Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Agent C:\Windows/svchost.exe Cannot Remove


  • This topic is locked This topic is locked
27 replies to this topic

#1 malibu2envy

malibu2envy

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 16 December 2012 - 06:16 PM

I have a virus that I have been unable to remove that appears to start at startup, Malwarebytes says it catches it and I quarantine it but it comes back everytime. I have a paid version of Malwarebytes and I have ran RKill as well. I am NOT good with computers so any help would be greatly appreciated! I have removed all restore points and ran RKill/Malwarebytes in safe mode with the same results. Malwarebytes calls it Trojan Agent C:\Windows/svchost.exe

BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:11:11 PM

Posted 16 December 2012 - 08:04 PM

Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




I need to get some reports to get a base to start from so I need you to run these programs first.


-DeFogger-

  • Please download DeFogger to your desktop.

    Double click DeFogger to run the tool.
  • The application window will appear
  • Click the Disable button to disable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger may ask you to reboot the machine, if it does - click OK
Do not re-enable these drivers until otherwise instructed.


-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


-Download DDS-

  • Please download DDS from one of the links below and save it to your desktop:

    Posted Image
    Download DDS and save it to your desktop

    Link1
    Link2
    Link3


    • Double-Click on dds.scr and a command window will appear. This is normal.
    • Shortly after two logs will appear:
    • DDS.txt
    • Attach.txt
  • A window will open instructing you save & post the logs
  • Save the logs to a convenient place such as your desktop
  • Copy the contents of both logs & post in your next reply

information and logs

  • In your next post I need the following

  • both reports from DDS
  • report from security check
  • let me know of any problems you may have had

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:11:11 PM

Posted 21 December 2012 - 12:10 AM

Hello

48 Hour bump

It has been more than 48 hours since my last post.

  • do you still need help with this?
  • do you need more time?
  • are you having problems following my instructions?
  • if after 48hrs you have not replied to this thread then it will have to be closed!

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#4 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 21 December 2012 - 10:30 PM

Thank you so much for your reply! I will try to respond more promptly, however I will be out of town for Christmas until Tuesday.
Here is the information you asked for:
Security Check Logs - Results of screen317's Security Check version 0.99.56
Windows 7 x64 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
Webroot AntiVirus with Spy Sweeper
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.1.1000
Java™ 6 Update 30
Java version out of Date!
Adobe Reader 9 Adobe Reader out of Date!
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
Webroot Security current plugins\antimalware\AEI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````



DDS Logs - DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7600.17153
Run by Dustin at 21:20:24 on 2012-12-21
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3893.2492 [GMT -6:00]
.
AV: Webroot AntiVirus with Spy Sweeper *Disabled/Updated* {53211D91-0C31-95F2-E3A5-7661FB22889E}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Webroot AntiVirus with Spy Sweeper *Disabled/Updated* {E840FC75-2A0B-9A7C-D915-4D1380A5C223}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\Dwm.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Windows\system32\lxdncoms.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
C:\Program Files\Common Files\Motive\pcCMService.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
C:\Windows\msisear.exe
C:\Program Files (x86)\Webroot\Security\current\plugins\antimalware\AEI.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Program Files (x86)\Dell\DellComms\bin\sprtcmd.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Lexmark 2600 Series\lxdnMsdMon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k defragsvc
C:\Windows\SysWOW64\notepad.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\consent.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uWindow Title = Windows Internet Explorer provided by Yahoo!
uDefault_Page_URL = hxxp://www.yahoo.com/?fr=fp-yie9
mWinlogon: Userinit = userinit.exe,
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [DellSupportCenter] "c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [DellComms] "C:\Program Files (x86)\Dell\DellComms\bin\sprtcmd.exe" /P DellComms
mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe
mRunOnce: [DSUpdateLauncher] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe" /NOCONSOLE /D="C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate" /RUNAS "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe"
StartupFolder: C:\Users\Dustin\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK - C:\Program Files\Dell\DellDock\DellDock.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Trusted Zone: $talisma_url$
DPF: {15B782AF-55D8-11D1-B477-006097098764} - hxxp://download.macromedia.com/pub/shockwave/cabs/authorware/awswax70.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{B0779E5E-0D48-4B08-AD0F-BD67D76CB432} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{B0779E5E-0D48-4B08-AD0F-BD67D76CB432}\16574757D6E6F575966496 : DHCPNameServer = 209.18.47.61 209.18.47.62
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7725.1624\swg64.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-Run: [RtHDVCpl] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-Run: [IgfxTray] "C:\Windows\System32\igfxtray.exe"
x64-Run: [HotKeysCmds] "C:\Windows\System32\hkcmd.exe"
x64-Run: [Persistence] "C:\Windows\System32\igfxpers.exe"
x64-Run: [QuickSet] "C:\Program Files\Dell\QuickSet\QuickSet.exe"
x64-Run: [lxdnmon.exe] "C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe"
x64-Run: [lxdnamon] "C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe"
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Logitech Download Assistant] "C:\Windows\System32\rundll32.exe" C:\Windows\System32\LogiLDA.dll,LogiFetch
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - C:\Windows\System32\rundll32.exe C:\Windows\System32\advpack.dll,LaunchINFSectionEx C:\Program Files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12
Hosts: 66.185.21.82 www.google-analytics.com.
Hosts: 66.185.21.82 ad-emea.doubleclick.net.
Hosts: 66.185.21.82 www.statcounter.com.
Hosts: 66.185.21.82 connect.facebook.net.
Hosts: 93.115.241.27 www.google-analytics.com.
.
Note: multiple HOSTS entries found. Please refer to Attach.txt
.
============= SERVICES / DRIVERS ===============


DDS Logs 2 - UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 10/22/2010 9:10:25 PM
System Uptime: 12/21/2012 8:51:06 PM (1 hours ago)
.
Motherboard: Dell Inc. | | 021CN3
Processor: Intel® Pentium® CPU P6100 @ 2.00GHz | U2E1 | 1999/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 370.506 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP302: 12/6/2012 7:30:22 PM - Scheduled Checkpoint
RP303: 12/13/2012 11:08:02 AM - Windows Update
RP304: 12/14/2012 5:37:37 PM - Windows Update
RP305: 12/20/2012 7:14:47 PM - Windows Update
.
==== Hosts File Hijack ======================
.
Hosts: 66.185.21.82 www.google-analytics.com.
Hosts: 66.185.21.82 ad-emea.doubleclick.net.
Hosts: 66.185.21.82 www.statcounter.com.
Hosts: 66.185.21.82 connect.facebook.net.
Hosts: 93.115.241.27 www.google-analytics.com.
Hosts: 93.115.241.27 ad-emea.doubleclick.net.
Hosts: 93.115.241.27 www.statcounter.com.
Hosts: 93.115.241.27 connect.facebook.net.
.
==== Installed Programs ======================
.
Adobe Flash Player 11 ActiveX
Adobe Reader 9.1.2
Advanced Audio FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Best Buy pc app
Bonjour
Canon RAW Image Task for ZoomBrowser EX
Canon Utilities CameraWindow
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
Canon Utilities Digital Photo Professional 3.4
Canon Utilities EOS Utility
Canon Utilities MyCamera
Canon Utilities PhotoStitch
Canon Utilities Picture Style Editor
Canon Utilities RemoteCapture Task for ZoomBrowser EX
Canon Utilities WFT-E1/E2/E3 Utility
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
D3DX10
Dell Communications (Support Software)
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell Dock
Dell Edoc Viewer
Dell Getting Started Guide
Dell Support Center (Support Software)
Dell Webcam Central
DW WLAN Card
Google Earth Plug-in
Google Toolbar for Internet Explorer
Google Update Helper
GoToAssist 8.0.0.514
Intel® Graphics Media Accelerator Driver
Intel® Management Engine Components
iTunes
Java Auto Updater
Java™ 6 Update 20 (64-bit)
Java™ 6 Update 30
Junk Mail filter update
Lexmark 2600 Series
Malwarebytes Anti-Malware version 1.65.1.1000
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office Click-to-Run 2010
Microsoft Office Starter 2010 - English
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
MSVCRT
MSVCRT_amd64
Quickset64
Realtek High Definition Audio Driver
Roxio Burn
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Skype Click to Call
Skype™ 5.10
Synaptics Pointing Device Driver
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Webroot Software
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
.
==== Event Viewer Messages From Past Week ========
.
12/21/2012 8:55:54 PM, Error: Service Control Manager [7023] - The Function Discovery Resource Publication service terminated with the following error: %%-2147024891
12/21/2012 8:55:54 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error: %%-2147024891
12/21/2012 8:53:03 PM, Error: ssidrv [4103] - NetMon failed to initialize callouts.
12/21/2012 8:52:37 PM, Error: Service Control Manager [7003] - The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.
12/21/2012 8:52:16 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the lxdnCATSCustConnectService service to connect.
12/21/2012 8:52:16 PM, Error: Service Control Manager [7000] - The lxdnCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
12/21/2012 8:52:15 PM, Error: Service Control Manager [7003] - The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.
12/21/2012 8:52:06 PM, Error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service.
12/20/2012 6:49:17 PM, Error: Schannel [36888] - The following fatal alert was generated: 40. The internal error state is 107.
12/20/2012 6:49:17 PM, Error: Schannel [36874] - An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
12/19/2012 9:14:59 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Virtual Disk service to connect.
12/19/2012 9:14:59 PM, Error: Service Control Manager [7000] - The Virtual Disk service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
12/19/2012 9:14:59 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service vds with arguments "" in order to run the server: {7D1933CB-86F6-4A98-8628-01BE94C9A575}
12/17/2012 1:19:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
12/17/2012 1:19:20 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Installer service to connect.
12/16/2012 5:21:13 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
12/16/2012 4:40:03 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 4:40:02 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
12/16/2012 4:40:01 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
12/16/2012 4:39:57 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
12/16/2012 4:39:50 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
12/16/2012 4:39:16 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache spldr Wanarpv6
12/16/2012 4:39:15 PM, Error: Microsoft-Windows-WLAN-AutoConfig [10000] - WLAN Extensibility Module has failed to start. Module Path: C:\Windows\System32\bcmihvsrv64.dll Error Code: 21
12/16/2012 4:39:05 PM, Error: Service Control Manager [7001] - The Client Virtualization Handler service depends on the Application Virtualization Client service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 4:38:52 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 2:57:55 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.
12/16/2012 2:54:16 PM, Error: Service Control Manager [7034] - The Windows Search Scheduler service terminated unexpectedly. It has done this 1 time(s).
12/16/2012 11:57:33 AM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 11:57:19 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
12/16/2012 11:57:19 AM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
12/16/2012 11:57:03 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD DfsC discache NetBIOS NetBT nsiproxy Psched rdbss spldr tdx vwififlt Wanarpv6 WfpLwf
12/16/2012 11:56:26 AM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
12/16/2012 11:56:26 AM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 11:56:26 AM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 11:56:26 AM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 11:56:24 AM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
12/16/2012 11:56:24 AM, Error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
12/16/2012 11:56:24 AM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
12/16/2012 11:56:24 AM, Error: Service Control Manager [7001] - The DNS Client service depends on the NetIO Legacy TDI Support Driver service which failed to start because of the following error: A device attached to the system is not functioning.
12/16/2012 11:56:24 AM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
.
==== End Of File ===========================


As of now my computer has not gotten any worse and no changes on anything. Again thank you for your time and help! Dustin
.
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-10-24 55280]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2010-9-6 98208]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 lxdn_device;lxdn_device;C:\Windows\System32\lxdncoms.exe -service --> C:\Windows\System32\lxdncoms.exe -service [?]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-10-8 399432]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-10-8 676936]
R2 pcCMService;pcCMService;C:\Program Files (x86)\Common Files\Motive\pcCMService.exe [2012-7-2 361472]
R2 pcCMService64;pcCMService64;C:\Program Files\Common Files\Motive\pcCMService.exe [2012-7-2 441344]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2010-9-6 673088]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
R2 sprtsvc_DellComms;SupportSoft Sprocket Service (DellComms);C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe [2009-5-5 206064]
R2 ssfmonm;ssfmonm;C:\Windows\System32\drivers\ssfmonm.sys [2011-5-17 56920]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-9-6 2320920]
R2 W32Serv;Windows Search Scheduler;C:\Windows\msisear.exe [2012-12-2 306176]
R2 WebrootSpySweeperService;Webroot Spy Sweeper Engine;C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AEI.exe [2011-6-20 3997912]
R2 WRConsumerService;Webroot Client Service;C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe [2011-12-2 3386840]
R3 BcmVWL;Broadcom Virtual Wireless;C:\Windows\System32\drivers\bcmvwl64.sys [2010-9-6 20984]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2010-9-6 172704]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-9-6 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-9-6 158976]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2010-9-6 271872]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2010-9-6 74280]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2012-10-8 25928]
R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]
R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]
R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]
R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;C:\Windows\System32\spool\drivers\x64\3\lxdnserv.exe [2009-4-28 29184]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2010-9-6 245792]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-7-9 52736]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-10-23 1255736]
.
=============== Created Last 30 ================
.
2012-12-22 02:55:24 20480 ----a-w- C:\Windows\svchost.exe
2012-12-21 01:15:20 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-12-21 01:15:20 367616 ----a-w- C:\Windows\System32\atmfd.dll
2012-12-21 01:15:20 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-21 01:15:20 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-17 00:26:24 -------- d-----w- C:\Users\Dustin\AppData\Roaming\Windows Live Writer
2012-12-17 00:26:24 -------- d-----w- C:\Users\Dustin\AppData\Local\Windows Live Writer
2012-12-14 23:56:27 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-12-14 23:53:28 -------- d-----w- C:\Windows\en
2012-12-14 23:51:24 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
2012-12-14 23:51:24 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2012-12-14 23:51:24 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2012-12-14 23:51:24 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2012-12-14 23:51:06 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
2012-12-14 23:51:06 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
2012-12-14 23:42:03 469256 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\9ce5bc2b1cdda542e\InstallManager_WLE_WLE.exe
2012-12-14 23:41:40 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\90dfa2861cdda5422\MeshBetaRemover.exe
2012-12-14 23:41:21 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\8504a8091cdda541a\DSETUP.dll
2012-12-14 23:41:21 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\8504a8091cdda541a\DXSETUP.exe
2012-12-14 23:41:21 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\8504a8091cdda541a\dsetup32.dll
2012-12-14 23:41:20 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\845944f51cdda5419\DSETUP.dll
2012-12-14 23:41:20 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\845944f51cdda5419\DXSETUP.exe
2012-12-14 23:41:20 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\845944f51cdda5419\dsetup32.dll
2012-12-14 23:39:25 -------- d-----w- C:\Users\Dustin\AppData\Local\Windows Live
2012-12-13 01:06:53 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-12-13 01:04:10 478208 ----a-w- C:\Windows\System32\dpnet.dll
2012-12-13 01:04:10 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2012-12-13 01:04:10 295792 ----a-w- C:\Windows\System32\drivers\volsnap.sys
2012-12-09 01:30:32 -------- d-----w- C:\Program Files\iPod
2012-12-09 01:30:31 -------- d-----w- C:\Program Files\iTunes
2012-12-02 17:45:18 306176 ----a-w- C:\Windows\msisear.exe
2012-12-02 01:22:06 9125352 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7AA463F5-9150-4FBE-8892-E793D8016B07}\mpengine.dll
2012-11-25 04:48:19 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA%
.
==================== Find3M ====================
.
2012-12-13 01:02:11 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-13 01:02:11 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-11-22 08:20:36 3147264 ----a-w- C:\Windows\System32\win32k.sys
2012-11-12 12:18:53 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2012-11-12 11:51:11 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-11-09 05:34:27 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-10-27 05:36:37 1197568 ----a-w- C:\Windows\System32\wininet.dll
2012-10-27 05:36:08 57856 ----a-w- C:\Windows\System32\licmgr10.dll
2012-10-27 05:00:40 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-10-27 04:59:41 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2012-10-27 04:23:06 482816 ----a-w- C:\Windows\System32\html.iec
2012-10-27 03:52:14 386048 ----a-w- C:\Windows\SysWow64\html.iec
2012-10-16 21:20:49 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 21:20:46 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 20:34:37 559104 ----a-w- C:\Windows\apppatch\AcLayers.dll
2012-10-04 17:38:56 362496 ----a-w- C:\Windows\System32\wow64win.dll
2012-10-04 17:38:56 243200 ----a-w- C:\Windows\System32\wow64.dll
2012-10-04 17:38:56 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2012-10-04 17:38:24 215040 ----a-w- C:\Windows\System32\winsrv.dll
2012-10-04 17:35:22 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2012-10-04 17:32:16 425984 ----a-w- C:\Windows\System32\KernelBase.dll
2012-10-04 16:54:18 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2012-10-04 16:54:17 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2012-10-04 15:19:57 338432 ----a-w- C:\Windows\System32\conhost.exe
2012-10-04 14:49:27 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2012-10-04 14:49:24 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2012-10-04 14:49:22 2048 ----a-w- C:\Windows\SysWow64\user.exe
2012-10-04 14:49:22 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2012-10-04 14:44:29 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-10-04 14:44:29 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-04 14:44:29 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-10-04 14:44:29 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-09-30 01:54:26 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-09-25 22:39:14 95744 ----a-w- C:\Windows\System32\synceng.dll
2012-09-25 21:55:17 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
.
============= FINISH: 21:20:58.60 ===============

#5 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:11:11 PM

Posted 21 December 2012 - 10:34 PM

Hello


These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.


-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#6 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 22 December 2012 - 07:14 PM

Thank you! Here is the logs

AdwCleaner
# AdwCleaner v2.101 - Logfile created 12/22/2012 at 18:03:15
# Updated 16/12/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Dustin - DUSTIN-PC
# Boot Mode : Normal
# Running from : C:\Users\Dustin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LPELPHFX\2-adwcleaner[1].exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.17153

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [706 octets] - [22/12/2012 18:00:01]
AdwCleaner[R2].txt - [765 octets] - [22/12/2012 18:02:17]
AdwCleaner[S2].txt - [697 octets] - [22/12/2012 18:03:15]

########## EOF - C:\AdwCleaner[S2].txt - [756 octets] ##########



Rogue Killer

RogueKiller V8.4.0 [Dec 20 2012] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7600 ) 64 bits version
Started in : Normal mode
User : Dustin [Admin rights]
Mode : Remove -- Date : 12/22/2012 18:11:29

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] msisear.exe -- C:\Windows\msisear.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 8 ¤¤¤
[TASK][SUSP PATH] IHUninstallTrackingTASK : CMD /C DEL C:\Users\Dustin\AppData\Local\Temp\IHU9819.tmp.exe -> DELETED
[STARTUP][SUSP PATH] Best Buy pc app.lnk @Default : C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe -> DELETED
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤
[Tr.Karagany][FOLDER] ROOT : C:\Users\Dustin\AppData\Roaming\Adobe\shed --> REMOVED
[ZeroAccess][FILE] @ : C:\Users\Dustin\AppData\Local\{c614d3bf-243a-3fd7-a4fd-36cd3756874b}\@ --> REMOVED
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-18\$c614d3bf243a3fd7a4fd36cd3756874b\@ --> REMOVED
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-2749967909-1401674775-400432642-1000\$c614d3bf243a3fd7a4fd36cd3756874b\@ --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\Windows\Installer\{c614d3bf-243a-3fd7-a4fd-36cd3756874b}\U --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\Users\Dustin\AppData\Local\{c614d3bf-243a-3fd7-a4fd-36cd3756874b}\U --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-18\$c614d3bf243a3fd7a4fd36cd3756874b\U --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-2749967909-1401674775-400432642-1000\$c614d3bf243a3fd7a4fd36cd3756874b\U --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\Windows\Installer\{c614d3bf-243a-3fd7-a4fd-36cd3756874b}\L --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\Users\Dustin\AppData\Local\{c614d3bf-243a-3fd7-a4fd-36cd3756874b}\L --> REMOVED
[Del.Parent][FILE] 00000004.@ : C:\$recycle.bin\S-1-5-18\$c614d3bf243a3fd7a4fd36cd3756874b\L\00000004.@ --> REMOVED
[Del.Parent][FILE] 201d3dde : C:\$recycle.bin\S-1-5-18\$c614d3bf243a3fd7a4fd36cd3756874b\L\201d3dde --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-18\$c614d3bf243a3fd7a4fd36cd3756874b\L --> REMOVED
[Del.Parent][FILE] 00000004.@ : C:\$recycle.bin\S-1-5-21-2749967909-1401674775-400432642-1000\$c614d3bf243a3fd7a4fd36cd3756874b\L\00000004.@ --> REMOVED
[Del.Parent][FILE] 4cce1f70 : C:\$recycle.bin\S-1-5-21-2749967909-1401674775-400432642-1000\$c614d3bf243a3fd7a4fd36cd3756874b\L\4cce1f70 --> REMOVED
[Del.Parent][FILE] 55490ac4 : C:\$recycle.bin\S-1-5-21-2749967909-1401674775-400432642-1000\$c614d3bf243a3fd7a4fd36cd3756874b\L\55490ac4 --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-2749967909-1401674775-400432642-1000\$c614d3bf243a3fd7a4fd36cd3756874b\L --> REMOVED

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
::1 localhost
66.185.21.82 www.google-analytics.com.
66.185.21.82 ad-emea.doubleclick.net.
66.185.21.82 www.statcounter.com.
66.185.21.82 connect.facebook.net.
93.115.241.27 www.google-analytics.com.
93.115.241.27 ad-emea.doubleclick.net.
93.115.241.27 www.statcounter.com.
93.115.241.27 connect.facebook.net.


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD5000BEVT-75A0RT0 +++++
--- User ---
[MBR] ce242f1b53f702bdbf64dee9ac79dda2
[BSP] 4a795875e98db54617e2950c4c57764b : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 Mo
User != LL1 ... KO!
--- LL1 ---
[MBR] 77e472167504ce544b35ec9f9bc8b8a8
[BSP] 4a795875e98db54617e2950c4c57764b : Windows 7/8 MBR Code
Partition table:
1 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
2 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 15000 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 Mo
User != LL2 ... KO!
--- LL2 ---
[MBR] 77e472167504ce544b35ec9f9bc8b8a8
[BSP] 4a795875e98db54617e2950c4c57764b : Windows 7/8 MBR Code
Partition table:
1 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
2 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 15000 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 Mo

Finished : << RKreport[2]_D_12222012_02d1811.txt >>
RKreport[1]_S_12222012_02d1810.txt ; RKreport[2]_D_12222012_02d1811.txt

#7 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:11:11 PM

Posted 22 December 2012 - 08:58 PM

Hello

I Would like you to do the following.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#8 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 25 December 2012 - 01:40 AM

I have tried to run combo fix a couple times now and it just reaches completed stage 4 and then does not ever complete anything after. Any ideas? I have turned off all security I am aware I have. Also today my mouse does not want to operate normal

#9 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:11:11 PM

Posted 25 December 2012 - 06:07 PM

Greetings

I want you to run these next,

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.



Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#10 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 25 December 2012 - 11:37 PM

Here are the logs, some are too long for one reply.

