
14:11:06.0399 0584 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
14:11:06.0399 0584 C:\Windows\SysWOW64\glu32.dll - ok
14:11:06.0403 0584 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
14:11:06.0403 0584 C:\Windows\SysWOW64\ddraw.dll - ok
14:11:06.0406 0584 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
14:11:06.0406 0584 C:\Windows\System32\FXSSVC.exe - ok
14:11:06.0411 0584 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
14:11:06.0411 0584 C:\Windows\SysWOW64\dciman32.dll - ok
14:11:06.0415 0584 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
14:11:06.0415 0584 C:\Windows\System32\srchadmin.dll - ok
14:11:06.0419 0584 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
14:11:06.0419 0584 C:\Windows\System32\spfileq.dll - ok
14:11:06.0423 0584 [ 636BA18F8E53B47A896D20EB7D0852D2 ] C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe
14:11:06.0423 0584 C:\Program Files (x86)\Smart PC Cleaner\SPCLauncher.exe - ok
14:11:06.0428 0584 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
14:11:06.0428 0584 C:\Windows\System32\bthprops.cpl - ok
14:11:06.0432 0584 [ 8504944851DF6175CC489A8F3328459E ] C:\Windows\SysWOW64\d3d10.dll
14:11:06.0432 0584 C:\Windows\SysWOW64\d3d10.dll - ok
14:11:06.0436 0584 [ FB3F036EF6A467F7AF46C821FF5D198D ] C:\Windows\SysWOW64\d3d10core.dll
14:11:06.0436 0584 C:\Windows\SysWOW64\d3d10core.dll - ok
14:11:06.0440 0584 [ 91595FA51248C92A998D5281FC37981B ] C:\Program Files (x86)\Football News App\Football News.exe
14:11:06.0440 0584 C:\Program Files (x86)\Football News App\Football News.exe - ok
14:11:06.0444 0584 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
14:11:06.0444 0584 C:\Windows\SysWOW64\dxgi.dll - ok
14:11:06.0448 0584 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
14:11:06.0449 0584 C:\Windows\System32\mscoree.dll - ok
14:11:06.0453 0584 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
14:11:06.0453 0584 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
14:11:06.0456 0584 [ 6DE66FE7C526637E74CD066461C7C871 ] C:\Windows\SysWOW64\d3d11.dll
14:11:06.0457 0584 C:\Windows\SysWOW64\d3d11.dll - ok
14:11:06.0461 0584 [ EA42F79A76F4795E0930FB1E9FFFA5CF ] C:\Program Files\ESET\ESET NOD32 Antivirus\mfc80u.dll
14:11:06.0462 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\mfc80u.dll - ok
14:11:06.0466 0584 [ 22F7B9670AD770C7ED7F4738204C8E5C ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe
14:11:06.0466 0584 C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationApp.exe - ok
14:11:06.0470 0584 [ 0DFF557D796B6ABFB28208C6680FB5C9 ] C:\Windows\SysWOW64\igd10umd32.dll
14:11:06.0470 0584 C:\Windows\SysWOW64\igd10umd32.dll - ok
14:11:06.0474 0584 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
14:11:06.0474 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
14:11:06.0479 0584 [ 2EF0B3C51971F51ED700C01CFBC5B82A ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
14:11:06.0480 0584 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
14:11:06.0484 0584 [ 41D1214B86A06FD29423A797EBDA17E4 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
14:11:06.0484 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
14:11:06.0488 0584 [ 4FB1BBDF3E82A2F56D8D16FB9DB8D28F ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationUI.dll
14:11:06.0488 0584 C:\Program Files\HP\HP Deskjet 3510 series\Bin\ScanToPCActivationUI.dll - ok
14:11:06.0492 0584 [ A7749965A3923D024922A86BAAECAFF4 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
14:11:06.0492 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe - ok
14:11:06.0498 0584 [ 4164A47F3A2DA7EA44572904C3DF44A4 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
14:11:06.0498 0584 C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe - ok
14:11:06.0502 0584 [ 53E81C75B3C260C8FE9FD9ED4D8DB8F0 ] C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll
14:11:06.0503 0584 C:\Program Files (x86)\Roxio\OEM\Roxio Burn\AS_Storage_w32.dll - ok
14:11:06.0507 0584 [ EBE1962DC5EEFC13D20543013A891ABC ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
14:11:06.0507 0584 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe - ok
14:11:06.0511 0584 [ C8841EF9357DD13468CDAFC28BFBC86F ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
14:11:06.0512 0584 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
14:11:06.0516 0584 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
14:11:06.0516 0584 C:\Windows\System32\oleacc.dll - ok
14:11:06.0519 0584 [ 3181F76ED237CC3D50D10CEA05AF8B60 ] C:\Windows\System32\riched32.dll
14:11:06.0520 0584 C:\Windows\System32\riched32.dll - ok
14:11:06.0524 0584 [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
14:11:06.0524 0584 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
14:11:06.0528 0584 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
14:11:06.0528 0584 C:\Windows\System32\riched20.dll - ok
14:11:06.0533 0584 [ AD7E89D547F133D178EA7B4C3CB1B134 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
14:11:06.0533 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe - ok
14:11:06.0537 0584 [ 61E4289E91E88C90478D7F4BEB10DCF7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
14:11:06.0537 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
14:11:06.0542 0584 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
14:11:06.0542 0584 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
14:11:06.0547 0584 [ 3043374E292DED8C59D1C6570578F2F0 ] C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe
14:11:06.0547 0584 C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPNetworkCommunicator.exe - ok
14:11:06.0551 0584 [ BB8E454BEA6FC5DE0B4723CFDC13AEEE ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll
14:11:06.0551 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll - ok
14:11:06.0555 0584 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
14:11:06.0555 0584 C:\Windows\System32\SearchIndexer.exe - ok
14:11:06.0560 0584 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
14:11:06.0560 0584 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
14:11:06.0564 0584 [ 1BC8A289BFDE02DF0DA6C06689FA89C3 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll
14:11:06.0564 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig13.dll - ok
14:11:06.0569 0584 [ 7FF64140B84F5394F4B86113A0578A9C ] C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe
14:11:06.0569 0584 C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe - ok
14:11:06.0572 0584 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\07136664.sys
14:11:06.0573 0584 C:\Windows\System32\drivers\07136664.sys - ok
14:11:06.0577 0584 [ B78B6459C2DCCA129489A86F7D63B359 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
14:11:06.0577 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
14:11:06.0582 0584 [ 837115C004022C7C9317848645D714FD ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll
14:11:06.0582 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
14:11:06.0585 0584 [ 190E647AEA2B3D41BAF380267CCBB471 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll
14:11:06.0585 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll - ok
14:11:06.0589 0584 [ 8B74CF5C79886915BAA8DF737641CF2B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\27649bdc3da750e2e072dedbff56cc0b\IAStorUtil.ni.dll
