Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Stubborn Rootkit-- Most Antirootkit programs are Blocked, and Ignored by Those That Aren't.


  • This topic is locked This topic is locked
16 replies to this topic

#1 guardian4600

guardian4600

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 29 August 2012 - 08:00 PM

Symptoms include google search results being redirected, audio ads being played through the speakers, homepage hijacked, dramatic drop in internet connection quality, all files being hidden on the computer, and "Smart HDD" scareware. I managed to fix the last symptom on my own, but I'm at the end of my abilities to troubleshoot, and now I require assistance. I've tried a multitude of malware scanners, rootkit scanners and general antivirus scanners all to no avail. I'd appreciate any help given.
Also, my computer keeps trying to access a particular IP address: 206.161.121.3

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29
Run by Melissa at 20:47:54 on 2012-08-29
Microsoft Windows 7 Home Premium 6.1.7601.1.932.81.1033.18.4056.2002 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
C:\Windows\system32\conhost.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\conhost.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\D-Link\DWA-125 revA\AirGCFG.exe
C:\Program Files (x86)\D-Link\DWA-125 revA\WZCSLDR2.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe
C:\Windows\explorer.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\REGSVR32.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = https://isearch.avg.com/?cid={F8C05315-769D-46B5-ACB8-22C52054A151}&mid=9416e159b93547d09c1475f39d4bb11a-1c6ded7800ca18c8b38d3059ea2bf21c7039c3b2&lang=en&ds=AVG&pr=fr&d=2012-08-29 12:57:18&v=12.2.0.5&sap=hp
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
uURLSearchHooks: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll
mURLSearchHooks: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~2\mcafee\msk\mskapbho.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: AVG Do Not Track: {31332eef-cb9f-458f-afeb-d30e9a66b6ba} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
BHO: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
TB: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
mRun: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [D-Link D-Link DWA-125] C:\Program Files (x86)\D-Link\DWA-125 revA\AirGCFG.exe
mRun: [WZCSLDR2] C:\Program Files (x86)\D-Link\DWA-125 revA\WZCSLDR2.exe
mRun: [<NO NAME>]
mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mRun: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mRunOnce: [InnoSetupRegFile.0000000001] "C:\Windows\is-NRKM3.exe" /REG /REGSVRMODE
StartupFolder: C:\Users\Melissa\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK - C:\Program Files (x86)\Dell\DellDock\DellDock.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{0266889B-2CC3-40B0-8025-18FA16D7D9E7} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{036198BF-C82B-4FC0-8AD0-29D435BAB8EF} : DhcpNameServer = 67.36.16.10 204.174.16.4 204.174.18.2
TCP: Interfaces\{06CD970C-282D-451A-AD44-2B5A5DEB83EC} : DhcpNameServer = 67.36.16.10 204.174.16.4 204.174.18.2
TCP: Interfaces\{FD947F37-CB66-4A5A-A290-8336258D2607} : DhcpNameServer = 192.168.0.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.0\ViProtocol.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~2\mcafee\msk\mskapbho.dll
BHO-X64: McAfee Phishing Filter - No File
BHO-X64: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO-X64: AVG Do Not Track: {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
BHO-X64: AVG Do Not Track - No File
BHO-X64: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll
BHO-X64: uTorrentControl2 - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO-X64: Ask Toolbar BHO - No File
BHO-X64: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
TB-X64: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
TB-X64: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll
TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun-x64: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun-x64: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
mRun-x64: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun-x64: [D-Link D-Link DWA-125] C:\Program Files (x86)\D-Link\DWA-125 revA\AirGCFG.exe
mRun-x64: [WZCSLDR2] C:\Program Files (x86)\D-Link\DWA-125 revA\WZCSLDR2.exe
mRun-x64: [(Default)]
mRun-x64: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
mRun-x64: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun-x64: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mRun-x64: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRunOnce-x64: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"
mRunOnce-x64: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
mRunOnce-x64: [InnoSetupRegFile.0000000001] "C:\Windows\is-NRKM3.exe" /REG /REGSVRMODE
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Melissa\AppData\Roaming\Mozilla\Firefox\Profiles\m5wu117z.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\BYOND\bin\npbyond.dll
FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\npsitesafety.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npbyond.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\Users\Melissa\AppData\Roaming\Mozilla\Firefox\Profiles\m5wu117z.default\extensions\{462be121-2b54-4218-bf00-b9bf8135b23f}\plugins\np-mswmp.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\system32\DRIVERS\avgidsha.sys --> C:\Windows\system32\DRIVERS\avgidsha.sys [?]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 anodlwf;ANOD Network Security Filter driver;C:\Windows\system32\DRIVERS\anodlwfx.sys --> C:\Windows\system32\DRIVERS\anodlwfx.sys [?]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]
R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]
R1 avgtp;avgtp;\??\C:\Windows\system32\drivers\avgtpx64.sys --> C:\Windows\system32\drivers\avgtpx64.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe [2012-7-4 5160568]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-2-14 193288]
R2 D_Link_DWA-125_WPS;D_Link_DWA-125_WPS Service;C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe [2010-10-24 40960]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-8-29 655944]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2010-3-28 1692480]
R2 vToolbarUpdater12.2.0;vToolbarUpdater12.2.0;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe [2012-8-29 927840]
R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\avgidsdrivera.sys --> C:\Windows\system32\DRIVERS\avgidsdrivera.sys [?]
R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\avgidsfiltera.sys --> C:\Windows\system32\DRIVERS\avgidsfiltera.sys [?]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;C:\Windows\system32\DRIVERS\ManyCam_x64.sys --> C:\Windows\system32\DRIVERS\ManyCam_x64.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys --> C:\Windows\system32\Drivers\RtsUStor.sys [?]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys --> C:\Windows\system32\DRIVERS\yk62x64.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 D_Link_DWA-125;D_Link_DWA-125 Service;C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe [2010-10-24 126976]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-7-12 250568]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 MOSUMAC;USB-Ethernet Driver;C:\Windows\system32\DRIVERS\USBMAC64.SYS --> C:\Windows\system32\DRIVERS\USBMAC64.SYS [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-8-29 114144]
S3 netr28ux;D-Link dnetr28u USB Extensible Wireless LAN Card Driver;C:\Windows\system32\DRIVERS\Dnetr28ux.sys --> C:\Windows\system32\DRIVERS\Dnetr28ux.sys [?]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 UsbFltr;WayTech USB Filter Driver;C:\Windows\system32\Drivers\UsbFltr.sys --> C:\Windows\system32\Drivers\UsbFltr.sys [?]
S3 UsbGps;LGE CDMA USB GPS NMEA Port;C:\Windows\system32\DRIVERS\lgx64gps.sys --> C:\Windows\system32\DRIVERS\lgx64gps.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-08-29 21:22:47 711240 ----a-w- C:\Windows\is-NRKM3.exe
2012-08-29 21:22:45 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-08-29 18:07:10 -------- d-----w- C:\Users\Melissa\AppData\Roaming\AVG2012
2012-08-29 17:57:57 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1BC2C662-D495-4CCF-A2CF-E379DB26024C}\mpengine.dll
2012-08-29 17:57:15 31080 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2012-08-29 17:57:08 -------- d-----w- C:\Program Files (x86)\AVG Secure Search
2012-08-29 17:56:42 -------- d-----w- C:\Windows\SysWow64\drivers\AVG
2012-08-29 17:56:20 -------- d-----w- C:\Windows\System32\drivers\AVG
2012-08-29 13:09:08 -------- d-----w- C:\sdaf223
2012-08-29 09:52:24 -------- d-----w- C:\Users\Melissa\AppData\Local\AVG Secure Search
2012-08-29 09:51:02 -------- d-----w- C:\ProgramData\AVG2012
2012-08-29 09:51:02 -------- d-----w- C:\$AVG
2012-08-29 09:50:04 -------- d-----w- C:\Program Files (x86)\AVG
2012-08-29 09:47:26 -------- d-----w- C:\ProgramData\MFAData
2012-08-29 06:13:36 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2012-08-29 06:13:36 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2012-08-29 05:54:44 -------- d-----w- C:\Program Files (x86)\ESET
2012-08-29 05:45:26 -------- d-----w- C:\Users\Melissa\AppData\Roaming\Malwarebytes
2012-08-29 05:45:09 -------- d-----w- C:\ProgramData\Malwarebytes
2012-08-29 05:45:08 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-29 04:36:20 -------- d-----w- C:\Users\Melissa\AppData\Roaming\SUPERAntiSpyware.com
2012-08-29 04:36:13 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com
2012-08-29 04:36:13 -------- d-----w- C:\Program Files\SUPERAntiSpyware
2012-08-28 02:40:59 -------- d-----w- C:\Program Files (x86)\VideoLAN
2012-08-18 07:30:25 -------- d-----w- C:\Users\Melissa\[a-S] Cromartie High School
2012-08-18 07:29:31 -------- d-----w- C:\Users\Melissa\Azumanga Daioh
2012-08-18 07:22:12 -------- d-----w- C:\Users\Melissa\Tengen_Toppa_Gurren_Lagann_1-27-HD
2012-08-18 06:37:49 -------- d-----w- C:\Users\Melissa\Black Lagoon
2012-08-18 02:05:00 9826504 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2012-08-17 02:29:45 503808 ----a-w- C:\Windows\System32\srcore.dll
2012-08-17 02:29:45 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2012-08-17 02:29:43 751104 ----a-w- C:\Windows\System32\win32spl.dll
2012-08-17 02:29:42 67072 ----a-w- C:\Windows\splwow64.exe
2012-08-17 02:29:42 559104 ----a-w- C:\Windows\System32\spoolsv.exe
2012-08-17 02:29:42 492032 ----a-w- C:\Windows\SysWow64\win32spl.dll
2012-08-17 02:29:41 59392 ----a-w- C:\Windows\System32\browcli.dll
2012-08-17 02:29:41 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2012-08-17 02:29:41 136704 ----a-w- C:\Windows\System32\browser.dll
2012-08-17 02:29:40 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-08-17 02:29:39 956928 ----a-w- C:\Windows\System32\localspl.dll
2012-08-02 04:42:21 -------- d-----w- C:\Users\Melissa\LCD Soundsystem
2012-08-02 03:46:48 -------- d-----w- C:\Users\Melissa\[2007] 45_33
.
==================== Find3M ====================
.
2012-08-29 18:12:30 73416 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-29 18:12:30 696520 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-06-29 03:56:34 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-06-29 03:49:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-06-29 03:48:07 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:48 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:01 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:59 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:45 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-06-06 13:49:52 1070152 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2012-06-06 06:06:16 2004480 ----a-w- C:\Windows\System32\msxml6.dll
2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll
2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll
2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-06-02 20:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-06-02 20:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys
2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll
2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll
2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
.
============= FINISH: 20:56:58.40 ===============

Attached Files


Edited by guardian4600, 29 August 2012 - 08:12 PM.


BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:09 PM

Posted 29 August 2012 - 08:16 PM

Hello guardian4600 ,
  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Watch Topic.I suggest you click it and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

  • Finally, please reply using the ADD REPLY button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
  • I will be analyzing your log. I will get back to you with instructions.



Do you have a USB Flash Drive you can use?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 guardian4600

guardian4600
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 29 August 2012 - 08:57 PM

Hello Fireman, thank you for assisting me. I will attempt to follow your instructions to the best of my ability.

Do you have a USB Flash Drive you can use?

Yes, I have a 8gb flash drive available.

#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:09 PM

Posted 29 August 2012 - 09:02 PM

For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt[*]In the command window type in notepad and press Enter.[*]The notepad opens. Under File menu select Open.[*]Select "Computer" and find your flash drive letter and close the notepad.[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.[*]The tool will start to run.[*]When the tool opens click Yes to disclaimer.[*]Press Scan button.[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list][/quote]

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#5 guardian4600

guardian4600
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 29 August 2012 - 09:41 PM

I can't seem to access System Recovery Options. Everytime I select "Repair your computer", I am taken to a loading screen that never makes any progress. I let it run for about a half an hour and when I came back the loading bar was in the same initial position.
Is this normal, or is there something wrong? Perhaps I'm just being impatient.

Edit: I'll let it load overnight and see what happens. If that fails, I will attempt to load it through the installation disc tomorrow. If that fails as well, I'm going to try to load it via a system repair disc unless told otherwise.

Edited by guardian4600, 29 August 2012 - 10:05 PM.


#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:09 PM

Posted 30 August 2012 - 05:36 PM

OK, Let me know how it goes.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 guardian4600

guardian4600
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 02 September 2012 - 03:26 AM

Sorry for the delay, I finally managed to run the scan and everything:

Scan result of Farbar Recovery Scan Tool Version: 29-08-2012 03
Ran by SYSTEM at 02-09-2012 04:17:22
Running from G:\
Windows 7 Home Premium (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe [305664 2009-01-22] (Alps Electric Co., Ltd.)
HKLM\...\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [444416 2009-06-28] (IDT, Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe [4968960 2009-07-16] (Dell Inc.)
HKLM\...\Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe [3180624 2009-07-02] (Dell Inc.)
HKLM\...\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m [1807600 2009-11-13] ()
HKLM-x32\...\Run: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [140520 2009-12-29] (CyberLink Corp.)
HKLM-x32\...\Run: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter [206064 2009-05-21] (SupportSoft, Inc.)
HKLM-x32\...\Run: [D-Link D-Link DWA-125] C:\Program Files (x86)\D-Link\DWA-125 revA\AirGCFG.exe [995328 2009-10-19] (D-Link Corp.)
HKLM-x32\...\Run: [WZCSLDR2] C:\Program Files (x86)\D-Link\DWA-125 revA\WZCSLDR2.exe [122880 2009-10-19] (Wireless Service)
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" [1398440 2011-12-14] (Ask)
HKLM-x32\...\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [498160 2009-12-15] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-11-01] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2 [462991 2010-06-18] (Creative Technology Ltd)
HKLM-x32\...\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot [296056 2011-12-30] (RealNetworks, Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2011-12-07] (Apple Inc.)
HKLM-x32\...\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" [1162848 2012-08-29] ()
HKLM-x32\...\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" [2587008 2012-04-05] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12 [1020512 2012-08-29] ()
HKLM-x32\...\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray [462920 2012-07-03] (Malwarebytes Corporation)
HKU\Melissa\...\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent [3325952 2009-03-28] (Electronic Arts)
HKU\Melissa\...\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED [896400 2012-08-17] (BitTorrent, Inc.)
HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [559616 2011-10-11] (Dell)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
Startup: C:\Users\Default\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Melissa\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)

==================== Services (Whitelisted) ======

2 AVGIDSAgent; "C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe" [5160568 2012-07-04] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe" [193288 2012-02-14] (AVG Technologies CZ, s.r.o.)
2 D_Link_DWA-125; C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe [126976 2009-08-21] (Wireless Service)
2 D_Link_DWA-125_WPS; C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe [40960 2009-07-07] ()
2 MBAMService; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" [655944 2012-07-03] (Malwarebytes Corporation)
2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe [240128 2009-06-28] (IDT, Inc.)
2 vToolbarUpdater12.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe [927840 2012-08-29] ()

==================== Drivers (Whitelisted) ===================

1 anodlwf; C:\Windows\System32\DRIVERS\anodlwfx.sys [15872 2009-03-06] ()
3 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [124496 2011-12-23] (AVG Technologies CZ, s.r.o. )
3 AVGIDSFilter; C:\Windows\System32\DRIVERS\avgidsfiltera.sys [29776 2011-12-23] (AVG Technologies CZ, s.r.o. )
0 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [28480 2012-04-19] (AVG Technologies CZ, s.r.o. )
1 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [289872 2012-02-22] (AVG Technologies CZ, s.r.o.)
1 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [47696 2011-12-23] (AVG Technologies CZ, s.r.o.)
0 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [36944 2012-01-31] (AVG Technologies CZ, s.r.o.)
1 Avgtdia; C:\Windows\System32\Drivers\Avgtdia.sys [383808 2012-03-19] (AVG Technologies CZ, s.r.o.)
1 avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [31080 2012-08-29] (AVG Technologies)
3 MOSUMAC; C:\Windows\System32\DRIVERS\USBMAC64.SYS [55296 2009-12-07] (--)
3 netr28ux; C:\Windows\System32\DRIVERS\Dnetr28ux.sys [1061888 2009-09-15] (Ralink Technology Corp.)
3 sscdserd; C:\Windows\System32\Drivers\sscdserd.sys [141384 2010-11-10] (MCCI Corporation)
3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-11] (LG Electronics Inc.)
3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-11] (LG Electronics Inc.)
3 UsbGps; C:\Windows\System32\DRIVERS\lgx64gps.sys [27136 2008-11-11] (LG Electronics Inc.)
3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-11] (LG Electronics Inc.)
3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [x]

==================== NetSvcs (Whitelisted) =================


==================== One Month Created Files and Folders ======================

2012-08-29 19:13 - 2012-08-29 19:14 - 01450005 ____A (Farbar) C:\Users\Melissa\Downloads\FRST64.exe
2012-08-29 18:41 - 2012-08-29 18:41 - 00001071 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2012-08-29 18:41 - 2012-08-29 18:41 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-29 18:39 - 2012-08-29 18:40 - 10652120 ____A (Malwarebytes Corporation ) C:\Users\Melissa\Downloads\mbam-setup-1.62.0.1300(2).exe
2012-08-29 18:30 - 2012-08-29 18:30 - 00096200 ____A C:\Users\Melissa\AppData\Local\GDIPFONTCACHEV1.DAT
2012-08-29 18:09 - 2012-08-29 18:10 - 00000000 ____D C:\Users\Melissa\AppData\Roaming\AVG
2012-08-29 18:08 - 2012-08-29 18:08 - 08351056 ____A (AVG ) C:\Users\Melissa\Downloads\avg_pct_stf_all_10_27_c11.exe
2012-08-29 18:08 - 2012-08-29 18:08 - 00001104 ____A C:\Users\Melissa\Desktop\AVG PC Tuneup 2011.lnk
2012-08-29 18:00 - 2012-08-29 18:00 - 00011510 ____A C:\Users\Melissa\Downloads\Attach.zip
2012-08-29 17:47 - 2012-08-29 17:47 - 00607260 ____R (Swearware) C:\Users\Melissa\Downloads\dds.com
2012-08-29 17:19 - 2012-08-29 17:19 - 00000000 ____D C:\Users\Melissa\Downloads\TMRBLog
2012-08-29 17:18 - 2012-08-29 17:19 - 08656400 ____A (Trend Micro Inc.) C:\Users\Melissa\Downloads\RootkitBuster_v5_1061.exe
2012-08-29 17:16 - 2012-08-29 17:17 - 00000237 ____A C:\Users\Melissa\Downloads\RootkitRemover20120829201647.txt
2012-08-29 17:16 - 2012-08-29 17:16 - 00475752 ____A (McAfee, Inc.) C:\Users\Melissa\Downloads\rootkitremover.exe
2012-08-29 17:04 - 2012-08-29 17:06 - 00021262 ____A C:\Users\Melissa\Downloads\Result.txt
2012-08-29 17:04 - 2012-08-29 17:04 - 00751391 ____A (Farbar) C:\Users\Melissa\Downloads\MiniToolBox.exe
2012-08-29 17:01 - 2012-08-29 17:01 - 00000194 ____A C:\Users\Melissa\Downloads\hosts-perm.bat
2012-08-29 16:45 - 2012-08-29 16:45 - 00399264 ____A (Bleeping Computer, LLC) C:\Users\Melissa\Downloads\unhide.exe
2012-08-29 13:23 - 2012-08-29 13:23 - 01932256 ____A (Symantec Corporation) C:\Users\Melissa\Downloads\FixTDSS.com
2012-08-29 13:08 - 2012-08-29 17:31 - 04731392 ____A (AVAST Software) C:\Users\Melissa\Downloads\Iexplore.exe
2012-08-29 12:47 - 2012-08-29 12:47 - 00001092 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2012-08-29 12:47 - 2012-08-29 12:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2012-08-29 12:38 - 2012-08-29 12:38 - 00854124 ____A C:\Users\Melissa\Downloads\SecurityCheck.exe
2012-08-29 12:28 - 2012-08-29 12:28 - 00607260 ____R (Swearware) C:\Users\Melissa\Downloads\dds.scr
2012-08-29 10:31 - 2012-08-29 10:32 - 10652120 ____A (Malwarebytes Corporation ) C:\Users\Melissa\Downloads\mbam-setup-1.62.0.1300(1).exe
2012-08-29 10:31 - 2012-08-29 10:31 - 10652120 ____A (Malwarebytes Corporation ) C:\Users\Melissa\Downloads\mbam-setup-1.62.0.1300.exe
2012-08-29 10:07 - 2012-08-29 10:07 - 00000000 ____D C:\Users\Melissa\AppData\Roaming\AVG2012
2012-08-29 09:57 - 2012-08-29 09:57 - 00031080 ____A (AVG Technologies) C:\Windows\System32\Drivers\avgtpx64.sys
2012-08-29 09:57 - 2012-08-29 09:57 - 00000927 ____A C:\Users\Public\Desktop\AVG 2012.lnk
2012-08-29 09:57 - 2012-08-29 09:57 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search
2012-08-29 09:56 - 2012-08-30 12:24 - 00000000 ____D C:\Windows\System32\Drivers\AVG
2012-08-29 09:56 - 2012-08-29 09:56 - 00000000 ____D C:\Windows\SysWOW64\Drivers\AVG
2012-08-29 09:53 - 2012-08-29 09:53 - 00448512 ____A (OldTimer Tools) C:\Users\Melissa\Downloads\TFC.exe
2012-08-29 09:47 - 2012-08-29 09:47 - 00197904 ____A C:\Users\Melissa\Downloads\AVG-Anti-Virus-Free-Edition-2012_Setup.exe
2012-08-29 05:09 - 2012-08-29 06:14 - 00000000 ____D C:\sdaf223
2012-08-29 01:52 - 2012-08-29 01:52 - 00000000 ____D C:\Users\Melissa\AppData\Local\AVG Secure Search
2012-08-29 01:51 - 2012-08-29 13:16 - 00000000 ____D C:\Users\All Users\AVG2012
2012-08-29 01:51 - 2012-08-29 01:51 - 00000000 ____D C:\$AVG
2012-08-29 01:50 - 2012-08-29 18:08 - 00000000 ____D C:\Program Files (x86)\AVG
2012-08-29 01:47 - 2012-08-30 12:24 - 00000000 ____D C:\Users\All Users\MFAData
2012-08-29 01:47 - 2012-08-29 01:47 - 00000009 ____A C:\END
2012-08-29 00:06 - 2012-08-29 06:14 - 00000000 ____D C:\Qoobox
2012-08-29 00:05 - 2012-08-29 09:25 - 00000000 ____D C:\Windows\erdnt
2012-08-28 22:13 - 2012-08-29 09:26 - 00000000 ____D C:\Users\All Users\Spybot - Search & Destroy
2012-08-28 22:13 - 2012-08-29 09:26 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy
2012-08-28 21:54 - 2012-08-28 21:54 - 00000000 ____D C:\Program Files (x86)\ESET
2012-08-28 21:45 - 2012-08-28 21:45 - 00000000 ____D C:\Users\Melissa\AppData\Roaming\Malwarebytes
2012-08-28 21:45 - 2012-08-28 21:45 - 00000000 ____D C:\Users\All Users\Malwarebytes
2012-08-28 20:40 - 2012-08-28 20:40 - 00000000 ____D C:\Windows\Sun
2012-08-28 20:36 - 2012-08-29 09:30 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2012-08-28 20:36 - 2012-08-28 20:36 - 00000000 ____D C:\Users\Melissa\AppData\Roaming\SUPERAntiSpyware.com
2012-08-28 20:36 - 2012-08-28 20:36 - 00000000 ____D C:\Users\All Users\SUPERAntiSpyware.com
2012-08-28 18:56 - 2012-08-29 09:25 - 00000000 ____D C:\Users\Melissa\Downloads\VBA + games
2012-08-27 18:42 - 2012-08-27 18:54 - 00000000 ____D C:\Users\Melissa\AppData\Roaming\vlc
2012-08-27 18:40 - 2012-08-27 18:40 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2012-08-27 18:37 - 2012-08-27 18:40 - 22617148 ____A C:\Users\Melissa\Downloads\vlc-2.0.3-win32(2).exe
2012-08-24 22:32 - 2012-08-24 22:32 - 00187497 ____A C:\Users\Melissa\Downloads\How About I.swf
2012-08-21 09:40 - 2012-08-21 09:40 - 00018944 ____A C:\Users\Melissa\Documents\Resume of Melissa.wps
2012-08-21 09:22 - 2012-08-21 09:22 - 00000000 ____D C:\Users\All Users\HP
2012-08-21 09:20 - 2012-08-21 09:21 - 04755448 ____A C:\Users\Melissa\Downloads\HPPSdr.exe
2012-08-17 23:30 - 2012-08-17 23:34 - 00000000 ____D C:\Users\Melissa\[a-S] Cromartie High School
2012-08-17 23:29 - 2012-08-17 23:35 - 00000000 ____D C:\Users\Melissa\Azumanga Daioh
2012-08-17 23:26 - 2012-08-17 23:27 - 00896400 ____A (BitTorrent, Inc.) C:\Users\Melissa\Downloads\uTorrent.exe
2012-08-17 23:22 - 2012-08-18 22:19 - 00000000 ____D C:\Users\Melissa\Tengen_Toppa_Gurren_Lagann_1-27-HD
2012-08-17 22:37 - 2012-08-18 22:03 - 00000000 ____D C:\Users\Melissa\Black Lagoon
2012-08-17 18:05 - 2012-08-17 18:05 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2012-08-17 00:04 - 2012-06-28 20:55 - 17809920 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-08-17 00:04 - 2012-06-28 20:09 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-08-17 00:04 - 2012-06-28 19:56 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-08-17 00:04 - 2012-06-28 19:49 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-08-17 00:04 - 2012-06-28 19:49 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-08-17 00:04 - 2012-06-28 19:48 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-08-17 00:04 - 2012-06-28 19:47 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-08-17 00:04 - 2012-06-28 19:45 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-08-17 00:04 - 2012-06-28 19:44 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-08-17 00:04 - 2012-06-28 19:43 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-08-17 00:04 - 2012-06-28 19:42 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-08-17 00:04 - 2012-06-28 19:40 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-08-17 00:04 - 2012-06-28 19:39 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-08-17 00:04 - 2012-06-28 19:35 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-08-17 00:04 - 2012-06-28 16:52 - 12317184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-08-17 00:04 - 2012-06-28 16:27 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-08-17 00:04 - 2012-06-28 16:16 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-08-17 00:04 - 2012-06-28 16:09 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-08-17 00:04 - 2012-06-28 16:09 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-08-17 00:04 - 2012-06-28 16:08 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-08-17 00:04 - 2012-06-28 16:07 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-08-17 00:04 - 2012-06-28 16:06 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-08-17 00:04 - 2012-06-28 16:04 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-08-17 00:04 - 2012-06-28 16:04 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-08-17 00:04 - 2012-06-28 16:01 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-08-17 00:04 - 2012-06-28 16:01 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-08-17 00:04 - 2012-06-28 16:00 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-08-17 00:04 - 2012-06-28 15:57 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-08-16 18:29 - 2012-07-18 10:15 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-08-16 18:29 - 2012-07-04 14:16 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-08-16 18:29 - 2012-07-04 14:13 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-08-16 18:29 - 2012-07-04 14:13 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll
2012-08-16 18:29 - 2012-07-04 13:16 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2012-08-16 18:29 - 2012-07-04 13:14 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2012-08-16 18:29 - 2012-05-13 21:26 - 00956928 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll
2012-08-16 18:29 - 2012-05-05 00:36 - 00503808 ____A (Microsoft Corporation) C:\Windows\System32\srcore.dll
2012-08-16 18:29 - 2012-05-04 23:46 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2012-08-16 18:29 - 2012-02-10 22:43 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2012-08-16 18:29 - 2012-02-10 22:36 - 00559104 ____A (Microsoft Corporation) C:\Windows\System32\spoolsv.exe
2012-08-16 18:29 - 2012-02-10 22:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\splwow64.exe
2012-08-16 18:29 - 2012-02-10 21:43 - 00492032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll


==================== 3 Months Modified Files ================================

2012-09-02 00:56 - 2010-10-25 07:03 - 00000007 ____A C:\Windows\SysWOW64\ANIWZCSUSERNAME
2012-09-02 00:55 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-09-02 00:55 - 2009-07-13 20:51 - 00085553 ____A C:\Windows\setupact.log
2012-08-30 12:25 - 2009-07-13 21:10 - 01774981 ____A C:\Windows\WindowsUpdate.log
2012-08-30 12:25 - 2009-07-13 20:45 - 00014240 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-08-30 12:25 - 2009-07-13 20:45 - 00014240 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-08-29 20:04 - 2012-07-11 21:16 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-08-29 19:14 - 2012-08-29 19:13 - 01450005 ____A (Farbar) C:\Users\Melissa\Downloads\FRST64.exe
2012-08-29 18:41 - 2012-08-29 18:41 - 00001071 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2012-08-29 18:40 - 2012-08-29 18:39 - 10652120 ____A (Malwarebytes Corporation ) C:\Users\Melissa\Downloads\mbam-setup-1.62.0.1300(2).exe
2012-08-29 18:35 - 2010-03-28 01:22 - 00511118 ____A C:\Windows\PFRO.log
2012-08-29 18:30 - 2012-08-29 18:30 - 00096200 ____A C:\Users\Melissa\AppData\Local\GDIPFONTCACHEV1.DAT
2012-08-29 18:08 - 2012-08-29 18:08 - 08351056 ____A (AVG ) C:\Users\Melissa\Downloads\avg_pct_stf_all_10_27_c11.exe
2012-08-29 18:08 - 2012-08-29 18:08 - 00001104 ____A C:\Users\Melissa\Desktop\AVG PC Tuneup 2011.lnk
2012-08-29 18:00 - 2012-08-29 18:00 - 00011510 ____A C:\Users\Melissa\Downloads\Attach.zip
2012-08-29 17:47 - 2012-08-29 17:47 - 00607260 ____R (Swearware) C:\Users\Melissa\Downloads\dds.com
2012-08-29 17:31 - 2012-08-29 13:08 - 04731392 ____A (AVAST Software) C:\Users\Melissa\Downloads\Iexplore.exe
2012-08-29 17:19 - 2012-08-29 17:18 - 08656400 ____A (Trend Micro Inc.) C:\Users\Melissa\Downloads\RootkitBuster_v5_1061.exe
2012-08-29 17:17 - 2012-08-29 17:16 - 00000237 ____A C:\Users\Melissa\Downloads\RootkitRemover20120829201647.txt
2012-08-29 17:16 - 2012-08-29 17:16 - 00475752 ____A (McAfee, Inc.) C:\Users\Melissa\Downloads\rootkitremover.exe
2012-08-29 17:06 - 2012-08-29 17:04 - 00021262 ____A C:\Users\Melissa\Downloads\Result.txt
2012-08-29 17:04 - 2012-08-29 17:04 - 00751391 ____A (Farbar) C:\Users\Melissa\Downloads\MiniToolBox.exe
2012-08-29 17:01 - 2012-08-29 17:01 - 00000194 ____A C:\Users\Melissa\Downloads\hosts-perm.bat
2012-08-29 16:45 - 2012-08-29 16:45 - 00399264 ____A (Bleeping Computer, LLC) C:\Users\Melissa\Downloads\unhide.exe
2012-08-29 13:23 - 2012-08-29 13:23 - 01932256 ____A (Symantec Corporation) C:\Users\Melissa\Downloads\FixTDSS.com
2012-08-29 12:47 - 2012-08-29 12:47 - 00001092 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2012-08-29 12:38 - 2012-08-29 12:38 - 00854124 ____A C:\Users\Melissa\Downloads\SecurityCheck.exe
2012-08-29 12:28 - 2012-08-29 12:28 - 00607260 ____R (Swearware) C:\Users\Melissa\Downloads\dds.scr
2012-08-29 10:43 - 2009-07-13 21:13 - 00726444 ____A C:\Windows\System32\PerfStringBackup.INI
2012-08-29 10:32 - 2012-08-29 10:31 - 10652120 ____A (Malwarebytes Corporation ) C:\Users\Melissa\Downloads\mbam-setup-1.62.0.1300(1).exe
2012-08-29 10:31 - 2012-08-29 10:31 - 10652120 ____A (Malwarebytes Corporation ) C:\Users\Melissa\Downloads\mbam-setup-1.62.0.1300.exe
2012-08-29 10:25 - 2010-09-06 16:10 - 00004782 ____A C:\Users\Melissa\AppData\Roaming\wklnhst.dat
2012-08-29 10:12 - 2012-07-11 21:16 - 00696520 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-08-29 10:12 - 2011-06-23 19:55 - 00073416 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-08-29 09:57 - 2012-08-29 09:57 - 00031080 ____A (AVG Technologies) C:\Windows\System32\Drivers\avgtpx64.sys
2012-08-29 09:57 - 2012-08-29 09:57 - 00000927 ____A C:\Users\Public\Desktop\AVG 2012.lnk
2012-08-29 09:53 - 2012-08-29 09:53 - 00448512 ____A (OldTimer Tools) C:\Users\Melissa\Downloads\TFC.exe
2012-08-29 09:47 - 2012-08-29 09:47 - 00197904 ____A C:\Users\Melissa\Downloads\AVG-Anti-Virus-Free-Edition-2012_Setup.exe
2012-08-29 01:47 - 2012-08-29 01:47 - 00000009 ____A C:\END
2012-08-27 18:40 - 2012-08-27 18:37 - 22617148 ____A C:\Users\Melissa\Downloads\vlc-2.0.3-win32(2).exe
2012-08-24 22:32 - 2012-08-24 22:32 - 00187497 ____A C:\Users\Melissa\Downloads\How About I.swf
2012-08-21 09:40 - 2012-08-21 09:40 - 00018944 ____A C:\Users\Melissa\Documents\Resume of Melissa.wps
2012-08-21 09:39 - 2012-01-12 11:20 - 00016896 ____A C:\Users\Melissa\Documents\references.wps
2012-08-21 09:21 - 2012-08-21 09:20 - 04755448 ____A C:\Users\Melissa\Downloads\HPPSdr.exe
2012-08-17 23:29 - 2012-07-28 21:55 - 00000905 ____A C:\Users\Public\Desktop\オTorrent.lnk
2012-08-17 23:27 - 2012-08-17 23:26 - 00896400 ____A (BitTorrent, Inc.) C:\Users\Melissa\Downloads\uTorrent.exe
2012-08-17 18:05 - 2012-08-17 18:05 - 09826504 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2012-08-17 00:23 - 2009-07-13 20:45 - 00375104 ____A C:\Windows\System32\FNTCACHE.DAT
2012-08-17 00:00 - 2010-09-10 14:06 - 62134624 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-05 11:49 - 2012-03-30 07:30 - 00016384 ____A C:\Users\Melissa\Documents\cover letter new.wps
2012-08-05 10:40 - 2012-01-12 11:11 - 00017920 ____A C:\Users\Melissa\Documents\resume.wps
2012-07-28 21:44 - 2012-07-28 21:44 - 00008512 ____A C:\Users\Melissa\00-rascal_flatts-changed-2012.nfo
2012-07-28 21:44 - 2012-07-28 21:44 - 00000465 ____A C:\Users\Melissa\00-rascal_flatts-changed-2012.sfv
2012-07-28 21:44 - 2012-07-28 21:44 - 00000355 ____A C:\Users\Melissa\00-rascal_flatts-changed-2012.m3u
2012-07-28 20:13 - 2012-07-28 20:13 - 00956304 ____A (BitTorrent, Inc.) C:\Users\Melissa\Downloads\uTorrent-3.2.1.exe
2012-07-23 19:32 - 2009-07-13 21:08 - 00032536 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-07-19 19:22 - 2012-07-19 19:22 - 00002502 ____A C:\Users\Public\Desktop\WildTangent Games App - dell.lnk
2012-07-18 10:15 - 2012-08-16 18:29 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-07-05 16:26 - 2012-07-05 16:26 - 00277040 ____A C:\Windows\Minidump\070512-36379-01.dmp
2012-07-05 16:26 - 2011-06-28 11:02 - 410365267 ____A C:\Windows\MEMORY.DMP
2012-07-04 14:16 - 2012-08-16 18:29 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-07-04 14:13 - 2012-08-16 18:29 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-07-04 14:13 - 2012-08-16 18:29 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll
2012-07-04 13:16 - 2012-08-16 18:29 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2012-07-04 13:14 - 2012-08-16 18:29 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2012-06-28 20:55 - 2012-08-17 00:04 - 17809920 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-06-28 20:09 - 2012-08-17 00:04 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-06-28 19:56 - 2012-08-17 00:04 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-06-28 19:49 - 2012-08-17 00:04 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-06-28 19:49 - 2012-08-17 00:04 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-06-28 19:48 - 2012-08-17 00:04 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-06-28 19:47 - 2012-08-17 00:04 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-06-28 19:45 - 2012-08-17 00:04 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-06-28 19:44 - 2012-08-17 00:04 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-06-28 19:43 - 2012-08-17 00:04 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-06-28 19:42 - 2012-08-17 00:04 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-06-28 19:40 - 2012-08-17 00:04 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-06-28 19:39 - 2012-08-17 00:04 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-06-28 19:35 - 2012-08-17 00:04 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-06-28 16:52 - 2012-08-17 00:04 - 12317184 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-06-28 16:27 - 2012-08-17 00:04 - 09737728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-06-28 16:16 - 2012-08-17 00:04 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-06-28 16:09 - 2012-08-17 00:04 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-06-28 16:09 - 2012-08-17 00:04 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-06-28 16:08 - 2012-08-17 00:04 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-06-28 16:07 - 2012-08-17 00:04 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-06-28 16:06 - 2012-08-17 00:04 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-06-28 16:04 - 2012-08-17 00:04 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-06-28 16:04 - 2012-08-17 00:04 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-06-28 16:01 - 2012-08-17 00:04 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-06-28 16:01 - 2012-08-17 00:04 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-06-28 16:00 - 2012-08-17 00:04 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-06-28 15:57 - 2012-08-17 00:04 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-06-11 19:27 - 2012-06-11 19:27 - 00017408 ____A C:\Users\Melissa\Documents\claires.wps
2012-06-08 21:43 - 2012-07-11 21:28 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-06-08 20:41 - 2012-07-11 21:28 - 12873728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2012-06-06 05:49 - 2012-06-06 05:49 - 01070152 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2012-06-05 22:06 - 2012-07-11 21:28 - 02004480 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-06-05 22:06 - 2012-07-11 21:28 - 01881600 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2012-06-05 22:02 - 2012-07-11 21:28 - 01133568 ____A (Microsoft Corporation) C:\Windows\System32\cdosys.dll
2012-06-05 21:05 - 2012-07-11 21:28 - 01390080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2012-06-05 21:05 - 2012-07-11 21:28 - 01236992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2012-06-05 21:03 - 2012-07-11 21:28 - 00805376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-08-29 01:49:58
Restore point made on: 2012-08-29 01:50:36
Restore point made on: 2012-08-29 09:55:20
Restore point made on: 2012-08-29 09:55:57

==================== Memory info ===========================

Percentage of memory in use: 17%
Total physical RAM: 4056.36 MB
Available physical RAM: 3341.76 MB
Total Pagefile: 4054.51 MB
Available Pagefile: 3339.92 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

==================== Partitions ============================

1 Drive c: (OS) (Fixed) (Total:451.06 GB) (Free:361.13 GB) NTFS
2 Drive e: (Repair disc Windows 7 64-bit) (CDROM) (Total:0.26 GB) (Free:0 GB) UDF
4 Drive g: (USB20FD) (Removable) (Total:7.51 GB) (Free:3.65 GB) FAT32
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
6 Drive y: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:8.86 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B
Disk 1 No Media 0 B 0 B
Disk 2 Online 7702 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 31 KB
Partition 2 Primary 14 GB 40 MB
Partition 3 Primary 451 GB 14 GB
Partition 4 Primary 10 MB 465 GB

==================================================================================

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 5 FAT Partition 39 MB Healthy Hidden

==================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 Y RECOVERY NTFS Partition 14 GB Healthy

==================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C OS NTFS Partition 451 GB Healthy

==================================================================================

Disk: 0
Partition 4
Type : 17 (Suspicious Type)
Hidden: Yes
Active: Yes

There is no volume associated with this partition.

==================================================================================

Partitions of Disk 2:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 7701 MB 31 KB

==================================================================================

Disk: 2
Partition 1
Type : 0C
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 G USB20FD FAT32 Removable 7701 MB Healthy

==================================================================================

Last Boot: 2012-08-29 06:43

==================== End Of Log =============================

#8 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:09 PM

Posted 02 September 2012 - 09:46 AM

1.
Please delete everything from your USB drive and do the following.



Please download Listparts64 to your USB Flash Drive

  • Click Start and in the Search Programs and files box type Notepad.exe then hit Enter.
  • An empty Notepad file will open.
  • Copy and paste the contents of the code box below into Notepad.

Disk=0 Partition=2 active
custom
Disk=0 Partition=4 type=07

  • Click Format and ensure Wordwrap is unchecked.
  • Save as Fix.txt to the flash drive where ListParts is located.

Next

Boot your computer into Recovery Environment

  • Restart the computer and press F8 repeatedly until the Advanced Options Menu appears.
  • Select Repair your computer.
  • Select Language and click Next
  • Enter password (if necessary) and click OK, you should now see the screen below ...

Posted Image

  • Select the Command Prompt option.
  • A command window will open.
  • Type notepad then hit Enter.
  • Notepad will open.
  • Click File > Open then select Computer.
  • Note down the drive letter for your USB Drive.
  • Close Notepad.
[*]Back in the command window ....
  • Type e:/listparts64.exe and hit Enter (where e: is replaced by the drive letter for your USB drive)
  • ListParts will start to run.
  • Press the Fix button.
  • ListParts will process the script in Fix.txt
  • When finished please press the Scan button.
  • A log Result.txt will be saved to the flash drive.
[*]Close the command window.
[*]Boot back into normal mode and post me the Result.txt log please.
[/list]


Things to include in your next reply::
Fix.txt
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#9 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:09 PM

Posted 04 September 2012 - 06:22 PM

Hello.

Are you still there?

If you are please follow the instructions in my previous post.

If you still need help, follow the instructions I have given in my response. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

Please reply back telling us so. If you don't reply within 3-5 days the topic will need to be closed.

Thanks for understanding :)

With Regards,
fireman4it

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#10 guardian4600

guardian4600
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 05 September 2012 - 01:41 PM

Hey, sorry for not replying earlier; this past week has been rather busy. Here's Fix.txt, but I'm not sure if I should post result.txt as well, so I'll just go ahead and do it:

Fix.txt--
Disk=0 Partition=2 active
custom
Disk=0 Partition=4 type=07

Results.txt--
ListParts by Farbar Version: 10-08-2012
Ran by SYSTEM (administrator) on 05-09-2012 at 14:25:47
Windows 7 (X64)
Running From: G:\
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 14%
Total physical RAM: 4056.36 MB
Available physical RAM: 3458.96 MB
Total Pagefile: 4054.51 MB
Available Pagefile: 3450.37 MB
Total Virtual: 8192 MB
Available Virtual: 8191.91 MB

======================= Partitions =========================

1 Drive c: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:8.86 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (OS) (Fixed) (Total:451.06 GB) (Free:360.92 GB) NTFS
3 Drive e: (Repair disc Windows 7 64-bit) (CDROM) (Total:0.26 GB) (Free:0 GB) UDF
5 Drive g: (USB20FD) (Removable) (Total:7.51 GB) (Free:7.5 GB) FAT32
7 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B
Disk 1 No Media 0 B 0 B
Disk 2 Online 7702 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 39 MB 31 KB
Partition 2 Primary 14 GB 40 MB
Partition 3 Primary 451 GB 14 GB
Partition 4 Primary 10 MB 465 GB

======================================================================================================

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 6 FAT Partition 39 MB Healthy Hidden

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C RECOVERY NTFS Partition 14 GB Healthy

======================================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 D OS NTFS Partition 451 GB Healthy

======================================================================================================

Disk: 0
Partition 4
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 H RAW Partition 10 MB Healthy

======================================================================================================

Partitions of Disk 2:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 7701 MB 31 KB

======================================================================================================

Disk: 2
Partition 1
Type : 0C
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 5 G USB20FD FAT32 Removable 7701 MB Healthy

======================================================================================================

****** End Of Log ******

Concerning the state of the computer, it's still functional and everything but I have 3 problems still occurring: Google link redirects, unusually slow connection speeds, and audio ads coming from the speakers without reason. Also, I noticed a peculiar message last time I used the computer; a very small window opened with text reading simply "Thanks.", and an okay button under it. I don't know if that has any significance, but it stood out to me.

Edited by guardian4600, 05 September 2012 - 01:41 PM.


#11 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:09 PM

Posted 05 September 2012 - 04:32 PM

1.
Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.


2.
Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop.

Link 1
Link 2
  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • Posted Image
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    Posted Image
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.


Things to include in your next reply::
TdssKiller log
Combofix.txt
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#12 guardian4600

guardian4600
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 06 September 2012 - 08:32 PM

Apparently, the post was too long when I put the TDSS Log in, so I'll just post it in two parts.