22:01:39.0114 2544 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:01:40.0284 2544 ============================================================
22:01:40.0284 2544 Current date / time: 2012/12/25 22:01:40.0284
22:01:40.0284 2544 SystemInfo:
22:01:40.0284 2544
22:01:40.0284 2544 OS Version: 6.1.7600 ServicePack: 0.0
22:01:40.0284 2544 Product type: Workstation
22:01:40.0284 2544 ComputerName: DUSTIN-PC
22:01:40.0284 2544 UserName: Dustin
22:01:40.0284 2544 Windows directory: C:\Windows
22:01:40.0284 2544 System windows directory: C:\Windows
22:01:40.0284 2544 Running under WOW64
22:01:40.0284 2544 Processor architecture: Intel x64
22:01:40.0284 2544 Number of processors: 2
22:01:40.0284 2544 Page size: 0x1000
22:01:40.0284 2544 Boot type: Normal boot
22:01:40.0284 2544 ============================================================
22:01:42.0374 2544 BG loaded
22:01:43.0415 2544 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:01:43.0425 2544 ============================================================
22:01:43.0425 2544 \Device\Harddisk0\DR0:
22:01:43.0425 2544 MBR partitions:
22:01:43.0425 2544 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
22:01:43.0425 2544 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
22:01:43.0425 2544 ============================================================
22:01:43.0655 2544 C: <-> \Device\Harddisk0\DR0\Partition2
22:01:43.0655 2544 ============================================================
22:01:43.0655 2544 Initialize success
22:01:43.0655 2544 ============================================================
22:02:08.0914 3624 ============================================================
22:02:08.0914 3624 Scan started
22:02:08.0914 3624 Mode: Manual;
22:02:08.0914 3624 ============================================================
22:02:21.0409 3624 ================ Scan system memory ========================
22:02:21.0409 3624 System memory - ok
22:02:21.0425 3624 ================ Scan services =============================
22:02:21.0924 3624 [ 69AA89A20DEE08BFA650AAB6CE37BD10 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
22:02:21.0924 3624 1394ohci - ok
22:02:22.0049 3624 [ 794FF35015209B9D44F1360C42C9776D ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
22:02:22.0049 3624 ACPI - ok
22:02:22.0143 3624 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
22:02:22.0143 3624 AcpiPmi - ok
22:02:22.0829 3624 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:02:22.0829 3624 AdobeFlashPlayerUpdateSvc - ok
22:02:23.0001 3624 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:02:23.0001 3624 adp94xx - ok
22:02:23.0219 3624 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:02:23.0235 3624 adpahci - ok
22:02:23.0328 3624 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:02:23.0344 3624 adpu320 - ok
22:02:23.0453 3624 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:02:23.0469 3624 AeLookupSvc - ok
22:02:23.0812 3624 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
22:02:23.0812 3624 AERTFilters - ok
22:02:24.0108 3624 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
22:02:24.0108 3624 AFD - ok
22:02:24.0264 3624 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
22:02:24.0264 3624 agp440 - ok
22:02:24.0389 3624 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:02:24.0389 3624 ALG - ok
22:02:24.0561 3624 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
22:02:24.0561 3624 aliide - ok
22:02:24.0717 3624 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
22:02:24.0717 3624 amdide - ok
22:02:24.0935 3624 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:02:25.0060 3624 AmdK8 - ok
22:02:25.0153 3624 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:02:25.0153 3624 AmdPPM - ok
22:02:25.0341 3624 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:02:25.0450 3624 amdsata - ok
22:02:25.0855 3624 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:02:25.0965 3624 amdsbs - ok
22:02:26.0136 3624 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:02:26.0136 3624 amdxata - ok
22:02:26.0433 3624 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
22:02:26.0433 3624 AppID - ok
22:02:26.0604 3624 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:02:26.0604 3624 AppIDSvc - ok
22:02:26.0713 3624 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
22:02:26.0713 3624 Appinfo - ok
22:02:27.0790 3624 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:02:27.0790 3624 Apple Mobile Device - ok
22:02:28.0149 3624 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:02:28.0149 3624 arc - ok
22:02:28.0227 3624 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:02:28.0227 3624 arcsas - ok
22:02:28.0305 3624 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:02:28.0305 3624 AsyncMac - ok
22:02:28.0445 3624 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
22:02:28.0445 3624 atapi - ok
22:02:28.0570 3624 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:02:28.0585 3624 AudioEndpointBuilder - ok
22:02:28.0663 3624 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:02:28.0663 3624 AudioSrv - ok
22:02:28.0804 3624 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:02:28.0804 3624 AxInstSV - ok
22:02:28.0991 3624 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:02:29.0085 3624 b06bdrv - ok
22:02:29.0287 3624 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:02:29.0397 3624 b57nd60a - ok
22:02:29.0865 3624 [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
22:02:29.0880 3624 BCM43XX - ok
22:02:30.0021 3624 [ D224B2E6BB543F1D8F1177D57FEC2950 ] BcmVWL C:\Windows\system32\DRIVERS\bcmvwl64.sys
22:02:30.0021 3624 BcmVWL - ok
22:02:30.0114 3624 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:02:30.0114 3624 BDESVC - ok
22:02:30.0301 3624 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:02:30.0301 3624 Beep - ok
22:02:30.0613 3624 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
22:02:30.0613 3624 BFE - ok
22:02:30.0754 3624 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
22:02:30.0769 3624 BITS - ok
22:02:30.0910 3624 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:02:30.0910 3624 blbdrive - ok
22:02:31.0409 3624 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:02:31.0409 3624 Bonjour Service - ok
22:02:31.0487 3624 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:02:31.0503 3624 bowser - ok
22:02:31.0565 3624 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:02:31.0565 3624 BrFiltLo - ok
22:02:31.0674 3624 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:02:31.0674 3624 BrFiltUp - ok
22:02:31.0768 3624 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:02:31.0768 3624 BridgeMP - ok
22:02:31.0955 3624 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
22:02:31.0955 3624 Browser - ok
22:02:32.0158 3624 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:02:32.0220 3624 Brserid - ok
22:02:32.0392 3624 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:02:32.0407 3624 BrSerWdm - ok
22:02:32.0485 3624 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:02:32.0485 3624 BrUsbMdm - ok
22:02:32.0563 3624 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:02:32.0563 3624 BrUsbSer - ok
22:02:32.0626 3624 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:02:32.0641 3624 BTHMODEM - ok
22:02:32.0719 3624 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:02:32.0797 3624 bthserv - ok
22:02:32.0875 3624 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:02:33.0078 3624 cdfs - ok
22:02:33.0265 3624 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:02:33.0281 3624 cdrom - ok
22:02:33.0546 3624 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
22:02:33.0546 3624 CertPropSvc - ok
22:02:33.0687 3624 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:02:33.0702 3624 circlass - ok
22:02:33.0796 3624 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:02:33.0874 3624 CLFS - ok
22:02:34.0014 3624 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:02:34.0077 3624 clr_optimization_v2.0.50727_32 - ok
22:02:34.0326 3624 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:02:34.0326 3624 clr_optimization_v2.0.50727_64 - ok
22:02:34.0560 3624 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:02:35.0293 3624 clr_optimization_v4.0.30319_32 - ok
22:02:35.0949 3624 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:02:35.0949 3624 clr_optimization_v4.0.30319_64 - ok
22:02:36.0073 3624 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:02:36.0073 3624 CmBatt - ok
22:02:36.0136 3624 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
22:02:36.0136 3624 cmdide - ok
22:02:36.0432 3624 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
22:02:36.0495 3624 CNG - ok
22:02:36.0651 3624 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:02:36.0822 3624 Compbatt - ok
22:02:36.0916 3624 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:02:36.0931 3624 CompositeBus - ok
22:02:36.0994 3624 COMSysApp - ok
22:02:37.0025 3624 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:02:37.0025 3624 crcdisk - ok
22:02:37.0212 3624 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:02:37.0228 3624 CryptSvc - ok
22:02:37.0477 3624 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:02:37.0477 3624 CtClsFlt - ok
22:02:37.0961 3624 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:02:37.0961 3624 cvhsvc - ok
22:02:38.0382 3624 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:02:38.0398 3624 DcomLaunch - ok
22:02:38.0616 3624 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:02:38.0616 3624 defragsvc - ok
22:02:38.0835 3624 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:02:38.0835 3624 DfsC - ok
22:02:39.0225 3624 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
22:02:39.0225 3624 Dhcp - ok
22:02:39.0381 3624 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:02:39.0381 3624 discache - ok
22:02:39.0677 3624 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:02:39.0677 3624 Disk - ok
22:02:39.0989 3624 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:02:39.0989 3624 Dnscache - ok
22:02:40.0473 3624 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
22:02:40.0473 3624 DockLoginService - ok
22:02:41.0627 3624 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
22:02:41.0643 3624 dot3svc - ok
22:02:41.0689 3624 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
22:02:41.0689 3624 DPS - ok
22:02:41.0767 3624 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:02:41.0861 3624 drmkaud - ok
22:02:41.0923 3624 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:02:41.0923 3624 DXGKrnl - ok
22:02:42.0282 3624 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:02:42.0282 3624 EapHost - ok
22:02:42.0547 3624 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:02:42.0844 3624 ebdrv - ok
22:02:42.0906 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
22:02:42.0906 3624 EFS - ok
22:02:43.0031 3624 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:02:43.0047 3624 ehRecvr - ok
22:02:43.0093 3624 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:02:43.0093 3624 ehSched - ok
22:02:43.0265 3624 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:02:43.0296 3624 elxstor - ok
22:02:43.0327 3624 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
22:02:43.0327 3624 ErrDev - ok
22:02:43.0421 3624 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:02:43.0421 3624 EventSystem - ok
22:02:43.0468 3624 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:02:43.0468 3624 exfat - ok
22:02:43.0530 3624 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:02:43.0530 3624 fastfat - ok
22:02:43.0624 3624 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
22:02:43.0624 3624 Fax - ok
22:02:43.0702 3624 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:02:43.0702 3624 fdc - ok
22:02:43.0764 3624 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:02:43.0764 3624 fdPHost - ok
22:02:43.0780 3624 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:02:43.0780 3624 FDResPub - ok
22:02:43.0842 3624 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:02:43.0858 3624 FileInfo - ok
22:02:43.0873 3624 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:02:43.0873 3624 Filetrace - ok
22:02:43.0889 3624 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:02:43.0889 3624 flpydisk - ok
22:02:43.0936 3624 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:02:43.0951 3624 FltMgr - ok
22:02:44.0029 3624 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
22:02:44.0045 3624 FontCache - ok
22:02:44.0123 3624 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:02:44.0123 3624 FontCache3.0.0.0 - ok
22:02:44.0123 3624 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:02:44.0123 3624 FsDepends - ok
22:02:44.0185 3624 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:02:44.0185 3624 Fs_Rec - ok
22:02:44.0295 3624 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:02:44.0295 3624 fvevol - ok
22:02:44.0357 3624 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:02:44.0357 3624 gagp30kx - ok
22:02:44.0497 3624 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:02:44.0497 3624 GEARAspiWDM - ok
22:02:44.0607 3624 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
22:02:44.0872 3624 GoToAssist - ok
22:02:44.0934 3624 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
22:02:44.0934 3624 gpsvc - ok
22:02:45.0137 3624 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:02:45.0137 3624 gupdate - ok
22:02:45.0199 3624 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:02:45.0199 3624 gupdatem - ok
22:02:45.0355 3624 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:02:45.0355 3624 gusvc - ok
22:02:45.0402 3624 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:02:45.0402 3624 hcw85cir - ok
22:02:45.0449 3624 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:02:45.0449 3624 HDAudBus - ok
22:02:45.0480 3624 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:02:45.0480 3624 HECIx64 - ok
22:02:45.0527 3624 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:02:45.0527 3624 HidBatt - ok
22:02:45.0558 3624 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:02:45.0558 3624 HidBth - ok
22:02:45.0652 3624 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:02:45.0652 3624 HidIr - ok
22:02:45.0699 3624 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
22:02:45.0699 3624 hidserv - ok
22:02:45.0777 3624 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:02:45.0777 3624 HidUsb - ok
22:02:45.0823 3624 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:02:45.0839 3624 hkmsvc - ok
22:02:45.0870 3624 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:02:45.0886 3624 HomeGroupListener - ok
22:02:45.0964 3624 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:02:45.0964 3624 HomeGroupProvider - ok
22:02:46.0042 3624 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
22:02:46.0042 3624 HpSAMD - ok
22:02:46.0089 3624 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:02:46.0089 3624 HTTP - ok
22:02:46.0104 3624 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:02:46.0104 3624 hwpolicy - ok
22:02:46.0245 3624 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:02:46.0245 3624 i8042prt - ok
22:02:46.0307 3624 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
22:02:46.0307 3624 iaStor - ok
22:02:46.0447 3624 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:02:46.0463 3624 iaStorV - ok
22:02:46.0541 3624 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:02:46.0557 3624 idsvc - ok
22:02:47.0290 3624 [ 09CE164AFA8483E41808784D7FCA154E ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:02:47.0352 3624 igfx - ok
22:02:47.0399 3624 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:02:47.0399 3624 iirsp - ok
22:02:47.0477 3624 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
22:02:47.0477 3624 IKEEXT - ok
22:02:47.0555 3624 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
22:02:47.0555 3624 Impcd - ok
22:02:47.0789 3624 [ 6E4CCB3AFF07E2B9F2A937385C84B573 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:02:47.0805 3624 IntcAzAudAddService - ok
22:02:47.0851 3624 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:02:47.0851 3624 IntcDAud - ok
22:02:47.0898 3624 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
22:02:47.0898 3624 intelide - ok
22:02:47.0976 3624 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:02:47.0976 3624 intelppm - ok
22:02:48.0054 3624 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:02:48.0070 3624 IPBusEnum - ok
22:02:48.0132 3624 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:02:48.0132 3624 IpFilterDriver - ok
22:02:48.0195 3624 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
22:02:48.0195 3624 IPMIDRV - ok
22:02:48.0413 3624 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:02:48.0413 3624 IPNAT - ok
22:02:48.0850 3624 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:02:48.0850 3624 iPod Service - ok
22:02:49.0006 3624 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:02:49.0006 3624 IRENUM - ok
22:02:49.0224 3624 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
22:02:49.0224 3624 isapnp - ok
22:02:49.0427 3624 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:02:49.0427 3624 iScsiPrt - ok
22:02:49.0567 3624 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:02:49.0567 3624 kbdclass - ok
22:02:49.0692 3624 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:02:49.0692 3624 kbdhid - ok
22:02:49.0770 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
22:02:49.0770 3624 KeyIso - ok
22:02:49.0864 3624 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:02:49.0864 3624 KSecDD - ok
22:02:49.0989 3624 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:02:49.0989 3624 KSecPkg - ok
22:02:50.0082 3624 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:02:50.0082 3624 ksthunk - ok
22:02:50.0363 3624 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:02:50.0425 3624 KtmRm - ok
22:02:50.0566 3624 [ 39918DB0EFCF045A1CE6FABBF339F975 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
22:02:50.0566 3624 L1C - ok
22:02:50.0925 3624 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
22:02:50.0940 3624 LanmanServer - ok
22:02:51.0034 3624 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:02:51.0034 3624 LanmanWorkstation - ok
22:02:51.0221 3624 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:02:51.0237 3624 lltdio - ok
22:02:51.0455 3624 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:02:51.0455 3624 lltdsvc - ok
22:02:51.0517 3624 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:02:51.0517 3624 lmhosts - ok
22:02:51.0923 3624 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:02:51.0923 3624 LMS - ok
22:02:52.0048 3624 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:02:52.0048 3624 LSI_FC - ok
22:02:52.0126 3624 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:02:52.0126 3624 LSI_SAS - ok
22:02:52.0282 3624 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:02:52.0282 3624 LSI_SAS2 - ok
22:02:52.0438 3624 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:02:52.0438 3624 LSI_SCSI - ok
22:02:52.0563 3624 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:02:52.0563 3624 luafv - ok
22:02:53.0873 3624 [ 4208B958E35F0E596AA241EFB664636B ] lxdnCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxdnserv.exe
22:02:54.0341 3624 lxdnCATSCustConnectService - ok
22:02:54.0419 3624 lxdn_device - ok
22:02:54.0591 3624 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
22:02:54.0591 3624 MBAMProtector - ok
22:02:54.0949 3624 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:02:54.0949 3624 MBAMScheduler - ok
22:02:55.0371 3624 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:02:55.0386 3624 MBAMService - ok
22:02:55.0464 3624 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:02:55.0464 3624 Mcx2Svc - ok
22:02:55.0542 3624 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:02:55.0542 3624 megasas - ok
22:02:55.0776 3624 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:02:55.0885 3624 MegaSR - ok
22:02:55.0995 3624 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:02:56.0010 3624 MMCSS - ok
22:02:56.0057 3624 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:02:56.0057 3624 Modem - ok
22:02:56.0229 3624 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:02:56.0229 3624 monitor - ok
22:02:56.0385 3624 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:02:56.0385 3624 mouclass - ok
22:02:56.0587 3624 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:02:56.0587 3624 mouhid - ok
22:02:56.0665 3624 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:02:56.0697 3624 mountmgr - ok
22:02:56.0868 3624 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
22:02:56.0868 3624 mpio - ok
22:02:56.0931 3624 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:02:56.0931 3624 mpsdrv - ok
22:02:57.0461 3624 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS
22:02:57.0523 3624 MREMP50 - ok
22:02:58.0085 3624 [ C2758DF79C83A0D12A5599A040CA1818 ] MREMP50a64 C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS
22:02:58.0147 3624 MREMP50a64 - ok
22:02:58.0366 3624 MREMPR5 - ok
22:02:58.0537 3624 MRENDIS5 - ok
22:02:58.0756 3624 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS
22:02:58.0756 3624 MRESP50 - ok
22:02:58.0865 3624 [ 38BD5B32E0722752BE8465D2A6DA43D9 ] MRESP50a64 C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS
22:02:58.0865 3624 MRESP50a64 - ok
22:02:58.0990 3624 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:02:58.0990 3624 MRxDAV - ok
22:02:59.0037 3624 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:02:59.0037 3624 mrxsmb - ok
22:02:59.0099 3624 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:02:59.0115 3624 mrxsmb10 - ok
22:02:59.0146 3624 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:02:59.0146 3624 mrxsmb20 - ok
22:02:59.0193 3624 [ BCCF16D5FB1109162380E3E28DC9E4E5 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
22:02:59.0193 3624 msahci - ok
22:02:59.0208 3624 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
22:02:59.0224 3624 msdsm - ok
22:02:59.0271 3624 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:02:59.0271 3624 MSDTC - ok
22:02:59.0286 3624 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:02:59.0286 3624 Msfs - ok
22:02:59.0317 3624 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:02:59.0333 3624 mshidkmdf - ok
22:02:59.0349 3624 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
22:02:59.0349 3624 msisadrv - ok
22:02:59.0411 3624 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:02:59.0411 3624 MSiSCSI - ok
22:02:59.0427 3624 msiserver - ok
22:02:59.0442 3624 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:02:59.0442 3624 MSKSSRV - ok
22:02:59.0473 3624 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:02:59.0473 3624 MSPCLOCK - ok
22:02:59.0489 3624 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:02:59.0489 3624 MSPQM - ok
22:02:59.0505 3624 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:02:59.0505 3624 MsRPC - ok
22:02:59.0520 3624 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:02:59.0520 3624 mssmbios - ok
22:02:59.0583 3624 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:02:59.0583 3624 MSTEE - ok
22:02:59.0598 3624 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:02:59.0598 3624 MTConfig - ok
22:02:59.0614 3624 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:02:59.0614 3624 Mup - ok
22:02:59.0676 3624 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
22:02:59.0676 3624 napagent - ok
22:02:59.0754 3624 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:02:59.0754 3624 NativeWifiP - ok
22:02:59.0817 3624 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:02:59.0848 3624 NDIS - ok
22:02:59.0879 3624 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:02:59.0879 3624 NdisCap - ok
22:02:59.0926 3624 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:02:59.0926 3624 NdisTapi - ok
22:02:59.0941 3624 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:02:59.0941 3624 Ndisuio - ok
22:03:00.0004 3624 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:03:00.0004 3624 NdisWan - ok
22:03:00.0019 3624 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:03:00.0019 3624 NDProxy - ok
22:03:00.0066 3624 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:03:00.0066 3624 NetBIOS - ok
22:03:00.0129 3624 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:03:00.0129 3624 NetBT - ok
22:03:00.0160 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
22:03:00.0160 3624 Netlogon - ok
22:03:00.0223 3624 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:03:00.0239 3624 Netman - ok
22:03:00.0379 3624 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:03:00.0395 3624 netprofm - ok
22:03:00.0426 3624 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:03:00.0473 3624 NetTcpPortSharing - ok
22:03:00.0504 3624 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:03:00.0520 3624 nfrd960 - ok
22:03:00.0566 3624 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:03:00.0566 3624 NlaSvc - ok
22:03:00.0613 3624 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:03:00.0613 3624 Npfs - ok
22:03:00.0754 3624 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:03:00.0769 3624 nsi - ok
22:03:00.0800 3624 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:03:00.0800 3624 nsiproxy - ok
22:03:01.0254 3624 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:03:01.0550 3624 Ntfs - ok
22:03:01.0597 3624 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:03:01.0597 3624 Null - ok
22:03:01.0675 3624 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:03:01.0706 3624 nvraid - ok
22:03:01.0753 3624 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:03:01.0753 3624 nvstor - ok
22:03:01.0784 3624 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
22:03:01.0784 3624 nv_agp - ok
22:03:01.0800 3624 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
22:03:01.0815 3624 ohci1394 - ok
22:03:01.0878 3624 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:03:01.0893 3624 ose - ok
22:03:02.0427 3624 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:03:02.0557 3624 osppsvc - ok
22:03:02.0717 3624 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:03:02.0717 3624 p2pimsvc - ok
22:03:02.0757 3624 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:03:02.0767 3624 p2psvc - ok
22:03:02.0807 3624 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:03:02.0807 3624 Parport - ok
22:03:02.0847 3624 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:03:02.0847 3624 partmgr - ok
22:03:02.0887 3624 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:03:02.0897 3624 PcaSvc - ok
22:03:02.0977 3624 [ BAE04007A679893E975A2B75E9E001E9 ] pcCMService C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
22:03:02.0987 3624 pcCMService - ok
22:03:03.0057 3624 [ 3BEA1D461531D1D26F5695BB9CA97A18 ] pcCMService64 C:\Program Files\Common Files\Motive\pcCMService.exe
22:03:03.0057 3624 pcCMService64 - ok
22:03:03.0157 3624 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
22:03:03.0157 3624 pci - ok
22:03:03.0207 3624 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
22:03:03.0207 3624 pciide - ok
22:03:03.0237 3624 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:03:03.0247 3624 pcmcia - ok
22:03:03.0268 3624 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:03:03.0268 3624 pcw - ok
22:03:03.0298 3624 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:03:03.0298 3624 PEAUTH - ok
22:03:03.0428 3624 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:03:03.0438 3624 PerfHost - ok
22:03:03.0508 3624 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
22:03:03.0528 3624 pla - ok
22:03:03.0638 3624 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:03:03.0648 3624 PlugPlay - ok
22:03:03.0678 3624 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:03:03.0678 3624 PNRPAutoReg - ok
22:03:03.0708 3624 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:03:03.0708 3624 PNRPsvc - ok
22:03:03.0848 3624 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:03:03.0848 3624 PolicyAgent - ok
22:03:03.0938 3624 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:03:03.0948 3624 Power - ok
22:03:03.0988 3624 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:03:03.0998 3624 PptpMiniport - ok
22:03:04.0008 3624 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:03:04.0008 3624 Processor - ok
22:03:04.0058 3624 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
22:03:04.0058 3624 ProfSvc - ok
22:03:04.0068 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:03:04.0068 3624 ProtectedStorage - ok
22:03:04.0118 3624 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:03:04.0118 3624 Psched - ok
22:03:04.0178 3624 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
22:03:04.0178 3624 PxHlpa64 - ok
22:03:04.0328 3624 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:03:04.0378 3624 ql2300 - ok
22:03:04.0417 3624 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:03:04.0419 3624 ql40xx - ok
22:03:04.0460 3624 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:03:04.0460 3624 QWAVE - ok
22:03:04.0470 3624 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:03:04.0480 3624 QWAVEdrv - ok
22:03:04.0510 3624 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:03:04.0510 3624 RasAcd - ok
22:03:04.0550 3624 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:03:04.0550 3624 RasAgileVpn - ok
22:03:04.0590 3624 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:03:04.0600 3624 RasAuto - ok
22:03:04.0610 3624 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:03:04.0610 3624 Rasl2tp - ok
22:03:04.0630 3624 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
22:03:04.0640 3624 RasMan - ok
22:03:04.0720 3624 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:03:04.0720 3624 RasPppoe - ok
22:03:04.0750 3624 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:03:04.0750 3624 RasSstp - ok
22:03:04.0770 3624 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:03:04.0770 3624 rdbss - ok
22:03:04.0800 3624 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:03:04.0800 3624 rdpbus - ok
22:03:04.0830 3624 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:03:04.0830 3624 RDPCDD - ok
22:03:04.0850 3624 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:03:04.0850 3624 RDPENCDD - ok
22:03:04.0870 3624 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:03:04.0870 3624 RDPREFMP - ok
22:03:04.0940 3624 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:03:04.0970 3624 RDPWD - ok
22:03:05.0000 3624 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:03:05.0010 3624 rdyboost - ok
22:03:05.0060 3624 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:03:05.0060 3624 RemoteAccess - ok
22:03:05.0100 3624 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:03:05.0100 3624 RemoteRegistry - ok
22:03:05.0140 3624 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:03:05.0140 3624 RpcEptMapper - ok
22:03:05.0170 3624 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:03:05.0170 3624 RpcLocator - ok
22:03:05.0210 3624 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
22:03:05.0220 3624 RpcSs - ok
22:03:05.0260 3624 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:03:05.0260 3624 rspndr - ok
22:03:05.0300 3624 [ 22D6B47D004A6568C500680BE2972854 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
22:03:05.0300 3624 RSUSBSTOR - ok
22:03:05.0310 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
22:03:05.0310 3624 SamSs - ok
22:03:05.0340 3624 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
22:03:05.0340 3624 sbp2port - ok
22:03:05.0360 3624 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:03:05.0360 3624 SCardSvr - ok
22:03:05.0380 3624 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:03:05.0380 3624 scfilter - ok
22:03:05.0440 3624 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
22:03:05.0440 3624 Schedule - ok
22:03:05.0480 3624 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:03:05.0480 3624 SCPolicySvc - ok
22:03:05.0520 3624 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:03:05.0520 3624 SDRSVC - ok
22:03:05.0570 3624 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:03:05.0570 3624 secdrv - ok
22:03:05.0590 3624 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
22:03:05.0590 3624 seclogon - ok
22:03:05.0710 3624 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:03:05.0720 3624 SENS - ok
22:03:05.0740 3624 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:03:05.0750 3624 SensrSvc - ok
22:03:05.0800 3624 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:03:05.0800 3624 Serenum - ok
22:03:05.0820 3624 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:03:05.0820 3624 Serial - ok
22:03:05.0850 3624 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:03:05.0850 3624 sermouse - ok
22:03:05.0880 3624 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
22:03:05.0890 3624 SessionEnv - ok
22:03:05.0910 3624 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
22:03:05.0910 3624 sffdisk - ok
22:03:05.0970 3624 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
22:03:05.0970 3624 sffp_mmc - ok
22:03:05.0980 3624 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
22:03:05.0980 3624 sffp_sd - ok
22:03:06.0020 3624 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:03:06.0020 3624 sfloppy - ok
22:03:06.0090 3624 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
22:03:06.0090 3624 Sftfs - ok
22:03:06.0220 3624 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:03:06.0220 3624 sftlist - ok
22:03:06.0330 3624 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
22:03:06.0330 3624 Sftplay - ok
22:03:06.0360 3624 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
22:03:06.0360 3624 Sftredir - ok
22:03:06.0460 3624 [ CF53DCCE55E500F51089774E851E7363 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
22:03:06.0460 3624 SftService - ok
22:03:06.0510 3624 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
22:03:06.0510 3624 Sftvol - ok
22:03:06.0560 3624 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:03:06.0560 3624 sftvsa - ok
22:03:06.0600 3624 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:03:06.0610 3624 ShellHWDetection - ok
22:03:06.0640 3624 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:03:06.0830 3624 SiSRaid2 - ok
22:03:06.0870 3624 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:03:07.0130 3624 SiSRaid4 - ok
22:03:07.0591 3624 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:03:07.0611 3624 Skype C2C Service - ok
22:03:07.0833 3624 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:03:07.0833 3624 SkypeUpdate - ok
22:03:07.0863 3624 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:03:07.0863 3624 Smb - ok
22:03:07.0903 3624 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:03:07.0913 3624 SNMPTRAP - ok
22:03:07.0933 3624 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:03:07.0933 3624 spldr - ok
22:03:07.0973 3624 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
22:03:07.0983 3624 Spooler - ok
22:03:08.0143 3624 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
22:03:08.0163 3624 sppsvc - ok
22:03:08.0195 3624 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:03:08.0205 3624 sppuinotify - ok
22:03:08.0305 3624 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellComms C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
22:03:08.0305 3624 sprtsvc_DellComms - ok
22:03:08.0415 3624 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
22:03:08.0415 3624 sprtsvc_DellSupportCenter - ok
22:03:08.0475 3624 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:03:08.0475 3624 srv - ok
22:03:08.0525 3624 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:03:08.0525 3624 srv2 - ok
22:03:08.0605 3624 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:03:08.0605 3624 srvnet - ok
22:03:08.0625 3624 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:03:08.0635 3624 SSDPSRV - ok
22:03:08.0945 3624 [ A4C4A1FEDFBED04B39EFAE9F1311ED5E ] ssfmonm C:\Windows\system32\DRIVERS\ssfmonm.sys
22:03:08.0945 3624 ssfmonm - ok
22:03:08.0965 3624 [ 1CC88F50BD4E6FD6EAC5C5365CEB6583 ] ssidrv C:\Windows\system32\DRIVERS\ssidrv.sys
22:03:08.0965 3624 ssidrv - ok
22:03:08.0995 3624 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:03:08.0995 3624 SstpSvc - ok
22:03:09.0025 3624 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:03:09.0025 3624 stexstor - ok
22:03:09.0065 3624 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
22:03:09.0075 3624 stisvc - ok
22:03:09.0135 3624 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:03:09.0135 3624 swenum - ok
22:03:09.0185 3624 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:03:09.0185 3624 swprv - ok
22:03:09.0325 3624 [ C25866BDF0E818E02BB8E76845D26E54 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:03:09.0325 3624 SynTP - ok
22:03:09.0405 3624 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
22:03:09.0415 3624 SysMain - ok
22:03:09.0487 3624 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:03:09.0487 3624 TabletInputService - ok
22:03:09.0527 3624 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
22:03:09.0527 3624 TapiSrv - ok
22:03:09.0557 3624 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:03:09.0557 3624 TBS - ok
22:03:09.0747 3624 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:03:09.0807 3624 Tcpip - ok
22:03:09.0877 3624 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:03:09.0897 3624 TCPIP6 - ok
22:03:09.0949 3624 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:03:09.0949 3624 tcpipreg - ok
22:03:09.0999 3624 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:03:09.0999 3624 TDPIPE - ok
22:03:10.0029 3624 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:03:10.0029 3624 TDTCP - ok
22:03:10.0039 3624 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:03:10.0039 3624 tdx - ok
22:03:10.0059 3624 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:03:10.0059 3624 TermDD - ok
22:03:10.0129 3624 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
22:03:10.0129 3624 TermService - ok
22:03:10.0149 3624 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:03:10.0149 3624 Themes - ok
22:03:10.0159 3624 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:03:10.0159 3624 THREADORDER - ok
22:03:10.0189 3624 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:03:10.0199 3624 TrkWks - ok
22:03:10.0319 3624 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:03:10.0329 3624 TrustedInstaller - ok
22:03:10.0359 3624 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:03:10.0359 3624 tssecsrv - ok
22:03:10.0411 3624 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:03:10.0411 3624 tunnel - ok
22:03:10.0421 3624 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:03:10.0431 3624 uagp35 - ok
22:03:10.0451 3624 [ 31BA4A33AFAB6A69EA092B18017F737F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:03:10.0461 3624 udfs - ok
22:03:10.0501 3624 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:03:10.0501 3624 UI0Detect - ok
22:03:10.0541 3624 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
22:03:10.0551 3624 uliagpkx - ok
22:03:10.0571 3624 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:03:10.0581 3624 umbus - ok
22:03:10.0601 3624 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:03:10.0601 3624 UmPass - ok
22:03:10.0891 3624 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:03:10.0901 3624 UNS - ok
22:03:10.0941 3624 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:03:10.0941 3624 upnphost - ok
22:03:11.0001 3624 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:03:11.0001 3624 USBAAPL64 - ok