14:11:06.0589 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\27649bdc3da750e2e072dedbff56cc0b\IAStorUtil.ni.dll - ok
14:11:06.0594 0584 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
14:11:06.0594 0584 C:\Windows\SysWOW64\snmpapi.dll - ok
14:11:06.0599 0584 [ 6046C98205A35C2CEC330B15F88D4443 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
14:11:06.0599 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll - ok
14:11:06.0604 0584 [ 544013C383833189A61C2F72B8814319 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
14:11:06.0604 0584 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
14:11:06.0608 0584 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
14:11:06.0608 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
14:11:06.0614 0584 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
14:11:06.0614 0584 C:\Windows\SysWOW64\Nlsdl.dll - ok
14:11:06.0618 0584 [ 5BD85ABB12E057257D9D93C0838ABC0B ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll
14:11:06.0618 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
14:11:06.0622 0584 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
14:11:06.0622 0584 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
14:11:06.0626 0584 [ 3494C165F17A9C417E47552D40E99A88 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
14:11:06.0627 0584 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
14:11:06.0632 0584 [ 13820B972D74B3DE4F6552A57AC799A7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
14:11:06.0632 0584 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
14:11:06.0636 0584 [ E325D1DB76B13B33692D6318F67DC4EC ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll
14:11:06.0636 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient13.dll - ok
14:11:06.0640 0584 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
14:11:06.0640 0584 C:\Windows\System32\mstask.dll - ok
14:11:06.0644 0584 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
14:11:06.0644 0584 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
14:11:06.0649 0584 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
14:11:06.0649 0584 C:\Windows\System32\l3codeca.acm - ok
14:11:06.0653 0584 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
14:11:06.0653 0584 C:\Windows\SysWOW64\shfolder.dll - ok
14:11:06.0658 0584 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
14:11:06.0658 0584 C:\Windows\System32\tquery.dll - ok
14:11:06.0664 0584 [ 58299D95B1CD0F7CCCE54460543B1512 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
14:11:06.0664 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
14:11:06.0669 0584 [ 3002F70621759E90876752319ABA5CA5 ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiHips.dll
14:11:06.0669 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiHips.dll - ok
14:11:06.0673 0584 [ 8F17CA7CD61AF4602FC88647BAEA9F54 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll
14:11:06.0673 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager13.dll - ok
14:11:06.0677 0584 [ ABB1B50F36CCBEF119FBEF8FDF14AD61 ] C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL
14:11:06.0677 0584 C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL - ok
14:11:06.0682 0584 [ AC6EE4B07B9A78B155DEE7529ACCE355 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll
14:11:06.0682 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll - ok
14:11:06.0686 0584 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
14:11:06.0686 0584 C:\Windows\SysWOW64\duser.dll - ok
14:11:06.0690 0584 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
14:11:06.0690 0584 C:\Windows\System32\mssrch.dll - ok
14:11:06.0694 0584 [ FB355B817AE641BBAE08607E58CB5CE2 ] C:\Windows\System32\hhctrl.ocx
14:11:06.0694 0584 C:\Windows\System32\hhctrl.ocx - ok
14:11:06.0698 0584 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
14:11:06.0698 0584 C:\Windows\SysWOW64\dui70.dll - ok
14:11:06.0702 0584 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
14:11:06.0702 0584 C:\Windows\System32\browcli.dll - ok
14:11:06.0706 0584 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
14:11:06.0706 0584 C:\Windows\System32\schedcli.dll - ok
14:11:06.0711 0584 [ 59831274CF0D1E83BC02C9E856AC9F69 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl
14:11:06.0711 0584 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDe.crl - ok
14:11:06.0715 0584 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
14:11:06.0715 0584 C:\Windows\SysWOW64\devenum.dll - ok
14:11:06.0719 0584 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
14:11:06.0720 0584 C:\Windows\SysWOW64\avicap32.dll - ok
14:11:06.0724 0584 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
14:11:06.0724 0584 C:\Windows\SysWOW64\msvfw32.dll - ok
14:11:06.0729 0584 [ 807B6562009E5858C93E1C0F435C0382 ] C:\Windows\SysWOW64\netbios.dll
14:11:06.0729 0584 C:\Windows\SysWOW64\netbios.dll - ok
14:11:06.0733 0584 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
14:11:06.0733 0584 C:\Windows\SysWOW64\msvcp71.dll - ok
14:11:06.0737 0584 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
14:11:06.0737 0584 C:\Windows\SysWOW64\msvcr71.dll - ok
14:11:06.0743 0584 [ B9E362680ADB83F0E0134F4567DBF656 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll
14:11:06.0743 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll - ok
14:11:06.0754 0584 [ A51A7D0C82C93827532DF3B8FE7804EA ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll
14:11:06.0755 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll - ok
14:11:06.0761 0584 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
14:11:06.0761 0584 C:\Windows\System32\UIAnimation.dll - ok
14:11:06.0766 0584 [ 3B1247FC09F82A1ECD1294EA13C79C3E ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll
14:11:06.0766 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll - ok
14:11:06.0774 0584 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
14:11:06.0774 0584 C:\Windows\SysWOW64\vfwwdm32.dll - ok
14:11:06.0782 0584 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
14:11:06.0782 0584 C:\Windows\System32\msidle.dll - ok
14:11:06.0786 0584 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
14:11:06.0786 0584 C:\Windows\System32\netman.dll - ok
14:11:06.0800 0584 [ D72C94B32300A3D31F04C90846EA2D8D ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll
14:11:06.0800 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll - ok
14:11:06.0807 0584 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
14:11:06.0807 0584 C:\Windows\System32\mssprxy.dll - ok
14:11:06.0816 0584 [ 2A88B53F4042FC869CEDCE37B7544CE7 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
14:11:06.0816 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe - ok
14:11:06.0822 0584 [ 3E130FA0D5289C8812021FF57F3851F5 ] C:\Program Files\Internet Explorer\sqmapi.dll
14:11:06.0822 0584 C:\Program Files\Internet Explorer\sqmapi.dll - ok
14:11:06.0832 0584 [ D6E46FE21CC8E662A7A88000FDD77DAF ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
14:11:06.0832 0584 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
14:11:06.0835 0584 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
