[JellyBelly]

Hello Geeks,

My computer will only go as far as the Home Page when I try to access the internet. I'm in Safe Mode with Networking right now. I've run Microsoft Security Essentials and it has found zero threats. I've also run a full Malwarebytes scan and it has also found nothing. Attached is my OTL log.

OTL logfile created on: 6/26/2013 3:01:57 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Higgins\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16618)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.97 Gb Total Physical Memory | 2.23 Gb Available Physical Memory | 75.13% Memory free
5.93 Gb Paging File | 5.24 Gb Available in Paging File | 88.38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 583.32 Gb Total Space | 463.75 Gb Free Space | 79.50% Space Free | Partition Type: NTFS

Computer Name: HIGGINS-PC | User Name: Higgins | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/06/26 15:01:54 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Higgins\Downloads\OTL.scr
PRC - [2013/06/26 15:00:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Higgins\Downloads\OTL (1).exe
PRC - [2013/05/15 12:08:46 | 002,255,184 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - [2013/01/27 11:34:32 | 000,379,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2013/01/27 11:34:32 | 000,022,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2012/12/16 04:25:38 | 000,123,664 | ---- | M] (SANDBOXIE L.T.D) [Auto | Stopped] -- C:\Program Files\Sandboxie\SbieSvc.exe -- (SbieSvc)
SRV:64bit: - [2012/10/30 19:10:50 | 000,230,416 | ---- | M] (Nitro PDF Software) [Auto | Stopped] -- C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe -- (NitroReaderDriverReadSpool3)
SRV:64bit: - [2010/09/22 17:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/05/21 15:20:07 | 001,052,328 | ---- | M] ( ) [Auto | Stopped] -- C:\Windows\SysNative\dleacoms.exe -- (dlea_device)
SRV:64bit: - [2010/05/21 15:20:02 | 000,045,224 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysNative\spool\DRIVERS\x64\3\\dleaserv.exe -- (dleaCATSCustConnectService)
SRV:64bit: - [2009/07/13 18:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/06/09 07:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Stopped] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2013/06/12 01:55:40 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/05/15 12:08:44 | 002,467,664 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2013/03/06 02:21:52 | 000,039,056 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/02/28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/12/18 12:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/10/01 09:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 09:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/08/18 08:05:46 | 001,692,480 | ---- | M] (SoftThinks SAS) [Auto | Stopped] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2010/12/08 02:34:14 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2010/10/12 10:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/08/25 19:28:54 | 002,823,000 | ---- | M] (Dell, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe -- (NOBU)
SRV - [2010/05/21 15:20:02 | 000,045,224 | ---- | M] () [Auto | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\\dleaserv.exe -- (dleaCATSCustConnectService)
SRV - [2010/05/21 15:19:52 | 000,598,696 | ---- | M] ( ) [Auto | Stopped] -- C:\Windows\SysWOW64\dleacoms.exe -- (dlea_device)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/03 19:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2009/07/07 14:48:44 | 000,647,216 | ---- | M] (Cisco Systems, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice)
SRV - [2009/06/10 14:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/06/15 12:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Stopped] -- C:\Windows\SysWOW64\bgsvcgen.exe -- (bgsvcgen)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/01/20 15:59:04 | 000,130,008 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/12/16 04:25:34 | 000,202,632 | ---- | M] (SANDBOXIE L.T.D) [Kernel | On_Demand | Stopped] -- C:\Program Files\Sandboxie\SbieDrv.sys -- (SbieDrv)
DRV:64bit: - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/07/25 22:32:22 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/02/29 23:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/10/01 09:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2011/10/01 09:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2011/10/01 09:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2011/10/01 09:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2011/03/10 23:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 23:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 06:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 04:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/08/25 20:36:04 | 010,611,552 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/07/30 20:58:42 | 000,236,544 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/07/13 18:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 18:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 18:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 02:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/07/07 14:48:44 | 000,035,376 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\purendis.sys -- (purendis)
DRV:64bit: - [2009/07/07 14:48:44 | 000,033,328 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\pnarp.sys -- (pnarp)
DRV:64bit: - [2009/06/10 13:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 13:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 13:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 13:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 19:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/05/26 05:13:10 | 000,138,752 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2009/03/18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2006/11/01 11:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV:64bit: - [2006/08/25 14:36:52 | 000,039,208 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cdrbsdrv.sys -- (cdrbsdrv)
DRV - [2009/07/13 18:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{4E86F540-A47D-40FA-91DE-D88B67330FE2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{1FF85B72-F4E7-427F-8C32-B0113A8B6EA3}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{234EDF80-3D70-40E6-B064-408F21DFEC47}: "URL" = http://search.yahoo....p={SearchTerms}
IE - HKCU\..\SearchScopes\{56CB090D-E174-4D85-A206-DBA2078A723E}: "URL" = http://search.condui...&ctid=CT3212692
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7GGHP_enUS530
IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://us.search.yah...&fr=chr-linksys
IE - HKCU\..\SearchScopes\{DF08ABC5-DDF4-4B01-BDEA-2B7B141FC528}: "URL" = http://us.yhs4.searc...p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.1.18: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.1.18: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DAC3F861-B30D-40dd-9166-F4E75327FAC7}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/03/30 09:52:13 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\FindLyrics\FF\

[2013/04/06 14:25:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla FireFox\extensions

O1 HOSTS File: ([2013/04/04 17:27:50 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (FindLyrics) - {44C9CC91-6A4A-4579-B4B5-899ECDC18DC6} - C:\Program Files (x86)\FindLyrics\FindLyrics.dll File not found
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [dleamon.exe] C:\Program Files (x86)\Dell V310-V510 Series\dleamon.exe ()
O4:64bit: - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Dell V310-V510 Series\ezprint.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe (Dell, Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [nmapp] C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [nmctxth] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [SandboxieControl] C:\Program Files\Sandboxie\SbieCtrl.exe (SANDBOXIE L.T.D)
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{138D9FE7-95E5-4A80-80C5-B99028520D4B}: DhcpNameServer = 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll (Cisco Systems, Inc.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/05/31 13:55:54 | 000,000,000 | ---D | C] -- C:\Users\Higgins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch
[2013/05/31 13:55:23 | 000,000,000 | ---D | C] -- C:\Users\Higgins\AppData\Local\Torch
[2013/05/31 13:53:35 | 000,000,000 | ---D | C] -- C:\Users\Higgins\AppData\Local\iLivid
[2013/05/30 17:22:54 | 000,000,000 | ---D | C] -- C:\Users\Higgins\AppData\Local\LogMeIn Hamachi
[2013/05/30 17:21:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2013/05/30 17:21:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[3 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[3 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Higgins\Desktop\*.tmp files -> C:\Users\Higgins\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/06/26 14:51:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/06/26 14:50:57 | 2388,381,696 | -HS- | M] () -- C:\hiberfil.sys
[2013/06/26 14:48:25 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/06/26 14:46:00 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/06/26 14:03:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/06/26 13:44:27 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/06/26 13:44:27 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/06/26 03:03:47 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/06/26 03:03:46 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/06/25 16:53:43 | 000,002,294 | ---- | M] () -- C:\Windows\Sandboxie.ini
[2013/05/31 13:56:00 | 000,002,008 | ---- | M] () -- C:\Users\Higgins\Desktop\Facebook.lnk
[2013/05/31 13:56:00 | 000,002,006 | ---- | M] () -- C:\Users\Higgins\Desktop\Youtube.lnk
[2013/05/31 13:56:00 | 000,001,116 | ---- | M] () -- C:\Users\Higgins\Application Data\Microsoft\Internet Explorer\Quick Launch\Torch.lnk
[2013/05/31 13:55:22 | 000,001,166 | ---- | M] () -- C:\Users\Public\Desktop\Get The Best Facebook Chat Messenger.lnk
[2013/05/31 13:55:22 | 000,001,048 | ---- | M] () -- C:\Users\Higgins\Application Data\Microsoft\Internet Explorer\Quick Launch\iLivid.lnk
[2013/05/31 13:55:22 | 000,001,046 | ---- | M] () -- C:\Users\Higgins\Desktop\iLivid.lnk
[2013/05/30 17:21:40 | 000,000,888 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[3 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[3 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Higgins\Desktop\*.tmp files -> C:\Users\Higgins\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/06/26 03:03:47 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/06/26 03:03:46 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/05/31 13:56:03 | 000,001,194 | ---- | C] () -- C:\Users\Higgins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
[2013/05/31 13:56:00 | 000,002,008 | ---- | C] () -- C:\Users\Higgins\Desktop\Facebook.lnk
[2013/05/31 13:56:00 | 000,002,006 | ---- | C] () -- C:\Users\Higgins\Desktop\Youtube.lnk
[2013/05/31 13:55:54 | 000,001,116 | ---- | C] () -- C:\Users\Higgins\Application Data\Microsoft\Internet Explorer\Quick Launch\Torch.lnk
[2013/05/31 13:55:22 | 000,001,166 | ---- | C] () -- C:\Users\Public\Desktop\Get The Best Facebook Chat Messenger.lnk
[2013/05/31 13:55:22 | 000,001,054 | ---- | C] () -- C:\Users\Higgins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
[2013/05/31 13:55:22 | 000,001,048 | ---- | C] () -- C:\Users\Higgins\Application Data\Microsoft\Internet Explorer\Quick Launch\iLivid.lnk
[2013/05/31 13:55:22 | 000,001,046 | ---- | C] () -- C:\Users\Higgins\Desktop\iLivid.lnk
[2013/05/30 17:21:40 | 000,000,888 | ---- | C] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2013/04/06 01:00:43 | 000,002,294 | ---- | C] () -- C:\Windows\Sandboxie.ini
[2012/12/12 16:15:31 | 000,000,288 | ---- | C] () -- C:\Users\Higgins\AppData\Roaming\.backup.dm
[2012/01/02 15:45:03 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\hpcoinst.dll
[2011/09/04 13:24:01 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

========== ZeroAccess Check ==========

[2009/07/13 21:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/02/26 22:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/02/26 21:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 18:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 05:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 18:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/06/26 11:50:45 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\.minecraft
[2012/12/10 23:46:38 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Acdi
[2011/06/17 10:51:24 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Amazon
[2013/01/14 10:17:48 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\AnvSoft
[2013/05/24 17:34:28 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Carbon
[2012/03/07 18:47:36 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\DVDVideoSoft
[2012/12/10 23:19:32 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Dyil
[2013/04/23 17:44:58 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\FileOpen
[2011/01/03 12:39:32 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\GARMIN
[2013/04/23 17:44:58 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Nitro
[2013/04/23 17:44:12 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\OpenCandy
[2012/04/12 10:43:44 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Panasonic
[2011/02/27 22:01:25 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\SoftGrid Client
[2013/04/23 21:06:26 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\SumatraPDF
[2010/12/16 15:06:51 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\TP
[2012/12/10 21:36:34 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Ucycf
[2012/07/25 01:30:55 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\WildTangent
[2010/12/18 15:43:30 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Windows Live Writer
[2012/03/07 18:18:03 | 000,000,000 | ---D | M] -- C:\Users\Higgins\AppData\Roaming\Xilisoft

========== Purity Check ==========



< End of report >

[Advertisements]

Hello JellyBelly

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

• Please do not run any tools unless instructed to do so.
  
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
• Please do not attach logs or use code boxes, just copy and paste the text.
  
  • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
• Please read every post completely before doing anything.
  
  • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
• Please provide feedback about your experience as we go.
  
  • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on AdwCleaner.exe to run the tool.
• Click on Delete.
• Confirm each time with Ok.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the content of that logfile with your next answer.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

When they are complete let me have the two reports and let me know how things are running.

Gringo

[gringo_pr]

Hello JellyBelly

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

• Please do not run any tools unless instructed to do so.
  
  • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
• Please do not attach logs or use code boxes, just copy and paste the text.
  
  • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
• Please read every post completely before doing anything.
  
  • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
• Please provide feedback about your experience as we go.
  
  • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.

• Close all open programs and internet browsers.
• Double click on AdwCleaner.exe to run the tool.
• Click on Delete.
• Confirm each time with Ok.
• Your computer will be rebooted automatically. A text file will open after the restart.
• Please post the content of that logfile with your next answer.
• You can find the logfile at C:\AdwCleaner[S1].txt as well.

-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.

• Shut down your protection software now to avoid potential conflicts.
• Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
• The tool will open and start scanning your system.
• Please be patient as this can take a while to complete depending on your system's specifications.
• On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
• Post the contents of JRT.txt into your next message.

When they are complete let me have the two reports and let me know how things are running.

Gringo

[JellyBelly]

Hello Gringo,

Thanks for helping me with my computer problems. I still cannot access the internet normally (I can reach my home page when Internet Explorer starts, but when I click on a link, the home page disappears and there is an empty white page. When I try to go back to my home page, it won't go back). I am currently running Safe Mode with Networking.

# AdwCleaner v2.303 - Logfile created 06/26/2013 at 22:24:49
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Higgins - HIGGINS-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Higgins\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Higgins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
File Deleted : C:\Users\Higgins\Desktop\iLivid.lnk
File Deleted : C:\Users\Public\Desktop\Get The Best Facebook Chat Messenger.lnk
Folder Deleted : C:\ProgramData\PC Optimizer Pro
Folder Deleted : C:\Users\Higgins\AppData\Local\Ilivid
Folder Deleted : C:\Users\Higgins\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{44C9CC91-6A4A-4579-B4B5-899ECDC18DC6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{44C9CC91-6A4A-4579-B4B5-899ECDC18DC6}
Key Deleted : HKCU\Software\pc optimizer pro
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{44C9CC91-6A4A-4579-B4B5-899ECDC18DC6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jmhhdaimhfblnamlcdijbaakkifakade
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{44C9CC91-6A4A-4579-B4B5-899ECDC18DC6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16618

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [6446 octets] - [04/04/2013 01:18:59]
AdwCleaner[S2].txt - [1786 octets] - [26/06/2013 22:24:49]