Part 1:
20:11:14.0362 4044 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
20:11:16.0374 4044 ============================================================
20:11:16.0374 4044 Current date / time: 2012/09/06 20:11:16.0374
20:11:16.0374 4044 SystemInfo:
20:11:16.0374 4044
20:11:16.0374 4044 OS Version: 6.1.7601 ServicePack: 1.0
20:11:16.0374 4044 Product type: Workstation
20:11:16.0374 4044 ComputerName: MELISSA-PC
20:11:16.0374 4044 UserName: Melissa
20:11:16.0374 4044 Windows directory: C:\Windows
20:11:16.0374 4044 System windows directory: C:\Windows
20:11:16.0374 4044 Running under WOW64
20:11:16.0374 4044 Processor architecture: Intel x64
20:11:16.0374 4044 Number of processors: 2
20:11:16.0374 4044 Page size: 0x1000
20:11:16.0374 4044 Boot type: Normal boot
20:11:16.0374 4044 ============================================================
20:11:27.0132 4044 BG loaded
20:11:29.0394 4044 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:11:29.0550 4044 ============================================================
20:11:29.0550 4044 \Device\Harddisk0\DR0:
20:11:29.0659 4044 MBR partitions:
20:11:29.0659 4044 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
20:11:29.0659 4044 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x3861E830
20:11:29.0659 4044 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3A37F000, BlocksNum 0x5000
20:11:29.0659 4044 ============================================================
20:11:30.0580 4044 C: <-> \Device\Harddisk0\DR0\Partition2
20:11:30.0704 4044 ============================================================
20:11:30.0704 4044 Initialize success
20:11:30.0704 4044 ============================================================
20:11:56.0498 6748 ============================================================
20:11:56.0498 6748 Scan started
20:11:56.0498 6748 Mode: Manual; SigCheck; TDLFS;
20:11:56.0498 6748 ============================================================
20:11:58.0386 6748 ================ Scan system memory ========================
20:11:58.0386 6748 System memory - ok
20:11:58.0386 6748 ================ Scan services =============================
20:11:58.0807 6748 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:11:59.0026 6748 1394ohci - ok
20:11:59.0072 6748 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:11:59.0104 6748 ACPI - ok
20:11:59.0150 6748 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:11:59.0353 6748 AcpiPmi - ok
20:11:59.0540 6748 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:11:59.0572 6748 AdobeFlashPlayerUpdateSvc - ok
20:11:59.0650 6748 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:11:59.0696 6748 adp94xx - ok
20:11:59.0743 6748 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:11:59.0759 6748 adpahci - ok
20:11:59.0821 6748 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:11:59.0852 6748 adpu320 - ok
20:11:59.0930 6748 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:12:00.0118 6748 AeLookupSvc - ok
20:12:00.0211 6748 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:12:00.0320 6748 AFD - ok
20:12:00.0383 6748 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:12:00.0414 6748 agp440 - ok
20:12:00.0461 6748 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:12:00.0492 6748 ALG - ok
20:12:00.0539 6748 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:12:00.0570 6748 aliide - ok
20:12:00.0617 6748 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:12:00.0632 6748 amdide - ok
20:12:00.0695 6748 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:12:00.0757 6748 AmdK8 - ok
20:12:00.0804 6748 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:12:00.0851 6748 AmdPPM - ok
20:12:00.0929 6748 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:12:00.0960 6748 amdsata - ok
20:12:01.0022 6748 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:12:01.0054 6748 amdsbs - ok
20:12:01.0133 6748 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:12:01.0148 6748 amdxata - ok
20:12:01.0226 6748 [ 4CCF421E6C4B2A4CBCE000715911F7CC ] anodlwf C:\Windows\system32\DRIVERS\anodlwfx.sys
20:12:01.0289 6748 anodlwf - ok
20:12:01.0335 6748 [ 1412E9A88FE1F7E35CE6058A2EF03664 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
20:12:01.0351 6748 ApfiltrService - ok
20:12:01.0413 6748 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:12:01.0476 6748 AppID - ok
20:12:01.0523 6748 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:12:01.0616 6748 AppIDSvc - ok
20:12:01.0694 6748 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:12:01.0772 6748 Appinfo - ok
20:12:01.0928 6748 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:12:01.0944 6748 Apple Mobile Device - ok
20:12:01.0991 6748 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:12:02.0022 6748 arc - ok
20:12:02.0037 6748 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:12:02.0053 6748 arcsas - ok
20:12:02.0084 6748 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:12:02.0147 6748 AsyncMac - ok
20:12:02.0209 6748 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:12:02.0240 6748 atapi - ok
20:12:02.0287 6748 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:12:02.0396 6748 AudioEndpointBuilder - ok
20:12:02.0412 6748 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:12:02.0459 6748 AudioSrv - ok
20:12:02.0755 6748 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
20:12:02.0849 6748 AVGIDSAgent - ok
20:12:02.0927 6748 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
20:12:02.0942 6748 AVGIDSDriver - ok
20:12:02.0973 6748 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
20:12:02.0989 6748 AVGIDSFilter - ok
20:12:03.0005 6748 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
20:12:03.0020 6748 AVGIDSHA - ok
20:12:03.0067 6748 [ 59955B4C288DD2A8B9FD2CD5158355C5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
20:12:03.0083 6748 Avgldx64 - ok
20:12:03.0114 6748 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
20:12:03.0129 6748 Avgmfx64 - ok
20:12:03.0207 6748 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
20:12:03.0223 6748 Avgrkx64 - ok
20:12:03.0363 6748 [ 1BEE674AD792B1C63BB0DAC5FA724B23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
20:12:03.0395 6748 Avgtdia - ok
20:12:03.0441 6748 [ E964EA70249DDE1343C8F694B52575EE ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
20:12:03.0457 6748 avgtp - ok
20:12:03.0488 6748 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
20:12:03.0519 6748 avgwd - ok
20:12:03.0629 6748 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:12:03.0738 6748 AxInstSV - ok
20:12:03.0863 6748 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:12:03.0987 6748 b06bdrv - ok
20:12:04.0019 6748 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:12:04.0081 6748 b57nd60a - ok
20:12:04.0143 6748 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
20:12:04.0159 6748 BCM42RLY - ok
20:12:04.0284 6748 [ 37394D3553E220FB732C21E217E1BD8B ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
20:12:04.0331 6748 BCM43XX - ok
20:12:04.0424 6748 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:12:04.0487 6748 BDESVC - ok
20:12:04.0533 6748 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:12:04.0611 6748 Beep - ok
20:12:04.0674 6748 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:12:04.0783 6748 BFE - ok
20:12:04.0877 6748 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:12:04.0986 6748 BITS - ok
20:12:05.0033 6748 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:12:05.0079 6748 blbdrive - ok
20:12:05.0220 6748 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:12:05.0251 6748 Bonjour Service - ok
20:12:05.0298 6748 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:12:05.0329 6748 bowser - ok
20:12:05.0376 6748 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:12:05.0485 6748 BrFiltLo - ok
20:12:05.0501 6748 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:12:05.0516 6748 BrFiltUp - ok
20:12:05.0547 6748 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:12:05.0610 6748 Browser - ok
20:12:05.0657 6748 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:12:05.0735 6748 Brserid - ok
20:12:05.0766 6748 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:12:05.0828 6748 BrSerWdm - ok
20:12:05.0859 6748 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:12:05.0891 6748 BrUsbMdm - ok
20:12:05.0953 6748 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:12:06.0000 6748 BrUsbSer - ok
20:12:06.0031 6748 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:12:06.0078 6748 BTHMODEM - ok
20:12:06.0140 6748 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:12:06.0218 6748 bthserv - ok
20:12:06.0249 6748 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:12:06.0327 6748 cdfs - ok
20:12:06.0374 6748 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:12:06.0452 6748 cdrom - ok
20:12:06.0515 6748 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:12:06.0608 6748 CertPropSvc - ok
20:12:06.0639 6748 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:12:06.0702 6748 circlass - ok
20:12:06.0795 6748 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:12:06.0842 6748 CLFS - ok
20:12:06.0905 6748 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:12:06.0936 6748 clr_optimization_v2.0.50727_32 - ok
20:12:06.0983 6748 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:12:07.0014 6748 clr_optimization_v2.0.50727_64 - ok
20:12:07.0076 6748 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:12:07.0107 6748 clr_optimization_v4.0.30319_32 - ok
20:12:07.0170 6748 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:12:07.0217 6748 clr_optimization_v4.0.30319_64 - ok
20:12:07.0263 6748 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:12:07.0310 6748 CmBatt - ok
20:12:07.0357 6748 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:12:07.0404 6748 cmdide - ok
20:12:07.0451 6748 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:12:07.0497 6748 CNG - ok
20:12:07.0544 6748 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:12:07.0560 6748 Compbatt - ok
20:12:07.0607 6748 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:12:07.0653 6748 CompositeBus - ok
20:12:07.0669 6748 COMSysApp - ok
20:12:07.0685 6748 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:12:07.0700 6748 crcdisk - ok
20:12:07.0747 6748 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:12:07.0825 6748 CryptSvc - ok
20:12:07.0903 6748 [ 916F311A84B4D528694FD4D44B5EAB1B ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:12:07.0965 6748 CtClsFlt - ok
20:12:08.0012 6748 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:12:08.0106 6748 DcomLaunch - ok
20:12:08.0153 6748 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:12:08.0277 6748 defragsvc - ok
20:12:08.0309 6748 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:12:08.0387 6748 DfsC - ok
20:12:08.0433 6748 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:12:08.0527 6748 Dhcp - ok
20:12:08.0574 6748 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:12:08.0636 6748 discache - ok
20:12:08.0683 6748 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:12:08.0699 6748 Disk - ok
20:12:08.0792 6748 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:12:08.0870 6748 Dnscache - ok
20:12:08.0948 6748 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
20:12:08.0979 6748 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
20:12:08.0979 6748 DockLoginService - detected UnsignedFile.Multi.Generic (1)
20:12:09.0057 6748 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:12:09.0151 6748 dot3svc - ok
20:12:09.0198 6748 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:12:09.0276 6748 DPS - ok
20:12:09.0323 6748 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:12:09.0385 6748 drmkaud - ok
20:12:09.0463 6748 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:12:09.0510 6748 DXGKrnl - ok
20:12:09.0557 6748 [ F195FBC375342BD25C936982245A8FB0 ] D_Link_DWA-125 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe
20:12:09.0557 6748 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - warning
20:12:09.0557 6748 D_Link_DWA-125 - detected UnsignedFile.Multi.Generic (1)
20:12:09.0588 6748 [ 4DB0907D750E0810309F8D8FA36625A6 ] D_Link_DWA-125_WPS C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
20:12:09.0588 6748 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - warning
20:12:09.0588 6748 D_Link_DWA-125_WPS - detected UnsignedFile.Multi.Generic (1)
20:12:09.0619 6748 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:12:09.0713 6748 EapHost - ok
20:12:09.0822 6748 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:12:10.0025 6748 ebdrv - ok
20:12:10.0087 6748 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:12:10.0118 6748 EFS - ok
20:12:10.0227 6748 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:12:10.0321 6748 ehRecvr - ok
20:12:10.0383 6748 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:12:10.0415 6748 ehSched - ok
20:12:10.0477 6748 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:12:10.0508 6748 elxstor - ok
20:12:10.0555 6748 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:12:10.0602 6748 ErrDev - ok
20:12:10.0664 6748 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:12:10.0742 6748 EventSystem - ok
20:12:10.0805 6748 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:12:10.0898 6748 exfat - ok
20:12:10.0945 6748 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:12:11.0023 6748 fastfat - ok
20:12:11.0085 6748 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:12:11.0179 6748 Fax - ok
20:12:11.0226 6748 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:12:11.0257 6748 fdc - ok
20:12:11.0319 6748 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:12:11.0366 6748 fdPHost - ok
20:12:11.0382 6748 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:12:11.0429 6748 FDResPub - ok
20:12:11.0475 6748 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:12:11.0491 6748 FileInfo - ok
20:12:11.0507 6748 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:12:11.0600 6748 Filetrace - ok
20:12:11.0647 6748 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:12:11.0678 6748 flpydisk - ok
20:12:11.0709 6748 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:12:11.0741 6748 FltMgr - ok
20:12:12.0037 6748 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:12:12.0115 6748 FontCache - ok
20:12:12.0193 6748 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:12:12.0209 6748 FontCache3.0.0.0 - ok
20:12:12.0240 6748 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:12:12.0271 6748 FsDepends - ok
20:12:12.0302 6748 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:12:12.0318 6748 Fs_Rec - ok
20:12:12.0365 6748 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:12:12.0380 6748 fvevol - ok
20:12:12.0443 6748 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:12:12.0458 6748 gagp30kx - ok
20:12:12.0567 6748 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
20:12:12.0583 6748 GamesAppService - ok
20:12:12.0630 6748 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:12:12.0645 6748 GEARAspiWDM - ok
20:12:12.0755 6748 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
20:12:12.0770 6748 GoToAssist - ok
20:12:12.0833 6748 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:12:12.0895 6748 gpsvc - ok
20:12:12.0957 6748 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:12:13.0035 6748 hcw85cir - ok
20:12:13.0067 6748 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:12:13.0129 6748 HDAudBus - ok
20:12:13.0223 6748 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:12:13.0254 6748 HidBatt - ok
20:12:13.0301 6748 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:12:13.0316 6748 HidBth - ok
20:12:13.0332 6748 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:12:13.0379 6748 HidIr - ok
20:12:13.0425 6748 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:12:13.0503 6748 hidserv - ok
20:12:13.0550 6748 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:12:13.0566 6748 HidUsb - ok
20:12:13.0597 6748 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:12:13.0691 6748 hkmsvc - ok
20:12:13.0753 6748 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:12:13.0847 6748 HomeGroupListener - ok
20:12:13.0909 6748 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:12:13.0971 6748 HomeGroupProvider - ok
20:12:14.0003 6748 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:12:14.0034 6748 HpSAMD - ok
20:12:14.0065 6748 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:12:14.0127 6748 HTTP - ok
20:12:14.0174 6748 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:12:14.0190 6748 hwpolicy - ok
20:12:14.0237 6748 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:12:14.0268 6748 i8042prt - ok
20:12:14.0439 6748 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
20:12:14.0471 6748 IAANTMON - ok
20:12:14.0533 6748 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:12:14.0549 6748 iaStor - ok
20:12:14.0595 6748 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:12:14.0611 6748 iaStorV - ok
20:12:14.0720 6748 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:12:14.0783 6748 idsvc - ok
20:12:15.0360 6748 [ BABD5F9B2BCC82CE556A0BAF1AE208A7 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:12:15.0531 6748 igfx - ok
20:12:15.0578 6748 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:12:15.0594 6748 iirsp - ok
20:12:15.0672 6748 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:12:15.0719 6748 IKEEXT - ok
20:12:15.0765 6748 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:12:15.0797 6748 intelide - ok
20:12:15.0828 6748 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:12:15.0875 6748 intelppm - ok
20:12:15.0921 6748 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:12:15.0999 6748 IPBusEnum - ok
20:12:16.0031 6748 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:12:16.0093 6748 IpFilterDriver - ok
20:12:16.0171 6748 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:12:16.0265 6748 iphlpsvc - ok
20:12:16.0296 6748 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:12:16.0343 6748 IPMIDRV - ok
20:12:16.0374 6748 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:12:16.0405 6748 IPNAT - ok
20:12:16.0467 6748 [ 46D249F9DB7844CC01050A9345F0F61B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:12:16.0499 6748 iPod Service - ok
20:12:16.0561 6748 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:12:16.0608 6748 IRENUM - ok
20:12:16.0655 6748 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:12:16.0686 6748 isapnp - ok
20:12:16.0717 6748 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:12:16.0733 6748 iScsiPrt - ok
20:12:16.0764 6748 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:12:16.0779 6748 kbdclass - ok
20:12:16.0811 6748 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:12:16.0857 6748 kbdhid - ok
20:12:16.0920 6748 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:12:16.0935 6748 KeyIso - ok
20:12:16.0982 6748 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:12:17.0013 6748 KSecDD - ok
20:12:17.0029 6748 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:12:17.0045 6748 KSecPkg - ok
20:12:17.0091 6748 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:12:17.0154 6748 ksthunk - ok
20:12:17.0201 6748 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:12:17.0263 6748 KtmRm - ok
20:12:17.0310 6748 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:12:17.0419 6748 LanmanServer - ok
20:12:17.0450 6748 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:12:17.0513 6748 LanmanWorkstation - ok
20:12:17.0591 6748 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:12:17.0669 6748 lltdio - ok
20:12:17.0747 6748 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:12:17.0840 6748 lltdsvc - ok
20:12:17.0871 6748 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:12:17.0934 6748 lmhosts - ok
20:12:17.0949 6748 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:12:17.0981 6748 LSI_FC - ok
20:12:18.0027 6748 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:12:18.0059 6748 LSI_SAS - ok
20:12:18.0074 6748 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:12:18.0090 6748 LSI_SAS2 - ok
20:12:18.0105 6748 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:12:18.0121 6748 LSI_SCSI - ok
20:12:18.0152 6748 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:12:18.0230 6748 luafv - ok
20:12:18.0403 6748 [ D33E2B74CF8B3A652BF0A9FBD068E87A ] ManyCam C:\Windows\system32\DRIVERS\ManyCam_x64.sys
20:12:18.0450 6748 ManyCam - ok
20:12:18.0793 6748 MBAMProtector - ok
20:12:19.0042 6748 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:12:19.0074 6748 MBAMService - ok
20:12:19.0214 6748 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:12:19.0245 6748 Mcx2Svc - ok
20:12:19.0417 6748 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:12:19.0464 6748 megasas - ok
20:12:19.0557 6748 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:12:19.0588 6748 MegaSR - ok
20:12:19.0744 6748 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:12:19.0916 6748 MMCSS - ok
20:12:20.0088 6748 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:12:20.0228 6748 Modem - ok
20:12:20.0275 6748 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:12:20.0337 6748 monitor - ok
20:12:20.0556 6748 [ 1CC353D6B0EFBC411BC34AE70E5F5B38 ] MOSUMAC C:\Windows\system32\DRIVERS\USBMAC64.SYS
20:12:20.0602 6748 MOSUMAC - ok
20:12:20.0680 6748 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:12:20.0696 6748 mouclass - ok
20:12:20.0774 6748 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:12:20.0805 6748 mouhid - ok
20:12:20.0883 6748 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:12:20.0899 6748 mountmgr - ok
20:12:21.0055 6748 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:12:21.0070 6748 MozillaMaintenance - ok
20:12:21.0148 6748 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:12:21.0180 6748 mpio - ok
20:12:21.0258 6748 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:12:21.0304 6748 mpsdrv - ok
20:12:21.0351 6748 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:12:21.0429 6748 MpsSvc - ok
20:12:21.0476 6748 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:12:21.0538 6748 MRxDAV - ok
20:12:21.0648 6748 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:12:21.0741 6748 mrxsmb - ok
20:12:21.0788 6748 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:12:21.0835 6748 mrxsmb10 - ok
20:12:21.0897 6748 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:12:21.0928 6748 mrxsmb20 - ok
20:12:21.0991 6748 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:12:22.0006 6748 msahci - ok
20:12:22.0038 6748 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:12:22.0069 6748 msdsm - ok
20:12:22.0100 6748 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:12:22.0147 6748 MSDTC - ok
20:12:22.0225 6748 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:12:22.0272 6748 Msfs - ok
20:12:22.0287 6748 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:12:22.0318 6748 mshidkmdf - ok
20:12:22.0396 6748 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:12:22.0428 6748 msisadrv - ok
20:12:22.0459 6748 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:12:22.0521 6748 MSiSCSI - ok
20:12:22.0521 6748 msiserver - ok
20:12:22.0568 6748 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:12:22.0677 6748 MSKSSRV - ok
20:12:22.0693 6748 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:12:22.0740 6748 MSPCLOCK - ok
20:12:22.0771 6748 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:12:22.0833 6748 MSPQM - ok
20:12:22.0864 6748 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:12:22.0896 6748 MsRPC - ok
20:12:22.0942 6748 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:12:22.0958 6748 mssmbios - ok
20:12:23.0005 6748 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:12:23.0067 6748 MSTEE - ok
20:12:23.0083 6748 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:12:23.0114 6748 MTConfig - ok
20:12:23.0145 6748 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:12:23.0161 6748 Mup - ok
20:12:23.0192 6748 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:12:23.0286 6748 napagent - ok
20:12:23.0348 6748 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:12:23.0426 6748 NativeWifiP - ok
20:12:23.0504 6748 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
20:12:23.0551 6748 NDIS - ok
20:12:23.0598 6748 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:12:23.0691 6748 NdisCap - ok
20:12:23.0754 6748 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:12:23.0800 6748 NdisTapi - ok
20:12:23.0832 6748 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:12:23.0925 6748 Ndisuio - ok
20:12:23.0972 6748 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:12:24.0097 6748 NdisWan - ok
20:12:24.0112 6748 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:12:24.0159 6748 NDProxy - ok
20:12:24.0190 6748 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:12:24.0268 6748 NetBIOS - ok
20:12:24.0346 6748 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:12:24.0440 6748 NetBT - ok
20:12:24.0487 6748 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:12:24.0518 6748 Netlogon - ok
20:12:24.0596 6748 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:12:24.0674 6748 Netman - ok
20:12:24.0705 6748 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:12:24.0783 6748 netprofm - ok
20:12:24.0846 6748 [ EED1FBDE98CF5F6D5C0C5B27AB1F68EC ] netr28ux C:\Windows\system32\DRIVERS\Dnetr28ux.sys
20:12:24.0955 6748 netr28ux - ok
20:12:24.0986 6748 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:12:25.0017 6748 NetTcpPortSharing - ok
20:12:25.0064 6748 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:12:25.0095 6748 nfrd960 - ok
20:12:25.0142 6748 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:12:25.0267 6748 NlaSvc - ok
20:12:25.0282 6748 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:12:25.0329 6748 Npfs - ok
20:12:25.0360 6748 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:12:25.0423 6748 nsi - ok
20:12:25.0470 6748 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:12:25.0563 6748 nsiproxy - ok
20:12:25.0750 6748 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:12:25.0813 6748 Ntfs - ok
20:12:25.0844 6748 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:12:25.0906 6748 Null - ok
20:12:25.0953 6748 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:12:25.0984 6748 nvraid - ok
20:12:26.0000 6748 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:12:26.0031 6748 nvstor - ok
20:12:26.0062 6748 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:12:26.0078 6748 nv_agp - ok
20:12:26.0094 6748 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:12:26.0109 6748 ohci1394 - ok
20:12:26.0234 6748 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:12:26.0265 6748 ose - ok
20:12:27.0154 6748 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:12:27.0357 6748 osppsvc - ok
20:12:27.0420 6748 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:12:27.0498 6748 p2pimsvc - ok
20:12:27.0529 6748 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:12:27.0560 6748 p2psvc - ok
20:12:27.0622 6748 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:12:27.0654 6748 Parport - ok
20:12:27.0685 6748 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:12:27.0700 6748 partmgr - ok
20:12:27.0716 6748 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:12:27.0778 6748 PcaSvc - ok
20:12:27.0810 6748 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:12:27.0825 6748 pci - ok
20:12:27.0856 6748 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:12:27.0888 6748 pciide - ok
20:12:27.0919 6748 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:12:27.0934 6748 pcmcia - ok
20:12:27.0950 6748 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:12:27.0966 6748 pcw - ok
20:12:27.0997 6748 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:12:28.0059 6748 PEAUTH - ok
20:12:28.0168 6748 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:12:28.0246 6748 PerfHost - ok
20:12:28.0324 6748 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:12:28.0387 6748 pla - ok
20:12:28.0449 6748 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:12:28.0527 6748 PlugPlay - ok
20:12:28.0558 6748 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:12:28.0590 6748 PNRPAutoReg - ok
20:12:28.0621 6748 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:12:28.0652 6748 PNRPsvc - ok
20:12:28.0699 6748 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:12:28.0808 6748 PolicyAgent - ok
20:12:28.0902 6748 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:12:28.0964 6748 Power - ok
20:12:28.0995 6748 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:12:29.0073 6748 PptpMiniport - ok
20:12:29.0104 6748 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:12:29.0151 6748 Processor - ok
20:12:29.0198 6748 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:12:29.0276 6748 ProfSvc - ok
20:12:29.0292 6748 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:12:29.0307 6748 ProtectedStorage - ok
20:12:29.0338 6748 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:12:29.0416 6748 Psched - ok
20:12:29.0463 6748 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:12:29.0479 6748 PxHlpa64 - ok
20:12:29.0542 6748 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:12:29.0620 6748 ql2300 - ok
20:12:29.0651 6748 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:12:29.0667 6748 ql40xx - ok
20:12:29.0698 6748 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:12:29.0729 6748 QWAVE - ok
20:12:29.0745 6748 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:12:29.0792 6748 QWAVEdrv - ok
20:12:29.0823 6748 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:12:29.0901 6748 RasAcd - ok
20:12:29.0948 6748 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:12:30.0010 6748 RasAgileVpn - ok
20:12:30.0026 6748 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:12:30.0119 6748 RasAuto - ok
20:12:30.0166 6748 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:12:30.0244 6748 Rasl2tp - ok
20:12:30.0291 6748 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:12:30.0338 6748 RasMan - ok
20:12:30.0385 6748 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:12:30.0478 6748 RasPppoe - ok
20:12:30.0509 6748 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:12:30.0587 6748 RasSstp - ok
20:12:30.0634 6748 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:12:30.0712 6748 rdbss - ok
20:12:30.0759 6748 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:12:30.0821 6748 rdpbus - ok
20:12:30.0853 6748 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:12:30.0931 6748 RDPCDD - ok
20:12:30.0977 6748 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:12:31.0055 6748 RDPENCDD - ok
20:12:31.0087 6748 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:12:31.0118 6748 RDPREFMP - ok
20:12:31.0196 6748 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:12:31.0274 6748 RDPWD - ok
20:12:31.0305 6748 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:12:31.0336 6748 rdyboost - ok
20:12:31.0383 6748 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:12:31.0461 6748 RemoteAccess - ok
20:12:31.0539 6748 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:12:31.0617 6748 RemoteRegistry - ok
20:12:31.0664 6748 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:12:31.0773 6748 RpcEptMapper - ok
20:12:31.0835 6748 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:12:31.0898 6748 RpcLocator - ok
20:12:31.0945 6748 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:12:31.0991 6748 RpcSs - ok
20:12:32.0038 6748 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:12:32.0101 6748 rspndr - ok
20:12:32.0163 6748 [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
20:12:32.0210 6748 RSUSBSTOR - ok
20:12:32.0241 6748 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:12:32.0257 6748 SamSs - ok
20:12:32.0288 6748 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:12:32.0303 6748 sbp2port - ok
20:12:32.0335 6748 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:12:32.0381 6748 SCardSvr - ok
20:12:32.0444 6748 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:12:32.0491 6748 scfilter - ok
20:12:32.0756 6748 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:12:32.0865 6748 Schedule - ok
20:12:32.0927 6748 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:12:32.0974 6748 SCPolicySvc - ok
20:12:32.0990 6748 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:12:33.0068 6748 SDRSVC - ok
20:12:33.0099 6748 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:12:33.0177 6748 secdrv - ok
20:12:33.0208 6748 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:12:33.0255 6748 seclogon - ok
20:12:33.0302 6748 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:12:33.0349 6748 SENS - ok
20:12:33.0380 6748 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:12:33.0442 6748 SensrSvc - ok
20:12:33.0473 6748 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:12:33.0505 6748 Serenum - ok
20:12:33.0536 6748 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:12:33.0567 6748 Serial - ok
20:12:33.0567 6748 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:12:33.0614 6748 sermouse - ok
20:12:33.0692 6748 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:12:33.0754 6748 SessionEnv - ok
20:12:33.0801 6748 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:12:33.0848 6748 sffdisk - ok
20:12:33.0879 6748 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:12:33.0926 6748 sffp_mmc - ok
20:12:33.0957 6748 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:12:34.0019 6748 sffp_sd - ok
20:12:34.0051 6748 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:12:34.0097 6748 sfloppy - ok
20:12:34.0207 6748 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:12:34.0253 6748 SftService - ok
20:12:34.0300 6748 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:12:34.0378 6748 SharedAccess - ok
20:12:34.0425 6748 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:12:34.0503 6748 ShellHWDetection - ok
20:12:34.0550 6748 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:12:34.0581 6748 SiSRaid2 - ok
20:12:34.0597 6748 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:12:34.0612 6748 SiSRaid4 - ok
20:12:34.0628 6748 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:12:34.0706 6748 Smb - ok
20:12:34.0768 6748 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:12:34.0831 6748 SNMPTRAP - ok
20:12:34.0862 6748 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:12:34.0893 6748 spldr - ok
20:12:34.0924 6748 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:12:34.0955 6748 Spooler - ok
20:12:35.0111 6748 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:12:35.0236 6748 sppsvc - ok
20:12:35.0299 6748 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:12:35.0361 6748 sppuinotify - ok
20:12:35.0455 6748 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
20:12:35.0486 6748 sprtsvc_DellSupportCenter - ok
20:12:35.0517 6748 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:12:35.0595 6748 srv - ok
20:12:35.0642 6748 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:12:35.0673 6748 srv2 - ok
20:12:35.0704 6748 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:12:35.0720 6748 srvnet - ok
20:12:35.0782 6748 [ ED161B91FDF7EAA39469D72D463D5F4E ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
20:12:35.0813 6748 sscdbus - ok
20:12:35.0829 6748 [ 4CB09E77593DBD8D7AF33B37375CA715 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
20:12:35.0860 6748 sscdmdfl - ok
20:12:35.0860 6748 [ C7B4CF53497A6E5363F3439427663882 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
20:12:35.0876 6748 sscdmdm - ok
20:12:35.0907 6748 [ 05FFA552F578E27AB2D41B6828DB477F ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
20:12:35.0923 6748 sscdserd - ok
20:12:35.0969 6748 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:12:36.0079 6748 SSDPSRV - ok
20:12:36.0094 6748 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:12:36.0141 6748 SstpSvc - ok
20:12:36.0281 6748 [ 444109453A2B87E6C16BCDA5953E81A9 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
20:12:36.0297 6748 STacSV - ok
20:12:36.0359 6748 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:12:36.0391 6748 stexstor - ok
20:12:36.0406 6748 [ 02E784FA49032F84964DB90A3ED81890 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
20:12:36.0453 6748 STHDA - ok
20:12:36.0500 6748 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:12:36.0562 6748 stisvc - ok
20:12:36.0640 6748 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:12:36.0656 6748 swenum - ok
20:12:36.0718 6748 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:12:36.0827 6748 swprv - ok
20:12:36.0968 6748 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:12:37.0030 6748 SysMain - ok
20:12:37.0077 6748 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:12:37.0108 6748 TabletInputService - ok
20:12:37.0139 6748 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:12:37.0233 6748 TapiSrv - ok
20:12:37.0280 6748 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:12:37.0311 6748 TBS - ok
20:12:37.0389 6748 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:12:37.0436 6748 Tcpip - ok
20:12:37.0483 6748 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:12:37.0529 6748 TCPIP6 - ok
20:12:37.0576 6748 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:12:37.0639 6748 tcpipreg - ok
20:12:37.0685 6748 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:12:37.0748 6748 TDPIPE - ok
20:12:37.0795 6748 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:12:37.0841 6748 TDTCP - ok
20:12:37.0888 6748 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:12:37.0935 6748 tdx - ok
20:12:37.0966 6748 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:12:37.0997 6748 TermDD - ok
20:12:38.0029 6748 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:12:38.0075 6748 TermService - ok
20:12:38.0107 6748 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:12:38.0153 6748 Themes - ok
20:12:38.0200 6748 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:12:38.0231 6748 THREADORDER - ok
20:12:38.0263 6748 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:12:38.0309 6748 TrkWks - ok
20:12:38.0372 6748 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:12:38.0465 6748 TrustedInstaller - ok
20:12:38.0512 6748 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:12:38.0606 6748 tssecsrv - ok
20:12:38.0653 6748 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:12:38.0871 6748 TsUsbFlt - ok
20:12:38.0933 6748 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:12:39.0011 6748 tunnel - ok
20:12:39.0058 6748 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:12:39.0089 6748 uagp35 - ok
20:12:39.0136 6748 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:12:39.0214 6748 udfs - ok
20:12:39.0261 6748 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:12:39.0277 6748 UI0Detect - ok
20:12:39.0323 6748 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:12:39.0339 6748 uliagpkx - ok
20:12:39.0386 6748 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:12:39.0433 6748 umbus - ok
20:12:39.0479 6748 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:12:39.0526 6748 UmPass - ok
20:12:39.0557 6748 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:12:39.0651 6748 upnphost - ok
20:12:39.0682 6748 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:12:39.0745 6748 USBAAPL64 - ok
20:12:39.0791 6748 [ 5FCC71487888589A9244AF54CFEFAB29 ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
20:12:39.0838 6748 usbbus - ok
20:12:39.0885 6748 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:12:39.0963 6748 usbccgp - ok
20:12:39.0994 6748 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:12:40.0025 6748 usbcir - ok
20:12:40.0072 6748 [ 3FB6E423F7567C92C32EA786F5FD0C69 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
20:12:40.0088 6748 UsbDiag - ok
20:12:40.0135 6748 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:12:40.0181 6748 usbehci - ok
20:12:40.0244 6748 [ 68BAD03835873D4BBBDE95CBB135A395 ] UsbFltr C:\Windows\system32\Drivers\UsbFltr.sys
20:12:40.0275 6748 UsbFltr - ok
20:12:40.0306 6748 [ 8E36E68C0B7FA174012A61A290351E49 ] UsbGps C:\Windows\system32\DRIVERS\lgx64gps.sys
20:12:40.0353 6748 UsbGps - ok
20:12:40.0415 6748 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:12:40.0447 6748 usbhub - ok
20:12:40.0493 6748 [ 78D551F5B93488B4666F5FC8DD4815F3 ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
20:12:40.0525 6748 USBModem - ok
20:12:40.0556 6748 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:12:40.0587 6748 usbohci - ok
20:12:40.0634 6748 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:12:40.0681 6748 usbprint - ok
20:12:40.0743 6748 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:12:40.0805 6748 usbscan - ok
20:12:40.0837 6748 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:12:40.0899 6748 USBSTOR - ok
20:12:40.0946 6748 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:12:40.0961 6748 usbuhci - ok
20:12:41.0024 6748 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:12:41.0055 6748 usbvideo - ok
20:12:41.0086 6748 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:12:41.0133 6748 UxSms - ok
20:12:41.0164 6748 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:12:41.0195 6748 VaultSvc - ok
20:12:41.0227 6748 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:12:41.0242 6748 vdrvroot - ok
20:12:41.0305 6748 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:12:41.0351 6748 vds - ok
20:12:41.0398 6748 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:12:41.0429 6748 vga - ok
20:12:41.0445 6748 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:12:41.0507 6748 VgaSave - ok
20:12:41.0570 6748 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:12:41.0585 6748 vhdmp - ok
20:12:41.0617 6748 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:12:41.0632 6748 viaide - ok
20:12:41.0679 6748 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:12:41.0710 6748 volmgr - ok
20:12:41.0757 6748 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:12:41.0773 6748 volmgrx - ok
20:12:41.0804 6748 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:12:41.0835 6748 volsnap - ok
20:12:41.0897 6748 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:12:41.0913 6748 vsmraid - ok
20:12:41.0991 6748 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:12:42.0100 6748 VSS - ok
20:12:42.0272 6748 [ EF51747440486C23BD466311048BD924 ] vToolbarUpdater12.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
20:12:42.0303 6748 vToolbarUpdater12.2.0 - ok
20:12:42.0319 6748 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:12:42.0365 6748 vwifibus - ok
20:12:42.0412 6748 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:12:42.0443 6748 vwififlt - ok
20:12:42.0475 6748 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:12:42.0506 6748 vwifimp - ok
20:12:42.0537 6748 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:12:42.0584 6748 W32Time - ok
20:12:42.0615 6748 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:12:42.0663 6748 WacomPen - ok
20:12:42.0710 6748 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:12:42.0772 6748 WANARP - ok
20:12:42.0788 6748 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:12:42.0834 6748 Wanarpv6 - ok
20:12:42.0912 6748 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:12:42.0975 6748 WatAdminSvc - ok
20:12:43.0022 6748 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:12:43.0131 6748 wbengine - ok
20:12:43.0178 6748 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:12:43.0209 6748 WbioSrvc - ok
20:12:43.0224 6748 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:12:43.0256 6748 wcncsvc - ok
20:12:43.0271 6748 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:12:43.0318 6748 WcsPlugInService - ok
20:12:43.0334 6748 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:12:43.0349 6748 Wd - ok
20:12:43.0396 6748 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:12:43.0427 6748 Wdf01000 - ok
20:12:43.0443 6748 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:12:43.0536 6748 WdiServiceHost - ok
20:12:43.0552 6748 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:12:43.0583 6748 WdiSystemHost - ok
20:12:43.0614 6748 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:12:43.0661 6748 WebClient - ok
20:12:43.0709 6748 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:12:43.0787 6748 Wecsvc - ok
20:12:43.0803 6748 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:12:43.0881 6748 wercplsupport - ok
20:12:43.0896 6748 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:12:43.0974 6748 WerSvc - ok
20:12:44.0021 6748 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:12:44.0068 6748 WfpLwf - ok
20:12:44.0099 6748 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:12:44.0115 6748 WimFltr - ok
20:12:44.0146 6748 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:12:44.0161 6748 WIMMount - ok
20:12:44.0208 6748 WinDefend - ok
20:12:44.0208 6748 WinHttpAutoProxySvc - ok
20:12:44.0271 6748 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:12:44.0317 6748 Winmgmt - ok
20:12:44.0380 6748 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:12:44.0473 6748 WinRM - ok
20:12:44.0551 6748 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:12:44.0598 6748 WinUsb - ok
20:12:44.0645 6748 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:12:44.0676 6748 Wlansvc - ok
20:12:44.0802 6748 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:12:44.0849 6748 wlidsvc - ok
20:12:44.0896 6748 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
20:12:44.0896 6748 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
20:12:44.0896 6748 wltrysvc - detected UnsignedFile.Multi.Generic (1)
20:12:44.0942 6748 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:12:44.0989 6748 WmiAcpi - ok
20:12:45.0036 6748 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:12:45.0052 6748 wmiApSrv - ok
20:12:45.0083 6748 WMPNetworkSvc - ok
20:12:45.0114 6748 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:12:45.0145 6748 WPCSvc - ok
20:12:45.0176 6748 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:12:45.0192 6748 WPDBusEnum - ok
20:12:45.0239 6748 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:12:45.0286 6748 ws2ifsl - ok
20:12:45.0317 6748 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:12:45.0364 6748 wscsvc - ok
20:12:45.0379 6748 WSearch - ok
20:12:45.0457 6748 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:12:45.0520 6748 wuauserv - ok
20:12:45.0535 6748 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:12:45.0613 6748 WudfPf - ok
20:12:45.0660 6748 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:12:45.0723 6748 WUDFRd - ok
20:12:45.0770 6748 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:12:45.0817 6748 wudfsvc - ok
20:12:45.0848 6748 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:12:45.0895 6748 WwanSvc - ok
20:12:45.0973 6748 [ 79D9CE9614C955DD31AA2556B4014662 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
20:12:46.0020 6748 yukonw7 - ok
20:12:46.0067 6748 ================ Scan global ===============================
20:12:46.0098 6748 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:12:46.0129 6748 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:12:46.0129 6748 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:12:46.0176 6748 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:12:46.0207 6748 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:12:46.0207 6748 [Global] - ok
20:12:46.0207 6748 ================ Scan MBR ==================================
20:12:46.0238 6748 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
20:12:46.0597 6748 \Device\Harddisk0\DR0 - ok
20:12:46.0597 6748 ================ Scan VBR ==================================
20:12:46.0597 6748 [ DA95CC62C3DD36D8F886BC7D401D0B4B ] \Device\Harddisk0\DR0\Partition1
20:12:46.0597 6748 \Device\Harddisk0\DR0\Partition1 - ok
20:12:46.0644 6748 [ DC42497682D0A4BC04E7F3F17CE92793 ] \Device\Harddisk0\DR0\Partition2
20:12:46.0644 6748 \Device\Harddisk0\DR0\Partition2 - ok
20:12:46.0675 6748 [ 03B81DD9D9DE6064C05E74862515CFC8 ] \Device\Harddisk0\DR0\Partition3
20:12:46.0675 6748 \Device\Harddisk0\DR0\Partition3 - ok
20:12:46.0675 6748 ================ Scan active images ========================
20:12:46.0691 6748 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
20:12:46.0691 6748 C:\Windows\System32\drivers\crashdmp.sys - ok
20:12:46.0691 6748 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
20:12:46.0691 6748 C:\Windows\System32\drivers\dumpfve.sys - ok
20:12:46.0706 6748 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
20:12:46.0706 6748 C:\Windows\System32\drivers\iaStor.sys - ok
20:12:46.0706 6748 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] C:\Windows\System32\drivers\avgmfx64.sys
20:12:46.0706 6748 C:\Windows\System32\drivers\avgmfx64.sys - ok
20:12:46.0722 6748 [ E964EA70249DDE1343C8F694B52575EE ] C:\Windows\System32\drivers\avgtpx64.sys
20:12:46.0722 6748 C:\Windows\System32\drivers\avgtpx64.sys - ok
20:12:46.0722 6748 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
20:12:46.0722 6748 C:\Windows\System32\drivers\beep.sys - ok
20:12:46.0737 6748 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
20:12:46.0737 6748 C:\Windows\System32\drivers\cdrom.sys - ok
20:12:46.0737 6748 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
20:12:46.0737 6748 C:\Windows\System32\drivers\null.sys - ok
20:12:46.0753 6748 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
20:12:46.0753 6748 C:\Windows\System32\drivers\RDPCDD.sys - ok
20:12:46.0753 6748 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
20:12:46.0753 6748 C:\Windows\System32\drivers\vga.sys - ok
20:12:46.0769 6748 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
20:12:46.0769 6748 C:\Windows\System32\drivers\videoprt.sys - ok
20:12:46.0769 6748 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
20:12:46.0769 6748 C:\Windows\System32\drivers\watchdog.sys - ok
20:12:46.0784 6748 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
20:12:46.0784 6748 C:\Windows\System32\drivers\RDPENCDD.sys - ok
20:12:46.0784 6748 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
20:12:46.0800 6748 C:\Windows\System32\drivers\RDPREFMP.sys - ok
20:12:46.0800 6748 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
20:12:46.0800 6748 C:\Windows\System32\drivers\msfs.sys - ok
20:12:46.0815 6748 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
20:12:46.0815 6748 C:\Windows\System32\drivers\npfs.sys - ok
20:12:46.0815 6748 [ 63B5129D7127E7757FCC9EA9D3763963 ] C:\Windows\System32\drivers\FWPKCLNT.SYS
20:12:46.0815 6748 C:\Windows\System32\drivers\FWPKCLNT.SYS - ok
20:12:46.0831 6748 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] C:\Windows\System32\drivers\tcpip.sys
20:12:46.0831 6748 C:\Windows\System32\drivers\tcpip.sys - ok
20:12:46.0831 6748 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
20:12:46.0831 6748 C:\Windows\System32\drivers\tdi.sys - ok
20:12:46.0847 6748 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
20:12:46.0847 6748 C:\Windows\System32\drivers\tdx.sys - ok
20:12:46.0847 6748 [ 1BEE674AD792B1C63BB0DAC5FA724B23 ] C:\Windows\System32\drivers\avgtdia.sys
20:12:46.0847 6748 C:\Windows\System32\drivers\avgtdia.sys - ok
20:12:46.0862 6748 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
20:12:46.0862 6748 C:\Windows\System32\drivers\netbt.sys - ok
20:12:46.0862 6748 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
20:12:46.0862 6748 C:\Windows\System32\drivers\afd.sys - ok
20:12:46.0878 6748 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
20:12:46.0878 6748 C:\Windows\System32\drivers\pacer.sys - ok
20:12:46.0878 6748 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
20:12:46.0878 6748 C:\Windows\System32\drivers\wfplwf.sys - ok
20:12:46.0893 6748 [ 4CCF421E6C4B2A4CBCE000715911F7CC ] C:\Windows\System32\drivers\anodlwfx.sys
20:12:46.0893 6748 C:\Windows\System32\drivers\anodlwfx.sys - ok
20:12:46.0893 6748 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
20:12:46.0893 6748 C:\Windows\System32\drivers\netbios.sys - ok
20:12:46.0909 6748 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
20:12:46.0909 6748 C:\Windows\System32\drivers\vwififlt.sys - ok
20:12:46.0909 6748 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
20:12:46.0909 6748 C:\Windows\System32\drivers\wanarp.sys - ok
20:12:46.0925 6748 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
20:12:46.0925 6748 C:\Windows\System32\drivers\rdbss.sys - ok
20:12:46.0925 6748 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
20:12:46.0925 6748 C:\Windows\System32\drivers\termdd.sys - ok
20:12:46.0940 6748 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
20:12:46.0940 6748 C:\Windows\System32\drivers\nsiproxy.sys - ok
20:12:46.0940 6748 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
20:12:46.0940 6748 C:\Windows\System32\drivers\discache.sys - ok
20:12:46.0956 6748 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
20:12:46.0956 6748 C:\Windows\System32\drivers\mssmbios.sys - ok
20:12:46.0956 6748 [ 59955B4C288DD2A8B9FD2CD5158355C5 ] C:\Windows\System32\drivers\avgldx64.sys
20:12:46.0956 6748 C:\Windows\System32\drivers\avgldx64.sys - ok
20:12:46.0971 6748 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
20:12:46.0971 6748 C:\Windows\System32\drivers\blbdrive.sys - ok
20:12:46.0971 6748 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
20:12:46.0971 6748 C:\Windows\System32\drivers\dfsc.sys - ok
20:12:46.0987 6748 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
20:12:46.0987 6748 C:\Windows\System32\drivers\tunnel.sys - ok
20:12:46.0987 6748 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
20:12:46.0987 6748 C:\Windows\System32\ntdll.dll - ok
20:12:47.0003 6748 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
20:12:47.0003 6748 C:\Windows\System32\smss.exe - ok
20:12:47.0003 6748 [ BABD5F9B2BCC82CE556A0BAF1AE208A7 ] C:\Windows\System32\drivers\igdkmd64.sys
20:12:47.0003 6748 C:\Windows\System32\drivers\igdkmd64.sys - ok
20:12:47.0018 6748 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
20:12:47.0018 6748 C:\Windows\System32\drivers\dxgkrnl.sys - ok
20:12:47.0018 6748 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
20:12:47.0018 6748 C:\Windows\System32\drivers\dxgmms1.sys - ok
20:12:47.0034 6748 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
20:12:47.0034 6748 C:\Windows\System32\drivers\usbport.sys - ok
20:12:47.0034 6748 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
20:12:47.0034 6748 C:\Windows\System32\drivers\usbuhci.sys - ok
20:12:47.0049 6748 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
20:12:47.0049 6748 C:\Windows\System32\drivers\usbehci.sys - ok
20:12:47.0049 6748 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
20:12:47.0049 6748 C:\Windows\System32\drivers\hdaudbus.sys - ok
20:12:47.0065 6748 [ 37394D3553E220FB732C21E217E1BD8B ] C:\Windows\System32\drivers\BCMWL664.SYS
20:12:47.0065 6748 C:\Windows\System32\drivers\BCMWL664.SYS - ok
20:12:47.0065 6748 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
20:12:47.0065 6748 C:\Windows\System32\drivers\vwifibus.sys - ok
20:12:47.0081 6748 [ 79D9CE9614C955DD31AA2556B4014662 ] C:\Windows\System32\drivers\yk62x64.sys
20:12:47.0081 6748 C:\Windows\System32\drivers\yk62x64.sys - ok
20:12:47.0081 6748 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
20:12:47.0081 6748 C:\Windows\System32\drivers\i8042prt.sys - ok
20:12:47.0096 6748 [ 1412E9A88FE1F7E35CE6058A2EF03664 ] C:\Windows\System32\drivers\Apfiltr.sys
20:12:47.0096 6748 C:\Windows\System32\drivers\Apfiltr.sys - ok
20:12:47.0096 6748 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
20:12:47.0096 6748 C:\Windows\System32\drivers\mouclass.sys - ok
20:12:47.0112 6748 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
20:12:47.0112 6748 C:\Windows\System32\drivers\kbdclass.sys - ok
20:12:47.0112 6748 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
20:12:47.0112 6748 C:\Windows\System32\drivers\CmBatt.sys - ok
20:12:47.0127 6748 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
20:12:47.0127 6748 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
20:12:47.0127 6748 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
20:12:47.0127 6748 C:\Windows\System32\drivers\wmiacpi.sys - ok
20:12:47.0143 6748 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
20:12:47.0143 6748 C:\Windows\System32\drivers\intelppm.sys - ok
20:12:47.0143 6748 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
20:12:47.0143 6748 C:\Windows\System32\drivers\CompositeBus.sys - ok
20:12:47.0159 6748 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
20:12:47.0159 6748 C:\Windows\System32\drivers\ks.sys - ok
20:12:47.0159 6748 [ D33E2B74CF8B3A652BF0A9FBD068E87A ] C:\Windows\System32\drivers\ManyCam_x64.sys
20:12:47.0159 6748 C:\Windows\System32\drivers\ManyCam_x64.sys - ok
20:12:47.0174 6748 [ 001CC10FA5E71AE1119115E126C8750D ] C:\Windows\System32\drivers\stream.sys
20:12:47.0174 6748 C:\Windows\System32\drivers\stream.sys - ok
20:12:47.0174 6748 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
20:12:47.0174 6748 C:\Windows\System32\drivers\ksthunk.sys - ok
20:12:47.0190 6748 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
20:12:47.0190 6748 C:\Windows\System32\drivers\agilevpn.sys - ok
20:12:47.0190 6748 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
20:12:47.0190 6748 C:\Windows\System32\drivers\rasl2tp.sys - ok
20:12:47.0205 6748 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
20:12:47.0205 6748 C:\Windows\System32\drivers\ndistapi.sys - ok
20:12:47.0205 6748 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
20:12:47.0205 6748 C:\Windows\System32\drivers\ndiswan.sys - ok
20:12:47.0221 6748 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
20:12:47.0221 6748 C:\Windows\System32\drivers\raspppoe.sys - ok
20:12:47.0221 6748 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
20:12:47.0221 6748 C:\Windows\System32\drivers\raspptp.sys - ok
20:12:47.0237 6748 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
20:12:47.0237 6748 C:\Windows\System32\drivers\rassstp.sys - ok
20:12:47.0237 6748 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
20:12:47.0237 6748 C:\Windows\System32\drivers\swenum.sys - ok
20:12:47.0252 6748 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
20:12:47.0252 6748 C:\Windows\System32\drivers\umbus.sys - ok
20:12:47.0252 6748 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
20:12:47.0252 6748 C:\Windows\System32\drivers\usbhub.sys - ok
20:12:47.0268 6748 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
20:12:47.0268 6748 C:\Windows\System32\drivers\ndproxy.sys - ok
20:12:47.0283 6748 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
20:12:47.0283 6748 C:\Windows\System32\drivers\drmk.sys - ok
20:12:47.0283 6748 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
20:12:47.0283 6748 C:\Windows\System32\drivers\portcls.sys - ok
20:12:47.0299 6748 [ 02E784FA49032F84964DB90A3ED81890 ] C:\Windows\System32\drivers\stwrt64.sys
20:12:47.0299 6748 C:\Windows\System32\drivers\stwrt64.sys - ok
20:12:47.0299 6748 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
20:12:47.0299 6748 C:\Windows\System32\autochk.exe - ok
20:12:47.0315 6748 [ E1C16905C3885989B4AEDBFFE1A98ED9 ] C:\PROGRA~2\AVG\AVG2012\avgrsa.exe
20:12:47.0315 6748 C:\PROGRA~2\AVG\AVG2012\avgrsa.exe - ok
20:12:47.0315 6748 [ F108BD69365EFC749C7E5F8BBEB51E3B ] C:\Program Files (x86)\AVG\AVG2012\avgsysa.dll
20:12:47.0315 6748 C:\Program Files (x86)\AVG\AVG2012\avgsysa.dll - ok
20:12:47.0330 6748 [ 863D56F63D254EBE27589893688CA8B3 ] C:\Program Files (x86)\AVG\AVG2012\avgntopenssla.dll
20:12:47.0330 6748 C:\Program Files (x86)\AVG\AVG2012\avgntopenssla.dll - ok
20:12:47.0330 6748 [ 67165D5818A872A7F01047771AA81FC9 ] C:\Program Files (x86)\AVG\AVG2012\avgloga.dll
20:12:47.0330 6748 C:\Program Files (x86)\AVG\AVG2012\avgloga.dll - ok
20:12:47.0346 6748 [ 4A25DC970C58104602ED274DACAFD784 ] C:\Windows\System32\drivers\RtsUStor.sys
20:12:47.0346 6748 C:\Windows\System32\drivers\RtsUStor.sys - ok
20:12:47.0346 6748 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
20:12:47.0346 6748 C:\Windows\System32\drivers\usbd.sys - ok
20:12:47.0361 6748 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
20:12:47.0361 6748 C:\Windows\System32\drivers\hidclass.sys - ok
20:12:47.0361 6748 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
20:12:47.0361 6748 C:\Windows\System32\drivers\hidparse.sys - ok
20:12:47.0377 6748 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
20:12:47.0377 6748 C:\Windows\System32\drivers\hidusb.sys - ok
20:12:47.0377 6748 [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
20:12:47.0377 6748 C:\Windows\System32\drivers\udfs.sys - ok
20:12:47.0393 6748 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
20:12:47.0393 6748 C:\Windows\System32\drivers\mouhid.sys - ok
20:12:47.0393 6748 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
20:12:47.0393 6748 C:\Windows\System32\drivers\usbccgp.sys - ok
20:12:47.0408 6748 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
20:12:47.0408 6748 C:\Windows\System32\drivers\usbvideo.sys - ok
20:12:47.0408 6748 [ 916F311A84B4D528694FD4D44B5EAB1B ] C:\Windows\System32\drivers\CtClsFlt.sys
20:12:47.0408 6748 C:\Windows\System32\drivers\CtClsFlt.sys - ok
20:12:47.0424 6748 [ 51560829ABF9312BF2A09442DB36448C ] C:\PROGRA~2\AVG\AVG2012\avgchjwa.dll
20:12:47.0424 6748 C:\PROGRA~2\AVG\AVG2012\avgchjwa.dll - ok
20:12:47.0424 6748 [ 2A4C9B21AEE9B53DD086B3AFBD251514 ] C:\PROGRA~2\AVG\AVG2012\avgclita.dll
20:12:47.0424 6748 C:\PROGRA~2\AVG\AVG2012\avgclita.dll - ok
20:12:47.0439 6748 [ 80DDC9151BFDF260AC4441A2F3943A04 ] C:\PROGRA~2\AVG\AVG2012\avgcclia.dll
20:12:47.0439 6748 C:\PROGRA~2\AVG\AVG2012\avgcclia.dll - ok
20:12:47.0439 6748 [ B96E3E543675039FC93D14EDF627231A ] C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
20:12:47.0439 6748 C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe - ok
20:12:47.0455 6748 [ C2C0459AE453B839C7726DFBBEC84B8E ] C:\Program Files (x86)\AVG\AVG2012\avgcorea.dll
20:12:47.0455 6748 C:\Program Files (x86)\AVG\AVG2012\avgcorea.dll - ok
20:12:47.0455 6748 [ 57171BBB033293A2797E386EF3E482A6 ] C:\Program Files (x86)\AVG\AVG2012\avgcerta.dll
20:12:47.0455 6748 C:\Program Files (x86)\AVG\AVG2012\avgcerta.dll - ok
20:12:47.0471 6748 [ D64B112ECC7230808829A7BE86DCE8E3 ] C:\Program Files (x86)\AVG\AVG2012\avgchcla.dll
20:12:47.0471 6748 C:\Program Files (x86)\AVG\AVG2012\avgchcla.dll - ok
20:12:47.0471 6748 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
20:12:47.0471 6748 C:\Windows\System32\usp10.dll - ok
20:12:47.0486 6748 [ E10A0704318A6F7E52787D09717D7C2C ] C:\Windows\System32\iertutil.dll
20:12:47.0486 6748 C:\Windows\System32\iertutil.dll - ok
20:12:47.0486 6748 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
20:12:47.0486 6748 C:\Windows\System32\nsi.dll - ok
20:12:47.0502 6748 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
20:12:47.0502 6748 C:\Windows\System32\gdi32.dll - ok
20:12:47.0502 6748 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
20:12:47.0502 6748 C:\Windows\System32\imagehlp.dll - ok
20:12:47.0517 6748 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
20:12:47.0517 6748 C:\Windows\System32\comdlg32.dll - ok
20:12:47.0517 6748 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
20:12:47.0517 6748 C:\Windows\System32\setupapi.dll - ok
20:12:47.0533 6748 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
20:12:47.0533 6748 C:\Windows\System32\msctf.dll - ok
20:12:47.0533 6748 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
20:12:47.0533 6748 C:\Windows\System32\oleaut32.dll - ok
20:12:47.0549 6748 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
20:12:47.0549 6748 C:\Windows\System32\ws2_32.dll - ok
20:12:47.0549 6748 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
20:12:47.0549 6748 C:\Windows\System32\advapi32.dll - ok
20:12:47.0564 6748 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
20:12:47.0564 6748 C:\Windows\System32\user32.dll - ok
20:12:47.0564 6748 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
20:12:47.0564 6748 C:\Windows\System32\ole32.dll - ok
20:12:47.0564 6748 [ 7F7FE11DF2D67B36DFE5013881619A94 ] C:\Windows\System32\urlmon.dll
20:12:47.0564 6748 C:\Windows\System32\urlmon.dll - ok
20:12:47.0580 6748 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
20:12:47.0580 6748 C:\Windows\System32\shlwapi.dll - ok
20:12:47.0580 6748 [ 8EA68FD3780DDDD5072F8CB830B3CB3D ] C:\Windows\System32\wininet.dll
20:12:47.0580 6748 C:\Windows\System32\wininet.dll - ok
20:12:47.0595 6748 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
20:12:47.0595 6748 C:\Windows\System32\shell32.dll - ok
20:12:47.0595 6748 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
20:12:47.0595 6748 C:\Windows\System32\psapi.dll - ok
20:12:47.0611 6748 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
20:12:47.0611 6748 C:\Windows\System32\msvcrt.dll - ok
20:12:47.0611 6748 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
20:12:47.0611 6748 C:\Windows\System32\Wldap32.dll - ok
20:12:47.0627 6748 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
20:12:47.0627 6748 C:\Windows\System32\imm32.dll - ok
20:12:47.0627 6748 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
20:12:47.0627 6748 C:\Windows\System32\difxapi.dll - ok
20:12:47.0642 6748 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
20:12:47.0642 6748 C:\Windows\System32\clbcatq.dll - ok
20:12:47.0642 6748 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
20:12:47.0642 6748 C:\Windows\System32\lpk.dll - ok
20:12:47.0642 6748 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll
20:12:47.0642 6748 C:\Windows\System32\kernel32.dll - ok
20:12:47.0658 6748 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
20:12:47.0658 6748 C:\Windows\System32\rpcrt4.dll - ok
20:12:47.0658 6748 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
20:12:47.0658 6748 C:\Windows\System32\sechost.dll - ok
20:12:47.0673 6748 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll
20:12:47.0673 6748 C:\Windows\System32\KernelBase.dll - ok
20:12:47.0673 6748 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
20:12:47.0673 6748 C:\Windows\System32\normaliz.dll - ok
20:12:47.0689 6748 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll
20:12:47.0689 6748 C:\Windows\System32\crypt32.dll - ok
20:12:47.0689 6748 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
20:12:47.0689 6748 C:\Windows\System32\cfgmgr32.dll - ok
20:12:47.0705 6748 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
20:12:47.0705 6748 C:\Windows\System32\comctl32.dll - ok
20:12:47.0705 6748 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
20:12:47.0705 6748 C:\Windows\System32\devobj.dll - ok
20:12:47.0721 6748 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
20:12:47.0721 6748 C:\Windows\System32\msasn1.dll - ok
20:12:47.0721 6748 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll
20:12:47.0721 6748 C:\Windows\System32\wintrust.dll - ok
20:12:47.0737 6748 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
20:12:47.0737 6748 C:\Windows\SysWOW64\normaliz.dll - ok
20:12:47.0737 6748 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
20:12:47.0737 6748 C:\Windows\System32\drivers\dxapi.sys - ok
20:12:47.0752 6748 [ F0D6864A7D52CE137E0A9D24795C3F0E ] C:\Windows\System32\win32k.sys
20:12:47.0752 6748 C:\Windows\System32\win32k.sys - ok
20:12:47.0752 6748 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
20:12:47.0752 6748 C:\Windows\System32\csrss.exe - ok
20:12:47.0768 6748 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
20:12:47.0768 6748 C:\Windows\System32\basesrv.dll - ok
20:12:47.0768 6748 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
20:12:47.0768 6748 C:\Windows\System32\csrsrv.dll - ok
20:12:47.0784 6748 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll
20:12:47.0784 6748 C:\Windows\System32\winsrv.dll - ok
20:12:47.0784 6748 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
20:12:47.0784 6748 C:\Windows\System32\drivers\monitor.sys - ok
20:12:47.0799 6748 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
20:12:47.0799 6748 C:\Windows\System32\tsddd.dll - ok
20:12:47.0799 6748 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
20:12:47.0799 6748 C:\Windows\System32\sxssrv.dll - ok
20:12:47.0815 6748 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
20:12:47.0815 6748 C:\Windows\System32\cdd.dll - ok
20:12:47.0815 6748 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
20:12:47.0815 6748 C:\Windows\System32\profapi.dll - ok
20:12:47.0830 6748 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
20:12:47.0830 6748 C:\Windows\System32\wininit.exe - ok
20:12:47.0830 6748 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
20:12:47.0830 6748 C:\Windows\System32\KBDUS.DLL - ok
20:12:47.0830 6748 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
20:12:47.0830 6748 C:\Windows\System32\RpcRtRemote.dll - ok
20:12:47.0846 6748 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
20:12:47.0846 6748 C:\Windows\System32\WlS0WndH.dll - ok
20:12:47.0846 6748 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
20:12:47.0846 6748 C:\Windows\System32\sxs.dll - ok
20:12:47.0862 6748 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
20:12:47.0862 6748 C:\Windows\System32\cryptbase.dll - ok
20:12:47.0862 6748 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
20:12:47.0862 6748 C:\Windows\System32\apphelp.dll - ok
20:12:47.0877 6748 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
20:12:47.0877 6748 C:\Windows\System32\services.exe - ok
20:12:47.0877 6748 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
20:12:47.0877 6748 C:\Windows\System32\lsass.exe - ok
20:12:47.0893 6748 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
20:12:47.0893 6748 C:\Windows\System32\scext.dll - ok
20:12:47.0893 6748 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
20:12:47.0893 6748 C:\Windows\System32\sspicli.dll - ok
20:12:47.0908 6748 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
20:12:47.0908 6748 C:\Windows\System32\lsm.exe - ok
20:12:47.0908 6748 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
20:12:47.0908 6748 C:\Windows\System32\secur32.dll - ok
20:12:47.0924 6748 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
20:12:47.0924 6748 C:\Windows\System32\sspisrv.dll - ok
20:12:47.0924 6748 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
20:12:47.0924 6748 C:\Windows\System32\sysntfy.dll - ok
20:12:47.0940 6748 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
20:12:47.0940 6748 C:\Windows\System32\wmsgapi.dll - ok
20:12:47.0940 6748 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
20:12:47.0940 6748 C:\Windows\System32\scesrv.dll - ok
20:12:47.0955 6748 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
20:12:47.0955 6748 C:\Windows\System32\srvcli.dll - ok
20:12:47.0955 6748 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
20:12:47.0955 6748 C:\Windows\System32\winlogon.exe - ok
20:12:47.0971 6748 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
20:12:47.0971 6748 C:\Windows\System32\aelupsvc.dll - ok
20:12:47.0971 6748 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
20:12:47.0971 6748 C:\Windows\System32\alg.exe - ok
20:12:47.0986 6748 [ 0BC381A15355A3982216F7172F545DE1 ] C:\Windows\System32\appidsvc.dll
20:12:47.0986 6748 C:\Windows\System32\appidsvc.dll - ok
20:12:47.0986 6748 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
20:12:47.0986 6748 C:\Windows\System32\appinfo.dll - ok
20:12:48.0002 6748 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
20:12:48.0002 6748 C:\Windows\System32\rascfg.dll - ok
20:12:48.0002 6748 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
20:12:48.0002 6748 C:\Windows\System32\audiosrv.dll - ok
20:12:48.0018 6748 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] C:\Windows\System32\AxInstSv.dll
20:12:48.0018 6748 C:\Windows\System32\AxInstSv.dll - ok
20:12:48.0018 6748 [ FDE360167101B4E45A96F939F388AEB0 ] C:\Windows\System32\bdesvc.dll
20:12:48.0018 6748 C:\Windows\System32\bdesvc.dll - ok
20:12:48.0018 6748 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
20:12:48.0018 6748 C:\Windows\System32\BFE.DLL - ok
20:12:48.0033 6748 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
20:12:48.0033 6748 C:\Windows\System32\qmgr.dll - ok
20:12:48.0033 6748 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
20:12:48.0033 6748 C:\Windows\System32\browser.dll - ok
20:12:48.0049 6748 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
20:12:48.0049 6748 C:\Windows\System32\bthserv.dll - ok
20:12:48.0049 6748 [ F17D1D393BBC69C5322FBFAFACA28C7F ] C:\Windows\System32\certprop.dll
20:12:48.0049 6748 C:\Windows\System32\certprop.dll - ok
20:12:48.0064 6748 [ FE1EC06F2253F691FE36217C592A0206 ] C:\Windows\System32\clfs.sys
20:12:48.0064 6748 C:\Windows\System32\clfs.sys - ok
20:12:48.0064 6748 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
20:12:48.0064 6748 C:\Windows\System32\comres.dll - ok
20:12:48.0080 6748 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll
20:12:48.0080 6748 C:\Windows\System32\cryptsvc.dll - ok
20:12:48.0080 6748 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
20:12:48.0080 6748 C:\Windows\System32\oleres.dll - ok
20:12:48.0096 6748 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] C:\Windows\System32\defragsvc.dll
20:12:48.0096 6748 C:\Windows\System32\defragsvc.dll - ok
20:12:48.0096 6748 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
20:12:48.0096 6748 C:\Windows\System32\dhcpcore.dll - ok
20:12:48.0111 6748 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
20:12:48.0111 6748 C:\Windows\System32\winsta.dll - ok
20:12:48.0111 6748 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
20:12:48.0111 6748 C:\Windows\System32\lsasrv.dll - ok
20:12:48.0127 6748 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
20:12:48.0127 6748 C:\Windows\System32\samsrv.dll - ok
20:12:48.0127 6748 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
20:12:48.0127 6748 C:\Windows\System32\dnsapi.dll - ok
20:12:48.0142 6748 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] C:\Windows\System32\dot3svc.dll
20:12:48.0142 6748 C:\Windows\System32\dot3svc.dll - ok
20:12:48.0142 6748 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
20:12:48.0142 6748 C:\Windows\System32\dps.dll - ok
20:12:48.0158 6748 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
20:12:48.0158 6748 C:\Windows\System32\eapsvc.dll - ok
20:12:48.0158 6748 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
20:12:48.0158 6748 C:\Windows\System32\efssvc.dll - ok
20:12:48.0174 6748 [ C4002B6B41975F057D98C439030CEA07 ] C:\Windows\ehome\ehrecvr.exe
20:12:48.0174 6748 C:\Windows\ehome\ehrecvr.exe - ok
20:12:48.0174 6748 [ 4705E8EF9934482C5BB488CE28AFC681 ] C:\Windows\ehome\ehsched.exe
20:12:48.0174 6748 C:\Windows\ehome\ehsched.exe - ok
20:12:48.0189 6748 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
20:12:48.0189 6748 C:\Windows\System32\cryptdll.dll - ok
20:12:48.0189 6748 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
20:12:48.0189 6748 C:\Windows\System32\wevtapi.dll - ok
20:12:48.0205 6748 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
20:12:48.0205 6748 C:\Windows\System32\authz.dll - ok
20:12:48.0205 6748 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
20:12:48.0205 6748 C:\Windows\System32\cngaudit.dll - ok
20:12:48.0220 6748 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
20:12:48.0220 6748 C:\Windows\System32\ncrypt.dll - ok
20:12:48.0220 6748 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
20:12:48.0220 6748 C:\Windows\System32\bcrypt.dll - ok
20:12:48.0236 6748 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
20:12:48.0236 6748 C:\Windows\System32\msprivs.dll - ok
20:12:48.0236 6748 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
20:12:48.0236 6748 C:\Windows\System32\netjoin.dll - ok
20:12:48.0236 6748 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll
20:12:48.0236 6748 C:\Windows\System32\kerberos.dll - ok
20:12:48.0252 6748 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
20:12:48.0252 6748 C:\Windows\System32\negoexts.dll - ok
20:12:48.0252 6748 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
20:12:48.0252 6748 C:\Windows\System32\cryptsp.dll - ok
20:12:48.0267 6748 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
20:12:48.0267 6748 C:\Windows\System32\msv1_0.dll - ok
20:12:48.0267 6748 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
20:12:48.0267 6748 C:\Windows\System32\mswsock.dll - ok
20:12:48.0283 6748 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
20:12:48.0283 6748 C:\Windows\System32\wship6.dll - ok
20:12:48.0283 6748 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
20:12:48.0283 6748 C:\Windows\System32\netlogon.dll - ok
20:12:48.0298 6748 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
20:12:48.0298 6748 C:\Windows\System32\logoncli.dll - ok
20:12:48.0298 6748 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
20:12:48.0298 6748 C:\Windows\System32\schannel.dll - ok
20:12:48.0314 6748 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
20:12:48.0314 6748 C:\Windows\System32\rsaenh.dll - ok
20:12:48.0314 6748 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
20:12:48.0314 6748 C:\Windows\System32\wdigest.dll - ok
20:12:48.0330 6748 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
20:12:48.0330 6748 C:\Windows\System32\TSpkg.dll - ok
20:12:48.0330 6748 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
20:12:48.0330 6748 C:\Windows\System32\pku2u.dll - ok
20:12:48.0345 6748 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
20:12:48.0345 6748 C:\Windows\System32\LIVESSP.DLL - ok
20:12:48.0345 6748 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
20:12:48.0345 6748 C:\Windows\System32\bcryptprimitives.dll - ok
20:12:48.0361 6748 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
20:12:48.0361 6748 C:\Windows\System32\credssp.dll - ok
20:12:48.0361 6748 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
20:12:48.0361 6748 C:\Windows\System32\efslsaext.dll - ok
20:12:48.0376 6748 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
20:12:48.0376 6748 C:\Windows\System32\scecli.dll - ok
20:12:48.0376 6748 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
20:12:48.0376 6748 C:\Windows\System32\wevtsvc.dll - ok
20:12:48.0376 6748 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
20:12:48.0376 6748 C:\Windows\System32\FXSRESM.dll - ok
20:12:48.0392 6748 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
20:12:48.0392 6748 C:\Windows\System32\fdPHost.dll - ok
20:12:48.0392 6748 [ 655661BE46B5F5F3FD454E2C3095B930 ] C:\Windows\System32\drivers\fileinfo.sys
20:12:48.0392 6748 C:\Windows\System32\drivers\fileinfo.sys - ok
20:12:48.0408 6748 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
20:12:48.0408 6748 C:\Windows\System32\FDResPub.dll - ok
20:12:48.0408 6748 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] C:\Windows\System32\drivers\filetrace.sys
20:12:48.0408 6748 C:\Windows\System32\drivers\filetrace.sys - ok
20:12:48.0423 6748 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
20:12:48.0423 6748 C:\Windows\System32\drivers\fltMgr.sys - ok
20:12:48.0423 6748 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
20:12:48.0423 6748 C:\Windows\System32\FntCache.dll - ok
20:12:48.0439 6748 [ 8A1846C0817513AD18BA48B4427771FC ] C:\Windows\System32\PresentationHost.exe
20:12:48.0439 6748 C:\Windows\System32\PresentationHost.exe - ok
20:12:48.0454 6748 [ D43703496149971890703B4B1B723EAC ] C:\Windows\System32\drivers\fsdepends.sys
20:12:48.0454 6748 C:\Windows\System32\drivers\fsdepends.sys - ok
20:12:48.0454 6748 [ 1F7B25B858FA27015169FE95E54108ED ] C:\Windows\System32\drivers\fvevol.sys
20:12:48.0454 6748 C:\Windows\System32\drivers\fvevol.sys - ok
20:12:48.0470 6748 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
20:12:48.0470 6748 C:\Windows\System32\gpapi.dll - ok
20:12:48.0470 6748 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
20:12:48.0470 6748 C:\Windows\System32\hidserv.dll - ok
20:12:48.0470 6748 [ 387E72E739E15E3D37907A86D9FF98E2 ] C:\Windows\System32\KMSVC.DLL
20:12:48.0486 6748 C:\Windows\System32\KMSVC.DLL - ok
20:12:48.0486 6748 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
20:12:48.0486 6748 C:\Windows\System32\ListSvc.dll - ok
20:12:48.0486 6748 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
20:12:48.0486 6748 C:\Windows\System32\provsvc.dll - ok
20:12:48.0501 6748 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
20:12:48.0501 6748 C:\Windows\System32\drivers\http.sys - ok
20:12:48.0501 6748 [ A5462BD6884960C9DC85ED49D34FF392 ] C:\Windows\System32\drivers\hwpolicy.sys
20:12:48.0501 6748 C:\Windows\System32\drivers\hwpolicy.sys - ok
20:12:48.0517 6748 [ B9E2DAF71E44626011D70B4889171504 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
20:12:48.0517 6748 C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
20:12:48.0517 6748 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
20:12:48.0517 6748 C:\Windows\System32\IKEEXT.DLL - ok
20:12:48.0532 6748 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
20:12:48.0532 6748 C:\Windows\System32\IPBusEnum.dll - ok
20:12:48.0532 6748 [ A34A587FFFD45FA649FBA6D03784D257 ] C:\Windows\System32\iphlpsvc.dll
20:12:48.0532 6748 C:\Windows\System32\iphlpsvc.dll - ok
20:12:48.0548 6748 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] C:\Windows\System32\drivers\irenum.sys
20:12:48.0548 6748 C:\Windows\System32\drivers\irenum.sys - ok
20:12:48.0548 6748 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
20:12:48.0548 6748 C:\Windows\System32\keyiso.dll - ok
20:12:48.0564 6748 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
20:12:48.0564 6748 C:\Windows\System32\srvsvc.dll - ok
20:12:48.0564 6748 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
20:12:48.0564 6748 C:\Windows\System32\wkssvc.dll - ok
20:12:48.0579 6748 [ 7A757C41C3879CD34BDE15F0563C0CE2 ] C:\Windows\System32\lltdres.dll
20:12:48.0579 6748 C:\Windows\System32\lltdres.dll - ok
20:12:48.0579 6748 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
20:12:48.0579 6748 C:\Windows\System32\drivers\luafv.sys - ok
20:12:48.0595 6748 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
20:12:48.0595 6748 C:\Windows\System32\lmhsvc.dll - ok
20:12:48.0595 6748 [ E5DE3FFD785B6730291AD98E491D58BA ] C:\Windows\ehome\ehres.dll
20:12:48.0595 6748 C:\Windows\ehome\ehres.dll - ok
20:12:48.0610 6748 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
20:12:48.0610 6748 C:\Windows\System32\mmcss.dll - ok
20:12:48.0610 6748 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] C:\Windows\System32\drivers\mountmgr.sys
20:12:48.0610 6748 C:\Windows\System32\drivers\mountmgr.sys - ok
20:12:48.0626 6748 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
20:12:48.0626 6748 C:\Windows\System32\FirewallAPI.dll - ok
20:12:48.0642 6748 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] C:\Windows\System32\WebClnt.dll
20:12:48.0642 6748 C:\Windows\System32\WebClnt.dll - ok
20:12:48.0642 6748 [ F9D215A46A8B9753F61767FA72A20326 ] C:\Windows\System32\drivers\mshidkmdf.sys
20:12:48.0642 6748 C:\Windows\System32\drivers\mshidkmdf.sys - ok
20:12:48.0657 6748 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
20:12:48.0657 6748 C:\Windows\System32\iscsidsc.dll - ok
20:12:48.0657 6748 [ 8EE1C893C50D1C02D4675978BAC756BA ] C:\Windows\System32\msimsg.dll
20:12:48.0657 6748 C:\Windows\System32\msimsg.dll - ok
20:12:48.0673 6748 [ F9A18612FD3526FE473C1BDA678D61C8 ] C:\Windows\System32\drivers\mup.sys
20:12:48.0673 6748 C:\Windows\System32\drivers\mup.sys - ok
20:12:48.0673 6748 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
20:12:48.0673 6748 C:\Windows\System32\QAGENTRT.DLL - ok
20:12:48.0688 6748 [ 79B47FD40D9A817E932F9D26FAC0A81C ] C:\Windows\System32\drivers\ndis.sys
20:12:48.0688 6748 C:\Windows\System32\drivers\ndis.sys - ok
20:12:48.0688 6748 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
20:12:48.0688 6748 C:\Windows\System32\netman.dll - ok
20:12:48.0704 6748 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
20:12:48.0704 6748 C:\Windows\System32\netprofm.dll - ok
20:12:48.0704 6748 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
20:12:48.0704 6748 C:\Windows\System32\nlasvc.dll - ok
20:12:48.0720 6748 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
20:12:48.0720 6748 C:\Windows\System32\nsisvc.dll - ok
20:12:48.0720 6748 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
20:12:48.0720 6748 C:\Windows\System32\pnrpsvc.dll - ok
20:12:48.0735 6748 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
20:12:48.0735 6748 C:\Windows\System32\p2psvc.dll - ok
20:12:48.0735 6748 [ E9766131EEADE40A27DC27D2D68FBA9C ] C:\Windows\System32\drivers\partmgr.sys
20:12:48.0735 6748 C:\Windows\System32\drivers\partmgr.sys - ok
20:12:48.0751 6748 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
20:12:48.0751 6748 C:\Windows\System32\pcasvc.dll - ok
20:12:48.0751 6748 [ C7CF6A6E137463219E1259E3F0F0DD6C ] C:\Windows\System32\pla.dll
20:12:48.0751 6748 C:\Windows\System32\pla.dll - ok
20:12:48.0766 6748 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
20:12:48.0766 6748 C:\Windows\System32\umpnpmgr.dll - ok
20:12:48.0766 6748 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] C:\Windows\System32\pnrpauto.dll
20:12:48.0766 6748 C:\Windows\System32\pnrpauto.dll - ok
20:12:48.0782 6748 [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650 ] C:\Windows\System32\polstore.dll
20:12:48.0782 6748 C:\Windows\System32\polstore.dll - ok
20:12:48.0782 6748 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
20:12:48.0782 6748 C:\Windows\System32\umpo.dll - ok
20:12:48.0798 6748 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
20:12:48.0798 6748 C:\Windows\System32\profsvc.dll - ok
20:12:48.0798 6748 [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll
20:12:48.0798 6748 C:\Windows\System32\psbase.dll - ok
20:12:48.0813 6748 [ 906191634E99AEA92C4816150BDA3732 ] C:\Windows\System32\qwave.dll
20:12:48.0813 6748 C:\Windows\System32\qwave.dll - ok
20:12:48.0813 6748 [ 76707BB36430888D9CE9D705398ADB6C ] C:\Windows\System32\drivers\qwavedrv.sys
20:12:48.0813 6748 C:\Windows\System32\drivers\qwavedrv.sys - ok
20:12:48.0829 6748 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] C:\Windows\System32\rasauto.dll
20:12:48.0829 6748 C:\Windows\System32\rasauto.dll - ok
20:12:48.0829 6748 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
20:12:48.0829 6748 C:\Windows\System32\rasmans.dll - ok
20:12:48.0844 6748 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
20:12:48.0844 6748 C:\Windows\System32\sstpsvc.dll - ok
20:12:48.0844 6748 [ 254FB7A22D74E5511C73A3F6D802F192 ] C:\Windows\System32\mprdim.dll
20:12:48.0844 6748 C:\Windows\System32\mprdim.dll - ok
20:12:48.0860 6748 [ E4D94F24081440B5FC5AA556C7C62702 ] C:\Windows\System32\regsvc.dll
20:12:48.0860 6748 C:\Windows\System32\regsvc.dll - ok
20:12:48.0860 6748 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
20:12:48.0860 6748 C:\Windows\System32\RpcEpMap.dll - ok
20:12:48.0876 6748 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] C:\Windows\System32\Locator.exe
20:12:48.0876 6748 C:\Windows\System32\Locator.exe - ok
20:12:48.0876 6748 [ 9B7395789E3791A3B6D000FE6F8B131E ] C:\Windows\System32\SCardSvr.dll
20:12:48.0876 6748 C:\Windows\System32\SCardSvr.dll - ok
20:12:48.0891 6748 [ 253F38D0D7074C02FF8DEB9836C97D2B ] C:\Windows\System32\drivers\scfilter.sys
20:12:48.0891 6748 C:\Windows\System32\drivers\scfilter.sys - ok
20:12:48.0891 6748 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
20:12:48.0891 6748 C:\Windows\System32\schedsvc.dll - ok
20:12:48.0907 6748 [ 6EA4234DC55346E0709560FE7C2C1972 ] C:\Windows\System32\sdrsvc.dll
20:12:48.0907 6748 C:\Windows\System32\sdrsvc.dll - ok
20:12:48.0907 6748 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
20:12:48.0907 6748 C:\Windows\System32\seclogon.dll - ok
20:12:48.0922 6748 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
20:12:48.0922 6748 C:\Windows\System32\Sens.dll - ok
20:12:48.0922 6748 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] C:\Windows\System32\sensrsvc.dll
20:12:48.0922 6748 C:\Windows\System32\sensrsvc.dll - ok
20:12:48.0922 6748 [ 0B6231BF38174A1628C4AC812CC75804 ] C:\Windows\System32\SessEnv.dll
20:12:48.0922 6748 C:\Windows\System32\SessEnv.dll - ok
20:12:48.0938 6748 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
20:12:48.0938 6748 C:\Windows\System32\ipnathlp.dll - ok
20:12:48.0938 6748 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
20:12:48.0938 6748 C:\Windows\System32\shsvcs.dll - ok
20:12:48.0954 6748 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
20:12:48.0954 6748 C:\Windows\System32\tcpipcfg.dll - ok
20:12:48.0954 6748 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
20:12:48.0954 6748 C:\Windows\System32\snmptrap.exe - ok
20:12:48.0969 6748 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
20:12:48.0969 6748 C:\Windows\System32\spoolsv.exe - ok
20:12:48.0969 6748 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
20:12:48.0969 6748 C:\Windows\System32\sppsvc.exe - ok
20:12:48.0985 6748 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] C:\Windows\System32\sppuinotify.dll
20:12:48.0985 6748 C:\Windows\System32\sppuinotify.dll - ok
20:12:49.0000 6748 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
20:12:49.0000 6748 C:\Windows\System32\ssdpsrv.dll - ok
20:12:49.0000 6748 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
20:12:49.0000 6748 C:\Windows\System32\wiaservc.dll - ok
20:12:49.0016 6748 [ E08E46FDD841B7184194011CA1955A0B ] C:\Windows\System32\swprv.dll
20:12:49.0016 6748 C:\Windows\System32\swprv.dll - ok
20:12:49.0016 6748 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
20:12:49.0016 6748 C:\Windows\System32\sysmain.dll - ok
20:12:49.0032 6748 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] C:\Windows\System32\TabSvc.dll
20:12:49.0032 6748 C:\Windows\System32\TabSvc.dll - ok
20:12:49.0032 6748 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
20:12:49.0032 6748 C:\Windows\System32\tapisrv.dll - ok
20:12:49.0047 6748 [ 1BE03AC720F4D302EA01D40F588162F6 ] C:\Windows\System32\tbssvc.dll
20:12:49.0047 6748 C:\Windows\System32\tbssvc.dll - ok
20:12:49.0047 6748 [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
20:12:49.0047 6748 C:\Windows\System32\termsrv.dll - ok
20:12:49.0063 6748 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
20:12:49.0063 6748 C:\Windows\System32\themeservice.dll - ok
20:12:49.0063 6748 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
20:12:49.0063 6748 C:\Windows\System32\trkwks.dll - ok
20:12:49.0063 6748 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
20:12:49.0063 6748 C:\Windows\servicing\TrustedInstaller.exe - ok
20:12:49.0078 6748 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] C:\Windows\System32\drivers\tssecsrv.sys
20:12:49.0078 6748 C:\Windows\System32\drivers\tssecsrv.sys - ok
20:12:49.0094 6748 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] C:\Windows\System32\UI0Detect.exe
20:12:49.0094 6748 C:\Windows\System32\UI0Detect.exe - ok
20:12:49.0094 6748 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
20:12:49.0094 6748 C:\Windows\System32\upnphost.dll - ok
20:12:49.0094 6748 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
20:12:49.0094 6748 C:\Windows\System32\dwm.exe - ok
20:12:49.0110 6748 [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
20:12:49.0110 6748 C:\Windows\System32\vaultsvc.dll - ok
20:12:49.0110 6748 [ A255814907C89BE58B79EF2F189B843B ] C:\Windows\System32\drivers\volmgrx.sys
20:12:49.0110 6748 C:\Windows\System32\drivers\volmgrx.sys - ok
20:12:49.0125 6748 [ 8D6B481601D01A456E75C3210F1830BE ] C:\Windows\System32\vds.exe
20:12:49.0125 6748 C:\Windows\System32\vds.exe - ok
20:12:49.0141 6748 [ B60BA0BC31B0CB414593E169F6F21CC2 ] C:\Windows\System32\VSSVC.exe
20:12:49.0141 6748 C:\Windows\System32\VSSVC.exe - ok
20:12:49.0141 6748 [ 1C9D80CC3849B3788048078C26486E1A ] C:\Windows\System32\w32time.dll
20:12:49.0141 6748 C:\Windows\System32\w32time.dll - ok
20:12:49.0156 6748 [ 05E9265E2228799B68DC0F58A94E1AB8 ] C:\Windows\System32\Wat\WatUX.exe
20:12:49.0156 6748 C:\Windows\System32\Wat\WatUX.exe - ok
20:12:49.0156 6748 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] C:\Windows\System32\wbengine.exe
20:12:49.0156 6748 C:\Windows\System32\wbengine.exe - ok
20:12:49.0172 6748 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] C:\Windows\System32\wbiosrvc.dll
20:12:49.0172 6748 C:\Windows\System32\wbiosrvc.dll - ok
20:12:49.0172 6748 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] C:\Windows\System32\wcncsvc.dll
20:12:49.0172 6748 C:\Windows\System32\wcncsvc.dll - ok
20:12:49.0172 6748 [ 20F7441334B18CEE52027661DF4A6129 ] C:\Windows\System32\WcsPlugInService.dll
20:12:49.0172 6748 C:\Windows\System32\WcsPlugInService.dll - ok
20:12:49.0188 6748 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
20:12:49.0188 6748 C:\Windows\System32\wdi.dll - ok
20:12:49.0188 6748 [ C749025A679C5103E575E3B48E092C43 ] C:\Windows\System32\wecsvc.dll
20:12:49.0188 6748 C:\Windows\System32\wecsvc.dll - ok
20:12:49.0203 6748 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
20:12:49.0203 6748 C:\Windows\System32\wercplsupport.dll - ok
20:12:49.0203 6748 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
20:12:49.0203 6748 C:\Windows\System32\wersvc.dll - ok
20:12:49.0219 6748 [ 2DA738A0A6BEE483A5647A76695AF3B0 ] C:\Program Files\Windows Defender\MsMpRes.dll
20:12:49.0219 6748 C:\Program Files\Windows Defender\MsMpRes.dll - ok
20:12:49.0219 6748 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
20:12:49.0219 6748 C:\Windows\System32\winhttp.dll - ok
20:12:49.0234 6748 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
20:12:49.0234 6748 C:\Windows\System32\wbem\WMIsvc.dll - ok
20:12:49.0234 6748 [ BCB1310604AA415C4508708975B3931E ] C:\Windows\System32\WsmSvc.dll
20:12:49.0234 6748 C:\Windows\System32\WsmSvc.dll - ok
20:12:49.0250 6748 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
20:12:49.0250 6748 C:\Windows\System32\wlansvc.dll - ok
20:12:49.0250 6748 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] C:\Windows\System32\wbem\WmiApSrv.exe
20:12:49.0250 6748 C:\Windows\System32\wbem\WmiApSrv.exe - ok
20:12:49.0266 6748 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
20:12:49.0266 6748 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
20:12:49.0266 6748 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] C:\Windows\System32\wpcsvc.dll
20:12:49.0266 6748 C:\Windows\System32\wpcsvc.dll - ok
20:12:49.0281 6748 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
20:12:49.0281 6748 C:\Windows\System32\wpdbusenum.dll - ok
20:12:49.0281 6748 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
20:12:49.0281 6748 C:\Windows\System32\drivers\ws2ifsl.sys - ok
20:12:49.0297 6748 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
20:12:49.0297 6748 C:\Windows\System32\wscsvc.dll - ok
20:12:49.0297 6748 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
20:12:49.0297 6748 C:\Windows\System32\SearchIndexer.exe - ok
20:12:49.0312 6748 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
20:12:49.0312 6748 C:\Windows\System32\wuaueng.dll - ok
20:12:49.0312 6748 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
20:12:49.0312 6748 C:\Windows\System32\WUDFSvc.dll - ok
20:12:49.0328 6748 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] C:\Windows\System32\wwansvc.dll
20:12:49.0328 6748 C:\Windows\System32\wwansvc.dll - ok
20:12:49.0328 6748 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
20:12:49.0328 6748 C:\Windows\System32\ubpm.dll - ok
20:12:49.0344 6748 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
20:12:49.0344 6748 C:\Windows\System32\svchost.exe - ok
20:12:49.0344 6748 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
20:12:49.0344 6748 C:\Windows\System32\devrtl.dll - ok
20:12:49.0359 6748 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
20:12:49.0359 6748 C:\Windows\System32\SPInf.dll - ok
20:12:49.0359 6748 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
20:12:49.0359 6748 C:\Windows\System32\userenv.dll - ok
20:12:49.0375 6748 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
20:12:49.0375 6748 C:\Windows\System32\pcwum.dll - ok
20:12:49.0390 6748 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
20:12:49.0390 6748 C:\Windows\System32\powrprof.dll - ok
20:12:49.0390 6748 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
20:12:49.0390 6748 C:\Windows\System32\drivers\WUDFPf.sys - ok
20:12:49.0406 6748 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
20:12:49.0406 6748 C:\Windows\System32\rpcss.dll - ok
20:12:49.0406 6748 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
20:12:49.0406 6748 C:\Windows\System32\wshqos.dll - ok
20:12:49.0422 6748 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
20:12:49.0422 6748 C:\Windows\System32\WSHTCPIP.DLL - ok
20:12:49.0422 6748 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
20:12:49.0422 6748 C:\Windows\System32\version.dll - ok
20:12:49.0437 6748 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
20:12:49.0437 6748 C:\Windows\System32\LogonUI.exe - ok
20:12:49.0437 6748 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
20:12:49.0437 6748 C:\Windows\System32\authui.dll - ok
20:12:49.0453 6748 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
20:12:49.0453 6748 C:\Windows\System32\cryptui.dll - ok
20:12:49.0453 6748 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
20:12:49.0453 6748 C:\Windows\System32\MMDevAPI.dll - ok
20:12:49.0468 6748 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
20:12:49.0468 6748 C:\Windows\System32\propsys.dll - ok
20:12:49.0468 6748 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
20:12:49.0468 6748 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
20:12:49.0484 6748 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
20:12:49.0484 6748 C:\Windows\System32\adtschema.dll - ok
20:12:49.0484 6748 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
20:12:49.0484 6748 C:\Windows\System32\avrt.dll - ok
20:12:49.0500 6748 [ 444109453A2B87E6C16BCDA5953E81A9 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe
20:12:49.0500 6748 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\stacsv64.exe - ok
20:12:49.0500 6748 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
20:12:49.0500 6748 C:\Windows\System32\dsound.dll - ok
20:12:49.0515 6748 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
20:12:49.0515 6748 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
20:12:49.0515 6748 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
20:12:49.0515 6748 C:\Windows\System32\PSHED.DLL - ok
20:12:49.0531 6748 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
20:12:49.0531 6748 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
20:12:49.0531 6748 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
20:12:49.0531 6748 C:\Windows\System32\winmm.dll - ok
20:12:49.0546 6748 [ 185F0A5625DB059128CF8CC9633B9C9F ] C:\Windows\System32\stapi64.dll
20:12:49.0546 6748 C:\Windows\System32\stapi64.dll - ok
20:12:49.0546 6748 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
20:12:49.0546 6748 C:\Windows\System32\audiodg.exe - ok
20:12:49.0562 6748 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
20:12:49.0562 6748 C:\Windows\System32\AudioSes.dll - ok
20:12:49.0562 6748 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
20:12:49.0562 6748 C:\Windows\System32\ntmarta.dll - ok
20:12:49.0578 6748 [ 401106B4B036BA2D74BF168F22FE9400 ] C:\Windows\System32\stapo64.dll
20:12:49.0578 6748 C:\Windows\System32\stapo64.dll - ok
20:12:49.0578 6748 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
20:12:49.0578 6748 C:\Windows\System32\AudioEng.dll - ok
20:12:49.0593 6748 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
20:12:49.0593 6748 C:\Windows\System32\WMALFXGFXDSP.dll - ok
20:12:49.0593 6748 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
20:12:49.0593 6748 C:\Windows\System32\mfplat.dll - ok
20:12:49.0609 6748 [ 43E6294CC9698627627C58C6B786FB38 ] C:\Windows\System32\ctapo64.dll
20:12:49.0609 6748 C:\Windows\System32\ctapo64.dll - ok
20:12:49.0609 6748 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
20:12:49.0609 6748 C:\Windows\System32\IPHLPAPI.DLL - ok
20:12:49.0624 6748 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
20:12:49.0624 6748 C:\Windows\System32\AESTAR64.dll - ok
20:12:49.0624 6748 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
20:12:49.0624 6748 C:\Windows\System32\winnsi.dll - ok
20:12:49.0640 6748 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
20:12:49.0640 6748 C:\Windows\System32\gpsvc.dll - ok
20:12:49.0640 6748 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
20:12:49.0640 6748 C:\Windows\System32\nlaapi.dll - ok
20:12:49.0656 6748 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
20:12:49.0656 6748 C:\Windows\System32\atl.dll - ok
20:12:49.0656 6748 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
20:12:49.0656 6748 C:\Windows\System32\dsrole.dll - ok
20:12:49.0671 6748 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
20:12:49.0671 6748 C:\Windows\System32\slc.dll - ok
20:12:49.0671 6748 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
20:12:49.0671 6748 C:\Windows\System32\es.dll - ok
20:12:49.0687 6748 [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
20:12:49.0687 6748 C:\Program Files\Dell\DellDock\DockLogin.exe - ok
20:12:49.0687 6748 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
20:12:49.0687 6748 C:\Windows\SysWOW64\ntdll.dll - ok
20:12:49.0702 6748 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll
20:12:49.0702 6748 C:\Windows\System32\wow64.dll - ok
20:12:49.0702 6748 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll
20:12:49.0702 6748 C:\Windows\System32\wow64cpu.dll - ok
20:12:49.0718 6748 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll
20:12:49.0718 6748 C:\Windows\System32\wow64win.dll - ok
20:12:49.0718 6748 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll
20:12:49.0718 6748 C:\Windows\SysWOW64\kernel32.dll - ok
20:12:49.0734 6748 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll
20:12:49.0734 6748 C:\Windows\SysWOW64\KernelBase.dll - ok
20:12:49.0734 6748 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
20:12:49.0734 6748 C:\Windows\SysWOW64\msvcrt.dll - ok
20:12:49.0749 6748 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
20:12:49.0749 6748 C:\Windows\SysWOW64\wtsapi32.dll - ok
20:12:49.0749 6748 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
20:12:49.0749 6748 C:\Windows\SysWOW64\advapi32.dll - ok
20:12:49.0765 6748 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
20:12:49.0765 6748 C:\Windows\SysWOW64\rpcrt4.dll - ok
20:12:49.0765 6748 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
20:12:49.0765 6748 C:\Windows\SysWOW64\sechost.dll - ok
20:12:49.0765 6748 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
20:12:49.0765 6748 C:\Windows\SysWOW64\cryptbase.dll - ok
20:12:49.0780 6748 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
20:12:49.0780 6748 C:\Windows\SysWOW64\shlwapi.dll - ok
20:12:49.0780 6748 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
20:12:49.0780 6748 C:\Windows\SysWOW64\sspicli.dll - ok
20:12:49.0796 6748 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
20:12:49.0796 6748 C:\Windows\SysWOW64\gdi32.dll - ok
20:12:49.0796 6748 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
20:12:49.0796 6748 C:\Windows\SysWOW64\user32.dll - ok
20:12:49.0812 6748 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
20:12:49.0812 6748 C:\Windows\SysWOW64\lpk.dll - ok
20:12:49.0812 6748 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
20:12:49.0812 6748 C:\Windows\SysWOW64\usp10.dll - ok
20:12:49.0827 6748 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
20:12:49.0827 6748 C:\Windows\SysWOW64\imm32.dll - ok
20:12:49.0827 6748 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
20:12:49.0827 6748 C:\Windows\SysWOW64\msctf.dll - ok

#13 guardian4600

guardian4600
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 06 September 2012 - 08:34 PM

I'll post Combofix in a separate post, as well.
Part 2:
20:12:49.0843 6748 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
20:12:49.0843 6748 C:\Windows\System32\uxsms.dll - ok
20:12:49.0843 6748 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
20:12:49.0843 6748 C:\Windows\System32\wtsapi32.dll - ok
20:12:49.0858 6748 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
20:12:49.0858 6748 C:\Windows\System32\WUDFPlatform.dll - ok
20:12:49.0858 6748 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
20:12:49.0858 6748 C:\Windows\System32\drivers\lltdio.sys - ok
20:12:49.0874 6748 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
20:12:49.0874 6748 C:\Windows\System32\drivers\nwifi.sys - ok
20:12:49.0874 6748 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
20:12:49.0874 6748 C:\Windows\System32\drivers\ndisuio.sys - ok
20:12:49.0890 6748 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
20:12:49.0890 6748 C:\Windows\System32\drivers\rspndr.sys - ok
20:12:49.0890 6748 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
20:12:49.0890 6748 C:\Windows\System32\dhcpcore6.dll - ok
20:12:49.0905 6748 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
20:12:49.0905 6748 C:\Windows\System32\nrpsrv.dll - ok
20:12:49.0905 6748 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
20:12:49.0905 6748 C:\Windows\System32\dnsrslvr.dll - ok
20:12:49.0921 6748 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
20:12:49.0921 6748 C:\Windows\System32\eapphost.dll - ok
20:12:49.0921 6748 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
20:12:49.0921 6748 C:\Windows\System32\FWPUCLNT.DLL - ok
20:12:49.0936 6748 [ 138BE04BF17193B27184DEDFE3028548 ] C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll
20:12:49.0936 6748 C:\Program Files (x86)\Cisco\Cisco LEAP Module\CiscoEapLeap.dll - ok
20:12:49.0936 6748 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
20:12:49.0936 6748 C:\Windows\System32\dnsext.dll - ok
20:12:49.0952 6748 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
20:12:49.0952 6748 C:\Windows\System32\dhcpcsvc.dll - ok
20:12:49.0952 6748 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
20:12:49.0952 6748 C:\Windows\System32\dhcpcsvc6.dll - ok
20:12:49.0968 6748 [ A9B830EAF03F07CD92B045E613379117 ] C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll
20:12:49.0968 6748 C:\Program Files (x86)\Cisco\Cisco PEAP Module\CiscoEapPeap.dll - ok
20:12:49.0968 6748 [ A371EC60804CF07B4D052C295BE9FB9B ] C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll
20:12:49.0968 6748 C:\Program Files (x86)\Cisco\Cisco EAP-FAST Module\CiscoEapFast.dll - ok
20:12:49.0983 6748 [ 7373DE70D405FF08DC53336B83989138 ] C:\Windows\System32\rastls.dll
20:12:49.0983 6748 C:\Windows\System32\rastls.dll - ok
20:12:49.0983 6748 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
20:12:49.0983 6748 C:\Windows\System32\raschap.dll - ok
20:12:49.0999 6748 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
20:12:49.0999 6748 C:\Windows\System32\umb.dll - ok
20:12:49.0999 6748 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
20:12:49.0999 6748 C:\Windows\System32\wlanmsm.dll - ok
20:12:50.0014 6748 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
20:12:50.0014 6748 C:\Windows\System32\wlansec.dll - ok
20:12:50.0014 6748 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
20:12:50.0014 6748 C:\Windows\System32\eappcfg.dll - ok
20:12:50.0030 6748 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
20:12:50.0030 6748 C:\Windows\System32\eappprxy.dll - ok
20:12:50.0030 6748 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
20:12:50.0030 6748 C:\Windows\System32\onex.dll - ok
20:12:50.0030 6748 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
20:12:50.0030 6748 C:\Windows\System32\wlgpclnt.dll - ok
20:12:50.0046 6748 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
20:12:50.0046 6748 C:\Windows\System32\l2gpstore.dll - ok
20:12:50.0061 6748 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
20:12:50.0061 6748 C:\Windows\System32\msxml6.dll - ok
20:12:50.0061 6748 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
20:12:50.0061 6748 C:\Windows\System32\WinSCard.dll - ok
20:12:50.0061 6748 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
20:12:50.0061 6748 C:\Windows\System32\wlanutil.dll - ok
20:12:50.0077 6748 [ 13B0A570E1AE451C92DA550085D72CF3 ] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
20:12:50.0077 6748 C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE - ok
20:12:50.0092 6748 [ 448BF22538F1DFCB3412AE2B1CF123A9 ] C:\Windows\System32\conhost.exe
20:12:50.0092 6748 C:\Windows\System32\conhost.exe - ok
20:12:50.0092 6748 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
20:12:50.0092 6748 C:\Windows\System32\wlanext.exe - ok
20:12:50.0092 6748 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
20:12:50.0092 6748 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
20:12:50.0108 6748 [ AD3283C6BD152824A35E0E9B497AEACB ] C:\Program Files\Dell\Dell Wireless WLAN Card\BCMWLTRY.EXE
20:12:50.0108 6748 C:\Program Files\Dell\Dell Wireless WLAN Card\BCMWLTRY.EXE - ok
20:12:50.0108 6748 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
20:12:50.0108 6748 C:\Windows\System32\ktmw32.dll - ok
20:12:50.0124 6748 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
20:12:50.0124 6748 C:\Windows\System32\netapi32.dll - ok
20:12:50.0124 6748 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
20:12:50.0124 6748 C:\Windows\System32\netutils.dll - ok
20:12:50.0139 6748 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
20:12:50.0139 6748 C:\Windows\System32\wkscli.dll - ok
20:12:50.0139 6748 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
20:12:50.0139 6748 C:\Windows\System32\xmllite.dll - ok
20:12:50.0155 6748 [ 28B97AF4BE035D73684A066253CF3CAB ] C:\Windows\System32\bcmihvsrv64.dll
20:12:50.0155 6748 C:\Windows\System32\bcmihvsrv64.dll - ok
20:12:50.0155 6748 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
20:12:50.0155 6748 C:\Windows\System32\mscoree.dll - ok
20:12:50.0170 6748 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
20:12:50.0170 6748 C:\Windows\System32\taskcomp.dll - ok
20:12:50.0170 6748 [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
20:12:50.0170 6748 C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok
20:12:50.0186 6748 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
20:12:50.0186 6748 C:\Windows\System32\fveapi.dll - ok
20:12:50.0202 6748 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
20:12:50.0202 6748 C:\Windows\System32\fvecerts.dll - ok
20:12:50.0202 6748 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
20:12:50.0202 6748 C:\Windows\System32\tbs.dll - ok
20:12:50.0217 6748 [ C07D5582F2107ACAB4564E1DAE977C64 ] C:\Windows\ehome\ehprivjob.exe
20:12:50.0217 6748 C:\Windows\ehome\ehprivjob.exe - ok
20:12:50.0233 6748 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
20:12:50.0233 6748 C:\Windows\System32\drivers\bowser.sys - ok
20:12:50.0233 6748 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
20:12:50.0233 6748 C:\Windows\System32\drivers\mpsdrv.sys - ok
20:12:50.0248 6748 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
20:12:50.0248 6748 C:\Windows\System32\drivers\mrxsmb.sys - ok
20:12:50.0248 6748 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
20:12:50.0248 6748 C:\Windows\System32\MPSSVC.dll - ok
20:12:50.0248 6748 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
20:12:50.0248 6748 C:\Windows\System32\drivers\mrxsmb10.sys - ok
20:12:50.0264 6748 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
20:12:50.0264 6748 C:\Windows\System32\drivers\mrxsmb20.sys - ok
20:12:50.0264 6748 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
20:12:50.0264 6748 C:\Windows\System32\wlanapi.dll - ok
20:12:50.0280 6748 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
20:12:50.0280 6748 C:\Windows\System32\netcfgx.dll - ok
20:12:50.0280 6748 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
20:12:50.0280 6748 C:\Windows\System32\wiarpc.dll - ok
20:12:50.0295 6748 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
20:12:50.0295 6748 C:\Windows\System32\drivers\vwifimp.sys - ok
20:12:50.0295 6748 [ 3DEBBECF665DCDDE3A95D9B902010817 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:12:50.0295 6748 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
20:12:50.0311 6748 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
20:12:50.0311 6748 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
20:12:50.0311 6748 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
20:12:50.0311 6748 C:\Windows\System32\sppc.dll - ok
20:12:50.0326 6748 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
20:12:50.0326 6748 C:\Windows\System32\wfapigp.dll - ok
20:12:50.0326 6748 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
20:12:50.0326 6748 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
20:12:50.0342 6748 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
20:12:50.0342 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
20:12:50.0358 6748 [ 2503287BD19AE52E36E9DE42834A2AC0 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
20:12:50.0358 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
20:12:50.0358 6748 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
20:12:50.0358 6748 C:\Windows\SysWOW64\version.dll - ok
20:12:50.0373 6748 [ 9E0FF5DDD8B908DA5611445C35D6CD24 ] C:\Windows\System32\slcext.dll
20:12:50.0373 6748 C:\Windows\System32\slcext.dll - ok
20:12:50.0373 6748 [ 054B87C872292A960B9B8A834B34DFA7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
20:12:50.0373 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
20:12:50.0389 6748 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
20:12:50.0389 6748 C:\Windows\System32\mscms.dll - ok
20:12:50.0389 6748 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
20:12:50.0389 6748 C:\Windows\SysWOW64\shell32.dll - ok
20:12:50.0404 6748 [ 6F5BE3F67D7F66FFA861ABBFC6A8C973 ] C:\Windows\System32\sppcext.dll
20:12:50.0404 6748 C:\Windows\System32\sppcext.dll - ok
20:12:50.0404 6748 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
20:12:50.0404 6748 C:\Windows\SysWOW64\ws2_32.dll - ok
20:12:50.0420 6748 [ 794950DB77AA590C2964ECA0A5874A09 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
20:12:50.0420 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
20:12:50.0420 6748 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
20:12:50.0420 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
20:12:50.0436 6748 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
20:12:50.0436 6748 C:\Windows\SysWOW64\nsi.dll - ok
20:12:50.0436 6748 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
20:12:50.0436 6748 C:\Windows\SysWOW64\wsock32.dll - ok
20:12:50.0451 6748 [ 250BF888DDBE88D61EB19A9D4957C794 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
20:12:50.0451 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
20:12:50.0451 6748 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
20:12:50.0451 6748 C:\Windows\SysWOW64\winmm.dll - ok
20:12:50.0467 6748 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
20:12:50.0467 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
20:12:50.0467 6748 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
20:12:50.0467 6748 C:\Windows\System32\webio.dll - ok
20:12:50.0482 6748 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
20:12:50.0482 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
20:12:50.0482 6748 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
20:12:50.0482 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
20:12:50.0498 6748 [ 37CF2461CB5E40C4CFAB82C8FC79A2BC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
20:12:50.0498 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
20:12:50.0498 6748 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
20:12:50.0498 6748 C:\Windows\SysWOW64\ole32.dll - ok
20:12:50.0514 6748 [ 1224BC6DE919F8CD8C1C945280E63852 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
20:12:50.0514 6748 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
20:12:50.0514 6748 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
20:12:50.0514 6748 C:\Windows\SysWOW64\profapi.dll - ok
20:12:50.0529 6748 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
20:12:50.0529 6748 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
20:12:50.0529 6748 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
20:12:50.0529 6748 C:\Windows\SysWOW64\setupapi.dll - ok
20:12:50.0545 6748 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
20:12:50.0545 6748 C:\Windows\SysWOW64\winnsi.dll - ok
20:12:50.0545 6748 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
20:12:50.0545 6748 C:\Windows\SysWOW64\cfgmgr32.dll - ok
20:12:50.0560 6748 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
20:12:50.0560 6748 C:\Windows\SysWOW64\oleaut32.dll - ok
20:12:50.0560 6748 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
20:12:50.0560 6748 C:\Windows\SysWOW64\devobj.dll - ok
20:12:50.0576 6748 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
20:12:50.0576 6748 C:\Windows\SysWOW64\userenv.dll - ok
20:12:50.0576 6748 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
20:12:50.0576 6748 C:\Windows\SysWOW64\dnssd.dll - ok
20:12:50.0592 6748 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
20:12:50.0592 6748 C:\Windows\SysWOW64\ntmarta.dll - ok
20:12:50.0592 6748 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
20:12:50.0592 6748 C:\Windows\SysWOW64\Wldap32.dll - ok
20:12:50.0607 6748 [ 905B5BF5BE0A86E8412801BF20357195 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
20:12:50.0607 6748 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
20:12:50.0607 6748 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] C:\Windows\System32\drivers\avgidsfiltera.sys
20:12:50.0607 6748 C:\Windows\System32\drivers\avgidsfiltera.sys - ok
20:12:50.0623 6748 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
20:12:50.0623 6748 C:\Windows\SysWOW64\mswsock.dll - ok
20:12:50.0623 6748 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
20:12:50.0623 6748 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
20:12:50.0638 6748 [ EA1145DEBCD508FD25BD1E95C4346929 ] C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
20:12:50.0638 6748 C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe - ok
20:12:50.0638 6748 [ 93312F83FD4D5C38CEE8AA1265C061EE ] C:\Program Files (x86)\AVG\AVG2012\avgsysx.dll
20:12:50.0638 6748 C:\Program Files (x86)\AVG\AVG2012\avgsysx.dll - ok
20:12:50.0654 6748 [ 3BDCBB29D727C49DC3E3256253467281 ] C:\Windows\System32\wmdrmsdk.dll
20:12:50.0654 6748 C:\Windows\System32\wmdrmsdk.dll - ok
20:12:50.0670 6748 [ 75A97A2C060E72AB49E071E08C7DD2BA ] C:\Windows\SysWOW64\wininet.dll
20:12:50.0670 6748 C:\Windows\SysWOW64\wininet.dll - ok
20:12:50.0670 6748 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
20:12:50.0670 6748 C:\Windows\ehome\ehtrace.dll - ok
20:12:50.0685 6748 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
20:12:50.0685 6748 C:\Windows\System32\taskschd.dll - ok
20:12:50.0685 6748 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
20:12:50.0685 6748 C:\Windows\System32\msimg32.dll - ok
20:12:50.0701 6748 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
20:12:50.0701 6748 C:\Windows\System32\samlib.dll - ok
20:12:50.0701 6748 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
20:12:50.0701 6748 C:\Windows\System32\shacct.dll - ok
20:12:50.0716 6748 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
20:12:50.0716 6748 C:\Windows\System32\samcli.dll - ok
20:12:50.0716 6748 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
20:12:50.0716 6748 C:\Windows\System32\uxtheme.dll - ok
20:12:50.0732 6748 [ DB4BC74DC444CC7A5F8F6DF2D38FBD96 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
20:12:50.0732 6748 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll - ok
20:12:50.0732 6748 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
20:12:50.0732 6748 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
20:12:50.0748 6748 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
20:12:50.0748 6748 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
20:12:50.0748 6748 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
20:12:50.0748 6748 C:\Windows\System32\dwmapi.dll - ok
20:12:50.0763 6748 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
20:12:50.0763 6748 C:\Windows\System32\wsock32.dll - ok
20:12:50.0763 6748 [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
20:12:50.0763 6748 C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
20:12:50.0763 6748 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
20:12:50.0763 6748 C:\Windows\System32\dui70.dll - ok
20:12:50.0779 6748 [ A05C0003E8D7CEA359A439690554F8BB ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
20:12:50.0779 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
20:12:50.0794 6748 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
20:12:50.0794 6748 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
20:12:50.0794 6748 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
20:12:50.0794 6748 C:\Windows\System32\duser.dll - ok
20:12:50.0810 6748 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
20:12:50.0810 6748 C:\Windows\System32\hid.dll - ok
20:12:50.0810 6748 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
20:12:50.0810 6748 C:\Windows\System32\SndVolSSO.dll - ok
20:12:50.0826 6748 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
20:12:50.0826 6748 C:\Windows\System32\WindowsCodecs.dll - ok
20:12:50.0826 6748 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
20:12:50.0826 6748 C:\Windows\System32\winbrand.dll - ok
20:12:50.0841 6748 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
20:12:50.0841 6748 C:\Windows\System32\VaultCredProvider.dll - ok
20:12:50.0841 6748 [ B17ADBBBDC97148D28F995F32C380F2E ] C:\Windows\SysWOW64\iertutil.dll
20:12:50.0841 6748 C:\Windows\SysWOW64\iertutil.dll - ok
20:12:50.0857 6748 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
20:12:50.0857 6748 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
20:12:50.0857 6748 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
20:12:50.0857 6748 C:\Windows\System32\BioCredProv.dll - ok
20:12:50.0872 6748 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
20:12:50.0872 6748 C:\Windows\System32\winbio.dll - ok
20:12:50.0872 6748 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
20:12:50.0872 6748 C:\Windows\System32\credui.dll - ok
20:12:50.0888 6748 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
20:12:50.0888 6748 C:\Windows\System32\vaultcli.dll - ok
20:12:50.0888 6748 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
20:12:50.0888 6748 C:\Windows\System32\certCredProvider.dll - ok
20:12:50.0904 6748 [ 667981F2E7C26275F0694B58EEE303B9 ] C:\Windows\SysWOW64\urlmon.dll
20:12:50.0904 6748 C:\Windows\SysWOW64\urlmon.dll - ok
20:12:50.0904 6748 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
20:12:50.0904 6748 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
20:12:50.0919 6748 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
20:12:50.0919 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
20:12:50.0935 6748 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
20:12:50.0935 6748 C:\Windows\System32\rasplap.dll - ok
20:12:50.0935 6748 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
20:12:50.0935 6748 C:\Windows\System32\rasapi32.dll - ok
20:12:50.0950 6748 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
20:12:50.0950 6748 C:\Windows\System32\rasman.dll - ok
20:12:50.0950 6748 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
20:12:50.0950 6748 C:\Windows\System32\rtutils.dll - ok
20:12:50.0966 6748 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
20:12:50.0966 6748 C:\Windows\System32\UXInit.dll - ok
20:12:50.0966 6748 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
20:12:50.0966 6748 C:\Windows\System32\oleacc.dll - ok
20:12:50.0982 6748 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
20:12:50.0982 6748 C:\Windows\System32\UIAutomationCore.dll - ok
20:12:50.0982 6748 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
20:12:50.0982 6748 C:\Windows\System32\imageres.dll - ok
20:12:50.0997 6748 [ 91DC97F9DA3E2B59049D410870935C78 ] C:\Program Files (x86)\AVG\AVG2012\avgntopensslx.dll
20:12:50.0997 6748 C:\Program Files (x86)\AVG\AVG2012\avgntopensslx.dll - ok
20:12:50.0997 6748 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
20:12:50.0997 6748 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
20:12:51.0013 6748 [ 25CD97F030AE70AF458FF6AB0B7E9B2E ] C:\Program Files (x86)\AVG\AVG2012\avglogx.dll
20:12:51.0013 6748 C:\Program Files (x86)\AVG\AVG2012\avglogx.dll - ok
20:12:51.0013 6748 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
20:12:51.0013 6748 C:\Program Files\Bonjour\mDNSResponder.exe - ok
20:12:51.0028 6748 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll
20:12:51.0028 6748 C:\Windows\System32\cryptnet.dll - ok
20:12:51.0028 6748 [ F195FBC375342BD25C936982245A8FB0 ] C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe
20:12:51.0028 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe - ok
20:12:51.0044 6748 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
20:12:51.0044 6748 C:\Windows\SysWOW64\comdlg32.dll - ok
20:12:51.0044 6748 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
20:12:51.0044 6748 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
20:12:51.0060 6748 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
20:12:51.0060 6748 C:\Windows\System32\vssapi.dll - ok
20:12:51.0075 6748 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
20:12:51.0075 6748 C:\Windows\SysWOW64\winspool.drv - ok
20:12:51.0075 6748 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
20:12:51.0075 6748 C:\Windows\System32\vsstrace.dll - ok
20:12:51.0091 6748 [ AC633C7D40C63A197649955A512AD7BD ] C:\Program Files (x86)\AVG\AVG2012\avgwd.dll
20:12:51.0091 6748 C:\Program Files (x86)\AVG\AVG2012\avgwd.dll - ok
20:12:51.0091 6748 [ E2C78D19572AACC2062A00F01503807E ] C:\Program Files (x86)\AVG\AVG2012\avgcfgx.dll
20:12:51.0091 6748 C:\Program Files (x86)\AVG\AVG2012\avgcfgx.dll - ok
20:12:51.0106 6748 [ 4DB0907D750E0810309F8D8FA36625A6 ] C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
20:12:51.0106 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe - ok
20:12:51.0122 6748 [ E3E90EF71F52DF911F8819D5B2302830 ] C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSd.dll
20:12:51.0122 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSd.dll - ok
20:12:51.0122 6748 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
20:12:51.0122 6748 C:\Windows\SysWOW64\mfc42.dll - ok
20:12:51.0138 6748 [ F6458218C78936638F67538EC87F6054 ] C:\Program Files (x86)\D-Link\DWA-125 revA\ANPDApi.dll
20:12:51.0138 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\ANPDApi.dll - ok
20:12:51.0138 6748 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll
20:12:51.0138 6748 C:\Windows\SysWOW64\crypt32.dll - ok
20:12:51.0153 6748 [ 2569EAB04987EDA80ACBF733A623C872 ] C:\Program Files (x86)\D-Link\DWA-125 revA\wlanapp.dll
20:12:51.0153 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\wlanapp.dll - ok
20:12:51.0169 6748 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
20:12:51.0169 6748 C:\Windows\SysWOW64\msasn1.dll - ok
20:12:51.0169 6748 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
20:12:51.0169 6748 C:\Windows\SysWOW64\cryptui.dll - ok
20:12:51.0184 6748 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
20:12:51.0184 6748 C:\Windows\SysWOW64\odbc32.dll - ok
20:12:51.0184 6748 [ C30241CA2A0F0A0AE7A43BD5D26F4C1C ] C:\Program Files (x86)\D-Link\DWA-125 revA\msvcp60.dll
20:12:51.0184 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\msvcp60.dll - ok
20:12:51.0200 6748 [ 6792DE3B041AC945260192D5ACA5BA06 ] C:\Program Files (x86)\D-Link\DWA-125 revA\wnicapi.dll
20:12:51.0200 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\wnicapi.dll - ok
20:12:51.0200 6748 [ 126B75D50756FE204283D418AE1A66DF ] C:\Windows\SysWOW64\msvcirt.dll
20:12:51.0200 6748 C:\Windows\SysWOW64\msvcirt.dll - ok
20:12:51.0216 6748 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
20:12:51.0216 6748 C:\Windows\SysWOW64\odbcint.dll - ok
20:12:51.0216 6748 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
20:12:51.0216 6748 C:\Windows\SysWOW64\cryptsp.dll - ok
20:12:51.0231 6748 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
20:12:51.0231 6748 C:\Windows\SysWOW64\wlanapi.dll - ok
20:12:51.0231 6748 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
20:12:51.0231 6748 C:\Windows\SysWOW64\wlanutil.dll - ok
20:12:51.0247 6748 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
20:12:51.0247 6748 C:\Windows\System32\aepic.dll - ok
20:12:51.0247 6748 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
20:12:51.0247 6748 C:\Windows\System32\ncsi.dll - ok
20:12:51.0262 6748 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
20:12:51.0262 6748 C:\Windows\SysWOW64\rsaenh.dll - ok
20:12:51.0262 6748 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
20:12:51.0262 6748 C:\Windows\System32\drivers\PEAuth.sys - ok
20:12:51.0278 6748 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
20:12:51.0278 6748 C:\Windows\System32\drivers\secdrv.sys - ok
20:12:51.0278 6748 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
20:12:51.0278 6748 C:\Windows\System32\sfc.dll - ok
20:12:51.0294 6748 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
20:12:51.0294 6748 C:\Windows\System32\sfc_os.dll - ok
20:12:51.0294 6748 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
20:12:51.0294 6748 C:\Windows\System32\ssdpapi.dll - ok
20:12:51.0309 6748 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
20:12:51.0309 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
20:12:51.0325 6748 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
20:12:51.0325 6748 C:\Windows\System32\vpnikeapi.dll - ok
20:12:51.0325 6748 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
20:12:51.0325 6748 C:\Windows\SysWOW64\psapi.dll - ok
20:12:51.0340 6748 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
20:12:51.0340 6748 C:\Windows\System32\drivers\srvnet.sys - ok
20:12:51.0340 6748 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
20:12:51.0340 6748 C:\Windows\SysWOW64\clbcatq.dll - ok
20:12:51.0356 6748 [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
20:12:51.0356 6748 C:\Windows\System32\drivers\tcpipreg.sys - ok
20:12:51.0372 6748 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
20:12:51.0372 6748 C:\Windows\System32\icaapi.dll - ok
20:12:51.0372 6748 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
20:12:51.0372 6748 C:\Windows\System32\wiatrace.dll - ok
20:12:51.0387 6748 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
20:12:51.0387 6748 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
20:12:51.0387 6748 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
20:12:51.0387 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
20:12:51.0403 6748 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll
20:12:51.0403 6748 C:\Windows\SysWOW64\wintrust.dll - ok
20:12:51.0403 6748 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
20:12:51.0403 6748 C:\Windows\SysWOW64\wbemcomn.dll - ok
20:12:51.0418 6748 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
20:12:51.0418 6748 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
20:12:51.0418 6748 [ FC33CBBB9CADCEC307DA010FE763D04C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
20:12:51.0418 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
20:12:51.0434 6748 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
20:12:51.0434 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
20:12:51.0450 6748 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
20:12:51.0450 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
20:12:51.0450 6748 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
20:12:51.0450 6748 C:\Windows\System32\aeevts.dll - ok
20:12:51.0465 6748 [ EF51747440486C23BD466311048BD924 ] C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
20:12:51.0465 6748 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe - ok
20:12:51.0465 6748 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
20:12:51.0465 6748 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
20:12:51.0481 6748 [ 893C44082C97F7AED3E7C180FA1F93D8 ] C:\Windows\System32\mpnotify.exe
20:12:51.0481 6748 C:\Windows\System32\mpnotify.exe - ok
20:12:51.0481 6748 [ 76CDA84DCB30EBDEF0D86051A72E0C0F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll
20:12:51.0481 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll - ok
20:12:51.0496 6748 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:12:51.0496 6748 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
20:12:51.0496 6748 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
20:12:51.0496 6748 C:\Windows\System32\wbemcomn.dll - ok
20:12:51.0512 6748 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
20:12:51.0512 6748 C:\Windows\System32\wbem\fastprox.dll - ok
20:12:51.0512 6748 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
20:12:51.0512 6748 C:\Windows\System32\wbem\WinMgmtR.dll - ok
20:12:51.0528 6748 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
20:12:51.0528 6748 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
20:12:51.0528 6748 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
20:12:51.0528 6748 C:\Windows\SysWOW64\msxml3.dll - ok
20:12:51.0543 6748 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
20:12:51.0543 6748 C:\Windows\System32\mpr.dll - ok
20:12:51.0543 6748 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
20:12:51.0543 6748 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
20:12:51.0559 6748 [ 80223885B9EB2DACEC4595D88F8345CB ] C:\Windows\System32\BCMLogon.dll
20:12:51.0559 6748 C:\Windows\System32\BCMLogon.dll - ok
20:12:51.0559 6748 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
20:12:51.0559 6748 C:\Windows\System32\ntdsapi.dll - ok
20:12:51.0574 6748 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
20:12:51.0574 6748 C:\Windows\System32\SensApi.dll - ok
20:12:51.0590 6748 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
20:12:51.0590 6748 C:\Windows\System32\wbem\wbemprox.dll - ok
20:12:51.0590 6748 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
20:12:51.0590 6748 C:\Windows\System32\wer.dll - ok
20:12:51.0606 6748 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
20:12:51.0606 6748 C:\Windows\System32\wbem\wbemcore.dll - ok
20:12:51.0606 6748 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
20:12:51.0606 6748 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
20:12:51.0621 6748 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
20:12:51.0621 6748 C:\Windows\System32\wbem\esscli.dll - ok
20:12:51.0621 6748 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
20:12:51.0621 6748 C:\Windows\System32\wbem\wbemsvc.dll - ok
20:12:51.0637 6748 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
20:12:51.0637 6748 C:\Windows\System32\wbem\repdrvfs.dll - ok
20:12:51.0637 6748 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
20:12:51.0637 6748 C:\Windows\System32\wbem\wmiutils.dll - ok
20:12:51.0652 6748 [ 60732ECEC8AEF0A05FE36E661AA1C99C ] C:\Program Files (x86)\AVG\AVG2012\avgclitx.dll
20:12:51.0652 6748 C:\Program Files (x86)\AVG\AVG2012\avgclitx.dll - ok
20:12:51.0668 6748 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
20:12:51.0668 6748 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
20:12:51.0668 6748 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
20:12:51.0668 6748 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
20:12:51.0684 6748 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
20:12:51.0684 6748 C:\Windows\SysWOW64\winsta.dll - ok
20:12:51.0684 6748 [ C77ACC3B8ACFEC421D9EB8240E7FF0B3 ] C:\Program Files (x86)\AVG\AVG2012\avgidpsdkx.dll
20:12:51.0684 6748 C:\Program Files (x86)\AVG\AVG2012\avgidpsdkx.dll - ok
20:12:51.0699 6748 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
20:12:51.0699 6748 C:\Windows\SysWOW64\ntdsapi.dll - ok
20:12:51.0699 6748 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
20:12:51.0699 6748 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
20:12:51.0715 6748 [ B642E645D7A790E0FA41E16C6C4234E6 ] C:\Program Files (x86)\AVG\AVG2012\avgwdwsc.dll
20:12:51.0715 6748 C:\Program Files (x86)\AVG\AVG2012\avgwdwsc.dll - ok
20:12:51.0715 6748 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
20:12:51.0715 6748 C:\Windows\SysWOW64\wscapi.dll - ok
20:12:51.0730 6748 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
20:12:51.0730 6748 C:\Windows\SysWOW64\secur32.dll - ok
20:12:51.0730 6748 [ B09C638B3AD925CDFBFCD411BAAB223A ] C:\Program Files (x86)\AVG\AVG2012\avgcorex.dll
20:12:51.0730 6748 C:\Program Files (x86)\AVG\AVG2012\avgcorex.dll - ok
20:12:51.0746 6748 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
20:12:51.0746 6748 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
20:12:51.0746 6748 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
20:12:51.0746 6748 C:\Windows\System32\ncobjapi.dll - ok
20:12:51.0762 6748 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
20:12:51.0762 6748 C:\Windows\System32\wbem\wbemess.dll - ok
20:12:51.0777 6748 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
20:12:51.0777 6748 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
20:12:51.0777 6748 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
20:12:51.0777 6748 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
20:12:51.0793 6748 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
20:12:51.0793 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
20:12:51.0793 6748 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] C:\Windows\System32\drivers\avgidsdrivera.sys
20:12:51.0793 6748 C:\Windows\System32\drivers\avgidsdrivera.sys - ok
20:12:51.0808 6748 [ 7548066DF68A8A1A56B043359F915F37 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
20:12:51.0808 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
20:12:51.0824 6748 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
20:12:51.0824 6748 C:\Windows\System32\msxml3.dll - ok
20:12:51.0824 6748 [ 720971F2603EF221AA4EF33980EF8137 ] C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlrmt.dll
20:12:51.0824 6748 C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlrmt.dll - ok
20:12:51.0840 6748 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
20:12:51.0840 6748 C:\Windows\System32\wbem\cimwin32.dll - ok
20:12:51.0840 6748 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
20:12:51.0840 6748 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
20:12:51.0855 6748 [ 05DEB6BF3C7F0C241FFB9A7C3503BDFB ] C:\Windows\System32\wltrynt.dll
20:12:51.0855 6748 C:\Windows\System32\wltrynt.dll - ok
20:12:51.0855 6748 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
20:12:51.0855 6748 C:\Windows\System32\framedynos.dll - ok
20:12:51.0871 6748 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
20:12:51.0871 6748 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
20:12:51.0871 6748 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
20:12:51.0871 6748 C:\Windows\System32\wmi.dll - ok
20:12:51.0886 6748 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
20:12:51.0886 6748 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
20:12:51.0886 6748 [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
20:12:51.0886 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
20:12:51.0902 6748 [ 3960CEB4A6B13784252D827ECF65CED3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
20:12:51.0902 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
20:12:51.0902 6748 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
20:12:51.0902 6748 C:\Windows\System32\drivers\srv2.sys - ok
20:12:51.0918 6748 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
20:12:51.0918 6748 C:\Windows\System32\sqmapi.dll - ok
20:12:51.0918 6748 [ D67719BCFDE5798F5C30D14EFED3BCAF ] C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
20:12:51.0918 6748 C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe - ok
20:12:51.0933 6748 [ 1530DFBDFD68AAD1FD5FDA52EA44925E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
20:12:51.0933 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
20:12:51.0933 6748 [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
20:12:51.0933 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
20:12:51.0949 6748 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
20:12:51.0949 6748 C:\Windows\System32\wdscore.dll - ok
20:12:51.0964 6748 [ EEA7E552C2C992CFD4B50857010F39EA ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
20:12:51.0964 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
20:12:51.0964 6748 [ 5E2623439A9936D320FE8DC1AB84526A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
20:12:51.0964 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
20:12:51.0980 6748 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
20:12:51.0980 6748 C:\Windows\SysWOW64\apphelp.dll - ok
20:12:51.0980 6748 [ 8F1656DEB2E861D608909792F5A68C3B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
20:12:51.0980 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
20:12:51.0996 6748 [ 938928B014F2ABA4C1293EA4D8714020 ] C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
20:12:51.0996 6748 C:\Program Files (x86)\AVG\AVG2012\avgemca.exe - ok
20:12:52.0011 6748 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
20:12:52.0011 6748 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
20:12:52.0011 6748 [ 72EE3BF7378869AB5D72E7E191FD5FAA ] C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
20:12:52.0011 6748 C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe - ok
20:12:52.0027 6748 [ A5675206B80C4127BC687DCCA9A57212 ] C:\Program Files (x86)\AVG\AVG2012\avgntsqlitex.dll
20:12:52.0027 6748 C:\Program Files (x86)\AVG\AVG2012\avgntsqlitex.dll - ok
20:12:52.0027 6748 [ 78193AA97D679531522C3E2FA4A5EDFE ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
20:12:52.0027 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
20:12:52.0042 6748 [ 8415EF35A9CC4CF9E335AEC0EB562AAA ] C:\Program Files (x86)\AVG\AVG2012\avgcfga.dll
20:12:52.0042 6748 C:\Program Files (x86)\AVG\AVG2012\avgcfga.dll - ok
20:12:52.0042 6748 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
20:12:52.0042 6748 C:\Windows\System32\nci.dll - ok
20:12:52.0058 6748 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
20:12:52.0058 6748 C:\Windows\System32\hnetcfg.dll - ok
20:12:52.0058 6748 [ 793A19EAB66BB232F019DFF9D1977A41 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
20:12:52.0058 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
20:12:52.0074 6748 [ EB4A30EAC3B3C304EAC8A10970E3402E ] C:\Program Files (x86)\AVG\AVG2012\avgsched.dll
20:12:52.0074 6748 C:\Program Files (x86)\AVG\AVG2012\avgsched.dll - ok
20:12:52.0089 6748 [ BA726152513EC650EED219B7995DE852 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
20:12:52.0089 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
20:12:52.0089 6748 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
20:12:52.0089 6748 C:\Windows\SysWOW64\SensApi.dll - ok
20:12:52.0089 6748 [ AFF2E23E4E867140F07ABADC9E29ACDC ] C:\Program Files (x86)\AVG\AVG2012\avgopensslx.dll
20:12:52.0089 6748 C:\Program Files (x86)\AVG\AVG2012\avgopensslx.dll - ok
20:12:52.0105 6748 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
20:12:52.0105 6748 C:\Windows\System32\drivers\srv.sys - ok
20:12:52.0120 6748 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
20:12:52.0120 6748 C:\Windows\System32\clusapi.dll - ok
20:12:52.0120 6748 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
20:12:52.0120 6748 C:\Windows\System32\netmsg.dll - ok
20:12:52.0120 6748 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
20:12:52.0120 6748 C:\Windows\System32\sscore.dll - ok
20:12:52.0136 6748 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
20:12:52.0136 6748 C:\Windows\System32\resutils.dll - ok
20:12:52.0152 6748 [ 8D01FA11124811ED06E876E5DDE70039 ] C:\Program Files (x86)\AVG\AVG2012\avgcertx.dll
20:12:52.0152 6748 C:\Program Files (x86)\AVG\AVG2012\avgcertx.dll - ok
20:12:52.0152 6748 [ 3466855DE825F86C484A3454AD090967 ] C:\Program Files (x86)\AVG\AVG2012\avgchclx.dll
20:12:52.0152 6748 C:\Program Files (x86)\AVG\AVG2012\avgchclx.dll - ok
20:12:52.0167 6748 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
20:12:52.0167 6748 C:\Windows\SysWOW64\sfc.dll - ok
20:12:52.0167 6748 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
20:12:52.0167 6748 C:\Windows\SysWOW64\sfc_os.dll - ok
20:12:52.0183 6748 [ 77C8E1779E784189EA29D9A5ECCDD9E9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
20:12:52.0183 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
20:12:52.0183 6748 [ AFD87B70E2C48EC080CA28ADCC3175B5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
20:12:52.0183 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
20:12:52.0198 6748 [ 5ECEA5F29DCEE8D320454C86A1CB3366 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
20:12:52.0198 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
20:12:52.0214 6748 [ 18873D2B1ABBB8826ED18F840CB8E0D3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
20:12:52.0214 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
20:12:52.0230 6748 [ 79ECBC83B844F7A474C66BE77AAF7180 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
20:12:52.0230 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
20:12:52.0230 6748 [ 069006BF253F32CD980E67E8671DFE3C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
20:12:52.0230 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
20:12:52.0245 6748 [ 5925F32114BF5ACF50C66500433B35CC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
20:12:52.0245 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
20:12:52.0261 6748 [ 03C7D7A1553E3009CEBE3013A578B0ED ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
20:12:52.0261 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
20:12:52.0261 6748 [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
20:12:52.0261 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
20:12:52.0276 6748 [ 2499E32320905E68F9710527593A0EDB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
20:12:52.0276 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
20:12:52.0276 6748 [ 591EA8B6991D99720B36EBC1CC16CEA8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
20:12:52.0276 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
20:12:52.0292 6748 [ A4487F6CEFED12F2C1257F6DBCDAEB1E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
20:12:52.0292 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
20:12:52.0308 6748 [ 35989A505DEEC24DEF8D327D22FF14D4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
20:12:52.0308 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
20:12:52.0308 6748 [ 9D825B4E6B28F93F326538515EFC880B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
20:12:52.0308 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
20:12:52.0323 6748 [ D9BFF3E59CBE32FE72D6D68F6AF348BD ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
20:12:52.0323 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
20:12:52.0323 6748 [ E84CB5D899098DDEA6D013057C9E4B5F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
20:12:52.0323 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
20:12:52.0339 6748 [ 666284100DBC5A9486BBD479872E8AE5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\PlugInRAID_JPN.dll
20:12:52.0339 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\PlugInRAID_JPN.dll - ok
20:12:52.0354 6748 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
20:12:52.0354 6748 C:\Windows\System32\winspool.drv - ok
20:12:52.0354 6748 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
20:12:52.0354 6748 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
20:12:52.0370 6748 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
20:12:52.0370 6748 C:\Windows\System32\dllhost.exe - ok
20:12:52.0370 6748 [ A5DBC74C5B91CF6E43B73D62936F8186 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
20:12:52.0370 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
20:12:52.0386 6748 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
20:12:52.0386 6748 C:\Program Files\Bonjour\mdnsNSP.dll - ok
20:12:52.0386 6748 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
20:12:52.0386 6748 C:\Windows\System32\rasadhlp.dll - ok
20:12:52.0401 6748 [ 3CEF96890064B3CDB190963157F24BAC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
20:12:52.0401 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
20:12:52.0401 6748 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
20:12:52.0401 6748 C:\Windows\System32\localspl.dll - ok
20:12:52.0417 6748 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
20:12:52.0417 6748 C:\Windows\SysWOW64\oleacc.dll - ok
20:12:52.0417 6748 [ 5BFB02BDA2700D078400E149BC4CF87A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
20:12:52.0417 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
20:12:52.0432 6748 [ 3C29B98149A28FEDA42796D3EA904F62 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
20:12:52.0432 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
20:12:52.0432 6748 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
20:12:52.0432 6748 C:\Windows\System32\IDStore.dll - ok
20:12:52.0448 6748 [ 38ADD53ECFC5F040EF1C647ECD22A2A4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
20:12:52.0448 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
20:12:52.0448 6748 [ 001D7099C3DB8E53A955FF4D66E25AA2 ] C:\Windows\System32\kbd101.dll
20:12:52.0448 6748 C:\Windows\System32\kbd101.dll - ok
20:12:52.0464 6748 [ A1D990022654CFE37E2561E540F0253B ] C:\Windows\System32\kbd106.dll
20:12:52.0464 6748 C:\Windows\System32\kbd106.dll - ok
20:12:52.0464 6748 [ 6D707786D7163383C64F07263BB9478E ] C:\Windows\System32\KBDJPN.DLL
20:12:52.0464 6748 C:\Windows\System32\KBDJPN.DLL - ok
20:12:52.0479 6748 [ 117865AD39587EB4DA218AAF2E559B8C ] C:\Windows\System32\kbdnec.dll
20:12:52.0479 6748 C:\Windows\System32\kbdnec.dll - ok
20:12:52.0479 6748 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
20:12:52.0479 6748 C:\Windows\System32\spoolss.dll - ok
20:12:52.0495 6748 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
20:12:52.0495 6748 C:\Windows\System32\taskhost.exe - ok
20:12:52.0495 6748 [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
20:12:52.0495 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
20:12:52.0510 6748 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
20:12:52.0510 6748 C:\Windows\System32\PrintIsolationProxy.dll - ok
20:12:52.0510 6748 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
20:12:52.0510 6748 C:\Windows\System32\AtBroker.exe - ok
20:12:52.0510 6748 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
20:12:52.0510 6748 C:\Windows\System32\FXSMON.dll - ok
20:12:52.0526 6748 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
20:12:52.0526 6748 C:\Windows\System32\hpz3lw71.dll - ok
20:12:52.0526 6748 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
20:12:52.0526 6748 C:\Windows\System32\tcpmon.dll - ok
20:12:52.0542 6748 [ 43B02D7C43B77775F1DA63B1D1014F38 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
20:12:52.0542 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
20:12:52.0542 6748 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
20:12:52.0542 6748 C:\Windows\System32\snmpapi.dll - ok
20:12:52.0557 6748 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
20:12:52.0557 6748 C:\Windows\System32\taskeng.exe - ok
20:12:52.0557 6748 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
20:12:52.0557 6748 C:\Windows\System32\userinit.exe - ok
20:12:52.0573 6748 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
20:12:52.0573 6748 C:\Windows\System32\wsnmp32.dll - ok
20:12:52.0573 6748 [ 5AF1E9600E3FF841E522703A4993ED0C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
20:12:52.0573 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
20:12:52.0588 6748 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
20:12:52.0588 6748 C:\Windows\System32\dwmredir.dll - ok
20:12:52.0588 6748 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
20:12:52.0588 6748 C:\Windows\System32\dwmcore.dll - ok
20:12:52.0604 6748 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
20:12:52.0604 6748 C:\Windows\explorer.exe - ok
20:12:52.0604 6748 [ BA48FCD5653B8A62F39AAF2663EC5D10 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll
20:12:52.0604 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll - ok
20:12:52.0620 6748 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
20:12:52.0620 6748 C:\Windows\System32\TSChannel.dll - ok
20:12:52.0620 6748 [ 13FBAAC844080B75D082FEA55718D2F8 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
20:12:52.0620 6748 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
20:12:52.0635 6748 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
20:12:52.0635 6748 C:\Windows\SysWOW64\uxtheme.dll - ok
20:12:52.0651 6748 [ 2C5BF0C4C8F643C7A6B3226F9E2E8F0B ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
20:12:52.0651 6748 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
20:12:52.0651 6748 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
20:12:52.0651 6748 C:\Windows\System32\PlaySndSrv.dll - ok
20:12:52.0666 6748 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
20:12:52.0666 6748 C:\Windows\System32\HotStartUserAgent.dll - ok
20:12:52.0666 6748 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
20:12:52.0666 6748 C:\Windows\System32\MsCtfMonitor.dll - ok
20:12:52.0682 6748 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
20:12:52.0682 6748 C:\Windows\System32\msutb.dll - ok
20:12:52.0682 6748 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
20:12:52.0682 6748 C:\Windows\System32\d3d10_1.dll - ok
20:12:52.0698 6748 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
20:12:52.0698 6748 C:\Windows\System32\d3d10_1core.dll - ok
20:12:52.0698 6748 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
20:12:52.0698 6748 C:\Windows\System32\dxgi.dll - ok
20:12:52.0713 6748 [ A9DA8CC5E02FF594E11A78D86D5B6A5B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\2a02b172fa4cf3d93ce7388b67b2a199\System.Runtime.Remoting.ni.dll
20:12:52.0713 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\2a02b172fa4cf3d93ce7388b67b2a199\System.Runtime.Remoting.ni.dll - ok
20:12:52.0713 6748 [ E8701176E4CD557C27ACC80F53F51BB2 ] C:\Windows\System32\igd10umd64.dll
20:12:52.0713 6748 C:\Windows\System32\igd10umd64.dll - ok
20:12:52.0729 6748 [ 4370B54FC11742DC5A88DC8602729459 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\fd4a8227569e64d657b80483da8ffe78\System.Management.ni.dll
20:12:52.0729 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\fd4a8227569e64d657b80483da8ffe78\System.Management.ni.dll - ok
20:12:52.0729 6748 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
20:12:52.0729 6748 C:\Windows\System32\usbmon.dll - ok
20:12:52.0729 6748 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
20:12:52.0729 6748 C:\Windows\System32\WSDMon.dll - ok
20:12:52.0744 6748 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
20:12:52.0744 6748 C:\Windows\System32\WSDApi.dll - ok
20:12:52.0744 6748 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
20:12:52.0744 6748 C:\Windows\System32\webservices.dll - ok
20:12:52.0760 6748 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
20:12:52.0760 6748 C:\Windows\System32\fdPnp.dll - ok
20:12:52.0760 6748 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
20:12:52.0760 6748 C:\Windows\System32\fundisc.dll - ok
20:12:52.0776 6748 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
20:12:52.0776 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
20:12:52.0791 6748 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
20:12:52.0791 6748 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
20:12:52.0791 6748 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
20:12:52.0791 6748 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
20:12:52.0807 6748 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
20:12:52.0807 6748 C:\Windows\System32\win32spl.dll - ok
20:12:52.0807 6748 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
20:12:52.0807 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
20:12:52.0822 6748 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
20:12:52.0822 6748 C:\Windows\System32\inetpp.dll - ok
20:12:52.0822 6748 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
20:12:52.0838 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
20:12:52.0838 6748 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
20:12:52.0838 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe - ok
20:12:52.0854 6748 [ 90F5C6C1570C98169EB1BC8308ACA7A6 ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
20:12:52.0854 6748 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
20:12:52.0854 6748 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
20:12:52.0854 6748 C:\Windows\SysWOW64\msi.dll - ok
20:12:52.0869 6748 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
20:12:52.0869 6748 C:\Windows\System32\ExplorerFrame.dll - ok
20:12:52.0869 6748 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
20:12:52.0869 6748 C:\Windows\System32\EhStorShell.dll - ok
20:12:52.0885 6748 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
20:12:52.0885 6748 C:\Windows\System32\cscapi.dll - ok
20:12:52.0885 6748 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
20:12:52.0885 6748 C:\Windows\System32\ntshrui.dll - ok
20:12:52.0900 6748 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
20:12:52.0900 6748 C:\Windows\System32\IconCodecService.dll - ok
20:12:52.0900 6748 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
20:12:52.0900 6748 C:\Windows\SysWOW64\msimg32.dll - ok
20:12:52.0916 6748 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
20:12:52.0916 6748 C:\Windows\SysWOW64\propsys.dll - ok
20:12:52.0916 6748 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
20:12:52.0916 6748 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
20:12:52.0932 6748 [ 32E15ECF5854F5610BC895490BC3246A ] C:\Windows\SysWOW64\ieframe.dll
20:12:52.0932 6748 C:\Windows\SysWOW64\ieframe.dll - ok
20:12:52.0932 6748 [ 368B2BEE3F88BFB883D2C74A258DE6F6 ] C:\Windows\AppPatch\AcLayers.dll
20:12:52.0932 6748 C:\Windows\AppPatch\AcLayers.dll - ok
20:12:52.0947 6748 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
20:12:52.0947 6748 C:\Windows\SysWOW64\dwmapi.dll - ok
20:12:52.0947 6748 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
20:12:52.0947 6748 C:\Windows\SysWOW64\mpr.dll - ok
20:12:52.0963 6748 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
20:12:52.0963 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
20:12:52.0963 6748 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
20:12:52.0963 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
20:12:52.0978 6748 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
20:12:52.0978 6748 C:\Windows\SysWOW64\devrtl.dll - ok
20:12:52.0978 6748 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
20:12:52.0978 6748 C:\Windows\SysWOW64\oledlg.dll - ok
20:12:52.0994 6748 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
20:12:52.0994 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
20:12:52.0994 6748 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
20:12:52.0994 6748 C:\Windows\System32\uDWM.dll - ok
20:12:53.0010 6748 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
20:12:53.0010 6748 C:\Windows\SysWOW64\mscoree.dll - ok
20:12:53.0010 6748 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
20:12:53.0010 6748 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
20:12:53.0025 6748 [ 4552F8F61A7975C2359D19673483604D ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
20:12:53.0025 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
20:12:53.0025 6748 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll
20:12:53.0025 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll - ok
20:12:53.0041 6748 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
20:12:53.0041 6748 C:\Windows\System32\esent.dll - ok
20:12:53.0056 6748 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] C:\Windows\System32\drivers\bcm42rly.sys
20:12:53.0056 6748 C:\Windows\System32\drivers\bcm42rly.sys - ok
20:12:53.0056 6748 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
20:12:53.0056 6748 C:\Windows\System32\npmproxy.dll - ok
20:12:53.0072 6748 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
20:12:53.0072 6748 C:\Windows\System32\perftrack.dll - ok
20:12:53.0072 6748 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
20:12:53.0072 6748 C:\Windows\System32\PortableDeviceApi.dll - ok
20:12:53.0088 6748 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
20:12:53.0088 6748 C:\Windows\System32\diagperf.dll - ok
20:12:53.0088 6748 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
20:12:53.0088 6748 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
20:12:53.0103 6748 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
20:12:53.0103 6748 C:\Windows\System32\ndiscapCfg.dll - ok
20:12:53.0103 6748 [ C2335D714EFAFFFB4C7A3C164F2024B1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
20:12:53.0103 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll - ok
20:12:53.0119 6748 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
20:12:53.0119 6748 C:\Windows\System32\mprapi.dll - ok
20:12:53.0119 6748 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
20:12:53.0119 6748 C:\Windows\System32\mprmsg.dll - ok
20:12:53.0134 6748 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
20:12:53.0134 6748 C:\Windows\System32\Apphlpdm.dll - ok
20:12:53.0134 6748 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
20:12:53.0134 6748 C:\Windows\System32\pnpts.dll - ok
20:12:53.0150 6748 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
20:12:53.0150 6748 C:\Windows\System32\radardt.dll - ok
20:12:53.0150 6748 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
20:12:53.0150 6748 C:\Windows\System32\wdiasqmmodule.dll - ok
20:12:53.0166 6748 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
20:12:53.0166 6748 C:\Windows\System32\runonce.exe - ok
20:12:53.0181 6748 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
20:12:53.0181 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
20:12:53.0181 6748 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
20:12:53.0181 6748 C:\Windows\SysWOW64\riched20.dll - ok
20:12:53.0197 6748 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
20:12:53.0197 6748 C:\Windows\SysWOW64\imagehlp.dll - ok
20:12:53.0197 6748 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
20:12:53.0197 6748 C:\Windows\SysWOW64\runonce.exe - ok
20:12:53.0212 6748 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
20:12:53.0212 6748 C:\Windows\SysWOW64\ncrypt.dll - ok
20:12:53.0212 6748 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
20:12:53.0212 6748 C:\Windows\SysWOW64\bcrypt.dll - ok
20:12:53.0228 6748 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
20:12:53.0228 6748 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
20:12:53.0228 6748 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
20:12:53.0228 6748 C:\Windows\SysWOW64\gpapi.dll - ok
20:12:53.0244 6748 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
20:12:53.0244 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
20:12:53.0244 6748 [ 26A68554F95A344B62E5771AF598E0E8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
20:12:53.0244 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll - ok
20:12:53.0259 6748 [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
20:12:53.0259 6748 C:\Windows\System32\bcdedit.exe - ok
20:12:53.0259 6748 [ 01D585C95A0E752EFFB11EA899B0E387 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
20:12:53.0259 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll - ok
20:12:53.0275 6748 [ 2291D1FABC087E43D4122CACE1CA30F9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
20:12:53.0275 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll - ok
20:12:53.0275 6748 [ 777F34146CD4126A2B8D6F2342F57536 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll
20:12:53.0275 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll - ok
20:12:53.0290 6748 [ 10307046E19C8EC964C792A798B32BB3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
20:12:53.0290 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll - ok
20:12:53.0290 6748 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
20:12:53.0290 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
20:12:53.0306 6748 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
20:12:53.0306 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
20:12:53.0306 6748 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
20:12:53.0306 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
20:12:53.0322 6748 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
20:12:53.0322 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
20:12:53.0337 6748 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
20:12:53.0337 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
20:12:53.0337 6748 [ 02E185944CFA58DAD47D409E5655FB28 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll
20:12:53.0337 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll - ok
20:12:53.0353 6748 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
20:12:53.0353 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
20:12:53.0353 6748 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
20:12:53.0353 6748 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
20:12:53.0368 6748 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
20:12:53.0368 6748 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
20:12:53.0368 6748 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
20:12:53.0368 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
20:12:53.0384 6748 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
20:12:53.0384 6748 C:\Windows\System32\wlaninst.dll - ok
20:12:53.0384 6748 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
20:12:53.0384 6748 C:\Windows\System32\wwaninst.dll - ok
20:12:53.0400 6748 [ A205551E7BA8580D2C0FF896A4D79FA9 ] C:\Program Files (x86)\InstallShield Installation Information\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\setup.exe
20:12:53.0400 6748 C:\Program Files (x86)\InstallShield Installation Information\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\setup.exe - ok
20:12:53.0415 6748 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
20:12:53.0415 6748 C:\Windows\System32\rundll32.exe - ok
20:12:53.0415 6748 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
20:12:53.0415 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
20:12:53.0431 6748 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
20:12:53.0431 6748 C:\Windows\System32\actxprxy.dll - ok
20:12:53.0431 6748 [ 5C99F92B3C4CFCDF928258C2E838D000 ] C:\Windows\SysWOW64\lz32.dll
20:12:53.0431 6748 C:\Windows\SysWOW64\lz32.dll - ok
20:12:53.0446 6748 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
20:12:53.0446 6748 C:\Windows\AppPatch\AcGenral.dll - ok
20:12:53.0446 6748 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
20:12:53.0446 6748 C:\Windows\SysWOW64\msacm32.dll - ok
20:12:53.0462 6748 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
20:12:53.0462 6748 C:\Windows\SysWOW64\samcli.dll - ok
20:12:53.0462 6748 [ E0347CFB68DA6E23F52FE39A198D7B12 ] C:\Program Files (x86)\InstallShield Installation Information\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\ISSetup.dll
20:12:53.0462 6748 C:\Program Files (x86)\InstallShield Installation Information\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\ISSetup.dll - ok
20:12:53.0478 6748 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
20:12:53.0478 6748 C:\Windows\SysWOW64\d3d9.dll - ok
20:12:53.0478 6748 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
20:12:53.0478 6748 C:\Windows\SysWOW64\d3d8thk.dll - ok
20:12:53.0493 6748 [ AA7AF619E26F44DD94C23B35EC8FE7F2 ] C:\Windows\SysWOW64\igdumdx32.dll
20:12:53.0493 6748 C:\Windows\SysWOW64\igdumdx32.dll - ok
20:12:53.0493 6748 [ F113DDD4F264A8756DB36862CC3CACF3 ] C:\Windows\SysWOW64\igdumd32.dll
20:12:53.0493 6748 C:\Windows\SysWOW64\igdumd32.dll - ok
20:12:53.0509 6748 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
20:12:53.0509 6748 C:\Windows\SysWOW64\powrprof.dll - ok
20:12:53.0509 6748 [ 3B919CBDDE7AE3376ED296839846C3DD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll
20:12:53.0509 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll - ok
20:12:53.0524 6748 [ BD23077CBAD092A5EA5F77ED874F32A2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll
20:12:53.0524 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll - ok
20:12:53.0540 6748 [ EDDAD4BC2B7E8C423DEB9F2711FE653B ] C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\isrt.dll
20:12:53.0540 6748 C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\isrt.dll - ok
20:12:53.0540 6748 [ B5506B451BFE7148ECA7056BDA2970BD ] C:\Windows\SysWOW64\riched32.dll
20:12:53.0540 6748 C:\Windows\SysWOW64\riched32.dll - ok
20:12:53.0556 6748 [ BF422D88AD0CEAD1FF0CEF8145FA7891 ] C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\_IsRes.dll
20:12:53.0556 6748 C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\_IsRes.dll - ok
20:12:53.0556 6748 [ 6705B08B2599E69C2AE60A8FAD0B3927 ] C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\_ISUser.dll
20:12:53.0556 6748 C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\{634F79E1-2A41-4C40-9E8D-89EC740AC9D6}\_ISUser.dll - ok
20:12:53.0571 6748 [ 1D461686B0E32F2DECB587C895A05402 ] C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\ISBEW64.exe
20:12:53.0571 6748 C:\Users\Melissa\AppData\Local\Temp\{58B08F41-DD19-43AA-AFB4-D767584AEB4B}\ISBEW64.exe - ok
20:12:53.0571 6748 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
20:12:53.0571 6748 C:\Windows\SysWOW64\sxs.dll - ok
20:12:53.0587 6748 [ 40E60C0C6E4B9F4D9B8AF2EDE7A6A2E3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll
20:12:53.0587 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll - ok
20:12:53.0587 6748 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
20:12:53.0587 6748 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
20:12:53.0602 6748 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
20:12:53.0602 6748 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
20:12:53.0618 6748 [ 00BE5B2C9969C84EEE8E0009F5DB66A4 ] C:\Program Files (x86)\Logitech\Harmony Remote Driver\HarmonyIEPlugin.dll
20:12:53.0618 6748 C:\Program Files (x86)\Logitech\Harmony Remote Driver\HarmonyIEPlugin.dll - ok
20:12:53.0618 6748 [ A2E27F1FA8987E3EE58DED84F38AE0EB ] C:\Program Files (x86)\Logitech\Harmony Remote Driver\SDE.dll
20:12:53.0618 6748 C:\Program Files (x86)\Logitech\Harmony Remote Driver\SDE.dll - ok
20:12:53.0634 6748 [ 5CF137360335150F42B62AA3B4E1D703 ] C:\Program Files (x86)\Logitech\Harmony Remote Driver\UsbDevice.dll
20:12:53.0634 6748 C:\Program Files (x86)\Logitech\Harmony Remote Driver\UsbDevice.dll - ok
20:12:53.0634 6748 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
20:12:53.0634 6748 C:\Windows\SysWOW64\hid.dll - ok
20:12:53.0649 6748 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
20:12:53.0649 6748 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
20:12:53.0665 6748 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
20:12:53.0665 6748 C:\Windows\SysWOW64\cmd.exe - ok
20:12:53.0665 6748 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
20:12:53.0665 6748 C:\Windows\SysWOW64\winbrand.dll - ok
20:12:53.0680 6748 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
20:12:53.0680 6748 C:\Windows\SysWOW64\shdocvw.dll - ok
20:12:53.0680 6748 [ AD6B1A69B0CCCF27A792F4C00740D24D ] C:\Users\Melissa\AppData\Local\Temp\138D89BB-E907-4903-84AF-5627FB05FEA9.exe
20:12:53.0680 6748 C:\Users\Melissa\AppData\Local\Temp\138D89BB-E907-4903-84AF-5627FB05FEA9.exe - ok
20:12:53.0696 6748 [ 6316957BB3431DFB06BFFA98C0F1926E ] C:\Windows\SysWOW64\cryptnet.dll
20:12:53.0696 6748 C:\Windows\SysWOW64\cryptnet.dll - ok
20:12:53.0696 6748 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
20:12:53.0696 6748 C:\Windows\SysWOW64\EhStorShell.dll - ok
20:12:53.0712 6748 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
20:12:53.0712 6748 C:\Windows\SysWOW64\ntshrui.dll - ok
20:12:53.0712 6748 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
20:12:53.0712 6748 C:\Windows\SysWOW64\srvcli.dll - ok
20:12:53.0727 6748 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
20:12:53.0727 6748 C:\Windows\SysWOW64\cscapi.dll - ok
20:12:53.0727 6748 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
20:12:53.0727 6748 C:\Windows\SysWOW64\slc.dll - ok
20:12:53.0743 6748 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
20:12:53.0743 6748 C:\Windows\SysWOW64\imageres.dll - ok
20:12:53.0743 6748 [ 5F44B1A92E09E8803B0A10DA6B1D15C9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll
20:12:53.0743 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll - ok
20:12:53.0758 6748 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
20:12:53.0758 6748 C:\Windows\System32\dssenh.dll - ok
20:12:53.0758 6748 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
20:12:53.0758 6748 C:\Windows\System32\drivers\fastfat.sys - ok
20:12:53.0774 6748 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
20:12:53.0774 6748 C:\Windows\System32\dimsjob.dll - ok
20:12:53.0774 6748 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
20:12:53.0774 6748 C:\Windows\System32\pautoenr.dll - ok
20:12:53.0790 6748 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
20:12:53.0790 6748 C:\Windows\System32\certcli.dll - ok
20:12:53.0790 6748 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
20:12:53.0790 6748 C:\Windows\System32\CertEnroll.dll - ok
20:12:53.0805 6748 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
20:12:53.0805 6748 C:\Windows\SysWOW64\netutils.dll - ok
20:12:53.0821 6748 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
20:12:53.0821 6748 C:\Windows\SysWOW64\winhttp.dll - ok
20:12:53.0821 6748 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
20:12:53.0821 6748 C:\Windows\SysWOW64\webio.dll - ok
20:12:53.0836 6748 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
20:12:53.0836 6748 C:\Windows\System32\wmploc.DLL - ok
20:12:53.0836 6748 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
20:12:53.0836 6748 C:\Windows\System32\themeui.dll - ok
20:12:53.0852 6748 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
20:12:53.0852 6748 C:\Windows\System32\ie4uinit.exe - ok
20:12:53.0852 6748 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
20:12:53.0852 6748 C:\Windows\System32\iedkcs32.dll - ok
20:12:53.0868 6748 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
20:12:53.0868 6748 C:\Windows\System32\IPSECSVC.DLL - ok
20:12:53.0883 6748 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
20:12:53.0883 6748 C:\Windows\SysWOW64\credssp.dll - ok
20:12:53.0883 6748 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
20:12:53.0883 6748 C:\Windows\SysWOW64\wship6.dll - ok
20:12:53.0899 6748 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
20:12:53.0899 6748 C:\Windows\System32\timedate.cpl - ok
20:12:53.0899 6748 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
20:12:53.0899 6748 C:\Windows\SysWOW64\dnsapi.dll - ok
20:12:53.0914 6748 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
20:12:53.0914 6748 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
20:12:53.0914 6748 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
20:12:53.0914 6748 C:\Windows\System32\FwRemoteSvr.dll - ok
20:12:53.0930 6748 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
20:12:53.0930 6748 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
20:12:53.0930 6748 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
20:12:53.0930 6748 C:\Windows\System32\NapiNSP.dll - ok
20:12:53.0946 6748 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
20:12:53.0946 6748 C:\Windows\System32\pnrpnsp.dll - ok
20:12:53.0946 6748 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
20:12:53.0946 6748 C:\Windows\System32\winrnr.dll - ok
20:12:53.0946 6748 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
20:12:53.0946 6748 C:\Windows\System32\shdocvw.dll - ok
20:12:53.0961 6748 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
20:12:53.0961 6748 C:\Windows\SysWOW64\rasadhlp.dll - ok
20:12:53.0961 6748 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
20:12:53.0961 6748 C:\Windows\System32\linkinfo.dll - ok
20:12:53.0977 6748 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
20:12:53.0977 6748 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
20:12:53.0977 6748 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
20:12:53.0977 6748 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
20:12:53.0992 6748 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
20:12:53.0992 6748 C:\Windows\System32\msftedit.dll - ok
20:12:53.0992 6748 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
20:12:53.0992 6748 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
20:12:54.0008 6748 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
20:12:54.0008 6748 C:\Windows\System32\msls31.dll - ok
20:12:54.0008 6748 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
20:12:54.0008 6748 C:\Windows\System32\gameux.dll - ok
20:12:54.0024 6748 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
20:12:54.0024 6748 C:\Windows\System32\DeviceCenter.dll - ok
20:12:54.0024 6748 [ 5FA0584E20C0E983F83FAABBF42DFFFA ] C:\Program Files\DellTPad\Apoint.exe
20:12:54.0024 6748 C:\Program Files\DellTPad\Apoint.exe - ok
20:12:54.0039 6748 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
20:12:54.0039 6748 C:\Windows\System32\msiltcfg.dll - ok
20:12:54.0039 6748 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
20:12:54.0039 6748 C:\Windows\System32\msi.dll - ok
20:12:54.0055 6748 [ 1C82799A26006CC1BC0FC33AEFB462D8 ] C:\Program Files\DellTPad\Apoint.dll
20:12:54.0055 6748 C:\Program Files\DellTPad\Apoint.dll - ok
20:12:54.0055 6748 [ 7726CAF9FACA8026D58A4E54F25DCE1D ] C:\Program Files\DellTPad\EzAuto.dll
20:12:54.0055 6748 C:\Program Files\DellTPad\EzAuto.dll - ok
20:12:54.0070 6748 [ 2601DE24B0D885EB868686BF91612973 ] C:\Windows\System32\Vxdif.dll
20:12:54.0070 6748 C:\Windows\System32\Vxdif.dll - ok
20:12:54.0070 6748 [ 1AF9CB7C8158D38A6CC8D6834C2043E0 ] C:\Program Files\DellTPad\ApMsgFwd.exe
20:12:54.0070 6748 C:\Program Files\DellTPad\ApMsgFwd.exe - ok
20:12:54.0086 6748 [ 5F3D8F0243E653BEDEB9AC6F04B7CF79 ] C:\Program Files\IDT\WDM\sttray64.exe
20:12:54.0086 6748 C:\Program Files\IDT\WDM\sttray64.exe - ok
20:12:54.0086 6748 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
20:12:54.0086 6748 C:\Windows\System32\thumbcache.dll - ok
20:12:54.0102 6748 [ 0C575800C1E262CCD193A33AB8A899BA ] C:\Windows\System32\igfxtray.exe
20:12:54.0102 6748 C:\Windows\System32\igfxtray.exe - ok
20:12:54.0102 6748 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
20:12:54.0102 6748 C:\Windows\System32\networkexplorer.dll - ok
20:12:54.0117 6748 [ E43B76D4E809597384CA7E5AA8F5CB88 ] C:\Windows\System32\hccutils.dll
20:12:54.0117 6748 C:\Windows\System32\hccutils.dll - ok
20:12:54.0117 6748 [ 8128233611A1FF81110CE6C52E8D2F87 ] C:\Windows\System32\hkcmd.exe
20:12:54.0117 6748 C:\Windows\System32\hkcmd.exe - ok
20:12:54.0133 6748 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
20:12:54.0133 6748 C:\Windows\System32\mfc42u.dll - ok
20:12:54.0133 6748 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
20:12:54.0133 6748 C:\Windows\System32\consent.exe - ok
20:12:54.0148 6748 [ 1754D88D7558384DECC1395EE2C604EA ] C:\Windows\System32\igfxpers.exe
20:12:54.0148 6748 C:\Windows\System32\igfxpers.exe - ok
20:12:54.0148 6748 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
20:12:54.0148 6748 C:\Windows\System32\odbc32.dll - ok
20:12:54.0164 6748 [ 1F83CB91A9830038DBE7CD1BA1921205 ] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
20:12:54.0164 6748 C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE - ok
20:12:54.0164 6748 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
20:12:54.0164 6748 C:\Windows\System32\wdmaud.drv - ok
20:12:54.0180 6748 [ EA360CA8F2E24D5AAF90C925DAAFA60B ] C:\Program Files\IDT\WDM\stlang64.dll
20:12:54.0180 6748 C:\Program Files\IDT\WDM\stlang64.dll - ok
20:12:54.0180 6748 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
20:12:54.0180 6748 C:\Windows\System32\ksuser.dll - ok
20:12:54.0195 6748 [ B60457F40BBF5EAE380FC110B21C4978 ] C:\Program Files\Dell\QuickSet\quickset.exe
20:12:54.0195 6748 C:\Program Files\Dell\QuickSet\quickset.exe - ok
20:12:54.0195 6748 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
20:12:54.0195 6748 C:\Windows\System32\odbcint.dll - ok
20:12:54.0211 6748 [ 47A90CC060DD0CAC01D0B9442FB1AFA4 ] C:\Program Files (x86)\Electronic Arts\EADM\Core.exe
20:12:54.0211 6748 C:\Program Files (x86)\Electronic Arts\EADM\Core.exe - ok
20:12:54.0211 6748 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
20:12:54.0211 6748 C:\Windows\System32\oledlg.dll - ok
20:12:54.0211 6748 [ AECF29A21FD0B8488AE41466FDC7E3D9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\IAAMon_JPN.dll
20:12:54.0211 6748 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\IAAMon_JPN.dll - ok
20:12:54.0226 6748 [ 59FE95F7FEDE6D69C007E2CD05356F07 ] C:\Program Files (x86)\uTorrent\uTorrent.exe
20:12:54.0226 6748 C:\Program Files (x86)\uTorrent\uTorrent.exe - ok
20:12:54.0226 6748 [ 609B1EC328B30D5DE438DCCE0732649C ] C:\Program Files\Dell\DellDock\DellDock.exe
20:12:54.0226 6748 C:\Program Files\Dell\DellDock\DellDock.exe - ok
20:12:54.0242 6748 [ DC86785C996F78B0893C7CB52263E59A ] C:\Windows\System32\igfxsrvc.exe
20:12:54.0242 6748 C:\Windows\System32\igfxsrvc.exe - ok
20:12:54.0242 6748 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
20:12:54.0242 6748 C:\Windows\System32\msacm32.dll - ok
20:12:54.0258 6748 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
20:12:54.0258 6748 C:\Windows\System32\msacm32.drv - ok
20:12:54.0258 6748 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
20:12:54.0258 6748 C:\Windows\System32\midimap.dll - ok
20:12:54.0273 6748 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
20:12:54.0273 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
20:12:54.0273 6748 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
20:12:54.0273 6748 C:\Windows\System32\riched20.dll - ok
20:12:54.0289 6748 [ 3181F76ED237CC3D50D10CEA05AF8B60 ] C:\Windows\System32\riched32.dll
20:12:54.0289 6748 C:\Windows\System32\riched32.dll - ok
20:12:54.0289 6748 [ 6EF85B446F2CBFF39638FC5EFFA164FE ] C:\Windows\System32\igfxsrvc.dll
20:12:54.0289 6748 C:\Windows\System32\igfxsrvc.dll - ok
20:12:54.0304 6748 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
20:12:54.0304 6748 C:\Windows\SysWOW64\FirewallAPI.dll - ok
20:12:54.0304 6748 [ 51DFD047512A99313536444A07776B3E ] C:\Windows\System32\igfxdev.dll
20:12:54.0304 6748 C:\Windows\System32\igfxdev.dll - ok
20:12:54.0320 6748 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
20:12:54.0320 6748 C:\Windows\System32\AUDIOKSE.dll - ok
20:12:54.0320 6748 [ 452FA961163EF4AEE4815796A13AB2CF ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
20:12:54.0320 6748 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
20:12:54.0336 6748 [ 89572044C6DF2FF29E95A032F3F32DC3 ] C:\Program Files (x86)\AVG\AVG2012\avgxpla.dll
20:12:54.0336 6748 C:\Program Files (x86)\AVG\AVG2012\avgxpla.dll - ok
20:12:54.0336 6748 [ 23D174FF132D91342161C14935AB49F6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\7e13e518e889a09f3936dbd5b02cb804\MyDock.Util.ni.dll
20:12:54.0351 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\7e13e518e889a09f3936dbd5b02cb804\MyDock.Util.ni.dll - ok
20:12:54.0351 6748 [ E977A3AF3D7B55C2E88D6489D7AFD467 ] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
20:12:54.0351 6748 C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe - ok
20:12:54.0367 6748 [ 70409D049CCB0D3997D83DED7639B5F6 ] C:\Windows\System32\igfxrjpn.lrc
20:12:54.0367 6748 C:\Windows\System32\igfxrjpn.lrc - ok
20:12:54.0367 6748 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
20:12:54.0367 6748 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
20:12:54.0367 6748 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
20:12:54.0367 6748 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
20:12:54.0382 6748 [ 76BF13E24442B4A3314379ABEAD51C99 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
20:12:54.0382 6748 C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe - ok
20:12:54.0398 6748 [ 00D1FB0073B4A8BD2989EA8FF4CC792B ] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
20:12:54.0398 6748 C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe - ok
20:12:54.0398 6748 [ E5CEAE03ADBE620AB405FC609B6C978D ] C:\Program Files (x86)\D-Link\DWA-125 revA\AirGCFG.exe
20:12:54.0398 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\AirGCFG.exe - ok
20:12:54.0414 6748 [ 62427A3A76CDAAED50C699FA94BE3DCA ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\95f38e7485bbe2b73b6055c45196fedd\System.Web.ni.dll
20:12:54.0414 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\95f38e7485bbe2b73b6055c45196fedd\System.Web.ni.dll - ok
20:12:54.0414 6748 [ C0E0151199EC1BE8007438308616BC06 ] C:\Program Files (x86)\D-Link\DWA-125 revA\WZCSLDR2.exe
20:12:54.0414 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\WZCSLDR2.exe - ok
20:12:54.0429 6748 [ 6F83C67F5339C2235996174BFB05041E ] C:\Program Files (x86)\AVG\AVG2012\avgopenssla.dll
20:12:54.0429 6748 C:\Program Files (x86)\AVG\AVG2012\avgopenssla.dll - ok
20:12:54.0429 6748 [ 94D073AEE740D222A458D812BC5B4633 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\a1366a89083e8d46625256eaf8249db7\DellDock.ni.exe
20:12:54.0429 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\a1366a89083e8d46625256eaf8249db7\DellDock.ni.exe - ok
20:12:54.0445 6748 [ 2EEEF8544DCAFE322301B68AA7F1D989 ] C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll
20:12:54.0445 6748 C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll - ok
20:12:54.0445 6748 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
20:12:54.0445 6748 C:\Windows\SysWOW64\olepro32.dll - ok
20:12:54.0460 6748 [ 1D3B430DF78A7A6CD846724069727BF5 ] C:\Program Files (x86)\Ask.com\Updater\Updater.exe
20:12:54.0460 6748 C:\Program Files (x86)\Ask.com\Updater\Updater.exe - ok
20:12:54.0460 6748 [ 11456E7C78A6C3D43E5D81CE8A899FA6 ] C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll
20:12:54.0460 6748 C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll - ok
20:12:54.0476 6748 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
20:12:54.0476 6748 C:\Windows\SysWOW64\ddraw.dll - ok
20:12:54.0476 6748 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
20:12:54.0476 6748 C:\Windows\SysWOW64\dciman32.dll - ok
20:12:54.0492 6748 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll
20:12:54.0492 6748 C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll - ok
20:12:54.0492 6748 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll
20:12:54.0492 6748 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll - ok
20:12:54.0507 6748 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll
20:12:54.0507 6748 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll - ok
20:12:54.0507 6748 [ AF9B7F55AAB8229241E29FB82177DB30 ] C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll
20:12:54.0507 6748 C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll - ok
20:12:54.0523 6748 [ 9A95D747564222F9DEAA57A09CB6714F ] C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll
20:12:54.0523 6748 C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll - ok
20:12:54.0523 6748 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll
20:12:54.0523 6748 C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll - ok
20:12:54.0538 6748 [ 0CE025436A9B94D28EEA7EC45BDD67B6 ] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
20:12:54.0538 6748 C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe - ok
20:12:54.0538 6748 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\SysWOW64\hnetcfg.dll
20:12:54.0538 6748 C:\Windows\SysWOW64\hnetcfg.dll - ok
20:12:54.0554 6748 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
20:12:54.0554 6748 C:\Windows\SysWOW64\atl.dll - ok
20:12:54.0554 6748 [ A395ABC175604A4F863A0ECF9EE794CA ] C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll
20:12:54.0554 6748 C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll - ok
20:12:54.0570 6748 [ 69FB42190910053E11BCDC7F8BE2F22A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\7518ad68644aee4bb2b17ed2b9f0ed39\VistaBridgeLibrary.ni.dll
20:12:54.0570 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\7518ad68644aee4bb2b17ed2b9f0ed39\VistaBridgeLibrary.ni.dll - ok
20:12:54.0570 6748 [ 6E3245DF783E58375B3465F03274743E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
20:12:54.0570 6748 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
20:12:54.0585 6748 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll
20:12:54.0585 6748 C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll - ok
20:12:54.0585 6748 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
20:12:54.0585 6748 C:\Windows\SysWOW64\netapi32.dll - ok
20:12:54.0601 6748 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
20:12:54.0601 6748 C:\Windows\SysWOW64\wkscli.dll - ok
20:12:54.0601 6748 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
20:12:54.0601 6748 C:\Windows\SysWOW64\shfolder.dll - ok
20:12:54.0616 6748 [ CB0D3F29404A1F18BEB69145A9F990DD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\601d53bc955e420890464c6ac28b129e\MenuSkinning.ni.dll
20:12:54.0616 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\601d53bc955e420890464c6ac28b129e\MenuSkinning.ni.dll - ok
20:12:54.0616 6748 [ A151EF45E062C71B0CA34054C40BC6E4 ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll
20:12:54.0616 6748 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll - ok
20:12:54.0632 6748 [ 60F58070E56145B8B2CCB264D5E53136 ] C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll
20:12:54.0632 6748 C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll - ok
20:12:54.0632 6748 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
20:12:54.0632 6748 C:\Windows\System32\wbem\wmiprov.dll - ok
20:12:54.0648 6748 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
20:12:54.0648 6748 C:\Windows\SysWOW64\nlaapi.dll - ok
20:12:54.0648 6748 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
20:12:54.0648 6748 C:\Windows\SysWOW64\NapiNSP.dll - ok
20:12:54.0663 6748 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
20:12:54.0663 6748 C:\Windows\SysWOW64\pnrpnsp.dll - ok
20:12:54.0663 6748 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
20:12:54.0663 6748 C:\Windows\System32\stobject.dll - ok
20:12:54.0679 6748 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
20:12:54.0679 6748 C:\Windows\SysWOW64\winrnr.dll - ok
20:12:54.0679 6748 [ 9D6C8CE611C3F093B901A148C1921DF1 ] C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll
20:12:54.0679 6748 C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll - ok
20:12:54.0694 6748 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
20:12:54.0694 6748 C:\Windows\System32\batmeter.dll - ok
20:12:54.0694 6748 [ 1F3FF6C062B311FE410EC89F6BFAC213 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
20:12:54.0694 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
20:12:54.0710 6748 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
20:12:54.0710 6748 C:\Windows\SysWOW64\npmproxy.dll - ok
20:12:54.0710 6748 [ 68CE18072E9CDFE63DD2E083868C7433 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
20:12:54.0710 6748 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
20:12:54.0726 6748 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
20:12:54.0726 6748 C:\Windows\System32\UIAnimation.dll - ok
20:12:54.0726 6748 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
20:12:54.0726 6748 C:\Windows\System32\bitsperf.dll - ok
20:12:54.0741 6748 [ 6B8A2ED3775D50F838BEB49CA24F9089 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll
20:12:54.0741 6748 C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll - ok
20:12:54.0741 6748 [ AF43C4F7F3C8BC95DAD95024F96CDC4A ] C:\Program Files (x86)\QuickTime\QTTask.exe
20:12:54.0741 6748 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
20:12:54.0741 6748 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
20:12:54.0757 6748 C:\Windows\System32\bitsigd.dll - ok
20:12:54.0757 6748 [ 98947A11E0EB117C8E503DE3EBD3955D ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll
20:12:54.0757 6748 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll - ok
20:12:54.0772 6748 [ EEA46BF5D63A96B21E24FD0EFE4CAD56 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
20:12:54.0772 6748 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
20:12:54.0772 6748 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
20:12:54.0772 6748 C:\Windows\System32\upnp.dll - ok
20:12:54.0788 6748 [ C319B4F7C2941229814A73F32E3CF71D ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
20:12:54.0788 6748 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
20:12:54.0788 6748 [ EE8E76761A4AEE5685D92A770A3B4B1F ] C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe
20:12:54.0788 6748 C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe - ok
20:12:54.0805 6748 [ 8EE7DC9A6CC9AB5DEE2346F5972A4F0C ] C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll
20:12:54.0805 6748 C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll - ok
20:12:54.0805 6748 [ 9D9B61AF3DBDC1490CBC508C8380510B ] C:\Program Files\DellTPad\ApntEx.exe
20:12:54.0805 6748 C:\Program Files\DellTPad\ApntEx.exe - ok
20:12:54.0820 6748 [ D7FCD621FC17B4EDD453D0F5C22A7DA6 ] C:\Program Files\DellTPad\hidfind.exe
20:12:54.0820 6748 C:\Program Files\DellTPad\hidfind.exe - ok
20:12:54.0820 6748 [ DCFF4DC6B6AAFFD5206786BB1D938974 ] C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll
20:12:54.0820 6748 C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll - ok
20:12:54.0836 6748 [ A0A42BB19E085F4B3367F5057307C194 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
20:12:54.0836 6748 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
20:12:54.0836 6748 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
20:12:54.0836 6748 C:\Windows\SysWOW64\Nlsdl.dll - ok
20:12:54.0851 6748 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
20:12:54.0851 6748 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
20:12:54.0851 6748 [ D37F42709D6ECC7642EEC8843A676A7B ] C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll
20:12:54.0851 6748 C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll - ok
20:12:54.0867 6748 [ 4F8DD1CEA5412541283F1E9EE02F7AB2 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
20:12:54.0867 6748 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok
20:12:54.0867 6748 [ 3CCE7C726B88918915A1EF712B9D5F58 ] C:\Windows\AppPatch\AcXtrnal.dll
20:12:54.0867 6748 C:\Windows\AppPatch\AcXtrnal.dll - ok
20:12:54.0883 6748 [ 0A8E209F3C1D1FB6889465D1019CC5BF ] C:\Windows\SysWOW64\shunimpl.dll
20:12:54.0883 6748 C:\Windows\SysWOW64\shunimpl.dll - ok
20:12:54.0883 6748 [ 8C0854D2BBAE8E1B5F447B94CDD878F1 ] C:\Windows\SysWOW64\SortWindows6Compat.dll
20:12:54.0883 6748 C:\Windows\SysWOW64\SortWindows6Compat.dll - ok
20:12:54.0898 6748 [ 444EB38A256BE60F2013488C49D2AB3F ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
20:12:54.0898 6748 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
20:12:54.0898 6748 [ 040CAD6E6600BCEF7A91AE9885C4158F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll
20:12:54.0898 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll - ok
20:12:54.0914 6748 [ 504FF43F962DAB2B9D892C3FAF734C24 ] C:\Program Files (x86)\AVG Secure Search\vprot.exe
20:12:54.0914 6748 C:\Program Files (x86)\AVG Secure Search\vprot.exe - ok
20:12:54.0914 6748 [ BBF53397690BA8931C21352D246C744C ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
20:12:54.0914 6748 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
20:12:54.0929 6748 [ CA4674BAEB26BAEE4E54AE588C2C74FB ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
20:12:54.0929 6748 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
20:12:54.0929 6748 [ F70AF9EB44CC52C2DA23BA23A69AE977 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
20:12:54.0929 6748 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
20:12:54.0945 6748 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
20:12:54.0945 6748 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
20:12:54.0945 6748 [ 80956486306D1F546EDC1DD7FAE87F62 ] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
20:12:54.0945 6748 C:\Program Files (x86)\AVG\AVG2012\avgtray.exe - ok
20:12:54.0961 6748 [ 86E3E5C69AF0354B9CC0ED86D1D17F11 ] C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe
20:12:54.0961 6748 C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe - ok
20:12:54.0961 6748 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\SysWOW64\shsvcs.dll
20:12:54.0961 6748 C:\Windows\SysWOW64\shsvcs.dll - ok
20:12:54.0976 6748 [ 84DB35F319E5B67838A4877C11748866 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
20:12:54.0976 6748 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
20:12:54.0976 6748 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
20:12:54.0976 6748 C:\Windows\System32\prnfldr.dll - ok
20:12:54.0992 6748 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
20:12:54.0992 6748 C:\Windows\SysWOW64\schannel.dll - ok
20:12:54.0992 6748 [ E2F074A4601B704F9CA22AD18E7476BE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\761fd1afc17f11bf6d49c3a7d16465ca\System.Web.Services.ni.dll
20:12:54.0992 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\761fd1afc17f11bf6d49c3a7d16465ca\System.Web.Services.ni.dll - ok
20:12:55.0007 6748 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
20:12:55.0007 6748 C:\Windows\SysWOW64\IconCodecService.dll - ok
20:12:55.0023 6748 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
20:12:55.0023 6748 C:\Windows\System32\qmgrprxy.dll - ok
20:12:55.0023 6748 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
20:12:55.0023 6748 C:\Windows\System32\browcli.dll - ok
20:12:55.0039 6748 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
20:12:55.0039 6748 C:\Windows\System32\DXP.dll - ok
20:12:55.0039 6748 [ 31CCC031D386BE734C1502766491050A ] C:\Program Files\Dell\QuickSet\dadkeyb.dll
20:12:55.0039 6748 C:\Program Files\Dell\QuickSet\dadkeyb.dll - ok
20:12:55.0054 6748 [ 1E8D1091011E1C51B44A94DE5EE89A6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll
20:12:55.0054 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll - ok
20:12:55.0054 6748 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
20:12:55.0054 6748 C:\Windows\System32\schedcli.dll - ok
20:12:55.0070 6748 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
20:12:55.0070 6748 C:\Windows\SysWOW64\qmgrprxy.dll - ok
20:12:55.0070 6748 [ 47DA3FE039FCF056B0D0768B99953E34 ] C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe
20:12:55.0070 6748 C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe - ok
20:12:55.0085 6748 [ 06A4250C9E3606CAE3F68DA45702F342 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
20:12:55.0085 6748 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
20:12:55.0085 6748 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
20:12:55.0085 6748 C:\Windows\System32\ActionCenter.dll - ok
20:12:55.0101 6748 [ FB665485B6C8EE16FED0619ADFF8B27A ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
20:12:55.0101 6748 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
20:12:55.0101 6748 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\22318215.sys
20:12:55.0101 6748 C:\Windows\System32\drivers\22318215.sys - ok
20:12:55.0117 6748 [ 24744F14E76174927AA2BD4600709192 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
20:12:55.0117 6748 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
20:12:55.0117 6748 [ 1223ACBFC1093852DFF039E189599BBD ] C:\Program Files\Internet Explorer\iexplore.exe
20:12:55.0117 6748 C:\Program Files\Internet Explorer\iexplore.exe - ok
20:12:55.0132 6748 [ 50F12457A12A2B98A36F6D5F46AD8474 ] C:\Program Files (x86)\Roxio\Roxio Burn\BBEngineAS.dll
20:12:55.0132 6748 C:\Program Files (x86)\Roxio\Roxio Burn\BBEngineAS.dll - ok
20:12:55.0132 6748 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
20:12:55.0132 6748 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
20:12:55.0148 6748 [ 3F2B8FB2306857805BB5550FEC0F821A ] C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll
20:12:55.0148 6748 C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll - ok
20:12:55.0148 6748 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
20:12:55.0148 6748 C:\Windows\System32\FXSST.dll - ok
20:12:55.0163 6748 [ 46D249F9DB7844CC01050A9345F0F61B ] C:\Program Files\iPod\bin\iPodService.exe
20:12:55.0163 6748 C:\Program Files\iPod\bin\iPodService.exe - ok
20:12:55.0163 6748 [ 5ACBDA6136C110E0615671F4A7ECB03B ] C:\Program Files (x86)\Dell DataSafe Online\OlbEng.dll
20:12:55.0163 6748 C:\Program Files (x86)\Dell DataSafe Online\OlbEng.dll - ok
20:12:55.0179 6748 [ 4B19ACFF33546A66B50FED8BFAF4E66A ] C:\Program Files (x86)\Roxio\Roxio Burn\AS_Archive.dll
20:12:55.0179 6748 C:\Program Files (x86)\Roxio\Roxio Burn\AS_Archive.dll - ok
20:12:55.0179 6748 [ 0EDFDC3E969526203CF0F19226216F5E ] C:\Program Files (x86)\Dell DataSafe Online\BuEng.dll
20:12:55.0179 6748 C:\Program Files (x86)\Dell DataSafe Online\BuEng.dll - ok
20:12:55.0195 6748 [ E5F76893259D174DF51DC36B2EE391D9 ] C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCS2.dll
20:12:55.0195 6748 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCS2.dll - ok
20:12:55.0195 6748 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
20:12:55.0195 6748 C:\Windows\System32\shfolder.dll - ok
20:12:55.0210 6748 [ 283F2D882933976B565C1570C21D8298 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
20:12:55.0210 6748 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
20:12:55.0210 6748 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
20:12:55.0210 6748 C:\Windows\System32\wbem\NCProv.dll - ok
20:12:55.0226 6748 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
20:12:55.0226 6748 C:\Windows\System32\FXSAPI.dll - ok
20:12:55.0226 6748 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
20:12:55.0226 6748 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
20:12:55.0241 6748 [ 857F78A80A36BF9BE8B10D85E49CE2C4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll
20:12:55.0241 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll - ok
20:12:55.0241 6748 [ BCFC9D912735B7A69E63CD5F4440EB93 ] C:\Program Files\iPod\bin\iPodService.Resources\ja.lproj\iPodServiceLocalized.dll
20:12:55.0241 6748 C:\Program Files\iPod\bin\iPodService.Resources\ja.lproj\iPodServiceLocalized.dll - ok
20:12:55.0257 6748 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Roxio\Roxio Burn\msvcr71.dll
20:12:55.0257 6748 C:\Program Files (x86)\Roxio\Roxio Burn\msvcr71.dll - ok
20:12:55.0257 6748 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
20:12:55.0257 6748 C:\Windows\System32\Syncreg.dll - ok
20:12:55.0273 6748 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
20:12:55.0273 6748 C:\Windows\ehome\ehSSO.dll - ok
20:12:55.0273 6748 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
20:12:55.0273 6748 C:\Windows\SysWOW64\msvfw32.dll - ok
20:12:55.0288 6748 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
20:12:55.0288 6748 C:\Windows\System32\FXSSVC.exe - ok
20:12:55.0288 6748 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
20:12:55.0288 6748 C:\Windows\SysWOW64\rasapi32.dll - ok
20:12:55.0304 6748 [ 37C813CF6B4E892E2CDA6FEF3B871AFC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll
20:12:55.0304 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll - ok
20:12:55.0304 6748 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files (x86)\Roxio\Roxio Burn\msvcp71.dll
20:12:55.0304 6748 C:\Program Files (x86)\Roxio\Roxio Burn\msvcp71.dll - ok
20:12:55.0319 6748 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
20:12:55.0319 6748 C:\Windows\SysWOW64\rasman.dll - ok
20:12:55.0319 6748 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
20:12:55.0319 6748 C:\Windows\SysWOW64\duser.dll - ok
20:12:55.0335 6748 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
20:12:55.0335 6748 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
20:12:55.0335 6748 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
20:12:55.0335 6748 C:\Windows\System32\netshell.dll - ok
20:12:55.0351 6748 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
20:12:55.0351 6748 C:\Windows\SysWOW64\rtutils.dll - ok
20:12:55.0351 6748 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
20:12:55.0351 6748 C:\Windows\SysWOW64\dui70.dll - ok
20:12:55.0366 6748 [ 1793DAD1A4D24077A98BE23A63D107B1 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig.dll
20:12:55.0366 6748 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig.dll - ok
20:12:55.0366 6748 [ 8B9D6D070113CFD8E20793768AFA26FC ] C:\Program Files (x86)\AVG\AVG2012\avglngx.dll
20:12:55.0366 6748 C:\Program Files (x86)\AVG\AVG2012\avglngx.dll - ok
20:12:55.0382 6748 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
20:12:55.0382 6748 C:\Windows\SysWOW64\security.dll - ok
20:12:55.0382 6748 [ B53709A2AF8E6102071AE8E9FE4B3F7E ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll
20:12:55.0382 6748 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
20:12:55.0397 6748 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
20:12:55.0397 6748 C:\Windows\SysWOW64\snmpapi.dll - ok
20:12:55.0397 6748 [ 7D288BBD272627540562B150C7A78577 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
20:12:55.0397 6748 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll - ok
20:12:55.0413 6748 [ 93214A09BF2DD8A86C94833476FF8110 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll
20:12:55.0413 6748 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
20:12:55.0429 6748 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
20:12:55.0429 6748 C:\Windows\System32\WPDShServiceObj.dll - ok
20:12:55.0429 6748 [ CFE8A3C5B38663F5E9F8BD742CB7624D ] C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
20:12:55.0429 6748 C:\Program Files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll - ok
20:12:55.0444 6748 [ 762F429A7AA839F648BE232587751F57 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12.dll
20:12:55.0444 6748 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12.dll - ok
20:12:55.0444 6748 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
20:12:55.0444 6748 C:\Windows\System32\PortableDeviceTypes.dll - ok
20:12:55.0460 6748 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
20:12:55.0460 6748 C:\Windows\System32\AltTab.dll - ok
20:12:55.0460 6748 [ E4993A704ACA876FC68E3FE2EF858E1E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9b2f17fb61b7197f2a04108f5d1a1cc6\System.Management.ni.dll
20:12:55.0460 6748 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\9b2f17fb61b7197f2a04108f5d1a1cc6\System.Management.ni.dll - ok
20:12:55.0475 6748 [ A4DD4588000F72642822AACDDD7DDA46 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12.dll
20:12:55.0475 6748 C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12.dll - ok
20:12:55.0475 6748 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
20:12:55.0475 6748 C:\Windows\System32\srchadmin.dll - ok
20:12:55.0491 6748 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
20:12:55.0491 6748 C:\Windows\System32\pnidui.dll - ok
20:12:55.0491 6748 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
20:12:55.0491 6748 C:\Windows\System32\tquery.dll - ok
20:12:55.0507 6748 [ 59976670B8E8402EDCE18896A02145BB ] C:\Program Files (x86)\AVG\AVG2012\avgabout.dll
20:12:55.0507 6748 C:\Program Files (x86)\AVG\AVG2012\avgabout.dll - ok
20:12:55.0507 6748 [ 807B6562009E5858C93E1C0F435C0382 ] C:\Windows\SysWOW64\netbios.dll
20:12:55.0507 6748 C:\Windows\SysWOW64\netbios.dll - ok
20:12:55.0522 6748 [ 972DCC74D4CDCB64086E7CFACBDB74CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
20:12:55.0522 6748 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
20:12:55.0522 6748 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
20:12:55.0522 6748 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
20:12:55.0538 6748 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
20:12:55.0538 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
20:12:55.0538 6748 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
20:12:55.0538 6748 C:\Windows\System32\mssrch.dll - ok
20:12:55.0538 6748 [ BD75759509FCD3488CEB39197F552575 ] C:\Program Files (x86)\Dell DataSafe Online\CppUtils.dll
20:12:55.0553 6748 C:\Program Files (x86)\Dell DataSafe Online\CppUtils.dll - ok
20:12:55.0553 6748 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
20:12:55.0553 6748 C:\Windows\System32\QUTIL.DLL - ok
20:12:55.0553 6748 [ A054D2CD9FB1DC4E5904E3B88B55B2E2 ] C:\Program Files (x86)\AVG\AVG2012\avguires.dll
20:12:55.0553 6748 C:\Program Files (x86)\AVG\AVG2012\avguires.dll - ok
20:12:55.0569 6748 [ CDCB65B20F6A36B77F1C016C2523AC75 ] C:\Program Files\Dell\DellDock\MyDockLib.dll
20:12:55.0569 6748 C:\Program Files\Dell\DellDock\MyDockLib.dll - ok
20:12:55.0569 6748 [ F4F69652E9EC8E4ED6A082DB865D5375 ] C:\Program Files (x86)\Dell DataSafe Online\DataSafeUpdater.exe
20:12:55.0569 6748 C:\Program Files (x86)\Dell DataSafe Online\DataSafeUpdater.exe - ok
20:12:55.0585 6748 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
20:12:55.0585 6748 C:\Windows\System32\bthprops.cpl - ok
20:12:55.0600 6748 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
20:12:55.0600 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
20:12:55.0600 6748 [ 9C6F3CC6A3BB310D70026AF1B4561F65 ] C:\Windows\System32\ieframe.dll
20:12:55.0600 6748 C:\Windows\System32\ieframe.dll - ok
20:12:55.0600 6748 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
20:12:55.0600 6748 C:\Windows\SysWOW64\netprofm.dll - ok
20:12:55.0616 6748 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
20:12:55.0616 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
20:12:55.0616 6748 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
20:12:55.0616 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
20:12:55.0631 6748 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
20:12:55.0631 6748 C:\Windows\System32\msidle.dll - ok
20:12:55.0631 6748 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
20:12:55.0631 6748 C:\Windows\System32\mssprxy.dll - ok
20:12:55.0647 6748 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
20:12:55.0647 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
20:12:55.0647 6748 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
20:12:55.0647 6748 C:\Windows\System32\en-US\tquery.dll.mui - ok
20:12:55.0663 6748 [ 55E9701FB155B4C77358749A5AC83ECE ] C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\SiteSafety.dll
20:12:55.0663 6748 C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\SiteSafety.dll - ok
20:12:55.0678 6748 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
20:12:55.0678 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
20:12:55.0678 6748 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
20:12:55.0678 6748 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
20:12:55.0694 6748 [ 5E8E869E1342308752A37A2C90CCA79D ] C:\Windows\SysWOW64\mshtml.dll
20:12:55.0694 6748 C:\Windows\SysWOW64\mshtml.dll - ok
20:12:55.0694 6748 [ B2E9DB5E5F4091FCDA0C9249C1E3F974 ] C:\Program Files (x86)\AVG\AVG2012\avgidpmx.dll
20:12:55.0694 6748 C:\Program Files (x86)\AVG\AVG2012\avgidpmx.dll - ok
20:12:55.0709 6748 [ 4E7C3166C3F414CA1E4CCA96168B68AB ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe
20:12:55.0709 6748 C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\pptico.exe - ok
20:12:55.0709 6748 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
20:12:55.0709 6748 C:\Windows\System32\rasdlg.dll - ok
20:12:55.0725 6748 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
20:12:55.0725 6748 C:\Windows\System32\notepad.exe - ok
20:12:55.0725 6748 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
20:12:55.0725 6748 C:\Windows\System32\dot3api.dll - ok
20:12:55.0741 6748 [ F1743334CC24448AFA725ED063DCE61B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\ae9311dcb0e713330a2a86b04cf361dc\Accessibility.ni.dll
20:12:55.0741 6748 C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\ae9311dcb0e713330a2a86b04cf361dc\Accessibility.ni.dll - ok
20:12:55.0741 6748 [ 458F4590F80563EB2A0A72709BFC2BD9 ] C:\Windows\System32\mspaint.exe
20:12:55.0741 6748 C:\Windows\System32\mspaint.exe - ok
20:12:55.0756 6748 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
20:12:55.0756 6748 C:\Windows\System32\wlanhlp.dll - ok
20:12:55.0756 6748 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
20:12:55.0756 6748 C:\Windows\System32\httpapi.dll - ok
20:12:55.0772 6748 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
20:12:55.0772 6748 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
20:12:55.0772 6748 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
20:12:55.0772 6748 C:\Windows\System32\WWanAPI.dll - ok
20:12:55.0787 6748 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
20:12:55.0787 6748 C:\Windows\System32\wwapi.dll - ok
20:12:55.0787 6748 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
20:12:55.0787 6748 C:\Windows\System32\QAGENT.DLL - ok
20:12:55.0787 6748 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
20:12:55.0787 6748 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
20:12:55.0803 6748 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
20:12:55.0803 6748 C:\Windows\SysWOW64\mlang.dll - ok
20:12:55.0803 6748 [ 03A22FECEC25A0FA4E7DBACCE3742856 ] C:\Windows\Installer\{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}\iTunesIco.exe
20:12:55.0803 6748 C:\Windows\Installer\{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}\iTunesIco.exe - ok
20:12:55.0820 6748 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
20:12:55.0820 6748 C:\Windows\System32\webcheck.dll - ok
20:12:55.0820 6748 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
20:12:55.0820 6748 C:\Windows\System32\mlang.dll - ok
20:12:55.0835 6748 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
20:12:55.0835 6748 C:\Windows\System32\SyncCenter.dll - ok
20:12:55.0835 6748 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
20:12:55.0835 6748 C:\Windows\System32\wmdrmdev.dll - ok
20:12:55.0851 6748 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
20:12:55.0851 6748 C:\Windows\System32\drmv2clt.dll - ok
20:12:55.0851 6748 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
20:12:55.0851 6748 C:\Windows\System32\imapi2.dll - ok
20:12:55.0866 6748 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
20:12:55.0866 6748 C:\Windows\SysWOW64\msimtf.dll - ok
20:12:55.0866 6748 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
20:12:55.0866 6748 C:\Windows\SysWOW64\msls31.dll - ok
20:12:55.0882 6748 [ 9F179DA6BF972F2B8B7F90978D02D719 ] C:\Windows\SysWOW64\jscript9.dll
20:12:55.0882 6748 C:\Windows\SysWOW64\jscript9.dll - ok
20:12:55.0882 6748 [ 626FB78FD5ABF49B297A064D1B0D2118 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
20:12:55.0882 6748 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
20:12:55.0898 6748 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
20:12:55.0898 6748 C:\Windows\SysWOW64\d2d1.dll - ok
20:12:55.0898 6748 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
20:12:55.0898 6748 C:\Windows\SysWOW64\DWrite.dll - ok
20:12:55.0913 6748 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
20:12:55.0913 6748 C:\Windows\System32\hgcpl.dll - ok
20:12:55.0913 6748 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
20:12:55.0929 6748 C:\Windows\System32\fdWSD.dll - ok
20:12:55.0929 6748 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
20:12:55.0929 6748 C:\Windows\System32\fdSSDP.dll - ok
20:12:55.0929 6748 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
20:12:55.0929 6748 C:\Windows\System32\wmp.dll - ok
20:12:55.0944 6748 [ 01073F2BA36792C9BFD1BD622A6247B3 ] C:\Windows\System32\wpccpl.dll
20:12:55.0944 6748 C:\Windows\System32\wpccpl.dll - ok
20:12:55.0944 6748 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
20:12:55.0944 6748 C:\Windows\SysWOW64\dxgi.dll - ok
20:12:55.0960 6748 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
20:12:55.0960 6748 C:\Windows\System32\fdProxy.dll - ok
20:12:55.0960 6748 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
20:12:55.0960 6748 C:\Windows\SysWOW64\d3d10_1.dll - ok
20:12:55.0976 6748 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
20:12:55.0976 6748 C:\Windows\SysWOW64\d3d10_1core.dll - ok
20:12:55.0976 6748 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
20:12:55.0976 6748 C:\Windows\System32\P2P.dll - ok
20:12:55.0991 6748 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
20:12:55.0991 6748 C:\Windows\SysWOW64\d3d10warp.dll - ok
20:12:55.0991 6748 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
20:12:55.0991 6748 C:\Windows\System32\p2pcollab.dll - ok
20:12:56.0007 6748 [ 65AB1A3B45B933697F74B53116B46523 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
20:12:56.0007 6748 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
20:12:56.0022 6748 [ 270CBAA170C7905CBA1EA6E94788D44B ] C:\Program Files\Internet Explorer\ieproxy.dll
20:12:56.0022 6748 C:\Program Files\Internet Explorer\ieproxy.dll - ok
20:12:56.0022 6748 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
20:12:56.0022 6748 C:\Windows\System32\fveui.dll - ok
20:12:56.0038 6748 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
20:12:56.0038 6748 C:\Windows\System32\P2PGraph.dll - ok
20:12:56.0038 6748 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
20:12:56.0038 6748 C:\Windows\System32\wmpps.dll - ok
20:12:56.0038 6748 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
20:12:56.0038 6748 C:\Windows\System32\wmpmde.dll - ok
20:12:56.0054 6748 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
20:12:56.0054 6748 C:\Windows\System32\WinSATAPI.dll - ok
20:12:56.0054 6748 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
20:12:56.0054 6748 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
20:12:56.0069 6748 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
20:12:56.0069 6748 C:\Windows\System32\MSMPEG2ENC.DLL - ok
20:12:56.0069 6748 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
20:12:56.0069 6748 C:\Windows\System32\devenum.dll - ok
20:12:56.0085 6748 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
20:12:56.0085 6748 C:\Windows\System32\msdmo.dll - ok
20:12:56.0085 6748 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
20:12:56.0085 6748 C:\Windows\System32\udhisapi.dll - ok
20:12:56.0100 6748 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
20:12:56.0100 6748 C:\Windows\System32\IdListen.dll - ok
20:12:56.0100 6748 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
20:12:56.0100 6748 C:\Windows\System32\hgprint.dll - ok
20:12:56.0116 6748 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
20:12:56.0116 6748 C:\Windows\System32\PhotoMetadataHandler.dll - ok
20:12:56.0116 6748 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
20:12:56.0116 6748 C:\Windows\System32\WindowsCodecsExt.dll - ok
20:12:56.0132 6748 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
20:12:56.0132 6748 C:\Windows\System32\icm32.dll - ok
20:12:56.0132 6748 ============================================================
20:12:56.0132 6748 Scan finished
20:12:56.0132 6748 ============================================================
20:12:56.0147 6740 Detected object count: 4
20:12:56.0147 6740 Actual detected object count: 4
20:15:17.0816 6740 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:17.0816 6740 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:17.0816 6740 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:17.0832 6740 D_Link_DWA-125 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:17.0832 6740 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:17.0832 6740 D_Link_DWA-125_WPS ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:17.0832 6740 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:15:17.0832 6740 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:15:31.0373 3640 Deinitialize success

#14 guardian4600

guardian4600
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 06 September 2012 - 08:37 PM

ComboFix Log:
ComboFix 12-09-06.02 - Melissa 6/2012 Thu 20:18:44.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.932.81.1033.18.4056.2475 [GMT -5:00]
Running from: c:\users\Melissa\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\windows\apppatch\AppLoc.exe
c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb
c:\windows\SysWow64\FlashPlayerInstaller.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-08-07 to 2012-09-07 )))))))))))))))))))))))))))))))
.
.
2012-09-07 01:31 . 2012-09-07 01:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-06 21:17 . 2012-09-06 21:17 -------- d-----w- c:\users\Melissa\AppData\Roaming\Logitech
2012-09-06 21:17 . 2012-09-06 21:17 -------- d-----w- c:\program files (x86)\Logitech
2012-09-02 12:17 . 2012-09-02 12:17 -------- d-----w- C:\FRST
2012-08-30 02:41 . 2012-08-30 02:41 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-08-30 02:09 . 2012-08-30 02:10 -------- d-----w- c:\users\Melissa\AppData\Roaming\AVG
2012-08-29 17:57 . 2012-08-28 06:49 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1BC2C662-D495-4CCF-A2CF-E379DB26024C}\mpengine.dll
2012-08-29 17:57 . 2012-08-29 17:57 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-08-29 17:57 . 2012-08-29 17:57 -------- d-----w- c:\program files (x86)\AVG Secure Search
2012-08-29 17:56 . 2012-08-29 17:56 -------- d-----w- c:\windows\SysWow64\drivers\AVG
2012-08-29 17:56 . 2012-09-06 23:19 -------- d-----w- c:\windows\system32\drivers\AVG
2012-08-29 13:09 . 2012-08-29 14:14 -------- d-----w- C:\sdaf223
2012-08-29 09:52 . 2012-08-29 09:52 -------- d-----w- c:\users\Melissa\AppData\Local\AVG Secure Search
2012-08-29 09:51 . 2012-08-29 21:16 -------- d-----w- c:\programdata\AVG2012
2012-08-29 09:51 . 2012-08-29 09:51 -------- d-----w- C:\$AVG
2012-08-29 09:50 . 2012-08-30 02:08 -------- d-----w- c:\program files (x86)\AVG
2012-08-29 09:47 . 2012-09-06 23:19 -------- d-----w- c:\programdata\MFAData
2012-08-29 06:13 . 2012-08-29 17:26 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2012-08-29 06:13 . 2012-08-29 17:26 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2012-08-29 05:54 . 2012-08-29 05:54 -------- d-----w- c:\program files (x86)\ESET
2012-08-29 05:45 . 2012-08-29 05:45 -------- d-----w- c:\users\Melissa\AppData\Roaming\Malwarebytes
2012-08-29 05:45 . 2012-08-29 05:45 -------- d-----w- c:\programdata\Malwarebytes
2012-08-29 04:40 . 2012-08-29 04:40 -------- d-----w- c:\windows\Sun
2012-08-29 04:36 . 2012-08-29 04:36 -------- d-----w- c:\users\Melissa\AppData\Roaming\SUPERAntiSpyware.com
2012-08-29 04:36 . 2012-08-29 17:30 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-08-29 04:36 . 2012-08-29 04:36 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-08-28 02:42 . 2012-08-28 02:54 -------- d-----w- c:\users\Melissa\AppData\Roaming\vlc
2012-08-28 02:40 . 2012-08-28 02:40 -------- d-----w- c:\program files (x86)\VideoLAN
2012-08-21 17:22 . 2012-08-21 17:22 -------- d-----w- c:\programdata\HP
2012-08-18 07:30 . 2012-08-18 07:34 -------- d-----w- c:\users\Melissa\[a-S] Cromartie High School
2012-08-18 07:29 . 2012-08-18 07:35 -------- d-----w- c:\users\Melissa\Azumanga Daioh
2012-08-18 07:22 . 2012-08-19 06:19 -------- d-----w- c:\users\Melissa\Tengen_Toppa_Gurren_Lagann_1-27-HD
2012-08-18 06:37 . 2012-08-19 06:03 -------- d-----w- c:\users\Melissa\Black Lagoon
2012-08-17 02:29 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2012-08-17 02:29 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2012-08-17 02:29 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-08-17 02:29 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-17 02:29 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-08-17 02:29 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-08-17 02:29 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-08-17 02:29 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll
2012-08-17 02:29 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll
2012-08-17 02:29 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2012-08-17 02:29 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-08-17 02:29 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-02 17:12 . 2010-09-10 21:52 4278384 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2012-09-02 17:11 . 2010-09-10 21:52 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2012-08-29 18:12 . 2012-07-12 05:16 696520 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-29 18:12 . 2011-06-24 03:55 73416 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-17 08:00 . 2010-09-10 22:06 62134624 ----a-w- c:\windows\system32\MRT.exe
2012-07-29 01:52 . 2010-09-10 21:53 737072 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore-2\Microsoft.MediaCenter.Sports.UI.dll
2012-07-29 01:51 . 2010-09-06 20:02 4283672 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-07-29 01:51 . 2010-09-06 19:55 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-07-29 01:50 . 2010-09-06 19:55 539984 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-06-09 05:43 . 2012-07-12 05:28 14172672 ----a-w- c:\windows\system32\shell32.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-12-14 1514152]
"{687578b9-7132-4a7a-80e4-30ee31099e03}"= "c:\program files (x86)\uTorrentControl2\prxtbuTor.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_CLASSES_ROOT\clsid\{687578b9-7132-4a7a-80e4-30ee31099e03}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}]
2011-05-09 09:49 176936 ----a-w- c:\program files (x86)\uTorrentControl2\prxtbuTor.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-08-29 17:57 2045024 ----a-w- c:\program files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-12-14 21:51 1514152 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-12-14 1514152]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll" [2012-08-29 2045024]
"{687578b9-7132-4a7a-80e4-30ee31099e03}"= "c:\program files (x86)\uTorrentControl2\prxtbuTor.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CLASSES_ROOT\clsid\{687578b9-7132-4a7a-80e4-30ee31099e03}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EA Core"="c:\program files (x86)\Electronic Arts\EADM\Core.exe" [2009-03-28 3325952]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-08-18 896400]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"Dell DataSafe Online"="c:\program files (x86)\Dell DataSafe Online\DataSafeOnline.exe" [2009-11-13 1807600]
"PDVDDXSrv"="c:\program files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-12-29 140520]
"DellSupportCenter"="c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]
"D-Link D-Link DWA-125"="c:\program files (x86)\D-Link\DWA-125 revA\AirGCFG.exe" [2009-10-20 995328]
"WZCSLDR2"="c:\program files (x86)\D-Link\DWA-125 revA\WZCSLDR2.exe" [2009-10-19 122880]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2011-12-14 1398440]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-12-16 498160]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-02 59240]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2010-06-18 462991]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2011-12-30 296056]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-12-08 421736]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-08-29 1162848]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008]
"ROC_roc_ssl_v12"="c:\program files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" [2012-08-29 1020512]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-10-11 559616]
.
c:\users\Melissa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-29 250568]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
R3 MOSUMAC;USB-Ethernet Driver;c:\windows\system32\DRIVERS\USBMAC64.SYS [2009-12-07 55296]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-25 114144]
R3 netr28ux;D-Link dnetr28u USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\Dnetr28ux.sys [2009-09-15 1061888]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-08-02 51712]
R3 UsbFltr;WayTech USB Filter Driver;c:\windows\system32\Drivers\UsbFltr.sys [2007-04-09 12288]
R3 UsbGps;LGE CDMA USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgx64gps.sys [2008-11-11 27136]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-06 1255736]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S1 anodlwf;ANOD Network Security Filter driver;c:\windows\system32\DRIVERS\anodlwfx.sys [2009-03-06 15872]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-02-22 289872]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-03-19 383808]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-08-29 31080]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\avgidsagent.exe [2012-07-04 5160568]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
S2 D_Link_DWA-125;D_Link_DWA-125 Service;c:\program files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe [2009-08-21 126976]
S2 D_Link_DWA-125_WPS;D_Link_DWA-125_WPS Service;c:\program files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe [2009-07-08 40960]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
S2 vToolbarUpdater12.2.0;vToolbarUpdater12.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe [2012-08-29 927840]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2011-12-23 124496]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2010-06-07 174848]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam_x64.sys [2008-03-13 27136]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-05-08 215552]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-05-20 393728]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2012-09-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-12 18:12]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2009-01-23 305664]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2009-06-29 444416]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-06-30 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-06-30 385560]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-06-30 365080]
"Broadcom Wireless Manager UI"="c:\program files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" [2009-07-17 4968960]
"QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2009-07-02 3180624]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://isearch.avg.com/?cid={F8C05315-769D-46B5-ACB8-22C52054A151}&mid=9416e159b93547d09c1475f39d4bb11a-1c6ded7800ca18c8b38d3059ea2bf21c7039c3b2&lang=en&ds=AVG&pr=fr&d=2012-08-29 12:57&v=12.2.0.5&sap=hp
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.0\ViProtocol.dll
FF - ProfilePath - c:\users\Melissa\AppData\Roaming\Mozilla\Firefox\Profiles\m5wu117z.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=2&q=
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
SafeBoot-64807920.sys
Toolbar-Locked - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3286153632-837285277-1482351439-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-3286153632-837285277-1482351439-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
c:\program files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
c:\program files (x86)\Dell Support Center\bin\sprtsvc.exe
.
**************************************************************************
.
Completion time: 2012-09-06 20:58:55 - machine was rebooted
ComboFix-quarantined-files.txt 2012-09-07 01:58
ComboFix2.txt 2012-08-29 09:28
.
Pre-Run: 391,221,596,160 bytes free
Post-Run: 391,011,504,128 bytes free
.
- - End Of File - - 0347E71EF103528B10693D0221C31438

I think it's still too soon to say for sure, but that may just have done it; no redirects or audio ads. The connection problem is a likely different issue, though, rather than a symptom of the rootkit.

Thanks a lot, Fireman. I really appreciate your assistance.

Edited by guardian4600, 06 September 2012 - 08:38 PM.


#15 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:09 PM

Posted 06 September 2012 - 10:28 PM

Hello,

Lets go ahead and run a couple of other scans for any leftovers. and we will check that all the proper file and registry entries are there for your connection.

1.
Please download Malwarebytes Anti-Malware and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


2.
I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

3.
Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


Things to include in your next reply::
MBAM log
Eset log
FSS.txt
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users