14:11:06.0836 0584 C:\Windows\System32\en-US\tquery.dll.mui - ok
14:11:06.0840 0584 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
14:11:06.0840 0584 C:\Windows\System32\SyncCenter.dll - ok
14:11:06.0844 0584 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
14:11:06.0844 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
14:11:06.0853 0584 [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
14:11:06.0853 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
14:11:06.0859 0584 [ D9396E531B6735151AF9C10B01378D8E ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll
14:11:06.0859 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll - ok
14:11:06.0865 0584 [ 4C312A09E91A48C26317AAF6EFF93310 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
14:11:06.0865 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll - ok
14:11:06.0870 0584 [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
14:11:06.0870 0584 C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
14:11:06.0874 0584 [ 46D1B83CE0E88F578DD12790AF02EE2B ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll
14:11:06.0875 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll - ok
14:11:06.0882 0584 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
14:11:06.0882 0584 C:\Windows\System32\rasdlg.dll - ok
14:11:06.0887 0584 [ CF8D43B5CE132414CC0667E9C5EB5574 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll
14:11:06.0887 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll - ok
14:11:06.0894 0584 [ 72E6BB97A33137004FAC46CA43938F6C ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll
14:11:06.0894 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll - ok
14:11:06.0905 0584 [ 5B9820B52C903533E64BD780B12DB0AD ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll
14:11:06.0905 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll - ok
14:11:06.0910 0584 [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\SysWOW64\thumbcache.dll
14:11:06.0910 0584 C:\Windows\SysWOW64\thumbcache.dll - ok
14:11:06.0918 0584 [ 07DD9DCD1CC2840751A1F8772F3C0195 ] C:\Program Files\Microsoft Games\Chess\Chess.exe
14:11:06.0918 0584 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
14:11:06.0924 0584 [ 304AEF86D74CC76FF803876C95890507 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
14:11:06.0924 0584 C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll - ok
14:11:06.0930 0584 [ 132AB9DB9A673FC20EE2D786E8CEC447 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll
14:11:06.0931 0584 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll - ok
14:11:06.0938 0584 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
14:11:06.0938 0584 C:\Windows\System32\dot3api.dll - ok
14:11:06.0943 0584 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
14:11:06.0943 0584 C:\Windows\System32\wlanhlp.dll - ok
14:11:06.0950 0584 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
14:11:06.0950 0584 C:\Windows\System32\WWanAPI.dll - ok
14:11:06.0956 0584 [ 484C12B7D5784A12F74F1FA3C2C996DB ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll
14:11:06.0956 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll - ok
14:11:06.0964 0584 [ AAA0B3B32484156599B3BE5E3B88528A ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll
14:11:06.0964 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll - ok
14:11:06.0968 0584 [ 0CF139EA902D1E3976A0673DD27ABB64 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll
14:11:06.0968 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll - ok
14:11:06.0973 0584 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
14:11:06.0973 0584 C:\Windows\System32\wwapi.dll - ok
14:11:06.0977 0584 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
14:11:06.0977 0584 C:\Windows\System32\QAGENT.DLL - ok
14:11:06.0985 0584 [ A85E08154B2E2543675AE41721782672 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll
14:11:06.0985 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll - ok
14:11:06.0989 0584 [ 1CE9AB3BC19744C854CD0F2DBA3A11A2 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll
14:11:06.0989 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll - ok
14:11:06.0994 0584 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
14:11:06.0994 0584 C:\Windows\SysWOW64\sxs.dll - ok
14:11:06.0998 0584 [ 09DEF3ABB6A196749299359AC5578DD8 ] C:\Windows\SysWOW64\msxml4.dll
14:11:06.0998 0584 C:\Windows\SysWOW64\msxml4.dll - ok
14:11:07.0005 0584 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
14:11:07.0005 0584 C:\Windows\SysWOW64\IconCodecService.dll - ok
14:11:07.0010 0584 [ 84F6AC61338BC5D5703461B5E018C7EA ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll
14:11:07.0010 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll - ok
14:11:07.0018 0584 [ 3C957189B31C34D3AD21967B12B6AED7 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
14:11:07.0018 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe - ok
14:11:07.0024 0584 [ A3A64659AD62EC5E1B2D2621F62D048C ] C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll
14:11:07.0024 0584 C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll - ok
14:11:07.0031 0584 [ 4804BF25E3E67F5B1A868A5C731C468E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll
14:11:07.0031 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll - ok
14:11:07.0034 0584 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
14:11:07.0034 0584 C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll - ok
14:11:07.0040 0584 [ 582C53ABD87EE9276E615AE3B804C6FB ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileProtocolHandler.dll
14:11:07.0040 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileProtocolHandler.dll - ok
14:11:07.0046 0584 [ F2FA17A0F2B20A29D7DB354F286FDB97 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSAlbumObjects.dll
14:11:07.0046 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSAlbumObjects.dll - ok
14:11:07.0051 0584 [ 4CDB3900C3E4FD3132770E30A6FCA6CF ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFormatLoaderPNG.dll
14:11:07.0051 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFormatLoaderPNG.dll - ok
14:11:07.0055 0584 [ 2B73088CC2CA757A172B425C9398E5BC ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
14:11:07.0055 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe - ok
14:11:07.0059 0584 [ EF7B4AF560498EB0D038139AD304B84F ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\CPSVideoObjects.dll
14:11:07.0060 0584 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\CPSVideoObjects.dll - ok
14:11:07.0065 0584 [ 66B6C65CBA8FE3CE4C6528281F537EB0 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\APSPluginDialogs.dll
14:11:07.0065 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\APSPluginDialogs.dll - ok
14:11:07.0069 0584 [ 2ACF02F2AE84B6FA383328F564A88599 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll
14:11:07.0069 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll - ok
14:11:07.0074 0584 [ FC877611E178FA17E23F99D9694590A0 ] C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll
14:11:07.0074 0584 C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll - ok
14:11:07.0078 0584 [ AE5C224D43DA6879A580D1C89BC66C94 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSHelpRunner12OEM.exe