########## EOF - C:\AdwCleaner[S2].txt - [1846 octets] ##########


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Higgins on Wed 06/26/2013 at 22:35:22.14
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\torch
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\torch
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{56CB090D-E174-4D85-A206-DBA2078A723E}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{DF08ABC5-DDF4-4B01-BDEA-2B7B141FC528}



~~~ Files

Successfully deleted: [File] C:\Windows\syswow64\shoDF5F.tmp



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Higgins\appdata\local\torch"
Successfully deleted: [Folder] "C:\Users\Higgins\appdata\locallow\datamngr"
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{042CE36F-F526-45A2-A0B1-B9F7CC2AB015}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{0CD733BE-0B9E-41A6-B6DC-28550CF658C7}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{24593E76-966B-4FD5-AC48-F17A5CB21D9A}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{29B332FF-F95E-43A8-A275-EB4A8A3E837C}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{30A5718F-54E2-4294-B560-EAB412F62F20}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{32C8ADC8-B1C0-40F0-80E1-79081BF4A761}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{360BDB95-C2C6-4088-A2D8-A160FE3A44DC}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{466B96C7-7CD4-49DB-AC11-D1530BA6B949}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{73E845A7-E92D-4693-B0DB-6B26B1035FDE}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{78B3DD26-56A1-4B62-B7F3-3A97BE5A3D41}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{7DCCBFD3-7B76-4D09-B1A5-090B8964E7B8}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{858935F1-B99B-43F2-8A4B-C1B82A690EC0}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{8974651E-80B9-4603-B49C-F24AC9903E28}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{917FC5EE-A8F6-41A0-9444-887F723DF5E8}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{975CFB9C-FC0F-40E7-BC7F-780A2FCDB8D8}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{9AF15A29-C301-4966-8511-10493EC494E3}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{A3F21E07-F209-4144-AEA0-96CC3FBE47D6}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{A4C15022-B7C9-4500-9BB1-4E095737A7DF}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{B2939C6A-EFB5-4E82-A5D9-4098002443E7}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{B97EA8CD-8F6F-4828-B82B-3F6F0A6B4B60}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{C2D09B23-9FE6-46A9-AFB7-3EEB57A41F3F}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{C6DB905D-CC49-4304-AEBB-4779F9EB2E39}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{CB442544-DB40-470E-9C4A-ECF6AF2B8426}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{CC3416F4-7B62-43E5-9474-F831F9FF8D77}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{D06C8AC7-F147-4B2F-9836-922DA815D6C6}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{D11F04E8-E050-49B9-8B05-84360D8AEEF8}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{D1A0B00E-4A9E-468A-98B8-FCBDD78E5BB7}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{E7EA46A8-01CC-4D3D-A36B-414FFFB1B573}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{F5ED9D1A-F5E8-49C5-B552-9D736F20A445}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{FBDF84BD-C525-4D6D-B5E7-24B44142CEDE}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{FE4E5E59-C076-4B54-B074-F499EB49AE3C}
Successfully deleted: [Empty Folder] C:\Users\Higgins\appdata\local\{FFFABBE8-C6E7-4F45-9271-7144E6D2AD98}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 06/26/2013 at 22:36:48.14
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[gringo_pr]

Hello JellyBelly

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

• In your next post I need the following
  
• Log from Combofix
• let me know of any problems you may have had
  
• How is the computer doing now?

Gringo

[JellyBelly]

Hi Gringo,

I still cannot access the internet normally. Here is the ComboFix log.

ComboFix 13-06-27.02 - Higgins 06/27/2013 14:13:35.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3037.1682 [GMT -7:00]
Running from: c:\users\Higgins\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\SPL3AF0.tmp
c:\programdata\SPL83F2.tmp
c:\programdata\SPL862B.tmp
.
.
((((((((((((((((((((((((( Files Created from 2013-05-27 to 2013-06-27 )))))))))))))))))))))))))))))))
.
.
2013-06-27 21:23 . 2013-06-27 21:23 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-06-27 21:23 . 2013-06-27 21:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-27 05:35 . 2013-06-27 05:35 -------- d-----w- c:\windows\ERUNT
2013-06-27 05:34 . 2013-06-27 05:34 -------- d-----w- C:\JRT
2013-06-26 20:16 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-06-26 20:16 . 2013-04-17 06:24 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-06-26 20:09 . 2013-06-12 03:08 9552976 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{65BFF886-0038-42DF-8CAA-83EC14916A81}\mpengine.dll
2013-06-26 10:02 . 2013-06-26 10:02 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-26 00:09 . 2013-06-26 00:05 964552 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{435B02EC-2451-4245-98C3-F96BCDF9F3EC}\gapaengine.dll
2013-06-26 00:05 . 2013-06-12 03:08 9552976 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-05-31 00:22 . 2013-06-27 21:24 -------- d-----w- c:\users\Higgins\AppData\Local\LogMeIn Hamachi
2013-05-31 00:21 . 2013-05-31 00:21 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-12 10:01 . 2012-11-15 17:58 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-06-12 08:55 . 2013-03-30 17:46 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-12 08:55 . 2013-03-30 17:46 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-21 18:26 . 2013-05-21 18:27 964552 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-05-09 08:55 . 2012-07-01 17:20 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-02 15:29 . 2013-04-23 17:03 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-17 13:31 . 2013-04-23 17:03 9317456 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1B242CA0-9794-46C4-83C9-CC55C92B7EB9}\mpengine.dll
2013-04-13 05:49 . 2013-05-14 22:48 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-14 22:48 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-14 22:48 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-14 22:48 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-14 22:48 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-14 22:48 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-23 17:50 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-14 22:48 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-14 22:48 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-14 22:47 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-04-04 12:36 . 2013-04-06 06:16 866720 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-04-04 12:35 . 2010-12-08 09:30 788896 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-04-04 12:35 . 2013-05-23 03:32 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-30 16:51 . 2013-03-30 16:51 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2013-03-30 16:51 . 2013-03-30 16:51 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-12-16 765200]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2012-12-17 59872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2013-03-30 295512]
"nmctxth"="c:\program files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2009-07-07 647216]
"nmapp"="c:\program files (x86)\Pure Networks\Network Magic\nmapp.exe" [2009-07-08 472112]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-05-15 2255184]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-10-07 559616]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe /firstrun [2010-5-28 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 dlea_device;dlea_device;c:\windows\system32\dleacoms.exe;c:\windows\SYSNATIVE\dleacoms.exe [x]
S2 dleaCATSCustConnectService;dleaCATSCustConnectService;c:\windows\system32\spool\DRIVERS\x64\3\\dleaserv.exe;c:\windows\SYSNATIVE\spool\DRIVERS\x64\3\\dleaserv.exe [x]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe;c:\program files\Dell\DellDock\DockLogin.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NitroReaderDriverReadSpool3;NitroPDFReaderDriverCreatorReadSpool3;c:\program files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe;c:\program files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [x]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [x]
S3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys;c:\windows\SYSNATIVE\drivers\IntcHdmi.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-06-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-30 08:55]
.
2013-06-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 20:05]
.
2013-06-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26 20:05]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-21 8306208]
"dleamon.exe"="c:\program files (x86)\Dell V310-V510 Series\dleamon.exe" [2010-08-09 770728]
"EzPrint"="c:\program files (x86)\Dell V310-V510 Series\ezprint.exe" [2010-08-09 139944]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-26 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-26 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-26 415256]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.yahoo.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-RealPlayer 16.0 - c:\program files (x86)\Real\RealPlayer\Update\r1puninst.exe
AddRemove-Torch - c:\users\Higgins\AppData\Local\Torch\uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-06-27 14:50:50
ComboFix-quarantined-files.txt 2013-06-27 21:50
.
Pre-Run: 498,331,406,336 bytes free
Post-Run: 498,318,438,400 bytes free
.
- - End Of File - - 876580B14344BF53A73D20AFA9364B5D
CDB4DE4BBD714F152979DA2DCBEF57EB

[gringo_pr]

Hello JellyBelly

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.

• Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
• Put a checkmark beside loaded modules.
• A reboot will be needed to apply the changes. Do it.
• TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
• Then click on Change parameters in TDSSKiller.
• Check all boxes then click OK.
• Click the Start Scan button.
• The scan should take no longer than 2 minutes.
• If a suspicious object is detected, the default action will be Skip, click on Continue.
• If malicious objects are found, they will show in the Scan results
• Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
• more than one report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". The one that I need is the larger one. Please copy and paste the contents of that file here.
  
  Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it
  
  If the forum still complains about it being to long send me everything that is at the end of the report after where it says
  
  ==================
  Scan finished
  ==================
  

and I will see if I want to see the whole report

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit

• Quit all programs that you may have started.
• Please disconnect any external drives from the computer before you run this scan!
• For Vista or Windows 7, right-click and select "Run as Administrator to start"
• For Windows XP, double-click to start.
• Wait until Prescan has finished ...
• Then Click on "Scan" button
• Wait until the Status box shows "Scan Finished"
• click on "delete"
• Wait until the Status box shows "Deleting Finished"
• Click on "Report" and copy/paste the content of the Notepad into your next reply.
• the scan will make two reports the one I would like to see is called RKreport[2].txt on your Desktop
• Exit/Close RogueKiller+

send me the reports made from TDSSKiller and Roguekiller and also let me know how the computer is doing at this time.

Gringo

[JellyBelly]

Hi again Gringo,

Thank you for doing all this work for me. I can't believe how speedy your replies are.

I am pasting both RogueKiller logs as neither is named RKreport [2]. Below that is TDSSKiller. I'm currently in safe mode, so I will send this to you now and then report back on if I can access the internet normally.

1st RogueKiller
RogueKiller V8.6.1 _x64_ [Jun 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : hxxp://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Safe mode with network support
User : Higgins [Admin rights]
Mode : Scan -- Date : 06/27/2013 21:12:00
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 6 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD6400AAKS-75A7B2 +++++
--- User ---
[MBR] e3bc867e2eb59945a2f95a4b3054ef44
[BSP] 976833c91be82e3a47ff2464d98af4e2 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 13118 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 26947584 | Size: 597321 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_S_06272013_211200.txt >>


2nd RogueKiller

RogueKiller V8.6.1 _x64_ [Jun 25 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : hxxp://www.adlice.com/softwares/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Safe mode with network support
User : Higgins [Admin rights]
Mode : Remove -- Date : 06/27/2013 21:12:41
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 6 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> [0x2] The system cannot find the file specified.
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD6400AAKS-75A7B2 +++++
--- User ---
[MBR] e3bc867e2eb59945a2f95a4b3054ef44
[BSP] 976833c91be82e3a47ff2464d98af4e2 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 13118 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 26947584 | Size: 597321 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_06272013_211241.txt >>
RKreport[0]_S_06272013_211200.txt


TDSSKILLER

20:53:17.0780 3616 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:53:18.0404 3616 ============================================================
20:53:18.0404 3616 Current date / time: 2013/06/27 20:53:18.0404
20:53:18.0404 3616 SystemInfo:
20:53:18.0404 3616
20:53:18.0404 3616 OS Version: 6.1.7601 ServicePack: 1.0
20:53:18.0404 3616 Product type: Workstation
20:53:18.0404 3616 ComputerName: HIGGINS-PC
20:53:18.0435 3616 UserName: Higgins
20:53:18.0435 3616 Windows directory: C:\Windows
20:53:18.0435 3616 System windows directory: C:\Windows
20:53:18.0435 3616 Running under WOW64
20:53:18.0435 3616 Processor architecture: Intel x64
20:53:18.0435 3616 Number of processors: 2
20:53:18.0435 3616 Page size: 0x1000
20:53:18.0435 3616 Boot type: Normal boot
20:53:18.0435 3616 ============================================================
20:53:19.0324 3616 BG loaded
20:53:19.0855 3616 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:53:19.0886 3616 ============================================================
20:53:19.0886 3616 \Device\Harddisk0\DR0:
20:53:19.0886 3616 MBR partitions:
20:53:19.0886 3616 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x199F000
20:53:19.0886 3616 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x19B3000, BlocksNum 0x48EA4800
20:53:19.0886 3616 ============================================================
20:53:19.0933 3616 C: <-> \Device\Harddisk0\DR0\Partition2
20:53:19.0933 3616 ============================================================
20:53:19.0933 3616 Initialize success
20:53:19.0933 3616 ============================================================
20:54:11.0154 6016 ============================================================
20:54:11.0154 6016 Scan started
20:54:11.0154 6016 Mode: Manual; SigCheck; TDLFS;
20:54:11.0154 6016 ============================================================
20:54:11.0918 6016 ================ Scan system memory ========================
20:54:11.0918 6016 System memory - ok
20:54:11.0918 6016 ================ Scan services =============================
20:54:12.0074 6016 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:54:12.0199 6016 1394ohci - ok
20:54:12.0230 6016 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:54:12.0262 6016 ACPI - ok
20:54:12.0308 6016 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:54:12.0402 6016 AcpiPmi - ok
20:54:12.0527 6016 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:54:12.0542 6016 AdobeARMservice - ok
20:54:12.0667 6016 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:54:12.0698 6016 AdobeFlashPlayerUpdateSvc - ok
20:54:12.0730 6016 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:54:12.0761 6016 adp94xx - ok
20:54:12.0808 6016 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:54:12.0823 6016 adpahci - ok
20:54:12.0839 6016 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:54:12.0854 6016 adpu320 - ok
20:54:12.0917 6016 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:54:13.0057 6016 AeLookupSvc - ok
20:54:13.0104 6016 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:54:13.0182 6016 AFD - ok
20:54:13.0229 6016 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:54:13.0260 6016 agp440 - ok
20:54:13.0291 6016 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:54:13.0369 6016 ALG - ok
20:54:13.0400 6016 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:54:13.0416 6016 aliide - ok
20:54:13.0432 6016 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:54:13.0447 6016 amdide - ok
20:54:13.0494 6016 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:54:13.0572 6016 AmdK8 - ok
20:54:13.0572 6016 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:54:13.0619 6016 AmdPPM - ok
20:54:13.0666 6016 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:54:13.0697 6016 amdsata - ok
20:54:13.0759 6016 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:54:13.0790 6016 amdsbs - ok
20:54:13.0837 6016 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:54:13.0853 6016 amdxata - ok
20:54:13.0900 6016 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:54:14.0056 6016 AppID - ok
20:54:14.0087 6016 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:54:14.0149 6016 AppIDSvc - ok
20:54:14.0196 6016 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
20:54:14.0274 6016 Appinfo - ok
20:54:14.0368 6016 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:54:14.0383 6016 Apple Mobile Device - ok
20:54:14.0430 6016 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:54:14.0446 6016 arc - ok
20:54:14.0461 6016 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:54:14.0461 6016 arcsas - ok
20:54:14.0508 6016 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:54:14.0570 6016 AsyncMac - ok
20:54:14.0617 6016 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:54:14.0648 6016 atapi - ok
20:54:14.0680 6016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:54:14.0742 6016 AudioEndpointBuilder - ok
20:54:14.0758 6016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:54:14.0789 6016 AudioSrv - ok
20:54:14.0836 6016 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:54:14.0929 6016 AxInstSV - ok
20:54:14.0960 6016 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:54:15.0023 6016 b06bdrv - ok
20:54:15.0054 6016 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:54:15.0085 6016 b57nd60a - ok
20:54:15.0101 6016 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:54:15.0163 6016 BDESVC - ok
20:54:15.0179 6016 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:54:15.0288 6016 Beep - ok
20:54:15.0350 6016 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:54:15.0397 6016 BFE - ok
20:54:15.0460 6016 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] bgsvcgen C:\Windows\SysWOW64\bgsvcgen.exe
20:54:15.0522 6016 bgsvcgen - ok
20:54:15.0553 6016 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
20:54:15.0616 6016 BITS - ok
20:54:15.0662 6016 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:54:15.0678 6016 blbdrive - ok
20:54:15.0756 6016 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:54:15.0787 6016 Bonjour Service - ok
20:54:15.0818 6016 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:54:15.0865 6016 bowser - ok
20:54:15.0896 6016 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:54:15.0959 6016 BrFiltLo - ok
20:54:15.0974 6016 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:54:15.0990 6016 BrFiltUp - ok
20:54:16.0037 6016 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
20:54:16.0099 6016 BridgeMP - ok
20:54:16.0130 6016 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:54:16.0162 6016 Browser - ok
20:54:16.0193 6016 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:54:16.0255 6016 Brserid - ok
20:54:16.0271 6016 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:54:16.0302 6016 BrSerWdm - ok
20:54:16.0333 6016 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:54:16.0380 6016 BrUsbMdm - ok
20:54:16.0396 6016 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:54:16.0396 6016 BrUsbSer - ok
20:54:16.0427 6016 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:54:16.0458 6016 BTHMODEM - ok
20:54:16.0489 6016 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:54:16.0552 6016 bthserv - ok
20:54:16.0583 6016 catchme - ok
20:54:16.0614 6016 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:54:16.0645 6016 cdfs - ok
20:54:16.0692 6016 [ 9EDD76D0800A022AE10B9243D0224E72 ] cdrbsdrv C:\Windows\system32\drivers\cdrbsdrv.sys
20:54:16.0723 6016 cdrbsdrv - ok
20:54:16.0770 6016 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:54:16.0786 6016 cdrom - ok
20:54:16.0832 6016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:54:16.0895 6016 CertPropSvc - ok
20:54:16.0910 6016 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:54:16.0942 6016 circlass - ok
20:54:16.0973 6016 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:54:17.0004 6016 CLFS - ok
20:54:17.0066 6016 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:54:17.0129 6016 clr_optimization_v2.0.50727_32 - ok
20:54:17.0176 6016 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:54:17.0191 6016 clr_optimization_v2.0.50727_64 - ok
20:54:17.0238 6016 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:54:17.0300 6016 clr_optimization_v4.0.30319_32 - ok
20:54:17.0347 6016 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:54:17.0363 6016 clr_optimization_v4.0.30319_64 - ok
20:54:17.0394 6016 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:54:17.0425 6016 CmBatt - ok
20:54:17.0456 6016 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:54:17.0472 6016 cmdide - ok
20:54:17.0519 6016 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:54:17.0534 6016 CNG - ok
20:54:17.0550 6016 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:54:17.0566 6016 Compbatt - ok
20:54:17.0597 6016 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:54:17.0644 6016 CompositeBus - ok
20:54:17.0659 6016 COMSysApp - ok
20:54:17.0659 6016 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:54:17.0675 6016 crcdisk - ok
20:54:17.0722 6016 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:54:17.0753 6016 CryptSvc - ok
20:54:17.0862 6016 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:54:17.0893 6016 cvhsvc - ok
20:54:17.0940 6016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:54:17.0987 6016 DcomLaunch - ok
20:54:18.0018 6016 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:54:18.0080 6016 defragsvc - ok
20:54:18.0127 6016 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:54:18.0221 6016 DfsC - ok
20:54:18.0268 6016 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:54:18.0314 6016 Dhcp - ok
20:54:18.0346 6016 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:54:18.0408 6016 discache - ok
20:54:18.0439 6016 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:54:18.0455 6016 Disk - ok
20:54:18.0517 6016 [ 1017D70ABE5483F40C10B7774397D120 ] dleaCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\dleaserv.exe
20:54:18.0533 6016 dleaCATSCustConnectService - ok
20:54:18.0548 6016 dlea_device - ok
20:54:18.0595 6016 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:54:18.0658 6016 Dnscache - ok
20:54:18.0720 6016 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
20:54:19.0126 6016 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
20:54:19.0126 6016 DockLoginService - detected UnsignedFile.Multi.Generic (1)
20:54:19.0172 6016 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:54:19.0235 6016 dot3svc - ok
20:54:19.0266 6016 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:54:19.0328 6016 DPS - ok
20:54:19.0375 6016 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:54:19.0422 6016 drmkaud - ok
20:54:19.0469 6016 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:54:19.0484 6016 DXGKrnl - ok
20:54:19.0531 6016 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:54:19.0609 6016 EapHost - ok
20:54:19.0750 6016 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:54:19.0874 6016 ebdrv - ok
20:54:19.0906 6016 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:54:19.0968 6016 EFS - ok
20:54:20.0030 6016 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:54:20.0093 6016 ehRecvr - ok
20:54:20.0124 6016 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:54:20.0171 6016 ehSched - ok
20:54:20.0218 6016 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:54:20.0264 6016 elxstor - ok
20:54:20.0296 6016 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:54:20.0311 6016 ErrDev - ok
20:54:20.0374 6016 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:54:20.0436 6016 EventSystem - ok
20:54:20.0467 6016 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:54:20.0498 6016 exfat - ok
20:54:20.0530 6016 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:54:20.0592 6016 fastfat - ok
20:54:20.0654 6016 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:54:20.0701 6016 Fax - ok
20:54:20.0717 6016 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:54:20.0764 6016 fdc - ok
20:54:20.0779 6016 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:54:20.0842 6016 fdPHost - ok
20:54:20.0873 6016 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:54:20.0935 6016 FDResPub - ok
20:54:20.0951 6016 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:54:20.0951 6016 FileInfo - ok
20:54:20.0966 6016 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:54:21.0013 6016 Filetrace - ok
20:54:21.0044 6016 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:54:21.0044 6016 flpydisk - ok
20:54:21.0107 6016 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:54:21.0122 6016 FltMgr - ok
20:54:21.0185 6016 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
20:54:21.0247 6016 FontCache - ok
20:54:21.0294 6016 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:54:21.0325 6016 FontCache3.0.0.0 - ok
20:54:21.0325 6016 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:54:21.0341 6016 FsDepends - ok
20:54:21.0372 6016 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:54:21.0388 6016 Fs_Rec - ok
20:54:21.0419 6016 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:54:21.0434 6016 fvevol - ok
20:54:21.0450 6016 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:54:21.0450 6016 gagp30kx - ok
20:54:21.0559 6016 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
20:54:21.0590 6016 GamesAppService - ok
20:54:21.0622 6016 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:54:21.0637 6016 GEARAspiWDM - ok
20:54:21.0715 6016 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
20:54:21.0731 6016 GoToAssist - ok
20:54:21.0762 6016 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:54:21.0824 6016 gpsvc - ok
20:54:21.0934 6016 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:54:21.0949 6016 gupdate - ok
20:54:21.0980 6016 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:54:21.0980 6016 gupdatem - ok
20:54:22.0012 6016 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:54:22.0027 6016 gusvc - ok
20:54:22.0058 6016 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
20:54:22.0058 6016 hamachi - ok
20:54:22.0152 6016 [ DBCF8F2EA9111510B5B86E1EE9CD8816 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
20:54:22.0183 6016 Hamachi2Svc - ok
20:54:22.0214 6016 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:54:22.0277 6016 hcw85cir - ok
20:54:22.0324 6016 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:54:22.0370 6016 HDAudBus - ok
20:54:22.0386 6016 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:54:22.0402 6016 HidBatt - ok
20:54:22.0402 6016 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:54:22.0433 6016 HidBth - ok
20:54:22.0448 6016 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:54:22.0464 6016 HidIr - ok
20:54:22.0495 6016 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
20:54:22.0573 6016 hidserv - ok
20:54:22.0604 6016 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:54:22.0651 6016 HidUsb - ok
20:54:22.0682 6016 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:54:22.0729 6016 hkmsvc - ok
20:54:22.0792 6016 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:54:22.0838 6016 HomeGroupListener - ok
20:54:22.0885 6016 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:54:22.0932 6016 HomeGroupProvider - ok
20:54:22.0948 6016 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:54:22.0963 6016 HpSAMD - ok
20:54:23.0010 6016 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:54:23.0057 6016 HTTP - ok
20:54:23.0104 6016 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:54:23.0135 6016 hwpolicy - ok
20:54:23.0166 6016 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:54:23.0197 6016 i8042prt - ok
20:54:23.0213 6016 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:54:23.0228 6016 iaStor - ok
20:54:23.0291 6016 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:54:23.0306 6016 IAStorDataMgrSvc - ok
20:54:23.0353 6016 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:54:23.0369 6016 iaStorV - ok
20:54:23.0400 6016 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:54:23.0447 6016 idsvc - ok
20:54:23.0790 6016 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:54:23.0915 6016 igfx - ok
20:54:23.0946 6016 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:54:23.0977 6016 iirsp - ok
20:54:24.0024 6016 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:54:24.0102 6016 IKEEXT - ok
20:54:24.0196 6016 [ 492CD3A94913D753B4591CD9E29EC843 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:54:24.0211 6016 IntcAzAudAddService - ok
20:54:24.0258 6016 [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
20:54:24.0305 6016 IntcHdmiAddService - ok
20:54:24.0352 6016 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:54:24.0367 6016 intelide - ok
20:54:24.0383 6016 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:54:24.0414 6016 intelppm - ok
20:54:24.0430 6016 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:54:24.0508 6016 IPBusEnum - ok
20:54:24.0539 6016 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:54:24.0601 6016 IpFilterDriver - ok
20:54:24.0632 6016 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:54:24.0695 6016 iphlpsvc - ok
20:54:24.0726 6016 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:54:24.0757 6016 IPMIDRV - ok
20:54:24.0788 6016 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:54:24.0851 6016 IPNAT - ok
20:54:24.0929 6016 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:54:24.0976 6016 iPod Service - ok
20:54:24.0991 6016 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:54:25.0069 6016 IRENUM - ok
20:54:25.0085 6016 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:54:25.0100 6016 isapnp - ok
20:54:25.0147 6016 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:54:25.0163 6016 iScsiPrt - ok
20:54:25.0210 6016 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:54:25.0225 6016 kbdclass - ok
20:54:25.0272 6016 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:54:25.0303 6016 kbdhid - ok
20:54:25.0319 6016 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:54:25.0350 6016 KeyIso - ok
20:54:25.0381 6016 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:54:25.0381 6016 KSecDD - ok
20:54:25.0397 6016 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:54:25.0412 6016 KSecPkg - ok
20:54:25.0428 6016 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:54:25.0459 6016 ksthunk - ok
20:54:25.0506 6016 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:54:25.0568 6016 KtmRm - ok
20:54:25.0631 6016 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
20:54:25.0693 6016 LanmanServer - ok
20:54:25.0724 6016 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:54:25.0787 6016 LanmanWorkstation - ok
20:54:25.0849 6016 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:54:25.0880 6016 lltdio - ok
20:54:25.0912 6016 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:54:25.0958 6016 lltdsvc - ok
20:54:25.0974 6016 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:54:26.0005 6016 lmhosts - ok
20:54:26.0021 6016 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:54:26.0036 6016 LSI_FC - ok
20:54:26.0052 6016 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:54:26.0068 6016 LSI_SAS - ok
20:54:26.0068 6016 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:54:26.0083 6016 LSI_SAS2 - ok
20:54:26.0099 6016 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:54:26.0099 6016 LSI_SCSI - ok
20:54:26.0130 6016 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:54:26.0177 6016 luafv - ok
20:54:26.0255 6016 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:54:26.0286 6016 Mcx2Svc - ok
20:54:26.0317 6016 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:54:26.0333 6016 megasas - ok
20:54:26.0364 6016 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:54:26.0364 6016 MegaSR - ok
20:54:26.0442 6016 Microsoft SharePoint Workspace Audit Service - ok
20:54:26.0504 6016 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:54:26.0567 6016 MMCSS - ok
20:54:26.0582 6016 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:54:26.0629 6016 Modem - ok
20:54:26.0645 6016 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:54:26.0676 6016 monitor - ok
20:54:26.0707 6016 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:54:26.0707 6016 mouclass - ok
20:54:26.0738 6016 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:54:26.0754 6016 mouhid - ok
20:54:26.0785 6016 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:54:26.0816 6016 mountmgr - ok
20:54:26.0848 6016 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
20:54:26.0879 6016 MpFilter - ok
20:54:26.0894 6016 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:54:26.0910 6016 mpio - ok
20:54:26.0926 6016 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:54:26.0957 6016 mpsdrv - ok
20:54:27.0004 6016 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:54:27.0050 6016 MpsSvc - ok
20:54:27.0082 6016 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:54:27.0128 6016 MRxDAV - ok
20:54:27.0175 6016 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:54:27.0222 6016 mrxsmb - ok
20:54:27.0238 6016 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:54:27.0300 6016 mrxsmb10 - ok
20:54:27.0331 6016 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:54:27.0331 6016 mrxsmb20 - ok
20:54:27.0378 6016 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:54:27.0409 6016 msahci - ok
20:54:27.0425 6016 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:54:27.0425 6016 msdsm - ok
20:54:27.0456 6016 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:54:27.0472 6016 MSDTC - ok
20:54:27.0518 6016 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:54:27.0550 6016 Msfs - ok
20:54:27.0596 6016 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:54:27.0659 6016 mshidkmdf - ok
20:54:27.0690 6016 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:54:27.0706 6016 msisadrv - ok
20:54:27.0737 6016 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:54:27.0799 6016 MSiSCSI - ok
20:54:27.0815 6016 msiserver - ok
20:54:27.0846 6016 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:54:27.0908 6016 MSKSSRV - ok
20:54:27.0971 6016 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:54:28.0002 6016 MsMpSvc - ok