22:03:11.0051 3624 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:03:11.0051 3624 usbccgp - ok
22:03:11.0121 3624 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
22:03:11.0131 3624 usbcir - ok
22:03:11.0181 3624 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:03:11.0181 3624 usbehci - ok
22:03:11.0291 3624 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:03:11.0291 3624 usbhub - ok
22:03:11.0331 3624 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:03:11.0331 3624 usbohci - ok
22:03:11.0361 3624 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:03:11.0361 3624 usbprint - ok
22:03:11.0411 3624 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:03:11.0411 3624 usbscan - ok
22:03:11.0451 3624 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:03:11.0451 3624 USBSTOR - ok
22:03:11.0491 3624 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:03:11.0491 3624 usbuhci - ok
22:03:11.0531 3624 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
22:03:11.0531 3624 usbvideo - ok
22:03:11.0551 3624 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:03:11.0551 3624 UxSms - ok
22:03:11.0581 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
22:03:11.0581 3624 VaultSvc - ok
22:03:11.0631 3624 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
22:03:11.0651 3624 vdrvroot - ok
22:03:11.0761 3624 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
22:03:11.0771 3624 vds - ok
22:03:11.0801 3624 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:03:11.0801 3624 vga - ok
22:03:11.0821 3624 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:03:11.0821 3624 VgaSave - ok
22:03:11.0851 3624 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
22:03:11.0851 3624 vhdmp - ok
22:03:11.0871 3624 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
22:03:11.0871 3624 viaide - ok
22:03:11.0911 3624 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
22:03:11.0911 3624 volmgr - ok
22:03:11.0941 3624 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:03:11.0951 3624 volmgrx - ok
22:03:12.0021 3624 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:03:12.0021 3624 volsnap - ok
22:03:12.0061 3624 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:03:12.0061 3624 vsmraid - ok
22:03:12.0191 3624 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
22:03:12.0251 3624 VSS - ok
22:03:12.0311 3624 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:03:12.0311 3624 vwifibus - ok
22:03:12.0341 3624 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:03:12.0341 3624 vwififlt - ok
22:03:12.0441 3624 [ 9D7DE074F07ECB7A28DBDE3C5F92F206 ] W32Serv C:\Windows\msisear.exe
22:03:12.0441 3624 W32Serv - ok
22:03:12.0511 3624 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:03:12.0511 3624 W32Time - ok
22:03:12.0541 3624 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:03:12.0541 3624 WacomPen - ok
22:03:12.0571 3624 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:03:12.0571 3624 WANARP - ok
22:03:12.0581 3624 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:03:12.0581 3624 Wanarpv6 - ok
22:03:12.0721 3624 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:03:12.0761 3624 WatAdminSvc - ok
22:03:12.0831 3624 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
22:03:12.0871 3624 wbengine - ok
22:03:13.0031 3624 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:03:13.0041 3624 WbioSrvc - ok
22:03:13.0081 3624 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:03:13.0091 3624 wcncsvc - ok
22:03:13.0121 3624 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:03:13.0121 3624 WcsPlugInService - ok
22:03:13.0171 3624 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:03:13.0171 3624 Wd - ok
22:03:13.0231 3624 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:03:13.0241 3624 Wdf01000 - ok
22:03:13.0351 3624 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:03:13.0351 3624 WdiServiceHost - ok
22:03:13.0351 3624 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:03:13.0361 3624 WdiSystemHost - ok
22:03:13.0381 3624 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
22:03:13.0391 3624 WebClient - ok
22:03:13.0561 3624 [ BE0050EA38AC55F12774B625CB4D7563 ] WebrootSpySweeperService C:\Program Files (x86)\Webroot\Security\current\plugins\antimalware\AEI.exe
22:03:13.0584 3624 WebrootSpySweeperService - ok
22:03:13.0673 3624 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:03:13.0683 3624 Wecsvc - ok
22:03:13.0703 3624 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:03:13.0713 3624 wercplsupport - ok
22:03:13.0733 3624 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:03:13.0733 3624 WerSvc - ok
22:03:13.0773 3624 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:03:13.0773 3624 WfpLwf - ok
22:03:13.0823 3624 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
22:03:13.0833 3624 WimFltr - ok
22:03:13.0843 3624 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:03:13.0843 3624 WIMMount - ok
22:03:13.0873 3624 WinDefend - ok
22:03:13.0883 3624 WinHttpAutoProxySvc - ok
22:03:13.0933 3624 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:03:13.0943 3624 Winmgmt - ok
22:03:14.0023 3624 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
22:03:14.0083 3624 WinRM - ok
22:03:14.0133 3624 [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:03:14.0143 3624 WinUsb - ok
22:03:14.0183 3624 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:03:14.0193 3624 Wlansvc - ok
22:03:14.0453 3624 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:03:14.0463 3624 wlidsvc - ok
22:03:14.0505 3624 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:03:14.0505 3624 WmiAcpi - ok
22:03:14.0565 3624 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:03:14.0565 3624 wmiApSrv - ok
22:03:14.0605 3624 WMPNetworkSvc - ok
22:03:14.0645 3624 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:03:14.0665 3624 WPCSvc - ok
22:03:14.0705 3624 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:03:14.0705 3624 WPDBusEnum - ok
22:03:15.0325 3624 [ D3B14A9CA2A03F8D0385C6BAA90FE928 ] WRConsumerService C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
22:03:15.0345 3624 WRConsumerService - ok
22:03:15.0375 3624 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:03:15.0375 3624 ws2ifsl - ok
22:03:15.0435 3624 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
22:03:15.0435 3624 wscsvc - ok
22:03:15.0455 3624 WSearch - ok
22:03:15.0577 3624 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:03:15.0597 3624 wuauserv - ok
22:03:15.0627 3624 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:03:15.0627 3624 WudfPf - ok
22:03:15.0717 3624 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:03:15.0717 3624 WUDFRd - ok
22:03:15.0757 3624 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:03:15.0757 3624 wudfsvc - ok
22:03:15.0827 3624 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:03:15.0837 3624 WwanSvc - ok
22:03:15.0867 3624 ================ Scan global ===============================
22:03:15.0897 3624 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:03:15.0947 3624 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\Windows\system32\winsrv.dll
22:03:15.0957 3624 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\Windows\system32\winsrv.dll
22:03:16.0007 3624 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:03:16.0047 3624 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:03:16.0047 3624 [Global] - ok
22:03:16.0057 3624 ================ Scan MBR ==================================
22:03:16.0067 3624 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:03:16.0067 3624 Suspicious mbr (Forged): \Device\Harddisk0\DR0
22:03:16.0127 3624 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
22:03:16.0127 3624 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
22:03:16.0137 3624 ================ Scan VBR ==================================
22:03:16.0157 3624 [ 88BCB367F174286AE07A746609656CD1 ] \Device\Harddisk0\DR0\Partition1
22:03:16.0157 3624 \Device\Harddisk0\DR0\Partition1 - ok
22:03:16.0187 3624 [ BB14EE8745498D2317F6879F7F6031A2 ] \Device\Harddisk0\DR0\Partition2
22:03:16.0197 3624 \Device\Harddisk0\DR0\Partition2 - ok
22:03:16.0197 3624 ================ Scan active images ========================
22:03:16.0197 3624 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
22:03:16.0197 3624 C:\Windows\System32\drivers\crashdmp.sys - ok
22:03:16.0197 3624 [ ABBF174CB394F5C437410A788B7E404A ] C:\Windows\System32\drivers\iaStor.sys
22:03:16.0197 3624 C:\Windows\System32\drivers\iaStor.sys - ok
22:03:16.0207 3624 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
22:03:16.0207 3624 C:\Windows\System32\drivers\dumpfve.sys - ok
22:03:16.0207 3624 [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
22:03:16.0207 3624 C:\Windows\System32\drivers\cdrom.sys - ok
22:03:16.0217 3624 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
22:03:16.0217 3624 C:\Windows\System32\drivers\null.sys - ok
22:03:16.0217 3624 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
22:03:16.0217 3624 C:\Windows\System32\drivers\beep.sys - ok
22:03:16.0227 3624 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
22:03:16.0227 3624 C:\Windows\System32\drivers\vga.sys - ok
22:03:16.0227 3624 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
22:03:16.0227 3624 C:\Windows\System32\drivers\videoprt.sys - ok
22:03:16.0237 3624 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
22:03:16.0237 3624 C:\Windows\System32\drivers\watchdog.sys - ok
22:03:16.0237 3624 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
22:03:16.0237 3624 C:\Windows\System32\drivers\RDPCDD.sys - ok
22:03:16.0247 3624 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
22:03:16.0247 3624 C:\Windows\System32\drivers\RDPENCDD.sys - ok
22:03:16.0247 3624 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
22:03:16.0247 3624 C:\Windows\System32\drivers\RDPREFMP.sys - ok
22:03:16.0257 3624 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
22:03:16.0257 3624 C:\Windows\System32\drivers\msfs.sys - ok
22:03:16.0257 3624 [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
22:03:16.0257 3624 C:\Windows\System32\drivers\netbt.sys - ok
22:03:16.0267 3624 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
22:03:16.0267 3624 C:\Windows\System32\drivers\npfs.sys - ok
22:03:16.0267 3624 [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
22:03:16.0267 3624 C:\Windows\System32\drivers\tdi.sys - ok
22:03:16.0277 3624 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
22:03:16.0277 3624 C:\Windows\System32\drivers\tdx.sys - ok
22:03:16.0277 3624 [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
22:03:16.0277 3624 C:\Windows\System32\drivers\afd.sys - ok
22:03:16.0287 3624 [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
22:03:16.0287 3624 C:\Windows\System32\drivers\pacer.sys - ok
22:03:16.0287 3624 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
22:03:16.0287 3624 C:\Windows\System32\drivers\wfplwf.sys - ok
22:03:16.0297 3624 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
22:03:16.0297 3624 C:\Windows\System32\drivers\ws2ifsl.sys - ok
22:03:16.0307 3624 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
22:03:16.0307 3624 C:\Windows\System32\drivers\netbios.sys - ok
22:03:16.0307 3624 [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
22:03:16.0307 3624 C:\Windows\System32\drivers\rdbss.sys - ok
22:03:16.0307 3624 [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
22:03:16.0307 3624 C:\Windows\System32\drivers\termdd.sys - ok
22:03:16.0317 3624 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
22:03:16.0317 3624 C:\Windows\System32\drivers\vwififlt.sys - ok
22:03:16.0317 3624 [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
22:03:16.0317 3624 C:\Windows\System32\drivers\wanarp.sys - ok
22:03:16.0327 3624 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
22:03:16.0327 3624 C:\Windows\System32\drivers\blbdrive.sys - ok
22:03:16.0327 3624 [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
22:03:16.0327 3624 C:\Windows\System32\drivers\dfsc.sys - ok
22:03:16.0337 3624 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
22:03:16.0337 3624 C:\Windows\System32\drivers\discache.sys - ok
22:03:16.0337 3624 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
22:03:16.0337 3624 C:\Windows\System32\drivers\mssmbios.sys - ok
22:03:16.0347 3624 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
22:03:16.0347 3624 C:\Windows\System32\drivers\nsiproxy.sys - ok
22:03:16.0347 3624 [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
22:03:16.0347 3624 C:\Windows\System32\drivers\tunnel.sys - ok
22:03:16.0357 3624 [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
22:03:16.0357 3624 C:\Windows\System32\ntdll.dll - ok
22:03:16.0357 3624 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
22:03:16.0357 3624 C:\Windows\System32\smss.exe - ok
22:03:16.0357 3624 [ 09CE164AFA8483E41808784D7FCA154E ] C:\Windows\System32\drivers\igdkmd64.sys
22:03:16.0357 3624 C:\Windows\System32\drivers\igdkmd64.sys - ok
22:03:16.0367 3624 [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
22:03:16.0367 3624 C:\Windows\System32\drivers\dxgkrnl.sys - ok
22:03:16.0367 3624 [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
22:03:16.0367 3624 C:\Windows\System32\drivers\dxgmms1.sys - ok
22:03:16.0377 3624 [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
22:03:16.0377 3624 C:\Windows\System32\drivers\HECIx64.sys - ok
22:03:16.0377 3624 [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
22:03:16.0377 3624 C:\Windows\System32\drivers\hdaudbus.sys - ok
22:03:16.0387 3624 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] C:\Windows\System32\drivers\usbehci.sys
22:03:16.0387 3624 C:\Windows\System32\drivers\usbehci.sys - ok
22:03:16.0387 3624 [ B37C3BF3FFC97177B1A9C016B7C8CDD6 ] C:\Windows\System32\drivers\usbport.sys
22:03:16.0387 3624 C:\Windows\System32\drivers\usbport.sys - ok
22:03:16.0397 3624 [ 8B5D16D20774FC3727F44E161BE2C0AC ] C:\Windows\System32\drivers\BCMWL664.SYS
22:03:16.0397 3624 C:\Windows\System32\drivers\BCMWL664.SYS - ok
22:03:16.0407 3624 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
22:03:16.0407 3624 C:\Windows\System32\drivers\i8042prt.sys - ok
22:03:16.0407 3624 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
22:03:16.0407 3624 C:\Windows\System32\drivers\kbdclass.sys - ok
22:03:16.0417 3624 [ 39918DB0EFCF045A1CE6FABBF339F975 ] C:\Windows\System32\drivers\L1C62x64.sys
22:03:16.0417 3624 C:\Windows\System32\drivers\L1C62x64.sys - ok
22:03:16.0417 3624 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
22:03:16.0417 3624 C:\Windows\System32\drivers\vwifibus.sys - ok
22:03:16.0427 3624 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
22:03:16.0427 3624 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
22:03:16.0427 3624 [ DD587A55390ED2295BCE6D36AD567DA9 ] C:\Windows\System32\drivers\Impcd.sys
22:03:16.0427 3624 C:\Windows\System32\drivers\Impcd.sys - ok
22:03:16.0427 3624 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
22:03:16.0427 3624 C:\Windows\System32\drivers\mouclass.sys - ok
22:03:16.0441 3624 [ C25866BDF0E818E02BB8E76845D26E54 ] C:\Windows\System32\drivers\SynTP.sys
22:03:16.0441 3624 C:\Windows\System32\drivers\SynTP.sys - ok
22:03:16.0446 3624 [ F96F7835C8818895C47F6213E3A01F5D ] C:\Windows\System32\drivers\usbd.sys
22:03:16.0446 3624 C:\Windows\System32\drivers\usbd.sys - ok
22:03:16.0451 3624 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
22:03:16.0451 3624 C:\Windows\System32\drivers\agilevpn.sys - ok
22:03:16.0455 3624 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
22:03:16.0455 3624 C:\Windows\System32\drivers\CmBatt.sys - ok
22:03:16.0459 3624 [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
22:03:16.0459 3624 C:\Windows\System32\drivers\CompositeBus.sys - ok
22:03:16.0459 3624 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
22:03:16.0459 3624 C:\Windows\System32\drivers\intelppm.sys - ok
22:03:16.0469 3624 [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
22:03:16.0469 3624 C:\Windows\System32\drivers\rasl2tp.sys - ok
22:03:16.0469 3624 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
22:03:16.0469 3624 C:\Windows\System32\drivers\wmiacpi.sys - ok
22:03:16.0469 3624 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
22:03:16.0469 3624 C:\Windows\System32\drivers\ndistapi.sys - ok
22:03:16.0479 3624 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
22:03:16.0479 3624 C:\Windows\System32\drivers\ndiswan.sys - ok
22:03:16.0479 3624 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
22:03:16.0479 3624 C:\Windows\System32\drivers\raspppoe.sys - ok
22:03:16.0489 3624 [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
22:03:16.0489 3624 C:\Windows\System32\drivers\raspptp.sys - ok
22:03:16.0489 3624 [ D224B2E6BB543F1D8F1177D57FEC2950 ] C:\Windows\System32\drivers\bcmvwl64.sys
22:03:16.0489 3624 C:\Windows\System32\drivers\bcmvwl64.sys - ok
22:03:16.0499 3624 [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
22:03:16.0499 3624 C:\Windows\System32\drivers\ks.sys - ok
22:03:16.0499 3624 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
22:03:16.0499 3624 C:\Windows\System32\drivers\rassstp.sys - ok
22:03:16.0509 3624 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
22:03:16.0509 3624 C:\Windows\System32\drivers\swenum.sys - ok
22:03:16.0509 3624 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
22:03:16.0509 3624 C:\Windows\System32\drivers\umbus.sys - ok
22:03:16.0519 3624 [ 6B7A8A99C4A459E73C286A6763EA24CC ] C:\Windows\System32\drivers\usbhub.sys
22:03:16.0519 3624 C:\Windows\System32\drivers\usbhub.sys - ok
22:03:16.0519 3624 [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
22:03:16.0519 3624 C:\Windows\System32\drivers\ndproxy.sys - ok
22:03:16.0529 3624 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
22:03:16.0529 3624 C:\Windows\System32\drivers\drmk.sys - ok
22:03:16.0529 3624 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
22:03:16.0529 3624 C:\Windows\System32\drivers\portcls.sys - ok
22:03:16.0539 3624 [ 6E4CCB3AFF07E2B9F2A937385C84B573 ] C:\Windows\System32\drivers\RTKVHD64.sys
22:03:16.0539 3624 C:\Windows\System32\drivers\RTKVHD64.sys - ok
22:03:16.0539 3624 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
22:03:16.0539 3624 C:\Windows\System32\drivers\ksthunk.sys - ok
22:03:16.0549 3624 [ 58CF58DEE26C909BD6F977B61D246295 ] C:\Windows\System32\drivers\IntcDAud.sys
22:03:16.0549 3624 C:\Windows\System32\drivers\IntcDAud.sys - ok
22:03:16.0549 3624 [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
22:03:16.0549 3624 C:\Windows\System32\autochk.exe - ok
22:03:16.0559 3624 [ 20BAEF7AE7848C873B6368A258230306 ] C:\Windows\System32\SsiEfr.exe
22:03:16.0559 3624 C:\Windows\System32\SsiEfr.exe - ok
22:03:16.0559 3624 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] C:\Windows\System32\drivers\usbccgp.sys
22:03:16.0559 3624 C:\Windows\System32\drivers\usbccgp.sys - ok
22:03:16.0569 3624 [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
22:03:16.0569 3624 C:\Windows\System32\ws2_32.dll - ok
22:03:16.0569 3624 [ ED5CF92396A62F4C15110DCDB5E854D9 ] C:\Windows\System32\drivers\CtClsFlt.sys
22:03:16.0569 3624 C:\Windows\System32\drivers\CtClsFlt.sys - ok
22:03:16.0579 3624 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] C:\Windows\System32\drivers\usbvideo.sys
22:03:16.0579 3624 C:\Windows\System32\drivers\usbvideo.sys - ok
22:03:16.0579 3624 [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
22:03:16.0579 3624 C:\Windows\System32\rpcrt4.dll - ok
22:03:16.0579 3624 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
22:03:16.0579 3624 C:\Windows\System32\imm32.dll - ok
22:03:16.0589 3624 [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
22:03:16.0589 3624 C:\Windows\System32\shlwapi.dll - ok
22:03:16.0599 3624 [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
22:03:16.0599 3624 C:\Windows\System32\user32.dll - ok
22:03:16.0599 3624 [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
22:03:16.0599 3624 C:\Windows\System32\ole32.dll - ok
22:03:16.0599 3624 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
22:03:16.0599 3624 C:\Windows\System32\lpk.dll - ok
22:03:16.0609 3624 [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
22:03:16.0609 3624 C:\Windows\System32\oleaut32.dll - ok
22:03:16.0609 3624 [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
22:03:16.0609 3624 C:\Windows\System32\gdi32.dll - ok
22:03:16.0619 3624 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
22:03:16.0619 3624 C:\Windows\System32\Wldap32.dll - ok
22:03:16.0619 3624 [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
22:03:16.0619 3624 C:\Windows\System32\setupapi.dll - ok
22:03:16.0629 3624 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
22:03:16.0629 3624 C:\Windows\System32\advapi32.dll - ok
22:03:16.0629 3624 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
22:03:16.0629 3624 C:\Windows\System32\comdlg32.dll - ok
22:03:16.0639 3624 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
22:03:16.0639 3624 C:\Windows\System32\normaliz.dll - ok
22:03:16.0639 3624 [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
22:03:16.0639 3624 C:\Windows\System32\msvcrt.dll - ok
22:03:16.0649 3624 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
22:03:16.0649 3624 C:\Windows\System32\sechost.dll - ok
22:03:16.0649 3624 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
22:03:16.0649 3624 C:\Windows\System32\clbcatq.dll - ok
22:03:16.0659 3624 [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
22:03:16.0659 3624 C:\Windows\System32\imagehlp.dll - ok
22:03:16.0659 3624 [ 0D5335A61B9D69A61C683A6AB440E3A6 ] C:\Windows\System32\wininet.dll
22:03:16.0659 3624 C:\Windows\System32\wininet.dll - ok
22:03:16.0669 3624 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
22:03:16.0669 3624 C:\Windows\System32\psapi.dll - ok
22:03:16.0669 3624 [ 1DDCACAB8DA5399E5521051923016B18 ] C:\Windows\System32\kernel32.dll
22:03:16.0669 3624 C:\Windows\System32\kernel32.dll - ok
22:03:16.0679 3624 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
22:03:16.0679 3624 C:\Windows\System32\nsi.dll - ok
22:03:16.0679 3624 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C ] C:\Windows\System32\usp10.dll
22:03:16.0679 3624 C:\Windows\System32\usp10.dll - ok
22:03:16.0679 3624 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
22:03:16.0679 3624 C:\Windows\System32\msctf.dll - ok
22:03:16.0689 3624 [ 0FC3CDE9C6DE61E55B175CB95CD680CC ] C:\Windows\System32\urlmon.dll
22:03:16.0689 3624 C:\Windows\System32\urlmon.dll - ok
22:03:16.0689 3624 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
22:03:16.0689 3624 C:\Windows\System32\difxapi.dll - ok
22:03:16.0699 3624 [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
22:03:16.0699 3624 C:\Windows\System32\shell32.dll - ok
22:03:16.0699 3624 [ CC366534D902153579CE1DB99429521B ] C:\Windows\System32\iertutil.dll
22:03:16.0699 3624 C:\Windows\System32\iertutil.dll - ok
22:03:16.0709 3624 [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
22:03:16.0709 3624 C:\Windows\System32\cfgmgr32.dll - ok
22:03:16.0709 3624 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
22:03:16.0709 3624 C:\Windows\System32\comctl32.dll - ok
22:03:16.0709 3624 [ BEF628534A47580F5BBF16719CE8DD95 ] C:\Windows\System32\KernelBase.dll
22:03:16.0719 3624 C:\Windows\System32\KernelBase.dll - ok
22:03:16.0719 3624 [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
22:03:16.0719 3624 C:\Windows\System32\crypt32.dll - ok
22:03:16.0719 3624 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
22:03:16.0719 3624 C:\Windows\System32\devobj.dll - ok
22:03:16.0729 3624 [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
22:03:16.0729 3624 C:\Windows\System32\wintrust.dll - ok
22:03:16.0729 3624 [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
22:03:16.0729 3624 C:\Windows\System32\msasn1.dll - ok
22:03:16.0739 3624 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
22:03:16.0739 3624 C:\Windows\SysWOW64\normaliz.dll - ok
22:03:16.0739 3624 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
22:03:16.0739 3624 C:\Windows\System32\drivers\dxapi.sys - ok
22:03:16.0749 3624 [ F8410E860A7250CC7E645C6CA4A4D9E6 ] C:\Windows\System32\win32k.sys
22:03:16.0749 3624 C:\Windows\System32\win32k.sys - ok
22:03:16.0749 3624 [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
22:03:16.0749 3624 C:\Windows\System32\csrsrv.dll - ok
22:03:16.0759 3624 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
22:03:16.0759 3624 C:\Windows\System32\csrss.exe - ok
22:03:16.0759 3624 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
22:03:16.0759 3624 C:\Windows\System32\basesrv.dll - ok
22:03:16.0759 3624 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\Windows\System32\winsrv.dll
22:03:16.0759 3624 C:\Windows\System32\winsrv.dll - ok
22:03:16.0769 3624 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
22:03:16.0769 3624 C:\Windows\System32\drivers\monitor.sys - ok
22:03:16.0769 3624 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
22:03:16.0769 3624 C:\Windows\System32\sxssrv.dll - ok
22:03:16.0779 3624 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
22:03:16.0779 3624 C:\Windows\System32\tsddd.dll - ok
22:03:16.0779 3624 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
22:03:16.0779 3624 C:\Windows\System32\wininit.exe - ok
22:03:16.0789 3624 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
22:03:16.0789 3624 C:\Windows\System32\profapi.dll - ok
22:03:16.0789 3624 [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
22:03:16.0789 3624 C:\Windows\System32\cdd.dll - ok
22:03:16.0799 3624 [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
22:03:16.0799 3624 C:\Windows\System32\KBDUS.DLL - ok
22:03:16.0799 3624 [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
22:03:16.0799 3624 C:\Windows\System32\RpcRtRemote.dll - ok
22:03:16.0809 3624 [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
22:03:16.0809 3624 C:\Windows\System32\sxs.dll - ok
22:03:16.0809 3624 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
22:03:16.0809 3624 C:\Windows\System32\WlS0WndH.dll - ok
22:03:16.0809 3624 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
22:03:16.0809 3624 C:\Windows\System32\cryptbase.dll - ok
22:03:16.0819 3624 [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
22:03:16.0819 3624 C:\Windows\System32\apphelp.dll - ok
22:03:16.0819 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
22:03:16.0819 3624 C:\Windows\System32\lsass.exe - ok
22:03:16.0829 3624 [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
22:03:16.0829 3624 C:\Windows\System32\lsm.exe - ok
22:03:16.0829 3624 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
22:03:16.0829 3624 C:\Windows\System32\services.exe - ok
22:03:16.0839 3624 [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
22:03:16.0839 3624 C:\Windows\System32\sspisrv.dll - ok
22:03:16.0839 3624 [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
22:03:16.0839 3624 C:\Windows\System32\lsasrv.dll - ok
22:03:16.0839 3624 [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
22:03:16.0839 3624 C:\Windows\System32\sspicli.dll - ok
22:03:16.0849 3624 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
22:03:16.0849 3624 C:\Windows\System32\sysntfy.dll - ok
22:03:16.0849 3624 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
22:03:16.0859 3624 C:\Windows\System32\wmsgapi.dll - ok
22:03:16.0859 3624 [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
22:03:16.0859 3624 C:\Windows\System32\scesrv.dll - ok
22:03:16.0859 3624 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
22:03:16.0859 3624 C:\Windows\System32\scext.dll - ok
22:03:16.0869 3624 [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
22:03:16.0869 3624 C:\Windows\System32\secur32.dll - ok
22:03:16.0869 3624 [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
22:03:16.0869 3624 C:\Windows\System32\samsrv.dll - ok
22:03:16.0879 3624 [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
22:03:16.0879 3624 C:\Windows\System32\srvcli.dll - ok
22:03:16.0879 3624 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
22:03:16.0879 3624 C:\Windows\System32\cryptdll.dll - ok
22:03:16.0889 3624 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
22:03:16.0889 3624 C:\Windows\System32\wevtapi.dll - ok
22:03:16.0889 3624 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
22:03:16.0889 3624 C:\Windows\System32\authz.dll - ok
22:03:16.0899 3624 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
22:03:16.0899 3624 C:\Windows\System32\cngaudit.dll - ok
22:03:16.0899 3624 [ E08926B4E52F92FF8852BECC0E2F358A ] C:\Windows\System32\ncrypt.dll
22:03:16.0899 3624 C:\Windows\System32\ncrypt.dll - ok
22:03:16.0909 3624 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
22:03:16.0909 3624 C:\Windows\System32\bcrypt.dll - ok
22:03:16.0909 3624 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
22:03:16.0909 3624 C:\Windows\System32\msprivs.dll - ok
22:03:16.0909 3624 [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
22:03:16.0909 3624 C:\Windows\System32\netjoin.dll - ok
22:03:16.0919 3624 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
22:03:16.0919 3624 C:\Windows\System32\negoexts.dll - ok
22:03:16.0919 3624 [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
22:03:16.0919 3624 C:\Windows\System32\kerberos.dll - ok
22:03:16.0929 3624 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
22:03:16.0929 3624 C:\Windows\System32\cryptsp.dll - ok
22:03:16.0929 3624 [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
22:03:16.0929 3624 C:\Windows\System32\mswsock.dll - ok
22:03:16.0929 3624 [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
22:03:16.0929 3624 C:\Windows\System32\msv1_0.dll - ok
22:03:16.0939 3624 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
22:03:16.0939 3624 C:\Windows\System32\wship6.dll - ok
22:03:16.0939 3624 [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
22:03:16.0939 3624 C:\Windows\System32\netlogon.dll - ok
22:03:16.0949 3624 [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
22:03:16.0949 3624 C:\Windows\System32\dnsapi.dll - ok
22:03:16.0949 3624 [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
22:03:16.0949 3624 C:\Windows\System32\logoncli.dll - ok
22:03:16.0959 3624 [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
22:03:16.0959 3624 C:\Windows\System32\schannel.dll - ok
22:03:16.0959 3624 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
22:03:16.0959 3624 C:\Windows\System32\wdigest.dll - ok
22:03:16.0969 3624 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
22:03:16.0969 3624 C:\Windows\System32\rsaenh.dll - ok
22:03:16.0969 3624 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
22:03:16.0969 3624 C:\Windows\System32\TSpkg.dll - ok
22:03:16.0969 3624 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
22:03:16.0969 3624 C:\Windows\System32\pku2u.dll - ok
22:03:16.0979 3624 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
22:03:16.0979 3624 C:\Windows\System32\LIVESSP.DLL - ok
22:03:16.0979 3624 [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
22:03:16.0979 3624 C:\Windows\System32\bcryptprimitives.dll - ok
22:03:16.0989 3624 [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
22:03:16.0989 3624 C:\Windows\System32\credssp.dll - ok
22:03:16.0989 3624 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
22:03:16.0989 3624 C:\Windows\System32\efslsaext.dll - ok
22:03:16.0999 3624 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
22:03:16.0999 3624 C:\Windows\System32\ubpm.dll - ok
22:03:16.0999 3624 [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
22:03:16.0999 3624 C:\Windows\System32\scecli.dll - ok
22:03:17.0009 3624 [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
22:03:17.0009 3624 C:\Windows\System32\winsta.dll - ok
22:03:17.0009 3624 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
22:03:17.0009 3624 C:\Windows\System32\svchost.exe - ok
22:03:17.0009 3624 [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
22:03:17.0009 3624 C:\Windows\System32\winlogon.exe - ok
22:03:17.0019 3624 [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
22:03:17.0019 3624 C:\Windows\System32\umpnpmgr.dll - ok
22:03:17.0019 3624 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
22:03:17.0019 3624 C:\Windows\System32\devrtl.dll - ok
22:03:17.0029 3624 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
22:03:17.0029 3624 C:\Windows\System32\SPInf.dll - ok
22:03:17.0029 3624 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
22:03:17.0029 3624 C:\Windows\System32\gpapi.dll - ok
22:03:17.0039 3624 [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
22:03:17.0039 3624 C:\Windows\System32\userenv.dll - ok
22:03:17.0039 3624 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
22:03:17.0039 3624 C:\Windows\System32\pcwum.dll - ok
22:03:17.0039 3624 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
22:03:17.0039 3624 C:\Windows\System32\umpo.dll - ok
22:03:17.0049 3624 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
22:03:17.0049 3624 C:\Windows\System32\powrprof.dll - ok
22:03:17.0049 3624 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
22:03:17.0049 3624 C:\Windows\System32\drivers\luafv.sys - ok
22:03:17.0059 3624 [ A8FE8F2783B2929B56F5370A89356CE9 ] C:\Windows\System32\drivers\mbam.sys
22:03:17.0059 3624 C:\Windows\System32\drivers\mbam.sys - ok
22:03:17.0059 3624 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
22:03:17.0059 3624 C:\Windows\System32\drivers\Sftvollh.sys - ok
22:03:17.0069 3624 [ A4C4A1FEDFBED04B39EFAE9F1311ED5E ] C:\Windows\System32\drivers\ssfmonm.sys
22:03:17.0069 3624 C:\Windows\System32\drivers\ssfmonm.sys - ok
22:03:17.0069 3624 [ D3B14A9CA2A03F8D0385C6BAA90FE928 ] C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe
22:03:17.0069 3624 C:\Program Files (x86)\Webroot\Security\Current\Framework\WRConsumerService.exe - ok
22:03:17.0079 3624 [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
22:03:17.0079 3624 C:\Windows\SysWOW64\ntdll.dll - ok
22:03:17.0079 3624 [ F90C76ED345B71CF5FBDFDEED6E7F3D6 ] C:\Windows\System32\wow64.dll
22:03:17.0079 3624 C:\Windows\System32\wow64.dll - ok
22:03:17.0079 3624 [ E9C7E340941DF96680F1AEC14DF476A0 ] C:\Windows\System32\wow64win.dll
22:03:17.0079 3624 C:\Windows\System32\wow64win.dll - ok
22:03:17.0089 3624 [ F8347C662D2E708323AA348DF8EDE676 ] C:\Windows\System32\wow64cpu.dll
22:03:17.0089 3624 C:\Windows\System32\wow64cpu.dll - ok
22:03:17.0089 3624 [ A6778FC49011313995A4D718F624CC74 ] C:\Windows\SysWOW64\kernel32.dll
22:03:17.0089 3624 C:\Windows\SysWOW64\kernel32.dll - ok
22:03:17.0099 3624 [ D1B5FE2E4EF4B8C6D5B5A9752271457E ] C:\Windows\SysWOW64\KernelBase.dll
22:03:17.0099 3624 C:\Windows\SysWOW64\KernelBase.dll - ok
22:03:17.0099 3624 [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
22:03:17.0099 3624 C:\Windows\SysWOW64\msvcrt.dll - ok
22:03:17.0109 3624 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
22:03:17.0109 3624 C:\Windows\SysWOW64\psapi.dll - ok
22:03:17.0109 3624 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
22:03:17.0109 3624 C:\Windows\SysWOW64\version.dll - ok
22:03:17.0119 3624 [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
22:03:17.0119 3624 C:\Windows\SysWOW64\rpcrt4.dll - ok
22:03:17.0119 3624 [ BEA4AEE74FEF171EB61DE1BAD8FAF427 ] C:\Program Files (x86)\Webroot\Security\Current\Framework\XMLLite.dll
22:03:17.0119 3624 C:\Program Files (x86)\Webroot\Security\Current\Framework\XMLLite.dll - ok
22:03:17.0129 3624 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
22:03:17.0129 3624 C:\Windows\SysWOW64\cryptbase.dll - ok
22:03:17.0129 3624 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
22:03:17.0129 3624 C:\Windows\SysWOW64\sechost.dll - ok
22:03:17.0139 3624 [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
22:03:17.0139 3624 C:\Windows\SysWOW64\sspicli.dll - ok
22:03:17.0139 3624 [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
22:03:17.0139 3624 C:\Windows\SysWOW64\user32.dll - ok
22:03:17.0139 3624 [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
22:03:17.0139 3624 C:\Windows\SysWOW64\gdi32.dll - ok
22:03:17.0149 3624 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
22:03:17.0149 3624 C:\Windows\SysWOW64\lpk.dll - ok
22:03:17.0149 3624 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\SysWOW64\usp10.dll
22:03:17.0149 3624 C:\Windows\SysWOW64\usp10.dll - ok
22:03:17.0159 3624 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
22:03:17.0159 3624 C:\Windows\SysWOW64\advapi32.dll - ok
22:03:17.0159 3624 [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
22:03:17.0159 3624 C:\Windows\SysWOW64\shell32.dll - ok
22:03:17.0169 3624 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
22:03:17.0169 3624 C:\Windows\SysWOW64\shlwapi.dll - ok
22:03:17.0169 3624 [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
22:03:17.0169 3624 C:\Windows\SysWOW64\ole32.dll - ok
22:03:17.0179 3624 [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
22:03:17.0179 3624 C:\Windows\SysWOW64\oleaut32.dll - ok
22:03:17.0179 3624 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
22:03:17.0179 3624 C:\Windows\SysWOW64\dbghelp.dll - ok
22:03:17.0179 3624 [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
22:03:17.0189 3624 C:\Windows\SysWOW64\netapi32.dll - ok
22:03:17.0189 3624 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
22:03:17.0189 3624 C:\Windows\SysWOW64\netutils.dll - ok
22:03:17.0189 3624 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
22:03:17.0189 3624 C:\Windows\SysWOW64\profapi.dll - ok
22:03:17.0199 3624 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
22:03:17.0199 3624 C:\Windows\SysWOW64\srvcli.dll - ok
22:03:17.0199 3624 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
22:03:17.0199 3624 C:\Windows\SysWOW64\userenv.dll - ok
22:03:17.0209 3624 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
22:03:17.0209 3624 C:\Windows\SysWOW64\wkscli.dll - ok
22:03:17.0209 3624 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
22:03:17.0209 3624 C:\Windows\SysWOW64\ws2_32.dll - ok
22:03:17.0219 3624 [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
22:03:17.0219 3624 C:\Windows\SysWOW64\crypt32.dll - ok
22:03:17.0219 3624 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
22:03:17.0219 3624 C:\Windows\SysWOW64\nsi.dll - ok
22:03:17.0219 3624 [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
22:03:17.0219 3624 C:\Windows\SysWOW64\secur32.dll - ok
22:03:17.0229 3624 [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
22:03:17.0229 3624 C:\Windows\SysWOW64\msasn1.dll - ok
22:03:17.0229 3624 [ 703CD7A8E6F8A233118E8070B5FB7C1F ] C:\Windows\SysWOW64\wininet.dll
22:03:17.0229 3624 C:\Windows\SysWOW64\wininet.dll - ok
22:03:17.0239 3624 [ F771D4EF86B229992998A98CBEA3252B ] C:\Windows\SysWOW64\urlmon.dll
22:03:17.0239 3624 C:\Windows\SysWOW64\urlmon.dll - ok
22:03:17.0239 3624 [ 4D15961921B85751AFB11D4995E2DEA6 ] C:\Windows\SysWOW64\iertutil.dll
22:03:17.0239 3624 C:\Windows\SysWOW64\iertutil.dll - ok
22:03:17.0250 3624 [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
22:03:17.0250 3624 C:\Windows\SysWOW64\winhttp.dll - ok
22:03:17.0254 3624 [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
22:03:17.0255 3624 C:\Windows\SysWOW64\webio.dll - ok
22:03:17.0259 3624 [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
22:03:17.0259 3624 C:\Windows\SysWOW64\imm32.dll - ok
22:03:17.0262 3624 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
22:03:17.0262 3624 C:\Windows\SysWOW64\msctf.dll - ok
22:03:17.0266 3624 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
22:03:17.0266 3624 C:\Windows\SysWOW64\atl.dll - ok
22:03:17.0270 3624 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
22:03:17.0270 3624 C:\Windows\SysWOW64\winmm.dll - ok