14:11:07.0079 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSHelpRunner12OEM.exe - ok
14:11:07.0083 0584 [ C9380B96A0D51B8109D19D13467ADA0B ] C:\Windows\SysWOW64\msjet40.dll
14:11:07.0083 0584 C:\Windows\SysWOW64\msjet40.dll - ok
14:11:07.0085 0584 [ 1F55C7C1E338047DC5E329011A781FB3 ] C:\Windows\SysWOW64\mswstr10.dll
14:11:07.0085 0584 C:\Windows\SysWOW64\mswstr10.dll - ok
14:11:07.0089 0584 [ BB50B21FEE2A6F3E5FC92B330ECCF050 ] C:\Windows\SysWOW64\hhctrl.ocx
14:11:07.0089 0584 C:\Windows\SysWOW64\hhctrl.ocx - ok
14:11:07.0093 0584 [ 146995EC977146E160DB98B995868D64 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSExtendedControls.dll
14:11:07.0093 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSExtendedControls.dll - ok
14:11:07.0099 0584 [ 73D1680C94C1B57F6D8E49B2AE8122ED ] C:\Windows\SysWOW64\vbajet32.dll
14:11:07.0099 0584 C:\Windows\SysWOW64\vbajet32.dll - ok
14:11:07.0102 0584 [ EFF10B20A6F094BC75385791C526546D ] C:\Windows\SysWOW64\expsrv.dll
14:11:07.0103 0584 C:\Windows\SysWOW64\expsrv.dll - ok
14:11:07.0107 0584 [ E389EA130C4A9A4DBA0F138222261056 ] C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe
14:11:07.0107 0584 C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe - ok
14:11:07.0111 0584 [ F774DB03213C2014363DE8D22DD6BBEF ] C:\Windows\SysWOW64\msjtes40.dll
14:11:07.0111 0584 C:\Windows\SysWOW64\msjtes40.dll - ok
14:11:07.0116 0584 [ 8FE495D5EEF0B391CBFE24E80AB9BB33 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\AlbumCommonPlugins.dll
14:11:07.0116 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\AlbumCommonPlugins.dll - ok
14:11:07.0120 0584 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
14:11:07.0120 0584 C:\Windows\SysWOW64\WMVCORE.DLL - ok
14:11:07.0124 0584 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
14:11:07.0124 0584 C:\Windows\SysWOW64\WMASF.DLL - ok
14:11:07.0128 0584 [ E947636009834772DDA3C55AA1D67F82 ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RMFMediaObjects.dll
14:11:07.0128 0584 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RMFMediaObjects.dll - ok
14:11:07.0133 0584 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
14:11:07.0133 0584 C:\Windows\SysWOW64\msdmo.dll - ok
14:11:07.0136 0584 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
14:11:07.0137 0584 C:\Windows\SysWOW64\quartz.dll - ok
14:11:07.0141 0584 [ C477E60DAE2E1A572BB4A1CDDC54CE9E ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUPermits12OEM.dll
14:11:07.0141 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUPermits12OEM.dll - ok
14:11:07.0145 0584 [ 36C4358A1E67C4E5F26926F8B3829B88 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUError12OEM.dll
14:11:07.0145 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\VCUError12OEM.dll - ok
14:11:07.0150 0584 [ 7A6FCD13C25F88D9C873E6D6DE12F471 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxAudioCodec3.dll
14:11:07.0150 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxAudioCodec3.dll - ok
14:11:07.0154 0584 [ 1B97EF29D7B71B2E6C947FEC98B97A99 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAAC3.dll
14:11:07.0154 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAAC3.dll - ok
14:11:07.0159 0584 [ 738B5ABCCF24F9ADAEFE0D28CFF40583 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll
14:11:07.0159 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll - ok
14:11:07.0165 0584 [ 6DFCB2E2B14B62DEC099049B1EB2A273 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAC33.dll
14:11:07.0165 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACAC33.dll - ok
14:11:07.0169 0584 [ 7F9B7E94781806B1755FC5F0D8557DBE ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACFLAC3.dll
14:11:07.0169 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACFLAC3.dll - ok
14:11:07.0173 0584 [ 1C2CFC0F355B8B18BEFCE04239C8B569 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACM4B3.dll
14:11:07.0173 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACM4B3.dll - ok
14:11:07.0177 0584 [ E0203FF20BB8C2E5B2E53F233C744B39 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMonkey3.dll
14:11:07.0177 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMonkey3.dll - ok
14:11:07.0182 0584 [ 3477E2590B504AFBBFA6E74022770E74 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACMP3CTD3.dll
14:11:07.0182 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACMP3CTD3.dll - ok
14:11:07.0186 0584 [ 444FA2C08C116D3CD3E608630F1E16F6 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP3Lame3.dll
14:11:07.0187 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP3Lame3.dll - ok
14:11:07.0190 0584 [ 9DE86B052E0D79E1E32EA5235AB1B400 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP43.dll
14:11:07.0191 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMP43.dll - ok
14:11:07.0195 0584 [ 5D392A7D71DAD0F80FC68E9617169C3F ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMPEG23.dll
14:11:07.0195 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMPEG23.dll - ok
14:11:07.0200 0584 [ 014DA9958A30049922365CC0F816ABCD ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMsftMP33.dll
14:11:07.0200 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACMsftMP33.dll - ok
14:11:07.0204 0584 [ C75D75FB41978FB8516BC3E8D3F4AEA5 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACOgg3.dll
14:11:07.0204 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACOgg3.dll - ok
14:11:07.0208 0584 [ 735EB35AA67F3D5A7E039AFB2F0106D0 ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACWav3.dll
14:11:07.0208 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RxACWav3.dll - ok
14:11:07.0213 0584 [ 36BF0D6A7E76E4DFB6A9A511721CB40E ] C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACWMA3.dll
14:11:07.0213 0584 C:\Program Files (x86)\Roxio\OEM\AudioCodec\RXACWMA3.dll - ok
14:11:07.0217 0584 [ 782C0478147AAE87D8F114BC90E6AE8F ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\MPEG\TSMPEGSource.dll
14:11:07.0217 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\MPEG\TSMPEGSource.dll - ok
14:11:07.0222 0584 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
14:11:07.0222 0584 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
14:11:07.0226 0584 [ CE5C9977DA751DDC30952AC4DCBCA788 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
14:11:07.0226 0584 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
14:11:07.0230 0584 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
14:11:07.0231 0584 C:\Windows\System32\webcheck.dll - ok
14:11:07.0235 0584 [ D63797E8E7781EE1500A810CB6194FA6 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
14:11:07.0235 0584 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
14:11:07.0239 0584 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
14:11:07.0239 0584 C:\Windows\System32\mlang.dll - ok
14:11:07.0242 0584 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
14:11:07.0243 0584 C:\Windows\System32\imapi2.dll - ok
14:11:07.0247 0584 [ A9F9D081518AC03A51C1195986076F42 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
14:11:07.0247 0584 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
14:11:07.0251 0584 [ 246560C5B7995489F25BF9175F2B6380 ] C:\Windows\SysWOW64\mpg2splt.ax