20:54:28.0002 6016 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:54:28.0033 6016 MSPCLOCK - ok
20:54:28.0049 6016 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:54:28.0080 6016 MSPQM - ok
20:54:28.0127 6016 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:54:28.0158 6016 MsRPC - ok
20:54:28.0174 6016 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:54:28.0189 6016 mssmbios - ok
20:54:28.0220 6016 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:54:28.0267 6016 MSTEE - ok
20:54:28.0283 6016 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:54:28.0283 6016 MTConfig - ok
20:54:28.0314 6016 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:54:28.0330 6016 Mup - ok
20:54:28.0361 6016 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:54:28.0408 6016 napagent - ok
20:54:28.0439 6016 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:54:28.0501 6016 NativeWifiP - ok
20:54:28.0564 6016 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:54:28.0626 6016 NDIS - ok
20:54:28.0642 6016 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:54:28.0673 6016 NdisCap - ok
20:54:28.0704 6016 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:54:28.0751 6016 NdisTapi - ok
20:54:28.0782 6016 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:54:28.0813 6016 Ndisuio - ok
20:54:28.0844 6016 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:54:28.0907 6016 NdisWan - ok
20:54:28.0938 6016 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:54:28.0969 6016 NDProxy - ok
20:54:28.0985 6016 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:54:29.0047 6016 NetBIOS - ok
20:54:29.0078 6016 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:54:29.0156 6016 NetBT - ok
20:54:29.0172 6016 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:54:29.0188 6016 Netlogon - ok
20:54:29.0250 6016 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:54:29.0328 6016 Netman - ok
20:54:29.0359 6016 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:54:29.0406 6016 netprofm - ok
20:54:29.0437 6016 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:54:29.0437 6016 NetTcpPortSharing - ok
20:54:29.0468 6016 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:54:29.0484 6016 nfrd960 - ok
20:54:29.0515 6016 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:54:29.0546 6016 NisDrv - ok
20:54:29.0593 6016 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
20:54:29.0624 6016 NisSrv - ok
20:54:29.0734 6016 [ DCD9287B04DE83CA22C8057C358243EA ] NitroReaderDriverReadSpool3 C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
20:54:29.0765 6016 NitroReaderDriverReadSpool3 - ok
20:54:29.0812 6016 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:54:29.0858 6016 NlaSvc - ok
20:54:29.0905 6016 [ CD569FA91EC6F59D045C19D0D3850F44 ] nmservice C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
20:54:29.0936 6016 nmservice - ok
20:54:30.0046 6016 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
20:54:30.0108 6016 NOBU - ok
20:54:30.0124 6016 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:54:30.0139 6016 Npfs - ok
20:54:30.0170 6016 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:54:30.0248 6016 nsi - ok
20:54:30.0280 6016 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:54:30.0311 6016 nsiproxy - ok
20:54:30.0358 6016 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:54:30.0467 6016 Ntfs - ok
20:54:30.0498 6016 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:54:30.0545 6016 Null - ok
20:54:30.0560 6016 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:54:30.0576 6016 nvraid - ok
20:54:30.0607 6016 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:54:30.0638 6016 nvstor - ok
20:54:30.0654 6016 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:54:30.0670 6016 nv_agp - ok
20:54:30.0685 6016 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:54:30.0732 6016 ohci1394 - ok
20:54:30.0763 6016 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:54:30.0794 6016 ose - ok
20:54:30.0919 6016 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:54:31.0075 6016 osppsvc - ok
20:54:31.0106 6016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:54:31.0169 6016 p2pimsvc - ok
20:54:31.0200 6016 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:54:31.0216 6016 p2psvc - ok
20:54:31.0262 6016 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:54:31.0294 6016 Parport - ok
20:54:31.0325 6016 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:54:31.0340 6016 partmgr - ok
20:54:31.0356 6016 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:54:31.0403 6016 PcaSvc - ok
20:54:31.0434 6016 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:54:31.0434 6016 pci - ok
20:54:31.0450 6016 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:54:31.0465 6016 pciide - ok
20:54:31.0481 6016 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:54:31.0496 6016 pcmcia - ok
20:54:31.0528 6016 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:54:31.0543 6016 pcw - ok
20:54:31.0559 6016 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:54:31.0621 6016 PEAUTH - ok
20:54:31.0684 6016 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:54:31.0715 6016 PerfHost - ok
20:54:31.0777 6016 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:54:31.0871 6016 pla - ok
20:54:31.0918 6016 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:54:31.0964 6016 PlugPlay - ok
20:54:32.0027 6016 [ FB83B6C62DFF5ABE36304351D2BED581 ] pnarp C:\Windows\system32\DRIVERS\pnarp.sys
20:54:32.0042 6016 pnarp - ok
20:54:32.0074 6016 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:54:32.0105 6016 PNRPAutoReg - ok
20:54:32.0136 6016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:54:32.0136 6016 PNRPsvc - ok
20:54:32.0183 6016 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:54:32.0230 6016 PolicyAgent - ok
20:54:32.0276 6016 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:54:32.0339 6016 Power - ok
20:54:32.0401 6016 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:54:32.0448 6016 PptpMiniport - ok
20:54:32.0464 6016 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:54:32.0495 6016 Processor - ok
20:54:32.0542 6016 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:54:32.0620 6016 ProfSvc - ok
20:54:32.0635 6016 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:54:32.0651 6016 ProtectedStorage - ok
20:54:32.0698 6016 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:54:32.0776 6016 Psched - ok
20:54:32.0838 6016 [ 1B3434642CE3C26E6F24D3A76D749C2A ] purendis C:\Windows\system32\DRIVERS\purendis.sys
20:54:32.0854 6016 purendis - ok
20:54:32.0900 6016 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:54:32.0916 6016 PxHlpa64 - ok
20:54:32.0963 6016 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:54:33.0010 6016 ql2300 - ok
20:54:33.0041 6016 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:54:33.0041 6016 ql40xx - ok
20:54:33.0072 6016 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:54:33.0103 6016 QWAVE - ok
20:54:33.0119 6016 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:54:33.0150 6016 QWAVEdrv - ok
20:54:33.0181 6016 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:54:33.0197 6016 RasAcd - ok
20:54:33.0228 6016 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:54:33.0259 6016 RasAgileVpn - ok
20:54:33.0259 6016 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:54:33.0306 6016 RasAuto - ok
20:54:33.0337 6016 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:54:33.0400 6016 Rasl2tp - ok
20:54:33.0431 6016 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:54:33.0462 6016 RasMan - ok
20:54:33.0478 6016 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:54:33.0524 6016 RasPppoe - ok
20:54:33.0540 6016 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:54:33.0587 6016 RasSstp - ok
20:54:33.0618 6016 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:54:33.0680 6016 rdbss - ok
20:54:33.0712 6016 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:54:33.0743 6016 rdpbus - ok
20:54:33.0774 6016 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:54:33.0821 6016 RDPCDD - ok
20:54:33.0852 6016 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:54:33.0883 6016 RDPENCDD - ok
20:54:33.0899 6016 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:54:33.0930 6016 RDPREFMP - ok
20:54:33.0961 6016 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:54:34.0008 6016 RDPWD - ok
20:54:34.0039 6016 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:54:34.0070 6016 rdyboost - ok
20:54:34.0148 6016 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
20:54:34.0180 6016 RealNetworks Downloader Resolver Service - ok
20:54:34.0195 6016 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:54:34.0226 6016 RemoteAccess - ok
20:54:34.0242 6016 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:54:34.0304 6016 RemoteRegistry - ok
20:54:34.0336 6016 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:54:34.0398 6016 RpcEptMapper - ok
20:54:34.0429 6016 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:54:34.0445 6016 RpcLocator - ok
20:54:34.0492 6016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
20:54:34.0523 6016 RpcSs - ok
20:54:34.0570 6016 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:54:34.0616 6016 rspndr - ok
20:54:34.0663 6016 [ F65F171165FBB613F7AA3CC78E8CAB42 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:54:34.0710 6016 RTL8167 - ok
20:54:34.0726 6016 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:54:34.0741 6016 SamSs - ok
20:54:34.0819 6016 [ CCBF62280DAF6D94A4C73E391CDAC68C ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
20:54:34.0850 6016 SbieDrv - ok
20:54:34.0866 6016 [ 8A1F63C6EC01C56C9EC4C681E593FE34 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
20:54:34.0882 6016 SbieSvc - ok
20:54:34.0913 6016 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:54:34.0928 6016 sbp2port - ok
20:54:34.0960 6016 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:54:34.0991 6016 SCardSvr - ok
20:54:35.0038 6016 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:54:35.0100 6016 scfilter - ok
20:54:35.0162 6016 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:54:35.0225 6016 Schedule - ok
20:54:35.0256 6016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:54:35.0303 6016 SCPolicySvc - ok
20:54:35.0334 6016 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:54:35.0412 6016 SDRSVC - ok
20:54:35.0459 6016 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:54:35.0506 6016 secdrv - ok
20:54:35.0537 6016 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:54:35.0584 6016 seclogon - ok
20:54:35.0615 6016 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
20:54:35.0662 6016 SENS - ok
20:54:35.0708 6016 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:54:35.0755 6016 SensrSvc - ok
20:54:35.0786 6016 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:54:35.0818 6016 Serenum - ok
20:54:35.0833 6016 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:54:35.0880 6016 Serial - ok
20:54:35.0911 6016 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:54:35.0942 6016 sermouse - ok
20:54:35.0989 6016 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:54:36.0020 6016 SessionEnv - ok
20:54:36.0052 6016 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:54:36.0114 6016 sffdisk - ok
20:54:36.0130 6016 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:54:36.0176 6016 sffp_mmc - ok
20:54:36.0192 6016 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:54:36.0239 6016 sffp_sd - ok
20:54:36.0239 6016 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:54:36.0254 6016 sfloppy - ok
20:54:36.0301 6016 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
20:54:36.0348 6016 Sftfs - ok
20:54:36.0426 6016 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:54:36.0457 6016 sftlist - ok
20:54:36.0488 6016 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
20:54:36.0504 6016 Sftplay - ok
20:54:36.0535 6016 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
20:54:36.0551 6016 Sftredir - ok
20:54:36.0644 6016 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:54:36.0691 6016 SftService - ok
20:54:36.0754 6016 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
20:54:36.0769 6016 Sftvol - ok
20:54:36.0785 6016 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:54:36.0800 6016 sftvsa - ok
20:54:36.0847 6016 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:54:36.0894 6016 SharedAccess - ok
20:54:36.0941 6016 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:54:37.0019 6016 ShellHWDetection - ok
20:54:37.0066 6016 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:54:37.0081 6016 SiSRaid2 - ok
20:54:37.0097 6016 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:54:37.0097 6016 SiSRaid4 - ok
20:54:37.0175 6016 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:54:37.0206 6016 SkypeUpdate - ok
20:54:37.0222 6016 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:54:37.0268 6016 Smb - ok
20:54:37.0331 6016 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:54:37.0362 6016 SNMPTRAP - ok
20:54:37.0393 6016 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:54:37.0424 6016 spldr - ok
20:54:37.0471 6016 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:54:37.0518 6016 Spooler - ok
20:54:37.0612 6016 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:54:37.0736 6016 sppsvc - ok
20:54:37.0768 6016 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:54:37.0814 6016 sppuinotify - ok
20:54:37.0846 6016 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:54:37.0908 6016 srv - ok
20:54:37.0955 6016 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:54:37.0986 6016 srv2 - ok
20:54:38.0017 6016 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:54:38.0033 6016 srvnet - ok
20:54:38.0064 6016 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:54:38.0111 6016 SSDPSRV - ok
20:54:38.0126 6016 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:54:38.0158 6016 SstpSvc - ok
20:54:38.0189 6016 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:54:38.0189 6016 stexstor - ok
20:54:38.0251 6016 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:54:38.0267 6016 stisvc - ok
20:54:38.0454 6016 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:54:38.0485 6016 swenum - ok
20:54:38.0594 6016 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:54:39.0031 6016 swprv - ok
20:54:39.0078 6016 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:54:39.0125 6016 SysMain - ok
20:54:39.0156 6016 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:54:39.0187 6016 TabletInputService - ok
20:54:39.0218 6016 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:54:39.0281 6016 TapiSrv - ok
20:54:39.0312 6016 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:54:39.0343 6016 TBS - ok
20:54:39.0421 6016 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:54:39.0484 6016 Tcpip - ok
20:54:39.0515 6016 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:54:39.0546 6016 TCPIP6 - ok
20:54:39.0608 6016 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:54:39.0624 6016 tcpipreg - ok
20:54:39.0671 6016 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:54:39.0733 6016 TDPIPE - ok
20:54:39.0764 6016 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:54:39.0796 6016 TDTCP - ok
20:54:39.0858 6016 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:54:39.0889 6016 tdx - ok
20:54:39.0920 6016 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:54:39.0936 6016 TermDD - ok
20:54:39.0998 6016 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:54:40.0076 6016 TermService - ok
20:54:40.0123 6016 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:54:40.0154 6016 Themes - ok
20:54:40.0186 6016 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:54:40.0217 6016 THREADORDER - ok
20:54:40.0248 6016 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:54:40.0342 6016 TrkWks - ok
20:54:40.0388 6016 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:54:40.0451 6016 TrustedInstaller - ok
20:54:40.0498 6016 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:54:40.0513 6016 tssecsrv - ok
20:54:40.0529 6016 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:54:40.0591 6016 TsUsbFlt - ok
20:54:40.0638 6016 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:54:40.0700 6016 tunnel - ok
20:54:40.0732 6016 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:54:40.0747 6016 uagp35 - ok
20:54:40.0794 6016 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:54:40.0841 6016 udfs - ok
20:54:40.0888 6016 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:54:40.0919 6016 UI0Detect - ok
20:54:40.0934 6016 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:54:40.0950 6016 uliagpkx - ok
20:54:40.0997 6016 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:54:41.0012 6016 umbus - ok
20:54:41.0028 6016 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:54:41.0059 6016 UmPass - ok
20:54:41.0106 6016 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:54:41.0153 6016 upnphost - ok
20:54:41.0184 6016 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:54:41.0246 6016 USBAAPL64 - ok
20:54:41.0262 6016 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:54:41.0278 6016 usbccgp - ok
20:54:41.0309 6016 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:54:41.0324 6016 usbcir - ok
20:54:41.0340 6016 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:54:41.0356 6016 usbehci - ok
20:54:41.0387 6016 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:54:41.0418 6016 usbhub - ok
20:54:41.0465 6016 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:54:41.0496 6016 usbohci - ok
20:54:41.0543 6016 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:54:41.0574 6016 usbprint - ok
20:54:41.0605 6016 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:54:41.0652 6016 usbscan - ok
20:54:41.0668 6016 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
20:54:41.0683 6016 USBSTOR - ok
20:54:41.0699 6016 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:54:41.0714 6016 usbuhci - ok
20:54:41.0746 6016 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:54:41.0808 6016 UxSms - ok
20:54:41.0839 6016 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:54:41.0839 6016 VaultSvc - ok
20:54:41.0886 6016 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:54:41.0902 6016 vdrvroot - ok
20:54:41.0948 6016 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:54:41.0995 6016 vds - ok
20:54:42.0026 6016 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:54:42.0058 6016 vga - ok
20:54:42.0073 6016 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:54:42.0120 6016 VgaSave - ok
20:54:42.0151 6016 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:54:42.0151 6016 vhdmp - ok
20:54:42.0167 6016 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:54:42.0182 6016 viaide - ok
20:54:42.0214 6016 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:54:42.0229 6016 volmgr - ok
20:54:42.0276 6016 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:54:42.0307 6016 volmgrx - ok
20:54:42.0323 6016 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:54:42.0338 6016 volsnap - ok
20:54:42.0354 6016 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:54:42.0370 6016 vsmraid - ok
20:54:42.0416 6016 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:54:42.0510 6016 VSS - ok
20:54:42.0526 6016 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:54:42.0557 6016 vwifibus - ok
20:54:42.0604 6016 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:54:42.0650 6016 W32Time - ok
20:54:42.0682 6016 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:54:42.0697 6016 WacomPen - ok
20:54:42.0728 6016 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:54:42.0760 6016 WANARP - ok
20:54:42.0775 6016 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:54:42.0791 6016 Wanarpv6 - ok
20:54:42.0884 6016 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:54:42.0931 6016 WatAdminSvc - ok
20:54:42.0978 6016 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:54:43.0056 6016 wbengine - ok
20:54:43.0072 6016 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:54:43.0103 6016 WbioSrvc - ok
20:54:43.0118 6016 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:54:43.0150 6016 wcncsvc - ok
20:54:43.0150 6016 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:54:43.0196 6016 WcsPlugInService - ok
20:54:43.0212 6016 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:54:43.0228 6016 Wd - ok
20:54:43.0259 6016 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:54:43.0306 6016 Wdf01000 - ok
20:54:43.0337 6016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:54:43.0415 6016 WdiServiceHost - ok
20:54:43.0415 6016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:54:43.0430 6016 WdiSystemHost - ok
20:54:43.0477 6016 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:54:43.0508 6016 WebClient - ok
20:54:43.0540 6016 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:54:43.0586 6016 Wecsvc - ok
20:54:43.0618 6016 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:54:43.0664 6016 wercplsupport - ok
20:54:43.0696 6016 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:54:43.0742 6016 WerSvc - ok
20:54:43.0789 6016 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:54:43.0820 6016 WfpLwf - ok
20:54:43.0867 6016 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:54:43.0898 6016 WimFltr - ok
20:54:43.0914 6016 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:54:43.0930 6016 WIMMount - ok
20:54:43.0945 6016 WinDefend - ok
20:54:43.0961 6016 WinHttpAutoProxySvc - ok
20:54:44.0008 6016 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:54:44.0070 6016 Winmgmt - ok
20:54:44.0132 6016 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:54:44.0242 6016 WinRM - ok
20:54:44.0288 6016 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:54:44.0304 6016 WinUsb - ok
20:54:44.0351 6016 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:54:44.0413 6016 Wlansvc - ok
20:54:44.0476 6016 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:54:44.0491 6016 wlcrasvc - ok
20:54:44.0600 6016 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:54:44.0647 6016 wlidsvc - ok
20:54:44.0663 6016 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:54:44.0694 6016 WmiAcpi - ok
20:54:44.0725 6016 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:54:44.0756 6016 wmiApSrv - ok
20:54:44.0788 6016 WMPNetworkSvc - ok
20:54:44.0803 6016 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:54:44.0834 6016 WPCSvc - ok
20:54:44.0866 6016 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:54:44.0881 6016 WPDBusEnum - ok
20:54:44.0897 6016 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:54:44.0928 6016 ws2ifsl - ok
20:54:44.0944 6016 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
20:54:44.0975 6016 wscsvc - ok
20:54:44.0990 6016 WSearch - ok
20:54:45.0053 6016 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:54:45.0146 6016 wuauserv - ok
20:54:45.0178 6016 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:54:45.0224 6016 WudfPf - ok
20:54:45.0256 6016 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:54:45.0287 6016 WUDFRd - ok
20:54:45.0302 6016 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:54:45.0318 6016 wudfsvc - ok
20:54:45.0349 6016 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
20:54:45.0412 6016 WwanSvc - ok
20:54:45.0427 6016 ================ Scan global ===============================
20:54:45.0458 6016 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:54:45.0490 6016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:54:45.0505 6016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:54:45.0521 6016 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:54:45.0583 6016 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:54:45.0599 6016 [Global] - ok
20:54:45.0599 6016 ================ Scan MBR ==================================
20:54:45.0614 6016 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
20:54:45.0958 6016 \Device\Harddisk0\DR0 - ok
20:54:45.0958 6016 ================ Scan VBR ==================================
20:54:45.0973 6016 [ 39B11F4021A1ED81E8550A0C2B3823BB ] \Device\Harddisk0\DR0\Partition1
20:54:45.0973 6016 \Device\Harddisk0\DR0\Partition1 - ok
20:54:46.0020 6016 [ 879F1A1D759169C2C59AE03D3FE06731 ] \Device\Harddisk0\DR0\Partition2
20:54:46.0020 6016 \Device\Harddisk0\DR0\Partition2 - ok
20:54:46.0020 6016 ================ Scan active images ========================
20:54:46.0036 6016 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
20:54:46.0036 6016 C:\Windows\System32\drivers\crashdmp.sys - ok
20:54:46.0036 6016 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
20:54:46.0036 6016 C:\Windows\System32\drivers\iaStor.sys - ok
20:54:46.0051 6016 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
20:54:46.0051 6016 C:\Windows\System32\drivers\dumpfve.sys - ok
20:54:46.0051 6016 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
20:54:46.0051 6016 C:\Windows\System32\drivers\cdrom.sys - ok
20:54:46.0051 6016 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
20:54:46.0051 6016 C:\Windows\System32\drivers\null.sys - ok
20:54:46.0067 6016 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
20:54:46.0067 6016 C:\Windows\System32\drivers\beep.sys - ok
20:54:46.0067 6016 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
20:54:46.0067 6016 C:\Windows\System32\drivers\RDPCDD.sys - ok
20:54:46.0082 6016 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
20:54:46.0082 6016 C:\Windows\System32\drivers\vga.sys - ok
20:54:46.0082 6016 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
20:54:46.0082 6016 C:\Windows\System32\drivers\videoprt.sys - ok
20:54:46.0082 6016 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
20:54:46.0082 6016 C:\Windows\System32\drivers\watchdog.sys - ok
20:54:46.0098 6016 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
20:54:46.0098 6016 C:\Windows\System32\drivers\msfs.sys - ok
20:54:46.0098 6016 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
20:54:46.0098 6016 C:\Windows\System32\drivers\npfs.sys - ok
20:54:46.0114 6016 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
20:54:46.0114 6016 C:\Windows\System32\drivers\RDPENCDD.sys - ok
20:54:46.0114 6016 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
20:54:46.0114 6016 C:\Windows\System32\drivers\RDPREFMP.sys - ok
20:54:46.0129 6016 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
20:54:46.0129 6016 C:\Windows\System32\drivers\tdi.sys - ok
20:54:46.0129 6016 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
20:54:46.0129 6016 C:\Windows\System32\drivers\tdx.sys - ok
20:54:46.0129 6016 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
20:54:46.0129 6016 C:\Windows\System32\drivers\netbt.sys - ok
20:54:46.0145 6016 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
20:54:46.0145 6016 C:\Windows\System32\drivers\afd.sys - ok
20:54:46.0145 6016 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
20:54:46.0145 6016 C:\Windows\System32\drivers\ws2ifsl.sys - ok
20:54:46.0145 6016 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
20:54:46.0145 6016 C:\Windows\System32\drivers\netbios.sys - ok
20:54:46.0160 6016 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
20:54:46.0160 6016 C:\Windows\System32\drivers\pacer.sys - ok
20:54:46.0160 6016 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
20:54:46.0160 6016 C:\Windows\System32\drivers\wfplwf.sys - ok
20:54:46.0160 6016 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
20:54:46.0160 6016 C:\Windows\System32\drivers\wanarp.sys - ok
20:54:46.0176 6016 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
20:54:46.0176 6016 C:\Windows\System32\drivers\discache.sys - ok
20:54:46.0176 6016 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
20:54:46.0176 6016 C:\Windows\System32\drivers\mssmbios.sys - ok
20:54:46.0192 6016 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
20:54:46.0192 6016 C:\Windows\System32\drivers\nsiproxy.sys - ok
20:54:46.0192 6016 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
20:54:46.0192 6016 C:\Windows\System32\drivers\rdbss.sys - ok
20:54:46.0192 6016 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
20:54:46.0192 6016 C:\Windows\System32\drivers\termdd.sys - ok
20:54:46.0207 6016 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
20:54:46.0207 6016 C:\Windows\System32\drivers\blbdrive.sys - ok
20:54:46.0207 6016 [ 9EDD76D0800A022AE10B9243D0224E72 ] C:\Windows\System32\drivers\cdrbsdrv.sys
20:54:46.0207 6016 C:\Windows\System32\drivers\cdrbsdrv.sys - ok
20:54:46.0223 6016 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
20:54:46.0223 6016 C:\Windows\System32\drivers\dfsc.sys - ok
20:54:46.0223 6016 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
20:54:46.0223 6016 C:\Windows\System32\drivers\intelppm.sys - ok
20:54:46.0223 6016 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
20:54:46.0223 6016 C:\Windows\System32\drivers\tunnel.sys - ok
20:54:46.0238 6016 [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
20:54:46.0238 6016 C:\Windows\System32\smss.exe - ok
20:54:46.0238 6016 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
20:54:46.0238 6016 C:\Windows\System32\autochk.exe - ok
20:54:46.0254 6016 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
20:54:46.0254 6016 C:\Windows\System32\ntdll.dll - ok
20:54:46.0254 6016 [ 677AA5991026A65ADA128C4B59CF2BAD ] C:\Windows\System32\drivers\igdkmd64.sys
20:54:46.0254 6016 C:\Windows\System32\drivers\igdkmd64.sys - ok
20:54:46.0254 6016 [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
20:54:46.0254 6016 C:\Windows\System32\drivers\dxgkrnl.sys - ok
20:54:46.0270 6016 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
20:54:46.0270 6016 C:\Windows\System32\drivers\dxgmms1.sys - ok
20:54:46.0270 6016 [ 1BDF694C5BA91A1576DA907DA3077EF8 ] C:\Windows\System32\iertutil.dll
20:54:46.0270 6016 C:\Windows\System32\iertutil.dll - ok
20:54:46.0270 6016 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
20:54:46.0270 6016 C:\Windows\System32\normaliz.dll - ok
20:54:46.0285 6016 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
20:54:46.0285 6016 C:\Windows\System32\setupapi.dll - ok
20:54:46.0285 6016 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
20:54:46.0285 6016 C:\Windows\System32\drivers\usbport.sys - ok
20:54:46.0301 6016 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
20:54:46.0301 6016 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
20:54:46.0301 6016 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
20:54:46.0301 6016 C:\Windows\System32\drivers\hdaudbus.sys - ok
20:54:46.0301 6016 [ F65F171165FBB613F7AA3CC78E8CAB42 ] C:\Windows\System32\drivers\Rt64win7.sys
20:54:46.0301 6016 C:\Windows\System32\drivers\Rt64win7.sys - ok
20:54:46.0316 6016 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
20:54:46.0316 6016 C:\Windows\System32\drivers\usbehci.sys - ok
20:54:46.0316 6016 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
20:54:46.0316 6016 C:\Windows\System32\drivers\usbuhci.sys - ok
20:54:46.0332 6016 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
20:54:46.0332 6016 C:\Windows\System32\drivers\agilevpn.sys - ok
20:54:46.0332 6016 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
20:54:46.0332 6016 C:\Windows\System32\drivers\CompositeBus.sys - ok
20:54:46.0348 6016 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
20:54:46.0348 6016 C:\Windows\System32\drivers\ndistapi.sys - ok
20:54:46.0348 6016 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
20:54:46.0348 6016 C:\Windows\System32\drivers\ndiswan.sys - ok
20:54:46.0348 6016 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
20:54:46.0348 6016 C:\Windows\System32\drivers\rasl2tp.sys - ok
20:54:46.0363 6016 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] C:\Windows\System32\drivers\hamachi.sys
20:54:46.0363 6016 C:\Windows\System32\drivers\hamachi.sys - ok
20:54:46.0363 6016 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
20:54:46.0363 6016 C:\Windows\System32\drivers\kbdclass.sys - ok
20:54:46.0379 6016 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
20:54:46.0379 6016 C:\Windows\System32\drivers\raspppoe.sys - ok
20:54:46.0379 6016 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
20:54:46.0379 6016 C:\Windows\System32\drivers\raspptp.sys - ok
20:54:46.0394 6016 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
20:54:46.0394 6016 C:\Windows\System32\drivers\rassstp.sys - ok
20:54:46.0394 6016 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
20:54:46.0394 6016 C:\Windows\System32\drivers\mouclass.sys - ok
20:54:46.0394 6016 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
20:54:46.0394 6016 C:\Windows\System32\drivers\ks.sys - ok
20:54:46.0410 6016 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
20:54:46.0410 6016 C:\Windows\System32\drivers\swenum.sys - ok
20:54:46.0410 6016 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
20:54:46.0410 6016 C:\Windows\System32\drivers\umbus.sys - ok
20:54:46.0426 6016 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
20:54:46.0426 6016 C:\Windows\System32\drivers\usbhub.sys - ok
20:54:46.0426 6016 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
20:54:46.0426 6016 C:\Windows\System32\difxapi.dll - ok
20:54:46.0426 6016 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
20:54:46.0426 6016 C:\Windows\System32\imm32.dll - ok
20:54:46.0441 6016 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
20:54:46.0441 6016 C:\Windows\System32\clbcatq.dll - ok
20:54:46.0441 6016 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
20:54:46.0441 6016 C:\Windows\System32\shlwapi.dll - ok
20:54:46.0457 6016 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
20:54:46.0457 6016 C:\Windows\System32\rpcrt4.dll - ok
20:54:46.0457 6016 [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
20:54:46.0457 6016 C:\Windows\System32\shell32.dll - ok
20:54:46.0472 6016 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
20:54:46.0472 6016 C:\Windows\System32\ws2_32.dll - ok
20:54:46.0472 6016 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
20:54:46.0472 6016 C:\Windows\System32\drivers\ndproxy.sys - ok
20:54:46.0472 6016 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
20:54:46.0472 6016 C:\Windows\System32\drivers\drmk.sys - ok
20:54:46.0488 6016 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
20:54:46.0488 6016 C:\Windows\System32\drivers\portcls.sys - ok
20:54:46.0488 6016 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
20:54:46.0488 6016 C:\Windows\System32\drivers\ksthunk.sys - ok
20:54:46.0504 6016 [ 492CD3A94913D753B4591CD9E29EC843 ] C:\Windows\System32\drivers\RTKVHD64.sys
20:54:46.0504 6016 C:\Windows\System32\drivers\RTKVHD64.sys - ok
20:54:46.0504 6016 [ D485D3BD3E2179AA86853A182F70699F ] C:\Windows\System32\drivers\IntcHdmi.sys
20:54:46.0504 6016 C:\Windows\System32\drivers\IntcHdmi.sys - ok
20:54:46.0504 6016 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
20:54:46.0504 6016 C:\Windows\System32\kernel32.dll - ok
20:54:46.0519 6016 [ C9152A497D0CA33CE9D729F1179DDB01 ] C:\Windows\System32\urlmon.dll
20:54:46.0519 6016 C:\Windows\System32\urlmon.dll - ok
20:54:46.0519 6016 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
20:54:46.0519 6016 C:\Windows\System32\ole32.dll - ok
20:54:46.0519 6016 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
20:54:46.0519 6016 C:\Windows\System32\oleaut32.dll - ok
20:54:46.0535 6016 [ 1E79B157B16DF86CBF2BC521AA07301D ] C:\Windows\System32\wininet.dll
20:54:46.0535 6016 C:\Windows\System32\wininet.dll - ok
20:54:46.0535 6016 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
20:54:46.0535 6016 C:\Windows\System32\gdi32.dll - ok
20:54:46.0535 6016 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
20:54:46.0535 6016 C:\Windows\System32\imagehlp.dll - ok
20:54:46.0550 6016 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
20:54:46.0550 6016 C:\Windows\System32\advapi32.dll - ok
20:54:46.0550 6016 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