#11 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 25 December 2012 - 11:40 PM

continued

22:03:17.0275 3624 [ FF6FA8B0EFCA1C40060CF6884C4075A4 ] C:\Program Files (x86)\Webroot\Security\Current\Framework\frameworkresources.dll
22:03:17.0275 3624 C:\Program Files (x86)\Webroot\Security\Current\Framework\frameworkresources.dll - ok
22:03:17.0279 3624 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
22:03:17.0279 3624 C:\Windows\System32\drivers\WUDFPf.sys - ok
22:03:17.0284 3624 [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
22:03:17.0284 3624 C:\Windows\System32\rpcss.dll - ok
22:03:17.0288 3624 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
22:03:17.0288 3624 C:\Windows\SysWOW64\ntmarta.dll - ok
22:03:17.0294 3624 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
22:03:17.0294 3624 C:\Windows\SysWOW64\Wldap32.dll - ok
22:03:17.0300 3624 [ 9265D87F21F524D982F32E40479EBB21 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiMalware.dll
22:03:17.0300 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiMalware.dll - ok
22:03:17.0304 3624 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
22:03:17.0304 3624 C:\Windows\System32\RpcEpMap.dll - ok
22:03:17.0309 3624 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
22:03:17.0309 3624 C:\Windows\System32\wshqos.dll - ok
22:03:17.0314 3624 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
22:03:17.0314 3624 C:\Windows\System32\WSHTCPIP.DLL - ok
22:03:17.0319 3624 [ 8D6D2BA5B2801EEE770B8F018712F46A ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\antimalwareresources.dll
22:03:17.0319 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\antimalwareresources.dll - ok
22:03:17.0321 3624 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
22:03:17.0321 3624 C:\Windows\System32\FirewallAPI.dll - ok
22:03:17.0321 3624 [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
22:03:17.0321 3624 C:\Windows\System32\LogonUI.exe - ok
22:03:17.0331 3624 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
22:03:17.0331 3624 C:\Windows\System32\version.dll - ok
22:03:17.0331 3624 [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
22:03:17.0331 3624 C:\Windows\System32\authui.dll - ok
22:03:17.0341 3624 [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
22:03:17.0341 3624 C:\Windows\System32\cryptui.dll - ok
22:03:17.0341 3624 [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
22:03:17.0341 3624 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
22:03:17.0351 3624 [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
22:03:17.0351 3624 C:\Windows\System32\wevtsvc.dll - ok
22:03:17.0351 3624 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
22:03:17.0351 3624 C:\Windows\SysWOW64\propsys.dll - ok
22:03:17.0351 3624 [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
22:03:17.0351 3624 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
22:03:17.0361 3624 [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
22:03:17.0361 3624 C:\Windows\System32\profsvc.dll - ok
22:03:17.0361 3624 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
22:03:17.0361 3624 C:\Windows\SysWOW64\apphelp.dll - ok
22:03:17.0371 3624 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
22:03:17.0371 3624 C:\Windows\SysWOW64\clbcatq.dll - ok
22:03:17.0371 3624 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
22:03:17.0371 3624 C:\Windows\System32\adtschema.dll - ok
22:03:17.0381 3624 [ 9CEBF9E27A495BEEDA7E1413EE342E96 ] C:\Windows\SysWOW64\ieframe.dll
22:03:17.0381 3624 C:\Windows\SysWOW64\ieframe.dll - ok
22:03:17.0381 3624 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
22:03:17.0381 3624 C:\Windows\System32\netprofm.dll - ok
22:03:17.0391 3624 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
22:03:17.0391 3624 C:\Windows\System32\radardt.dll - ok
22:03:17.0391 3624 [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
22:03:17.0391 3624 C:\Windows\System32\audiosrv.dll - ok
22:03:17.0401 3624 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
22:03:17.0401 3624 C:\Windows\System32\MMDevAPI.dll - ok
22:03:17.0401 3624 [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
22:03:17.0401 3624 C:\Windows\System32\propsys.dll - ok
22:03:17.0412 3624 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
22:03:17.0412 3624 C:\Windows\System32\avrt.dll - ok
22:03:17.0416 3624 [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
22:03:17.0416 3624 C:\Windows\System32\audiodg.exe - ok
22:03:17.0421 3624 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
22:03:17.0421 3624 C:\Windows\System32\mmcss.dll - ok
22:03:17.0425 3624 [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
22:03:17.0425 3624 C:\Windows\System32\shacct.dll - ok
22:03:17.0434 3624 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
22:03:17.0434 3624 C:\Windows\System32\samlib.dll - ok
22:03:17.0436 3624 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
22:03:17.0436 3624 C:\Windows\System32\uxtheme.dll - ok
22:03:17.0441 3624 [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
22:03:17.0441 3624 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
22:03:17.0446 3624 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
22:03:17.0446 3624 C:\Windows\System32\dui70.dll - ok
22:03:17.0450 3624 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
22:03:17.0451 3624 C:\Windows\System32\ntmarta.dll - ok
22:03:17.0455 3624 [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
22:03:17.0455 3624 C:\Windows\System32\gpsvc.dll - ok
22:03:17.0459 3624 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
22:03:17.0460 3624 C:\Windows\System32\duser.dll - ok
22:03:17.0464 3624 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
22:03:17.0464 3624 C:\Windows\System32\atl.dll - ok
22:03:17.0468 3624 [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
22:03:17.0468 3624 C:\Windows\System32\nlaapi.dll - ok
22:03:17.0473 3624 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
22:03:17.0473 3624 C:\Windows\System32\themeservice.dll - ok
22:03:17.0473 3624 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
22:03:17.0473 3624 C:\Windows\System32\dsrole.dll - ok
22:03:17.0473 3624 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
22:03:17.0473 3624 C:\Windows\System32\slc.dll - ok
22:03:17.0483 3624 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
22:03:17.0483 3624 C:\Windows\System32\winmm.dll - ok
22:03:17.0483 3624 [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
22:03:17.0483 3624 C:\Windows\System32\wdmaud.drv - ok
22:03:17.0493 3624 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
22:03:17.0493 3624 C:\Windows\System32\ksuser.dll - ok
22:03:17.0493 3624 [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
22:03:17.0493 3624 C:\Windows\System32\SndVolSSO.dll - ok
22:03:17.0503 3624 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
22:03:17.0503 3624 C:\Windows\System32\dwmapi.dll - ok
22:03:17.0503 3624 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
22:03:17.0503 3624 C:\Windows\System32\hid.dll - ok
22:03:17.0513 3624 [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
22:03:17.0513 3624 C:\Windows\System32\xmllite.dll - ok
22:03:17.0513 3624 [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
22:03:17.0513 3624 C:\Windows\SysWOW64\oleacc.dll - ok
22:03:17.0513 3624 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
22:03:17.0513 3624 C:\Windows\SysWOW64\setupapi.dll - ok
22:03:17.0523 3624 [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
22:03:17.0523 3624 C:\Windows\System32\AudioSes.dll - ok
22:03:17.0523 3624 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
22:03:17.0523 3624 C:\Windows\System32\msacm32.dll - ok
22:03:17.0533 3624 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
22:03:17.0533 3624 C:\Windows\System32\msacm32.drv - ok
22:03:17.0533 3624 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
22:03:17.0533 3624 C:\Windows\System32\midimap.dll - ok
22:03:17.0543 3624 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
22:03:17.0543 3624 C:\Windows\System32\AudioEng.dll - ok
22:03:17.0543 3624 [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
22:03:17.0543 3624 C:\Windows\System32\WindowsCodecs.dll - ok
22:03:17.0553 3624 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
22:03:17.0553 3624 C:\Windows\System32\AUDIOKSE.dll - ok
22:03:17.0553 3624 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
22:03:17.0553 3624 C:\Windows\System32\es.dll - ok
22:03:17.0563 3624 [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
22:03:17.0563 3624 C:\Windows\SysWOW64\cfgmgr32.dll - ok
22:03:17.0563 3624 [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
22:03:17.0563 3624 C:\Program Files\Dell\DellDock\DockLogin.exe - ok
22:03:17.0563 3624 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
22:03:17.0563 3624 C:\Windows\System32\Sens.dll - ok
22:03:17.0573 3624 [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
22:03:17.0573 3624 C:\Windows\SysWOW64\devobj.dll - ok
22:03:17.0573 3624 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
22:03:17.0573 3624 C:\Windows\System32\comres.dll - ok
22:03:17.0583 3624 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
22:03:17.0583 3624 C:\Windows\System32\VaultCredProvider.dll - ok
22:03:17.0583 3624 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
22:03:17.0583 3624 C:\Windows\System32\winbrand.dll - ok
22:03:17.0593 3624 [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
22:03:17.0593 3624 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
22:03:17.0593 3624 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
22:03:17.0593 3624 C:\Windows\System32\wtsapi32.dll - ok
22:03:17.0603 3624 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
22:03:17.0603 3624 C:\Windows\System32\BioCredProv.dll - ok
22:03:17.0603 3624 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
22:03:17.0603 3624 C:\Windows\System32\winbio.dll - ok
22:03:17.0613 3624 [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
22:03:17.0613 3624 C:\Windows\System32\credui.dll - ok
22:03:17.0613 3624 [ 04CFE870C30640C9A369E0FE8C654B98 ] C:\Windows\System32\MBWrp64.dll
22:03:17.0613 3624 C:\Windows\System32\MBWrp64.dll - ok
22:03:17.0624 3624 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
22:03:17.0624 3624 C:\Windows\System32\vaultcli.dll - ok
22:03:17.0629 3624 [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
22:03:17.0629 3624 C:\Windows\System32\netapi32.dll - ok
22:03:17.0634 3624 [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
22:03:17.0634 3624 C:\Windows\System32\netutils.dll - ok
22:03:17.0639 3624 [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
22:03:17.0639 3624 C:\Windows\System32\wkscli.dll - ok
22:03:17.0644 3624 [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
22:03:17.0644 3624 C:\Windows\System32\samcli.dll - ok
22:03:17.0648 3624 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
22:03:17.0648 3624 C:\Windows\System32\certCredProvider.dll - ok
22:03:17.0654 3624 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
22:03:17.0654 3624 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
22:03:17.0659 3624 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
22:03:17.0659 3624 C:\Windows\System32\rasplap.dll - ok
22:03:17.0663 3624 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
22:03:17.0663 3624 C:\Windows\System32\rasapi32.dll - ok
22:03:17.0668 3624 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
22:03:17.0669 3624 C:\Windows\System32\rasman.dll - ok
22:03:17.0673 3624 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
22:03:17.0673 3624 C:\Windows\System32\wlansvc.dll - ok
22:03:17.0677 3624 [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
22:03:17.0677 3624 C:\Windows\System32\rtutils.dll - ok
22:03:17.0681 3624 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
22:03:17.0682 3624 C:\Windows\System32\UXInit.dll - ok
22:03:17.0685 3624 [ 25D74864274539330DCC4234140D11AF ] C:\Windows\System32\MBAPO64.dll
22:03:17.0685 3624 C:\Windows\System32\MBAPO64.dll - ok
22:03:17.0685 3624 [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
22:03:17.0685 3624 C:\Windows\System32\IPHLPAPI.DLL - ok
22:03:17.0685 3624 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
22:03:17.0685 3624 C:\Windows\System32\winnsi.dll - ok
22:03:17.0695 3624 [ 356DE36D8B9075806FA2C52C7C85F3CA ] C:\Windows\System32\RtkAPO64.dll
22:03:17.0695 3624 C:\Windows\System32\RtkAPO64.dll - ok
22:03:17.0695 3624 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
22:03:17.0695 3624 C:\Windows\System32\imageres.dll - ok
22:03:17.0705 3624 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
22:03:17.0705 3624 C:\Windows\SysWOW64\wtsapi32.dll - ok
22:03:17.0705 3624 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
22:03:17.0705 3624 C:\Windows\System32\uxsms.dll - ok
22:03:17.0705 3624 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
22:03:17.0705 3624 C:\Windows\System32\WUDFPlatform.dll - ok
22:03:17.0715 3624 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
22:03:17.0715 3624 C:\Windows\System32\WUDFSvc.dll - ok
22:03:17.0715 3624 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
22:03:17.0715 3624 C:\Windows\System32\drivers\lltdio.sys - ok
22:03:17.0725 3624 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
22:03:17.0725 3624 C:\Windows\System32\drivers\nwifi.sys - ok
22:03:17.0725 3624 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
22:03:17.0725 3624 C:\Windows\System32\drivers\ndisuio.sys - ok
22:03:17.0735 3624 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
22:03:17.0735 3624 C:\Windows\System32\drivers\rspndr.sys - ok
22:03:17.0735 3624 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
22:03:17.0735 3624 C:\Windows\System32\eapsvc.dll - ok
22:03:17.0745 3624 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
22:03:17.0745 3624 C:\Windows\System32\keyiso.dll - ok
22:03:17.0745 3624 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
22:03:17.0745 3624 C:\Windows\System32\lmhsvc.dll - ok
22:03:17.0755 3624 [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
22:03:17.0755 3624 C:\Windows\System32\nrpsrv.dll - ok
22:03:17.0755 3624 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
22:03:17.0755 3624 C:\Windows\System32\nsisvc.dll - ok
22:03:17.0765 3624 [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
22:03:17.0765 3624 C:\Windows\System32\dhcpcore.dll - ok
22:03:17.0765 3624 [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
22:03:17.0765 3624 C:\Windows\System32\eapphost.dll - ok
22:03:17.0765 3624 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
22:03:17.0765 3624 C:\Windows\System32\WMALFXGFXDSP.dll - ok
22:03:17.0775 3624 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
22:03:17.0775 3624 C:\Windows\System32\umb.dll - ok
22:03:17.0775 3624 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
22:03:17.0775 3624 C:\Windows\System32\dhcpcore6.dll - ok
22:03:17.0785 3624 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
22:03:17.0785 3624 C:\Windows\System32\mfplat.dll - ok
22:03:17.0785 3624 [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
22:03:17.0785 3624 C:\Windows\System32\dnsrslvr.dll - ok
22:03:17.0795 3624 [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
22:03:17.0795 3624 C:\Windows\System32\wlanmsm.dll - ok
22:03:17.0795 3624 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
22:03:17.0795 3624 C:\Windows\System32\FWPUCLNT.DLL - ok
22:03:17.0805 3624 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
22:03:17.0805 3624 C:\Windows\System32\dnsext.dll - ok
22:03:17.0805 3624 [ B809D62A3C0670F06092AFEB9B492D19 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
22:03:17.0805 3624 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
22:03:17.0815 3624 [ CD76E59F58EB6E69C80148F682A3F634 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
22:03:17.0815 3624 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
22:03:17.0815 3624 [ A8A947F21CBEB2EB08800DE55B2F3CE2 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll
22:03:17.0815 3624 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq64.dll - ok
22:03:17.0825 3624 [ FFAF216AFD913E48180BC0B7270DA66E ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
22:03:17.0825 3624 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
22:03:17.0825 3624 [ 7CF8E97FFB8746598D87E4F2117FED94 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit64.dll
22:03:17.0825 3624 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit64.dll - ok
22:03:17.0835 3624 [ 3226A4C05E4FB1A42830743A0BC1E594 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll
22:03:17.0835 3624 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv64.dll - ok
22:03:17.0835 3624 [ D96A1F785501D7A8062C4CF8A7413825 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
22:03:17.0835 3624 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
22:03:17.0835 3624 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
22:03:17.0835 3624 C:\Windows\System32\dhcpcsvc.dll - ok
22:03:17.0845 3624 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
22:03:17.0845 3624 C:\Windows\System32\dhcpcsvc6.dll - ok
22:03:17.0845 3624 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
22:03:17.0845 3624 C:\Windows\System32\wlansec.dll - ok
22:03:17.0855 3624 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
22:03:17.0855 3624 C:\Windows\System32\eappprxy.dll - ok
22:03:17.0855 3624 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
22:03:17.0855 3624 C:\Windows\System32\onex.dll - ok
22:03:17.0865 3624 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
22:03:17.0865 3624 C:\Windows\System32\eappcfg.dll - ok
22:03:17.0865 3624 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
22:03:17.0865 3624 C:\Windows\System32\wlgpclnt.dll - ok
22:03:17.0875 3624 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
22:03:17.0875 3624 C:\Windows\System32\l2gpstore.dll - ok
22:03:17.0875 3624 [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
22:03:17.0875 3624 C:\Windows\System32\WinSCard.dll - ok
22:03:17.0875 3624 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
22:03:17.0885 3624 C:\Windows\System32\wlanutil.dll - ok
22:03:17.0885 3624 [ 72D3D64526765C34DBFC7D895B4FBDF6 ] C:\Windows\System32\msxml6.dll
22:03:17.0885 3624 C:\Windows\System32\msxml6.dll - ok
22:03:17.0885 3624 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
22:03:17.0885 3624 C:\Windows\System32\shsvcs.dll - ok
22:03:17.0895 3624 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
22:03:17.0895 3624 C:\Windows\System32\wlanext.exe - ok
22:03:17.0895 3624 [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
22:03:17.0895 3624 C:\Windows\System32\schedsvc.dll - ok
22:03:17.0905 3624 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
22:03:17.0905 3624 C:\Windows\System32\ktmw32.dll - ok
22:03:17.0905 3624 [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
22:03:17.0905 3624 C:\Windows\System32\taskcomp.dll - ok
22:03:17.0915 3624 [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
22:03:17.0915 3624 C:\Windows\System32\fveapi.dll - ok
22:03:17.0915 3624 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
22:03:17.0915 3624 C:\Windows\System32\drivers\http.sys - ok
22:03:17.0915 3624 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
22:03:17.0915 3624 C:\Windows\System32\fvecerts.dll - ok
22:03:17.0925 3624 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
22:03:17.0925 3624 C:\Windows\System32\tbs.dll - ok
22:03:17.0925 3624 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
22:03:17.0925 3624 C:\Windows\System32\wiarpc.dll - ok
22:03:17.0935 3624 [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
22:03:17.0935 3624 C:\Windows\System32\spoolsv.exe - ok
22:03:17.0935 3624 [ A19ACD209BC143F8A9CFBCEFA3C564F5 ] C:\Windows\System32\conhost.exe
22:03:17.0935 3624 C:\Windows\System32\conhost.exe - ok
22:03:17.0945 3624 [ 95CAE3D82E682CB56BF6F02D281C4E08 ] C:\Windows\System32\bcmihvsrv64.dll
22:03:17.0945 3624 C:\Windows\System32\bcmihvsrv64.dll - ok
22:03:17.0945 3624 [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
22:03:17.0945 3624 C:\Windows\System32\BFE.DLL - ok
22:03:17.0945 3624 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
22:03:17.0945 3624 C:\Windows\System32\wlanapi.dll - ok
22:03:17.0955 3624 [ B9A4DAC2192FD78CDA097BFA79F6E7B2 ] C:\Windows\SysWOW64\net.exe
22:03:17.0955 3624 C:\Windows\SysWOW64\net.exe - ok
22:03:17.0955 3624 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
22:03:17.0955 3624 C:\Windows\System32\drivers\srvnet.sys - ok
22:03:17.0965 3624 [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
22:03:17.0965 3624 C:\Windows\System32\drivers\bowser.sys - ok
22:03:17.0965 3624 [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
22:03:17.0965 3624 C:\Windows\System32\drivers\mrxsmb.sys - ok
22:03:17.0975 3624 [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
22:03:17.0975 3624 C:\Windows\System32\drivers\mrxsmb10.sys - ok
22:03:17.0975 3624 [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
22:03:17.0975 3624 C:\Windows\System32\drivers\mrxsmb20.sys - ok
22:03:17.0985 3624 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
22:03:17.0985 3624 C:\Windows\System32\drivers\srv2.sys - ok
22:03:17.0985 3624 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
22:03:17.0985 3624 C:\Windows\System32\drivers\srv.sys - ok
22:03:17.0985 3624 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
22:03:17.0985 3624 C:\Windows\System32\wkssvc.dll - ok
22:03:17.0995 3624 [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
22:03:17.0995 3624 C:\Windows\System32\netcfgx.dll - ok
22:03:18.0005 3624 [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
22:03:18.0005 3624 C:\Windows\System32\srvsvc.dll - ok
22:03:18.0005 3624 [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
22:03:18.0005 3624 C:\Windows\System32\browser.dll - ok
22:03:18.0005 3624 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
22:03:18.0005 3624 C:\Windows\System32\netmsg.dll - ok
22:03:18.0015 3624 [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
22:03:18.0015 3624 C:\Windows\System32\sscore.dll - ok
22:03:18.0015 3624 [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
22:03:18.0015 3624 C:\Windows\System32\clusapi.dll - ok
22:03:18.0025 3624 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
22:03:18.0025 3624 C:\Windows\System32\resutils.dll - ok
22:03:18.0025 3624 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
22:03:18.0025 3624 C:\Program Files\Bonjour\mdnsNSP.dll - ok
22:03:18.0035 3624 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
22:03:18.0035 3624 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
22:03:18.0035 3624 [ D1E343BC00136CE03C4D403194D06A80 ] C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
22:03:18.0035 3624 C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe - ok
22:03:18.0045 3624 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
22:03:18.0045 3624 C:\Windows\System32\rasadhlp.dll - ok
22:03:18.0045 3624 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
22:03:18.0045 3624 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
22:03:18.0045 3624 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
22:03:18.0045 3624 C:\Windows\SysWOW64\cryptsp.dll - ok
22:03:18.0055 3624 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
22:03:18.0055 3624 C:\Windows\SysWOW64\rsaenh.dll - ok
22:03:18.0055 3624 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
22:03:18.0055 3624 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
22:03:18.0065 3624 [ 374B26395852A9092BDE2E4C8D4D0C8D ] C:\Windows\SysWOW64\wscapi.dll
22:03:18.0065 3624 C:\Windows\SysWOW64\wscapi.dll - ok
22:03:18.0065 3624 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
22:03:18.0065 3624 C:\Windows\SysWOW64\wscisvif.dll - ok
22:03:18.0075 3624 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
22:03:18.0075 3624 C:\Windows\SysWOW64\wscproxystub.dll - ok
22:03:18.0075 3624 [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
22:03:18.0075 3624 C:\Windows\System32\drivers\fltMgr.sys - ok
22:03:18.0085 3624 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
22:03:18.0085 3624 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
22:03:18.0085 3624 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
22:03:18.0085 3624 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
22:03:18.0095 3624 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
22:03:18.0095 3624 C:\Windows\System32\PSHED.DLL - ok
22:03:18.0095 3624 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
22:03:18.0095 3624 C:\Windows\System32\dllhost.exe - ok
22:03:18.0105 3624 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:03:18.0105 3624 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
22:03:18.0110 3624 [ 63DD6FBAABF881385899FD39DF13DCE3 ] C:\Windows\System32\net.exe
22:03:18.0110 3624 C:\Windows\System32\net.exe - ok
22:03:18.0115 3624 [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
22:03:18.0115 3624 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
22:03:18.0120 3624 [ A81AF063D965A321D577AE3C24ADA449 ] C:\Windows\SysWOW64\browcli.dll
22:03:18.0120 3624 C:\Windows\SysWOW64\browcli.dll - ok
22:03:18.0124 3624 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
22:03:18.0124 3624 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
22:03:18.0130 3624 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
22:03:18.0130 3624 C:\Windows\SysWOW64\mpr.dll - ok
22:03:18.0133 3624 [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
22:03:18.0133 3624 C:\Windows\SysWOW64\samcli.dll - ok
22:03:18.0138 3624 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
22:03:18.0138 3624 C:\Windows\SysWOW64\winnsi.dll - ok
22:03:18.0142 3624 [ BA57DD1C2C77227930B6FBB93DEB600F ] C:\Windows\SysWOW64\net1.exe
22:03:18.0143 3624 C:\Windows\SysWOW64\net1.exe - ok
22:03:18.0147 3624 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
22:03:18.0147 3624 C:\Windows\System32\IDStore.dll - ok
22:03:18.0152 3624 [ 5E36F8E4034A4B148CBA14EB535C47CA ] C:\Windows\System32\KBDRU.DLL
22:03:18.0152 3624 C:\Windows\System32\KBDRU.DLL - ok
22:03:18.0157 3624 [ 61B66B12FD57E008B872B16D2187EB85 ] C:\Windows\System32\KBDRU1.DLL
22:03:18.0157 3624 C:\Windows\System32\KBDRU1.DLL - ok
22:03:18.0162 3624 [ 3EEFB971D61EF9638FD21F14C703CA11 ] C:\Windows\System32\taskhost.exe
22:03:18.0162 3624 C:\Windows\System32\taskhost.exe - ok
22:03:18.0167 3624 [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\SysWOW64\winsta.dll
22:03:18.0167 3624 C:\Windows\SysWOW64\winsta.dll - ok
22:03:18.0171 3624 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
22:03:18.0171 3624 C:\Windows\System32\AtBroker.exe - ok
22:03:18.0176 3624 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
22:03:18.0176 3624 C:\Windows\System32\mpr.dll - ok
22:03:18.0180 3624 [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
22:03:18.0181 3624 C:\Windows\System32\taskeng.exe - ok
22:03:18.0185 3624 [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
22:03:18.0185 3624 C:\Windows\System32\userinit.exe - ok
22:03:18.0190 3624 [ 8CFACC72081C21519676BF4AAA1A88A9 ] C:\Windows\System32\localspl.dll
22:03:18.0190 3624 C:\Windows\System32\localspl.dll - ok
22:03:18.0194 3624 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
22:03:18.0194 3624 C:\Windows\System32\spoolss.dll - ok
22:03:18.0199 3624 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
22:03:18.0199 3624 C:\Windows\System32\winspool.drv - ok
22:03:18.0203 3624 [ 33CC7FFA41F6157592E1578BD253F30E ] C:\Windows\System32\PrintIsolationProxy.dll
22:03:18.0203 3624 C:\Windows\System32\PrintIsolationProxy.dll - ok
22:03:18.0208 3624 [ C8462D4F25FA817EBEEB6B438D8F9568 ] C:\Windows\System32\lxdnlmpm.dll
22:03:18.0208 3624 C:\Windows\System32\lxdnlmpm.dll - ok
22:03:18.0212 3624 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll
22:03:18.0212 3624 C:\Windows\SysWOW64\dsrole.dll - ok
22:03:18.0217 3624 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
22:03:18.0217 3624 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
22:03:18.0222 3624 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
22:03:18.0222 3624 C:\Windows\System32\PlaySndSrv.dll - ok
22:03:18.0227 3624 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
22:03:18.0227 3624 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
22:03:18.0232 3624 [ 8C22C6088057A00EAE7D963600F26EEB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
22:03:18.0232 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
22:03:18.0236 3624 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
22:03:18.0237 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
22:03:18.0241 3624 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
22:03:18.0241 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
22:03:18.0246 3624 [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
22:03:18.0246 3624 C:\Windows\System32\HotStartUserAgent.dll - ok
22:03:18.0251 3624 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
22:03:18.0251 3624 C:\Windows\System32\MsCtfMonitor.dll - ok
22:03:18.0256 3624 [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
22:03:18.0256 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
22:03:18.0260 3624 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
22:03:18.0261 3624 C:\Windows\System32\TSChannel.dll - ok
22:03:18.0266 3624 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
22:03:18.0266 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
22:03:18.0271 3624 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
22:03:18.0271 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
22:03:18.0277 3624 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:03:18.0277 3624 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
22:03:18.0282 3624 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
22:03:18.0282 3624 C:\Windows\SysWOW64\wsock32.dll - ok
22:03:18.0286 3624 [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
22:03:18.0286 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
22:03:18.0291 3624 [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
22:03:18.0292 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
22:03:18.0297 3624 [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
22:03:18.0297 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
22:03:18.0301 3624 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
22:03:18.0301 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
22:03:18.0306 3624 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
22:03:18.0306 3624 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
22:03:18.0311 3624 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
22:03:18.0311 3624 C:\Windows\SysWOW64\dnssd.dll - ok
22:03:18.0316 3624 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
22:03:18.0316 3624 C:\Program Files\Bonjour\mDNSResponder.exe - ok
22:03:18.0320 3624 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
22:03:18.0320 3624 C:\Windows\SysWOW64\mswsock.dll - ok
22:03:18.0325 3624 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
22:03:18.0325 3624 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
22:03:18.0330 3624 [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
22:03:18.0330 3624 C:\Windows\System32\cryptnet.dll - ok
22:03:18.0335 3624 [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
22:03:18.0335 3624 C:\Windows\System32\cryptsvc.dll - ok
22:03:18.0340 3624 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
22:03:18.0340 3624 C:\Windows\System32\dps.dll - ok
22:03:18.0345 3624 [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
22:03:18.0345 3624 C:\Windows\System32\vssapi.dll - ok
22:03:18.0351 3624 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
22:03:18.0351 3624 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
22:03:18.0354 3624 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
22:03:18.0354 3624 C:\Windows\System32\FDResPub.dll - ok
22:03:18.0359 3624 [ C5B4683680DF085B57BC53E5EF34861F ] C:\Windows\System32\IKEEXT.DLL
22:03:18.0359 3624 C:\Windows\System32\IKEEXT.DLL - ok
22:03:18.0363 3624 [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
22:03:18.0363 3624 C:\Windows\System32\WSDApi.dll - ok
22:03:18.0367 3624 [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
22:03:18.0367 3624 C:\Windows\System32\taskschd.dll - ok
22:03:18.0367 3624 [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
22:03:18.0367 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
22:03:18.0377 3624 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
22:03:18.0377 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
22:03:18.0377 3624 [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
22:03:18.0377 3624 C:\Windows\System32\webservices.dll - ok
22:03:18.0377 3624 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
22:03:18.0377 3624 C:\Windows\System32\fundisc.dll - ok
22:03:18.0387 3624 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
22:03:18.0387 3624 C:\Windows\System32\vsstrace.dll - ok
22:03:18.0387 3624 [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
22:03:18.0387 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
22:03:18.0397 3624 [ C3C8D359D1FCB72941F75F8A302BFBDE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
22:03:18.0397 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
22:03:18.0397 3624 [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
22:03:18.0397 3624 C:\Windows\SysWOW64\wintrust.dll - ok
22:03:18.0407 3624 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
22:03:18.0407 3624 C:\Windows\System32\dwm.exe - ok
22:03:18.0407 3624 [ A1B1C3B62DAC525E82943E179F6C5831 ] C:\Windows\System32\lxdncomc.dll
22:03:18.0407 3624 C:\Windows\System32\lxdncomc.dll - ok
22:03:18.0417 3624 [ B53E41A3F22AB652029629F82E1A7F72 ] C:\Windows\System32\lxdncoms.exe
22:03:18.0417 3624 C:\Windows\System32\lxdncoms.exe - ok
22:03:18.0417 3624 [ A1DC3D1C462C1D9F73B19D72111C24C9 ] C:\Windows\System32\lxdnserv.dll
22:03:18.0417 3624 C:\Windows\System32\lxdnserv.dll - ok
22:03:18.0427 3624 [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
22:03:18.0427 3624 C:\Windows\explorer.exe - ok
22:03:18.0427 3624 [ 51B800FACF950658A269191B7446B5DD ] C:\Windows\System32\lxdninpa.dll
22:03:18.0427 3624 C:\Windows\System32\lxdninpa.dll - ok
22:03:18.0437 3624 [ F1FD80C1CAD1A439902920AC4795C74C ] C:\Windows\System32\lxdniesc.dll
22:03:18.0437 3624 C:\Windows\System32\lxdniesc.dll - ok
22:03:18.0437 3624 [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
22:03:18.0437 3624 C:\Windows\System32\dwmcore.dll - ok
22:03:18.0447 3624 [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
22:03:18.0447 3624 C:\Windows\System32\dwmredir.dll - ok
22:03:18.0447 3624 [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
22:03:18.0447 3624 C:\Windows\System32\d3d10_1.dll - ok
22:03:18.0447 3624 [ 87130B48432BC20A5DF5C6246E0E734D ] C:\Windows\System32\lxdnusb1.dll
22:03:18.0447 3624 C:\Windows\System32\lxdnusb1.dll - ok
22:03:18.0457 3624 [ D8ECA7A87AAA3AE308B5277411666622 ] C:\Windows\SysWOW64\logoncli.dll
22:03:18.0457 3624 C:\Windows\SysWOW64\logoncli.dll - ok
22:03:18.0457 3624 [ 4D50288CC8F3899A3A16B97A7056AB39 ] C:\Windows\System32\LXF3PMON.DLL
22:03:18.0457 3624 C:\Windows\System32\LXF3PMON.DLL - ok
22:03:18.0470 3624 [ 815CD2A760AA1D6003F4447B35D8EAB2 ] C:\Windows\System32\lxf3oem.dll
22:03:18.0470 3624 C:\Windows\System32\lxf3oem.dll - ok
22:03:18.0474 3624 [ DD5C1A004351EF44EF88211D96D9B1BE ] C:\Windows\System32\LXF3PMRC.DLL
22:03:18.0474 3624 C:\Windows\System32\LXF3PMRC.DLL - ok
22:03:18.0479 3624 [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
22:03:18.0479 3624 C:\Windows\System32\d3d10_1core.dll - ok
22:03:18.0483 3624 [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
22:03:18.0483 3624 C:\Windows\System32\dxgi.dll - ok
22:03:18.0488 3624 [ 20BEB8C403C6E28C9B13644787F5177D ] C:\Windows\System32\FXSMON.dll
22:03:18.0488 3624 C:\Windows\System32\FXSMON.dll - ok
22:03:18.0492 3624 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
22:03:18.0492 3624 C:\Windows\System32\tcpmon.dll - ok
22:03:18.0497 3624 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
22:03:18.0497 3624 C:\Windows\System32\snmpapi.dll - ok
22:03:18.0501 3624 [ AD7C70077D4C81558E909D34EF6B995E ] C:\Windows\System32\wsnmp32.dll
22:03:18.0501 3624 C:\Windows\System32\wsnmp32.dll - ok
22:03:18.0505 3624 [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
22:03:18.0505 3624 C:\Windows\System32\ExplorerFrame.dll - ok
22:03:18.0510 3624 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
22:03:18.0510 3624 C:\Windows\System32\EhStorShell.dll - ok
22:03:18.0514 3624 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
22:03:18.0514 3624 C:\Windows\System32\usbmon.dll - ok
22:03:18.0519 3624 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
22:03:18.0519 3624 C:\Windows\System32\WSDMon.dll - ok
22:03:18.0524 3624 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
22:03:18.0524 3624 C:\Windows\System32\fdPnp.dll - ok
22:03:18.0529 3624 [ 9F961817671DBD4CCF85F2F91301E022 ] C:\Windows\System32\spool\prtprocs\x64\lxdndrpp.dll
22:03:18.0529 3624 C:\Windows\System32\spool\prtprocs\x64\lxdndrpp.dll - ok
22:03:18.0532 3624 [ 7EDB2BF840ECB14D6E6B11C035708719 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
22:03:18.0532 3624 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
22:03:18.0537 3624 [ 2332BACC2AB09119A14637DE0CB30147 ] C:\Windows\System32\win32spl.dll
22:03:18.0537 3624 C:\Windows\System32\win32spl.dll - ok
22:03:18.0542 3624 [ 17EAB1AEA937EFFCD107EFBA94FEDB34 ] C:\Windows\System32\inetpp.dll
22:03:18.0542 3624 C:\Windows\System32\inetpp.dll - ok
22:03:18.0547 3624 [ E4763201F1AF1CAC2E0477D667063AF0 ] C:\Windows\System32\igd10umd64.dll
22:03:18.0547 3624 C:\Windows\System32\igd10umd64.dll - ok
22:03:18.0551 3624 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
22:03:18.0551 3624 C:\Windows\System32\msutb.dll - ok
22:03:18.0558 3624 [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
22:03:18.0558 3624 C:\Windows\System32\cscapi.dll - ok
22:03:18.0563 3624 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
22:03:18.0563 3624 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
22:03:18.0567 3624 [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
22:03:18.0567 3624 C:\Windows\SysWOW64\imagehlp.dll - ok
22:03:18.0572 3624 [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
22:03:18.0572 3624 C:\Windows\System32\ntshrui.dll - ok
22:03:18.0576 3624 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
22:03:18.0577 3624 C:\Windows\System32\IconCodecService.dll - ok
22:03:18.0581 3624 [ 7485FBCEF9136F530953575E2977859D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:03:18.0582 3624 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
22:03:18.0586 3624 [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
22:03:18.0586 3624 C:\Windows\SysWOW64\dnsapi.dll - ok
22:03:18.0591 3624 [ 4208B958E35F0E596AA241EFB664636B ] C:\Windows\System32\spool\drivers\x64\3\lxdnserv.exe
22:03:18.0591 3624 C:\Windows\System32\spool\drivers\x64\3\lxdnserv.exe - ok
22:03:18.0598 3624 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
22:03:18.0598 3624 C:\Windows\System32\uDWM.dll - ok
22:03:18.0603 3624 [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
22:03:18.0603 3624 C:\Windows\SysWOW64\msi.dll - ok
22:03:18.0607 3624 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
22:03:18.0607 3624 C:\Windows\SysWOW64\samlib.dll - ok
22:03:18.0612 3624 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
22:03:18.0612 3624 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
22:03:18.0617 3624 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
22:03:18.0617 3624 C:\Windows\SysWOW64\cscapi.dll - ok
22:03:18.0622 3624 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
22:03:18.0622 3624 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
22:03:18.0627 3624 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
22:03:18.0627 3624 C:\Windows\SysWOW64\mstask.dll - ok
22:03:18.0632 3624 [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
22:03:18.0632 3624 C:\Windows\System32\dbghelp.dll - ok
22:03:18.0637 3624 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
22:03:18.0637 3624 C:\Windows\SysWOW64\ntdsapi.dll - ok
22:03:18.0642 3624 [ 85B16A92B117A5A800032ECD904B86DB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:03:18.0642 3624 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
22:03:18.0647 3624 [ C0F7C25EEFB1C5FD554AAA801201A83C ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
22:03:18.0647 3624 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
22:03:18.0652 3624 [ A8AD2773202A3913D1E1564BD5703183 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
22:03:18.0652 3624 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
22:03:18.0657 3624 [ 20E2469DB709FC675E655CEAA11BE312 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:03:18.0657 3624 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
22:03:18.0662 3624 [ 8EB9DF4D405524D5EF69AE9ECB0EDD16 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
22:03:18.0662 3624 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
22:03:18.0667 3624 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
22:03:18.0667 3624 C:\Windows\System32\nlasvc.dll - ok
22:03:18.0671 3624 [ BAE04007A679893E975A2B75E9E001E9 ] C:\Program Files (x86)\Common Files\Motive\pcCMService.exe
22:03:18.0672 3624 C:\Program Files (x86)\Common Files\Motive\pcCMService.exe - ok
22:03:18.0676 3624 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
22:03:18.0676 3624 C:\Windows\System32\aepic.dll - ok
22:03:18.0681 3624 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
22:03:18.0681 3624 C:\Windows\System32\pcasvc.dll - ok
22:03:18.0685 3624 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
22:03:18.0685 3624 C:\Windows\System32\sfc.dll - ok
22:03:18.0690 3624 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
22:03:18.0690 3624 C:\Windows\System32\sfc_os.dll - ok
22:03:18.0696 3624 [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
22:03:18.0696 3624 C:\Windows\System32\ncsi.dll - ok
22:03:18.0701 3624 [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
22:03:18.0701 3624 C:\Windows\System32\winhttp.dll - ok
22:03:18.0706 3624 [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
22:03:18.0706 3624 C:\Windows\System32\webio.dll - ok
22:03:18.0711 3624 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
22:03:18.0711 3624 C:\Windows\System32\ssdpapi.dll - ok
22:03:18.0716 3624 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
22:03:18.0716 3624 C:\Windows\System32\aeevts.dll - ok
22:03:18.0721 3624 [ 3BEA1D461531D1D26F5695BB9CA97A18 ] C:\Program Files\Common Files\Motive\pcCMService.exe
22:03:18.0721 3624 C:\Program Files\Common Files\Motive\pcCMService.exe - ok
22:03:18.0727 3624 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
22:03:18.0727 3624 C:\Windows\System32\drivers\PEAuth.sys - ok
22:03:18.0732 3624 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
22:03:18.0732 3624 C:\Windows\System32\drivers\secdrv.sys - ok
22:03:18.0737 3624 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] C:\Windows\System32\IPSECSVC.DLL
22:03:18.0737 3624 C:\Windows\System32\IPSECSVC.DLL - ok
22:03:18.0743 3624 [ 463B386EBC70F98DA5DFF85F7E654346 ] C:\Windows\System32\seclogon.dll
22:03:18.0743 3624 C:\Windows\System32\seclogon.dll - ok
22:03:18.0748 3624 [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
22:03:18.0748 3624 C:\Windows\System32\drivers\Sftfslh.sys - ok
22:03:18.0753 3624 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
22:03:18.0754 3624 C:\Windows\System32\drivers\Sftplaylh.sys - ok
22:03:18.0759 3624 [ CF53DCCE55E500F51089774E851E7363 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
22:03:18.0759 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
22:03:18.0764 3624 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
22:03:18.0764 3624 C:\Windows\System32\FwRemoteSvr.dll - ok
22:03:18.0769 3624 [ 4E8A3D115184857557E3B7CE6322C1C0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll
22:03:18.0769 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll - ok
22:03:18.0774 3624 [ A099D81079A8F94A91DBDCD31B3D9D4B ] C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll
22:03:18.0774 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll - ok
22:03:18.0779 3624 [ 720DE34D774968DFDD0CE81901B0FD16 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll
22:03:18.0779 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll - ok
22:03:18.0782 3624 [ AEE7DD7DAACA2BF5FA6C72A874D03DBF ] C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll
22:03:18.0782 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll - ok
22:03:18.0787 3624 [ 7815616890E6147053B0A8F022CD44B3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
22:03:18.0787 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll - ok
22:03:18.0792 3624 [ C6A302CC040BFFE85A2870FEA1C0DAB3 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
22:03:18.0792 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll - ok
22:03:18.0797 3624 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:03:18.0797 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
22:03:18.0802 3624 [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\SysWOW64\wbemcomn.dll
22:03:18.0802 3624 C:\Windows\SysWOW64\wbemcomn.dll - ok
22:03:18.0807 3624 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
22:03:18.0807 3624 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
22:03:18.0812 3624 [ 105319E3D66D6E1BAD22AADEC1E9E0DA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcp90.dll
22:03:18.0812 3624 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcp90.dll - ok
22:03:18.0817 3624 [ 93F0FFD46BA1EE3AEECD07678DD8E510 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcr90.dll
22:03:18.0817 3624 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcr90.dll - ok
22:03:18.0822 3624 [ 5225207BDE8C090CE92A18C61180650C ] C:\Windows\System32\vdsldr.exe
22:03:18.0822 3624 C:\Windows\System32\vdsldr.exe - ok
22:03:18.0827 3624 [ 40E6719D69AAB9B0841F92AEC6E75DD1 ] C:\Windows\System32\vdsutil.dll
22:03:18.0827 3624 C:\Windows\System32\vdsutil.dll - ok
22:03:18.0832 3624 [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
22:03:18.0832 3624 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
22:03:18.0837 3624 [ 183F04C6742902F33039913A96F5B574 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:03:18.0837 3624 C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
22:03:18.0842 3624 [ 94082E1E52D8BC63F4D6F57E8CD4E4F9 ] C:\Windows\System32\vds_ps.dll
22:03:18.0842 3624 C:\Windows\System32\vds_ps.dll - ok
22:03:18.0846 3624 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
22:03:18.0846 3624 C:\Windows\SysWOW64\credssp.dll - ok
22:03:18.0851 3624 [ F509B44D94DB9C832CA26297BE0CC04D ] C:\Windows\SysWOW64\vds_ps.dll
22:03:18.0851 3624 C:\Windows\SysWOW64\vds_ps.dll - ok
22:03:18.0856 3624 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
22:03:18.0856 3624 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
22:03:18.0859 3624 [ D630B6F2E8379B6F10DC16E82A426552 ] C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
22:03:18.0859 3624 C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe - ok
22:03:18.0866 3624 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
22:03:18.0866 3624 C:\Windows\System32\wiaservc.dll - ok
22:03:18.0870 3624 [ 11456E7C78A6C3D43E5D81CE8A899FA6 ] C:\Program Files (x86)\Dell\DellComms\bin\sprtsched.dll
22:03:18.0871 3624 C:\Program Files (x86)\Dell\DellComms\bin\sprtsched.dll - ok
22:03:18.0875 3624 [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
22:03:18.0875 3624 C:\Windows\System32\drivers\tcpipreg.sys - ok
22:03:18.0879 3624 [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
22:03:18.0879 3624 C:\Windows\System32\sysmain.dll - ok
22:03:18.0879 3624 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
22:03:18.0879 3624 C:\Windows\System32\wiatrace.dll - ok
22:03:18.0889 3624 [ 9A95D747564222F9DEAA57A09CB6714F ] C:\Program Files (x86)\Dell\DellComms\bin\sprtfod.dll
22:03:18.0889 3624 C:\Program Files (x86)\Dell\DellComms\bin\sprtfod.dll - ok
22:03:18.0889 3624 [ 9D7DE074F07ECB7A28DBDE3C5F92F206 ] C:\Windows\msisear.exe
22:03:18.0889 3624 C:\Windows\msisear.exe - ok
22:03:18.0899 3624 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
22:03:18.0899 3624 C:\Windows\System32\trkwks.dll - ok
22:03:18.0899 3624 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files (x86)\Dell\DellComms\bin\sprtsync.dll
22:03:18.0899 3624 C:\Program Files (x86)\Dell\DellComms\bin\sprtsync.dll - ok
22:03:18.0909 3624 [ 16A37E6E522EE1F2B1BDBD6A0BAF7C23 ] C:\Program Files (x86)\Dell\DellComms\bin\sprtupdate.dll
22:03:18.0909 3624 C:\Program Files (x86)\Dell\DellComms\bin\sprtupdate.dll - ok
22:03:18.0909 3624 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files (x86)\Dell\DellComms\bin\libeay32.dll
22:03:18.0909 3624 C:\Program Files (x86)\Dell\DellComms\bin\libeay32.dll - ok
22:03:18.0920 3624 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
22:03:18.0920 3624 C:\Windows\SysWOW64\winspool.drv - ok
22:03:18.0925 3624 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
22:03:18.0925 3624 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
22:03:18.0930 3624 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
22:03:18.0930 3624 C:\Windows\SysWOW64\NapiNSP.dll - ok
22:03:18.0935 3624 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\SysWOW64\nlaapi.dll
22:03:18.0935 3624 C:\Windows\SysWOW64\nlaapi.dll - ok
22:03:18.0940 3624 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
22:03:18.0940 3624 C:\Windows\SysWOW64\pnrpnsp.dll - ok
22:03:18.0945 3624 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
22:03:18.0945 3624 C:\Windows\SysWOW64\winrnr.dll - ok
22:03:18.0951 3624 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
22:03:18.0951 3624 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
22:03:18.0956 3624 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
22:03:18.0956 3624 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
22:03:18.0961 3624 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
22:03:18.0961 3624 C:\Windows\SysWOW64\rasadhlp.dll - ok
22:03:18.0965 3624 [ C10459DBDC2099C5A8428CB7D87DB85F ] C:\Windows\SysWOW64\olepro32.dll
22:03:18.0965 3624 C:\Windows\SysWOW64\olepro32.dll - ok
22:03:18.0970 3624 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
22:03:18.0970 3624 C:\Windows\SysWOW64\dsound.dll - ok
22:03:18.0976 3624 [ BE0050EA38AC55F12774B625CB4D7563 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AEI.exe
22:03:18.0976 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AEI.exe - ok
22:03:18.0980 3624 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
22:03:18.0981 3624 C:\Windows\SysWOW64\powrprof.dll - ok
22:03:18.0985 3624 [ 8E79090CB0987CA102E845341E052537 ] C:\Windows\SysWOW64\vdmdbg.dll
22:03:18.0985 3624 C:\Windows\SysWOW64\vdmdbg.dll - ok
22:03:18.0990 3624 [ 623C9754952A35B018F2448AF8184075 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\dbghelp.dll
22:03:18.0990 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\dbghelp.dll - ok
22:03:18.0995 3624 [ 48AE6A9BF68362A05FFCE9B14ADDCBB0 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\pcre3.dll
22:03:18.0995 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\pcre3.dll - ok
22:03:18.0998 3624 [ D877DFA95243902C326CB4E7767A98E4 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ZipTV06.dll
22:03:18.0998 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ZipTV06.dll - ok
22:03:19.0004 3624 [ 6348AE4C75608D7899F9BC7594CFBD0D ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvcabinet.dll
22:03:19.0004 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvcabinet.dll - ok
22:03:19.0010 3624 [ 7FA6068EDCF59A8B79AB2F489DA0585E ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvunrar3.dll
22:03:19.0010 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\ztvunrar3.dll - ok
22:03:19.0015 3624 [ 794CCFAEE7A4277842821692A8C44316 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\Lockbox.dll
22:03:19.0015 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\Lockbox.dll - ok
22:03:19.0020 3624 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
22:03:19.0020 3624 C:\Windows\SysWOW64\es.dll - ok
22:03:19.0025 3624 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
22:03:19.0025 3624 C:\Windows\System32\wbem\WMIsvc.dll - ok
22:03:19.0030 3624 [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
22:03:19.0030 3624 C:\Windows\System32\wbemcomn.dll - ok
22:03:19.0033 3624 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
22:03:19.0034 3624 C:\Windows\System32\wbem\WinMgmtR.dll - ok
22:03:19.0039 3624 [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
22:03:19.0039 3624 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
22:03:19.0044 3624 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:03:19.0044 3624 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
22:03:19.0049 3624 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
22:03:19.0049 3624 C:\Program Files\Windows Defender\MpSvc.dll - ok
22:03:19.0054 3624 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
22:03:19.0054 3624 C:\Windows\System32\wbem\fastprox.dll - ok
22:03:19.0058 3624 [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
22:03:19.0059 3624 C:\Windows\System32\wbem\wbemcore.dll - ok
22:03:19.0063 3624 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
22:03:19.0063 3624 C:\Windows\SysWOW64\rasapi32.dll - ok
22:03:19.0068 3624 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
22:03:19.0068 3624 C:\Windows\SysWOW64\rasman.dll - ok
22:03:19.0072 3624 [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
22:03:19.0072 3624 C:\Windows\SysWOW64\rtutils.dll - ok
22:03:19.0077 3624 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
22:03:19.0077 3624 C:\Windows\SysWOW64\SensApi.dll - ok
22:03:19.0082 3624 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
22:03:19.0082 3624 C:\Windows\System32\ntdsapi.dll - ok
22:03:19.0087 3624 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
22:03:19.0087 3624 C:\Program Files\Windows Defender\MpClient.dll - ok
22:03:19.0092 3624 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
22:03:19.0092 3624 C:\Windows\System32\wbem\esscli.dll - ok
22:03:19.0097 3624 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
22:03:19.0097 3624 C:\Windows\System32\wbem\wbemprox.dll - ok
22:03:19.0102 3624 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
22:03:19.0102 3624 C:\Windows\System32\wbem\wbemsvc.dll - ok
22:03:19.0106 3624 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
22:03:19.0106 3624 C:\Windows\System32\wbem\wmiutils.dll - ok
22:03:19.0111 3624 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
22:03:19.0111 3624 C:\Windows\SysWOW64\netprofm.dll - ok
22:03:19.0116 3624 [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\SysWOW64\wbem\fastprox.dll
22:03:19.0117 3624 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
22:03:19.0121 3624 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
22:03:19.0121 3624 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
22:03:19.0126 3624 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
22:03:19.0126 3624 C:\Windows\System32\wbem\repdrvfs.dll - ok
22:03:19.0131 3624 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
22:03:19.0131 3624 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
22:03:19.0131 3624 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
22:03:19.0131 3624 C:\Windows\System32\SensApi.dll - ok
22:03:19.0141 3624 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
22:03:19.0141 3624 C:\Windows\System32\wer.dll - ok
22:03:19.0141 3624 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:03:19.0141 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
22:03:19.0151 3624 [ 20A3E587A21A285CBBE060BC3ABEDFA1 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
22:03:19.0151 3624 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
22:03:19.0151 3624 [ CE07AF86AA72F4AE964239DE0DABE738 ] C:\Windows\System32\msxml3.dll
22:03:19.0151 3624 C:\Windows\System32\msxml3.dll - ok
22:03:19.0161 3624 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
22:03:19.0161 3624 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
22:03:19.0161 3624 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
22:03:19.0161 3624 C:\Windows\System32\dssenh.dll - ok
22:03:19.0171 3624 [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
22:03:19.0171 3624 C:\Windows\System32\esent.dll - ok
22:03:19.0171 3624 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
22:03:19.0171 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
22:03:19.0181 3624 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
22:03:19.0181 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
22:03:19.0181 3624 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
22:03:19.0181 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
22:03:19.0191 3624 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
22:03:19.0191 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
22:03:19.0191 3624 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
22:03:19.0191 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
22:03:19.0203 3624 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
22:03:19.0203 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
22:03:19.0208 3624 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
22:03:19.0208 3624 C:\Windows\SysWOW64\fltLib.dll - ok
22:03:19.0213 3624 [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
22:03:19.0213 3624 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
22:03:19.0217 3624 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
22:03:19.0218 3624 C:\Windows\System32\ncobjapi.dll - ok
22:03:19.0222 3624 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
22:03:19.0222 3624 C:\Windows\SysWOW64\sxs.dll - ok
22:03:19.0227 3624 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
22:03:19.0227 3624 C:\Windows\System32\wbem\wbemess.dll - ok
22:03:19.0232 3624 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
22:03:19.0232 3624 C:\Windows\System32\drivers\Sftredirlh.sys - ok
22:03:19.0237 3624 [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
22:03:19.0237 3624 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
22:03:19.0242 3624 [ 76C48F0CD8A526858AB9A4886586942A ] C:\Windows\SysWOW64\schannel.dll
22:03:19.0242 3624 C:\Windows\SysWOW64\schannel.dll - ok
22:03:19.0243 3624 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
22:03:19.0243 3624 C:\Windows\SysWOW64\bcrypt.dll - ok
22:03:19.0243 3624 [ EE24C42561D40F7AD7C2A7A460287090 ] C:\Windows\System32\wbem\cimwin32.dll
22:03:19.0243 3624 C:\Windows\System32\wbem\cimwin32.dll - ok
22:03:19.0253 3624 [ 4DBC81CEFE9DB36856880BFB3491C100 ] C:\Windows\SysWOW64\msxml6.dll
22:03:19.0253 3624 C:\Windows\SysWOW64\msxml6.dll - ok
22:03:19.0253 3624 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
22:03:19.0253 3624 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
22:03:19.0263 3624 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
22:03:19.0263 3624 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
22:03:19.0263 3624 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
22:03:19.0263 3624 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
22:03:19.0273 3624 [ 3989BB6998C32753FDD5493879C1835A ] C:\Windows\SysWOW64\ncrypt.dll
22:03:19.0273 3624 C:\Windows\SysWOW64\ncrypt.dll - ok
22:03:19.0273 3624 [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
22:03:19.0273 3624 C:\Windows\SysWOW64\cryptnet.dll - ok
22:03:19.0283 3624 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
22:03:19.0283 3624 C:\Windows\SysWOW64\gpapi.dll - ok
22:03:19.0283 3624 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
22:03:19.0283 3624 C:\Windows\SysWOW64\wship6.dll - ok
22:03:19.0283 3624 [ 5D89D063A4CB036C258685C8E057E768 ] C:\Windows\System32\framedynos.dll
22:03:19.0283 3624 C:\Windows\System32\framedynos.dll - ok
22:03:19.0293 3624 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
22:03:19.0293 3624 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
22:03:19.0293 3624 [ 76DC9F4FE66BC3867615F142766B4C50 ] C:\Windows\System32\wmi.dll
22:03:19.0293 3624 C:\Windows\System32\wmi.dll - ok
22:03:19.0303 3624 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
22:03:19.0303 3624 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
22:03:19.0303 3624 [ 702A13ED6F2B4740FA77A7A19B382348 ] C:\Windows\SysWOW64\credui.dll
22:03:19.0303 3624 C:\Windows\SysWOW64\credui.dll - ok
22:03:19.0313 3624 [ 0470997A5ADC2FCDDCB3461D92073FAA ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
22:03:19.0313 3624 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll - ok
22:03:19.0313 3624 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
22:03:19.0313 3624 C:\Windows\SysWOW64\hlink.dll - ok
22:03:19.0313 3624 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
22:03:19.0323 3624 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
22:03:19.0323 3624 [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
22:03:19.0323 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
22:03:19.0333 3624 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
22:03:19.0333 3624 C:\Program Files\Windows Defender\MpRTP.dll - ok
22:03:19.0333 3624 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
22:03:19.0333 3624 C:\Windows\System32\tdh.dll - ok
22:03:19.0333 3624 [ D527EF4364D2D00443470940B177EAD4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{30682A87-493F-46CD-98C3-F69860374F32}\mpengine.dll
22:03:19.0333 3624 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{30682A87-493F-46CD-98C3-F69860374F32}\mpengine.dll - ok
22:03:19.0343 3624 [ B144A2223EF11ED42310124A7839258E ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{30682A87-493F-46CD-98C3-F69860374F32}\mpasbase.vdm
22:03:19.0343 3624 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{30682A87-493F-46CD-98C3-F69860374F32}\mpasbase.vdm - ok
22:03:19.0343 3624 [ EE10A3C1DCC7CDA2E44738555C83AE42 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{30682A87-493F-46CD-98C3-F69860374F32}\mpasdlta.vdm
22:03:19.0343 3624 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{30682A87-493F-46CD-98C3-F69860374F32}\mpasdlta.vdm - ok
22:03:19.0353 3624 [ 90691014D96030B69D7B8D6A0967FC67 ] C:\Windows\SysWOW64\msv1_0.dll
22:03:19.0353 3624 C:\Windows\SysWOW64\msv1_0.dll - ok
22:03:19.0353 3624 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
22:03:19.0353 3624 C:\Windows\SysWOW64\cryptdll.dll - ok
22:03:19.0363 3624 [ 00D1F89836927C0F2E37321E6B441FCE ] C:\Windows\SysWOW64\msxml3.dll
22:03:19.0363 3624 C:\Windows\SysWOW64\msxml3.dll - ok
22:03:19.0363 3624 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
22:03:19.0363 3624 C:\Windows\System32\npmproxy.dll - ok
22:03:19.0373 3624 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] C:\Windows\System32\vds.exe
22:03:19.0373 3624 C:\Windows\System32\vds.exe - ok
22:03:19.0373 3624 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
22:03:19.0373 3624 C:\Windows\SysWOW64\npmproxy.dll - ok
22:03:19.0383 3624 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
22:03:19.0383 3624 C:\Program Files\Windows Defender\MsMpLics.dll - ok
22:03:19.0383 3624 [ 85409DCE247D97E4D6958B7C5916BE4A ] C:\Windows\System32\wscapi.dll
22:03:19.0383 3624 C:\Windows\System32\wscapi.dll - ok
22:03:19.0393 3624 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
22:03:19.0393 3624 C:\Windows\System32\wscisvif.dll - ok
22:03:19.0393 3624 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
22:03:19.0393 3624 C:\Windows\System32\wscproxystub.dll - ok
22:03:19.0393 3624 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\svchost.exe
22:03:19.0393 3624 C:\Windows\svchost.exe - ok
22:03:19.0403 3624 [ 020DDBA420E020F84BDEDCC8C65B3A56 ] C:\Windows\System32\osuninst.dll
22:03:19.0403 3624 C:\Windows\System32\osuninst.dll - ok
22:03:19.0403 3624 [ 3D1AE0543DD9FBA55409BF0A5103CA3D ] C:\Windows\System32\uexfat.dll
22:03:19.0403 3624 C:\Windows\System32\uexfat.dll - ok
22:03:19.0413 3624 [ 8F9F3969933C02DA96EB0F84576DB43E ] C:\Windows\System32\wscsvc.dll
22:03:19.0413 3624 C:\Windows\System32\wscsvc.dll - ok
22:03:19.0413 3624 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\SysWOW64\netmsg.dll
22:03:19.0413 3624 C:\Windows\SysWOW64\netmsg.dll - ok
22:03:19.0423 3624 [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
22:03:19.0423 3624 C:\Windows\System32\appinfo.dll - ok
22:03:19.0423 3624 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] C:\Windows\System32\qmgr.dll
22:03:19.0423 3624 C:\Windows\System32\qmgr.dll - ok
22:03:19.0433 3624 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
22:03:19.0433 3624 C:\Windows\System32\wdi.dll - ok
22:03:19.0433 3624 [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
22:03:19.0433 3624 C:\Windows\System32\wpdbusenum.dll - ok
22:03:19.0433 3624 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\SysWOW64\dssenh.dll
22:03:19.0433 3624 C:\Windows\SysWOW64\dssenh.dll - ok
22:03:19.0447 3624 [ EE11A3F03D8B801B721BC6D0089BDD9C ] C:\Windows\System32\ulib.dll
22:03:19.0447 3624 C:\Windows\System32\ulib.dll - ok
22:03:19.0452 3624 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
22:03:19.0452 3624 C:\Windows\System32\aelupsvc.dll - ok
22:03:19.0458 3624 [ 4E75477E8BFA55C6F1F2688FB553F0C5 ] C:\Windows\System32\bitsperf.dll
22:03:19.0458 3624 C:\Windows\System32\bitsperf.dll - ok
22:03:19.0463 3624 [ 1751E9EB7974C728F7445C10C3E175AD ] C:\Windows\System32\ifsutil.dll
22:03:19.0463 3624 C:\Windows\System32\ifsutil.dll - ok
22:03:19.0468 3624 [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
22:03:19.0468 3624 C:\Windows\System32\diagperf.dll - ok
22:03:19.0472 3624 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
22:03:19.0472 3624 C:\Windows\System32\PortableDeviceApi.dll - ok
22:03:19.0477 3624 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
22:03:19.0477 3624 C:\Windows\System32\bitsigd.dll - ok
22:03:19.0482 3624 [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
22:03:19.0482 3624 C:\Windows\System32\upnp.dll - ok
22:03:19.0487 3624 [ C3804346CDF9A8744084EEBA6BA739AF ] C:\Windows\System32\uudf.dll
22:03:19.0487 3624 C:\Windows\System32\uudf.dll - ok
22:03:19.0492 3624 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
22:03:19.0492 3624 C:\Windows\System32\wbem\NCProv.dll - ok
22:03:19.0497 3624 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
22:03:19.0497 3624 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
22:03:19.0503 3624 [ C26A17C8F15495DAE02907FC4E449977 ] C:\Windows\System32\untfs.dll
22:03:19.0503 3624 C:\Windows\System32\untfs.dll - ok
22:03:19.0507 3624 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
22:03:19.0507 3624 C:\Windows\System32\Apphlpdm.dll - ok
22:03:19.0512 3624 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
22:03:19.0512 3624 C:\Windows\System32\p2pcollab.dll - ok
22:03:19.0517 3624 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
22:03:19.0517 3624 C:\Windows\System32\perftrack.dll - ok
22:03:19.0522 3624 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
22:03:19.0522 3624 C:\Windows\System32\pnpts.dll - ok
22:03:19.0527 3624 [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
22:03:19.0527 3624 C:\Windows\System32\wdiasqmmodule.dll - ok
22:03:19.0531 3624 [ CC37D9A25FF8D8CF12FC2F512C100F45 ] C:\Windows\System32\ufat.dll
22:03:19.0531 3624 C:\Windows\System32\ufat.dll - ok
22:03:19.0534 3624 [ 4987E079A4530FA737A128BE54B63B12 ] C:\Windows\System32\QAGENTRT.DLL
22:03:19.0534 3624 C:\Windows\System32\QAGENTRT.DLL - ok
22:03:19.0539 3624 [ 491DA8248209835532DAABF18B0215DA ] C:\Windows\System32\fmifs.dll
22:03:19.0539 3624 C:\Windows\System32\fmifs.dll - ok
22:03:19.0544 3624 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
22:03:19.0544 3624 C:\Windows\System32\fveui.dll - ok
22:03:19.0548 3624 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
22:03:19.0548 3624 C:\Windows\System32\wuapi.dll - ok
22:03:19.0553 3624 [ 64E6A44177ACF348D68255A37F4723DA ] C:\Windows\System32\cabinet.dll
22:03:19.0553 3624 C:\Windows\System32\cabinet.dll - ok
22:03:19.0558 3624 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
22:03:19.0558 3624 C:\Windows\System32\wups.dll - ok
22:03:19.0563 3624 [ 86F8145F5FD182F8C36337A351889F92 ] C:\Windows\System32\vdsdyn.dll
22:03:19.0563 3624 C:\Windows\System32\vdsdyn.dll - ok
22:03:19.0567 3624 [ D6A7F54D035FAAA0B13D38CF17789144 ] C:\Windows\System32\vdsbas.dll
22:03:19.0567 3624 C:\Windows\System32\vdsbas.dll - ok
22:03:19.0572 3624 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
22:03:19.0572 3624 C:\Windows\System32\fltLib.dll - ok
22:03:19.0577 3624 [ D2D154D1842219A0620459C3C34EFD9D ] C:\Windows\System32\vdsvd.dll
22:03:19.0577 3624 C:\Windows\System32\vdsvd.dll - ok
22:03:19.0581 3624 [ BBB44E9207E7F5A8D931AA6C74962C77 ] C:\Windows\System32\virtdisk.dll
22:03:19.0581 3624 C:\Windows\System32\virtdisk.dll - ok
22:03:19.0585 3624 [ 89A680191F2DD811BBD435D12B0D54E4 ] C:\Windows\System32\hbaapi.dll
22:03:19.0586 3624 C:\Windows\System32\hbaapi.dll - ok
22:03:19.0590 3624 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:03:19.0590 3624 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
22:03:19.0596 3624 [ 10AA7F741C1C4B7B456D0960B972A941 ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\savi.dll
22:03:19.0596 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\savi.dll - ok
22:03:19.0601 3624 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
22:03:19.0601 3624 C:\Windows\SysWOW64\comdlg32.dll - ok
22:03:19.0605 3624 [ 25CAB7E9525C883C4AED64E7D8DCAAE3 ] C:\DELL\uninstd.exe
22:03:19.0606 3624 C:\DELL\uninstd.exe - ok
22:03:19.0610 3624 [ 0CE633BC0C8D3D65BEE97AEB2A1C548D ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\osdp.dll
22:03:19.0611 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\osdp.dll - ok
22:03:19.0616 3624 [ F2C82BA7E80C6054D5D20F3FBD4CFD34 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
22:03:19.0616 3624 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE - ok
22:03:19.0620 3624 [ 8E73440F3D0DE7BB634A7FD1A5D12F9F ] C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\veex.dll
22:03:19.0620 3624 C:\Program Files (x86)\Webroot\Security\Current\plugins\antimalware\AntiVirus\veex.dll - ok
22:03:19.0625 3624 [ 193B810608624D9D66B40E7CE3B86905 ] C:\Windows\SysWOW64\sftldr_wow64.dll
22:03:19.0625 3624 C:\Windows\SysWOW64\sftldr_wow64.dll - ok
22:03:19.0630 3624 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
22:03:19.0630 3624 C:\Windows\SysWOW64\shfolder.dll - ok
22:03:19.0635 3624 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
22:03:19.0635 3624 C:\Windows\System32\ssdpsrv.dll - ok
22:03:19.0640 3624 [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
22:03:19.0640 3624 C:\Windows\System32\runonce.exe - ok
22:03:19.0644 3624 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
22:03:19.0645 3624 C:\Windows\System32\NapiNSP.dll - ok
22:03:19.0649 3624 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
22:03:19.0649 3624 C:\Windows\System32\winrnr.dll - ok
22:03:19.0653 3624 [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
22:03:19.0654 3624 C:\Windows\System32\wbem\wmiprov.dll - ok
22:03:19.0658 3624 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
22:03:19.0658 3624 C:\Windows\System32\pnrpnsp.dll - ok
22:03:19.0663 3624 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
22:03:19.0663 3624 C:\Windows\System32\dimsjob.dll - ok
22:03:19.0668 3624 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
22:03:19.0668 3624 C:\Windows\System32\drivers\fastfat.sys - ok
22:03:19.0673 3624 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
22:03:19.0673 3624 C:\Windows\System32\qmgrprxy.dll - ok
22:03:19.0678 3624 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
22:03:19.0678 3624 C:\Windows\SysWOW64\qmgrprxy.dll - ok
22:03:19.0683 3624 [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
22:03:19.0683 3624 C:\Windows\System32\certcli.dll - ok
22:03:19.0688 3624 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
22:03:19.0689 3624 C:\Windows\System32\pautoenr.dll - ok
22:03:19.0694 3624 [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
22:03:19.0694 3624 C:\Windows\System32\CertEnroll.dll - ok
22:03:19.0698 3624 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
22:03:19.0699 3624 C:\Windows\System32\iscsidsc.dll - ok
22:03:19.0703 3624 [ D152B2BDCFA6A220493582EC1F2B8416 ] C:\Windows\System32\iscsium.dll
22:03:19.0703 3624 C:\Windows\System32\iscsium.dll - ok
22:03:19.0708 3624 [ 56DE449CE5F659D4492E81094542392B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sentinel.dll
22:03:19.0708 3624 C:\Program Files (x86)\Microsoft Application Virtualization Client\sentinel.dll - ok
22:03:19.0713 3624 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
22:03:19.0714 3624 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
22:03:19.0718 3624 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
22:03:19.0718 3624 C:\Windows\SysWOW64\runonce.exe - ok
22:03:19.0723 3624 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
22:03:19.0723 3624 C:\Windows\SysWOW64\uxtheme.dll - ok
22:03:19.0728 3624 [ 23184ACB28F576FB0D44E9BE78844443 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe
22:03:19.0728 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe - ok
22:03:19.0733 3624 [ CB7633FF7131FB4AA25A09A619082F60 ] C:\Windows\AppPatch\AcLayers.dll
22:03:19.0733 3624 C:\Windows\AppPatch\AcLayers.dll - ok
22:03:19.0738 3624 [ D96D0F617E2E06EEB709430515B3B7D8 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
22:03:19.0738 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
22:03:19.0743 3624 [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
22:03:19.0743 3624 C:\Windows\SysWOW64\devrtl.dll - ok
22:03:19.0748 3624 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
22:03:19.0748 3624 C:\Windows\SysWOW64\sfc.dll - ok
22:03:19.0752 3624 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
22:03:19.0752 3624 C:\Windows\SysWOW64\sfc_os.dll - ok
22:03:19.0757 3624 [ C19E885F4D247B397937A5C2F7817A03 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
22:03:19.0757 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
22:03:19.0762 3624 [ AC737468617A87BDA594E67DABE46DE9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll
22:03:19.0762 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STXml.dll - ok
22:03:19.0767 3624 [ 00A1AD977CDB951A0DF7EDA49EEB3962 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll
22:03:19.0767 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STStringArray.dll - ok
22:03:19.0772 3624 [ 6F34C277716F71DB2251EC52E7D5E38B ] C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll
22:03:19.0772 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\libxml2.dll - ok
22:03:19.0778 3624 [ 40851074B22B0D78F1DD50139AC48176 ] C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll
22:03:19.0778 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll - ok
22:03:19.0783 3624 [ EF957FB0384518465D50190BB0DEF906 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
22:03:19.0783 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
22:03:19.0786 3624 [ 9ABF58C8CFC9D942C264F1357415E1F9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll
22:03:19.0786 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll - ok
22:03:19.0791 3624 [ E6989D712D3BF9ADAB917630A6552919 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll
22:03:19.0791 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll - ok
22:03:19.0797 3624 [ D7103DD0C347506EBB6992879DB49B2F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll
22:03:19.0797 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll - ok
22:03:19.0801 3624 [ 2CA23E9582942FF81B3415569783BFB1 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll
22:03:19.0801 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll - ok
22:03:19.0806 3624 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
22:03:19.0806 3624 C:\Windows\SysWOW64\oledlg.dll - ok
22:03:19.0811 3624 [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
22:03:19.0811 3624 C:\Windows\System32\mscoree.dll - ok
22:03:19.0815 3624 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
22:03:19.0815 3624 C:\Windows\SysWOW64\cmd.exe - ok
22:03:19.0820 3624 [ 5EECBF0684A2D9B9990964B86FB61E93 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
22:03:19.0820 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
22:03:19.0825 3624 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
22:03:19.0825 3624 C:\Windows\SysWOW64\dwmapi.dll - ok
22:03:19.0830 3624 [ 62E43C6A2BA59CD6F8983155143EEEAB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
22:03:19.0830 3624 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
22:03:19.0835 3624 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
22:03:19.0835 3624 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
22:03:19.0840 3624 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
22:03:19.0840 3624 C:\Windows\SysWOW64\winbrand.dll - ok
22:03:19.0845 3624 [ B701CD6DC1659244DE8C1A4C70758F61 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
22:03:19.0845 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
22:03:19.0850 3624 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
22:03:19.0850 3624 C:\Windows\SysWOW64\shdocvw.dll - ok
22:03:19.0854 3624 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Dustin\AppData\Local\Temp\C733EF5F-98EA-4CD8-A5BE-9CBB420C1B3F.exe
22:03:19.0854 3624 C:\Users\Dustin\AppData\Local\Temp\C733EF5F-98EA-4CD8-A5BE-9CBB420C1B3F.exe - ok
22:03:19.0860 3624 [ 7B8F7848D3C65DD9589A4898CFF3757D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
22:03:19.0860 3624 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
22:03:19.0865 3624 [ FD7467D5D1C921C62E01B8B8C56A4C71 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\05ae3bc162010cd25470c276297f1303\mscorlib.ni.dll
22:03:19.0865 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\05ae3bc162010cd25470c276297f1303\mscorlib.ni.dll - ok
22:03:19.0870 3624 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
22:03:19.0870 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
22:03:19.0875 3624 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\SysWOW64\WindowsCodecs.dll
22:03:19.0875 3624 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
22:03:19.0880 3624 [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8 ] C:\Windows\System32\riched20.dll
22:03:19.0880 3624 C:\Windows\System32\riched20.dll - ok
22:03:19.0884 3624 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
22:03:19.0885 3624 C:\Windows\SysWOW64\EhStorShell.dll - ok
22:03:19.0888 3624 [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
22:03:19.0888 3624 C:\Windows\SysWOW64\ntshrui.dll - ok
22:03:19.0893 3624 [ 3A2F5C8666F08B31C61DBAE9C297551C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
22:03:19.0893 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
22:03:19.0898 3624 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
22:03:19.0898 3624 C:\Windows\SysWOW64\slc.dll - ok
22:03:19.0902 3624 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
22:03:19.0903 3624 C:\Windows\SysWOW64\imageres.dll - ok
22:03:19.0908 3624 [ E54E4924E1FD3A0055E581FE0D831E27 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9de65bdc66e79ce80b00c85a1b4ace59\System.ni.dll
22:03:19.0908 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9de65bdc66e79ce80b00c85a1b4ace59\System.ni.dll - ok
22:03:19.0913 3624 [ 9CA52CECE93D5C8F83E80EE3CC6AC8D2 ] C:\Windows\System32\bcdedit.exe
22:03:19.0913 3624 C:\Windows\System32\bcdedit.exe - ok
22:03:19.0918 3624 [ 750D6A1244A4B70630DFC4A049D7CADF ] C:\Windows\SysWOW64\mshtml.dll
22:03:19.0918 3624 C:\Windows\SysWOW64\mshtml.dll - ok
22:03:19.0922 3624 [ 26025A46FB3FDB40FF06BBF1834093B5 ] C:\Windows\SysWOW64\msls31.dll
22:03:19.0922 3624 C:\Windows\SysWOW64\msls31.dll - ok
22:03:19.0927 3624 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
22:03:19.0927 3624 C:\Windows\SysWOW64\mlang.dll - ok
22:03:19.0931 3624 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
22:03:19.0932 3624 C:\Windows\SysWOW64\msimtf.dll - ok
22:03:19.0936 3624 [ 3CC1D7DB1DAA666215BC3E5AA02C213C ] C:\Windows\SysWOW64\jscript.dll
22:03:19.0936 3624 C:\Windows\SysWOW64\jscript.dll - ok
22:03:19.0941 3624 [ 25DEF2EF843275862FFBF55487CEFDDD ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx
22:03:19.0941 3624 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx - ok
22:03:19.0946 3624 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
22:03:19.0946 3624 C:\Windows\SysWOW64\msimg32.dll - ok
22:03:19.0950 3624 [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\SysWOW64\mscms.dll
22:03:19.0950 3624 C:\Windows\SysWOW64\mscms.dll - ok
22:03:19.0955 3624 [ AEA538848F2D3A7C7CF5DAF1967AB2C2 ] C:\Windows\SysWOW64\vbscript.dll
22:03:19.0955 3624 C:\Windows\SysWOW64\vbscript.dll - ok
22:03:19.0960 3624 [ 6D220604AA4240303DD8DEAEAB428377 ] C:\Windows\System32\ie4uinit.exe
22:03:19.0960 3624 C:\Windows\System32\ie4uinit.exe - ok
22:03:19.0965 3624 [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
22:03:19.0965 3624 C:\Windows\System32\timedate.cpl - ok
22:03:19.0971 3624 [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
22:03:19.0971 3624 C:\Windows\System32\actxprxy.dll - ok
22:03:19.0974 3624 [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
22:03:19.0974 3624 C:\Windows\System32\shdocvw.dll - ok
22:03:19.0979 3624 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
22:03:19.0979 3624 C:\Windows\System32\linkinfo.dll - ok
22:03:19.0983 3624 [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
22:03:19.0983 3624 C:\Windows\System32\msftedit.dll - ok
22:03:19.0985 3624 [ 7CB3ACB163DE051169095DC6507B8977 ] C:\Windows\System32\msls31.dll
22:03:19.0985 3624 C:\Windows\System32\msls31.dll - ok
22:03:19.0985 3624 [ 14F5C0DB4B2C47874D6C937A5A1B367C ] C:\Windows\System32\gameux.dll
22:03:19.0985 3624 C:\Windows\System32\gameux.dll - ok
22:03:19.0995 3624 [ 17A7998CB5DA92020A291B85FF7B3681 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
22:03:19.0995 3624 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
22:03:19.0995 3624 [ 8AFCB48CAD2A0AC051FBDEB7289BC0EE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:03:19.0995 3624 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
22:03:19.0995 3624 [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
22:03:19.0995 3624 C:\Windows\System32\DeviceCenter.dll - ok
22:03:20.0005 3624 [ 5CE2C1B7720D6C57903D622C0518CED3 ] C:\Windows\System32\igfxtray.exe
22:03:20.0005 3624 C:\Windows\System32\igfxtray.exe - ok
22:03:20.0005 3624 [ F7C063559C16B15F4553FC7C901E8E32 ] C:\Windows\System32\hkcmd.exe
22:03:20.0005 3624 C:\Windows\System32\hkcmd.exe - ok
22:03:20.0015 3624 [ B9C4ACAEDD93AC86C3265D42BA59FE6E ] C:\Windows\System32\ieframe.dll
22:03:20.0015 3624 C:\Windows\System32\ieframe.dll - ok
22:03:20.0015 3624 [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
22:03:20.0015 3624 C:\Windows\System32\oleacc.dll - ok
22:03:20.0025 3624 [ 4503362CE78612B942F44C62236F5B60 ] C:\Windows\System32\igfxpers.exe
22:03:20.0025 3624 C:\Windows\System32\igfxpers.exe - ok
22:03:20.0025 3624 [ E93736524C401B8F7654806DB82FC050 ] C:\Program Files\Dell\QuickSet\quickset.exe
22:03:20.0025 3624 C:\Program Files\Dell\QuickSet\quickset.exe - ok
22:03:20.0025 3624 [ 906949F06DDDD4CD896D1A81B7F89098 ] C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe
22:03:20.0025 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe - ok
22:03:20.0035 3624 [ 71ACED0671D85FF0F7B7094DFC57CA67 ] C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe
22:03:20.0035 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdnamon.exe - ok
22:03:20.0045 3624 [ D2E4B5956BEBC857F03B08F628DEA05B ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
22:03:20.0045 3624 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
22:03:20.0045 3624 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
22:03:20.0045 3624 C:\Windows\System32\rundll32.exe - ok
22:03:20.0045 3624 [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
22:03:20.0045 3624 C:\Windows\System32\thumbcache.dll - ok
22:03:20.0055 3624 [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
22:03:20.0055 3624 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
22:03:20.0055 3624 [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
22:03:20.0055 3624 C:\Windows\System32\networkexplorer.dll - ok
22:03:20.0065 3624 [ 609B1EC328B30D5DE438DCCE0732649C ] C:\Program Files\Dell\DellDock\DellDock.exe
22:03:20.0065 3624 C:\Program Files\Dell\DellDock\DellDock.exe - ok
22:03:20.0065 3624 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
22:03:20.0065 3624 C:\Windows\System32\msiltcfg.dll - ok
22:03:20.0075 3624 [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
22:03:20.0075 3624 C:\Windows\System32\msi.dll - ok
22:03:20.0075 3624 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\60474656.sys
22:03:20.0075 3624 C:\Windows\System32\drivers\60474656.sys - ok
22:03:20.0086 3624 [ 7FEC07340B6B5374A117BF6594F178D3 ] C:\Windows\System32\hccutils.dll
22:03:20.0086 3624 C:\Windows\System32\hccutils.dll - ok
22:03:20.0090 3624 [ CFC11B505C5FAEBDDF9D83831C687274 ] C:\Windows\System32\igfxsrvc.exe
22:03:20.0091 3624 C:\Windows\System32\igfxsrvc.exe - ok
22:03:20.0095 3624 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
22:03:20.0095 3624 C:\Windows\SysWOW64\riched20.dll - ok
22:03:20.0100 3624 [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
22:03:20.0100 3624 C:\Windows\System32\stobject.dll - ok
22:03:20.0104 3624 [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
22:03:20.0105 3624 C:\Windows\System32\batmeter.dll - ok
22:03:20.0109 3624 [ 0C8FE90C72EE10FF767A4B760B864D3F ] C:\Windows\System32\url.dll
22:03:20.0109 3624 C:\Windows\System32\url.dll - ok
22:03:20.0114 3624 [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
22:03:20.0114 3624 C:\Windows\System32\prnfldr.dll - ok
22:03:20.0119 3624 [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
22:03:20.0119 3624 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
22:03:20.0123 3624 [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
22:03:20.0123 3624 C:\Windows\System32\DXP.dll - ok
22:03:20.0128 3624 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
22:03:20.0128 3624 C:\Windows\System32\Syncreg.dll - ok
22:03:20.0133 3624 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
22:03:20.0133 3624 C:\Windows\SysWOW64\duser.dll - ok
22:03:20.0138 3624 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
22:03:20.0138 3624 C:\Windows\ehome\ehSSO.dll - ok
22:03:20.0142 3624 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
22:03:20.0142 3624 C:\Windows\SysWOW64\dui70.dll - ok
22:03:20.0147 3624 [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
22:03:20.0147 3624 C:\Windows\System32\netshell.dll - ok
22:03:20.0152 3624 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
22:03:20.0152 3624 C:\Windows\System32\AltTab.dll - ok
22:03:20.0156 3624 [ 7CC5C2BFC0C3E19950B52CC162C6F383 ] C:\Windows\Installer\{22D8AE6F-3C6B-47E8-8F04-629F23DBE978}\iTunesIco.exe
22:03:20.0156 3624 C:\Windows\Installer\{22D8AE6F-3C6B-47E8-8F04-629F23DBE978}\iTunesIco.exe - ok
22:03:20.0157 3624 [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
22:03:20.0157 3624 C:\Windows\System32\WPDShServiceObj.dll - ok
22:03:20.0157 3624 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
22:03:20.0157 3624 C:\Windows\System32\PortableDeviceTypes.dll - ok
22:03:20.0167 3624 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
22:03:20.0167 3624 C:\Windows\System32\UIAnimation.dll - ok
22:03:20.0167 3624 [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
22:03:20.0167 3624 C:\Windows\System32\pnidui.dll - ok
22:03:20.0177 3624 [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
22:03:20.0177 3624 C:\Windows\System32\QUTIL.DLL - ok
22:03:20.0177 3624 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
22:03:20.0177 3624 C:\Windows\System32\FXSST.dll - ok
22:03:20.0187 3624 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
22:03:20.0187 3624 C:\Windows\System32\dsound.dll - ok
22:03:20.0187 3624 [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
22:03:20.0187 3624 C:\Windows\System32\FXSAPI.dll - ok
22:03:20.0187 3624 [ 079FC5AAA9963057548DF29F069EC406 ] C:\Windows\AppPatch\AcGenral.dll
22:03:20.0187 3624 C:\Windows\AppPatch\AcGenral.dll - ok
22:03:20.0197 3624 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
22:03:20.0197 3624 C:\Windows\System32\oledlg.dll - ok
22:03:20.0197 3624 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
22:03:20.0197 3624 C:\Windows\System32\FXSRESM.dll - ok
22:03:20.0207 3624 [ AC012AD7539A8F9FFD31CF80BAA06CC7 ] C:\Windows\System32\LogiLDA.DLL
22:03:20.0207 3624 C:\Windows\System32\LogiLDA.DLL - ok
22:03:20.0207 3624 [ B706F25D88D99C47324085E3AA9DEA53 ] C:\Windows\System32\SynCOM.dll
22:03:20.0207 3624 C:\Windows\System32\SynCOM.dll - ok
22:03:20.0217 3624 [ 452FA961163EF4AEE4815796A13AB2CF ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
22:03:20.0217 3624 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
22:03:20.0217 3624 [ D7E8EBDE5DB201216B755418E2F0A7CE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll
22:03:20.0217 3624 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\gtn.dll - ok
22:03:20.0227 3624 [ 00D1FB0073B4A8BD2989EA8FF4CC792B ] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
22:03:20.0227 3624 C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe - ok
22:03:20.0237 3624 [ ED52C6408A9E460E3CA2A8CA33A7D7E8 ] C:\Windows\System32\igfxsrvc.dll
22:03:20.0237 3624 C:\Windows\System32\igfxsrvc.dll - ok
22:03:20.0237 3624 [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
22:03:20.0237 3624 C:\Windows\System32\srchadmin.dll - ok
22:03:20.0248 3624 [ 08F1204EA9D8242DDE51CD5DE004E465 ] C:\Program Files (x86)\Lexmark 2600 Series\lxdnscw.dll
22:03:20.0248 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdnscw.dll - ok
22:03:20.0252 3624 [ 72F7CA999C4BADFD3BF2297F4125EA1C ] C:\Windows\System32\igfxdev.dll
22:03:20.0252 3624 C:\Windows\System32\igfxdev.dll - ok
22:03:20.0257 3624 [ 00D1FB0073B4A8BD2989EA8FF4CC792B ] C:\Program Files (x86)\Dell\DellComms\bin\sprtcmd.exe
22:03:20.0257 3624 C:\Program Files (x86)\Dell\DellComms\bin\sprtcmd.exe - ok
22:03:20.0262 3624 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
22:03:20.0262 3624 C:\Windows\System32\opengl32.dll - ok
22:03:20.0267 3624 [ 0CE025436A9B94D28EEA7EC45BDD67B6 ] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
22:03:20.0267 3624 C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe - ok
22:03:20.0272 3624 [ 6C3B6282507015994C413FA8923ECD63 ] C:\Windows\System32\igfxrenu.lrc
22:03:20.0272 3624 C:\Windows\System32\igfxrenu.lrc - ok
22:03:20.0277 3624 [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
22:03:20.0277 3624 C:\Windows\System32\bthprops.cpl - ok
22:03:20.0281 3624 [ 9A87EE4423AB05070548C984E4E6983A ] C:\Windows\System32\igfxress.dll
22:03:20.0281 3624 C:\Windows\System32\igfxress.dll - ok
22:03:20.0286 3624 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
22:03:20.0286 3624 C:\Windows\System32\msimg32.dll - ok
22:03:20.0291 3624 [ 6E3245DF783E58375B3465F03274743E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
22:03:20.0291 3624 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
22:03:20.0296 3624 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
22:03:20.0296 3624 C:\Windows\System32\glu32.dll - ok
22:03:20.0300 3624 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
22:03:20.0300 3624 C:\Windows\System32\FXSSVC.exe - ok
22:03:20.0304 3624 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:03:20.0304 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
22:03:20.0311 3624 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
22:03:20.0311 3624 C:\Windows\System32\ddraw.dll - ok
22:03:20.0315 3624 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
22:03:20.0315 3624 C:\Windows\System32\dciman32.dll - ok
22:03:20.0319 3624 [ 44CD976089C211AF9499E43FAB99BB5A ] C:\Windows\System32\SynTPAPI.dll
22:03:20.0319 3624 C:\Windows\System32\SynTPAPI.dll - ok
22:03:20.0319 3624 [ 64CA23A9566B0D48E181E780CA60DA84 ] C:\Windows\System32\GfxUI.exe
22:03:20.0319 3624 C:\Windows\System32\GfxUI.exe - ok
22:03:20.0329 3624 [ 31C0134FA601985F9F329976A36A85FB ] C:\Program Files (x86)\Lexmark 2600 Series\LXDNcfg.dll
22:03:20.0329 3624 C:\Program Files (x86)\Lexmark 2600 Series\LXDNcfg.dll - ok
22:03:20.0329 3624 [ 4BDE8A57391927CA473C0F93D243C446 ] C:\Windows\System32\RtkCfg64.dll
22:03:20.0329 3624 C:\Windows\System32\RtkCfg64.dll - ok
22:03:20.0329 3624 [ 80B62FF105908EC9E4B072AFB1CFC824 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
22:03:20.0329 3624 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
22:03:20.0339 3624 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
22:03:20.0339 3624 C:\Windows\SysWOW64\msacm32.dll - ok
22:03:20.0339 3624 [ FC767BE3F31664B2349EC1BA3EC5EECD ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
22:03:20.0339 3624 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
22:03:20.0349 3624 [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
22:03:20.0349 3624 C:\Windows\System32\SearchIndexer.exe - ok
22:03:20.0349 3624 [ 00D5ECC1E528530613AF8D7DB64BF6C6 ] C:\Program Files (x86)\Lexmark 2600 Series\dotnetchecker.dll
22:03:20.0349 3624 C:\Program Files (x86)\Lexmark 2600 Series\dotnetchecker.dll - ok
22:03:20.0359 3624 [ F514F8AA46D633CA6AE4912FFE09E2F5 ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\swg.dll
22:03:20.0359 3624 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7725.1624\swg.dll - ok
22:03:20.0359 3624 [ 3B483914CE13FF7A6161B8D0C5713A44 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\c77f73b453ebe063be6ca91e65524d18\MyDock.Util.ni.dll
22:03:20.0359 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\c77f73b453ebe063be6ca91e65524d18\MyDock.Util.ni.dll - ok
22:03:20.0369 3624 [ D7936ED15F4AEF0FC33F329D0F21ED46 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
22:03:20.0369 3624 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
22:03:20.0369 3624 [ 59C9FF05BE6F3BF709D92FAE2E8D7192 ] C:\Program Files (x86)\Lexmark 2600 Series\lxdndatr.dll
22:03:20.0369 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdndatr.dll - ok
22:03:20.0379 3624 [ 8B151F510E6E49A45B72F10C21D3EFBE ] C:\Program Files (x86)\Lexmark 2600 Series\lxdnmsdmon.exe
22:03:20.0379 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdnmsdmon.exe - ok
22:03:20.0379 3624 [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
22:03:20.0379 3624 C:\Windows\System32\consent.exe - ok
22:03:20.0389 3624 [ 2D9AD14534361321A8B0F092D69E7871 ] C:\Windows\System32\igfxext.exe
22:03:20.0389 3624 C:\Windows\System32\igfxext.exe - ok
22:03:20.0389 3624 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
22:03:20.0389 3624 C:\Windows\SysWOW64\mscoree.dll - ok
22:03:20.0399 3624 [ 06A8334D76DCF0DFFA738A512BDCD5F7 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
22:03:20.0399 3624 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
22:03:20.0399 3624 [ 6F60A5FC2BBB193E3AE569712928164B ] C:\Program Files (x86)\Lexmark 2600 Series\lxdncomx.dll
22:03:20.0399 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdncomx.dll - ok
22:03:20.0409 3624 [ D36B541544460613E39BEBEE2E7C4CB9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\5f0a97cc9a710146f8f2aef9874cf418\DellDock.ni.exe
22:03:20.0409 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\5f0a97cc9a710146f8f2aef9874cf418\DellDock.ni.exe - ok
22:03:20.0409 3624 [ 93BD4A6DBD33E107BA59FE190AF779C6 ] C:\Program Files (x86)\Lexmark 2600 Series\lxdncats.dll
22:03:20.0409 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdncats.dll - ok
22:03:20.0419 3624 [ 5282FD7134EF86C8B59DC4F986845CB1 ] C:\Program Files (x86)\Lexmark 2600 Series\lxdndrs.dll
22:03:20.0419 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdndrs.dll - ok
22:03:20.0419 3624 [ B8EC01E783B2100F1A894CC2EDB759FB ] C:\Program Files (x86)\Lexmark 2600 Series\lxdncaps.dll
22:03:20.0419 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdncaps.dll - ok
22:03:20.0430 3624 [ 768397F3C645F6A29C1413AACC8C0981 ] C:\Program Files (x86)\Lexmark 2600 Series\lxdncnv4.dll
22:03:20.0430 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdncnv4.dll - ok
22:03:20.0435 3624 [ C50231C862536CB54DCEAAC60813B14F ] C:\Program Files (x86)\Lexmark 2600 Series\lxdncomc.dll
22:03:20.0435 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdncomc.dll - ok
22:03:20.0441 3624 [ B5E5F391E7C77EBEF8992416CA7477DA ] C:\Program Files (x86)\Lexmark 2600 Series\lxdnmonr.dll
22:03:20.0441 3624 C:\Program Files (x86)\Lexmark 2600 Series\lxdnmonr.dll - ok
22:03:20.0445 3624 [ C138C1950D9E97BC253BFC3259A39BCD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\4eb3f7112a359d4ea8d998dfa79da394\VistaBridgeLibrary.ni.dll
22:03:20.0446 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\4eb3f7112a359d4ea8d998dfa79da394\VistaBridgeLibrary.ni.dll - ok
22:03:20.0448 3624 [ 97BD2C0807C95C900703DA9DCC81977E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\2074eebcc019b42585b7dd6db83976fc\MenuSkinning.ni.dll
22:03:20.0448 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\2074eebcc019b42585b7dd6db83976fc\MenuSkinning.ni.dll - ok
22:03:20.0451 3624 [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
22:03:20.0451 3624 C:\Windows\System32\tquery.dll - ok
22:03:20.0451 3624 [ D16903B9431F799877AD6DF13D16BDA0 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll
22:03:20.0451 3624 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll - ok
22:03:20.0461 3624 [ 60F58070E56145B8B2CCB264D5E53136 ] C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll
22:03:20.0461 3624 C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll - ok
22:03:20.0461 3624 [ C8AA17D12D926F0DF41F6D80B2ECC052 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\48988da6fc6a40a63f4f71912b02783c\WindowsBase.ni.dll
22:03:20.0461 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\48988da6fc6a40a63f4f71912b02783c\WindowsBase.ni.dll - ok
22:03:20.0471 3624 [ E375386B937B7FF3A10F71D1A09AD360 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
22:03:20.0471 3624 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
22:03:20.0471 3624 [ 5481B43733EFC3C09ED11A1F9FC559A8 ] C:\Windows\System32\igfxexps.dll
22:03:20.0471 3624 C:\Windows\System32\igfxexps.dll - ok
22:03:20.0471 3624 [ A0A42BB19E085F4B3367F5057307C194 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
22:03:20.0471 3624 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
22:03:20.0481 3624 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
22:03:20.0481 3624 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
22:03:20.0491 3624 [ AF9B7F55AAB8229241E29FB82177DB30 ] C:\Program Files (x86)\Dell\DellComms\bin\sprtevent.dll
22:03:20.0491 3624 C:\Program Files (x86)\Dell\DellComms\bin\sprtevent.dll - ok
22:03:20.0491 3624 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
22:03:20.0491 3624 C:\Windows\SysWOW64\Nlsdl.dll - ok
22:03:20.0491 3624 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
22:03:20.0491 3624 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
22:03:20.0501 3624 [ 91062AC5D12F74DBFCCAEEAD86372CBD ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
22:03:20.0501 3624 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
22:03:20.0501 3624 [ 8B70A55FDB9C0518DB9F8C5FF0774313 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
22:03:20.0501 3624 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
22:03:20.0511 3624 [ 2EEEF8544DCAFE322301B68AA7F1D989 ] C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll
22:03:20.0511 3624 C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll - ok
22:03:20.0511 3624 [ 09A828778A367818C7F899640D188B5C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3d91cdce6400743bc309a5e39212f1d5\PresentationCore.ni.dll
22:03:20.0511 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3d91cdce6400743bc309a5e39212f1d5\PresentationCore.ni.dll - ok
22:03:20.0521 3624 [ 11456E7C78A6C3D43E5D81CE8A899FA6 ] C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll
22:03:20.0521 3624 C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll - ok
22:03:20.0521 3624 [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
22:03:20.0521 3624 C:\Windows\System32\mssrch.dll - ok
22:03:20.0531 3624 [ AF9B7F55AAB8229241E29FB82177DB30 ] C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll
22:03:20.0531 3624 C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll - ok
22:03:20.0531 3624 [ F3E06B350048CF40DC99342C05278A59 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl
22:03:20.0531 3624 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl - ok
22:03:20.0541 3624 [ 0786EA7E8DBDD3D8D6861E7D2C87E5E3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
22:03:20.0541 3624 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
22:03:20.0541 3624 [ 9A95D747564222F9DEAA57A09CB6714F ] C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll
22:03:20.0541 3624 C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll - ok
22:03:20.0551 3624 [ 14C6A59904D397C6D85DADA9ACBB6FAB ] C:\Windows\System32\browcli.dll
22:03:20.0551 3624 C:\Windows\System32\browcli.dll - ok
22:03:20.0551 3624 [ 28142AAF1565736CE0E5D7EFCE3CC0F8 ] C:\Windows\System32\schedcli.dll
22:03:20.0551 3624 C:\Windows\System32\schedcli.dll - ok
22:03:20.0561 3624 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll
22:03:20.0561 3624 C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll - ok
22:03:20.0561 3624 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
22:03:20.0561 3624 C:\Windows\SysWOW64\devenum.dll - ok
22:03:20.0571 3624 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
22:03:20.0571 3624 C:\Windows\SysWOW64\avicap32.dll - ok
22:03:20.0571 3624 [ A395ABC175604A4F863A0ECF9EE794CA ] C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll
22:03:20.0571 3624 C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll - ok
22:03:20.0581 3624 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
22:03:20.0581 3624 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
22:03:20.0581 3624 [ 2DEEB96A0957BD058753FF250E85EF49 ] C:\Windows\SysWOW64\msvfw32.dll
22:03:20.0581 3624 C:\Windows\SysWOW64\msvfw32.dll - ok
22:03:20.0591 3624 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
22:03:20.0591 3624 C:\Windows\System32\netman.dll - ok
22:03:20.0591 3624 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
22:03:20.0591 3624 C:\Windows\System32\msidle.dll - ok
22:03:20.0591 3624 [ E32B288B38C3182D9F890F45B067A5DB ] C:\Windows\SysWOW64\vfwwdm32.dll
22:03:20.0591 3624 C:\Windows\SysWOW64\vfwwdm32.dll - ok
22:03:20.0601 3624 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
22:03:20.0601 3624 C:\Windows\System32\mssprxy.dll - ok
22:03:20.0601 3624 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
22:03:20.0601 3624 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
22:03:20.0611 3624 [ EA26620837952555A7F8D05118C44112 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\1a53454399e9d28cdcb592a9b7e904bd\PresentationFramework.ni.dll
22:03:20.0611 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\1a53454399e9d28cdcb592a9b7e904bd\PresentationFramework.ni.dll - ok
22:03:20.0611 3624 [ 14A1301778D69A64A0E79C4EF97BA42C ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
22:03:20.0611 3624 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
22:03:20.0621 3624 [ 2763D61D132BB47028BA7A6D67E54998 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll
22:03:20.0621 3624 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll - ok
22:03:20.0621 3624 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:03:20.0621 3624 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
22:03:20.0635 3624 [ 8BF179E9513F70EA95DE2D539650EAF0 ] C:\Windows\SysWOW64\ksproxy.ax
22:03:20.0635 3624 C:\Windows\SysWOW64\ksproxy.ax - ok
22:03:20.0640 3624 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
22:03:20.0640 3624 C:\Windows\SysWOW64\ksuser.dll - ok
22:03:20.0645 3624 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
22:03:20.0713 3624 C:\Windows\SysWOW64\d3d9.dll - ok
22:03:20.0713 3624 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
22:03:20.0713 3624 C:\Windows\System32\rasdlg.dll - ok
22:03:20.0713 3624 [ D37F42709D6ECC7642EEC8843A676A7B ] C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll
22:03:20.0713 3624 C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll - ok
22:03:20.0723 3624 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
22:03:20.0723 3624 C:\Windows\SysWOW64\d3d8thk.dll - ok
22:03:20.0723 3624 [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
22:03:20.0723 3624 C:\Windows\System32\mprapi.dll - ok
22:03:20.0733 3624 [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
22:03:20.0733 3624 C:\Windows\System32\dot3api.dll - ok
22:03:20.0733 3624 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
22:03:20.0733 3624 C:\Windows\System32\wlanhlp.dll - ok
22:03:20.0743 3624 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
22:03:20.0743 3624 C:\Windows\System32\hnetcfg.dll - ok
22:03:20.0743 3624 [ 70F03B29A62194E69911952B3640D9D2 ] C:\Windows\SysWOW64\msdmo.dll
22:03:20.0743 3624 C:\Windows\SysWOW64\msdmo.dll - ok
22:03:20.0753 3624 [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
22:03:20.0753 3624 C:\Windows\SysWOW64\vidcap.ax - ok
22:03:20.0753 3624 [ 3F41165F3F56547D0BACA826C2651A77 ] C:\Windows\SysWOW64\Kswdmcap.ax
22:03:20.0753 3624 C:\Windows\SysWOW64\Kswdmcap.ax - ok
22:03:20.0763 3624 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
22:03:20.0763 3624 C:\Windows\System32\en-US\tquery.dll.mui - ok
22:03:20.0763 3624 [ 74C76BB54B26CE50C4BC755F92687C63 ] C:\Windows\SysWOW64\mfc42.dll
22:03:20.0763 3624 C:\Windows\SysWOW64\mfc42.dll - ok
22:03:20.0773 3624 [ 87E1E8A5135908AF80C184413AEB8AA1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5530227809880c9b8b1d834e5434e840\mscorlib.ni.dll
22:03:20.0773 3624 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5530227809880c9b8b1d834e5434e840\mscorlib.ni.dll - ok
22:03:20.0773 3624 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
22:03:20.0773 3624 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
22:03:20.0783 3624 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
22:03:20.0783 3624 C:\Windows\System32\WWanAPI.dll - ok
22:03:20.0783 3624 [ 5CA53A68F413B011BA976B655A7903CA ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\4caf9dcd9ab56ffd9b47fa0e6ac9a704\System.Drawing.ni.dll
22:03:20.0783 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\4caf9dcd9ab56ffd9b47fa0e6ac9a704\System.Drawing.ni.dll - ok
22:03:20.0783 3624 [ 5764C381949147EBCFB9A7134E2ABF06 ] C:\Windows\SysWOW64\odbc32.dll
22:03:20.0793 3624 C:\Windows\SysWOW64\odbc32.dll - ok
22:03:20.0793 3624 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
22:03:20.0793 3624 C:\Windows\SysWOW64\odbcint.dll - ok
22:03:20.0793 3624 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
22:03:20.0793 3624 C:\Windows\System32\wwapi.dll - ok
22:03:20.0803 3624 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
22:03:20.0803 3624 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
22:03:20.0803 3624 [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
22:03:20.0803 3624 C:\Windows\System32\QAGENT.DLL - ok
22:03:20.0813 3624 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
22:03:20.0813 3624 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
22:03:20.0813 3624 [ D146C378AEC2D1570A4E4F81E2B621B3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
22:03:20.0813 3624 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
22:03:20.0823 3624 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
22:03:20.0823 3624 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
22:03:20.0823 3624 [ B474C756C13960793C7583B766F904C4 ] C:\Program Files\iPod\bin\iPodService.exe
22:03:20.0823 3624 C:\Program Files\iPod\bin\iPodService.exe - ok
22:03:20.0833 3624 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll
22:03:20.0833 3624 C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll - ok
22:03:20.0833 3624 [ 3BE143948300BA876B7EDC5A93843A0B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\2335170ef8a6a3bee4153f36e2cd2df4\System.Windows.Forms.ni.dll
22:03:20.0833 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\2335170ef8a6a3bee4153f36e2cd2df4\System.Windows.Forms.ni.dll - ok
22:03:20.0843 3624 [ 2FF632103A9FFE7C8BA4E8B55F743EC1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c8ebcd93a2b547dc72dee2fcfabcdd50\System.ni.dll
22:03:20.0843 3624 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c8ebcd93a2b547dc72dee2fcfabcdd50\System.ni.dll - ok
22:03:20.0843 3624 [ 81E9339611B22ACE2E2D7B42F76C0F34 ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
22:03:20.0843 3624 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
22:03:20.0853 3624 [ A151EF45E062C71B0CA34054C40BC6E4 ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll
22:03:20.0853 3624 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll - ok
22:03:20.0853 3624 [ 98947A11E0EB117C8E503DE3EBD3955D ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll
22:03:20.0853 3624 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll - ok
22:03:20.0866 3624 [ 27AB587E5F0696590EF8B83A52952B7B ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
22:03:20.0866 3624 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
22:03:20.0872 3624 [ EBAC6AE68DE18B8A26E8B341636EEE3F ] C:\Program Files (x86)\Lexmark 2600 Series\app4r.monitor.common.dll
22:03:20.0872 3624 C:\Program Files (x86)\Lexmark 2600 Series\app4r.monitor.common.dll - ok
22:03:20.0877 3624 [ 74176A01DAA48C1825F550FFC9C28A01 ] C:\Program Files (x86)\Lexmark 2600 Series\app4r.monitor.core.dll
22:03:20.0877 3624 C:\Program Files (x86)\Lexmark 2600 Series\app4r.monitor.core.dll - ok
22:03:20.0882 3624 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
22:03:20.0882 3624 C:\Windows\System32\shfolder.dll - ok
22:03:20.0887 3624 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
22:03:20.0887 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
22:03:20.0892 3624 [ 88F5142C43306462814E44712AE443DE ] C:\Windows\System32\gfxSrvc.dll
22:03:20.0892 3624 C:\Windows\System32\gfxSrvc.dll - ok
22:03:20.0897 3624 [ 4DCC6849BF4C24FE34FD4EA69219D525 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2d47118e5da6db054d5676e665f2be2\System.Xml.ni.dll
22:03:20.0898 3624 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2d47118e5da6db054d5676e665f2be2\System.Xml.ni.dll - ok
22:03:20.0903 3624 [ E9087CD0BBC48A35CDB98464715993AC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\788257bab792c2704841588120cf6ad1\System.Configuration.ni.dll
22:03:20.0903 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\788257bab792c2704841588120cf6ad1\System.Configuration.ni.dll - ok
22:03:20.0905 3624 [ C7B0FE9CFFF69CD4E501BD1B39542455 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f4be07261983040b29685575b69085e8\System.Drawing.ni.dll
22:03:20.0905 3624 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f4be07261983040b29685575b69085e8\System.Drawing.ni.dll - ok
22:03:20.0905 3624 [ B68B0C33706A4703E16A5E238A42EBD5 ] C:\Windows\System32\IGFXDEVLib.dll
22:03:20.0905 3624 C:\Windows\System32\IGFXDEVLib.dll - ok
22:03:20.0915 3624 [ DF83EE5382851C6C33FDA15C2250F39F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\470f2295a6009a7d0646f07a68709fe5\System.Xml.ni.dll
22:03:20.0915 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\470f2295a6009a7d0646f07a68709fe5\System.Xml.ni.dll - ok
22:03:20.0915 3624 [ EE8E76761A4AEE5685D92A770A3B4B1F ] C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe
22:03:20.0915 3624 C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe - ok
22:03:20.0925 3624 [ 318285F1590C4484E3253BA2B189D2DF ] C:\Windows\System32\d3d9.dll
22:03:20.0925 3624 C:\Windows\System32\d3d9.dll - ok
22:03:20.0925 3624 [ D49D4AC365AE9CFB6B018F1C89055D87 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\515c6ffea562bb0f03a1ed8f75279648\System.Windows.Forms.ni.dll
22:03:20.0925 3624 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\515c6ffea562bb0f03a1ed8f75279648\System.Windows.Forms.ni.dll - ok
22:03:20.0935 3624 [ 568935733EC22B63A7F65750172370A3 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
22:03:20.0935 3624 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
22:03:20.0935 3624 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
22:03:20.0935 3624 C:\Windows\System32\d3d8thk.dll - ok
22:03:20.0947 3624 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:03:20.0947 3624 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
22:03:20.0951 3624 [ A36A4E7176F8BBAE6A54B28A62EBC9FC ] C:\Windows\System32\igdumd64.dll
22:03:20.0951 3624 C:\Windows\System32\igdumd64.dll - ok
22:03:20.0956 3624 [ 18082FABF3AC5C2E6477CC0C82AD0623 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
22:03:20.0956 3624 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
22:03:20.0961 3624 [ D42C85B499CA215186183CC23807B13A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2f44dac350b6161a9e9ce7222ae94335\System.Configuration.ni.dll
22:03:20.0962 3624 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2f44dac350b6161a9e9ce7222ae94335\System.Configuration.ni.dll - ok
22:03:20.0967 3624 [ 5F8DB784F4B58A4B5BB89FB9A654F5A9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\370a46899f68fa613bdfd77734fd2117\System.Management.ni.dll
22:03:20.0967 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\370a46899f68fa613bdfd77734fd2117\System.Management.ni.dll - ok
22:03:20.0972 3624 [ 0F308FD7005AA6971D62051F65F9A3BD ] C:\Program Files (x86)\Lexmark 2600 Series\app4r.devmons.mcmdevmon.autoplayutil.dll
22:03:20.0972 3624 C:\Program Files (x86)\Lexmark 2600 Series\app4r.devmons.mcmdevmon.autoplayutil.dll - ok
22:03:20.0978 3624 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
22:03:20.0978 3624 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
22:03:20.0983 3624 [ 694A72704C5602DE365DD1A2C7EB0456 ] C:\Program Files (x86)\Lexmark 2600 Series\app4r.devmons.mcmdevmon.dll
22:03:20.0983 3624 C:\Program Files (x86)\Lexmark 2600 Series\app4r.devmons.mcmdevmon.dll - ok
22:03:20.0988 3624 [ 8639237940994AAB9B8E8503F2A551A0 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
22:03:20.0989 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
22:03:20.0994 3624 [ CDCB65B20F6A36B77F1C016C2523AC75 ] C:\Program Files\Dell\DellDock\MyDockLib.dll
22:03:20.0994 3624 C:\Program Files\Dell\DellDock\MyDockLib.dll - ok
22:03:21.0000 3624 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files (x86)\Lexmark 2600 Series\mfc71.dll
22:03:21.0000 3624 C:\Program Files (x86)\Lexmark 2600 Series\mfc71.dll - ok
22:03:21.0006 3624 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Lexmark 2600 Series\msvcr71.dll
22:03:21.0006 3624 C:\Program Files (x86)\Lexmark 2600 Series\msvcr71.dll - ok
22:03:21.0012 3624 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
22:03:21.0012 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
22:03:21.0018 3624 [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
22:03:21.0018 3624 C:\Windows\System32\mscms.dll - ok
22:03:21.0023 3624 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
22:03:21.0023 3624 C:\Windows\System32\WindowsCodecsExt.dll - ok
22:03:21.0027 3624 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
22:03:21.0027 3624 C:\Windows\System32\icm32.dll - ok
22:03:21.0027 3624 [ E6B65A70DFFC7ED18664623816965B63 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\22dcc9ac78fb113f0de66a748cd81004\WindowsFormsIntegration.ni.dll
22:03:21.0027 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\22dcc9ac78fb113f0de66a748cd81004\WindowsFormsIntegration.ni.dll - ok
22:03:21.0037 3624 [ E0033A0577D4496350F6F361BFB41767 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\7985728b9aef67fe0537258dbd9a0cca\PresentationFramework.Aero.ni.dll
22:03:21.0037 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\7985728b9aef67fe0537258dbd9a0cca\PresentationFramework.Aero.ni.dll - ok
22:03:21.0037 3624 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
22:03:21.0037 3624 C:\Windows\System32\msvcr100_clr0400.dll - ok
22:03:21.0047 3624 [ D666F929C5960162DD78385E370A31C4 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
22:03:21.0047 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
22:03:21.0047 3624 [ 9BF014C20F91D97055532F2F5496E7BD ] C:\Program Files\Windows Media Player\wmpnetwk.exe
22:03:21.0047 3624 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
22:03:21.0047 3624 [ 887E034C28F7F379AC7B1C498E708A26 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
22:03:21.0047 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
22:03:21.0057 3624 [ 841A005EC594A4D435A8D9E2615D0A52 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
22:03:21.0057 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
22:03:21.0057 3624 [ ED520370FA548DC614DE52D2EDD61F43 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
22:03:21.0057 3624 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
22:03:21.0067 3624 [ D7D7EB64B7DE14A783329805E5AC0031 ] C:\Windows\System32\webcheck.dll
22:03:21.0067 3624 C:\Windows\System32\webcheck.dll - ok
22:03:21.0067 3624 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
22:03:21.0067 3624 C:\Windows\System32\mlang.dll - ok
22:03:21.0077 3624 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
22:03:21.0077 3624 C:\Windows\System32\wsock32.dll - ok
22:03:21.0077 3624 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
22:03:21.0077 3624 C:\Windows\System32\drmv2clt.dll - ok
22:03:21.0087 3624 [ 302B93586DFA480545C320EBA5BA6572 ] C:\Windows\System32\wmdrmdev.dll
22:03:21.0087 3624 C:\Windows\System32\wmdrmdev.dll - ok
22:03:21.0087 3624 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] C:\Windows\System32\FntCache.dll
22:03:21.0087 3624 C:\Windows\System32\FntCache.dll - ok
22:03:21.0087 3624 [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
22:03:21.0087 3624 C:\Windows\System32\SyncCenter.dll - ok
22:03:21.0097 3624 [ 4F20D081F9C9B91730EE5CB84E9AC8C4 ] C:\Windows\System32\blackbox.dll
22:03:21.0097 3624 C:\Windows\System32\blackbox.dll - ok
22:03:21.0097 3624 [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
22:03:21.0097 3624 C:\Windows\System32\wmp.dll - ok
22:03:21.0107 3624 [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
22:03:21.0107 3624 C:\Windows\System32\imapi2.dll - ok
22:03:21.0107 3624 [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
22:03:21.0107 3624 C:\Windows\System32\hgcpl.dll - ok
22:03:21.0107 3624 [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
22:03:21.0107 3624 C:\Windows\System32\provsvc.dll - ok
22:03:21.0117 3624 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
22:03:21.0117 3624 C:\Windows\System32\fdPHost.dll - ok
22:03:21.0117 3624 [ D097101A1CCCF9F929E8B6F057F5BD8B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\cb7c748c13a62fd9fbfef329043aa596\Accessibility.ni.dll
22:03:21.0117 3624 C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\cb7c748c13a62fd9fbfef329043aa596\Accessibility.ni.dll - ok
22:03:21.0127 3624 [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
22:03:21.0127 3624 C:\Windows\System32\wmploc.DLL - ok
22:03:21.0127 3624 [ 2CFE62368D2A3125E12BB844DDB41CB7 ] C:\Program Files\Internet Explorer\ieproxy.dll
22:03:21.0127 3624 C:\Program Files\Internet Explorer\ieproxy.dll - ok
22:03:21.0137 3624 [ 2D444C361F758D6CC4B2F51655ECF528 ] C:\Windows\System32\wmpps.dll
22:03:21.0137 3624 C:\Windows\System32\wmpps.dll - ok
22:03:21.0137 3624 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
22:03:21.0137 3624 C:\Windows\System32\fdWSD.dll - ok
22:03:21.0137 3624 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
22:03:21.0137 3624 C:\Windows\System32\fdSSDP.dll - ok
22:03:21.0147 3624 ============================================================
22:03:21.0147 3624 Scan finished
22:03:21.0147 3624 ============================================================
22:03:21.0165 4124 Detected object count: 1
22:03:21.0165 4124 Actual detected object count: 1
22:03:29.0991 4124 \Device\Harddisk0\DR0\# - copied to quarantine
22:03:30.0041 4124 \Device\Harddisk0\DR0 - copied to quarantine
22:03:30.0401 4124 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
22:03:30.0401 4124 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
22:03:30.0421 4124 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
22:03:31.0051 4124 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
22:03:31.0081 4124 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
22:03:31.0091 4124 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
22:03:31.0121 4124 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
22:03:31.0241 4124 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
22:03:31.0582 4124 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
22:03:31.0612 4124 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
22:03:31.0712 4124 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
22:03:31.0772 4124 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
22:03:31.0912 4124 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
22:03:31.0912 4124 \Device\Harddisk0\DR0 - ok
22:03:32.0022 4124 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
22:03:37.0154 4000 Deinitialize success

And here is the log from aswMBR

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-25 22:14:51
-----------------------------
22:14:51.479 OS Version: Windows x64 6.1.7600
22:14:51.479 Number of processors: 2 586 0x2505
22:14:51.479 ComputerName: DUSTIN-PC UserName: Dustin
22:14:52.961 Initialize success
22:19:30.973 AVAST engine defs: 12122501
22:19:41.955 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:19:41.971 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
22:19:41.986 Disk 0 MBR read successfully
22:19:41.986 Disk 0 MBR scan
22:19:42.002 Disk 0 Windows 7 default MBR code
22:19:42.002 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 100 MB offset 2048
22:19:42.017 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
22:19:42.049 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461838 MB offset 30926848
22:19:42.095 Disk 0 scanning C:\Windows\system32\drivers
22:19:53.437 Service scanning
22:20:28.474 Service W32Serv C:\Windows\msisear.exe **INFECTED** Win32:Dropper-gen [Drp]
22:20:32.749 Modules scanning
22:20:32.764 Disk 0 trace - called modules:
22:20:32.796 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
22:20:32.811 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004ac3480]
22:20:32.827 3 CLASSPNP.SYS[fffff88001abd43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80048f2050]
22:20:34.418 AVAST engine scan C:\Windows
22:20:35.307 File: C:\Windows\msisear.exe **INFECTED** Win32:Dropper-gen [Drp]
22:20:37.694 AVAST engine scan C:\Windows\system32
22:23:37.266 AVAST engine scan C:\Windows\system32\drivers
22:23:50.697 AVAST engine scan C:\Users\Dustin
22:27:05.777 Disk 0 MBR has been saved successfully to "C:\Users\Dustin\Desktop\MBR.dat"
22:27:05.777 The log file has been saved successfully to "C:\Users\Dustin\Desktop\aswMBR.txt"

#12 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 25 December 2012 - 11:44 PM

Just to be curious do you think we are getting close to finding and fixing what virus I may have? Also when it is fixed will I be able to uninstall all of these programs? Just wondering where we stand at this point. Again I thank you very much for your time and help! I will be making a donation to you and your cause when we are done here.

#13 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:11:11 PM

Posted 26 December 2012 - 12:42 AM

Hello


The tdsskiller report removed a rootkit so things are starting to look better



I want you to try and run combofix once again and see if it will run




gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#14 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 26 December 2012 - 10:19 PM

Well I tried running ComboFix again. It had an update available for combofix so I updated to the latest version then ran it. After about an hour it was on "completed stage 48" and several hours later it never went past "completed stage 48" or anything else so I just closed it. It made it further into the scan than before but it will not complete it. My computer is starting and running better after tdsskiller removed that rootkit. So we are moving in the right direction for sure. I would just like to know my computer is fixed and clean 100% so I could even make a backup cd for the future. Again thank you very much for your help. If there is anything else you would like me to run or do please let me know.

#15 malibu2envy

malibu2envy
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:11 PM

Posted 26 December 2012 - 10:50 PM

Just for fun I ran Malwarebytes to see if it would still show the virus after tdsskiller removed the rootkit and it did. Malwarebytes still says its there. Here is the log from Malwarebytes.

Malwarebytes Anti-Malware (PRO) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.12.26.13

Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
Dustin :: DUSTIN-PC [administrator]

Protection: Enabled

12/26/2012 9:40:47 PM
mbam-log-2012-12-26 (21-40-47).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 213425
Time elapsed: 5 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.

(end)



However it can't remove it.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users