14:11:07.0251 0584 C:\Windows\SysWOW64\mpg2splt.ax - ok
14:11:07.0255 0584 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
14:11:07.0256 0584 C:\Windows\System32\hgcpl.dll - ok
14:11:07.0259 0584 [ 96E019ADDAD4F0632B9C0383BD1C020D ] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe
14:11:07.0259 0584 C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe - ok
14:11:07.0264 0584 [ E3697AAB25598A0CB9601E079C579A28 ] C:\Program Files (x86)\Roxio\OEM\Common\SonicHDDemuxer.dll
14:11:07.0264 0584 C:\Program Files (x86)\Roxio\OEM\Common\SonicHDDemuxer.dll - ok
14:11:07.0269 0584 [ C653D7F4BDC08A06A187BF48050FE23C ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
14:11:07.0269 0584 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
14:11:07.0273 0584 [ 5E21285DA720664CEC9B57664D4D2407 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
14:11:07.0273 0584 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
14:11:07.0278 0584 [ C83470111578D3039DB619529AF40720 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
14:11:07.0278 0584 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
14:11:07.0284 0584 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
14:11:07.0284 0584 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
14:11:07.0289 0584 [ C2A12B061F591E093E3FD99D75811398 ] C:\Windows\SysWOW64\imaadp32.acm
14:11:07.0289 0584 C:\Windows\SysWOW64\imaadp32.acm - ok
14:11:07.0293 0584 [ BF3D6F7D929E018703BE2D4556DD679A ] C:\Windows\SysWOW64\msg711.acm
14:11:07.0293 0584 C:\Windows\SysWOW64\msg711.acm - ok
14:11:07.0300 0584 [ AE796D3FD1C69CE62BB6AFACDFB950AA ] C:\Windows\SysWOW64\msgsm32.acm
14:11:07.0300 0584 C:\Windows\SysWOW64\msgsm32.acm - ok
14:11:07.0306 0584 [ 8EE566982477BC5886FE622CEBEE9C86 ] C:\Windows\SysWOW64\msadp32.acm
14:11:07.0306 0584 C:\Windows\SysWOW64\msadp32.acm - ok
14:11:07.0310 0584 [ 1C7F1C3EA5894995E6C563E9AE9F029F ] C:\Windows\SysWOW64\l3codeca.acm
14:11:07.0310 0584 C:\Windows\SysWOW64\l3codeca.acm - ok
14:11:07.0314 0584 [ 164C6CBA43431D7F767174FD3D99A0A4 ] C:\Windows\SysWOW64\sirenacm.dll
14:11:07.0315 0584 C:\Windows\SysWOW64\sirenacm.dll - ok
14:11:07.0319 0584 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
14:11:07.0319 0584 C:\Windows\SysWOW64\wdmaud.drv - ok
14:11:07.0324 0584 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
14:11:07.0324 0584 C:\Windows\SysWOW64\ksuser.dll - ok
14:11:07.0328 0584 [ 9769BD49B3F8D6DF0B972E783FAC8D37 ] C:\Program Files (x86)\Java\jre7\bin\java.exe
14:11:07.0328 0584 C:\Program Files (x86)\Java\jre7\bin\java.exe - ok
14:11:07.0333 0584 [ 4620D45507C453697E4BCDB28C01C582 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\2ffef4ff54c15b578bfede370af4b745\System.Core.ni.dll
14:11:07.0333 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\2ffef4ff54c15b578bfede370af4b745\System.Core.ni.dll - ok
14:11:07.0335 0584 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
14:11:07.0335 0584 C:\Windows\SysWOW64\avrt.dll - ok
14:11:07.0339 0584 [ F9E01AD870D04FBD161B71ACC286759A ] C:\Program Files (x86)\Java\jre7\bin\jpishare.dll
14:11:07.0339 0584 C:\Program Files (x86)\Java\jre7\bin\jpishare.dll - ok
14:11:07.0343 0584 [ 88D4171DA8B349B4BA1DF170E44D0775 ] C:\Program Files (x86)\Java\jre7\bin\java.dll
14:11:07.0343 0584 C:\Program Files (x86)\Java\jre7\bin\java.dll - ok
14:11:07.0348 0584 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
14:11:07.0348 0584 C:\Windows\SysWOW64\msacm32.drv - ok
14:11:07.0352 0584 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
14:11:07.0352 0584 C:\Windows\SysWOW64\midimap.dll - ok
14:11:07.0356 0584 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
14:11:07.0356 0584 C:\Windows\SysWOW64\dsound.dll - ok
14:11:07.0360 0584 [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
14:11:07.0360 0584 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
14:11:07.0366 0584 [ 2829EA1CDA353987B5552DB955F3B736 ] C:\Windows\SysWOW64\msmpeg2adec.dll
14:11:07.0366 0584 C:\Windows\SysWOW64\msmpeg2adec.dll - ok
14:11:07.0370 0584 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
14:11:07.0370 0584 C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll - ok
14:11:07.0374 0584 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
14:11:07.0374 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
14:11:07.0378 0584 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
14:11:07.0378 0584 C:\Windows\SysWOW64\mfplat.dll - ok
14:11:07.0383 0584 [ 0FF335D687C85097725A53458160E81E ] C:\Program Files\iPod\bin\iPodService.exe
14:11:07.0383 0584 C:\Program Files\iPod\bin\iPodService.exe - ok
14:11:07.0387 0584 [ 02824F5BF13F683117DBE322FB17FCB9 ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\VOBFormatter.ax
14:11:07.0387 0584 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\VOBFormatter.ax - ok
14:11:07.0391 0584 [ 461EE80F1526E7219ADDCA9FBC8519DF ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\PDebug12OEM.dll
14:11:07.0391 0584 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\PDebug12OEM.dll - ok
14:11:07.0395 0584 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
14:11:07.0396 0584 C:\Windows\SysWOW64\msisip.dll - ok
14:11:07.0400 0584 [ F0EB32C56DB100EBD04E0779B806F582 ] C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RxErrorReporting.dll
14:11:07.0400 0584 C:\Program Files (x86)\Roxio\OEM\VideoCore 12\RxErrorReporting.dll - ok
14:11:07.0404 0584 [ 88F161F0976B37F3FF0EDF9FFFC93837 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe
14:11:07.0405 0584 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe - ok
14:11:07.0409 0584 [ EF8B383B78C689E3709733DC32D00E30 ] C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll
14:11:07.0409 0584 C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll - ok
14:11:07.0414 0584 [ 75EAA6150FD1D7B0C042A1A48AEF1752 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
14:11:07.0414 0584 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
14:11:07.0418 0584 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
14:11:07.0418 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
14:11:07.0422 0584 [ F1C48535CD981B0E024D139C21529E7F ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
14:11:07.0423 0584 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
14:11:07.0426 0584 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
14:11:07.0427 0584 C:\Windows\SysWOW64\netprofm.dll - ok
14:11:07.0432 0584 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
14:11:07.0432 0584 C:\Windows\SysWOW64\nlaapi.dll - ok
14:11:07.0436 0584 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
14:11:07.0436 0584 C:\Windows\SysWOW64\npmproxy.dll - ok
14:11:07.0441 0584 [ D9709FA638B789C1C961F028135CC696 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll
14:11:07.0441 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll - ok
14:11:07.0445 0584 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
14:11:07.0445 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
14:11:07.0450 0584 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
14:11:07.0450 0584 C:\Windows\System32\shfolder.dll - ok
14:11:07.0454 0584 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
14:11:07.0454 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