20:54:46.0550 6016 C:\Windows\System32\drivers\hidparse.sys - ok
20:54:46.0566 6016 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
20:54:46.0566 6016 C:\Windows\System32\msvcrt.dll - ok
20:54:46.0566 6016 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
20:54:46.0566 6016 C:\Windows\System32\psapi.dll - ok
20:54:46.0566 6016 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
20:54:46.0566 6016 C:\Windows\System32\drivers\hidclass.sys - ok
20:54:46.0582 6016 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
20:54:46.0582 6016 C:\Windows\System32\drivers\usbd.sys - ok
20:54:46.0582 6016 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
20:54:46.0582 6016 C:\Windows\System32\drivers\hidusb.sys - ok
20:54:46.0582 6016 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
20:54:46.0582 6016 C:\Windows\System32\user32.dll - ok
20:54:46.0597 6016 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
20:54:46.0597 6016 C:\Windows\System32\comdlg32.dll - ok
20:54:46.0597 6016 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
20:54:46.0597 6016 C:\Windows\System32\drivers\mouhid.sys - ok
20:54:46.0597 6016 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
20:54:46.0597 6016 C:\Windows\System32\nsi.dll - ok
20:54:46.0613 6016 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
20:54:46.0613 6016 C:\Windows\System32\Wldap32.dll - ok
20:54:46.0613 6016 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
20:54:46.0613 6016 C:\Windows\System32\msctf.dll - ok
20:54:46.0628 6016 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
20:54:46.0628 6016 C:\Windows\System32\drivers\kbdhid.sys - ok
20:54:46.0628 6016 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
20:54:46.0628 6016 C:\Windows\System32\lpk.dll - ok
20:54:46.0644 6016 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
20:54:46.0644 6016 C:\Windows\System32\sechost.dll - ok
20:54:46.0644 6016 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
20:54:46.0644 6016 C:\Windows\System32\usp10.dll - ok
20:54:46.0644 6016 [ A96D5ECA5742603E0E345C4F6B801F5E ] C:\Windows\System32\crypt32.dll
20:54:46.0644 6016 C:\Windows\System32\crypt32.dll - ok
20:54:46.0660 6016 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
20:54:46.0660 6016 C:\Windows\System32\comctl32.dll - ok
20:54:46.0660 6016 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
20:54:46.0660 6016 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
20:54:46.0675 6016 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
20:54:46.0675 6016 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
20:54:46.0675 6016 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
20:54:46.0675 6016 C:\Windows\System32\cfgmgr32.dll - ok
20:54:46.0675 6016 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
20:54:46.0675 6016 C:\Windows\System32\wintrust.dll - ok
20:54:46.0691 6016 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
20:54:46.0691 6016 C:\Windows\System32\drivers\USBSTOR.SYS - ok
20:54:46.0691 6016 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
20:54:46.0691 6016 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
20:54:46.0706 6016 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
20:54:46.0706 6016 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
20:54:46.0706 6016 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
20:54:46.0706 6016 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
20:54:46.0722 6016 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
20:54:46.0722 6016 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
20:54:46.0722 6016 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
20:54:46.0722 6016 C:\Windows\System32\devobj.dll - ok
20:54:46.0722 6016 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
20:54:46.0722 6016 C:\Windows\System32\KernelBase.dll - ok
20:54:46.0738 6016 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
20:54:46.0738 6016 C:\Windows\System32\msasn1.dll - ok
20:54:46.0738 6016 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
20:54:46.0738 6016 C:\Windows\SysWOW64\normaliz.dll - ok
20:54:46.0738 6016 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
20:54:46.0738 6016 C:\Windows\System32\drivers\dxapi.sys - ok
20:54:46.0753 6016 [ A11523523B31086DD760C0189C763359 ] C:\Windows\System32\win32k.sys
20:54:46.0753 6016 C:\Windows\System32\win32k.sys - ok
20:54:46.0753 6016 [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
20:54:46.0753 6016 C:\Windows\System32\csrsrv.dll - ok
20:54:46.0769 6016 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
20:54:46.0769 6016 C:\Windows\System32\csrss.exe - ok
20:54:46.0769 6016 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
20:54:46.0769 6016 C:\Windows\System32\drivers\usbccgp.sys - ok
20:54:46.0769 6016 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\Windows\System32\drivers\usbscan.sys
20:54:46.0769 6016 C:\Windows\System32\drivers\usbscan.sys - ok
20:54:46.0784 6016 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
20:54:46.0784 6016 C:\Windows\System32\basesrv.dll - ok
20:54:46.0784 6016 [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
20:54:46.0784 6016 C:\Windows\System32\drivers\usbprint.sys - ok
20:54:46.0800 6016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
20:54:46.0800 6016 C:\Windows\System32\winsrv.dll - ok
20:54:46.0800 6016 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
20:54:46.0800 6016 C:\Windows\System32\drivers\monitor.sys - ok
20:54:46.0800 6016 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
20:54:46.0800 6016 C:\Windows\System32\tsddd.dll - ok
20:54:46.0816 6016 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
20:54:46.0816 6016 C:\Windows\System32\sxssrv.dll - ok
20:54:46.0816 6016 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
20:54:46.0816 6016 C:\Windows\System32\wininit.exe - ok
20:54:46.0831 6016 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
20:54:46.0831 6016 C:\Windows\System32\cdd.dll - ok
20:54:46.0831 6016 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
20:54:46.0831 6016 C:\Windows\System32\KBDUS.DLL - ok
20:54:46.0831 6016 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
20:54:46.0831 6016 C:\Windows\System32\profapi.dll - ok
20:54:46.0847 6016 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
20:54:46.0847 6016 C:\Windows\System32\RpcRtRemote.dll - ok
20:54:46.0847 6016 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
20:54:46.0847 6016 C:\Windows\System32\sxs.dll - ok
20:54:46.0847 6016 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
20:54:46.0847 6016 C:\Windows\System32\WlS0WndH.dll - ok
20:54:46.0862 6016 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
20:54:46.0862 6016 C:\Windows\System32\winlogon.exe - ok
20:54:46.0862 6016 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
20:54:46.0862 6016 C:\Windows\System32\winsta.dll - ok
20:54:46.0878 6016 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
20:54:46.0878 6016 C:\Windows\System32\cryptbase.dll - ok
20:54:46.0878 6016 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
20:54:46.0878 6016 C:\Windows\System32\apphelp.dll - ok
20:54:46.0878 6016 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
20:54:46.0878 6016 C:\Windows\System32\lsass.exe - ok
20:54:46.0894 6016 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
20:54:46.0894 6016 C:\Windows\System32\services.exe - ok
20:54:46.0894 6016 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
20:54:46.0894 6016 C:\Windows\System32\sspisrv.dll - ok
20:54:46.0909 6016 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
20:54:46.0909 6016 C:\Windows\System32\sspicli.dll - ok
20:54:46.0909 6016 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
20:54:46.0909 6016 C:\Windows\System32\scesrv.dll - ok
20:54:46.0909 6016 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
20:54:46.0909 6016 C:\Windows\System32\scext.dll - ok
20:54:46.0925 6016 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
20:54:46.0925 6016 C:\Windows\System32\secur32.dll - ok
20:54:46.0925 6016 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
20:54:46.0925 6016 C:\Windows\System32\srvcli.dll - ok
20:54:46.0940 6016 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
20:54:46.0940 6016 C:\Windows\System32\lsm.exe - ok
20:54:46.0940 6016 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
20:54:46.0940 6016 C:\Windows\System32\sysntfy.dll - ok
20:54:46.0940 6016 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
20:54:46.0940 6016 C:\Windows\System32\wmsgapi.dll - ok
20:54:46.0940 6016 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
20:54:46.0940 6016 C:\Windows\System32\lsasrv.dll - ok
20:54:46.0956 6016 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
20:54:46.0956 6016 C:\Windows\System32\samsrv.dll - ok
20:54:46.0956 6016 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
20:54:46.0956 6016 C:\Windows\System32\cryptdll.dll - ok
20:54:46.0972 6016 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
20:54:46.0972 6016 C:\Windows\System32\wevtapi.dll - ok
20:54:46.0972 6016 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
20:54:46.0972 6016 C:\Windows\System32\authz.dll - ok
20:54:46.0972 6016 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
20:54:46.0972 6016 C:\Windows\System32\cngaudit.dll - ok
20:54:46.0987 6016 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
20:54:46.0987 6016 C:\Windows\System32\ncrypt.dll - ok
20:54:46.0987 6016 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
20:54:46.0987 6016 C:\Windows\System32\bcrypt.dll - ok
20:54:47.0003 6016 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
20:54:47.0003 6016 C:\Windows\System32\msprivs.dll - ok
20:54:47.0003 6016 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
20:54:47.0003 6016 C:\Windows\System32\netjoin.dll - ok
20:54:47.0003 6016 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
20:54:47.0003 6016 C:\Windows\System32\negoexts.dll - ok
20:54:47.0018 6016 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
20:54:47.0018 6016 C:\Windows\System32\kerberos.dll - ok
20:54:47.0018 6016 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
20:54:47.0018 6016 C:\Windows\System32\cryptsp.dll - ok
20:54:47.0018 6016 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
20:54:47.0018 6016 C:\Windows\System32\mswsock.dll - ok
20:54:47.0034 6016 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
20:54:47.0034 6016 C:\Windows\System32\msv1_0.dll - ok
20:54:47.0034 6016 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
20:54:47.0034 6016 C:\Windows\System32\netlogon.dll - ok
20:54:47.0050 6016 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
20:54:47.0050 6016 C:\Windows\System32\wship6.dll - ok
20:54:47.0050 6016 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
20:54:47.0050 6016 C:\Windows\System32\dnsapi.dll - ok
20:54:47.0050 6016 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
20:54:47.0050 6016 C:\Windows\System32\logoncli.dll - ok
20:54:47.0065 6016 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
20:54:47.0065 6016 C:\Windows\System32\schannel.dll - ok
20:54:47.0065 6016 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
20:54:47.0065 6016 C:\Windows\System32\wdigest.dll - ok
20:54:47.0065 6016 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
20:54:47.0065 6016 C:\Windows\System32\rsaenh.dll - ok
20:54:47.0081 6016 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
20:54:47.0081 6016 C:\Windows\System32\TSpkg.dll - ok
20:54:47.0081 6016 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
20:54:47.0081 6016 C:\Windows\System32\pku2u.dll - ok
20:54:47.0096 6016 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
20:54:47.0096 6016 C:\Windows\System32\bcryptprimitives.dll - ok
20:54:47.0096 6016 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
20:54:47.0096 6016 C:\Windows\System32\LIVESSP.DLL - ok
20:54:47.0112 6016 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
20:54:47.0112 6016 C:\Windows\System32\credssp.dll - ok
20:54:47.0112 6016 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
20:54:47.0112 6016 C:\Windows\System32\efslsaext.dll - ok
20:54:47.0112 6016 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
20:54:47.0112 6016 C:\Windows\System32\scecli.dll - ok
20:54:47.0128 6016 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
20:54:47.0128 6016 C:\Windows\System32\ubpm.dll - ok
20:54:47.0128 6016 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
20:54:47.0128 6016 C:\Windows\System32\svchost.exe - ok
20:54:47.0143 6016 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
20:54:47.0143 6016 C:\Windows\System32\umpnpmgr.dll - ok
20:54:47.0143 6016 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
20:54:47.0143 6016 C:\Windows\System32\devrtl.dll - ok
20:54:47.0159 6016 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
20:54:47.0159 6016 C:\Windows\System32\SPInf.dll - ok
20:54:47.0159 6016 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
20:54:47.0159 6016 C:\Windows\System32\gpapi.dll - ok
20:54:47.0159 6016 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
20:54:47.0159 6016 C:\Windows\System32\userenv.dll - ok
20:54:47.0174 6016 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
20:54:47.0174 6016 C:\Windows\System32\pcwum.dll - ok
20:54:47.0174 6016 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
20:54:47.0174 6016 C:\Windows\System32\umpo.dll - ok
20:54:47.0190 6016 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
20:54:47.0190 6016 C:\Windows\System32\powrprof.dll - ok
20:54:47.0190 6016 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
20:54:47.0190 6016 C:\Windows\System32\drivers\luafv.sys - ok
20:54:47.0190 6016 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
20:54:47.0190 6016 C:\Windows\System32\drivers\Sftvollh.sys - ok
20:54:47.0206 6016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
20:54:47.0206 6016 C:\Windows\System32\rpcss.dll - ok
20:54:47.0206 6016 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
20:54:47.0206 6016 C:\Windows\System32\RpcEpMap.dll - ok
20:54:47.0206 6016 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
20:54:47.0206 6016 C:\Windows\System32\wshqos.dll - ok
20:54:47.0221 6016 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
20:54:47.0221 6016 C:\Windows\System32\WSHTCPIP.DLL - ok
20:54:47.0221 6016 [ 905601FFF40D8DA9FA82CBE77D1F5EB1 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
20:54:47.0221 6016 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
20:54:47.0237 6016 [ E07DEC52FF801841BA9B6878A60304FB ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
20:54:47.0237 6016 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
20:54:47.0237 6016 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
20:54:47.0237 6016 C:\Windows\System32\FirewallAPI.dll - ok
20:54:47.0252 6016 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
20:54:47.0252 6016 C:\Windows\System32\LogonUI.exe - ok
20:54:47.0252 6016 [ 2D4230F2F1D204A523998DF93F9DF066 ] C:\Program Files\Microsoft Security Client\MpClient.dll
20:54:47.0252 6016 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
20:54:47.0252 6016 [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
20:54:47.0252 6016 C:\Windows\System32\authui.dll - ok
20:54:47.0268 6016 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
20:54:47.0268 6016 C:\Windows\System32\version.dll - ok
20:54:47.0268 6016 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
20:54:47.0268 6016 C:\Windows\System32\wtsapi32.dll - ok
20:54:47.0284 6016 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
20:54:47.0284 6016 C:\Windows\System32\ntmarta.dll - ok
20:54:47.0284 6016 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
20:54:47.0284 6016 C:\Windows\System32\cryptui.dll - ok
20:54:47.0284 6016 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
20:54:47.0284 6016 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
20:54:47.0299 6016 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
20:54:47.0299 6016 C:\Windows\System32\samlib.dll - ok
20:54:47.0299 6016 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
20:54:47.0299 6016 C:\Windows\System32\shacct.dll - ok
20:54:47.0315 6016 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
20:54:47.0315 6016 C:\Windows\System32\propsys.dll - ok
20:54:47.0315 6016 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
20:54:47.0315 6016 C:\Windows\System32\uxtheme.dll - ok
20:54:47.0315 6016 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
20:54:47.0315 6016 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
20:54:47.0330 6016 [ 9121C2E2507AD0BCBF9A7438051BEF34 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
20:54:47.0330 6016 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
20:54:47.0330 6016 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
20:54:47.0330 6016 C:\Windows\System32\wevtsvc.dll - ok
20:54:47.0330 6016 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
20:54:47.0330 6016 C:\Windows\System32\dui70.dll - ok
20:54:47.0346 6016 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
20:54:47.0346 6016 C:\Windows\System32\duser.dll - ok
20:54:47.0346 6016 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
20:54:47.0346 6016 C:\Windows\System32\SndVolSSO.dll - ok
20:54:47.0362 6016 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
20:54:47.0362 6016 C:\Windows\System32\dwmapi.dll - ok
20:54:47.0362 6016 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
20:54:47.0362 6016 C:\Windows\System32\hid.dll - ok
20:54:47.0362 6016 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
20:54:47.0362 6016 C:\Windows\System32\MMDevAPI.dll - ok
20:54:47.0377 6016 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
20:54:47.0377 6016 C:\Windows\System32\xmllite.dll - ok
20:54:47.0377 6016 [ 3D7BB6DD7A87B3E36E44CA94444247A8 ] C:\Windows\System32\WindowsCodecs.dll
20:54:47.0377 6016 C:\Windows\System32\WindowsCodecs.dll - ok
20:54:47.0393 6016 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
20:54:47.0393 6016 C:\Windows\System32\VaultCredProvider.dll - ok
20:54:47.0393 6016 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
20:54:47.0393 6016 C:\Windows\System32\winbrand.dll - ok
20:54:47.0393 6016 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
20:54:47.0393 6016 C:\Windows\System32\audiosrv.dll - ok
20:54:47.0408 6016 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
20:54:47.0408 6016 C:\Windows\System32\FntCache.dll - ok
20:54:47.0408 6016 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
20:54:47.0408 6016 C:\Windows\System32\MPSSVC.dll - ok
20:54:47.0408 6016 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
20:54:47.0408 6016 C:\Windows\System32\avrt.dll - ok
20:54:47.0424 6016 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
20:54:47.0424 6016 C:\Windows\System32\mmcss.dll - ok
20:54:47.0424 6016 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
20:54:47.0424 6016 C:\Windows\System32\adtschema.dll - ok
20:54:47.0424 6016 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
20:54:47.0440 6016 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
20:54:47.0440 6016 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
20:54:47.0440 6016 C:\Windows\System32\BioCredProv.dll - ok
20:54:47.0440 6016 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
20:54:47.0440 6016 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
20:54:47.0455 6016 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
20:54:47.0455 6016 C:\Windows\System32\drivers\fltMgr.sys - ok
20:54:47.0455 6016 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
20:54:47.0455 6016 C:\Windows\System32\PSHED.DLL - ok
20:54:47.0471 6016 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
20:54:47.0471 6016 C:\Windows\System32\winbio.dll - ok
20:54:47.0471 6016 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
20:54:47.0471 6016 C:\Windows\System32\credui.dll - ok
20:54:47.0471 6016 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
20:54:47.0471 6016 C:\Windows\System32\netapi32.dll - ok
20:54:47.0471 6016 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
20:54:47.0486 6016 C:\Windows\System32\netutils.dll - ok
20:54:47.0486 6016 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
20:54:47.0486 6016 C:\Windows\System32\vaultcli.dll - ok
20:54:47.0486 6016 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
20:54:47.0486 6016 C:\Windows\System32\wkscli.dll - ok
20:54:47.0502 6016 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
20:54:47.0502 6016 C:\Windows\System32\certCredProvider.dll - ok
20:54:47.0502 6016 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
20:54:47.0502 6016 C:\Windows\System32\samcli.dll - ok
20:54:47.0502 6016 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
20:54:47.0502 6016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
20:54:47.0518 6016 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
20:54:47.0518 6016 C:\Windows\System32\rasplap.dll - ok
20:54:47.0518 6016 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
20:54:47.0518 6016 C:\Windows\System32\audiodg.exe - ok
20:54:47.0518 6016 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
20:54:47.0518 6016 C:\Windows\System32\rasapi32.dll - ok
20:54:47.0533 6016 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
20:54:47.0533 6016 C:\Windows\System32\rasman.dll - ok
20:54:47.0533 6016 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
20:54:47.0533 6016 C:\Windows\System32\rtutils.dll - ok
20:54:47.0549 6016 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
20:54:47.0549 6016 C:\Windows\System32\oleacc.dll - ok
20:54:47.0549 6016 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
20:54:47.0549 6016 C:\Windows\System32\gpsvc.dll - ok
20:54:47.0549 6016 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
20:54:47.0549 6016 C:\Windows\System32\UIAutomationCore.dll - ok
20:54:47.0564 6016 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
20:54:47.0564 6016 C:\Windows\System32\nlaapi.dll - ok
20:54:47.0564 6016 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
20:54:47.0564 6016 C:\Windows\System32\profsvc.dll - ok
20:54:47.0580 6016 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
20:54:47.0580 6016 C:\Windows\System32\atl.dll - ok
20:54:47.0580 6016 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
20:54:47.0580 6016 C:\Windows\System32\dsrole.dll - ok
20:54:47.0580 6016 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
20:54:47.0580 6016 C:\Windows\System32\es.dll - ok
20:54:47.0596 6016 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
20:54:47.0596 6016 C:\Windows\System32\slc.dll - ok
20:54:47.0596 6016 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
20:54:47.0596 6016 C:\Windows\System32\themeservice.dll - ok
20:54:47.0611 6016 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
20:54:47.0611 6016 C:\Windows\System32\comres.dll - ok
20:54:47.0611 6016 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
20:54:47.0611 6016 C:\Windows\System32\Sens.dll - ok
20:54:47.0611 6016 [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
20:54:47.0611 6016 C:\Program Files\Dell\DellDock\DockLogin.exe - ok
20:54:47.0627 6016 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
20:54:47.0627 6016 C:\Windows\SysWOW64\ntdll.dll - ok
20:54:47.0627 6016 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
20:54:47.0627 6016 C:\Windows\System32\UXInit.dll - ok
20:54:47.0642 6016 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
20:54:47.0642 6016 C:\Windows\System32\wow64.dll - ok
20:54:47.0642 6016 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
20:54:47.0642 6016 C:\Windows\System32\wow64win.dll - ok
20:54:47.0642 6016 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
20:54:47.0642 6016 C:\Windows\System32\wow64cpu.dll - ok
20:54:47.0658 6016 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
20:54:47.0658 6016 C:\Windows\SysWOW64\kernel32.dll - ok
20:54:47.0658 6016 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
20:54:47.0658 6016 C:\Windows\SysWOW64\KernelBase.dll - ok
20:54:47.0674 6016 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
20:54:47.0674 6016 C:\Windows\SysWOW64\msvcrt.dll - ok
20:54:47.0674 6016 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
20:54:47.0674 6016 C:\Windows\SysWOW64\wtsapi32.dll - ok
20:54:47.0689 6016 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
20:54:47.0689 6016 C:\Windows\SysWOW64\advapi32.dll - ok
20:54:47.0689 6016 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
20:54:47.0689 6016 C:\Windows\SysWOW64\rpcrt4.dll - ok
20:54:47.0689 6016 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
20:54:47.0689 6016 C:\Windows\SysWOW64\sechost.dll - ok
20:54:47.0705 6016 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
20:54:47.0705 6016 C:\Windows\SysWOW64\cryptbase.dll - ok
20:54:47.0705 6016 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
20:54:47.0705 6016 C:\Windows\SysWOW64\gdi32.dll - ok
20:54:47.0720 6016 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
20:54:47.0720 6016 C:\Windows\SysWOW64\shlwapi.dll - ok
20:54:47.0720 6016 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
20:54:47.0720 6016 C:\Windows\SysWOW64\sspicli.dll - ok
20:54:47.0720 6016 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
20:54:47.0720 6016 C:\Windows\SysWOW64\user32.dll - ok
20:54:47.0736 6016 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
20:54:47.0736 6016 C:\Windows\SysWOW64\lpk.dll - ok
20:54:47.0736 6016 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
20:54:47.0736 6016 C:\Windows\SysWOW64\usp10.dll - ok
20:54:47.0736 6016 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
20:54:47.0736 6016 C:\Windows\System32\imageres.dll - ok
20:54:47.0752 6016 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
20:54:47.0752 6016 C:\Windows\SysWOW64\imm32.dll - ok
20:54:47.0752 6016 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
20:54:47.0752 6016 C:\Windows\SysWOW64\msctf.dll - ok
20:54:47.0752 6016 [ 8A1F63C6EC01C56C9EC4C681E593FE34 ] C:\Program Files\Sandboxie\SbieSvc.exe
20:54:47.0752 6016 C:\Program Files\Sandboxie\SbieSvc.exe - ok
20:54:47.0767 6016 [ F334D428631CE9354FFC7712641344E3 ] C:\Program Files\Sandboxie\SbieDll.dll
20:54:47.0767 6016 C:\Program Files\Sandboxie\SbieDll.dll - ok
20:54:47.0767 6016 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
20:54:47.0767 6016 C:\Windows\System32\IPHLPAPI.DLL - ok
20:54:47.0783 6016 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
20:54:47.0783 6016 C:\Windows\System32\uxsms.dll - ok
20:54:47.0783 6016 [ CCBF62280DAF6D94A4C73E391CDAC68C ] C:\Program Files\Sandboxie\SbieDrv.sys
20:54:47.0783 6016 C:\Program Files\Sandboxie\SbieDrv.sys - ok
20:54:47.0783 6016 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
20:54:47.0783 6016 C:\Windows\System32\drivers\lltdio.sys - ok
20:54:47.0798 6016 [ FB83B6C62DFF5ABE36304351D2BED581 ] C:\Windows\System32\drivers\pnarp.sys
20:54:47.0798 6016 C:\Windows\System32\drivers\pnarp.sys - ok
20:54:47.0798 6016 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
20:54:47.0798 6016 C:\Windows\System32\winnsi.dll - ok
20:54:47.0814 6016 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
20:54:47.0814 6016 C:\Windows\System32\dhcpcore.dll - ok
20:54:47.0814 6016 [ 1B3434642CE3C26E6F24D3A76D749C2A ] C:\Windows\System32\drivers\purendis.sys
20:54:47.0814 6016 C:\Windows\System32\drivers\purendis.sys - ok
20:54:47.0814 6016 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
20:54:47.0814 6016 C:\Windows\System32\drivers\rspndr.sys - ok
20:54:47.0830 6016 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
20:54:47.0830 6016 C:\Windows\System32\lmhsvc.dll - ok
20:54:47.0830 6016 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
20:54:47.0830 6016 C:\Windows\System32\nrpsrv.dll - ok
20:54:47.0830 6016 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
20:54:47.0830 6016 C:\Windows\System32\nsisvc.dll - ok
20:54:47.0845 6016 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
20:54:47.0845 6016 C:\Windows\System32\dhcpcore6.dll - ok
20:54:47.0845 6016 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
20:54:47.0845 6016 C:\Windows\System32\dnsrslvr.dll - ok
20:54:47.0861 6016 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
20:54:47.0861 6016 C:\Windows\System32\FWPUCLNT.DLL - ok
20:54:47.0861 6016 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
20:54:47.0861 6016 C:\Windows\System32\dnsext.dll - ok
20:54:47.0876 6016 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
20:54:47.0876 6016 C:\Windows\System32\dhcpcsvc6.dll - ok
20:54:47.0876 6016 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
20:54:47.0876 6016 C:\Windows\System32\shsvcs.dll - ok
20:54:47.0876 6016 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
20:54:47.0892 6016 C:\Windows\System32\dhcpcsvc.dll - ok
20:54:47.0892 6016 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
20:54:47.0892 6016 C:\Windows\System32\schedsvc.dll - ok
20:54:47.0892 6016 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
20:54:47.0892 6016 C:\Windows\System32\ktmw32.dll - ok
20:54:47.0908 6016 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
20:54:47.0908 6016 C:\Windows\System32\taskcomp.dll - ok
20:54:47.0908 6016 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
20:54:47.0908 6016 C:\Windows\System32\drivers\http.sys - ok
20:54:47.0923 6016 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
20:54:47.0923 6016 C:\Windows\System32\spoolsv.exe - ok
20:54:47.0923 6016 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
20:54:47.0923 6016 C:\Windows\System32\BFE.DLL - ok
20:54:47.0939 6016 [ 2F034150ECCBC498C53B61F98C5378AC ] C:\Program Files\Microsoft Security Client\MpRTP.dll
20:54:47.0939 6016 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
20:54:47.0939 6016 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
20:54:47.0939 6016 C:\Windows\System32\fltLib.dll - ok
20:54:47.0939 6016 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
20:54:47.0939 6016 C:\Windows\System32\fveapi.dll - ok
20:54:47.0954 6016 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
20:54:47.0954 6016 C:\Windows\System32\fvecerts.dll - ok
20:54:47.0954 6016 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
20:54:47.0954 6016 C:\Windows\System32\tbs.dll - ok
20:54:47.0954 6016 [ 33FD2D719594DC9F49B80CE125D4B433 ] C:\Windows\System32\pstorec.dll
20:54:47.0954 6016 C:\Windows\System32\pstorec.dll - ok
20:54:47.0970 6016 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
20:54:47.0970 6016 C:\Windows\System32\wiarpc.dll - ok
20:54:47.0970 6016 [ C4C1947985144721A809965A19D616BC ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
20:54:47.0970 6016 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
20:54:47.0970 6016 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
20:54:47.0970 6016 C:\Windows\System32\drivers\bowser.sys - ok
20:54:47.0986 6016 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] C:\Windows\System32\drivers\MpFilter.sys
20:54:47.0986 6016 C:\Windows\System32\drivers\MpFilter.sys - ok
20:54:47.0986 6016 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
20:54:47.0986 6016 C:\Windows\System32\drivers\mpsdrv.sys - ok
20:54:48.0001 6016 [ 967BC3664DDC26959BD43A7B1681FF86 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
20:54:48.0001 6016 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
20:54:48.0001 6016 [ BA9976AF1946D955E46E44AFF26D856F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpengine.dll
20:54:48.0001 6016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpengine.dll - ok
20:54:48.0001 6016 [ 26535C8F7105D7C2767C93FDFC49CF57 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpasbase.vdm
20:54:48.0001 6016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpasbase.vdm - ok
20:54:48.0017 6016 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
20:54:48.0017 6016 C:\Windows\System32\dllhost.exe - ok
20:54:48.0017 6016 [ A64D3A12C04674BAAEC5F5025DA87633 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpasdlta.vdm
20:54:48.0017 6016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpasdlta.vdm - ok
20:54:48.0032 6016 [ 00000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpavbase.vdm
20:54:48.0032 6016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpavbase.vdm - ok
20:54:48.0032 6016 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
20:54:48.0032 6016 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
20:54:48.0048 6016 [ E17164CF0D146D95D7FC14F56239833B ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpavdlta.vdm
20:54:48.0048 6016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{97E29EDD-5002-459D-8951-FA7E0B1C9049}\mpavdlta.vdm - ok
20:54:48.0048 6016 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
20:54:48.0048 6016 C:\Windows\System32\IDStore.dll - ok
20:54:48.0048 6016 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
20:54:48.0048 6016 C:\Windows\System32\taskhost.exe - ok
20:54:48.0064 6016 [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
20:54:48.0064 6016 C:\Windows\SysWOW64\shell32.dll - ok
20:54:48.0064 6016 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
20:54:48.0064 6016 C:\Windows\System32\AtBroker.exe - ok
20:54:48.0079 6016 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
20:54:48.0079 6016 C:\Windows\System32\MsCtfMonitor.dll - ok
20:54:48.0079 6016 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
20:54:48.0079 6016 C:\Windows\System32\mpr.dll - ok
20:54:48.0095 6016 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
20:54:48.0095 6016 C:\Windows\System32\userinit.exe - ok
20:54:48.0095 6016 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
20:54:48.0095 6016 C:\Windows\SysWOW64\ole32.dll - ok
20:54:48.0095 6016 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
20:54:48.0110 6016 C:\Windows\explorer.exe - ok
20:54:48.0110 6016 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
20:54:48.0110 6016 C:\Windows\System32\ExplorerFrame.dll - ok
20:54:48.0110 6016 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
20:54:48.0110 6016 C:\Windows\System32\dwm.exe - ok
20:54:48.0126 6016 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
20:54:48.0126 6016 C:\Windows\System32\dwmredir.dll - ok
20:54:48.0126 6016 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
20:54:48.0126 6016 C:\Windows\System32\dwmcore.dll - ok
20:54:48.0126 6016 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
20:54:48.0142 6016 C:\Windows\System32\d3d10_1.dll - ok
20:54:48.0142 6016 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
20:54:48.0142 6016 C:\Windows\System32\d3d10_1core.dll - ok
20:54:48.0142 6016 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
20:54:48.0142 6016 C:\Windows\System32\wfapigp.dll - ok
20:54:48.0157 6016 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
20:54:48.0157 6016 C:\Windows\System32\dxgi.dll - ok
20:54:48.0157 6016 [ 4C92EB7535CAA1681A77D928FBF9771F ] C:\Windows\System32\d3d11.dll
20:54:48.0157 6016 C:\Windows\System32\d3d11.dll - ok
20:54:48.0157 6016 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
20:54:48.0157 6016 C:\Windows\System32\mscms.dll - ok
20:54:48.0173 6016 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
20:54:48.0173 6016 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
20:54:48.0173 6016 [ 0BEB0C931BC24F610EE87179F31A8A42 ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
20:54:48.0173 6016 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
20:54:48.0173 6016 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
20:54:48.0173 6016 C:\Windows\System32\conhost.exe - ok
20:54:48.0188 6016 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
20:54:48.0188 6016 C:\Windows\System32\cabinet.dll - ok
20:54:48.0188 6016 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
20:54:48.0188 6016 C:\Windows\System32\p2pcollab.dll - ok
20:54:48.0204 6016 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
20:54:48.0204 6016 C:\Windows\System32\QAGENTRT.DLL - ok
20:54:48.0204 6016 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
20:54:48.0204 6016 C:\Windows\System32\pcasvc.dll - ok
20:54:48.0204 6016 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
20:54:48.0204 6016 C:\Windows\System32\snmptrap.exe - ok
20:54:48.0220 6016 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
20:54:48.0220 6016 C:\Windows\System32\drivers\mrxsmb.sys - ok
20:54:48.0220 6016 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
20:54:48.0220 6016 C:\Windows\System32\fveui.dll - ok
20:54:48.0220 6016 [ E3BF12C68F844E689D1A9D7E6B54742A ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
20:54:48.0220 6016 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
20:54:48.0235 6016 [ 577D0DC85524A16FE29D7956B22974C4 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
20:54:48.0235 6016 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
20:54:48.0235 6016 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
20:54:48.0235 6016 C:\Windows\System32\slwga.dll - ok
20:54:48.0235 6016 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
20:54:48.0235 6016 C:\Windows\System32\sppc.dll - ok
20:54:48.0251 6016 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
20:54:48.0251 6016 C:\Windows\System32\wscapi.dll - ok
20:54:48.0251 6016 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
20:54:48.0251 6016 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
20:54:48.0266 6016 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
20:54:48.0266 6016 C:\Windows\SysWOW64\userenv.dll - ok
20:54:48.0266 6016 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
20:54:48.0266 6016 C:\Windows\SysWOW64\winsta.dll - ok
20:54:48.0266 6016 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
20:54:48.0266 6016 C:\Windows\SysWOW64\profapi.dll - ok
20:54:48.0282 6016 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
20:54:48.0282 6016 C:\Windows\System32\drivers\mrxsmb10.sys - ok
20:54:48.0282 6016 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
20:54:48.0282 6016 C:\Windows\System32\drivers\mrxsmb20.sys - ok
20:54:48.0298 6016 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
20:54:48.0298 6016 C:\Windows\System32\wkssvc.dll - ok
20:54:48.0298 6016 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:54:48.0298 6016 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
20:54:48.0298 6016 [ 92245C959E5BC378809D2CC5E9F6E9C7 ] C:\Windows\SysWOW64\crypt32.dll
20:54:48.0298 6016 C:\Windows\SysWOW64\crypt32.dll - ok
20:54:48.0313 6016 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
20:54:48.0313 6016 C:\Windows\SysWOW64\oleaut32.dll - ok
20:54:48.0313 6016 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
20:54:48.0313 6016 C:\Windows\SysWOW64\msasn1.dll - ok
20:54:48.0329 6016 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
20:54:48.0329 6016 C:\Windows\SysWOW64\wintrust.dll - ok
20:54:48.0329 6016 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
20:54:48.0329 6016 C:\Windows\System32\EhStorShell.dll - ok
20:54:48.0329 6016 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
20:54:48.0329 6016 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
20:54:48.0344 6016 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
20:54:48.0344 6016 C:\Windows\System32\msutb.dll - ok
20:54:48.0344 6016 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
20:54:48.0344 6016 C:\Windows\System32\iphlpsvc.dll - ok
20:54:48.0344 6016 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
20:54:48.0344 6016 C:\Windows\System32\provsvc.dll - ok
20:54:48.0360 6016 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
20:54:48.0360 6016 C:\Windows\System32\sstpsvc.dll - ok
20:54:48.0360 6016 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
20:54:48.0360 6016 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
20:54:48.0376 6016 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:54:48.0376 6016 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
20:54:48.0376 6016 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
20:54:48.0376 6016 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
20:54:48.0391 6016 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
20:54:48.0391 6016 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
20:54:48.0391 6016 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
20:54:48.0391 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
20:54:48.0391 6016 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
20:54:48.0391 6016 C:\Windows\SysWOW64\version.dll - ok
20:54:48.0407 6016 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
20:54:48.0407 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
20:54:48.0407 6016 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
20:54:48.0407 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
20:54:48.0422 6016 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
20:54:48.0422 6016 C:\Windows\SysWOW64\nsi.dll - ok
20:54:48.0422 6016 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
20:54:48.0422 6016 C:\Windows\SysWOW64\ws2_32.dll - ok
20:54:48.0438 6016 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
20:54:48.0438 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
20:54:48.0438 6016 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
20:54:48.0438 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
20:54:48.0454 6016 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
20:54:48.0454 6016 C:\Windows\SysWOW64\wsock32.dll - ok
20:54:48.0454 6016 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
20:54:48.0454 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
20:54:48.0469 6016 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
20:54:48.0469 6016 C:\Windows\SysWOW64\winmm.dll - ok
20:54:48.0469 6016 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
20:54:48.0469 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
20:54:48.0485 6016 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
20:54:48.0485 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
20:54:48.0485 6016 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
20:54:48.0485 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
20:54:48.0500 6016 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
20:54:48.0500 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
20:54:48.0500 6016 [ D8F0E941B1E35DEEE3EDF6DF45517607 ] C:\Windows\System32\igd10umd64.dll
20:54:48.0500 6016 C:\Windows\System32\igd10umd64.dll - ok
20:54:48.0500 6016 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
20:54:48.0500 6016 C:\Windows\System32\uDWM.dll - ok
20:54:48.0516 6016 [ 0D7BE936A44E6B70F822D272A5CEBC22 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
20:54:48.0516 6016 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll - ok
20:54:48.0516 6016 [ BE165318E0052A91F7EA36F515B5F2B1 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll
20:54:48.0516 6016 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll - ok
20:54:48.0516 6016 [ 18E756E0FE2FFCD5DE35F6B9F91244A6 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll
20:54:48.0532 6016 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll - ok
20:54:48.0532 6016 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
20:54:48.0532 6016 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
20:54:48.0532 6016 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
20:54:48.0532 6016 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
20:54:48.0547 6016 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
20:54:48.0547 6016 C:\Windows\System32\ntshrui.dll - ok
20:54:48.0547 6016 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
20:54:48.0547 6016 C:\Windows\System32\cscapi.dll - ok
20:54:48.0547 6016 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
20:54:48.0547 6016 C:\Windows\System32\IconCodecService.dll - ok
20:54:48.0563 6016 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
20:54:48.0563 6016 C:\Windows\System32\taskeng.exe - ok
20:54:48.0563 6016 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
20:54:48.0563 6016 C:\Program Files\Bonjour\mdnsNSP.dll - ok
20:54:48.0578 6016 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
20:54:48.0578 6016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
20:54:48.0578 6016 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
20:54:48.0578 6016 C:\Windows\System32\localspl.dll - ok
20:54:48.0578 6016 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
20:54:48.0578 6016 C:\Windows\System32\rasadhlp.dll - ok
20:54:48.0594 6016 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
20:54:48.0594 6016 C:\Windows\System32\umb.dll - ok
20:54:48.0594 6016 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
20:54:48.0594 6016 C:\Windows\System32\spoolss.dll - ok
20:54:48.0610 6016 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
20:54:48.0610 6016 C:\Windows\System32\winspool.drv - ok
20:54:48.0610 6016 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
20:54:48.0610 6016 C:\Windows\System32\FXSMON.dll - ok
20:54:48.0625 6016 [ C56EE5C70ACFF7AF17494F8BE5C81BF2 ] C:\Windows\System32\nitrolocalmon2.dll
20:54:48.0625 6016 C:\Windows\System32\nitrolocalmon2.dll - ok
20:54:48.0625 6016 [ 962874341190719614FC9B37D5DE71F8 ] C:\Windows\System32\Primomonnt.dll
20:54:48.0625 6016 C:\Windows\System32\Primomonnt.dll - ok
20:54:48.0641 6016 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
20:54:48.0641 6016 C:\Windows\System32\PrintIsolationProxy.dll - ok
20:54:48.0641 6016 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
20:54:48.0641 6016 C:\Windows\System32\TSChannel.dll - ok
20:54:48.0656 6016 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
20:54:48.0656 6016 C:\Windows\System32\tcpmon.dll - ok
20:54:48.0656 6016 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
20:54:48.0656 6016 C:\Windows\System32\msxml6.dll - ok
20:54:48.0672 6016 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
20:54:48.0672 6016 C:\Windows\System32\snmpapi.dll - ok
20:54:48.0672 6016 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
20:54:48.0672 6016 C:\Windows\System32\wsnmp32.dll - ok
20:54:48.0672 6016 [ 3BAB1C64C3C02F09C8CB4F3962D45BA0 ] C:\Windows\System32\dlealmpm.dll
20:54:48.0672 6016 C:\Windows\System32\dlealmpm.dll - ok
20:54:48.0688 6016 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
20:54:48.0688 6016 C:\Windows\System32\usbmon.dll - ok
20:54:48.0688 6016 [ 3ABE3CC7706EDD33C12C5A99B8727053 ] C:\Windows\System32\dleacomc.dll
20:54:48.0688 6016 C:\Windows\System32\dleacomc.dll - ok
20:54:48.0703 6016 [ A2BB76E03E5A5A073AC758F34706C3A5 ] C:\Windows\System32\dleacoms.exe
20:54:48.0703 6016 C:\Windows\System32\dleacoms.exe - ok
20:54:48.0703 6016 [ 32C5DF01878550F320CDAB8645700BC8 ] C:\Windows\System32\dleaserv.dll
20:54:48.0703 6016 C:\Windows\System32\dleaserv.dll - ok
20:54:48.0703 6016 [ D381E5F2003A550D9BE774CE7DF2E2E7 ] C:\Windows\System32\dleainpa.dll
20:54:48.0703 6016 C:\Windows\System32\dleainpa.dll - ok
20:54:48.0719 6016 [ 5C7FFCCA7489AD7F4980F4ABB0A6A9DC ] C:\Windows\System32\dleaiesc.dll
20:54:48.0719 6016 C:\Windows\System32\dleaiesc.dll - ok
20:54:48.0719 6016 [ 6ECE65F3C2BAC3D2514F12EE913980EC ] C:\Windows\System32\dleausb1.dll
20:54:48.0719 6016 C:\Windows\System32\dleausb1.dll - ok
20:54:48.0734 6016 [ CD6B3A4B1D1909B05616D5D20209825F ] C:\Windows\System32\dleahbn3.dll
20:54:48.0734 6016 C:\Windows\System32\dleahbn3.dll - ok
20:54:48.0734 6016 [ B3E20079B7719ADD343DC3238292D9A5 ] C:\Windows\System32\DLEAhcp.dll
20:54:48.0734 6016 C:\Windows\System32\DLEAhcp.dll - ok
20:54:48.0750 6016 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
20:54:48.0750 6016 C:\Windows\System32\NapiNSP.dll - ok
20:54:48.0750 6016 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
20:54:48.0750 6016 C:\Windows\System32\pnrpnsp.dll - ok
20:54:48.0750 6016 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
20:54:48.0750 6016 C:\Windows\System32\winrnr.dll - ok
20:54:48.0766 6016 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
20:54:48.0766 6016 C:\Windows\System32\WSDApi.dll - ok
20:54:48.0766 6016 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
20:54:48.0766 6016 C:\Windows\System32\WSDMon.dll - ok
20:54:48.0766 6016 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
20:54:48.0766 6016 C:\Windows\System32\webservices.dll - ok
20:54:48.0781 6016 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
20:54:48.0781 6016 C:\Windows\System32\fundisc.dll - ok
20:54:48.0781 6016 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
20:54:48.0781 6016 C:\Windows\System32\fdPnp.dll - ok
20:54:48.0781 6016 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
20:54:48.0781 6016 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
20:54:48.0797 6016 [ A614F3EAE991F56340705F1F1F9A17AD ] C:\Windows\System32\spool\prtprocs\x64\dleadrpp.dll
20:54:48.0797 6016 C:\Windows\System32\spool\prtprocs\x64\dleadrpp.dll - ok
20:54:48.0797 6016 [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
20:54:48.0797 6016 C:\Windows\System32\win32spl.dll - ok
20:54:48.0812 6016 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
20:54:48.0812 6016 C:\Windows\System32\inetpp.dll - ok
20:54:48.0812 6016 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
20:54:48.0812 6016 C:\Windows\System32\HotStartUserAgent.dll - ok
20:54:48.0812 6016 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
20:54:48.0812 6016 C:\Windows\System32\PlaySndSrv.dll - ok
20:54:48.0828 6016 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
20:54:48.0828 6016 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
20:54:48.0828 6016 [ B04ABC47319CB3C808A3A5525F2F3F2F ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
20:54:48.0828 6016 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
20:54:48.0828 6016 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
20:54:48.0828 6016 C:\Windows\System32\esent.dll - ok
20:54:48.0844 6016 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
20:54:48.0844 6016 C:\Windows\SysWOW64\msvcr100.dll - ok
20:54:48.0844 6016 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:54:48.0844 6016 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
20:54:48.0859 6016 [ D1C8ADF4140E20B9D575A7763F2902AD ] C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
20:54:48.0859 6016 C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe - ok
20:54:48.0859 6016 [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll
20:54:48.0859 6016 C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok
20:54:48.0859 6016 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
20:54:48.0859 6016 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
20:54:48.0875 6016 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
20:54:48.0875 6016 C:\Windows\SysWOW64\netapi32.dll - ok
20:54:48.0875 6016 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
20:54:48.0875 6016 C:\Windows\SysWOW64\netutils.dll - ok
20:54:48.0890 6016 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
20:54:48.0890 6016 C:\Windows\SysWOW64\srvcli.dll - ok
20:54:48.0890 6016 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
20:54:48.0890 6016 C:\Windows\SysWOW64\winnsi.dll - ok
20:54:48.0890 6016 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
20:54:48.0890 6016 C:\Windows\SysWOW64\wkscli.dll - ok
20:54:48.0906 6016 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
20:54:48.0906 6016 C:\Windows\SysWOW64\msvcp100.dll - ok
20:54:48.0906 6016 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
20:54:48.0906 6016 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
20:54:48.0922 6016 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
20:54:48.0922 6016 C:\Windows\System32\winmm.dll - ok
20:54:48.0922 6016 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
20:54:48.0922 6016 C:\Windows\SysWOW64\uxtheme.dll - ok
20:54:48.0922 6016 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
20:54:48.0922 6016 C:\Windows\SysWOW64\imagehlp.dll - ok
20:54:48.0937 6016 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
20:54:48.0937 6016 C:\Windows\SysWOW64\msi.dll - ok
20:54:48.0937 6016 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] C:\Windows\SysWOW64\bgsvcgen.exe
20:54:48.0937 6016 C:\Windows\SysWOW64\bgsvcgen.exe - ok
20:54:48.0953 6016 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
20:54:48.0953 6016 C:\Windows\SysWOW64\setupapi.dll - ok
20:54:48.0953 6016 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
20:54:48.0953 6016 C:\Windows\SysWOW64\cfgmgr32.dll - ok
20:54:48.0968 6016 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
20:54:48.0968 6016 C:\Program Files\Bonjour\mDNSResponder.exe - ok
20:54:48.0968 6016 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
20:54:48.0968 6016 C:\Windows\SysWOW64\devobj.dll - ok
20:54:48.0968 6016 [ F352DB15FF74AC4A1C48AD12D423B4B1 ] C:\Windows\SysWOW64\wininet.dll
20:54:48.0968 6016 C:\Windows\SysWOW64\wininet.dll - ok
20:54:48.0984 6016 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
20:54:48.0984 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
20:54:48.0984 6016 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] C:\Windows\System32\cryptsvc.dll
20:54:48.0984 6016 C:\Windows\System32\cryptsvc.dll - ok
20:54:49.0000 6016 [ 1017D70ABE5483F40C10B7774397D120 ] C:\Windows\System32\spool\drivers\x64\3\dleaserv.exe
20:54:49.0000 6016 C:\Windows\System32\spool\drivers\x64\3\dleaserv.exe - ok
20:54:49.0000 6016 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
20:54:49.0000 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
20:54:49.0015 6016 [ 2C4C22EA1735F21F355EB1A39832F7DF ] C:\Windows\System32\cryptnet.dll
20:54:49.0015 6016 C:\Windows\System32\cryptnet.dll - ok
20:54:49.0015 6016 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
20:54:49.0015 6016 C:\Windows\System32\dps.dll - ok
20:54:49.0015 6016 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
20:54:49.0015 6016 C:\Windows\System32\vssapi.dll - ok
20:54:49.0031 6016 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
20:54:49.0031 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
20:54:49.0031 6016 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
20:54:49.0031 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
20:54:49.0046 6016 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
20:54:49.0046 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
20:54:49.0046 6016 [ DBCF8F2EA9111510B5B86E1EE9CD8816 ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
20:54:49.0046 6016 C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe - ok
20:54:49.0062 6016 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
20:54:49.0062 6016 C:\Windows\System32\FDResPub.dll - ok
20:54:49.0062 6016 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
20:54:49.0062 6016 C:\Windows\System32\taskschd.dll - ok
20:54:49.0078 6016 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
20:54:49.0078 6016 C:\Windows\System32\vsstrace.dll - ok
20:54:49.0078 6016 [ DCD9287B04DE83CA22C8057C358243EA ] C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe
20:54:49.0078 6016 C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe - ok
20:54:49.0093 6016 [ 162100E0BC8377710F9D170631921C03 ] C:\Windows\System32\drivers\NisDrvWFP.sys
20:54:49.0093 6016 C:\Windows\System32\drivers\NisDrvWFP.sys - ok
20:54:49.0093 6016 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
20:54:49.0093 6016 C:\Windows\System32\IKEEXT.DLL - ok
20:54:49.0093 6016 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
20:54:49.0093 6016 C:\Windows\System32\netman.dll - ok
20:54:49.0109 6016 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
20:54:49.0109 6016 C:\Windows\System32\ntprint.dll - ok
20:54:49.0109 6016 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
20:54:49.0109 6016 C:\Windows\System32\winhttp.dll - ok
20:54:49.0124 6016 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
20:54:49.0124 6016 C:\Windows\System32\vpnikeapi.dll - ok
20:54:49.0124 6016 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
20:54:49.0124 6016 C:\Windows\System32\webio.dll - ok
20:54:49.0140 6016 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
20:54:49.0140 6016 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe - ok
20:54:49.0140 6016 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
20:54:49.0140 6016 C:\Windows\System32\nlasvc.dll - ok
20:54:49.0156 6016 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
20:54:49.0156 6016 C:\Windows\System32\netcfgx.dll - ok
20:54:49.0156 6016 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
20:54:49.0156 6016 C:\Windows\System32\httpapi.dll - ok
20:54:49.0156 6016 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
20:54:49.0156 6016 C:\Windows\System32\ncsi.dll - ok
20:54:49.0171 6016 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
20:54:49.0171 6016 C:\Windows\System32\ssdpapi.dll - ok
20:54:49.0171 6016 [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll
20:54:49.0171 6016 C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll - ok
20:54:49.0187 6016 [ F383B1AD5D7FDC1ACB0D900B50572F8D ] C:\Windows\SysWOW64\iertutil.dll
20:54:49.0187 6016 C:\Windows\SysWOW64\iertutil.dll - ok
20:54:49.0187 6016 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
20:54:49.0187 6016 C:\Windows\System32\wsock32.dll - ok
20:54:49.0202 6016 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
20:54:49.0202 6016 C:\Windows\System32\aepic.dll - ok
20:54:49.0202 6016 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
20:54:49.0202 6016 C:\Windows\SysWOW64\cscapi.dll - ok
20:54:49.0202 6016 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
20:54:49.0202 6016 C:\Windows\SysWOW64\ntmarta.dll - ok
20:54:49.0218 6016 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
20:54:49.0218 6016 C:\Windows\System32\drivers\PEAuth.sys - ok
20:54:49.0218 6016 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
20:54:49.0218 6016 C:\Windows\System32\sfc.dll - ok
20:54:49.0234 6016 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
20:54:49.0234 6016 C:\Windows\System32\sfc_os.dll - ok
20:54:49.0234 6016 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
20:54:49.0234 6016 C:\Windows\SysWOW64\Wldap32.dll - ok
20:54:49.0234 6016 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
20:54:49.0234 6016 C:\Windows\SysWOW64\dbghelp.dll - ok
20:54:49.0249 6016 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
20:54:49.0249 6016 C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe - ok
20:54:49.0249 6016 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
20:54:49.0249 6016 C:\Windows\System32\drivers\secdrv.sys - ok
20:54:49.0265 6016 [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
20:54:49.0265 6016 C:\Windows\System32\drivers\Sftfslh.sys - ok
20:54:49.0265 6016 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
20:54:49.0265 6016 C:\Windows\System32\seclogon.dll - ok
20:54:49.0280 6016 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
20:54:49.0280 6016 C:\Windows\System32\drivers\Sftplaylh.sys - ok
20:54:49.0280 6016 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
20:54:49.0280 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
20:54:49.0296 6016 [ 93DE85A2A84AFF96CF452EEB211980AB ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
20:54:49.0296 6016 C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe - ok
20:54:49.0296 6016 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
20:54:49.0296 6016 C:\Windows\SysWOW64\psapi.dll - ok
20:54:49.0296 6016 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:54:49.0296 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
20:54:49.0312 6016 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
20:54:49.0312 6016 C:\Windows\SysWOW64\clbcatq.dll - ok
20:54:49.0312 6016 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
20:54:49.0312 6016 C:\Windows\SysWOW64\secur32.dll - ok
20:54:49.0312 6016 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
20:54:49.0312 6016 C:\Windows\SysWOW64\comdlg32.dll - ok
20:54:49.0327 6016 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
20:54:49.0327 6016 C:\Windows\SysWOW64\msimg32.dll - ok
20:54:49.0327 6016 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
20:54:49.0327 6016 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
20:54:49.0343 6016 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
20:54:49.0343 6016 C:\Windows\SysWOW64\cryptsp.dll - ok
20:54:49.0343 6016 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
20:54:49.0343 6016 C:\Windows\SysWOW64\rsaenh.dll - ok
20:54:49.0343 6016 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
20:54:49.0343 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
20:54:49.0358 6016 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
20:54:49.0358 6016 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
20:54:49.0358 6016 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
20:54:49.0358 6016 C:\Windows\SysWOW64\winspool.drv - ok
20:54:49.0374 6016 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
20:54:49.0374 6016 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
20:54:49.0374 6016 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
20:54:49.0374 6016 C:\Windows\SysWOW64\oledlg.dll - ok
20:54:49.0374 6016 [ 7C15061CD0372487903B07B9BB03AFAD ] C:\Program Files (x86)\Skype\Updater\Updater.exe
20:54:49.0374 6016 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
20:54:49.0390 6016 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
20:54:49.0390 6016 C:\Windows\SysWOW64\credssp.dll - ok
20:54:49.0390 6016 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
20:54:49.0390 6016 C:\Windows\SysWOW64\dnsapi.dll - ok
20:54:49.0390 6016 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
20:54:49.0390 6016 C:\Windows\SysWOW64\wbemcomn.dll - ok
20:54:49.0405 6016 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
20:54:49.0405 6016 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
20:54:49.0405 6016 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
20:54:49.0405 6016 C:\Windows\SysWOW64\msxml3.dll - ok
20:54:49.0421 6016 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
20:54:49.0421 6016 C:\Windows\SysWOW64\riched20.dll - ok
20:54:49.0421 6016 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
20:54:49.0421 6016 C:\Windows\System32\drivers\srvnet.sys - ok
20:54:49.0436 6016 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
20:54:49.0436 6016 C:\Windows\System32\drivers\tcpipreg.sys - ok
20:54:49.0436 6016 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
20:54:49.0436 6016 C:\Windows\System32\sysmain.dll - ok
20:54:49.0452 6016 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
20:54:49.0452 6016 C:\Windows\System32\tapisrv.dll - ok
20:54:49.0452 6016 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
20:54:49.0452 6016 C:\Windows\System32\wiaservc.dll - ok
20:54:49.0452 6016 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
20:54:49.0452 6016 C:\Windows\System32\wiatrace.dll - ok
20:54:49.0468 6016 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
20:54:49.0468 6016 C:\Windows\System32\trkwks.dll - ok
20:54:49.0468 6016 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
20:54:49.0468 6016 C:\Windows\System32\wbem\WMIsvc.dll - ok
20:54:49.0468 6016 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:54:49.0468 6016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
20:54:49.0483 6016 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
20:54:49.0483 6016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
20:54:49.0483 6016 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
20:54:49.0483 6016 C:\Windows\System32\SensApi.dll - ok
20:54:49.0483 6016 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
20:54:49.0483 6016 C:\Windows\System32\wbemcomn.dll - ok
20:54:49.0499 6016 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
20:54:49.0499 6016 C:\Windows\System32\wsdchngr.dll - ok
20:54:49.0499 6016 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
20:54:49.0499 6016 C:\Windows\System32\wer.dll - ok
20:54:49.0499 6016 [ AE30117031222A043FA51BCDA13AF543 ] C:\Windows\System32\wiafbdrv.dll
20:54:49.0499 6016 C:\Windows\System32\wiafbdrv.dll - ok
20:54:49.0514 6016 [ 637982A421D0133DCEAA0D1490D1DC9C ] C:\Windows\System32\netsh.exe
20:54:49.0514 6016 C:\Windows\System32\netsh.exe - ok
20:54:49.0514 6016 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
20:54:49.0514 6016 C:\Windows\SysWOW64\dwmapi.dll - ok
20:54:49.0514 6016 [ 40E1F127557EFC86882581C55108D4AE ] C:\Windows\System32\rasmontr.dll
20:54:49.0530 6016 C:\Windows\System32\rasmontr.dll - ok
20:54:49.0530 6016 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
20:54:49.0530 6016 C:\Windows\System32\WinSCard.dll - ok
20:54:49.0530 6016 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
20:54:49.0530 6016 C:\Windows\System32\wbem\WinMgmtR.dll - ok
20:54:49.0546 6016 [ 741106B31B7DBCF89D71892AE384C2FC ] C:\Program Files\Dell\V310-V510 Series\dleamicro.dll
20:54:49.0546 6016 C:\Program Files\Dell\V310-V510 Series\dleamicro.dll - ok
20:54:49.0546 6016 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
20:54:49.0546 6016 C:\Windows\System32\mprapi.dll - ok
20:54:49.0561 6016 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
20:54:49.0561 6016 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
20:54:49.0561 6016 [ 6471F9F76CA2C8F5AC30895610A49556 ] C:\Program Files\Dell\V310-V510 Series\dleacfg64.dll
20:54:49.0561 6016 C:\Program Files\Dell\V310-V510 Series\dleacfg64.dll - ok
20:54:49.0561 6016 [ 3D6B5FCBDD68202AE8C68256C311EC2E ] C:\Program Files\Dell\V310-V510 Series\dleadrs64.dll
20:54:49.0561 6016 C:\Program Files\Dell\V310-V510 Series\dleadrs64.dll - ok
20:54:49.0577 6016 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
20:54:49.0577 6016 C:\Windows\System32\mfc42u.dll - ok
20:54:49.0577 6016 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
20:54:49.0577 6016 C:\Windows\System32\wbem\fastprox.dll - ok
20:54:49.0592 6016 [ CD569FA91EC6F59D045C19D0D3850F44 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
20:54:49.0592 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe - ok
20:54:49.0592 6016 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
20:54:49.0592 6016 C:\Windows\System32\sqmapi.dll - ok
20:54:49.0592 6016 [ 6C344754B737A4B4B95C85B244FB0E78 ] C:\Program Files\Dell\V310-V510 Series\dleacaps64.dll
20:54:49.0592 6016 C:\Program Files\Dell\V310-V510 Series\dleacaps64.dll - ok
20:54:49.0592 6016 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
20:54:49.0592 6016 C:\Windows\System32\msvcp60.dll - ok
20:54:49.0608 6016 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
20:54:49.0608 6016 C:\Windows\System32\ntdsapi.dll - ok
20:54:49.0608 6016 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
20:54:49.0608 6016 C:\Windows\System32\odbc32.dll - ok
20:54:49.0624 6016 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
20:54:49.0624 6016 C:\Windows\System32\wbem\wbemprox.dll - ok
20:54:49.0624 6016 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
20:54:49.0624 6016 C:\Windows\System32\wbem\wbemcore.dll - ok
20:54:49.0639 6016 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
20:54:49.0639 6016 C:\Windows\System32\wdscore.dll - ok
20:54:49.0639 6016 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
20:54:49.0639 6016 C:\Windows\System32\odbcint.dll - ok
20:54:49.0639 6016 [ 7523E7D2AB0C49585C0C199264B2BD73 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
20:54:49.0639 6016 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
20:54:49.0655 6016 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
20:54:49.0655 6016 C:\Windows\System32\msxml3.dll - ok
20:54:49.0655 6016 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
20:54:49.0655 6016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
20:54:49.0655 6016 [ 47F29A09E01B5D01866E2061FCFF766F ] C:\Windows\System32\nshwfp.dll
20:54:49.0655 6016 C:\Windows\System32\nshwfp.dll - ok
20:54:49.0670 6016 [ FA753FAB0B93E3427C1EB722E876501E ] C:\Windows\System32\dhcpcmonitor.dll
20:54:49.0670 6016 C:\Windows\System32\dhcpcmonitor.dll - ok
20:54:49.0670 6016 [ CB06D9EDB2A0C225C25A3B33BEDF4DD7 ] C:\Windows\System32\DHCPQEC.DLL
20:54:49.0670 6016 C:\Windows\System32\DHCPQEC.DLL - ok
20:54:49.0670 6016 [ D9B85F0D351CFC4EAB750BF6CF5A2C5D ] C:\Program Files\Dell\V310-V510 Series\dleacnv464.dll
20:54:49.0670 6016 C:\Program Files\Dell\V310-V510 Series\dleacnv464.dll - ok
20:54:49.0686 6016 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
20:54:49.0686 6016 C:\Windows\System32\QUTIL.DLL - ok
20:54:49.0686 6016 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
20:54:49.0686 6016 C:\Windows\System32\wbem\esscli.dll - ok
20:54:49.0686 6016 [ EFFA3C1731775272F074F3FF257020FC ] C:\Windows\System32\fwcfg.dll
20:54:49.0686 6016 C:\Windows\System32\fwcfg.dll - ok
20:54:49.0702 6016 [ FA4D595B2C5B2E54E8A49A82CFFAB155 ] C:\Windows\System32\nshhttp.dll
20:54:49.0702 6016 C:\Windows\System32\nshhttp.dll - ok
20:54:49.0702 6016 [ 8396C6C26AADDFE4590CCEF0F419B6B7 ] C:\Windows\System32\ws2help.dll
20:54:49.0702 6016 C:\Windows\System32\ws2help.dll - ok
20:54:49.0702 6016 [ D314DA4B0B8DCD023D547FC568E34FB6 ] C:\Windows\System32\wshelper.dll
20:54:49.0702 6016 C:\Windows\System32\wshelper.dll - ok
20:54:49.0717 6016 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
20:54:49.0717 6016 C:\Windows\System32\wbem\wbemsvc.dll - ok
20:54:49.0717 6016 [ 55F1C5EFF3D81EE93B0691FFC610BCF2 ] C:\Windows\System32\authfwcfg.dll
20:54:49.0717 6016 C:\Windows\System32\authfwcfg.dll - ok
20:54:49.0717 6016 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
20:54:49.0717 6016 C:\Windows\System32\hnetcfg.dll - ok
20:54:49.0733 6016 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
20:54:49.0733 6016 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
20:54:49.0733 6016 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
20:54:49.0733 6016 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
20:54:49.0748 6016 [ FA4C81DC1E0B5D5F0BD5CB1C78659CAA ] C:\Windows\System32\winipsec.dll
20:54:49.0748 6016 C:\Windows\System32\winipsec.dll - ok
20:54:49.0748 6016 [ FCA0837B2739C044EEC00AF0DDD73FFC ] C:\Windows\SysWOW64\ieframe.dll
20:54:49.0748 6016 C:\Windows\SysWOW64\ieframe.dll - ok
20:54:49.0748 6016 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
20:54:49.0748 6016 C:\Windows\SysWOW64\ntdsapi.dll - ok
20:54:49.0764 6016 [ 2553AF518536B2E365A814730EB93E0A ] C:\Windows\System32\ifmon.dll
20:54:49.0764 6016 C:\Windows\System32\ifmon.dll - ok
20:54:49.0764 6016 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
20:54:49.0764 6016 C:\Windows\System32\wbem\wmiutils.dll - ok
20:54:49.0764 6016 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
20:54:49.0764 6016 C:\Windows\System32\nci.dll - ok
20:54:49.0780 6016 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
20:54:49.0780 6016 C:\Windows\System32\dssenh.dll - ok
20:54:49.0780 6016 [ 0FE14E3B3C0DAA77DFB5B60E1D274D6F ] C:\Windows\System32\netiohlp.dll
20:54:49.0780 6016 C:\Windows\System32\netiohlp.dll - ok
20:54:49.0780 6016 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
20:54:49.0780 6016 C:\Windows\System32\netprofm.dll - ok
20:54:49.0795 6016 [ 840B884B2071186C0D354F3A7F4E4D56 ] C:\Windows\System32\hnetmon.dll
20:54:49.0795 6016 C:\Windows\System32\hnetmon.dll - ok
20:54:49.0795 6016 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
20:54:49.0795 6016 C:\Windows\System32\netshell.dll - ok
20:54:49.0795 6016 [ 110A8C1EA034CE155CC99F083B2415CA ] C:\Windows\System32\whhelper.dll
20:54:49.0795 6016 C:\Windows\System32\whhelper.dll - ok
20:54:49.0811 6016 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
20:54:49.0811 6016 C:\Windows\System32\wbem\repdrvfs.dll - ok
20:54:49.0811 6016 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
20:54:49.0811 6016 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
20:54:49.0811 6016 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
20:54:49.0811 6016 C:\Windows\System32\dot3api.dll - ok
20:54:49.0826 6016 [ 7A09F960C73A63D68293EFDFD843A5FF ] C:\Windows\System32\dot3cfg.dll
20:54:49.0826 6016 C:\Windows\System32\dot3cfg.dll - ok
20:54:49.0826 6016 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
20:54:49.0826 6016 C:\Windows\System32\eappcfg.dll - ok
20:54:49.0826 6016 [ 18AAD5A845EEC8A0555582ED6A8B061F ] C:\Windows\System32\rpcnsh.dll
20:54:49.0826 6016 C:\Windows\System32\rpcnsh.dll - ok
20:54:49.0842 6016 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
20:54:49.0842 6016 C:\Windows\System32\ncobjapi.dll - ok
20:54:49.0842 6016 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
20:54:49.0842 6016 C:\Windows\System32\onex.dll - ok
20:54:49.0842 6016 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
20:54:49.0842 6016 C:\Windows\System32\eappprxy.dll - ok
20:54:49.0858 6016 [ A68E038D88A255B24F78AE47B944C7AF ] C:\Windows\System32\NAPMONTR.DLL
20:54:49.0858 6016 C:\Windows\System32\NAPMONTR.DLL - ok
20:54:49.0858 6016 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
20:54:49.0858 6016 C:\Windows\System32\certcli.dll - ok
20:54:49.0858 6016 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
20:54:49.0858 6016 C:\Windows\System32\wbem\wbemess.dll - ok
20:54:49.0873 6016 [ 97BA1A7979EB66F4E8E95270854DFBDC ] C:\Windows\System32\nshipsec.dll
20:54:49.0873 6016 C:\Windows\System32\nshipsec.dll - ok
20:54:49.0873 6016 [ 011F0B067E47612F57C4ECE377D9C9DF ] C:\Windows\System32\activeds.dll
20:54:49.0873 6016 C:\Windows\System32\activeds.dll - ok
20:54:49.0873 6016 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
20:54:49.0873 6016 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
20:54:49.0889 6016 [ 05F620B4B2E7DEB9409C0C6A4FEDD2A4 ] C:\Windows\System32\adsldpc.dll
20:54:49.0889 6016 C:\Windows\System32\adsldpc.dll - ok
20:54:49.0889 6016 [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650 ] C:\Windows\System32\polstore.dll
20:54:49.0889 6016 C:\Windows\System32\polstore.dll - ok
20:54:49.0889 6016 [ 6D672FE62DF8B2A6626F128C1ABAB4F8 ] C:\Windows\System32\nettrace.dll
20:54:49.0889 6016 C:\Windows\System32\nettrace.dll - ok
20:54:49.0904 6016 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
20:54:49.0904 6016 C:\Windows\System32\wbem\cimwin32.dll - ok
20:54:49.0904 6016 [ 18D4729031314F8C217CDFCC599EF4E4 ] C:\Windows\System32\ndfapi.dll
20:54:49.0904 6016 C:\Windows\System32\ndfapi.dll - ok
20:54:49.0920 6016 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
20:54:49.0920 6016 C:\Windows\System32\framedynos.dll - ok
20:54:49.0920 6016 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
20:54:49.0920 6016 C:\Windows\System32\tdh.dll - ok
20:54:49.0920 6016 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
20:54:49.0920 6016 C:\Windows\System32\wdi.dll - ok
20:54:49.0936 6016 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
20:54:49.0936 6016 C:\Windows\System32\aeevts.dll - ok
20:54:49.0936 6016 [ 01A9E95A520247E110AFBDF2ACBC6AE8 ] C:\Windows\System32\p2pnetsh.dll
20:54:49.0936 6016 C:\Windows\System32\p2pnetsh.dll - ok
20:54:49.0936 6016 [ DB991B869472AF2A3BB97460BBA59AA3 ] C:\Windows\System32\WcnNetsh.dll
20:54:49.0936 6016 C:\Windows\System32\WcnNetsh.dll - ok
20:54:49.0951 6016 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
20:54:49.0951 6016 C:\Windows\System32\wlanapi.dll - ok
20:54:49.0951 6016 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
20:54:49.0951 6016 C:\Windows\System32\wlanutil.dll - ok
20:54:49.0951 6016 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
20:54:49.0951 6016 C:\Windows\System32\wmi.dll - ok
20:54:49.0967 6016 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
20:54:49.0967 6016 C:\Windows\System32\P2P.dll - ok
20:54:49.0967 6016 [ D63A0FF194BF6BEC0E2776B550B3691B ] C:\Windows\System32\wwancfg.dll
20:54:49.0967 6016 C:\Windows\System32\wwancfg.dll - ok
20:54:49.0967 6016 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
20:54:49.0967 6016 C:\Windows\System32\wwapi.dll - ok
20:54:49.0982 6016 [ DFE67CB5060D6B4E950646ABDBB0C9C4 ] C:\Windows\System32\wlancfg.dll
20:54:49.0982 6016 C:\Windows\System32\wlancfg.dll - ok
20:54:49.0982 6016 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
20:54:49.0982 6016 C:\Windows\System32\wlanhlp.dll - ok
20:54:49.0982 6016 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
20:54:49.0982 6016 C:\Windows\System32\QAGENT.DLL - ok
20:54:49.0998 6016 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
20:54:49.0998 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
20:54:49.0998 6016 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
20:54:49.0998 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
20:54:49.0998 6016 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
20:54:49.0998 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
20:54:50.0014 6016 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
20:54:50.0014 6016 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
20:54:50.0014 6016 [ 75C1CA5B61414748CE9BCF3C7A52C39F ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvclb.dll
20:54:50.0014 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvclb.dll - ok
20:54:50.0029 6016 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
20:54:50.0029 6016 C:\Windows\SysWOW64\ncrypt.dll - ok
20:54:50.0029 6016 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
20:54:50.0029 6016 C:\Windows\SysWOW64\bcrypt.dll - ok
20:54:50.0029 6016 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
20:54:50.0029 6016 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
20:54:50.0045 6016 [ 8A8B277067C22F4BF6AA9A31692FC4D3 ] C:\Windows\SysWOW64\cryptnet.dll
20:54:50.0045 6016 C:\Windows\SysWOW64\cryptnet.dll - ok
20:54:50.0045 6016 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
20:54:50.0045 6016 C:\Windows\SysWOW64\gpapi.dll - ok
20:54:50.0045 6016 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
20:54:50.0045 6016 C:\Windows\SysWOW64\SensApi.dll - ok
20:54:50.0060 6016 [ 1F174A1BF0B7718ECB8D1821AD1D3166 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmagnt.dll
20:54:50.0060 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmagnt.dll - ok
20:54:50.0060 6016 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
20:54:50.0060 6016 C:\Windows\System32\rasmans.dll - ok
20:54:50.0060 6016 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:54:50.0060 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
20:54:50.0076 6016 [ 54E18ADDC60A2054CF99B2E847A6D378 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmcore.dll
20:54:50.0076 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmcore.dll - ok
20:54:50.0076 6016 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
20:54:50.0076 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
20:54:50.0076 6016 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
20:54:50.0076 6016 C:\Windows\System32\rastapi.dll - ok
20:54:50.0092 6016 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
20:54:50.0092 6016 C:\Windows\System32\tapi32.dll - ok
20:54:50.0092 6016 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
20:54:50.0092 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
20:54:50.0107 6016 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
20:54:50.0107 6016 C:\Windows\SysWOW64\mpr.dll - ok
20:54:50.0107 6016 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
20:54:50.0107 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
20:54:50.0107 6016 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
20:54:50.0107 6016 C:\Windows\System32\unimdm.tsp - ok
20:54:50.0123 6016 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
20:54:50.0123 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
20:54:50.0123 6016 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
20:54:50.0123 6016 C:\Windows\System32\hidphone.tsp - ok
20:54:50.0123 6016 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
20:54:50.0123 6016 C:\Windows\System32\kmddsp.tsp - ok
20:54:50.0138 6016 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
20:54:50.0138 6016 C:\Windows\System32\ndptsp.tsp - ok
20:54:50.0138 6016 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
20:54:50.0138 6016 C:\Windows\System32\uniplat.dll - ok
20:54:50.0138 6016 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
20:54:50.0138 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
20:54:50.0154 6016 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
20:54:50.0154 6016 C:\Windows\System32\rasppp.dll - ok
20:54:50.0154 6016 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
20:54:50.0154 6016 C:\Windows\System32\vpnike.dll - ok
20:54:50.0154 6016 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
20:54:50.0154 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
20:54:50.0170 6016 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
20:54:50.0170 6016 C:\Windows\System32\raschap.dll - ok
20:54:50.0170 6016 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
20:54:50.0170 6016 C:\Windows\SysWOW64\winhttp.dll - ok
20:54:50.0170 6016 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
20:54:50.0170 6016 C:\Windows\SysWOW64\webio.dll - ok
20:54:50.0185 6016 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
20:54:50.0185 6016 C:\Windows\SysWOW64\logoncli.dll - ok
20:54:50.0185 6016 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
20:54:50.0185 6016 C:\Windows\System32\ipnathlp.dll - ok
20:54:50.0185 6016 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
20:54:50.0185 6016 C:\Windows\System32\drivers\srv2.sys - ok
20:54:50.0201 6016 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
20:54:50.0201 6016 C:\Windows\SysWOW64\apphelp.dll - ok
20:54:50.0201 6016 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
20:54:50.0201 6016 C:\Windows\System32\drivers\srv.sys - ok
20:54:50.0201 6016 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
20:54:50.0201 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
20:54:50.0216 6016 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
20:54:50.0216 6016 C:\Windows\System32\srvsvc.dll - ok
20:54:50.0216 6016 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
20:54:50.0216 6016 C:\Windows\System32\browser.dll - ok
20:54:50.0232 6016 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
20:54:50.0232 6016 C:\Windows\System32\netmsg.dll - ok
20:54:50.0232 6016 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
20:54:50.0232 6016 C:\Windows\System32\sscore.dll - ok
20:54:50.0232 6016 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
20:54:50.0232 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
20:54:50.0248 6016 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
20:54:50.0248 6016 C:\Windows\System32\clusapi.dll - ok
20:54:50.0248 6016 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
20:54:50.0248 6016 C:\Windows\SysWOW64\propsys.dll - ok
20:54:50.0248 6016 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
20:54:50.0248 6016 C:\Windows\System32\resutils.dll - ok
20:54:50.0263 6016 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
20:54:50.0263 6016 C:\Windows\SysWOW64\fltLib.dll - ok
20:54:50.0263 6016 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
20:54:50.0263 6016 C:\Windows\System32\drivers\Sftredirlh.sys - ok
20:54:50.0263 6016 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
20:54:50.0263 6016 C:\Windows\SysWOW64\mscoree.dll - ok
20:54:50.0279 6016 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
20:54:50.0279 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
20:54:50.0279 6016 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
20:54:50.0279 6016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
20:54:50.0294 6016 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
20:54:50.0294 6016 C:\Windows\SysWOW64\schannel.dll - ok
20:54:50.0294 6016 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
20:54:50.0294 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
20:54:50.0294 6016 [ B3DC4D1658093C1E486CA9F22180BECF ] C:\Windows\SysWOW64\urlmon.dll
20:54:50.0294 6016 C:\Windows\SysWOW64\urlmon.dll - ok
20:54:50.0310 6016 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
20:54:50.0310 6016 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
20:54:50.0310 6016 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
20:54:50.0310 6016 C:\Windows\System32\drivers\fastfat.sys - ok
20:54:50.0310 6016 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
20:54:50.0310 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
20:54:50.0326 6016 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
20:54:50.0326 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
20:54:50.0326 6016 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
20:54:50.0326 6016 C:\Windows\SysWOW64\sfc.dll - ok
20:54:50.0326 6016 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
20:54:50.0326 6016 C:\Windows\SysWOW64\sfc_os.dll - ok
20:54:50.0341 6016 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
20:54:50.0341 6016 C:\Windows\SysWOW64\devrtl.dll - ok
20:54:50.0341 6016 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
20:54:50.0341 6016 C:\Windows\SysWOW64\mswsock.dll - ok
20:54:50.0341 6016 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
20:54:50.0341 6016 C:\Windows\SysWOW64\wship6.dll - ok
20:54:50.0357 6016 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
20:54:50.0357 6016 C:\Windows\SysWOW64\oleacc.dll - ok
20:54:50.0357 6016 [ 6BCBED73231F5D30B92DEE591B6679E9 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CFirewallCOM.dll
20:54:50.0357 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CFirewallCOM.dll - ok
20:54:50.0357 6016 [ B80933A7E3D63277A23F9882BF839DB5 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll
20:54:50.0357 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll - ok
20:54:50.0372 6016 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
20:54:50.0372 6016 C:\Windows\AppPatch\AcLayers.dll - ok
20:54:50.0372 6016 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
20:54:50.0372 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
20:54:50.0388 6016 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
20:54:50.0388 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
20:54:50.0388 6016 [ 0EDAACBC028C1B50A57899E64EE60E9B ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
20:54:50.0388 6016 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
20:54:50.0388 6016 [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
20:54:50.0388 6016 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
20:54:50.0404 6016 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
20:54:50.0404 6016 C:\Windows\SysWOW64\msxml6.dll - ok
20:54:50.0404 6016 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
20:54:50.0404 6016 C:\Windows\SysWOW64\wlanapi.dll - ok
20:54:50.0404 6016 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
20:54:50.0404 6016 C:\Windows\SysWOW64\wlanutil.dll - ok
20:54:50.0419 6016 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
20:54:50.0419 6016 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
20:54:50.0419 6016 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
20:54:50.0419 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
20:54:50.0419 6016 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
20:54:50.0419 6016 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
20:54:50.0435 6016 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
20:54:50.0435 6016 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
20:54:50.0435 6016 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
20:54:50.0435 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
20:54:50.0435 6016 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
20:54:50.0435 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
20:54:50.0450 6016 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
20:54:50.0450 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
20:54:50.0450 6016 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
20:54:50.0450 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
20:54:50.0450 6016 [ DE35EFF35C9EB0B381709CF979537E2A ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmrasv.dll
20:54:50.0450 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmrasv.dll - ok
20:54:50.0466 6016 [ 7F683A346C425ACD4F098BAA7C5792FC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll
20:54:50.0466 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll - ok
20:54:50.0466 6016 [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
20:54:50.0466 6016 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
20:54:50.0482 6016 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
20:54:50.0482 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
20:54:50.0482 6016 [ C6458BF42FD8A9194EA4B2C81AA3B157 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll
20:54:50.0482 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll - ok
20:54:50.0482 6016 [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
20:54:50.0482 6016 C:\Windows\System32\bcdedit.exe - ok
20:54:50.0497 6016 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
20:54:50.0497 6016 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
20:54:50.0497 6016 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
20:54:50.0497 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
20:54:50.0497 6016 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
20:54:50.0497 6016 C:\Windows\System32\dbghelp.dll - ok
20:54:50.0513 6016 [ 1290853C52D8BD47683FED043D79BC21 ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
20:54:50.0513 6016 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
20:54:50.0513 6016 [ B7A68C8F0EA038CB13E7B99AF9CDE513 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll
20:54:50.0513 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll - ok
20:54:50.0513 6016 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
20:54:50.0513 6016 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
20:54:50.0528 6016 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
20:54:50.0528 6016 C:\Windows\SysWOW64\mstask.dll - ok
20:54:50.0528 6016 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
20:54:50.0528 6016 C:\Windows\System32\browcli.dll - ok
20:54:50.0528 6016 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
20:54:50.0528 6016 C:\Windows\System32\schedcli.dll - ok
20:54:50.0544 6016 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
20:54:50.0544 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
20:54:50.0544 6016 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
20:54:50.0544 6016 C:\Windows\SysWOW64\credui.dll - ok
20:54:50.0544 6016 [ 88DC26C8BC98DFF1B55985E25DF53262 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll
20:54:50.0544 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll - ok
20:54:50.0560 6016 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
20:54:50.0560 6016 C:\Windows\SysWOW64\hlink.dll - ok
20:54:50.0560 6016 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
20:54:50.0560 6016 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
20:54:50.0575 6016 [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
20:54:50.0575 6016 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
20:54:50.0575 6016 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
20:54:50.0575 6016 C:\Windows\SysWOW64\msv1_0.dll - ok
20:54:50.0575 6016 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
20:54:50.0575 6016 C:\Windows\SysWOW64\cryptdll.dll - ok
20:54:50.0591 6016 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
20:54:50.0591 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
20:54:50.0591 6016 [ 05920BD009621D06722A1CD339DA6481 ] C:\Windows\SysWOW64\mshtml.dll
20:54:50.0591 6016 C:\Windows\SysWOW64\mshtml.dll - ok
20:54:50.0591 6016 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
20:54:50.0591 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
20:54:50.0606 6016 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
20:54:50.0606 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
20:54:50.0606 6016 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
20:54:50.0606 6016 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
20:54:50.0606 6016 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
20:54:50.0606 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
20:54:50.0622 6016 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
20:54:50.0622 6016 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
20:54:50.0622 6016 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
20:54:50.0622 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
20:54:50.0638 6016 [ A03D7386471501CAAB38D47337778D8C ] C:\Windows\System32\dleasm.dll
20:54:50.0638 6016 C:\Windows\System32\dleasm.dll - ok
20:54:50.0638 6016 [ C78973AD87FE43D6016D8AB98821ADA3 ] C:\Windows\System32\dleasmr.dll
20:54:50.0638 6016 C:\Windows\System32\dleasmr.dll - ok
20:54:50.0638 6016 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
20:54:50.0638 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
20:54:50.0653 6016 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
20:54:50.0653 6016 C:\Windows\SysWOW64\d3d9.dll - ok
20:54:50.0653 6016 [ 3E130FA0D5289C8812021FF57F3851F5 ] C:\Program Files\Internet Explorer\sqmapi.dll
20:54:50.0653 6016 C:\Program Files\Internet Explorer\sqmapi.dll - ok
20:54:50.0653 6016 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
20:54:50.0653 6016 C:\Windows\SysWOW64\d3d8thk.dll - ok
20:54:50.0653 6016 [ BA38C50F523DC053488AC3F9EF99AA0B ] C:\Windows\SysWOW64\igdumdx32.dll
20:54:50.0653 6016 C:\Windows\SysWOW64\igdumdx32.dll - ok
20:54:50.0669 6016 [ 10AB9C9ADB89816BEFB077E72659D029 ] C:\Windows\SysWOW64\igdumd32.dll
20:54:50.0669 6016 C:\Windows\SysWOW64\igdumd32.dll - ok
20:54:50.0669 6016 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
20:54:50.0669 6016 C:\Windows\SysWOW64\powrprof.dll - ok
20:54:50.0684 6016 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
20:54:50.0684 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
20:54:50.0684 6016 [ 8D17F8532958E0AC4A32B0E7E3C94EF2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll
20:54:50.0684 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll - ok
20:54:50.0684 6016 [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
20:54:50.0684 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
20:54:50.0700 6016 [ 5B2E4E90C04FB9AE9F2C5E99FF59B283 ] C:\Windows\SysWOW64\WindowsCodecs.dll
20:54:50.0700 6016 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
20:54:50.0700 6016 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
20:54:50.0700 6016 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
20:54:50.0700 6016 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
20:54:50.0700 6016 C:\Windows\SysWOW64\taskschd.dll - ok
20:54:50.0716 6016 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
20:54:50.0716 6016 C:\Windows\SysWOW64\xmllite.dll - ok
20:54:50.0716 6016 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
20:54:50.0716 6016 C:\Windows\SysWOW64\netprofm.dll - ok
20:54:50.0716 6016 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
20:54:50.0716 6016 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
20:54:50.0731 6016 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
20:54:50.0731 6016 C:\Windows\SysWOW64\nlaapi.dll - ok
20:54:50.0731 6016 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
20:54:50.0731 6016 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
20:54:50.0731 6016 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
20:54:50.0731 6016 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
20:54:50.0747 6016 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
20:54:50.0747 6016 C:\Windows\SysWOW64\rasadhlp.dll - ok
20:54:50.0747 6016 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
20:54:50.0747 6016 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
20:54:50.0747 6016 [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\SysWOW64\netcfgx.dll
20:54:50.0747 6016 C:\Windows\SysWOW64\netcfgx.dll - ok
20:54:50.0762 6016 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
20:54:50.0762 6016 C:\Windows\SysWOW64\slc.dll - ok
20:54:50.0762 6016 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
20:54:50.0762 6016 C:\Windows\SysWOW64\SPInf.dll - ok
20:54:50.0762 6016 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
20:54:50.0762 6016 C:\Windows\System32\FXSRESM.dll - ok
20:54:50.0778 6016 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
20:54:50.0778 6016 C:\Windows\System32\appinfo.dll - ok
20:54:50.0778 6016 [ C6E15F2F95F9C0A6098D43510B604E52 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
20:54:50.0778 6016 C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
20:54:50.0794 6016 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
20:54:50.0794 6016 C:\Windows\System32\npmproxy.dll - ok
20:54:50.0794 6016 [ 6BF27D309C6077F1E8A7747B49F7B17F ] C:\Program Files\Microsoft Security Client\NisLog.dll
20:54:50.0794 6016 C:\Program Files\Microsoft Security Client\NisLog.dll - ok
20:54:50.0794 6016 [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll
20:54:50.0794 6016 C:\Windows\System32\psbase.dll - ok
20:54:50.0809 6016 [ 35BA5AA671887FE8A62B88A9A6229FD5 ] C:\Windows\System32\pstorsvc.dll
20:54:50.0809 6016 C:\Windows\System32\pstorsvc.dll - ok
20:54:50.0809 6016 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
20:54:50.0809 6016 C:\Windows\System32\diagperf.dll - ok
20:54:50.0809 6016 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
20:54:50.0809 6016 C:\Windows\System32\wpdbusenum.dll - ok
20:54:50.0825 6016 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
20:54:50.0825 6016 C:\Windows\System32\aelupsvc.dll - ok
20:54:50.0825 6016 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
20:54:50.0825 6016 C:\Windows\System32\perftrack.dll - ok
20:54:50.0825 6016 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
20:54:50.0825 6016 C:\Windows\System32\IPSECSVC.DLL - ok
20:54:50.0840 6016 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
20:54:50.0840 6016 C:\Windows\System32\PortableDeviceApi.dll - ok
20:54:50.0840 6016 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
20:54:50.0840 6016 C:\Windows\System32\FwRemoteSvr.dll - ok
20:54:50.0840 6016 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
20:54:50.0840 6016 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
20:54:50.0856 6016 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
20:54:50.0856 6016 C:\Windows\System32\drivers\WUDFRd.sys - ok
20:54:50.0856 6016 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
20:54:50.0856 6016 C:\Windows\System32\Apphlpdm.dll - ok
20:54:50.0856 6016 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
20:54:50.0856 6016 C:\Windows\System32\pnpts.dll - ok
20:54:50.0872 6016 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
20:54:50.0872 6016 C:\Windows\System32\radardt.dll - ok
20:54:50.0872 6016 [ CA6F123DF6049E56B924FB19DEF569AC ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{435B02EC-2451-4245-98C3-F96BCDF9F3EC}\gapaengine.dll
20:54:50.0872 6016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{435B02EC-2451-4245-98C3-F96BCDF9F3EC}\gapaengine.dll - ok
20:54:50.0887 6016 [ 2F50B262AF349C3B6F8D659C15241E26 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{435B02EC-2451-4245-98C3-F96BCDF9F3EC}\nisfull.vdm
20:54:50.0887 6016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{435B02EC-2451-4245-98C3-F96BCDF9F3EC}\nisfull.vdm - ok
20:54:50.0887 6016 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
20:54:50.0887 6016 C:\Windows\System32\dimsjob.dll - ok
20:54:50.0887 6016 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
20:54:50.0887 6016 C:\Windows\System32\runonce.exe - ok
20:54:50.0903 6016 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
20:54:50.0903 6016 C:\Program Files\Windows Defender\MpClient.dll - ok
20:54:50.0903 6016 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
20:54:50.0903 6016 C:\Windows\System32\pautoenr.dll - ok
20:54:50.0903 6016 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
20:54:50.0903 6016 C:\Windows\System32\CertEnroll.dll - ok
20:54:50.0918 6016 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
20:54:50.0918 6016 C:\Windows\System32\drivers\WUDFPf.sys - ok
20:54:50.0918 6016 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
20:54:50.0918 6016 C:\Windows\System32\WUDFPlatform.dll - ok
20:54:50.0918 6016 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
20:54:50.0918 6016 C:\Windows\System32\WUDFSvc.dll - ok
20:54:50.0934 6016 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
20:54:50.0934 6016 C:\Windows\SysWOW64\runonce.exe - ok
20:54:50.0934 6016 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
20:54:50.0934 6016 C:\Windows\System32\WUDFHost.exe - ok
20:54:50.0934 6016 [ D66E000EF14A2F45EC7F350A21994A12 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll
20:54:50.0934 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll - ok
20:54:50.0950 6016 [ 660C8E78B94F483E44B0243A774A4746 ] C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
20:54:50.0950 6016 C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL - ok
20:54:50.0950 6016 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
20:54:50.0950 6016 C:\Windows\System32\WUDFx.dll - ok
20:54:50.0950 6016 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
20:54:50.0950 6016 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
20:54:50.0965 6016 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
20:54:50.0965 6016 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
20:54:50.0965 6016 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
20:54:50.0965 6016 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF - ok
20:54:50.0981 6016 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
20:54:50.0981 6016 C:\Windows\System32\WMVCORE.DLL - ok
20:54:50.0981 6016 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
20:54:50.0981 6016 C:\Windows\System32\WMASF.DLL - ok
20:54:50.0981 6016 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
20:54:50.0981 6016 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
20:54:50.0996 6016 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
20:54:50.0996 6016 C:\Windows\System32\PortableDeviceTypes.dll - ok
20:54:50.0996 6016 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
20:54:50.0996 6016 C:\Windows\SysWOW64\cmd.exe - ok
20:54:50.0996 6016 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
20:54:50.0996 6016 C:\Windows\System32\wdiasqmmodule.dll - ok
20:54:51.0012 6016 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
20:54:51.0012 6016 C:\Windows\SysWOW64\winbrand.dll - ok
20:54:51.0012 6016 [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
20:54:51.0012 6016 C:\Windows\SysWOW64\shdocvw.dll - ok
20:54:51.0012 6016 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Higgins\AppData\Local\Temp\17417408-849E-4C34-9722-2886D96B9B19.exe
20:54:51.0028 6016 C:\Users\Higgins\AppData\Local\Temp\17417408-849E-4C34-9722-2886D96B9B19.exe - ok
20:54:51.0028 6016 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
20:54:51.0028 6016 C:\Windows\SysWOW64\EhStorShell.dll - ok
20:54:51.0028 6016 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MICROS~1\Office14\1033\GrooveIntlResource.dll
20:54:51.0028 6016 C:\PROGRA~2\MICROS~1\Office14\1033\GrooveIntlResource.dll - ok
20:54:51.0043 6016 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
20:54:51.0043 6016 C:\Windows\SysWOW64\ntshrui.dll - ok
20:54:51.0043 6016 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
20:54:51.0043 6016 C:\Windows\SysWOW64\imageres.dll - ok
20:54:51.0043 6016 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
20:54:51.0043 6016 C:\Windows\System32\timedate.cpl - ok
20:54:51.0059 6016 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
20:54:51.0059 6016 C:\Windows\System32\actxprxy.dll - ok
20:54:51.0059 6016 [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
20:54:51.0059 6016 C:\Windows\System32\shdocvw.dll - ok
20:54:51.0059 6016 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
20:54:51.0059 6016 C:\Windows\System32\linkinfo.dll - ok
20:54:51.0074 6016 [ 774C18BA997F40DA7F5A9A4AF822F49C ] C:\Program Files\Internet Explorer\iexplore.exe
20:54:51.0074 6016 C:\Program Files\Internet Explorer\iexplore.exe - ok
20:54:51.0074 6016 [ C3582AABFFAAA082138FC069F8B49A27 ] C:\Program Files\Sandboxie\Start.exe
20:54:51.0074 6016 C:\Program Files\Sandboxie\Start.exe - ok
20:54:51.0074 6016 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
20:54:51.0074 6016 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
20:54:51.0090 6016 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
20:54:51.0090 6016 C:\Windows\System32\gameux.dll - ok
20:54:51.0090 6016 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
20:54:51.0090 6016 C:\Windows\System32\msftedit.dll - ok
20:54:51.0090 6016 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
20:54:51.0090 6016 C:\Windows\System32\msls31.dll - ok
20:54:51.0106 6016 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
20:54:51.0106 6016 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
20:54:51.0106 6016 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
20:54:51.0106 6016 C:\Windows\System32\msi.dll - ok
20:54:51.0121 6016 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
20:54:51.0121 6016 C:\Windows\System32\msiltcfg.dll - ok
20:54:51.0121 6016 [ 307C54B0DA2E3705943E62C754D305BA ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
20:54:51.0121 6016 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
20:54:51.0121 6016 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
20:54:51.0121 6016 C:\Windows\System32\DeviceCenter.dll - ok
20:54:51.0137 6016 [ BBD351CB2E5455F0E96FE4460EC05F52 ] C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\wordicon.exe
20:54:51.0137 6016 C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\wordicon.exe - ok
20:54:51.0137 6016 [ 2809F6A69068C6C56860E6B8B8DB4AFB ] C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\xlicons.exe
20:54:51.0137 6016 C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\xlicons.exe - ok
20:54:51.0137 6016 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
20:54:51.0137 6016 C:\Windows\System32\dsound.dll - ok
20:54:51.0152 6016 [ 2DFC55060450E8661CA12040CB54FFA1 ] C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pptico.exe
20:54:51.0152 6016 C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pptico.exe - ok
20:54:51.0152 6016 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
20:54:51.0152 6016 C:\Windows\System32\msimg32.dll - ok
20:54:51.0152 6016 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
20:54:51.0152 6016 C:\Windows\System32\oledlg.dll - ok
20:54:51.0168 6016 [ 537144D58C555215B9A9AC110CD243C1 ] C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pubs.exe
20:54:51.0168 6016 C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\pubs.exe - ok
20:54:51.0168 6016 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
20:54:51.0168 6016 C:\Windows\System32\AudioSes.dll - ok
20:54:51.0184 6016 [ 310BF2973A951EC302ED8F8E9B3AF056 ] C:\Windows\System32\RtkCfg64.dll
20:54:51.0184 6016 C:\Windows\System32\RtkCfg64.dll - ok
20:54:51.0184 6016 [ AB2F2F56064E8AA8634C790956860A3D ] C:\Windows\System32\ieframe.dll
20:54:51.0184 6016 C:\Windows\System32\ieframe.dll - ok
20:54:51.0184 6016 [ C9401FB29338B1ADD52FD0DF28F5E57E ] C:\Program Files (x86)\Dell V310-V510 Series\dleamon.exe
20:54:51.0184 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleamon.exe - ok
20:54:51.0184 6016 [ BBAEA44775912F5929F5EC0083A11380 ] C:\Windows\System32\RtkAPO64.dll
20:54:51.0184 6016 C:\Windows\System32\RtkAPO64.dll - ok
20:54:51.0199 6016 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
20:54:51.0199 6016 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
20:54:51.0199 6016 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
20:54:51.0199 6016 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
20:54:51.0215 6016 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
20:54:51.0215 6016 C:\Windows\System32\networkexplorer.dll - ok
20:54:51.0215 6016 [ 5A183BEF69E243A2E481D559FEC7F7BC ] C:\Program Files (x86)\Dell V310-V510 Series\DLEAcfg.dll
20:54:51.0215 6016 C:\Program Files (x86)\Dell V310-V510 Series\DLEAcfg.dll - ok
20:54:51.0215 6016 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\83315079.sys
20:54:51.0215 6016 C:\Windows\System32\drivers\83315079.sys - ok
20:54:51.0230 6016 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
20:54:51.0230 6016 C:\Windows\System32\drprov.dll - ok
20:54:51.0230 6016 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
20:54:51.0230 6016 C:\Windows\System32\ntlanman.dll - ok
20:54:51.0230 6016 [ 2317588DA43635E4ACBE58AA91AFF152 ] C:\Program Files (x86)\Dell V310-V510 Series\dleadatr.dll
20:54:51.0230 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleadatr.dll - ok
20:54:51.0246 6016 [ F40FF25FFCE5BD187EA33BD9395BCC05 ] C:\Program Files (x86)\Dell V310-V510 Series\dleascw.dll
20:54:51.0246 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleascw.dll - ok
20:54:51.0246 6016 [ F643EB5793DC85D37429D4F4EE967ED6 ] C:\Program Files (x86)\Dell V310-V510 Series\dleacomx.dll
20:54:51.0246 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleacomx.dll - ok
20:54:51.0262 6016 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
20:54:51.0262 6016 C:\Windows\System32\thumbcache.dll - ok
20:54:51.0262 6016 [ C5A841F80521481A0F06BF3B385930BC ] C:\Program Files (x86)\Dell V310-V510 Series\dleadrs.dll
20:54:51.0262 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleadrs.dll - ok
20:54:51.0277 6016 [ CC3570CC65AABBAB1801AB9E75F02FC3 ] C:\Program Files (x86)\Dell V310-V510 Series\dleacaps.dll
20:54:51.0277 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleacaps.dll - ok
20:54:51.0277 6016 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
20:54:51.0277 6016 C:\Windows\System32\davclnt.dll - ok
20:54:51.0277 6016 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
20:54:51.0277 6016 C:\Windows\System32\davhlpr.dll - ok
20:54:51.0293 6016 [ BA210B3E2FDCEFFD800FA3625F5E0AA9 ] C:\Program Files (x86)\Dell V310-V510 Series\dleacnv4.dll
20:54:51.0293 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleacnv4.dll - ok
20:54:51.0293 6016 [ AF04A0DB082C207CAEE179AD06173355 ] C:\Program Files (x86)\Pure Networks\Network Magic\amd64\nmspce2.dll
20:54:51.0293 6016 C:\Program Files (x86)\Pure Networks\Network Magic\amd64\nmspce2.dll - ok
20:54:51.0308 6016 [ 0F544B46F9966F29D05E0F998297C7E7 ] C:\Program Files (x86)\Dell V310-V510 Series\dleacomc.dll
20:54:51.0308 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleacomc.dll - ok
20:54:51.0308 6016 [ 1454EF54C3B92FC2636DE1D421A119E7 ] C:\Program Files (x86)\Pure Networks\Network Magic\nmrsrc.dll
20:54:51.0308 6016 C:\Program Files (x86)\Pure Networks\Network Magic\nmrsrc.dll - ok
20:54:51.0308 6016 [ 5BE6CF614B3E100EF1E91ADCC5094E11 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll
20:54:51.0308 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll - ok
20:54:51.0324 6016 [ 046E4103ED25BECC0F010BD27A24F407 ] C:\Program Files (x86)\Dell V310-V510 Series\dleamonr.dll
20:54:51.0324 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleamonr.dll - ok
20:54:51.0324 6016 [ E01A3A0B77F1C01F0C1289AC29114AEE ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\11.2.09195.1.nmcorePS.dll
20:54:51.0324 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\11.2.09195.1.nmcorePS.dll - ok
20:54:51.0340 6016 [ 36D8E551AD09ED43947CB9AD50EEEBA1 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\11.2.09195.1.nmcorePS.dll
20:54:51.0340 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\11.2.09195.1.nmcorePS.dll - ok
20:54:51.0340 6016 [ 68422130F843A88B4D4BDD40493D5E0B ] C:\Windows\SysWOW64\DLEAsm.dll
20:54:51.0340 6016 C:\Windows\SysWOW64\DLEAsm.dll - ok
20:54:51.0355 6016 [ C78973AD87FE43D6016D8AB98821ADA3 ] C:\Windows\SysWOW64\DLEAsmr.dll
20:54:51.0355 6016 C:\Windows\SysWOW64\DLEAsmr.dll - ok
20:54:51.0355 6016 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
20:54:51.0355 6016 C:\Windows\System32\wdmaud.drv - ok
20:54:51.0355 6016 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
20:54:51.0355 6016 C:\Windows\System32\ksuser.dll - ok
20:54:51.0371 6016 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
20:54:51.0371 6016 C:\Windows\System32\midimap.dll - ok
20:54:51.0371 6016 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
20:54:51.0371 6016 C:\Windows\System32\msacm32.dll - ok
20:54:51.0371 6016 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
20:54:51.0371 6016 C:\Windows\System32\msacm32.drv - ok
20:54:51.0386 6016 [ B69A01794D44C769C2575AE75E2EB31F ] C:\Windows\System32\igfxpers.exe
20:54:51.0386 6016 C:\Windows\System32\igfxpers.exe - ok
20:54:51.0386 6016 [ 0BBFE08ECCE8A209D07C3B68D63FC293 ] C:\Windows\System32\igfxtray.exe
20:54:51.0386 6016 C:\Windows\System32\igfxtray.exe - ok
20:54:51.0402 6016 [ A20B8311DA5A7D7EEDCD8C613ABDEB40 ] C:\Program Files\Sandboxie\SbieCtrl.exe
20:54:51.0402 6016 C:\Program Files\Sandboxie\SbieCtrl.exe - ok
20:54:51.0402 6016 [ 9AD9DA389968FCF580E77EA44185FD39 ] C:\Program Files (x86)\Dell V310-V510 Series\ezprint.exe
20:54:51.0402 6016 C:\Program Files (x86)\Dell V310-V510 Series\ezprint.exe - ok
20:54:51.0418 6016 [ 3911917B93DD9023DAA8258147AA7BCF ] C:\Program Files\Microsoft Security Client\msseces.exe
20:54:51.0418 6016 C:\Program Files\Microsoft Security Client\msseces.exe - ok
20:54:51.0418 6016 [ 05EA520BFB1D3085CB12A4355598081D ] C:\Windows\System32\hccutils.dll
20:54:51.0418 6016 C:\Windows\System32\hccutils.dll - ok
20:54:51.0418 6016 [ 2F16207A65B62001FC73E6798D0B8F2A ] C:\Windows\System32\hkcmd.exe
20:54:51.0418 6016 C:\Windows\System32\hkcmd.exe - ok
20:54:51.0433 6016 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
20:54:51.0433 6016 C:\Windows\System32\AudioEng.dll - ok
20:54:51.0433 6016 [ D890EDDD0528E04049C9D524FBA1C506 ] C:\Windows\System32\igfxsrvc.exe
20:54:51.0433 6016 C:\Windows\System32\igfxsrvc.exe - ok
20:54:51.0433 6016 [ C7391769FCD6E04196EE8CA831E2C7E8 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
20:54:51.0433 6016 C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe - ok
20:54:51.0449 6016 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
20:54:51.0449 6016 C:\Windows\System32\AUDIOKSE.dll - ok
20:54:51.0449 6016 [ E877D921A20E311F0627A48EEFAB1849 ] C:\Windows\System32\MBWrp64.dll
20:54:51.0449 6016 C:\Windows\System32\MBWrp64.dll - ok
20:54:51.0449 6016 [ A1D91A4C75AD34849DF223B8D11E4D59 ] C:\Windows\System32\MBTHX64.dll
20:54:51.0449 6016 C:\Windows\System32\MBTHX64.dll - ok
20:54:51.0464 6016 [ 19EACF9F606AD724B3D871475714AE3D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices_main.dll
20:54:51.0464 6016 C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices_main.dll - ok
20:54:51.0464 6016 [ 9FA8752358E1F6C5C7DBC48F3B025F2F ] C:\Windows\System32\MBAPO64.dll
20:54:51.0464 6016 C:\Windows\System32\MBAPO64.dll - ok
20:54:51.0480 6016 [ F6E33B49AAF9E8FEB4E4B07C34F38C4B ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll
20:54:51.0480 6016 C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll - ok
20:54:51.0480 6016 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
20:54:51.0480 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
20:54:51.0496 6016 [ 31A6D4B8803CCBA44271F05E08C4955A ] C:\Windows\System32\igfxsrvc.dll
20:54:51.0496 6016 C:\Windows\System32\igfxsrvc.dll - ok
20:54:51.0496 6016 [ F51059EE3C543CB364A069CAFB252031 ] C:\Windows\System32\igfxdev.dll
20:54:51.0496 6016 C:\Windows\System32\igfxdev.dll - ok
20:54:51.0496 6016 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
20:54:51.0496 6016 C:\Windows\System32\WMALFXGFXDSP.dll - ok
20:54:51.0511 6016 [ A905E156A7D52B55892C3255670FE97B ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
20:54:51.0511 6016 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
20:54:51.0511 6016 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
20:54:51.0511 6016 C:\Windows\System32\mfplat.dll - ok
20:54:51.0527 6016 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\SqmApi.dll
20:54:51.0527 6016 C:\Program Files\Microsoft Security Client\SqmApi.dll - ok
20:54:51.0527 6016 [ 25107F58D1B8F60D67D1EE95798C0DE8 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
20:54:51.0527 6016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
20:54:51.0542 6016 [ 7F2691FD961C9A704DA221745CCE6295 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
20:54:51.0542 6016 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok
20:54:51.0542 6016 [ EBE1962DC5EEFC13D20543013A891ABC ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
20:54:51.0542 6016 C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe - ok
20:54:51.0542 6016 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
20:54:51.0542 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
20:54:51.0558 6016 [ 73BFDC88C6EF9715CDF57134A438837A ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
20:54:51.0558 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe - ok
20:54:51.0558 6016 [ 352C7C2470C03AFD41889236D849D75C ] C:\Windows\System32\igfxrenu.lrc
20:54:51.0558 6016 C:\Windows\System32\igfxrenu.lrc - ok
20:54:51.0558 6016 [ 45D2E47073134976D2F1DD4BF8582B14 ] C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
20:54:51.0558 6016 C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe - ok
20:54:51.0574 6016 [ D63797E8E7781EE1500A810CB6194FA6 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
20:54:51.0574 6016 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
20:54:51.0574 6016 [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
20:54:51.0574 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
20:54:51.0589 6016 [ C7F22545C0C424265E57AA1D220090C6 ] C:\Windows\System32\igfxress.dll
20:54:51.0589 6016 C:\Windows\System32\igfxress.dll - ok
20:54:51.0589 6016 [ 2234C900D762B73F15DF017467BA5A86 ] C:\Program Files (x86)\Pure Networks\Network Magic\nmapplb.dll
20:54:51.0589 6016 C:\Program Files (x86)\Pure Networks\Network Magic\nmapplb.dll - ok
20:54:51.0589 6016 [ 249A0B6C55703FB7FE34CFD8ACDD00AE ] C:\Program Files (x86)\Dell V310-V510 Series\epwizard.dll
20:54:51.0589 6016 C:\Program Files (x86)\Dell V310-V510 Series\epwizard.dll - ok
20:54:51.0605 6016 [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
20:54:51.0605 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
20:54:51.0605 6016 [ 885A88C268C23618AFB937F1ECE56A20 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
20:54:51.0605 6016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
20:54:51.0605 6016 [ 224578E2F25E0FD4B3B7DB1C6DF235E2 ] C:\Program Files (x86)\Dell V310-V510 Series\customui.dll
20:54:51.0605 6016 C:\Program Files (x86)\Dell V310-V510 Series\customui.dll - ok
20:54:51.0620 6016 [ C490E31E7F1006E1DA62C5021C56E165 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\f7cb3ae5de64f8cbde3ccc57c780743a\IAStorUtil.ni.dll
20:54:51.0620 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\f7cb3ae5de64f8cbde3ccc57c780743a\IAStorUtil.ni.dll - ok
20:54:51.0620 6016 [ 2A5566592FD8B23CB4B2663067C21F6E ] C:\Program Files (x86)\Dell V310-V510 Series\eputil.dll
20:54:51.0620 6016 C:\Program Files (x86)\Dell V310-V510 Series\eputil.dll - ok
20:54:51.0636 6016 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
20:54:51.0636 6016 C:\Windows\SysWOW64\shfolder.dll - ok
20:54:51.0636 6016 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
20:54:51.0636 6016 C:\Windows\SysWOW64\mfc42.dll - ok
20:54:51.0636 6016 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
20:54:51.0636 6016 C:\Windows\SysWOW64\odbc32.dll - ok
20:54:51.0652 6016 [ 130203D3313A0323DC333B941C3AA87A ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll
20:54:51.0652 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll - ok
20:54:51.0652 6016 [ 79E76DFB12DE84A5DC3F677F6DF172E5 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxthl.dll
20:54:51.0652 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxthl.dll - ok
20:54:51.0667 6016 [ E2D1853679F5BCCDB9100D02AE8A0444 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll
20:54:51.0667 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll - ok
20:54:51.0667 6016 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
20:54:51.0667 6016 C:\Windows\System32\stobject.dll - ok
20:54:51.0683 6016 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
20:54:51.0683 6016 C:\Windows\System32\batmeter.dll - ok
20:54:51.0683 6016 [ A20F745D153D28390021BA5AB1983675 ] C:\Program Files (x86)\Dell V310-V510 Series\imagutil.dll
20:54:51.0683 6016 C:\Program Files (x86)\Dell V310-V510 Series\imagutil.dll - ok
20:54:51.0683 6016 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
20:54:51.0683 6016 C:\Windows\SysWOW64\samcli.dll - ok
20:54:51.0698 6016 [ FECC6977944FC212772173C86AA9B0C0 ] C:\Program Files (x86)\Dell V310-V510 Series\ltwvc215u.dll
20:54:51.0698 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltwvc215u.dll - ok
20:54:51.0698 6016 [ 3687E37869B69040657E0CE3F5DB58AA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll
20:54:51.0698 6016 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll - ok
20:54:51.0714 6016 [ A2CB714DCF8F0E134F2429AF673C7C08 ] C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
20:54:51.0714 6016 C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe - ok
20:54:51.0714 6016 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
20:54:51.0714 6016 C:\Windows\System32\prnfldr.dll - ok
20:54:51.0714 6016 [ D960AB4131A0568ED12C6BCEDA95F618 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxt.dll
20:54:51.0714 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxt.dll - ok
20:54:51.0730 6016 [ 75DE43A4302967C786A0DA65C649F1A0 ] C:\Program Files (x86)\Dell V310-V510 Series\ltkrn15u.dll
20:54:51.0730 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltkrn15u.dll - ok
20:54:51.0730 6016 [ 75838AB28CC1318345DA62B6C339068C ] C:\Windows\System32\GfxUI.exe
20:54:51.0730 6016 C:\Windows\System32\GfxUI.exe - ok
20:54:51.0745 6016 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\SysWOW64\shsvcs.dll
20:54:51.0745 6016 C:\Windows\SysWOW64\shsvcs.dll - ok
20:54:51.0745 6016 [ A8CE1A7F0C761573047235395C3FB088 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
20:54:51.0745 6016 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
20:54:51.0761 6016 [ 80505248EBD079CB692FC2FF0BF5D754 ] C:\Program Files (x86)\Dell V310-V510 Series\ltdis15u.dll
20:54:51.0761 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltdis15u.dll - ok
20:54:51.0761 6016 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
20:54:51.0761 6016 C:\Windows\SysWOW64\sxs.dll - ok
20:54:51.0761 6016 [ 44491323891EE2CDEDD31E96449B9E78 ] C:\Program Files (x86)\Dell V310-V510 Series\ltfil15u.dll
20:54:51.0761 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltfil15u.dll - ok
20:54:51.0776 6016 [ 5EFB30F030B913DAAE7218B5815EBE54 ] C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll
20:54:51.0776 6016 C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll - ok
20:54:51.0776 6016 [ 3271A2285738336D273CB0E850C4F9CC ] C:\Program Files (x86)\Dell V310-V510 Series\ltimgclr15u.dll
20:54:51.0776 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltimgclr15u.dll - ok
20:54:51.0776 6016 [ F273D5F339F528A7B0C000F1AB82EA34 ] C:\Program Files (x86)\Real\RealPlayer\realjbox.exe
20:54:51.0776 6016 C:\Program Files (x86)\Real\RealPlayer\realjbox.exe - ok
20:54:51.0792 6016 [ 56D1D4BA99D1A18CDFE35D65F1752B52 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
20:54:51.0792 6016 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
20:54:51.0792 6016 [ D1514E24D2CE523F3D4DEAFDEC50DE9F ] C:\Program Files (x86)\Dell V310-V510 Series\ltimgutl15u.dll
20:54:51.0792 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltimgutl15u.dll - ok
20:54:51.0808 6016 [ A29C926672E80CCBA154CEE7C46261BF ] C:\Program Files (x86)\Dell V310-V510 Series\epfunct.dll
20:54:51.0808 6016 C:\Program Files (x86)\Dell V310-V510 Series\epfunct.dll - ok
20:54:51.0808 6016 [ CF514CE8A21808ABD84CE8F307B02BDD ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\11.2.09195.1.nmctxtPS.dll
20:54:51.0808 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\11.2.09195.1.nmctxtPS.dll - ok
20:54:51.0823 6016 [ A7A34AEC90170D81A5B9DA8EBA140060 ] C:\Users\Higgins\Desktop\RogueKillerX64.exe
20:54:51.0823 6016 C:\Users\Higgins\Desktop\RogueKillerX64.exe - ok
20:54:51.0823 6016 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
20:54:51.0823 6016 C:\Windows\SysWOW64\odbcint.dll - ok
20:54:51.0823 6016 [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
20:54:51.0823 6016 C:\Windows\System32\consent.exe - ok
20:54:51.0839 6016 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
20:54:51.0839 6016 C:\Windows\System32\mscoree.dll - ok
20:54:51.0839 6016 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
20:54:51.0839 6016 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
20:54:51.0854 6016 [ 00D82D3AC6B915C76BF7D19072077A9B ] C:\Program Files (x86)\Dell V310-V510 Series\epwizres.dll
20:54:51.0854 6016 C:\Program Files (x86)\Dell V310-V510 Series\epwizres.dll - ok
20:54:51.0854 6016 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
20:54:51.0854 6016 C:\Windows\SysWOW64\samlib.dll - ok
20:54:51.0854 6016 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
20:54:51.0854 6016 C:\Windows\SysWOW64\FirewallAPI.dll - ok
20:54:51.0870 6016 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
20:54:51.0870 6016 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
20:54:51.0870 6016 [ 0FAAD1CD3A19843EBDE3026A8BF323C2 ] C:\Program Files (x86)\Dell V310-V510 Series\epstring.dll
20:54:51.0870 6016 C:\Program Files (x86)\Dell V310-V510 Series\epstring.dll - ok
20:54:51.0886 6016 [ 78EE9F0922EB666DCF00A8A92DCA6FDA ] C:\Program Files (x86)\Dell V310-V510 Series\epoemdll.dll
20:54:51.0886 6016 C:\Program Files (x86)\Dell V310-V510 Series\epoemdll.dll - ok
20:54:51.0886 6016 [ 5BF0BFDA62DD7A3A512F09A9EE31E8BB ] C:\Program Files (x86)\Dell V310-V510 Series\ltimgcor15u.dll
20:54:51.0886 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltimgcor15u.dll - ok
20:54:51.0901 6016 [ 9CECDDA4EDD0D37499B862DC14C1B65C ] C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll
20:54:51.0901 6016 C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll - ok
20:54:51.0901 6016 [ 695C32D334146AD25A2E6305DD3175A2 ] C:\Program Files (x86)\Dell V310-V510 Series\ltimgsfx15u.dll
20:54:51.0901 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltimgsfx15u.dll - ok
20:54:51.0901 6016 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
20:54:51.0901 6016 C:\Windows\System32\fdProxy.dll - ok
20:54:51.0917 6016 [ CD9704754C0160EEB636BF3E340CAB9A ] C:\Program Files (x86)\Dell V310-V510 Series\ltimgefx15u.dll
20:54:51.0917 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltimgefx15u.dll - ok
20:54:51.0917 6016 [ 8EDACE1D540666E2909DBBDA5E07B40E ] C:\Program Files (x86)\Dell V310-V510 Series\ltefx15u.dll
20:54:51.0917 6016 C:\Program Files (x86)\Dell V310-V510 Series\ltefx15u.dll - ok
20:54:51.0932 6016 [ 8BA16887C3E15F735D81F6470EB3C49F ] C:\Program Files (x86)\Dell V310-V510 Series\iptk.dll
20:54:51.0932 6016 C:\Program Files (x86)\Dell V310-V510 Series\iptk.dll - ok
20:54:51.0932 6016 [ C10D6A7784E12BF0BE4799F675F614C2 ] C:\Program Files (x86)\Dell V310-V510 Series\pdflib.dll
20:54:51.0932 6016 C:\Program Files (x86)\Dell V310-V510 Series\pdflib.dll - ok
20:54:51.0932 6016 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
20:54:51.0932 6016 C:\Windows\System32\DXP.dll - ok
20:54:51.0948 6016 [ 8BC7F8F0B7AE856D910B3FDD895EC50E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
20:54:51.0948 6016 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
20:54:51.0948 6016 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
20:54:51.0948 6016 C:\Windows\System32\Syncreg.dll - ok
20:54:51.0964 6016 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
20:54:51.0964 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
20:54:51.0964 6016 [ 97A8968A66F15FD3B2F09C6F56B2170D ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
20:54:51.0964 6016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
20:54:51.0979 6016 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
20:54:51.0979 6016 C:\Windows\ehome\ehSSO.dll - ok
20:54:51.0979 6016 [ 5A183BEF69E243A2E481D559FEC7F7BC ] C:\Windows\SysWOW64\DLEAcfg.dll
20:54:51.0979 6016 C:\Windows\SysWOW64\DLEAcfg.dll - ok
20:54:51.0979 6016 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
20:54:51.0979 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
20:54:51.0995 6016 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
20:54:51.0995 6016 C:\Windows\System32\AltTab.dll - ok
20:54:51.0995 6016 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
20:54:51.0995 6016 C:\Windows\SysWOW64\msimtf.dll - ok
20:54:51.0995 6016 [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
20:54:51.0995 6016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
20:54:52.0010 6016 [ 4804BF25E3E67F5B1A868A5C731C468E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll
20:54:52.0010 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\8c10f6a37a1d02cb391898b304ecd9bd\WindowsBase.ni.dll - ok
20:54:52.0010 6016 [ C225E5307D8D4982A1687F2702C37C78 ] C:\Windows\SysWOW64\msls31.dll
20:54:52.0010 6016 C:\Windows\SysWOW64\msls31.dll - ok
20:54:52.0026 6016 [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
20:54:52.0026 6016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
20:54:52.0026 6016 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
20:54:52.0026 6016 C:\Windows\System32\WPDShServiceObj.dll - ok
20:54:52.0026 6016 [ 2ACF02F2AE84B6FA383328F564A88599 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll
20:54:52.0026 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e21fe1eb2ab308fa095d6df79ec6f59a\PresentationCore.ni.dll - ok
20:54:52.0042 6016 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
20:54:52.0042 6016 C:\Windows\System32\pnidui.dll - ok
20:54:52.0042 6016 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
20:54:52.0042 6016 C:\Windows\System32\SearchIndexer.exe - ok
20:54:52.0042 6016 [ 738B5ABCCF24F9ADAEFE0D28CFF40583 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll
20:54:52.0042 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\0203a69e9107295fbdfeb99b267291b6\PresentationFramework.ni.dll - ok
20:54:52.0057 6016 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
20:54:52.0057 6016 C:\Windows\System32\srchadmin.dll - ok
20:54:52.0057 6016 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
20:54:52.0057 6016 C:\Windows\System32\tquery.dll - ok
20:54:52.0073 6016 [ 572C6429A5508E8C2639BDBE5C282991 ] C:\Program Files (x86)\Dell V310-V510 Series\dleaptp.dll
20:54:52.0073 6016 C:\Program Files (x86)\Dell V310-V510 Series\dleaptp.dll - ok
20:54:52.0073 6016 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
20:54:52.0073 6016 C:\Windows\SysWOW64\msvcp60.dll - ok
20:54:52.0073 6016 [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
20:54:52.0073 6016 C:\Windows\SysWOW64\d2d1.dll - ok
20:54:52.0088 6016 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
20:54:52.0088 6016 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
20:54:52.0088 6016 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
20:54:52.0088 6016 C:\Windows\System32\mssrch.dll - ok
20:54:52.0088 6016 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
20:54:52.0088 6016 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
20:54:52.0104 6016 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
20:54:52.0104 6016 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
20:54:52.0104 6016 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
20:54:52.0104 6016 C:\Windows\SysWOW64\duser.dll - ok
20:54:52.0104 6016 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
20:54:52.0104 6016 C:\Windows\System32\ActionCenter.dll - ok
20:54:52.0120 6016 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
20:54:52.0120 6016 C:\Windows\SysWOW64\dui70.dll - ok
20:54:52.0120 6016 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
20:54:52.0120 6016 C:\Windows\System32\sti.dll - ok
20:54:52.0135 6016 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
20:54:52.0135 6016 C:\Windows\System32\UIAnimation.dll - ok
20:54:52.0135 6016 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
20:54:52.0135 6016 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
20:54:52.0135 6016 [ 4277F5164DE9B7C665BB928B9145BEE0 ] C:\Windows\SysWOW64\DWrite.dll
20:54:52.0135 6016 C:\Windows\SysWOW64\DWrite.dll - ok
20:54:52.0151 6016 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
20:54:52.0151 6016 C:\Windows\SysWOW64\dxgi.dll - ok
20:54:52.0151 6016 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
20:54:52.0151 6016 C:\Windows\SysWOW64\sti.dll - ok
20:54:52.0151 6016 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
20:54:52.0151 6016 C:\Windows\SysWOW64\wiatrace.dll - ok
20:54:52.0166 6016 [ 6DE66FE7C526637E74CD066461C7C871 ] C:\Windows\SysWOW64\d3d11.dll
20:54:52.0166 6016 C:\Windows\SysWOW64\d3d11.dll - ok
20:54:52.0166 6016 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
20:54:52.0166 6016 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
20:54:52.0166 6016 [ B3170CCC779B682C3341873EA60CF084 ] C:\Windows\SysWOW64\d3d10warp.dll
20:54:52.0166 6016 C:\Windows\SysWOW64\d3d10warp.dll - ok
20:54:52.0182 6016 [ 0EC4190B22A0E37010CC69371432FC0C ] C:\Windows\System32\gfxSrvc.dll
20:54:52.0182 6016 C:\Windows\System32\gfxSrvc.dll - ok
20:54:52.0182 6016 [ 644579C375F63692FC313A09BE7EFB27 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\AVManagerUnified.dll
20:54:52.0182 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\AVManagerUnified.dll - ok
20:54:52.0198 6016 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
20:54:52.0198 6016 C:\Windows\System32\msidle.dll - ok
20:54:52.0198 6016 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
20:54:52.0198 6016 C:\Windows\SysWOW64\mlang.dll - ok
20:54:52.0213 6016 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
20:54:52.0213 6016 C:\Windows\System32\calc.exe - ok
20:54:52.0213 6016 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
20:54:52.0213 6016 C:\Windows\System32\FXSST.dll - ok
20:54:52.0213 6016 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
20:54:52.0213 6016 C:\Windows\System32\FXSAPI.dll - ok
20:54:52.0229 6016 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
20:54:52.0229 6016 C:\Windows\System32\mssprxy.dll - ok
20:54:52.0229 6016 [ 58957A04853F47B791D68B960258043C ] C:\Windows\System32\IGFXDEVLib.dll
20:54:52.0229 6016 C:\Windows\System32\IGFXDEVLib.dll - ok
20:54:52.0229 6016 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
20:54:52.0229 6016 C:\Windows\System32\FXSSVC.exe - ok
20:54:52.0244 6016 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
20:54:52.0244 6016 C:\Windows\System32\en-US\tquery.dll.mui - ok
20:54:52.0244 6016 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
20:54:52.0244 6016 C:\Windows\System32\l3codeca.acm - ok
20:54:52.0244 6016 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
20:54:52.0244 6016 C:\Windows\System32\wbem\NCProv.dll - ok
20:54:52.0260 6016 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
20:54:52.0260 6016 C:\Windows\System32\d3d9.dll - ok
20:54:52.0260 6016 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
20:54:52.0260 6016 C:\Windows\System32\rasdlg.dll - ok
20:54:52.0260 6016 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
20:54:52.0260 6016 C:\Windows\System32\d3d8thk.dll - ok
20:54:52.0276 6016 [ 9C253164E7016B42591F08BEB90FB494 ] C:\Windows\System32\igdumd64.dll
20:54:52.0276 6016 C:\Windows\System32\igdumd64.dll - ok
20:54:52.0276 6016 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
20:54:52.0276 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
20:54:52.0276 6016 [ D9709FA638B789C1C961F028135CC696 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll
20:54:52.0276 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\bef0bd98b9d5d323d693a9cda5facdf3\System.Configuration.ni.dll - ok
20:54:52.0291 6016 [ 34489A2258CCF7637192169FB0949CC9 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\FWManager.dll
20:54:52.0291 6016 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\FWManager.dll - ok
20:54:52.0291 6016 [ 784A50A6A09C25F011C3143DDD68E729 ] C:\Windows\SysWOW64\netsh.exe
20:54:52.0291 6016 C:\Windows\SysWOW64\netsh.exe - ok
20:54:52.0291 6016 [ F1C19F0AA151B90A7416FA1D50DDB582 ] C:\Windows\System32\WindowsCodecsExt.dll
20:54:52.0291 6016 C:\Windows\System32\WindowsCodecsExt.dll - ok
20:54:52.0307 6016 [ E30C5F23B28D8BFD02E0E6AE79AC83A4 ] C:\Windows\SysWOW64\fwcfg.dll
20:54:52.0307 6016 C:\Windows\SysWOW64\fwcfg.dll - ok
20:54:52.0307 6016 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
20:54:52.0307 6016 C:\Windows\System32\icm32.dll - ok
20:54:52.0307 6016 [ 68E1D09FC5F2214F712FBB0340998A34 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll
20:54:52.0307 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll - ok
20:54:52.0322 6016 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
20:54:52.0322 6016 C:\Windows\System32\webcheck.dll - ok
20:54:52.0322 6016 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
20:54:52.0322 6016 C:\Windows\System32\mlang.dll - ok
20:54:52.0338 6016 [ 371F3248198FC6732D14F110495F25F6 ] C:\Windows\SysWOW64\Firewall.cpl
20:54:52.0338 6016 C:\Windows\SysWOW64\Firewall.cpl - ok
20:54:52.0338 6016 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
20:54:52.0338 6016 C:\Windows\System32\SyncCenter.dll - ok
20:54:52.0338 6016 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
20:54:52.0338 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
20:54:52.0354 6016 [ 05FA8ADC5E47FF262020857BF503FB2E ] C:\Program Files\Windows Defender\MSASCui.exe
20:54:52.0354 6016 C:\Program Files\Windows Defender\MSASCui.exe - ok
20:54:52.0354 6016 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
20:54:52.0354 6016 C:\Windows\System32\imapi2.dll - ok
20:54:52.0354 6016 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
20:54:52.0354 6016 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
20:54:52.0369 6016 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
20:54:52.0369 6016 C:\Windows\System32\WWanAPI.dll - ok
20:54:52.0369 6016 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
20:54:52.0369 6016 C:\Windows\System32\hgcpl.dll - ok
20:54:52.0385 6016 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
20:54:52.0385 6016 C:\Windows\System32\bthprops.cpl - ok
20:54:52.0385 6016 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
20:54:52.0385 6016 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
20:54:52.0385 6016 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
20:54:52.0385 6016 C:\Windows\System32\fdPHost.dll - ok
20:54:52.0400 6016 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
20:54:52.0400 6016 C:\Windows\System32\fdWSD.dll - ok
20:54:52.0400 6016 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
20:54:52.0400 6016 C:\Windows\System32\SearchProtocolHost.exe - ok
20:54:52.0400 6016 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
20:54:52.0400 6016 C:\Windows\System32\fdSSDP.dll - ok
20:54:52.0416 6016 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
20:54:52.0416 6016 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
20:54:52.0416 6016 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
20:54:52.0416 6016 C:\Windows\System32\msshooks.dll - ok
20:54:52.0416 6016 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
20:54:52.0416 6016 C:\Windows\System32\SearchFilterHost.exe - ok
20:54:52.0432 6016 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
20:54:52.0432 6016 C:\Windows\System32\drmv2clt.dll - ok
20:54:52.0432 6016 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
20:54:52.0432 6016 C:\Windows\System32\wmdrmdev.dll - ok
20:54:52.0447 6016 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
20:54:52.0447 6016 C:\Windows\System32\ListSvc.dll - ok
20:54:52.0447 6016 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
20:54:52.0447 6016 C:\Windows\System32\mssph.dll - ok
20:54:52.0447 6016 [ 27583F7D7C4D82BD809196E244613029 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
20:54:52.0447 6016 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
20:54:52.0463 6016 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
20:54:52.0463 6016 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
20:54:52.0463 6016 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
20:54:52.0463 6016 C:\Windows\System32\IdListen.dll - ok
20:54:52.0463 6016 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
20:54:52.0463 6016 C:\Windows\System32\mapi32.dll - ok
20:54:52.0478 6016 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
20:54:52.0478 6016 C:\Windows\System32\upnp.dll - ok
20:54:52.0478 6016 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
20:54:52.0478 6016 C:\Windows\System32\hgprint.dll - ok
20:54:52.0478 6016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
20:54:52.0478 6016 C:\Windows\System32\pnrpsvc.dll - ok
20:54:52.0494 6016 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
20:54:52.0494 6016 C:\Windows\System32\Query.dll - ok
20:54:52.0494 6016 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
20:54:52.0494 6016 C:\Windows\System32\p2psvc.dll - ok
20:54:52.0494 6016 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
20:54:52.0494 6016 C:\Windows\System32\ssdpsrv.dll - ok
20:54:52.0510 6016 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
20:54:52.0510 6016 C:\Windows\System32\P2PGraph.dll - ok
20:54:52.0510 6016 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
20:54:52.0510 6016 C:\Windows\System32\wmp.dll - ok
20:54:52.0510 6016 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
20:54:52.0510 6016 C:\Windows\System32\wmploc.DLL - ok
20:54:52.0525 6016 [ 51627ABA7B9BD37419C50B0AE56DE52B ] C:\Program Files\Internet Explorer\ieproxy.dll
20:54:52.0525 6016 C:\Program Files\Internet Explorer\ieproxy.dll - ok
20:54:52.0525 6016 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
20:54:52.0525 6016 C:\Windows\System32\wmpps.dll - ok
20:54:52.0525 6016 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
20:54:52.0525 6016 C:\Windows\System32\wmpmde.dll - ok
20:54:52.0541 6016 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
20:54:52.0541 6016 C:\Windows\System32\WinSATAPI.dll - ok
20:54:52.0541 6016 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
20:54:52.0541 6016 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
20:54:52.0556 6016 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
20:54:52.0556 6016 C:\Windows\System32\MSMPEG2ENC.DLL - ok
20:54:52.0556 6016 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
20:54:52.0556 6016 C:\Windows\System32\devenum.dll - ok
20:54:52.0556 6016 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
20:54:52.0556 6016 C:\Windows\System32\msdmo.dll - ok
20:54:52.0572 6016 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
20:54:52.0572 6016 C:\Windows\System32\upnphost.dll - ok
20:54:52.0572 6016 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
20:54:52.0572 6016 C:\Windows\System32\wbem\wmiprov.dll - ok
20:54:52.0572 6016 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
20:54:52.0572 6016 C:\Windows\System32\udhisapi.dll - ok
20:54:52.0588 6016 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
20:54:52.0588 6016 C:\Windows\System32\drt.dll - ok
20:54:52.0588 6016 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
20:54:52.0588 6016 C:\Windows\System32\drttransport.dll - ok
20:54:52.0603 6016 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
20:54:52.0603 6016 C:\Windows\System32\keyiso.dll - ok
20:54:52.0603 6016 [ 3C06536A9AA332E9E0CEBDE5A596822A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
20:54:52.0603 6016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
20:54:52.0619 6016 [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
20:54:52.0619 6016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
20:54:52.0619 6016 ============================================================
20:54:52.0619 6016 Scan finished
20:54:52.0619 6016 ============================================================
20:54:52.0634 6008 Detected object count: 1
20:54:52.0634 6008 Actual detected object count: 1
20:55:16.0690 6008 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
20:55:16.0690 6008 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:59:05.0105 3640 Deinitialize success

[JellyBelly]

The internet still doesn't work in normal mode. I still get the white page.

[gringo_pr]

Hello JellyBelly



Please download Farbar Recovery Scan Tool and save it to your desktop.


Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
• The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Gringo

[JellyBelly]

Hello Gringo,

Here are the Farbar Recovery Scan Tool logs.

FRST. txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-06-2013
Ran by Higgins (administrator) on 27-06-2013 23:43:08
Running from C:\Users\Higgins\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Safe Mode (with Networking)

==================== Processes (Whitelisted) =================

(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [8306208 2009-10-20] (Realtek Semiconductor)
HKLM\...\Run: [dleamon.exe] "C:\Program Files (x86)\Dell V310-V510 Series\dleamon.exe" [770728 2010-08-09] ()
HKLM\...\Run: [EzPrint] "C:\Program Files (x86)\Dell V310-V510 Series\ezprint.exe" [139944 2010-08-09] ()
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1281512 2013-01-27] (Microsoft Corporation)
HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [559616 2011-10-07] (Dell)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
HKCU\...\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" [765200 2012-12-16] (SANDBOXIE L.T.D)
HKCU\...\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59872 2012-12-17] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.)
HKLM-x32\...\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot [295512 2013-03-30] (RealNetworks, Inc.)
HKLM-x32\...\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [647216 2009-07-07] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash [472112 2009-07-08] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [2255184 2013-05-15] (LogMeIn Inc.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {1FF85B72-F4E7-427F-8C32-B0113A8B6EA3} URL =
SearchScopes: HKCU - {234EDF80-3D70-40E6-B064-408F21DFEC47} URL = http://search.yahoo....p={SearchTerms}
SearchScopes: HKCU - {4E86F540-A47D-40FA-91DE-D88B67330FE2} URL =
SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = http://us.search.yah...&fr=chr-linksys
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: Dell Toolbar - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Dell Toolbar - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll (Cisco Systems, Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76

==================== Services (Whitelisted) =================

S2 dleaCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\dleaserv.exe [45224 2010-05-21] ()
S2 dlea_device; C:\Windows\system32\dleacoms.exe [1052328 2010-05-21] ( )
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
S2 NitroReaderDriverReadSpool3; C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe [230416 2012-10-30] (Nitro PDF Software)
S2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [123664 2012-12-16] (SANDBOXIE L.T.D)

==================== Drivers (Whitelisted) ====================

R1 cdrbsdrv; C:\Windows\System32\Drivers\cdrbsdrv.sys [39208 2006-08-25] (B.H.A Corporation)
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202632 2012-12-16] (SANDBOXIE L.T.D)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-06-27 23:42 - 2013-06-27 23:42 - 01933484 ____A (Farbar) C:\Users\Higgins\Desktop\FRST64.exe
2013-06-27 23:42 - 2013-06-27 23:42 - 00000000 ____D C:\FRST
2013-06-27 21:12 - 2013-06-27 21:12 - 00002079 ____A C:\Users\Higgins\Desktop\RKreport[0]_D_06272013_211241.txt
2013-06-27 21:12 - 2013-06-27 21:12 - 00001970 ____A C:\Users\Higgins\Desktop\RKreport[0]_S_06272013_211200.txt
2013-06-27 21:10 - 2013-06-27 21:10 - 03760128 ____A C:\Users\Higgins\Downloads\RogueKillerX64 (1).exe
2013-06-27 21:09 - 2013-06-27 21:09 - 03760128 ____A C:\Users\Higgins\Downloads\RogueKillerX64.exe
2013-06-27 21:08 - 2013-06-27 21:09 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Higgins\Downloads\tdsskiller.exe
2013-06-27 20:25 - 2013-06-27 21:12 - 00000000 ____D C:\Users\Higgins\Desktop\RK_Quarantine
2013-06-27 20:25 - 2013-06-27 20:25 - 03760128 ____A C:\Users\Higgins\Desktop\RogueKillerX64.exe.3ac2e6m.partial
2013-06-27 20:25 - 2013-06-27 20:25 - 03760128 ____A C:\Users\Higgins\Desktop\RogueKillerX64.exe
2013-06-27 20:24 - 2013-06-27 20:24 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Higgins\Desktop\tdsskiller.exe
2013-06-27 15:00 - 2013-06-27 15:00 - 00018829 ____A C:\Users\Higgins\Desktop\ComboFix.txt
2013-06-27 14:51 - 2013-06-27 14:51 - 00018829 ____A C:\ComboFix.txt
2013-06-27 14:08 - 2011-06-25 23:45 - 00256000 ____A C:\Windows\PEV.exe
2013-06-27 14:08 - 2010-11-07 10:20 - 00208896 ____A C:\Windows\MBR.exe
2013-06-27 14:08 - 2009-04-19 21:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-06-27 14:08 - 2000-08-30 17:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-06-27 14:08 - 2000-08-30 17:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-06-27 14:08 - 2000-08-30 17:00 - 00098816 ____A C:\Windows\sed.exe
2013-06-27 14:08 - 2000-08-30 17:00 - 00080412 ____A C:\Windows\grep.exe
2013-06-27 14:08 - 2000-08-30 17:00 - 00068096 ____A C:\Windows\zip.exe
2013-06-27 14:07 - 2013-06-27 14:51 - 00000000 ____D C:\Qoobox
2013-06-27 14:05 - 2013-06-27 14:05 - 05084314 ____R (Swearware) C:\Users\Higgins\Desktop\ComboFix.exe
2013-06-27 13:59 - 2013-06-27 13:59 - 05084314 ____A (Swearware) C:\Users\Higgins\Downloads\ComboFix.exe
2013-06-26 22:36 - 2013-06-26 22:36 - 00004740 ____A C:\Users\Higgins\Desktop\JRT.txt
2013-06-26 22:35 - 2013-06-26 22:35 - 00000000 ____D C:\Windows\ERUNT
2013-06-26 22:34 - 2013-06-26 22:34 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Higgins\Downloads\JRT.exe
2013-06-26 22:34 - 2013-06-26 22:34 - 00000000 ____D C:\JRT
2013-06-26 22:24 - 2013-06-26 22:25 - 00001915 ____A C:\AdwCleaner[S2].txt
2013-06-26 22:24 - 2013-06-26 22:24 - 00648201 ____A C:\Users\Higgins\Downloads\AdwCleaner.exe
2013-06-26 15:23 - 2013-06-26 15:23 - 00086204 ____A C:\Users\Higgins\Desktop\Extras.Txt
2013-06-26 15:06 - 2013-06-26 15:06 - 00072074 ____A C:\Users\Higgins\Downloads\OTL.Txt
2013-06-26 15:01 - 2013-06-26 15:01 - 00602112 ____A (OldTimer Tools) C:\Users\Higgins\Downloads\OTL.scr
2013-06-26 15:00 - 2013-06-26 15:00 - 00602112 ____A (OldTimer Tools) C:\Users\Higgins\Downloads\OTL (1).exe
2013-06-26 13:16 - 2013-04-17 00:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-26 13:16 - 2013-04-16 23:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-26 03:03 - 2013-06-26 03:03 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-26 03:03 - 2013-06-26 03:03 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-26 03:03 - 2013-06-26 03:03 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-26 03:03 - 2013-06-26 03:03 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-26 03:03 - 2013-06-26 03:03 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-06-26 03:03 - 2013-06-26 03:03 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-06-26 03:03 - 2013-06-26 03:03 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-26 03:03 - 2013-06-26 03:03 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-06-26 03:03 - 2013-06-26 03:03 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-26 03:03 - 2013-06-26 03:03 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-26 03:02 - 2013-06-26 03:02 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-26 03:00 - 2013-06-26 03:05 - 00007679 ____A C:\Windows\IE10_main.log
2013-06-11 17:25 - 2013-05-12 22:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-11 17:25 - 2013-05-12 22:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-11 17:25 - 2013-05-12 22:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-11 17:25 - 2013-05-12 22:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-11 17:25 - 2013-05-12 21:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-11 17:25 - 2013-05-12 21:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-11 17:25 - 2013-05-12 21:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-11 17:25 - 2013-05-12 20:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-11 17:25 - 2013-05-12 20:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-11 17:25 - 2013-05-12 20:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-11 17:25 - 2013-05-09 22:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-11 17:25 - 2013-05-09 20:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-11 17:25 - 2013-05-07 23:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-11 17:25 - 2013-04-25 22:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-11 17:25 - 2013-04-25 21:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-11 17:25 - 2013-04-25 16:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-11 17:25 - 2013-03-31 15:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-05-31 14:00 - 2013-05-31 14:00 - 03514769 ____A C:\Users\Higgins\Downloads\Modern-Craft-1.5 (1).zip
2013-05-31 14:00 - 2013-05-31 14:00 - 00000000 ____D C:\Users\Higgins\Downloads\Modern-Craft-1.5 (1)
2013-05-31 13:57 - 2013-05-31 13:57 - 03514769 ____A C:\Users\Higgins\Downloads\Modern-Craft-1.5.zip
2013-05-31 13:56 - 2013-05-31 13:56 - 00002008 ____A C:\Users\Higgins\Desktop\Facebook.lnk
2013-05-31 13:56 - 2013-05-31 13:56 - 00002006 ____A C:\Users\Higgins\Desktop\Youtube.lnk
2013-05-30 17:22 - 2013-06-27 21:59 - 00000000 ____D C:\Users\Higgins\AppData\Local\LogMeIn Hamachi
2013-05-30 17:22 - 2013-05-30 17:22 - 00263186 ____A C:\Users\Higgins\Downloads\Minecraft (2).exe
2013-05-30 17:21 - 2013-05-30 17:21 - 00000888 ____A C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-05-30 17:21 - 2013-05-30 17:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi

==================== One Month Modified Files and Folders =======

2013-06-27 23:42 - 2013-06-27 23:42 - 01933484 ____A (Farbar) C:\Users\Higgins\Desktop\FRST64.exe
2013-06-27 23:42 - 2013-06-27 23:42 - 00000000 ____D C:\FRST
2013-06-27 21:59 - 2013-05-30 17:22 - 00000000 ____D C:\Users\Higgins\AppData\Local\LogMeIn Hamachi
2013-06-27 21:57 - 2013-04-05 01:33 - 00005264 ____A C:\Windows\setupact.log
2013-06-27 21:57 - 2010-12-26 13:06 - 00000896 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-27 21:57 - 2010-12-14 23:22 - 00185320 ____A C:\ProgramData\dleascan.log
2013-06-27 21:57 - 2010-12-14 21:32 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-06-27 21:57 - 2010-12-14 21:32 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-06-27 21:57 - 2010-12-08 02:39 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-06-27 21:57 - 2009-07-13 22:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-27 21:55 - 2009-07-13 22:10 - 01328732 ____A C:\Windows\WindowsUpdate.log
2013-06-27 21:55 - 2009-07-13 21:45 - 00014240 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-27 21:55 - 2009-07-13 21:45 - 00014240 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-27 21:12 - 2013-06-27 21:12 - 00002079 ____A C:\Users\Higgins\Desktop\RKreport[0]_D_06272013_211241.txt
2013-06-27 21:12 - 2013-06-27 21:12 - 00001970 ____A C:\Users\Higgins\Desktop\RKreport[0]_S_06272013_211200.txt
2013-06-27 21:12 - 2013-06-27 20:25 - 00000000 ____D C:\Users\Higgins\Desktop\RK_Quarantine
2013-06-27 21:10 - 2013-06-27 21:10 - 03760128 ____A C:\Users\Higgins\Downloads\RogueKillerX64 (1).exe
2013-06-27 21:09 - 2013-06-27 21:09 - 03760128 ____A C:\Users\Higgins\Downloads\RogueKillerX64.exe
2013-06-27 21:09 - 2013-06-27 21:08 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Higgins\Downloads\tdsskiller.exe
2013-06-27 20:25 - 2013-06-27 20:25 - 03760128 ____A C:\Users\Higgins\Desktop\RogueKillerX64.exe.3ac2e6m.partial
2013-06-27 20:25 - 2013-06-27 20:25 - 03760128 ____A C:\Users\Higgins\Desktop\RogueKillerX64.exe
2013-06-27 20:24 - 2013-06-27 20:24 - 02237968 ____A (Kaspersky Lab ZAO) C:\Users\Higgins\Desktop\tdsskiller.exe
2013-06-27 15:03 - 2013-05-21 11:14 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-27 15:00 - 2013-06-27 15:00 - 00018829 ____A C:\Users\Higgins\Desktop\ComboFix.txt
2013-06-27 15:00 - 2013-04-05 01:33 - 00081588 ____A C:\Windows\PFRO.log
2013-06-27 14:51 - 2013-06-27 14:51 - 00018829 ____A C:\ComboFix.txt
2013-06-27 14:51 - 2013-06-27 14:07 - 00000000 ____D C:\Qoobox
2013-06-27 14:48 - 2010-12-26 13:06 - 00000900 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-27 14:24 - 2009-07-13 19:34 - 00000215 ____A C:\Windows\system.ini
2013-06-27 14:07 - 2013-04-04 13:47 - 00000000 ____D C:\Windows\erdnt
2013-06-27 14:05 - 2013-06-27 14:05 - 05084314 ____R (Swearware) C:\Users\Higgins\Desktop\ComboFix.exe
2013-06-27 13:59 - 2013-06-27 13:59 - 05084314 ____A (Swearware) C:\Users\Higgins\Downloads\ComboFix.exe
2013-06-26 22:36 - 2013-06-26 22:36 - 00004740 ____A C:\Users\Higgins\Desktop\JRT.txt
2013-06-26 22:35 - 2013-06-26 22:35 - 00000000 ____D C:\Windows\ERUNT
2013-06-26 22:34 - 2013-06-26 22:34 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Higgins\Downloads\JRT.exe
2013-06-26 22:34 - 2013-06-26 22:34 - 00000000 ____D C:\JRT
2013-06-26 22:25 - 2013-06-26 22:24 - 00001915 ____A C:\AdwCleaner[S2].txt
2013-06-26 22:24 - 2013-06-26 22:24 - 00648201 ____A C:\Users\Higgins\Downloads\AdwCleaner.exe
2013-06-26 15:23 - 2013-06-26 15:23 - 00086204 ____A C:\Users\Higgins\Desktop\Extras.Txt
2013-06-26 15:08 - 2013-04-03 21:06 - 00086204 ____A C:\Users\Higgins\Downloads\Extras.Txt
2013-06-26 15:06 - 2013-06-26 15:06 - 00072074 ____A C:\Users\Higgins\Downloads\OTL.Txt
2013-06-26 15:01 - 2013-06-26 15:01 - 00602112 ____A (OldTimer Tools) C:\Users\Higgins\Downloads\OTL.scr
2013-06-26 15:00 - 2013-06-26 15:00 - 00602112 ____A (OldTimer Tools) C:\Users\Higgins\Downloads\OTL (1).exe
2013-06-26 14:51 - 2012-07-15 23:57 - 01528320 __ASH C:\Users\Higgins\Desktop\Thumbs.db
2013-06-26 11:50 - 2012-03-03 22:13 - 00000000 ____D C:\Users\Higgins\AppData\Roaming\.minecraft
2013-06-26 11:16 - 2010-12-08 04:02 - 00000000 ____D C:\Windows\Panther
2013-06-26 11:14 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-06-26 11:14 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-06-26 11:14 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\System32\zh-HK
2013-06-26 11:14 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\System32\tr-TR
2013-06-26 11:14 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-06-26 03:05 - 2013-06-26 03:00 - 00007679 ____A C:\Windows\IE10_main.log
2013-06-26 03:03 - 2013-06-26 03:03 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-26 03:03 - 2013-06-26 03:03 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-26 03:03 - 2013-06-26 03:03 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-26 03:03 - 2013-06-26 03:03 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-26 03:03 - 2013-06-26 03:03 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-26 03:03 - 2013-06-26 03:03 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-06-26 03:03 - 2013-06-26 03:03 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-06-26 03:03 - 2013-06-26 03:03 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-26 03:03 - 2013-06-26 03:03 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-06-26 03:03 - 2013-06-26 03:03 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-26 03:03 - 2013-06-26 03:03 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-26 03:03 - 2013-06-26 03:03 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-06-26 03:03 - 2013-06-26 03:03 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-26 03:02 - 2013-06-26 03:02 - 03928064 ____A (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 03419136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 02776576 ____A (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 02565120 ____A (Microsoft Corporation) C:\Windows\System32\d3d10warp.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 02284544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01988096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01682432 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01643520 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01247744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01238528 ____A (Microsoft Corporation) C:\Windows\System32\d3d10.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01175552 ____A (Microsoft Corporation) C:\Windows\System32\FntCache.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01158144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 01080832 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00648192 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00604160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00522752 ____A (Microsoft Corporation) C:\Windows\System32\XpsGdiConverter.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00465920 ____A (Microsoft Corporation) C:\Windows\System32\WMPhoto.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00417792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00364544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00363008 ____A (Microsoft Corporation) C:\Windows\System32\dxgi.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00333312 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00296960 ____A (Microsoft Corporation) C:\Windows\System32\d3d10core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00293376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00249856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00245248 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecsExt.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00221184 ____A (Microsoft Corporation) C:\Windows\System32\UIAnimation.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00220160 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00207872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00194560 ____A (Microsoft Corporation) C:\Windows\System32\d3d10_1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00187392 ____A (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00161792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00010752 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00010752 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00009728 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00009728 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00005632 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00004096 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00004096 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003584 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003584 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00003072 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00002560 ___AH (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-26 03:02 - 2013-06-26 03:02 - 00002560 ___AH (Microsoft Corporation) C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-25 18:44 - 2010-12-16 16:40 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2013-06-25 18:18 - 2010-12-14 22:54 - 00000000 ____D C:\Users\Higgins\AppData\Local\Google
2013-06-25 16:53 - 2013-04-06 01:00 - 00002294 ____A C:\Windows\Sandboxie.ini
2013-06-19 01:54 - 2010-12-14 23:42 - 00484280 ____A C:\ProgramData\dleaJSW.log
2013-06-19 01:54 - 2010-12-14 23:42 - 00000000 ____D C:\ProgramData\Dl_cats
2013-06-12 04:06 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\rescache
2013-06-12 03:01 - 2012-11-15 10:58 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 01:55 - 2013-03-30 10:46 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-12 01:55 - 2013-03-30 10:46 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-10 00:10 - 2011-02-17 11:08 - 00000000 ____D C:\Users\Higgins\Desktop\Anna
2013-06-07 20:24 - 2011-04-08 12:38 - 00000000 ____D C:\Users\Higgins\Documents\Games
2013-05-31 14:00 - 2013-05-31 14:00 - 03514769 ____A C:\Users\Higgins\Downloads\Modern-Craft-1.5 (1).zip
2013-05-31 14:00 - 2013-05-31 14:00 - 00000000 ____D C:\Users\Higgins\Downloads\Modern-Craft-1.5 (1)
2013-05-31 13:57 - 2013-05-31 13:57 - 03514769 ____A C:\Users\Higgins\Downloads\Modern-Craft-1.5.zip
2013-05-31 13:56 - 2013-05-31 13:56 - 00002008 ____A C:\Users\Higgins\Desktop\Facebook.lnk
2013-05-31 13:56 - 2013-05-31 13:56 - 00002006 ____A C:\Users\Higgins\Desktop\Youtube.lnk
2013-05-30 17:22 - 2013-05-30 17:22 - 00263186 ____A C:\Users\Higgins\Downloads\Minecraft (2).exe
2013-05-30 17:21 - 2013-05-30 17:21 - 00000888 ____A C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2013-05-30 17:21 - 2013-05-30 17:21 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-06-13 00:50

==================== End Of Log ============================







Addition


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-06-2013
Ran by Higgins at 2013-06-27 23:44:04
Running from C:\Users\Higgins\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Installed Programs =======================

ABBYY FineReader 6.0 Sprint (x32 Version: 6.00.2146.41621)
ACDSee (x32)
Adobe AIR (x32 Version: 2.7.0.19480)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224)
Adobe Reader XI (11.0.02) (x32 Version: 11.0.02)
Amazon MP3 Downloader 1.0.12 (x32 Version: 1.0.12)
Any Video Converter 3.3.3 (x32)
Apple Application Support (x32 Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (x32 Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.00)
Cisco Network Magic (x32 Version: 5.5.09195.0)
Consumer In-Home Service Agreement (x32 Version: 2.0.0)
D3DX10 (x32 Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Dell DataSafe Local Backup - Support Software (x32 Version: 9.4.60)
Dell DataSafe Local Backup (x32 Version: 9.4.60)
Dell DataSafe Online (x32 Version: 2.1.19634)
Dell Dock (Version: 2.0)
Dell Dock (x32 Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (x32 Version: 1.00.0000)
Dell Toolbar (x32 Version: 1.8.12.0)
Dell V310-V510 Series
Garmin Communicator Plugin (x32 Version: 2.9.3)
Garmin USB Drivers (x32 Version: 2.3.0.0)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0)
Google Toolbar for Internet Explorer (x32 Version: 7.5.4209.2358)
Google Update Helper (x32 Version: 1.3.21.145)
GoToAssist 8.0.0.514 (x32)
HP Photo Imaging Software (x32)
HP Photo Printing Software (x32)
iCloud (Version: 2.1.1.3)
Intel® Control Center (x32 Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver
Intel® Rapid Storage Technology (x32 Version: 9.6.0.1014)
Internet Explorer (x32 Version: 8)
iTunes (Version: 11.0.2.26)
Java 7 Update 21 (x32 Version: 7.0.210)
Java Auto Updater (x32 Version: 2.1.9.5)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
LogMeIn Hamachi (x32 Version: 2.1.0.362)
Malwarebytes Anti-Malware version 1.70.0.1100 (x32 Version: 1.70.0.1100)
Masque Casino Games II (x32)
Mesh Runtime (x32 Version: 15.4.5722.2)
Messenger Companion (x32 Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1) (x32)
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
Network Magic (x32 Version: 5.5.9195.0)
Nitro Reader 3 (Version: 3.0.6.3)
PrimoPDF -- brought to you by Nitro PDF Software (x32 Version: 5)
Pure Networks Platform (x32 Version: 11.2.09195.1)
QuickTime (x32 Version: 7.73.80.64)
RealDownloader (x32 Version: 1.3.1)
RealFlight Basic R/C Simulator (x32)
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0)
RealPlayer (x32 Version: 16.0.0)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5963)
RealUpgrade 1.1 (x32 Version: 1.1.0)
Revo Uninstaller 1.94 (x32 Version: 1.94)
Roxio Burn (x32 Version: 1.01)
Safari (x32 Version: 5.34.57.2)
Sandboxie 3.76 (64-bit) (Version: 3.76)
Shared C Run-time for x64 (Version: 10.0.0)
Skype Toolbars (x32 Version: 1.0.4051)
Skype™ 6.3 (x32 Version: 6.3.105)
Spelling Dictionaries Support For Adobe Reader 9 (x32 Version: 9.0.0)
StarCraft II (x32 Version: 2.0.9.26147)
SumatraPDF (x32 Version: 2.2.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft Office 2010 (KB2553065) (x32)
Update for Microsoft Office 2010 (KB2553092) (x32)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2566458) (x32)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32)
Update Installer for WildTangent Games App (x32)
VideoCam Suite 2.0 (x32 Version: 2.00.031.1033)
WildTangent Games (x32 Version: 1.0.0.71)
WildTangent Games App (Dell Games) (x32 Version: 4.0.9.3)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
WinRAR 4.20 (64-bit) (Version: 4.20.0)

==================== Restore Points =========================

30-05-2013 23:55:18 Windows Update
31-05-2013 00:21:23 Installed LogMeIn Hamachi
03-06-2013 10:12:58 Windows Update
07-06-2013 03:14:22 Windows Update
10-06-2013 03:19:27 Windows Update
12-06-2013 10:00:17 Windows Update
15-06-2013 21:39:25 Windows Update
19-06-2013 09:03:08 Windows Update
26-06-2013 00:04:12 Windows Update
26-06-2013 10:00:13 Windows Update
26-06-2013 20:32:36 Windows Update

==================== Scheduled Tasks (whitelisted) =============

Task: {0A2518EB-27BE-4AB2-BB98-2D3BBAF93152} - System32\Tasks\{DEC1100F-4DA0-4336-905C-008D6BFADBD0} => C:\autoplay.exe No File
Task: {11790700-2545-430D-8CB0-12E046182602} - System32\Tasks\{88899651-FDAB-4724-B7FD-AF8E08641E63} => C:\setup.exe No File
Task: {117E3053-6C08-45A8-BA6E-95736717D530} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {11D91F81-4328-47DE-9232-793A53C66842} - System32\Tasks\{E48F558C-65E2-4B8B-8E4C-553E010B007E} => C:\autoplay.exe No File
Task: {1375BDFB-9F27-4317-81C1-796CF0E82AFD} - System32\Tasks\{3E9DDCC2-BE78-4453-9E3B-761BF506D0FC} => C:\autoplay.exe No File
Task: {2E99762E-7FFC-480D-96EC-3C6E91A1781E} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-303888573-1664082915-1150687807-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2013-03-06] (RealNetworks, Inc.)
Task: {353A8423-EC1F-4D7A-A2E0-43CFC7219ECA} - System32\Tasks\{92717B91-F522-49C0-B18B-607893ACD342} => C:\setup.exe No File
Task: {396B68F4-AAD1-4699-BAF8-7F3DCBAA5D07} - System32\Tasks\{C51E268C-7A0E-40B1-88FD-D2DE6E47242A} => C:\setup.exe No File
Task: {41BA96CD-3825-48FB-BB0A-46097C868D96} - System32\Tasks\{39D894C0-F844-488A-B812-1CAA585DBA4C} => C:\setup.exe No File
Task: {4D9A2117-6A9B-4312-83D4-D9138F9E5ED1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated)
Task: {4E83205E-FB86-4866-B239-B52F7E5D762B} - System32\Tasks\{7709ABAB-761F-4B31-8FA8-A5E8559BD5D6} => C:\setup.exe No File
Task: {5638D47F-5192-481E-B923-3FE11851ED98} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-303888573-1664082915-1150687807-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {6B26600C-3A41-4886-A7DD-76550529600B} - System32\Tasks\{F621376B-845B-4D04-B3E5-99AF746E641B} => C:\setup.exe No File
Task: {6FC896DF-4FAA-4B2E-82F5-EE7C8EC93855} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-303888573-1664082915-1150687807-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {72461D41-5C0D-4D1C-A40C-534CB1BCCADC} - System32\Tasks\{AD396FBF-1495-43C9-AD5F-F2D27E58C375} => C:\setup.exe No File
Task: {732EF8FD-5F27-4F34-A8BF-B5CF9B22E3C4} - System32\Tasks\{6F81D1E7-BB58-47DB-8D27-265C4777791F} => C:\setup.exe No File
Task: {7BFC3821-7CD4-4782-8D3D-59609AE948AA} - System32\Tasks\{2FDF7F7D-6C8F-4ACC-B7FE-6AC65CC3894D} => C:\setup.exe No File
Task: {7C71AAE0-7CAA-4EDB-8901-42EC9A72D794} - System32\Tasks\{426B5C40-B68B-4764-A686-5FCD9491865A} => C:\setup.exe No File
Task: {8779E716-2042-4CFA-9735-1874D9DF9ABA} - System32\Tasks\{F66918A5-F277-46F2-AFD4-82EC454ECF80} => C:\setup.exe No File
Task: {88964201-001E-4AA8-8489-246E3B250E8D} - System32\Tasks\{1731775D-E5F2-47C3-A75F-B584252DB555} => C:\setup.exe No File
Task: {8D118F0E-7B12-4424-AE50-0462226427CB} - System32\Tasks\{07AA622E-9C66-4731-8C01-924171B880BC} => C:\setup.exe No File
Task: {9229E9F6-BB38-4F3E-AC5E-9625AD897CCF} - System32\Tasks\{8E40742E-5284-4E7C-BA95-98591599819F} => C:\setup.exe No File
Task: {931D49B0-63A6-414D-86AF-04BDEADC44A8} - System32\Tasks\{3E07F01B-E499-4E7B-865D-8067090BAB15} => C:\setup.exe No File
Task: {953A8237-BD64-4AFA-BF08-0A6E3BF37DBE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {99BF0302-0364-4F99-8EAB-CB4ECF9748AC} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-303888573-1664082915-1150687807-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {9B7CDC8E-C80E-4E88-A593-180771FA1419} - System32\Tasks\{DE21DD7A-EFEA-4883-B7B4-C9FFFC0ABBAC} => C:\setup.exe No File
Task: {9E28A749-2736-40FD-9BFC-7C29510FE1C3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26] (Google Inc.)
Task: {9EA940FD-CC20-4EE5-98EB-44EAFE49A733} - System32\Tasks\{32130F59-1844-4DAA-A0D8-92B504ECA851} => C:\setup.exe No File
Task: {9F3D7C65-B9E7-4257-852D-0EE1923D7C7D} - System32\Tasks\{4BFA92D1-5D18-4368-BCF5-E099FA7ADB1F} => C:\setup.exe No File
Task: {A14C4B08-EB3F-4F2F-B3F7-AA3A408492A8} - System32\Tasks\{D39BD17B-64E1-4AF9-8420-0DBB955FFB94} => C:\setup.exe No File
Task: {A4E1E5BB-5C86-484D-A7B8-B66A63D5E6C5} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {B59B45B0-7709-42D1-8FF9-E374D90B65C2} - System32\Tasks\{F91C64D7-C0BC-4C4C-8F61-CFACEC3BEE14} => C:\setup.exe No File
Task: {BFE572FC-1C8B-4145-BFE7-EE19A3BF02BC} - System32\Tasks\{B2DEB450-264A-4887-8E2C-083405F08ECF} => C:\setup.exe No File
Task: {C561610E-EB25-4D96-AD07-3D467A9B51AD} - System32\Tasks\{8AC7BB89-AB45-4178-9D2C-F2C615594821} => C:\setup.exe No File
Task: {C7313897-10CD-48DC-B6C4-121D5A84D1D7} - System32\Tasks\{C2BC598B-EF52-4C5A-8F3B-CB4BB58ED503} => C:\setup.exe No File
Task: {C8EB177D-473A-4B81-86FB-31854CBBD09E} - System32\Tasks\{C4099F33-40DC-4B3D-99E1-962670F2E0F8} => C:\setup.exe No File
Task: {CBE215A3-B456-4A61-82A9-FF13FA4BD2C0} - System32\Tasks\{7B48C7B2-9BCB-4E37-A287-4C6717E610B0} => C:\setup.exe No File
Task: {D07815FC-E91A-4240-A2D7-6E0A5B7DDAF6} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-303888573-1664082915-1150687807-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {D621831D-7A2C-40C3-BD6F-099B2EC2B97B} - System32\Tasks\{084D1FCC-EB64-4846-B000-68444D675F9F} => C:\autoplay.exe No File
Task: {D7736DB4-20A0-406B-B698-BCDB1E62DAA3} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-303888573-1664082915-1150687807-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {D8CC162A-6A11-4622-94DC-8945DA6677D4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-12-26] (Google Inc.)
Task: {DC182783-ECBF-4AA7-A2F5-ED2A8D956460} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-303888573-1664082915-1150687807-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2013-03-06] (RealNetworks, Inc.)
Task: {DC55EF8F-740F-4497-89F3-A4DA80FF923A} - System32\Tasks\{60AC7989-A7B9-4952-B584-B8BA0B6617E1} => C:\autoplay.exe No File
Task: {E590BFF9-F315-4AE1-8337-26B2AC6E767A} - System32\Tasks\{25FF0F78-9726-479C-9374-12611A664CA7} => C:\setup.exe No File
Task: {E707BD8B-5A43-4BD8-9414-CA3CBCA8B38F} - System32\Tasks\Games\UpdateCheck_S-1-5-21-303888573-1664082915-1150687807-1001
Task: {F5509148-51A7-4C09-BE29-57103238FD81} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe [2013-01-27] (Microsoft Corporation)
Task: {FA6DA170-1D7E-4907-ADEF-EF9ACA7194E9} - System32\Tasks\{5273CFBC-F41B-46C4-8046-B5E0DB872D8D} => C:\setup.exe No File
Task: {FAEA88CD-375A-4836-8ED0-260E0018C20B} - System32\Tasks\{9079E7DE-55D5-4281-A894-1DC999C3712A} => C:\setup.exe No File
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Faulty Device Manager Devices =============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (06/27/2013 11:42:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:44 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:42 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:42 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:42 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:42 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:42 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:42 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/27/2013 11:42:33 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-06-27 14:21:03.091
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-06-27 14:21:02.998
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-04-04 17:27:17.495
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-04-04 17:27:17.432
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-04-04 17:27:17.386
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-04-04 17:27:17.323
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-04-04 13:57:05.003
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-04-04 13:57:04.956
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-04-03 14:23:00.555
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-04-03 14:23:00.555
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 20%
Total physical RAM: 3036.98 MB
Available physical RAM: 2401.18 MB
Total Pagefile: 6072.15 MB
Available Pagefile: 5471.19 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:583.32 GB) (Free:464.05 GB) NTFS (Disk=0 Partition=3)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 596 GB) (Disk ID: EC0328C2)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=13 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=583 GB) - (Type=07 NTFS)

==================== End Of Log ============================

[gringo_pr]

Hello


That report looks good.

Please tell me more on this - "I still get the white page. "

Which browser does this happen in?


gringo

[JellyBelly]

Hi Gringo,

I really appreciate your help. I thought this might be a stumper because you didn't reply as quickly. However, I know you are also volunteering your time to help others and have a REAL life too.

When I restart my computer in "normal mode" and it gets to my desktop, there is always a pop up window from Java Auto Updater. The box says: User Account Control Do you want to allow the following programs to make changes to this computer? Program Name: Java Auto Updater Verified publisher: Oracle America, Inc. File origin: Hard drive on this computer Yes or No

Sometimes I click on Yes and sometimes I click on No to see if it makes a difference and it doesn't.

I use Internet Explorer 10 to access the net. I am always able to open to my Home Page which is Yahoo. Whenever I click on any link, it will appear that the link is going to open. A new tab will open and all my toolbars, clock, everything is intact. However, the webpage just stay white.

The funny thing is, I can click the Refresh Arrows in the URL box and the webpage will actually open!

I've also tried right-clicking the links and choosing both Open in new tab/new window and I will get either a new tab/window, but the webpage is white.

Let me know if you need anymore information.

[gringo_pr]

Hello JellyBelly

first I would like you to go here and click on the fixit button - http://support.microsoft.com/kb/923737


Then I want you to do the following

• Start Internet Explorer.
• click on "safety"
• click on "Delete Browsing History"
• make sure all boxes are checked
• click on "Delete"
• click on "Tools",
• click "Internet Options".
• On the "Advanced" tab, click "Reset"
• put a check mark next to "Delete Personal Settings"
• click "Reset" to confirm
• when complete click the "Close" button
• restart IE

Gringo

[JellyBelly]

Gringo,

You're a genius! I can finally access the internet normally!!! THANK YOU! THANK YOU! THANK YOU!

I do want to mention that I wasn't able to use Microsoft Fix It. When I was in Safemode, it told me it wouldn't run. So I saved it to my desktop and re-started my computer to "normal" mode. I started the program up and got a pop up box saying "This Microsoft Fix It failed to process". I then followed the rest of your instructions, re-started the computer and here I am!!!

[gringo_pr]

Hello JellyBelly

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::

Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe

This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

• In your next post I need the following
  
  
• report from Combofix
• let me know of any problems you may have had
• How is the computer doing now after running the script?

Gringo