14:11:07.0458 0584 [ 41D113966CAFEE905864259B7D4ECD65 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\18f31a371a986b6f6b968530d8b89e25\System.Windows.Forms.ni.dll
14:11:07.0458 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\18f31a371a986b6f6b968530d8b89e25\System.Windows.Forms.ni.dll - ok
14:11:07.0462 0584 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
14:11:07.0462 0584 C:\Windows\System32\d3d9.dll - ok
14:11:07.0467 0584 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
14:11:07.0467 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
14:11:07.0471 0584 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
14:11:07.0471 0584 C:\Windows\System32\d3d8thk.dll - ok
14:11:07.0476 0584 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
14:11:07.0476 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
14:11:07.0480 0584 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
14:11:07.0480 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
14:11:07.0484 0584 [ E78813339794142D903006047778FD24 ] C:\Windows\System32\igdumd64.dll
14:11:07.0484 0584 C:\Windows\System32\igdumd64.dll - ok
14:11:07.0488 0584 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
14:11:07.0488 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
14:11:07.0493 0584 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
14:11:07.0493 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
14:11:07.0497 0584 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
14:11:07.0498 0584 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
14:11:07.0502 0584 [ 954EE14D7E78FD1FAA38C81001B9FD85 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\eb9697c59c9146442c46ac0b72969343\System.Xml.Linq.ni.dll
14:11:07.0502 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\eb9697c59c9146442c46ac0b72969343\System.Xml.Linq.ni.dll - ok
14:11:07.0507 0584 [ 2C9C4963715919FACFA2DEFCB8DA8287 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel#\a56b6b2b88a405b8d63a5a1426822a10\System.ServiceModel.Web.ni.dll
14:11:07.0507 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel#\a56b6b2b88a405b8d63a5a1426822a10\System.ServiceModel.Web.ni.dll - ok
14:11:07.0512 0584 [ 74F8130E074EFC413E38EBE25EBA23D2 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\SMDiagnostics\8e6532fb5cce010f2c5f6c9b02c6da85\SMDiagnostics.ni.dll
14:11:07.0512 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\SMDiagnostics\8e6532fb5cce010f2c5f6c9b02c6da85\SMDiagnostics.ni.dll - ok
14:11:07.0517 0584 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
14:11:07.0517 0584 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
14:11:07.0521 0584 [ 9E1F8293CA144F55B21406CA77BDBCE1 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\32072ac29ee7bc9e2ccab4fb8aa46d54\System.Runtime.Serialization.ni.dll
14:11:07.0521 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\32072ac29ee7bc9e2ccab4fb8aa46d54\System.Runtime.Serialization.ni.dll - ok
14:11:07.0525 0584 [ D36AE1B392FAA88FBEF39DE1142DF051 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll
14:11:07.0525 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll - ok
14:11:07.0530 0584 [ B640EAD61BFE5088542ECF98FEED111E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel\337f2f521acc0524e134f8709d18e5f6\System.ServiceModel.ni.dll
14:11:07.0530 0584 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel\337f2f521acc0524e134f8709d18e5f6\System.ServiceModel.ni.dll - ok
14:11:07.0535 0584 [ CCD0214A064CA26B6663E8AAA14EBF93 ] C:\Windows\System32\PresentationNative_v0300.dll
14:11:07.0535 0584 C:\Windows\System32\PresentationNative_v0300.dll - ok
14:11:07.0539 0584 [ 2EFE164449F1C62CEA167B10850CD9F1 ] C:\Windows\System32\msctfui.dll
14:11:07.0539 0584 C:\Windows\System32\msctfui.dll - ok
14:11:07.0543 0584 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:11:07.0543 0584 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
14:11:07.0549 0584 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
14:11:07.0549 0584 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
14:11:07.0553 0584 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:11:07.0553 0584 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
14:11:07.0557 0584 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
14:11:07.0557 0584 C:\Windows\System32\msvcr100_clr0400.dll - ok
14:11:07.0561 0584 [ 11AFB3767663997E0CE911CD015599C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll
14:11:07.0561 0584 C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll - ok
14:11:07.0565 0584 [ 983FC69644DDF0486C8DFEA262948D1A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:11:07.0565 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
14:11:07.0569 0584 [ C9B83ECFEB79BE7D2AF72DEEB284E161 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
14:11:07.0569 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
14:11:07.0574 0584 [ AF1BE886962EF0572F50ACFB35FAA4FD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\b377ef75161b610c4d4972c82eadc7b5\IAStorDataMgrSvc.ni.exe
14:11:07.0574 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\b377ef75161b610c4d4972c82eadc7b5\IAStorDataMgrSvc.ni.exe - ok
14:11:07.0578 0584 [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
14:11:07.0580 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
14:11:07.0583 0584 [ 1E00AE49880D32903EF5E96581836B15 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
14:11:07.0583 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
14:11:07.0586 0584 [ 89277D2B021BAF81EC0C17DB15E91FB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\9a77e21d5d9ce623b4a48011e4346e24\IAStorDataMgr.ni.dll
14:11:07.0586 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\9a77e21d5d9ce623b4a48011e4346e24\IAStorDataMgr.ni.dll - ok
14:11:07.0590 0584 [ 79FE066095E0DA6B8153F108CB7980F0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\aba32239352f1d058c2bd7c55ee256e2\IsdiInterop.ni.dll
14:11:07.0590 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\aba32239352f1d058c2bd7c55ee256e2\IsdiInterop.ni.dll - ok
14:11:07.0596 0584 [ 98B16E756243BEA9410E32025B19C06F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:11:07.0596 0584 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
14:11:07.0600 0584 [ CFFD30379256A23678247C61060EC70C ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
14:11:07.0600 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
14:11:07.0604 0584 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
14:11:07.0604 0584 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
14:11:07.0608 0584 [ 4BDB0C8B30015004CD31CCDAA28DBF5F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\09a468fb987e5a5f345346b0910c89ca\IAStorCommon.ni.dll
14:11:07.0609 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\09a468fb987e5a5f345346b0910c89ca\IAStorCommon.ni.dll - ok
14:11:07.0614 0584 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
14:11:07.0614 0584 C:\Windows\System32\sppsvc.exe - ok
14:11:07.0617 0584 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
14:11:07.0618 0584 C:\Windows\System32\drivers\spsys.sys - ok
14:11:07.0621 0584 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
14:11:07.0622 0584 C:\Program Files\Windows Defender\MpSvc.dll - ok
14:11:07.0625 0584 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
14:11:07.0625 0584 C:\Windows\System32\sppwinob.dll - ok
14:11:07.0630 0584 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
14:11:07.0630 0584 C:\Program Files\Windows Defender\MpClient.dll - ok
14:11:07.0635 0584 [ DD80D3894F5E1D36864D9727214605CD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
14:11:07.0635 0584 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll - ok
14:11:07.0640 0584 [ 5934096ED53A6AF9579C472AB0D7C84C ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
14:11:07.0640 0584 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
14:11:07.0644 0584 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
14:11:07.0645 0584 C:\Windows\System32\sppobjs.dll - ok
14:11:07.0650 0584 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
14:11:07.0650 0584 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
14:11:07.0654 0584 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
14:11:07.0654 0584 C:\Windows\System32\wmdrmdev.dll - ok
14:11:07.0659 0584 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
14:11:07.0659 0584 C:\Windows\System32\drmv2clt.dll - ok
14:11:07.0663 0584 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
14:11:07.0663 0584 C:\Windows\System32\wscsvc.dll - ok
14:11:07.0667 0584 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
14:11:07.0668 0584 C:\Windows\System32\p2pcollab.dll - ok
14:11:07.0672 0584 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
14:11:07.0672 0584 C:\Windows\System32\wuaueng.dll - ok
14:11:07.0678 0584 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
14:11:07.0678 0584 C:\Windows\System32\QAGENTRT.DLL - ok
14:11:07.0684 0584 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
14:11:07.0684 0584 C:\Windows\System32\fveui.dll - ok
14:11:07.0688 0584 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
14:11:07.0688 0584 C:\Windows\System32\cabinet.dll - ok
14:11:07.0692 0584 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
14:11:07.0692 0584 C:\Windows\System32\wuapi.dll - ok
14:11:07.0698 0584 [ 0A313C6E5F7856D0A622E3C9346E9365 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
14:11:07.0699 0584 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
14:11:07.0703 0584 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
14:11:07.0703 0584 C:\Windows\System32\mspatcha.dll - ok
14:11:07.0707 0584 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
14:11:07.0707 0584 C:\Windows\System32\wups.dll - ok
14:11:07.0712 0584 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
14:11:07.0712 0584 C:\Windows\System32\wmp.dll - ok
14:11:07.0717 0584 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
14:11:07.0717 0584 C:\Windows\System32\wmploc.DLL - ok
14:11:07.0722 0584 [ A5BE518E515EF80EFD10B6727F31E366 ] C:\Program Files\Internet Explorer\ieproxy.dll
14:11:07.0722 0584 C:\Program Files\Internet Explorer\ieproxy.dll - ok
14:11:07.0725 0584 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
14:11:07.0725 0584 C:\Windows\System32\wmpps.dll - ok
14:11:07.0732 0584 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
14:11:07.0732 0584 C:\Windows\System32\wups2.dll - ok
14:11:07.0736 0584 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
14:11:07.0736 0584 C:\Program Files\Windows Defender\MpRTP.dll - ok
14:11:07.0741 0584 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
14:11:07.0741 0584 C:\Windows\System32\tdh.dll - ok
14:11:07.0747 0584 [ 7A78ED1088890114DFDE2C4AB038D6B6 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:11:07.0747 0584 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
14:11:07.0753 0584 [ D480C9220BFE667DE65A46CDE80EA7E9 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll
14:11:07.0753 0584 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll - ok
14:11:07.0759 0584 [ 122F89E0905FC656D56F65CD7A2E9B4D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll
14:11:07.0759 0584 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll - ok
14:11:07.0764 0584 [ BA9976AF1946D955E46E44AFF26D856F ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpengine.dll
14:11:07.0764 0584 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpengine.dll - ok
14:11:07.0770 0584 [ 26535C8F7105D7C2767C93FDFC49CF57 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasbase.vdm
14:11:07.0770 0584 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasbase.vdm - ok
14:11:07.0774 0584 [ A65DA4C5932140068F577A890BAEB907 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasdlta.vdm
14:11:07.0774 0584 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1EFE5A60-E8D2-4279-A18D-090F47CFF9F0}\mpasdlta.vdm - ok
14:11:07.0780 0584 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
14:11:07.0780 0584 C:\Program Files\Windows Defender\MsMpLics.dll - ok
14:11:07.0784 0584 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
14:11:07.0784 0584 C:\Windows\System32\wscapi.dll - ok
14:11:07.0789 0584 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
14:11:07.0789 0584 C:\Windows\System32\wscisvif.dll - ok
14:11:07.0797 0584 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
14:11:07.0797 0584 C:\Windows\System32\wscproxystub.dll - ok
14:11:07.0801 0584 [ 5521928AA79079565B7CB8FCE6806131 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
14:11:07.0801 0584 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
14:11:07.0805 0584 [ 27B873A624C65E12A253D865FFD1F685 ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\chrome.dll
14:11:07.0805 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\chrome.dll - ok
14:11:07.0810 0584 [ C1B26E8D34B6245F9F66B42B3998E4DF ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\icudt.dll
14:11:07.0810 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\icudt.dll - ok
14:11:07.0816 0584 [ 71C4F42DC8DB668E826DA79462EA741E ] C:\Windows\SysWOW64\KBDUS.DLL
14:11:07.0816 0584 C:\Windows\SysWOW64\KBDUS.DLL - ok
14:11:07.0821 0584 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
14:11:07.0821 0584 C:\Windows\SysWOW64\mssprxy.dll - ok
14:11:07.0825 0584 [ 5BF8E37FA1E25227480F9CD2ACA21FB6 ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\d3dcompiler_46.dll
14:11:07.0825 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\d3dcompiler_46.dll - ok
14:11:07.0831 0584 [ 43C9CF6825CEA58F1815B7C3DBBB385C ] C:\Windows\SysWOW64\Wpc.dll
14:11:07.0831 0584 C:\Windows\SysWOW64\Wpc.dll - ok
14:11:07.0834 0584 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
14:11:07.0834 0584 C:\Windows\SysWOW64\wevtapi.dll - ok
14:11:07.0838 0584 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
14:11:07.0838 0584 C:\Windows\SysWOW64\samlib.dll - ok
14:11:07.0843 0584 [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\SysWOW64\msftedit.dll
14:11:07.0843 0584 C:\Windows\SysWOW64\msftedit.dll - ok
14:11:07.0848 0584 [ 678CFA5DE02C26BA5606E615B5667414 ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\libglesv2.dll
14:11:07.0848 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\libglesv2.dll - ok
14:11:07.0853 0584 [ 9BB636B077C5086ED2B87254D9551502 ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\libegl.dll
14:11:07.0853 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\libegl.dll - ok
14:11:07.0858 0584 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
14:11:07.0858 0584 C:\Windows\SysWOW64\dxva2.dll - ok
14:11:07.0865 0584 [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\SysWOW64\PortableDeviceApi.dll
14:11:07.0865 0584 C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
14:11:07.0869 0584 [ FDBA1DEC4F9BE4274A00B9B850C63484 ] C:\Windows\SysWOW64\mf.dll
14:11:07.0869 0584 C:\Windows\SysWOW64\mf.dll - ok
14:11:07.0873 0584 [ 00F00E9A7C416B3C1D87FE640D124BE1 ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll
14:11:07.0874 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll - ok
14:11:07.0878 0584 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
14:11:07.0878 0584 C:\Windows\SysWOW64\mscms.dll - ok
14:11:07.0884 0584 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
14:11:07.0884 0584 C:\Windows\SysWOW64\atl.dll - ok
14:11:07.0888 0584 [ 600A65F922CCDCBB2D11467914241556 ] C:\Windows\SysWOW64\msmpeg2vdec.dll
14:11:07.0888 0584 C:\Windows\SysWOW64\msmpeg2vdec.dll - ok
14:11:07.0893 0584 [ 14ECDC53A57BC812492CB8F9E4055547 ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppgooglenaclpluginchrome.dll
14:11:07.0893 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppgooglenaclpluginchrome.dll - ok
14:11:07.0900 0584 [ 53AF1750FD45DDD705C9B68C7DC58827 ] C:\Windows\SysWOW64\evr.dll
14:11:07.0900 0584 C:\Windows\SysWOW64\evr.dll - ok
14:11:07.0903 0584 [ 3D4AFA8E27521A5AB7BF0D7996215DA5 ] C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ffmpegsumo.dll
14:11:07.0903 0584 C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ffmpegsumo.dll - ok
14:11:07.0908 0584 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
14:11:07.0908 0584 C:\Windows\SysWOW64\actxprxy.dll - ok
14:11:07.0913 0584 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
14:11:07.0913 0584 C:\Windows\System32\security.dll - ok
14:11:07.0917 0584 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
14:11:07.0917 0584 C:\Windows\System32\wbem\wmipcima.dll - ok
14:11:07.0921 0584 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
14:11:07.0921 0584 C:\Windows\System32\wscinterop.dll - ok
14:11:07.0925 0584 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
14:11:07.0925 0584 C:\Windows\System32\wscui.cpl - ok
14:11:07.0929 0584 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
14:11:07.0930 0584 C:\Windows\System32\werconcpl.dll - ok
14:11:07.0934 0584 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
14:11:07.0934 0584 C:\Windows\System32\wercplsupport.dll - ok
14:11:07.0938 0584 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
14:11:07.0938 0584 C:\Windows\System32\hcproviders.dll - ok
14:11:07.0942 0584 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
14:11:07.0942 0584 C:\Windows\SysWOW64\linkinfo.dll - ok
14:11:07.0947 0584 [ 53FE2D34B143EFDB80685281E751B91C ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
14:11:07.0947 0584 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll - ok
14:11:07.0951 0584 [ A88E88FDBFE1EDC0674F9BB595178BB5 ] C:\Windows\SysWOW64\mfreadwrite.dll
14:11:07.0951 0584 C:\Windows\SysWOW64\mfreadwrite.dll - ok
14:11:07.0955 0584 [ 7B882AEBC5F6DBEA4E0361C0FC3E36D4 ] C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
14:11:07.0955 0584 C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL - ok
14:11:07.0959 0584 [ 8082F66DC9C8167FF1AA548736F58457 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
14:11:07.0959 0584 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - ok
14:11:07.0964 0584 [ 3D928B3FE97C403A33F803B3D1A260C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
14:11:07.0964 0584 C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll - ok
14:11:07.0968 0584 [ 179B446B36562BA025F38A5B0760DBEA ] C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
14:11:07.0968 0584 C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll - ok
14:11:07.0973 0584 [ AC421A44DE902F2627F1E63793ED89CD ] C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
14:11:07.0973 0584 C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll - ok
14:11:07.0977 0584 [ 270EE43CC00609B9937AAF94E1E970D4 ] C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
14:11:07.0977 0584 C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll - ok
14:11:07.0982 0584 [ 0B31B0F8FA99CFD009C8FBEA9E20C9DE ] C:\Users\Darrishi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
14:11:07.0982 0584 C:\Users\Darrishi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll - ok
14:11:07.0986 0584 [ 3D76B5C0E02ECC19C1F5756E8FD97F72 ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll
14:11:07.0986 0584 C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll - ok
14:11:07.0990 0584 [ 2EE9DCAE1D70ABF4D058688DE35F8221 ] C:\Windows\SysWOW64\npDeployJava1.dll
14:11:07.0990 0584 C:\Windows\SysWOW64\npDeployJava1.dll - ok
14:11:07.0994 0584 [ 81D388824634378A37765FD943FB3144 ] C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
14:11:07.0994 0584 C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - ok
14:11:07.0999 0584 [ A5C14075B571AF1C9592595BE724D9D2 ] C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
14:11:07.0999 0584 C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll - ok
14:11:08.0003 0584 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
14:11:08.0003 0584 C:\Windows\System32\wbem\WMIADAP.exe - ok
14:11:08.0007 0584 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
14:11:08.0007 0584 C:\Windows\System32\loadperf.dll - ok
14:11:08.0011 0584 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
14:11:08.0011 0584 C:\Windows\SysWOW64\mlang.dll - ok
14:11:08.0015 0584 [ A54E92AE753D4BC63FE71F010F76EF04 ] C:\Windows\SysWOW64\qasf.dll
14:11:08.0016 0584 C:\Windows\SysWOW64\qasf.dll - ok
14:11:08.0018 0584 ============================================================
14:11:08.0018 0584 Scan finished
14:11:08.0018 0584 ============================================================
14:11:08.0032 5588 Detected object count: 1
14:11:08.0032 5588 Actual detected object count: 1
14:11:18.0725 5588 !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
14:11:18.0725 5588 !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip
  • 0

#15
ButterflyX

ButterflyX

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
# AdwCleaner v2.303 - Logfile created 06/27/2013 at 14:25:22
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Darrishi - DARRISHI-PC
# Boot Mode : Normal
# Running from : C:\Users\Darrishi\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Registry is clean.

-\\ Mozilla Firefox v20.0.1 (en-US)

File : C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\0\prefs.js

[OK] File is clean.

File : C:\Users\Darrishi\AppData\Roaming\Mozilla\Firefox\Profiles\xwsh9vmu.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v27.0.1453.116

*************************

AdwCleaner[R1].txt - [1413 octets] - [27/06/2013 14:22:29]
AdwCleaner[R2].txt - [883 octets] - [27/06/2013 14:25:22]
AdwCleaner[S1].txt - [36478 octets] - [26/06/2013 17:57:35]

########## EOF - C:\AdwCleaner[R2].txt - [1003 octets] ##########
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP