Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Privitize VPN (weird ads, webcam broken, computer keeps going to sleep)


  • This topic is locked This topic is locked
36 replies to this topic

#1 Rhabdo

Rhabdo

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 19 December 2012 - 12:34 PM

I accidentally downloaded Privitize VPN. I immediately uninstalled it. My AVG anti-virus software found and deleted 3 viruses (I didn't save their report). Now I'm having four main problems 1) my webcam no longer works, 2) my computer will go into sleep mode while I am actively using it, 3) my computer will not start if my external hard drive is attached to it (ran virus and malware scans on here too and found nothing) and 4) my internet browsers both display strange ads in weird places on all websites and typing in the url box to search doesn't work. I uninstalled and re-installed chrome which solved the search function but oddly made the ads worse. I haven't done anything to IE b/c when I open the browser I get a message that reads "Your computer appears to be correctly configured, but the device or resource (search.privitize.com) is not responding. Security or firewall settings might be blocking the connection". I downloaded some free malware (forget the name, but something with a B) which deleted several things, but seems to have had no overall effect.

I've really reached the limit of what I can do on my own. I would appreciate any help you can offer. Thank you in advance.

Here is my dds log

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2
Run by Julie at 12:17:44 on 2012-12-19
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4056.1769 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\STacSV64.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe
C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Users\Julie\AppData\Roaming\Google\Google Talk\googletalk.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Kodak\MediaImpression SE\ArcMonitor.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
C:\Windows\splwow64.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\SymcPCCULaunchSvc.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\hsplayer.exe
C:\Windows\sysWOW64\wbem\wmiprvse.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.privitize.com/?aff=7
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://search.privitize.com/?aff=7
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: Norton Safe Web Lite BHO: {F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3} - C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\CoIEPlg.dll
TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file>
TB: Norton Safe Web Lite: {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\CoIEPlg.dll
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
uRun: [Google Update] "C:\Users\Julie\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [googletalk] C:\Users\Julie\AppData\Roaming\Google\Google Talk\googletalk.exe /autostart
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Dell DataSafe Online] "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
mRun: [PDVDDXSrv] "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [ArcSoft MediaImpression Monitor] C:\Program Files (x86)\Kodak\MediaImpression SE\ArcMonitor.exe
mRun: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [ROC_roc_dec12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
mRun: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
mRun: [HF_G_Jul] "C:\Program Files (x86)\AVG Secure Search\HF_G_Jul.exe" /DoAction
mRun: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
mRun: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
mRun: [ROC_ROC_JULY_P1] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
mRun: [ROC_ROC_NT] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT
mRun: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"
mRunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
StartupFolder: C:\Users\Julie\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK - C:\Program Files\Dell\DellDock\DellDock.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - hxxp://zone.msn.com/bingame/dim2/default/popcaploader_v6.cab
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{F972F0E9-52A2-4CFD-824E-C6722E88F281} : DHCPNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{F972F0E9-52A2-4CFD-824E-C6722E88F281}\24C4555435B495027455543545 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{F972F0E9-52A2-4CFD-824E-C6722E88F281}\351687F6E6028496C6C6F636B6 : DHCPNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
TCP: Interfaces\{F972F0E9-52A2-4CFD-824E-C6722E88F281}\A4F616E67237027596D2649602E4564777F627B6 : DHCPNameServer = 10.0.1.1
TCP: Interfaces\{F972F0E9-52A2-4CFD-824E-C6722E88F281}\C496E6B6379737 : DHCPNameServer = 192.168.1.1
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
x64-BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe
x64-Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe
x64-Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
x64-Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - <orphaned>
x64-Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - <orphaned>
x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2012-10-15 63328]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2012-9-21 225120]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2012-10-5 111456]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2012-9-14 40800]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2010-7-5 55856]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2012-10-22 154464]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2012-10-2 185696]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2012-9-21 200032]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2012-7-24 30568]
R1 ccSet_NST;Norton Safe Web Lite Settings Manager;C:\Windows\System32\drivers\NSTx64\0200000.010\ccSetx64.sys [2011-12-14 167048]
R1 ctxusbm;Citrix USB Monitor Driver;C:\Windows\System32\drivers\ctxusbm.sys [2011-6-29 91864]
R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe [2010-5-31 89600]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-6 5814392]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-17 399432]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-17 676936]
R2 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\SymcPCCULaunchSvc.exe [2012-10-13 123320]
R2 NSL;Norton Safe Web Lite;C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe [2011-12-14 138760]
R2 PCCUJobMgr;Common Client Job Manager Service;C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe [2012-10-13 126392]
R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2010-7-5 1692480]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-12-13 3290896]
R2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [2012-11-8 711112]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2010-7-5 172704]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2012-12-17 25928]
R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]
R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]
R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]
R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]
R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2010-5-31 393728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-9 160944]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2010-10-31 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-9-22 1493352]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2010-5-31 215552]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-6-23 59392]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-7-14 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-12-19 04:34:10 -------- d-----r- C:\Program Files (x86)\Skype
2012-12-17 20:41:14 -------- d-----w- C:\Users\Julie\AppData\Roaming\Malwarebytes
2012-12-17 20:41:09 -------- d-----w- C:\ProgramData\Malwarebytes
2012-12-17 20:41:08 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-12-17 20:41:08 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-12-17 20:39:34 -------- d-----w- C:\Program Files (x86)\GFI Software
2012-12-17 20:39:20 -------- d-----w- C:\Users\Julie\AppData\Roaming\GFI Software
2012-12-17 20:36:44 -------- d-----w- C:\Program Files\Common Files\Bitdefender
2012-12-12 14:31:31 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2012-12-04 17:00:33 -------- d-----w- C:\Users\Julie\AppData\Local\Torch
2012-12-04 16:44:16 -------- d-----w- C:\ProgramData\Zoomex
2012-12-04 16:44:16 -------- d-----w- C:\ProgramData\Premium
2012-12-04 16:44:14 -------- d-----w- C:\ProgramData\InstallMate
2012-12-03 18:30:53 737280 ----a-w- C:\Windows\iun6002.exe
2012-12-03 18:30:36 -------- d-----w- C:\Program Files (x86)\Rapid Review - Pathology
2012-12-01 18:25:58 -------- d-----w- C:\Users\Julie\AppData\Local\{DACBE7F9-14A3-4E0A-BF4A-5A98AEF4C56F}
.
==================== Find3M ====================
.
2012-11-22 03:26:40 3149824 ----a-w- C:\Windows\System32\win32k.sys
2012-11-14 06:11:44 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-11-14 06:04:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-11-14 06:02:49 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-11-14 05:57:46 599040 ----a-w- C:\Windows\System32\vbscript.dll
2012-11-14 05:57:35 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-11-14 05:52:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-11-14 02:09:22 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-11-14 01:58:15 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-11-14 01:57:37 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-11-14 01:49:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-11-14 01:48:27 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-11-14 01:44:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-11-09 05:45:09 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-11-08 14:11:02 30568 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2012-11-05 21:35:16 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-11-05 20:41:32 367616 ----a-w- C:\Windows\System32\atmfd.dll
2012-11-05 20:32:16 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-11-05 20:32:09 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-11-02 05:59:11 478208 ----a-w- C:\Windows\System32\dpnet.dll
2012-11-02 05:11:31 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2012-10-22 18:02:44 154464 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
2012-10-17 18:19:04 95208 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-17 18:19:03 821736 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2012-10-17 18:19:03 746984 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2012-10-16 08:38:37 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38:34 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39:52 561664 ----a-w- C:\Windows\apppatch\AcLayers.dll
2012-10-15 08:48:50 63328 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
2012-10-14 13:57:44 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2012-10-14 13:57:44 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2012-10-09 18:17:13 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll
2012-10-09 18:17:13 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll
2012-10-09 17:40:31 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40:31 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll
2012-10-05 08:32:50 111456 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys
2012-10-04 17:46:16 362496 ----a-w- C:\Windows\System32\wow64win.dll
2012-10-04 17:46:15 243200 ----a-w- C:\Windows\System32\wow64.dll
2012-10-04 17:46:15 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2012-10-04 17:45:55 215040 ----a-w- C:\Windows\System32\winsrv.dll
2012-10-04 17:43:28 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2012-10-04 17:41:16 424960 ----a-w- C:\Windows\System32\KernelBase.dll
2012-10-04 16:47:41 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2012-10-04 16:47:41 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2012-10-04 15:21:55 338432 ----a-w- C:\Windows\System32\conhost.exe
2012-10-04 14:46:46 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2012-10-04 14:46:46 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2012-10-04 14:46:44 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2012-10-04 14:46:43 2048 ----a-w- C:\Windows\SysWow64\user.exe
2012-10-04 14:41:50 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-10-04 14:41:50 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-04 14:41:50 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-10-04 14:41:50 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2012-10-03 17:56:54 1914248 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-10-03 17:44:21 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2012-10-03 17:44:21 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2012-10-03 17:44:17 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2012-10-03 17:44:17 18944 ----a-w- C:\Windows\System32\netevent.dll
2012-10-03 17:44:16 216576 ----a-w- C:\Windows\System32\ncsi.dll
2012-10-03 17:42:16 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2012-10-03 16:42:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2012-10-03 16:42:24 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2012-10-03 16:42:23 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2012-10-03 16:07:26 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2012-10-02 07:30:38 185696 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2012-09-25 22:47:43 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2012-09-25 22:46:17 95744 ----a-w- C:\Windows\System32\synceng.dll
2012-09-21 07:46:04 200032 ----a-w- C:\Windows\System32\drivers\avgtdia.sys
2012-09-21 07:46:00 225120 ----a-w- C:\Windows\System32\drivers\avgloga.sys
.
============= FINISH: 12:19:08.15 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:57 PM

Posted 19 December 2012 - 10:37 PM

Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 21 December 2012 - 01:05 PM

Here are the log files as requested.

Also, since my original post my computer has been having trouble on start-up. It will kind of freeze in the middle and I have to hold down the power button to turn it off then restart . . . which usually works ok the second time, though very slowly.

Thanks!


Checkup

Results of screen317's Security Check version 0.99.56
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
AVG Anti-Virus Free Edition 2013
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.1.1000
Java™ 6 Update 29
Java 7 Update 9
Adobe Flash Player 10 Flash Player out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Google Chrome 23.0.1271.97
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
AVG avgwdsvc.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````


ADWcleaner

# AdwCleaner v2.101 - Logfile created 12/21/2012 at 12:40:53
# Updated 16/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Julie - JULIE-PC
# Boot Mode : Normal
# Running from : C:\Users\Julie\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted on reboot : C:\Users\Julie\AppData\Local\Temp\Zynga
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\Users\Julie\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Julie\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Julie\AppData\Local\Temp\avg@toolbar
Folder Deleted : C:\Users\Julie\AppData\LocalLow\AVG Secure Search

***** [Registry] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-

sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-

A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-

92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-

73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-

8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-

73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://isearch.avg.com/tab?cid={02D0726B-

7518-4B26-81C0-CE888049C7DB}&mid=c775e02d7eaf47d1adf275f39d3184a3-

0811be8c2234e76d137dd88ee38f05e9d4867d9b&lang=en&ds=AVG&pr=pr&d=2012-01-26 22:11:15&v=9.0.0.23&sap=nt -->

hxxp://www.google.com

-\\ Google Chrome v23.0.1271.97

File : C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [5830 octets] - [21/12/2012 12:40:53]

########## EOF - C:\AdwCleaner[S1].txt - [5890 octets] ##########


RK report 1

RogueKiller V8.4.0 [Dec 20 2012] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Julie [Admin rights]
Mode : Scan -- Date : 12/21/2012 12:56:27

Bad processes : 0

Registry Entries : 6
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {645FF040-5081-101B-9F08-00AA002F954E} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

Particular Files / Folders:

Driver : [NOT LOADED]

HOSTS File:
--> C:\Windows\system32\drivers\etc\hosts



MBR Check:

+++++ PhysicalDrive0: WDC WD3200BEVT-75A23T0 +++++
--- User ---
[MBR] 64c64256ff794864ca9e602bc6ea9dfe
[BSP] ba99900dc0fa69762283b88299e99887 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30801920 | Size: 290204 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1]_S_12212012_02d1256.txt >>
RKreport[1]_S_12212012_02d1256.txt

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:57 PM

Posted 21 December 2012 - 01:26 PM

Hello

I Would like you to do the following.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 21 December 2012 - 04:49 PM

The program seemed to run smoothly. I was a little unclear on how to disable my malware program, but I think I figured it out and didn't get any messages about it so perhaps I did it correctly!

My computer is still having issues 1) my webcam still doesn't work, 2) Ads by "Browse to Save" are randomly inserted into websites I try to view with Chrome (most notably, facebook). However, it did seem to fix the problems with IE, which now opens normally and doesn't incorporate ads randomly into websites!

I also had the following three complaints to start with which I haven't tested because they would really only show up over time 1) my computer will go into sleep mode while I am actively using it, 2) my computer will not start if my external hard drive is attached to it (ran virus and malware scans on here too and found nothing), and 3) pop-up message saying that something is wrong with a USB device and I need to unplug and try again . . . though there is nothing at all plugged in.

Thank you for your help so far!


Here's the log:

ComboFix 12-12-20.02 - Julie 12/21/2012 16:11:34.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4056.2615 [GMT -5:00]
Running from: c:\users\Julie\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-11-21 to 2012-12-21 )))))))))))))))))))))))))))))))
.
.
2012-12-21 21:21 . 2012-12-21 21:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-12-20 15:38 . 2012-12-20 15:38 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-12-17 20:41 . 2012-12-20 16:22 -------- d-----w- c:\users\Julie\AppData\Roaming\Malwarebytes
2012-12-17 20:41 . 2012-12-20 16:22 -------- d-----w- c:\programdata\Malwarebytes
2012-12-17 20:41 . 2012-12-20 16:22 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-12-17 20:41 . 2012-09-30 00:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-17 20:39 . 2012-12-17 20:39 -------- d-----w- c:\program files (x86)\GFI Software
2012-12-17 20:39 . 2012-12-17 20:39 -------- d-----w- c:\users\Julie\AppData\Roaming\GFI Software
2012-12-17 20:36 . 2012-12-20 16:22 -------- d-----w- c:\program files\Common Files\Bitdefender
2012-12-12 14:31 . 2012-11-09 05:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-12-04 17:00 . 2012-12-19 03:55 -------- d-----w- c:\users\Julie\AppData\Local\Torch
2012-12-04 16:44 . 2012-12-13 23:24 -------- d-----w- c:\programdata\Zoomex
2012-12-04 16:44 . 2012-12-04 16:44 77 ----a-w- C:\prefs.js
2012-12-03 18:30 . 2012-12-03 18:30 737280 ----a-w- c:\windows\iun6002.exe
2012-12-03 18:30 . 2012-12-03 18:30 -------- d-----w- c:\program files (x86)\Rapid Review - Pathology
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-12 18:26 . 2010-08-20 14:27 67413224 ----a-w- c:\windows\system32\MRT.exe
2012-11-08 14:11 . 2012-07-24 21:56 30568 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-10-22 18:02 . 2012-10-22 18:02 154464 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2012-10-17 18:19 . 2012-10-17 18:19 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-17 18:19 . 2012-10-17 18:20 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-17 18:19 . 2010-07-06 03:58 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-10-17 13:39 . 2012-10-17 13:39 163056 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10142.bin
2012-10-16 08:38 . 2012-11-28 15:20 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38 . 2012-11-28 15:20 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39 . 2012-11-28 15:20 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-10-15 08:48 . 2012-10-15 08:48 63328 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2012-10-14 13:57 . 2010-07-06 04:12 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2012-10-14 13:57 . 2010-07-06 04:12 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2012-10-09 18:17 . 2012-11-15 14:31 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2012-10-09 18:17 . 2012-11-15 14:31 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2012-10-09 17:40 . 2012-11-15 14:31 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40 . 2012-11-15 14:31 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2012-10-05 08:32 . 2012-10-05 08:32 111456 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2012-10-04 16:40 . 2012-12-12 14:31 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-10-03 17:56 . 2012-11-15 14:31 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-10-03 17:44 . 2012-11-15 14:31 70656 ----a-w- c:\windows\system32\nlaapi.dll
2012-10-03 17:44 . 2012-11-15 14:31 303104 ----a-w- c:\windows\system32\nlasvc.dll
2012-10-03 17:44 . 2012-11-15 14:31 246272 ----a-w- c:\windows\system32\netcorehc.dll
2012-10-03 17:44 . 2012-11-15 14:31 18944 ----a-w- c:\windows\system32\netevent.dll
2012-10-03 17:44 . 2012-11-15 14:31 216576 ----a-w- c:\windows\system32\ncsi.dll
2012-10-03 17:42 . 2012-11-15 14:31 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-10-03 16:42 . 2012-11-15 14:31 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2012-10-03 16:42 . 2012-11-15 14:31 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2012-10-03 16:42 . 2012-11-15 14:31 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2012-10-03 16:07 . 2012-11-15 14:31 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-10-02 07:30 . 2012-10-02 07:30 185696 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2012-09-25 22:47 . 2012-11-15 14:30 78336 ----a-w- c:\windows\SysWow64\synceng.dll
2012-09-25 22:46 . 2012-11-15 14:30 95744 ----a-w- c:\windows\system32\synceng.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"googletalk"="c:\users\Julie\AppData\Roaming\Google\Google Talk\googletalk.exe" [2007-01-01 3739648]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-11-09 17877168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"Dell DataSafe Online"="c:\program files (x86)\Dell DataSafe Online\DataSafeOnline.exe" [2010-02-09 1807680]
"PDVDDXSrv"="c:\program files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-12-29 140520]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2009-06-24 409744]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-10-15 498160]
"ArcSoft MediaImpression Monitor"="c:\program files (x86)\Kodak\MediaImpression SE\ArcMonitor.exe" [2010-04-21 73728]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"ConnectionCenter"="c:\program files (x86)\Citrix\ICA Client\concentr.exe" [2011-12-22 362432]
"CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2011-08-04 1612920]
"IJNetworkScannerSelectorEX"="c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" [2011-01-15 452016]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-11-07 3143800]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\Update\realsched.exe" [2012-10-14 296096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-10-05 559616]
"Launcher"="c:\program files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe" [2011-08-01 165184]
.
c:\users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-07 5814392]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2012-03-22 25072]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-05-08 215552]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-07-14 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-10-05 111456]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-11-29 55856]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-11-08 30568]
S1 ccSet_NST;Norton Safe Web Lite Settings Manager;c:\windows\system32\drivers\NSTx64\0200000.010\ccSetx64.sys [2011-08-08 167048]
S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys [2011-06-29 91864]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe [2009-03-02 89600]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-30 399432]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-30 676936]
S2 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;c:\program files (x86)\Norton PC Checkup\Engine\2.0.18.5\SymcPCCULaunchSvc.exe [2012-03-09 123320]
S2 NSL;Norton Safe Web Lite;c:\program files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe [2011-08-10 138760]
S2 PCCUJobMgr;Common Client Job Manager Service;c:\program files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe [2012-03-09 126392]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-08-18 1692480]
S2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [2012-11-08 711112]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-30 25928]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-05-20 393728]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-19 04:05]
.
2012-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-19 04:05]
.
2012-12-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4077091692-2965806976-2974235168-1001Core.job
- c:\users\Julie\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-15 02:01]
.
2012-12-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4077091692-2965806976-2974235168-1001UA.job
- c:\users\Julie\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-15 02:01]
.
2012-12-21 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-02-07 23:32]
.
2012-12-20 c:\windows\Tasks\ReclaimerUpdateFiles_Julie.job
- c:\users\Julie\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe [2012-12-18 15:25]
.
2012-12-21 c:\windows\Tasks\ReclaimerUpdateXML_Julie.job
- c:\users\Julie\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe [2012-12-18 15:25]
.
2012-12-21 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Julie.job
- c:\users\Julie\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe [2012-12-18 15:25]
.
2012-12-21 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\Dell Support Center\uaclauncher.exe [2012-02-07 23:32]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2010-04-06 384296]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-02-25 487424]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-02-21 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-02-21 387608]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-02-21 365592]
"Broadcom Wireless Manager UI"="c:\program files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" [2009-07-17 4968960]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2011-03-15 2779024]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.privitize.com/?aff=7
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://search.privitize.com/?aff=7
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-DellSupportCenter - c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe
Wow6432Node-HKLM-Run-vProt - c:\program files (x86)\AVG Secure Search\vprot.exe
Wow6432Node-HKLM-Run-ROC_roc_dec12 - c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe
Wow6432Node-HKLM-Run-HF_G_Jul - c:\program files (x86)\AVG Secure Search\HF_G_Jul.exe
Wow6432Node-HKLM-Run-ROC_ROC_JULY_P1 - c:\program files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe
Wow6432Node-HKLM-Run-ROC_ROC_NT - c:\program files (x86)\AVG Secure Search\ROC_ROC_NT.exe
Toolbar-Locked - (no file)
AddRemove-SMPlayer - c:\program files (x86)\SMPlayer\uninst.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\NSL]
"ImagePath"="\"c:\program files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe\" /s \"NSL\" /m \"c:\program files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\diMaster.dll\" /prefetch:1"
--
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCCUJobMgr]
"ImagePath"="\"c:\program files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe\" /s \"PCCUJobMgr\" /m \"c:\program files (x86)\Norton PC Checkup\Engine\2.0.18.5\diMaster.dll\" /prefetch:1"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
"ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-4077091692-2965806976-2974235168-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-4077091692-2965806976-2974235168-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10p_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10p_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-12-21 16:25:50
ComboFix-quarantined-files.txt 2012-12-21 21:25
.
Pre-Run: 226,554,150,912 bytes free
Post-Run: 226,634,502,144 bytes free
.
- - End Of File - - C5006543769C0945BA85A6137BDCCC85

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:57 PM

Posted 21 December 2012 - 06:46 PM

Greetings

I want you to run these next,

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.



Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 21 December 2012 - 09:17 PM

One of the problems my computer has been having is going to sleep while I'm actively using it (about every 1/2 hour). After my last email it didn't do that all afternoon . . . until I ran the programs suggested in the last message, then it went to sleep while I was typing this email. It's probably a coincidence, but I figured I'd mention it anyway.

During the TDSSKiller scan it never mentioned finding malicious content and didn't give me the option to reboot. If I'm reading the directions correctly these two things go together so the fact that I didn't reboot at that point is ok.

Here are the logs:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-21 21:04:18
-----------------------------
21:04:18.720 OS Version: Windows x64 6.1.7601 Service Pack 1
21:04:18.720 Number of processors: 2 586 0x170A
21:04:18.721 ComputerName: JULIE-PC UserName: Julie
21:04:21.509 Initialize success
21:05:19.458 AVAST engine defs: 12122101
21:07:45.235 The log file has been saved successfully to "C:\Users\Julie\Desktop\aswMBR.txt"

TDSSKiller

log 1

20:54:58.0399 7312 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:54:58.0807 7312 ============================================================
20:54:58.0807 7312 Current date / time: 2012/12/21 20:54:58.0807
20:54:58.0807 7312 SystemInfo:
20:54:58.0807 7312
20:54:58.0808 7312 OS Version: 6.1.7601 ServicePack: 1.0
20:54:58.0808 7312 Product type: Workstation
20:54:58.0808 7312 ComputerName: JULIE-PC
20:54:58.0808 7312 UserName: Julie
20:54:58.0808 7312 Windows directory: C:\Windows
20:54:58.0808 7312 System windows directory: C:\Windows
20:54:58.0808 7312 Running under WOW64
20:54:58.0808 7312 Processor architecture: Intel x64
20:54:58.0808 7312 Number of processors: 2
20:54:58.0808 7312 Page size: 0x1000
20:54:58.0808 7312 Boot type: Normal boot
20:54:58.0808 7312 ============================================================
20:54:59.0416 7312 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:54:59.0425 7312 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:55:03.0188 7312 ============================================================
20:55:03.0188 7312 \Device\Harddisk0\DR0:
20:55:03.0249 7312 MBR partitions:
20:55:03.0249 7312 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
20:55:03.0249 7312 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x236CE2B0
20:55:03.0249 7312 \Device\Harddisk1\DR1:
20:55:03.0250 7312 MBR partitions:
20:55:03.0250 7312 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x254297C1
20:55:03.0250 7312 ============================================================
20:55:03.0305 7312 C: <-> \Device\Harddisk0\DR0\Partition2
20:55:03.0306 7312 E: <-> \Device\Harddisk1\DR1\Partition1
20:55:03.0306 7312 ============================================================
20:55:03.0306 7312 Initialize success
20:55:03.0306 7312 ============================================================
20:55:47.0278 9000 Deinitialize success

#8 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 21 December 2012 - 09:19 PM

And here's TDSSKiller log 2 (was told my original post was too long)

20:58:57.0017 4392 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:58:57.0391 4392 ============================================================
20:58:57.0391 4392 Current date / time: 2012/12/21 20:58:57.0391
20:58:57.0391 4392 SystemInfo:
20:58:57.0391 4392
20:58:57.0391 4392 OS Version: 6.1.7601 ServicePack: 1.0
20:58:57.0391 4392 Product type: Workstation
20:58:57.0391 4392 ComputerName: JULIE-PC
20:58:57.0407 4392 UserName: Julie
20:58:57.0407 4392 Windows directory: C:\Windows
20:58:57.0407 4392 System windows directory: C:\Windows
20:58:57.0407 4392 Running under WOW64
20:58:57.0407 4392 Processor architecture: Intel x64
20:58:57.0407 4392 Number of processors: 2
20:58:57.0407 4392 Page size: 0x1000
20:58:57.0407 4392 Boot type: Normal boot
20:58:57.0407 4392 ============================================================
20:58:57.0735 4392 BG loaded
20:58:58.0639 4392 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:58:58.0655 4392 ============================================================
20:58:58.0655 4392 \Device\Harddisk0\DR0:
20:58:58.0655 4392 MBR partitions:
20:58:58.0655 4392 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
20:58:58.0655 4392 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x236CE2B0
20:58:58.0655 4392 ============================================================
20:58:58.0733 4392 C: <-> \Device\Harddisk0\DR0\Partition2
20:58:58.0733 4392 ============================================================
20:58:58.0733 4392 Initialize success
20:58:58.0733 4392 ============================================================
20:59:37.0260 6048 ============================================================
20:59:37.0260 6048 Scan started
20:59:37.0260 6048 Mode: Manual; SigCheck; TDLFS;
20:59:37.0260 6048 ============================================================
20:59:41.0853 6048 ================ Scan system memory ========================
20:59:41.0853 6048 System memory - ok
20:59:41.0854 6048 ================ Scan services =============================
20:59:43.0248 6048 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:59:44.0423 6048 1394ohci - ok
20:59:45.0014 6048 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:59:45.0052 6048 ACDaemon - ok
20:59:45.0558 6048 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:59:45.0655 6048 ACPI - ok
20:59:45.0933 6048 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:59:47.0875 6048 AcpiPmi - ok
20:59:48.0311 6048 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:59:48.0572 6048 adp94xx - ok
20:59:48.0770 6048 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:59:48.0914 6048 adpahci - ok
20:59:49.0082 6048 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:59:49.0104 6048 adpu320 - ok
20:59:49.0229 6048 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:59:52.0633 6048 AeLookupSvc - ok
20:59:53.0157 6048 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe
20:59:53.0402 6048 AESTFilters - ok
20:59:53.0686 6048 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\Windows\syswow64\drivers\Afc.sys
20:59:53.0709 6048 Afc - ok
20:59:53.0843 6048 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:59:53.0948 6048 AFD - ok
20:59:54.0016 6048 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:59:54.0041 6048 agp440 - ok
20:59:54.0085 6048 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:59:54.0177 6048 ALG - ok
20:59:54.0245 6048 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:59:54.0262 6048 aliide - ok
20:59:54.0304 6048 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:59:54.0331 6048 amdide - ok
20:59:54.0424 6048 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:59:54.0514 6048 AmdK8 - ok
20:59:54.0545 6048 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:59:54.0588 6048 AmdPPM - ok
20:59:54.0666 6048 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:59:54.0687 6048 amdsata - ok
20:59:54.0785 6048 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:59:54.0804 6048 amdsbs - ok
20:59:54.0844 6048 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:59:54.0871 6048 amdxata - ok
20:59:55.0001 6048 [ 98449A2957778A6F025C418438A380F4 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
20:59:55.0030 6048 ApfiltrService - ok
20:59:55.0093 6048 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:59:55.0364 6048 AppID - ok
20:59:55.0433 6048 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:59:55.0526 6048 AppIDSvc - ok
20:59:55.0612 6048 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:59:55.0696 6048 Appinfo - ok
20:59:55.0808 6048 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:59:55.0836 6048 arc - ok
20:59:55.0903 6048 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:59:55.0930 6048 arcsas - ok
20:59:55.0955 6048 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:59:56.0036 6048 AsyncMac - ok
20:59:56.0104 6048 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:59:56.0130 6048 atapi - ok
20:59:56.0189 6048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:59:56.0277 6048 AudioEndpointBuilder - ok
20:59:56.0293 6048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:59:56.0359 6048 AudioSrv - ok
20:59:56.0802 6048 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
20:59:56.0901 6048 AVGIDSAgent - ok
20:59:57.0069 6048 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
20:59:57.0097 6048 AVGIDSDriver - ok
20:59:57.0278 6048 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
20:59:57.0301 6048 AVGIDSHA - ok
20:59:57.0385 6048 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
20:59:57.0401 6048 Avgldx64 - ok
20:59:57.0559 6048 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
20:59:57.0583 6048 Avgloga - ok
20:59:57.0656 6048 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
20:59:57.0698 6048 Avgmfx64 - ok
20:59:57.0845 6048 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
20:59:57.0869 6048 Avgrkx64 - ok
20:59:57.0988 6048 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
20:59:58.0015 6048 Avgtdia - ok
20:59:58.0135 6048 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
20:59:58.0159 6048 avgtp - ok
20:59:58.0206 6048 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
20:59:58.0232 6048 avgwd - ok
20:59:58.0317 6048 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:59:58.0419 6048 AxInstSV - ok
20:59:58.0623 6048 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:59:58.0680 6048 b06bdrv - ok
20:59:58.0876 6048 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:59:58.0946 6048 b57nd60a - ok
20:59:59.0005 6048 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
20:59:59.0026 6048 BCM42RLY - ok
20:59:59.0295 6048 [ 37394D3553E220FB732C21E217E1BD8B ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
20:59:59.0361 6048 BCM43XX - ok
20:59:59.0464 6048 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:59:59.0492 6048 BDESVC - ok
20:59:59.0574 6048 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:59:59.0659 6048 Beep - ok
20:59:59.0858 6048 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:59:59.0940 6048 BFE - ok
21:00:00.0008 6048 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
21:00:00.0121 6048 BITS - ok
21:00:00.0204 6048 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:00:00.0246 6048 blbdrive - ok
21:00:00.0288 6048 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:00:00.0349 6048 bowser - ok
21:00:00.0374 6048 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:00:00.0462 6048 BrFiltLo - ok
21:00:00.0540 6048 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:00:00.0561 6048 BrFiltUp - ok
21:00:00.0620 6048 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:00:00.0715 6048 BridgeMP - ok
21:00:00.0795 6048 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:00:00.0854 6048 Browser - ok
21:00:01.0005 6048 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:00:01.0090 6048 Brserid - ok
21:00:01.0136 6048 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:00:01.0192 6048 BrSerWdm - ok
21:00:01.0245 6048 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:00:01.0277 6048 BrUsbMdm - ok
21:00:01.0291 6048 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:00:01.0337 6048 BrUsbSer - ok
21:00:01.0377 6048 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:00:01.0436 6048 BTHMODEM - ok
21:00:01.0492 6048 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:00:01.0558 6048 bthserv - ok
21:00:01.0658 6048 [ A8AD33C9DD88C810CAC00ACC7F4329FB ] ccSet_NST C:\Windows\system32\drivers\NSTx64\0200000.010\ccSetx64.sys
21:00:01.0695 6048 ccSet_NST - ok
21:00:01.0753 6048 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:00:01.0829 6048 cdfs - ok
21:00:01.0924 6048 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
21:00:01.0983 6048 cdrom - ok
21:00:02.0040 6048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:00:02.0121 6048 CertPropSvc - ok
21:00:02.0171 6048 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:00:02.0212 6048 circlass - ok
21:00:02.0267 6048 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:00:02.0306 6048 CLFS - ok
21:00:02.0586 6048 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:00:02.0614 6048 clr_optimization_v2.0.50727_32 - ok
21:00:02.0678 6048 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:00:02.0704 6048 clr_optimization_v2.0.50727_64 - ok
21:00:02.0813 6048 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:00:02.0903 6048 clr_optimization_v4.0.30319_32 - ok
21:00:03.0072 6048 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:00:03.0106 6048 clr_optimization_v4.0.30319_64 - ok
21:00:03.0156 6048 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:00:03.0198 6048 CmBatt - ok
21:00:03.0240 6048 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:00:03.0269 6048 cmdide - ok
21:00:03.0317 6048 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:00:03.0358 6048 CNG - ok
21:00:03.0453 6048 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:00:03.0480 6048 Compbatt - ok
21:00:03.0507 6048 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:00:03.0559 6048 CompositeBus - ok
21:00:03.0583 6048 COMSysApp - ok
21:00:03.0603 6048 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:00:03.0628 6048 crcdisk - ok
21:00:03.0701 6048 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:00:03.0748 6048 CryptSvc - ok
21:00:03.0847 6048 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
21:00:03.0949 6048 CtClsFlt - ok
21:00:04.0033 6048 [ BF62FF663AE55E4ED99DE76881C2C0F1 ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
21:00:04.0059 6048 ctxusbm - ok
21:00:04.0355 6048 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:00:04.0404 6048 cvhsvc - ok
21:00:04.0480 6048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:00:04.0603 6048 DcomLaunch - ok
21:00:04.0703 6048 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:00:04.0823 6048 defragsvc - ok
21:00:04.0924 6048 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:00:05.0028 6048 DfsC - ok
21:00:05.0160 6048 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:00:05.0201 6048 Dhcp - ok
21:00:05.0255 6048 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:00:05.0360 6048 discache - ok
21:00:05.0419 6048 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:00:05.0447 6048 Disk - ok
21:00:05.0505 6048 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:00:05.0571 6048 Dnscache - ok
21:00:05.0777 6048 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
21:00:05.0820 6048 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
21:00:05.0820 6048 DockLoginService - detected UnsignedFile.Multi.Generic (1)
21:00:05.0874 6048 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:00:05.0954 6048 dot3svc - ok
21:00:06.0028 6048 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:00:06.0123 6048 DPS - ok
21:00:06.0176 6048 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:00:06.0229 6048 drmkaud - ok
21:00:06.0307 6048 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:00:06.0344 6048 DXGKrnl - ok
21:00:06.0400 6048 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:00:06.0480 6048 EapHost - ok
21:00:06.0751 6048 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:00:06.0964 6048 ebdrv - ok
21:00:07.0001 6048 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:00:07.0055 6048 EFS - ok
21:00:07.0259 6048 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:00:07.0330 6048 ehRecvr - ok
21:00:07.0371 6048 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:00:07.0416 6048 ehSched - ok
21:00:07.0611 6048 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:00:07.0652 6048 elxstor - ok
21:00:07.0673 6048 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:00:07.0719 6048 ErrDev - ok
21:00:07.0881 6048 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:00:07.0958 6048 EventSystem - ok
21:00:08.0024 6048 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:00:08.0106 6048 exfat - ok
21:00:08.0163 6048 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:00:08.0248 6048 fastfat - ok
21:00:08.0313 6048 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:00:08.0337 6048 Fax - ok
21:00:08.0371 6048 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:00:08.0429 6048 fdc - ok
21:00:08.0512 6048 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:00:08.0579 6048 fdPHost - ok
21:00:08.0606 6048 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:00:08.0711 6048 FDResPub - ok
21:00:08.0766 6048 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:00:08.0790 6048 FileInfo - ok
21:00:08.0844 6048 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:00:08.0947 6048 Filetrace - ok
21:00:08.0972 6048 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:00:08.0988 6048 flpydisk - ok
21:00:09.0052 6048 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:00:09.0083 6048 FltMgr - ok
21:00:09.0228 6048 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:00:09.0310 6048 FontCache - ok
21:00:09.0419 6048 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:00:09.0443 6048 FontCache3.0.0.0 - ok
21:00:09.0469 6048 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:00:09.0485 6048 FsDepends - ok
21:00:09.0529 6048 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
21:00:09.0551 6048 fssfltr - ok
21:00:09.0731 6048 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:00:09.0802 6048 fsssvc - ok
21:00:09.0881 6048 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:00:09.0898 6048 Fs_Rec - ok
21:00:09.0970 6048 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:00:10.0009 6048 fvevol - ok
21:00:10.0081 6048 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:00:10.0110 6048 gagp30kx - ok
21:00:10.0243 6048 [ 551D463E4CCEB5240234DA6718C93A44 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
21:00:10.0264 6048 GameConsoleService - ok
21:00:10.0321 6048 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
21:00:10.0334 6048 GoToAssist - ok
21:00:10.0498 6048 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:00:10.0580 6048 gpsvc - ok
21:00:10.0879 6048 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:00:10.0900 6048 gupdate - ok
21:00:10.0931 6048 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:00:10.0952 6048 gupdatem - ok
21:00:11.0095 6048 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:00:11.0115 6048 gusvc - ok
21:00:11.0172 6048 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:00:11.0226 6048 hcw85cir - ok
21:00:11.0308 6048 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:00:11.0370 6048 HDAudBus - ok
21:00:11.0393 6048 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:00:11.0454 6048 HidBatt - ok
21:00:11.0476 6048 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:00:11.0534 6048 HidBth - ok
21:00:11.0568 6048 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:00:11.0661 6048 HidIr - ok
21:00:11.0726 6048 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
21:00:11.0829 6048 hidserv - ok
21:00:11.0885 6048 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
21:00:11.0913 6048 HidUsb - ok
21:00:11.0952 6048 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:00:12.0029 6048 hkmsvc - ok
21:00:12.0103 6048 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:00:12.0178 6048 HomeGroupListener - ok
21:00:12.0216 6048 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:00:12.0283 6048 HomeGroupProvider - ok
21:00:12.0361 6048 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:00:12.0376 6048 HpSAMD - ok
21:00:12.0488 6048 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:00:12.0584 6048 HTTP - ok
21:00:12.0632 6048 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:00:12.0653 6048 hwpolicy - ok
21:00:12.0709 6048 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:00:12.0724 6048 i8042prt - ok
21:00:12.0837 6048 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:00:12.0870 6048 IAANTMON - ok
21:00:13.0016 6048 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:00:13.0033 6048 iaStor - ok
21:00:13.0137 6048 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:00:13.0172 6048 iaStorV - ok
21:00:13.0421 6048 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:00:13.0520 6048 idsvc - ok
21:00:15.0568 6048 [ 44A4CFDF95DEC95CFE8A5C111A2CBF71 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
21:00:15.0850 6048 igfx - ok
21:00:15.0930 6048 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:00:15.0959 6048 iirsp - ok
21:00:16.0046 6048 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:00:16.0167 6048 IKEEXT - ok
21:00:16.0238 6048 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:00:16.0266 6048 intelide - ok
21:00:16.0348 6048 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:00:16.0428 6048 intelppm - ok
21:00:16.0501 6048 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:00:16.0648 6048 IPBusEnum - ok
21:00:16.0865 6048 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:00:16.0969 6048 IpFilterDriver - ok
21:00:17.0137 6048 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:00:17.0364 6048 iphlpsvc - ok
21:00:17.0466 6048 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:00:17.0495 6048 IPMIDRV - ok
21:00:17.0558 6048 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:00:17.0814 6048 IPNAT - ok
21:00:17.0897 6048 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:00:19.0057 6048 IRENUM - ok
21:00:19.0209 6048 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:00:19.0232 6048 isapnp - ok
21:00:19.0736 6048 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:00:20.0000 6048 iScsiPrt - ok
21:00:20.0303 6048 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
21:00:20.0332 6048 kbdclass - ok
21:00:20.0538 6048 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:00:20.0701 6048 kbdhid - ok
21:00:20.0811 6048 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:00:20.0844 6048 KeyIso - ok
21:00:21.0089 6048 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:00:21.0120 6048 KSecDD - ok
21:00:21.0338 6048 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:00:21.0395 6048 KSecPkg - ok
21:00:21.0845 6048 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:00:21.0966 6048 ksthunk - ok
21:00:22.0281 6048 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:00:22.0453 6048 KtmRm - ok
21:00:22.0631 6048 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:00:22.0732 6048 LanmanServer - ok
21:00:22.0817 6048 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:00:22.0944 6048 LanmanWorkstation - ok
21:00:23.0048 6048 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:00:23.0239 6048 lltdio - ok
21:00:23.0388 6048 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:00:23.0644 6048 lltdsvc - ok
21:00:23.0800 6048 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:00:23.0855 6048 lmhosts - ok
21:00:23.0961 6048 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:00:23.0985 6048 LSI_FC - ok
21:00:24.0041 6048 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:00:24.0068 6048 LSI_SAS - ok
21:00:24.0137 6048 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:00:24.0164 6048 LSI_SAS2 - ok
21:00:24.0234 6048 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:00:24.0260 6048 LSI_SCSI - ok
21:00:24.0411 6048 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:00:24.0580 6048 luafv - ok
21:00:24.0879 6048 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:00:24.0914 6048 MBAMProtector - ok
21:00:25.0181 6048 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:00:25.0206 6048 MBAMScheduler - ok
21:00:25.0385 6048 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:00:25.0407 6048 MBAMService - ok
21:00:25.0504 6048 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:00:25.0816 6048 Mcx2Svc - ok
21:00:25.0840 6048 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:00:25.0858 6048 megasas - ok
21:00:25.0961 6048 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:00:25.0991 6048 MegaSR - ok
21:00:26.0047 6048 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:00:26.0133 6048 MMCSS - ok
21:00:26.0164 6048 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:00:26.0260 6048 Modem - ok
21:00:26.0367 6048 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:00:26.0437 6048 monitor - ok
21:00:26.0486 6048 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
21:00:26.0507 6048 mouclass - ok
21:00:26.0672 6048 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:00:26.0769 6048 mouhid - ok
21:00:26.0837 6048 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:00:26.0857 6048 mountmgr - ok
21:00:26.0972 6048 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:00:27.0008 6048 mpio - ok
21:00:27.0123 6048 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:00:27.0181 6048 mpsdrv - ok
21:00:27.0523 6048 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:00:27.0604 6048 MpsSvc - ok
21:00:27.0666 6048 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:00:27.0775 6048 MRxDAV - ok
21:00:27.0843 6048 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:00:27.0935 6048 mrxsmb - ok
21:00:28.0025 6048 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:00:28.0121 6048 mrxsmb10 - ok
21:00:28.0201 6048 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:00:28.0261 6048 mrxsmb20 - ok
21:00:28.0335 6048 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:00:28.0380 6048 msahci - ok
21:00:28.0413 6048 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:00:28.0450 6048 msdsm - ok
21:00:28.0540 6048 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:00:28.0586 6048 MSDTC - ok
21:00:28.0644 6048 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:00:28.0692 6048 Msfs - ok
21:00:28.0805 6048 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:00:28.0899 6048 mshidkmdf - ok
21:00:28.0964 6048 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:00:28.0980 6048 msisadrv - ok
21:00:29.0098 6048 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:00:29.0177 6048 MSiSCSI - ok
21:00:29.0183 6048 msiserver - ok
21:00:29.0251 6048 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:00:29.0338 6048 MSKSSRV - ok
21:00:29.0364 6048 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:00:29.0431 6048 MSPCLOCK - ok
21:00:29.0464 6048 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:00:29.0549 6048 MSPQM - ok
21:00:29.0598 6048 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:00:29.0625 6048 MsRPC - ok
21:00:29.0680 6048 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:00:29.0701 6048 mssmbios - ok
21:00:29.0758 6048 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:00:29.0833 6048 MSTEE - ok
21:00:29.0849 6048 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:00:29.0894 6048 MTConfig - ok
21:00:29.0924 6048 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:00:29.0950 6048 Mup - ok
21:00:30.0019 6048 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:00:30.0093 6048 napagent - ok
21:00:30.0224 6048 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:00:30.0277 6048 NativeWifiP - ok
21:00:30.0385 6048 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:00:30.0417 6048 NDIS - ok
21:00:30.0472 6048 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:00:30.0559 6048 NdisCap - ok
21:00:30.0617 6048 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:00:30.0665 6048 NdisTapi - ok
21:00:30.0702 6048 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:00:30.0775 6048 Ndisuio - ok
21:00:30.0851 6048 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:00:30.0945 6048 NdisWan - ok
21:00:30.0985 6048 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:00:31.0093 6048 NDProxy - ok
21:00:31.0141 6048 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:00:31.0218 6048 NetBIOS - ok
21:00:31.0306 6048 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:00:31.0398 6048 NetBT - ok
21:00:31.0434 6048 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:00:31.0458 6048 Netlogon - ok
21:00:31.0520 6048 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:00:31.0580 6048 Netman - ok
21:00:31.0615 6048 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:00:31.0673 6048 netprofm - ok
21:00:31.0787 6048 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:00:31.0811 6048 NetTcpPortSharing - ok
21:00:31.0860 6048 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:00:31.0890 6048 nfrd960 - ok
21:00:31.0941 6048 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:00:31.0995 6048 NlaSvc - ok
21:00:32.0116 6048 Norton PC Checkup Application Launcher - ok
21:00:32.0185 6048 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:00:32.0242 6048 Npfs - ok
21:00:32.0314 6048 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:00:32.0398 6048 nsi - ok
21:00:32.0431 6048 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:00:32.0515 6048 nsiproxy - ok
21:00:32.0638 6048 [ E127420B7FEB65C7F279EAAC183BBC0E ] NSL C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe
21:00:32.0663 6048 NSL - ok
21:00:32.0811 6048 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:00:32.0930 6048 Ntfs - ok
21:00:32.0979 6048 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:00:33.0033 6048 Null - ok
21:00:33.0081 6048 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:00:33.0099 6048 nvraid - ok
21:00:33.0136 6048 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:00:33.0163 6048 nvstor - ok
21:00:33.0200 6048 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:00:33.0217 6048 nv_agp - ok
21:00:33.0256 6048 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:00:33.0288 6048 ohci1394 - ok
21:00:33.0356 6048 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:00:33.0371 6048 ose - ok
21:00:34.0029 6048 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:00:34.0252 6048 osppsvc - ok
21:00:34.0333 6048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:00:34.0437 6048 p2pimsvc - ok
21:00:34.0525 6048 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:00:34.0566 6048 p2psvc - ok
21:00:34.0652 6048 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:00:34.0697 6048 Parport - ok
21:00:34.0783 6048 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:00:34.0834 6048 partmgr - ok
21:00:34.0916 6048 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:00:34.0961 6048 PcaSvc - ok
21:00:35.0024 6048 [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe
21:00:35.0050 6048 PCCUJobMgr - ok
21:00:35.0229 6048 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
21:00:35.0555 6048 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
21:00:35.0638 6048 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:00:35.0664 6048 pci - ok
21:00:35.0754 6048 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:00:35.0802 6048 pciide - ok
21:00:35.0886 6048 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:00:35.0917 6048 pcmcia - ok
21:00:35.0942 6048 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:00:35.0971 6048 pcw - ok
21:00:36.0117 6048 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:00:36.0196 6048 PEAUTH - ok
21:00:36.0379 6048 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:00:36.0468 6048 PerfHost - ok
21:00:36.0724 6048 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:00:37.0006 6048 pla - ok
21:00:37.0105 6048 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:00:37.0230 6048 PlugPlay - ok
21:00:37.0307 6048 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:00:37.0394 6048 PNRPAutoReg - ok
21:00:37.0497 6048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:00:37.0539 6048 PNRPsvc - ok
21:00:37.0683 6048 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:00:37.0803 6048 PolicyAgent - ok
21:00:37.0872 6048 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:00:38.0004 6048 Power - ok
21:00:38.0048 6048 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:00:38.0200 6048 PptpMiniport - ok
21:00:38.0244 6048 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:00:38.0358 6048 Processor - ok
21:00:38.0469 6048 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:00:38.0592 6048 ProfSvc - ok
21:00:38.0633 6048 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:00:38.0711 6048 ProtectedStorage - ok
21:00:38.0830 6048 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:00:38.0945 6048 Psched - ok
21:00:39.0027 6048 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
21:00:39.0070 6048 PxHlpa64 - ok
21:00:39.0189 6048 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:00:39.0316 6048 ql2300 - ok
21:00:39.0373 6048 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:00:39.0402 6048 ql40xx - ok
21:00:39.0446 6048 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:00:39.0492 6048 QWAVE - ok
21:00:39.0543 6048 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:00:39.0641 6048 QWAVEdrv - ok
21:00:39.0738 6048 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:00:39.0810 6048 RasAcd - ok
21:00:39.0893 6048 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:00:39.0940 6048 RasAgileVpn - ok
21:00:40.0027 6048 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:00:40.0099 6048 RasAuto - ok
21:00:40.0180 6048 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:00:40.0268 6048 Rasl2tp - ok
21:00:40.0348 6048 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:00:40.0419 6048 RasMan - ok
21:00:40.0486 6048 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:00:40.0599 6048 RasPppoe - ok
21:00:40.0638 6048 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:00:40.0714 6048 RasSstp - ok
21:00:40.0808 6048 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:00:40.0940 6048 rdbss - ok
21:00:41.0046 6048 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:00:41.0132 6048 rdpbus - ok
21:00:41.0165 6048 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:00:41.0327 6048 RDPCDD - ok
21:00:41.0380 6048 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:00:41.0506 6048 RDPENCDD - ok
21:00:41.0538 6048 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:00:41.0634 6048 RDPREFMP - ok
21:00:41.0696 6048 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:00:41.0741 6048 RDPWD - ok
21:00:41.0870 6048 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:00:41.0913 6048 rdyboost - ok
21:00:41.0960 6048 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:00:42.0027 6048 RemoteAccess - ok
21:00:42.0095 6048 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:00:42.0175 6048 RemoteRegistry - ok
21:00:42.0251 6048 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:00:42.0381 6048 RpcEptMapper - ok
21:00:42.0431 6048 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:00:42.0573 6048 RpcLocator - ok
21:00:42.0732 6048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:00:42.0808 6048 RpcSs - ok
21:00:42.0966 6048 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:00:43.0078 6048 rspndr - ok
21:00:43.0314 6048 [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
21:00:43.0378 6048 RSUSBSTOR - ok
21:00:43.0399 6048 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:00:43.0415 6048 SamSs - ok
21:00:43.0464 6048 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:00:43.0481 6048 sbp2port - ok
21:00:43.0539 6048 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:00:43.0612 6048 SCardSvr - ok
21:00:43.0671 6048 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:00:43.0755 6048 scfilter - ok
21:00:43.0896 6048 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:00:44.0054 6048 Schedule - ok
21:00:44.0116 6048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:00:44.0264 6048 SCPolicySvc - ok
21:00:44.0403 6048 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:00:44.0496 6048 SDRSVC - ok
21:00:44.0581 6048 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:00:44.0739 6048 secdrv - ok
21:00:44.0789 6048 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:00:45.0302 6048 seclogon - ok
21:00:45.0459 6048 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
21:00:45.0625 6048 SENS - ok
21:00:45.0701 6048 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:00:45.0764 6048 SensrSvc - ok
21:00:45.0884 6048 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:00:46.0062 6048 Serenum - ok
21:00:46.0122 6048 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:00:46.0239 6048 Serial - ok
21:00:46.0343 6048 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:00:46.0549 6048 sermouse - ok
21:00:46.0620 6048 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:00:46.0814 6048 SessionEnv - ok
21:00:46.0884 6048 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:00:47.0049 6048 sffdisk - ok
21:00:47.0086 6048 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:00:47.0238 6048 sffp_mmc - ok
21:00:47.0331 6048 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:00:47.0702 6048 sffp_sd - ok
21:00:47.0754 6048 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:00:47.0803 6048 sfloppy - ok
21:00:48.0077 6048 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
21:00:48.0139 6048 Sftfs - ok
21:00:48.0294 6048 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:00:48.0324 6048 sftlist - ok
21:00:48.0456 6048 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:00:48.0551 6048 Sftplay - ok
21:00:48.0579 6048 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:00:48.0625 6048 Sftredir - ok
21:00:48.0906 6048 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
21:00:48.0968 6048 SftService - ok
21:00:49.0000 6048 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
21:00:49.0036 6048 Sftvol - ok
21:00:49.0095 6048 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:00:49.0116 6048 sftvsa - ok
21:00:49.0203 6048 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:00:49.0528 6048 SharedAccess - ok
21:00:49.0701 6048 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:00:49.0884 6048 ShellHWDetection - ok
21:00:49.0989 6048 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:00:50.0078 6048 SiSRaid2 - ok
21:00:50.0150 6048 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:00:50.0210 6048 SiSRaid4 - ok
21:00:50.0502 6048 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:00:50.0526 6048 SkypeUpdate - ok
21:00:50.0593 6048 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:00:50.0690 6048 Smb - ok
21:00:50.0817 6048 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:00:50.0968 6048 SNMPTRAP - ok
21:00:51.0102 6048 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:00:51.0148 6048 spldr - ok
21:00:51.0204 6048 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:00:51.0277 6048 Spooler - ok
21:00:51.0552 6048 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:00:51.0798 6048 sppsvc - ok
21:00:51.0889 6048 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:00:52.0053 6048 sppuinotify - ok
21:00:52.0176 6048 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:00:52.0304 6048 srv - ok
21:00:52.0431 6048 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:00:52.0469 6048 srv2 - ok
21:00:52.0554 6048 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:00:52.0621 6048 srvnet - ok
21:00:52.0695 6048 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:00:52.0914 6048 SSDPSRV - ok
21:00:52.0971 6048 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:00:53.0047 6048 SstpSvc - ok
21:00:53.0343 6048 [ 5697FB5DCF36ADA09C153378E88AE6AD ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\STacSV64.exe
21:00:53.0428 6048 STacSV - ok
21:00:53.0477 6048 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:00:53.0500 6048 stexstor - ok
21:00:53.0586 6048 [ F3F6C17F70EBA268CDBE4F9704E3EAC5 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
21:00:53.0630 6048 STHDA - ok
21:00:53.0750 6048 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:00:53.0890 6048 stisvc - ok
21:00:53.0965 6048 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:00:54.0001 6048 swenum - ok
21:00:54.0049 6048 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:00:54.0202 6048 swprv - ok
21:00:54.0383 6048 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:00:54.0536 6048 SysMain - ok
21:00:54.0611 6048 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:00:54.0717 6048 TabletInputService - ok
21:00:54.0766 6048 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:00:54.0842 6048 TapiSrv - ok
21:00:54.0910 6048 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:00:55.0038 6048 TBS - ok
21:00:55.0152 6048 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:00:55.0531 6048 Tcpip - ok
21:00:55.0676 6048 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:00:55.0731 6048 TCPIP6 - ok
21:00:55.0791 6048 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:00:55.0856 6048 tcpipreg - ok
21:00:55.0946 6048 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:00:55.0990 6048 TDPIPE - ok
21:00:56.0057 6048 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:00:56.0141 6048 TDTCP - ok
21:00:56.0225 6048 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:00:56.0312 6048 tdx - ok
21:00:56.0411 6048 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:00:56.0450 6048 TermDD - ok
21:00:56.0523 6048 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:00:56.0663 6048 TermService - ok
21:00:56.0712 6048 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:00:56.0796 6048 Themes - ok
21:00:56.0901 6048 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:00:57.0023 6048 THREADORDER - ok
21:00:57.0116 6048 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:00:57.0180 6048 TrkWks - ok
21:00:57.0301 6048 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:00:57.0372 6048 TrustedInstaller - ok
21:00:57.0435 6048 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:00:57.0499 6048 tssecsrv - ok
21:00:57.0556 6048 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:00:57.0577 6048 TsUsbFlt - ok
21:00:57.0651 6048 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:00:57.0760 6048 tunnel - ok
21:00:57.0824 6048 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:00:57.0878 6048 uagp35 - ok
21:00:57.0996 6048 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:00:58.0181 6048 udfs - ok
21:00:58.0269 6048 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:00:58.0328 6048 UI0Detect - ok
21:00:58.0347 6048 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:00:58.0384 6048 uliagpkx - ok
21:00:58.0459 6048 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
21:00:58.0537 6048 umbus - ok
21:00:58.0599 6048 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:00:58.0653 6048 UmPass - ok
21:00:58.0818 6048 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:00:58.0926 6048 upnphost - ok
21:00:59.0009 6048 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:00:59.0053 6048 usbccgp - ok
21:00:59.0114 6048 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:00:59.0156 6048 usbcir - ok
21:00:59.0210 6048 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:00:59.0300 6048 usbehci - ok
21:00:59.0382 6048 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:00:59.0452 6048 usbhub - ok
21:00:59.0513 6048 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:00:59.0585 6048 usbohci - ok
21:00:59.0671 6048 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:00:59.0918 6048 usbprint - ok
21:00:59.0976 6048 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:01:00.0061 6048 USBSTOR - ok
21:01:00.0116 6048 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:01:00.0205 6048 usbuhci - ok
21:01:00.0321 6048 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
21:01:00.0379 6048 usbvideo - ok
21:01:00.0445 6048 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:01:00.0567 6048 UxSms - ok
21:01:00.0610 6048 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:01:00.0649 6048 VaultSvc - ok
21:01:00.0734 6048 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:01:00.0768 6048 vdrvroot - ok
21:01:00.0879 6048 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:01:01.0156 6048 vds - ok
21:01:01.0221 6048 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:01:01.0272 6048 vga - ok
21:01:01.0357 6048 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:01:01.0429 6048 VgaSave - ok
21:01:01.0472 6048 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:01:01.0492 6048 vhdmp - ok
21:01:01.0530 6048 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:01:01.0545 6048 viaide - ok
21:01:01.0572 6048 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:01:01.0590 6048 volmgr - ok
21:01:01.0702 6048 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:01:01.0739 6048 volmgrx - ok
21:01:01.0818 6048 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:01:01.0865 6048 volsnap - ok
21:01:01.0966 6048 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:01:01.0984 6048 vsmraid - ok
21:01:02.0067 6048 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:01:02.0197 6048 VSS - ok
21:01:02.0733 6048 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
21:01:02.0771 6048 vToolbarUpdater13.2.0 - ok
21:01:02.0893 6048 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:01:02.0975 6048 vwifibus - ok
21:01:03.0074 6048 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:01:03.0117 6048 vwififlt - ok
21:01:03.0257 6048 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:01:03.0359 6048 W32Time - ok
21:01:03.0391 6048 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:01:03.0437 6048 WacomPen - ok
21:01:03.0497 6048 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:01:03.0562 6048 WANARP - ok
21:01:03.0581 6048 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:01:03.0620 6048 Wanarpv6 - ok
21:01:03.0774 6048 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:01:03.0829 6048 WatAdminSvc - ok
21:01:03.0984 6048 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:01:04.0083 6048 wbengine - ok
21:01:04.0119 6048 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:01:04.0156 6048 WbioSrvc - ok
21:01:04.0206 6048 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:01:04.0256 6048 wcncsvc - ok
21:01:04.0278 6048 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:01:04.0296 6048 WcsPlugInService - ok
21:01:04.0338 6048 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:01:04.0367 6048 Wd - ok
21:01:04.0657 6048 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:01:04.0698 6048 Wdf01000 - ok
21:01:04.0754 6048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:01:04.0811 6048 WdiServiceHost - ok
21:01:04.0815 6048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:01:04.0840 6048 WdiSystemHost - ok
21:01:04.0928 6048 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:01:04.0979 6048 WebClient - ok
21:01:05.0003 6048 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:01:05.0068 6048 Wecsvc - ok
21:01:05.0097 6048 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:01:05.0167 6048 wercplsupport - ok
21:01:05.0200 6048 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:01:05.0254 6048 WerSvc - ok
21:01:05.0311 6048 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:01:05.0366 6048 WfpLwf - ok
21:01:05.0423 6048 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
21:01:05.0449 6048 WimFltr - ok
21:01:05.0468 6048 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:01:05.0493 6048 WIMMount - ok
21:01:05.0528 6048 WinDefend - ok
21:01:05.0538 6048 WinHttpAutoProxySvc - ok
21:01:05.0729 6048 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:01:05.0831 6048 Winmgmt - ok
21:01:06.0133 6048 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:01:06.0240 6048 WinRM - ok
21:01:06.0346 6048 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:01:06.0390 6048 WinUsb - ok
21:01:06.0495 6048 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:01:06.0588 6048 Wlansvc - ok
21:01:06.0740 6048 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:01:06.0763 6048 wlcrasvc - ok
21:01:07.0752 6048 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:01:07.0820 6048 wlidsvc - ok
21:01:07.0947 6048 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
21:01:07.0991 6048 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
21:01:07.0991 6048 wltrysvc - detected UnsignedFile.Multi.Generic (1)
21:01:08.0048 6048 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:01:08.0144 6048 WmiAcpi - ok
21:01:08.0209 6048 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:01:08.0261 6048 wmiApSrv - ok
21:01:08.0318 6048 WMPNetworkSvc - ok
21:01:08.0367 6048 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:01:08.0408 6048 WPCSvc - ok
21:01:08.0484 6048 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:01:08.0524 6048 WPDBusEnum - ok
21:01:08.0562 6048 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:01:08.0640 6048 ws2ifsl - ok
21:01:08.0724 6048 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
21:01:08.0771 6048 wscsvc - ok
21:01:08.0776 6048 WSearch - ok
21:01:08.0981 6048 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:01:09.0058 6048 wuauserv - ok
21:01:09.0134 6048 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:01:09.0186 6048 WudfPf - ok
21:01:09.0224 6048 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:01:09.0267 6048 WUDFRd - ok
21:01:09.0309 6048 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:01:09.0354 6048 wudfsvc - ok
21:01:09.0413 6048 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:01:09.0479 6048 WwanSvc - ok
21:01:09.0543 6048 [ 79D9CE9614C955DD31AA2556B4014662 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
21:01:09.0655 6048 yukonw7 - ok
21:01:09.0678 6048 ================ Scan global ===============================
21:01:09.0757 6048 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:01:09.0816 6048 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
21:01:09.0826 6048 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
21:01:09.0895 6048 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:01:10.0020 6048 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:01:10.0026 6048 [Global] - ok
21:01:10.0027 6048 ================ Scan MBR ==================================
21:01:10.0068 6048 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
21:01:12.0015 6048 \Device\Harddisk0\DR0 - ok
21:01:12.0015 6048 ================ Scan VBR ==================================
21:01:12.0072 6048 [ 9F22D7D006B9D684C3F753AFA6F7933A ] \Device\Harddisk0\DR0\Partition1
21:01:12.0075 6048 \Device\Harddisk0\DR0\Partition1 - ok
21:01:12.0115 6048 [ CAB7892DC4C00FDC316382FD814CEF06 ] \Device\Harddisk0\DR0\Partition2
21:01:12.0118 6048 \Device\Harddisk0\DR0\Partition2 - ok
21:01:12.0119 6048 ================ Scan active images ========================
21:01:12.0123 6048 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
21:01:12.0123 6048 C:\Windows\System32\drivers\crashdmp.sys - ok
21:01:12.0132 6048 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
21:01:12.0132 6048 C:\Windows\System32\drivers\dumpfve.sys - ok
21:01:12.0142 6048 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
21:01:12.0142 6048 C:\Windows\System32\drivers\iaStor.sys - ok
21:01:12.0153 6048 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
21:01:12.0153 6048 C:\Windows\System32\drivers\cdrom.sys - ok
21:01:12.0164 6048 [ A8AD33C9DD88C810CAC00ACC7F4329FB ] C:\Windows\System32\drivers\NSTx64\0200000.010\ccSetx64.sys
21:01:12.0164 6048 C:\Windows\System32\drivers\NSTx64\0200000.010\ccSetx64.sys - ok
21:01:12.0174 6048 [ 371428CF0F71934CB0F2344823ADFA32 ] C:\Windows\System32\drivers\avgtpx64.sys
21:01:12.0174 6048 C:\Windows\System32\drivers\avgtpx64.sys - ok
21:01:12.0181 6048 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
21:01:12.0181 6048 C:\Windows\System32\drivers\beep.sys - ok
21:01:12.0191 6048 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
21:01:12.0191 6048 C:\Windows\System32\drivers\null.sys - ok
21:01:12.0198 6048 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
21:01:12.0198 6048 C:\Windows\System32\drivers\RDPCDD.sys - ok
21:01:12.0208 6048 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
21:01:12.0208 6048 C:\Windows\System32\drivers\vga.sys - ok
21:01:12.0216 6048 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
21:01:12.0216 6048 C:\Windows\System32\drivers\videoprt.sys - ok
21:01:12.0224 6048 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
21:01:12.0224 6048 C:\Windows\System32\drivers\watchdog.sys - ok
21:01:12.0234 6048 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
21:01:12.0234 6048 C:\Windows\System32\drivers\RDPENCDD.sys - ok
21:01:12.0246 6048 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
21:01:12.0246 6048 C:\Windows\System32\drivers\RDPREFMP.sys - ok
21:01:12.0252 6048 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
21:01:12.0253 6048 C:\Windows\System32\drivers\msfs.sys - ok
21:01:12.0261 6048 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
21:01:12.0261 6048 C:\Windows\System32\drivers\npfs.sys - ok
21:01:12.0271 6048 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
21:01:12.0272 6048 C:\Windows\System32\drivers\tdi.sys - ok
21:01:12.0285 6048 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
21:01:12.0285 6048 C:\Windows\System32\drivers\tdx.sys - ok
21:01:12.0296 6048 [ 6E634525613D48A1D1657FB21F21F3B2 ] C:\Windows\System32\drivers\avgtdia.sys
21:01:12.0296 6048 C:\Windows\System32\drivers\avgtdia.sys - ok
21:01:12.0302 6048 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
21:01:12.0302 6048 C:\Windows\System32\drivers\netbt.sys - ok
21:01:12.0310 6048 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
21:01:12.0311 6048 C:\Windows\System32\drivers\afd.sys - ok
21:01:12.0318 6048 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
21:01:12.0319 6048 C:\Windows\System32\drivers\netbios.sys - ok
21:01:12.0326 6048 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
21:01:12.0326 6048 C:\Windows\System32\drivers\pacer.sys - ok
21:01:12.0334 6048 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
21:01:12.0334 6048 C:\Windows\System32\drivers\vwififlt.sys - ok
21:01:12.0343 6048 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
21:01:12.0343 6048 C:\Windows\System32\drivers\wfplwf.sys - ok
21:01:12.0350 6048 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
21:01:12.0350 6048 C:\Windows\System32\drivers\ws2ifsl.sys - ok
21:01:12.0360 6048 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
21:01:12.0360 6048 C:\Windows\System32\drivers\nsiproxy.sys - ok
21:01:12.0364 6048 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
21:01:12.0364 6048 C:\Windows\System32\drivers\rdbss.sys - ok
21:01:12.0376 6048 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
21:01:12.0376 6048 C:\Windows\System32\drivers\termdd.sys - ok
21:01:12.0386 6048 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
21:01:12.0386 6048 C:\Windows\System32\drivers\wanarp.sys - ok
21:01:12.0394 6048 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
21:01:12.0395 6048 C:\Windows\System32\drivers\blbdrive.sys - ok
21:01:12.0403 6048 [ BF62FF663AE55E4ED99DE76881C2C0F1 ] C:\Windows\System32\drivers\ctxusbm.sys
21:01:12.0403 6048 C:\Windows\System32\drivers\ctxusbm.sys - ok
21:01:12.0411 6048 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
21:01:12.0411 6048 C:\Windows\System32\drivers\dfsc.sys - ok
21:01:12.0421 6048 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
21:01:12.0422 6048 C:\Windows\System32\drivers\discache.sys - ok
21:01:12.0429 6048 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
21:01:12.0430 6048 C:\Windows\System32\drivers\mssmbios.sys - ok
21:01:12.0438 6048 [ 5989592A91A17587799792A81E1541D4 ] C:\Windows\System32\drivers\avgldx64.sys
21:01:12.0438 6048 C:\Windows\System32\drivers\avgldx64.sys - ok
21:01:12.0446 6048 [ 388056EBD5FE6718FE669078DBE37897 ] C:\Windows\System32\drivers\avgidsdrivera.sys
21:01:12.0446 6048 C:\Windows\System32\drivers\avgidsdrivera.sys - ok
21:01:12.0454 6048 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
21:01:12.0454 6048 C:\Windows\System32\drivers\tunnel.sys - ok
21:01:12.0462 6048 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
21:01:12.0463 6048 C:\Windows\System32\ntdll.dll - ok
21:01:12.0469 6048 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
21:01:12.0470 6048 C:\Windows\System32\smss.exe - ok
21:01:12.0478 6048 [ 44A4CFDF95DEC95CFE8A5C111A2CBF71 ] C:\Windows\System32\drivers\igdkmd64.sys
21:01:12.0478 6048 C:\Windows\System32\drivers\igdkmd64.sys - ok
21:01:12.0485 6048 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
21:01:12.0485 6048 C:\Windows\System32\drivers\dxgkrnl.sys - ok
21:01:12.0494 6048 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
21:01:12.0495 6048 C:\Windows\System32\drivers\dxgmms1.sys - ok
21:01:12.0501 6048 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
21:01:12.0502 6048 C:\Windows\System32\drivers\usbport.sys - ok
21:01:12.0511 6048 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
21:01:12.0511 6048 C:\Windows\System32\drivers\usbuhci.sys - ok
21:01:12.0518 6048 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
21:01:12.0518 6048 C:\Windows\System32\drivers\usbehci.sys - ok
21:01:12.0526 6048 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
21:01:12.0526 6048 C:\Windows\System32\drivers\hdaudbus.sys - ok
21:01:12.0535 6048 [ 37394D3553E220FB732C21E217E1BD8B ] C:\Windows\System32\drivers\BCMWL664.SYS
21:01:12.0535 6048 C:\Windows\System32\drivers\BCMWL664.SYS - ok
21:01:12.0546 6048 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
21:01:12.0547 6048 C:\Windows\System32\drivers\vwifibus.sys - ok
21:01:12.0554 6048 [ 79D9CE9614C955DD31AA2556B4014662 ] C:\Windows\System32\drivers\yk62x64.sys
21:01:12.0555 6048 C:\Windows\System32\drivers\yk62x64.sys - ok
21:01:12.0563 6048 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
21:01:12.0563 6048 C:\Windows\System32\drivers\i8042prt.sys - ok
21:01:12.0570 6048 [ 98449A2957778A6F025C418438A380F4 ] C:\Windows\System32\drivers\Apfiltr.sys
21:01:12.0570 6048 C:\Windows\System32\drivers\Apfiltr.sys - ok
21:01:12.0579 6048 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
21:01:12.0579 6048 C:\Windows\System32\drivers\mouclass.sys - ok
21:01:12.0586 6048 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
21:01:12.0587 6048 C:\Windows\System32\drivers\kbdclass.sys - ok
21:01:12.0596 6048 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
21:01:12.0596 6048 C:\Windows\System32\drivers\CmBatt.sys - ok
21:01:12.0602 6048 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] C:\Windows\SysWOW64\drivers\afc.sys
21:01:12.0603 6048 C:\Windows\SysWOW64\drivers\afc.sys - ok
21:01:12.0610 6048 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
21:01:12.0613 6048 C:\Windows\System32\drivers\wmiacpi.sys - ok
21:01:12.0619 6048 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
21:01:12.0619 6048 C:\Windows\System32\drivers\intelppm.sys - ok
21:01:12.0630 6048 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
21:01:12.0630 6048 C:\Windows\System32\drivers\agilevpn.sys - ok
21:01:12.0636 6048 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
21:01:12.0636 6048 C:\Windows\System32\drivers\CompositeBus.sys - ok
21:01:12.0647 6048 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
21:01:12.0647 6048 C:\Windows\System32\drivers\rasl2tp.sys - ok
21:01:12.0655 6048 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
21:01:12.0656 6048 C:\Windows\System32\drivers\ndistapi.sys - ok
21:01:12.0663 6048 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
21:01:12.0663 6048 C:\Windows\System32\drivers\ndiswan.sys - ok
21:01:12.0672 6048 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
21:01:12.0672 6048 C:\Windows\System32\drivers\raspppoe.sys - ok
21:01:12.0683 6048 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
21:01:12.0683 6048 C:\Windows\System32\drivers\raspptp.sys - ok
21:01:12.0691 6048 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
21:01:12.0692 6048 C:\Windows\System32\drivers\rassstp.sys - ok
21:01:12.0699 6048 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
21:01:12.0699 6048 C:\Windows\System32\drivers\ks.sys - ok
21:01:12.0707 6048 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
21:01:12.0707 6048 C:\Windows\System32\drivers\swenum.sys - ok
21:01:12.0716 6048 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
21:01:12.0716 6048 C:\Windows\System32\drivers\umbus.sys - ok
21:01:12.0724 6048 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
21:01:12.0725 6048 C:\Windows\System32\drivers\usbhub.sys - ok
21:01:12.0732 6048 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
21:01:12.0733 6048 C:\Windows\System32\drivers\ndproxy.sys - ok
21:01:12.0741 6048 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
21:01:12.0741 6048 C:\Windows\System32\drivers\drmk.sys - ok
21:01:12.0749 6048 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
21:01:12.0749 6048 C:\Windows\System32\drivers\portcls.sys - ok
21:01:12.0755 6048 [ F3F6C17F70EBA268CDBE4F9704E3EAC5 ] C:\Windows\System32\drivers\stwrt64.sys
21:01:12.0755 6048 C:\Windows\System32\drivers\stwrt64.sys - ok
21:01:12.0762 6048 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
21:01:12.0762 6048 C:\Windows\System32\drivers\ksthunk.sys - ok
21:01:12.0769 6048 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
21:01:12.0769 6048 C:\Windows\System32\autochk.exe - ok
21:01:12.0775 6048 [ DC83C9F4130F447EAD187879708C8035 ] C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
21:01:12.0775 6048 C:\PROGRA~2\AVG\AVG2013\avgrsa.exe - ok
21:01:12.0782 6048 [ 19A3E3E587D4D369F6EA753DF02F33CD ] C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll
21:01:12.0782 6048 C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll - ok
21:01:12.0788 6048 [ 70D1A44B0D05FEC737CC2C9662D6FB70 ] C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll
21:01:12.0789 6048 C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll - ok
21:01:12.0795 6048 [ 4848422594D3B6A6BFF438AF0B6D030D ] C:\Program Files (x86)\AVG\AVG2013\avgloga.dll
21:01:12.0795 6048 C:\Program Files (x86)\AVG\AVG2013\avgloga.dll - ok
21:01:12.0802 6048 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
21:01:12.0802 6048 C:\Windows\System32\imagehlp.dll - ok
21:01:12.0808 6048 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
21:01:12.0808 6048 C:\Windows\System32\msctf.dll - ok
21:01:12.0816 6048 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
21:01:12.0816 6048 C:\Windows\System32\advapi32.dll - ok
21:01:12.0824 6048 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
21:01:12.0824 6048 C:\Windows\System32\clbcatq.dll - ok
21:01:12.0829 6048 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
21:01:12.0830 6048 C:\Windows\System32\comdlg32.dll - ok
21:01:12.0837 6048 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
21:01:12.0837 6048 C:\Windows\System32\lpk.dll - ok
21:01:12.0843 6048 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
21:01:12.0843 6048 C:\Windows\System32\usp10.dll - ok
21:01:12.0849 6048 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
21:01:12.0850 6048 C:\Windows\System32\ole32.dll - ok
21:01:12.0856 6048 [ 3972FF09D00347B843B4A2300B4E90CB ] C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll
21:01:12.0856 6048 C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll - ok
21:01:12.0863 6048 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
21:01:12.0863 6048 C:\Windows\System32\difxapi.dll - ok
21:01:12.0869 6048 [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
21:01:12.0869 6048 C:\Windows\System32\kernel32.dll - ok
21:01:12.0873 6048 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
21:01:12.0874 6048 C:\Windows\System32\oleaut32.dll - ok
21:01:12.0880 6048 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
21:01:12.0880 6048 C:\Windows\System32\ws2_32.dll - ok
21:01:12.0887 6048 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
21:01:12.0887 6048 C:\Windows\System32\setupapi.dll - ok
21:01:12.0894 6048 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
21:01:12.0894 6048 C:\Windows\System32\imm32.dll - ok
21:01:12.0901 6048 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
21:01:12.0901 6048 C:\Windows\System32\Wldap32.dll - ok
21:01:12.0908 6048 [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
21:01:12.0908 6048 C:\Windows\System32\urlmon.dll - ok
21:01:12.0916 6048 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
21:01:12.0916 6048 C:\Windows\System32\drivers\usbd.sys - ok
21:01:12.0922 6048 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
21:01:12.0922 6048 C:\Windows\System32\drivers\USBSTOR.SYS - ok
21:01:12.0928 6048 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
21:01:12.0928 6048 C:\Windows\System32\drivers\usbccgp.sys - ok
21:01:12.0936 6048 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
21:01:12.0936 6048 C:\Windows\System32\drivers\usbvideo.sys - ok
21:01:12.0945 6048 [ ED5CF92396A62F4C15110DCDB5E854D9 ] C:\Windows\System32\drivers\CtClsFlt.sys
21:01:12.0945 6048 C:\Windows\System32\drivers\CtClsFlt.sys - ok
21:01:12.0951 6048 [ 2C19A4BC4D3C714F890A58B4C942077F ] C:\PROGRA~2\AVG\AVG2013\avgclita.dll
21:01:12.0951 6048 C:\PROGRA~2\AVG\AVG2013\avgclita.dll - ok
21:01:12.0957 6048 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
21:01:12.0957 6048 C:\Windows\System32\drivers\fastfat.sys - ok
21:01:12.0964 6048 [ B4CF2DAC753DD785FD92076B3CD36CED ] C:\PROGRA~2\AVG\AVG2013\avgcclia.dll
21:01:12.0964 6048 C:\PROGRA~2\AVG\AVG2013\avgcclia.dll - ok
21:01:12.0971 6048 [ CF433BC29D4089D264F24A1ED371941D ] C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
21:01:12.0971 6048 C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe - ok
21:01:12.0978 6048 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
21:01:12.0978 6048 C:\Windows\System32\gdi32.dll - ok
21:01:12.0984 6048 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
21:01:12.0985 6048 C:\Windows\System32\normaliz.dll - ok
21:01:12.0991 6048 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
21:01:12.0991 6048 C:\Windows\System32\rpcrt4.dll - ok
21:01:12.0997 6048 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
21:01:12.0997 6048 C:\Windows\System32\shlwapi.dll - ok
21:01:13.0004 6048 [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
21:01:13.0004 6048 C:\Windows\System32\wininet.dll - ok
21:01:13.0011 6048 [ 309CF923DE809A67AD0A4FD825430FCC ] C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll
21:01:13.0011 6048 C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll - ok
21:01:13.0017 6048 [ C297715529E28F7283EE621CCFDB1DDB ] C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll
21:01:13.0017 6048 C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll - ok
21:01:13.0024 6048 [ 06F3F7E9E9B29C32F8702B541E4C2156 ] C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll
21:01:13.0024 6048 C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll - ok
21:01:13.0031 6048 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
21:01:13.0031 6048 C:\Windows\System32\shell32.dll - ok
21:01:13.0037 6048 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
21:01:13.0037 6048 C:\Windows\System32\msvcrt.dll - ok
21:01:13.0043 6048 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
21:01:13.0043 6048 C:\Windows\System32\nsi.dll - ok
21:01:13.0051 6048 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
21:01:13.0051 6048 C:\Windows\System32\psapi.dll - ok
21:01:13.0057 6048 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
21:01:13.0057 6048 C:\Windows\System32\sechost.dll - ok
21:01:13.0063 6048 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
21:01:13.0063 6048 C:\Windows\System32\user32.dll - ok
21:01:13.0073 6048 [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
21:01:13.0073 6048 C:\Windows\System32\iertutil.dll - ok
21:01:13.0078 6048 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
21:01:13.0078 6048 C:\Windows\System32\comctl32.dll - ok
21:01:13.0085 6048 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
21:01:13.0085 6048 C:\Windows\System32\devobj.dll - ok
21:01:13.0091 6048 [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
21:01:13.0091 6048 C:\Windows\System32\KernelBase.dll - ok
21:01:13.0097 6048 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
21:01:13.0098 6048 C:\Windows\System32\wintrust.dll - ok
21:01:13.0105 6048 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
21:01:13.0105 6048 C:\Windows\System32\cfgmgr32.dll - ok
21:01:13.0111 6048 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
21:01:13.0111 6048 C:\Windows\System32\crypt32.dll - ok
21:01:13.0118 6048 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
21:01:13.0118 6048 C:\Windows\System32\msasn1.dll - ok
21:01:13.0122 6048 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
21:01:13.0122 6048 C:\Windows\SysWOW64\normaliz.dll - ok
21:01:13.0129 6048 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
21:01:13.0129 6048 C:\Windows\System32\drivers\dxapi.sys - ok
21:01:13.0135 6048 [ C58923115CDE6071C3BF2FF063546E9F ] C:\Windows\System32\win32k.sys
21:01:13.0135 6048 C:\Windows\System32\win32k.sys - ok
21:01:13.0142 6048 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
21:01:13.0142 6048 C:\Windows\System32\csrsrv.dll - ok
21:01:13.0148 6048 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
21:01:13.0148 6048 C:\Windows\System32\csrss.exe - ok
21:01:13.0155 6048 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
21:01:13.0155 6048 C:\Windows\System32\basesrv.dll - ok
21:01:13.0161 6048 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\System32\winsrv.dll
21:01:13.0161 6048 C:\Windows\System32\winsrv.dll - ok
21:01:13.0170 6048 [ 275061F56FC648ED884C38A93EAB6FC6 ] C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll
21:01:13.0170 6048 C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll - ok
21:01:13.0175 6048 [ AAD184F33A9A4A2AECF3CB5247651D01 ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll
21:01:13.0175 6048 C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll - ok
21:01:13.0182 6048 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
21:01:13.0182 6048 C:\Windows\System32\drivers\monitor.sys - ok
21:01:13.0189 6048 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
21:01:13.0189 6048 C:\Windows\System32\tsddd.dll - ok
21:01:13.0195 6048 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
21:01:13.0195 6048 C:\Windows\System32\sxssrv.dll - ok
21:01:13.0203 6048 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
21:01:13.0203 6048 C:\Windows\System32\wininit.exe - ok
21:01:13.0209 6048 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
21:01:13.0209 6048 C:\Windows\System32\profapi.dll - ok
21:01:13.0215 6048 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
21:01:13.0215 6048 C:\Windows\System32\KBDUS.DLL - ok
21:01:13.0222 6048 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
21:01:13.0222 6048 C:\Windows\System32\RpcRtRemote.dll - ok
21:01:13.0229 6048 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
21:01:13.0229 6048 C:\Windows\System32\cdd.dll - ok
21:01:13.0236 6048 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
21:01:13.0236 6048 C:\Windows\System32\WlS0WndH.dll - ok
21:01:13.0242 6048 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
21:01:13.0242 6048 C:\Windows\System32\sxs.dll - ok
21:01:13.0249 6048 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
21:01:13.0249 6048 C:\Windows\System32\cryptbase.dll - ok
21:01:13.0256 6048 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
21:01:13.0256 6048 C:\Windows\System32\apphelp.dll - ok
21:01:13.0263 6048 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
21:01:13.0263 6048 C:\Windows\System32\services.exe - ok
21:01:13.0271 6048 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
21:01:13.0271 6048 C:\Windows\System32\lsm.exe - ok
21:01:13.0281 6048 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
21:01:13.0281 6048 C:\Windows\System32\sspicli.dll - ok
21:01:13.0293 6048 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
21:01:13.0293 6048 C:\Windows\System32\lsass.exe - ok
21:01:13.0302 6048 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
21:01:13.0304 6048 C:\Windows\System32\scext.dll - ok
21:01:13.0310 6048 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
21:01:13.0311 6048 C:\Windows\System32\secur32.dll - ok
21:01:13.0324 6048 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
21:01:13.0324 6048 C:\Windows\System32\sysntfy.dll - ok
21:01:13.0332 6048 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
21:01:13.0332 6048 C:\Windows\System32\scesrv.dll - ok
21:01:13.0341 6048 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
21:01:13.0343 6048 C:\Windows\System32\srvcli.dll - ok
21:01:13.0351 6048 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
21:01:13.0351 6048 C:\Windows\System32\wmsgapi.dll - ok
21:01:13.0358 6048 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
21:01:13.0359 6048 C:\Windows\System32\sspisrv.dll - ok
21:01:13.0367 6048 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
21:01:13.0367 6048 C:\Windows\System32\lsasrv.dll - ok
21:01:13.0376 6048 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
21:01:13.0376 6048 C:\Windows\System32\cryptdll.dll - ok
21:01:13.0384 6048 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
21:01:13.0384 6048 C:\Windows\System32\samsrv.dll - ok
21:01:13.0391 6048 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
21:01:13.0391 6048 C:\Windows\System32\wevtapi.dll - ok
21:01:13.0401 6048 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
21:01:13.0401 6048 C:\Windows\System32\authz.dll - ok
21:01:13.0409 6048 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
21:01:13.0410 6048 C:\Windows\System32\cngaudit.dll - ok
21:01:13.0417 6048 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
21:01:13.0417 6048 C:\Windows\System32\bcrypt.dll - ok
21:01:13.0425 6048 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
21:01:13.0426 6048 C:\Windows\System32\ncrypt.dll - ok
21:01:13.0444 6048 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
21:01:13.0444 6048 C:\Windows\System32\msprivs.dll - ok
21:01:13.0450 6048 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
21:01:13.0450 6048 C:\Windows\System32\cryptsp.dll - ok
21:01:13.0458 6048 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
21:01:13.0458 6048 C:\Windows\System32\kerberos.dll - ok
21:01:13.0467 6048 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
21:01:13.0467 6048 C:\Windows\System32\negoexts.dll - ok
21:01:13.0475 6048 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
21:01:13.0475 6048 C:\Windows\System32\netjoin.dll - ok
21:01:13.0483 6048 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
21:01:13.0484 6048 C:\Windows\System32\msv1_0.dll - ok
21:01:13.0491 6048 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
21:01:13.0492 6048 C:\Windows\System32\mswsock.dll - ok
21:01:13.0499 6048 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
21:01:13.0499 6048 C:\Windows\System32\netlogon.dll - ok
21:01:13.0508 6048 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
21:01:13.0508 6048 C:\Windows\System32\version.dll - ok
21:01:13.0515 6048 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
21:01:13.0515 6048 C:\Windows\System32\wship6.dll - ok
21:01:13.0523 6048 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
21:01:13.0524 6048 C:\Windows\System32\dnsapi.dll - ok
21:01:13.0531 6048 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
21:01:13.0531 6048 C:\Windows\System32\logoncli.dll - ok
21:01:13.0541 6048 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
21:01:13.0541 6048 C:\Windows\System32\schannel.dll - ok
21:01:13.0547 6048 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
21:01:13.0547 6048 C:\Windows\System32\wdigest.dll - ok
21:01:13.0557 6048 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
21:01:13.0558 6048 C:\Windows\System32\LIVESSP.DLL - ok
21:01:13.0566 6048 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
21:01:13.0566 6048 C:\Windows\System32\pku2u.dll - ok
21:01:13.0575 6048 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
21:01:13.0575 6048 C:\Windows\System32\rsaenh.dll - ok
21:01:13.0583 6048 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
21:01:13.0583 6048 C:\Windows\System32\TSpkg.dll - ok
21:01:13.0591 6048 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
21:01:13.0592 6048 C:\Windows\System32\bcryptprimitives.dll - ok
21:01:13.0600 6048 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
21:01:13.0600 6048 C:\Windows\System32\efslsaext.dll - ok
21:01:13.0609 6048 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
21:01:13.0609 6048 C:\Windows\System32\credssp.dll - ok
21:01:13.0616 6048 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
21:01:13.0616 6048 C:\Windows\System32\scecli.dll - ok
21:01:13.0625 6048 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
21:01:13.0625 6048 C:\Windows\System32\ubpm.dll - ok
21:01:13.0633 6048 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
21:01:13.0633 6048 C:\Windows\System32\winlogon.exe - ok
21:01:13.0642 6048 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
21:01:13.0642 6048 C:\Windows\System32\winsta.dll - ok
21:01:13.0653 6048 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
21:01:13.0653 6048 C:\Windows\System32\svchost.exe - ok
21:01:13.0659 6048 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
21:01:13.0659 6048 C:\Windows\System32\umpnpmgr.dll - ok
21:01:13.0669 6048 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
21:01:13.0669 6048 C:\Windows\System32\devrtl.dll - ok
21:01:13.0676 6048 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
21:01:13.0676 6048 C:\Windows\System32\SPInf.dll - ok
21:01:13.0684 6048 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
21:01:13.0684 6048 C:\Windows\System32\gpapi.dll - ok
21:01:13.0694 6048 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
21:01:13.0694 6048 C:\Windows\System32\userenv.dll - ok
21:01:13.0702 6048 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
21:01:13.0702 6048 C:\Windows\System32\umpo.dll - ok
21:01:13.0710 6048 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
21:01:13.0710 6048 C:\Windows\System32\pcwum.dll - ok
21:01:13.0717 6048 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
21:01:13.0718 6048 C:\Windows\System32\powrprof.dll - ok
21:01:13.0726 6048 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
21:01:13.0726 6048 C:\Windows\System32\drivers\luafv.sys - ok
21:01:13.0734 6048 [ A8FE8F2783B2929B56F5370A89356CE9 ] C:\Windows\System32\drivers\mbam.sys
21:01:13.0734 6048 C:\Windows\System32\drivers\mbam.sys - ok
21:01:13.0743 6048 [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
21:01:13.0743 6048 C:\Windows\System32\drivers\Sftvollh.sys - ok
21:01:13.0750 6048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
21:01:13.0750 6048 C:\Windows\System32\rpcss.dll - ok
21:01:13.0760 6048 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
21:01:13.0760 6048 C:\Windows\System32\RpcEpMap.dll - ok
21:01:13.0765 6048 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
21:01:13.0765 6048 C:\Windows\System32\wshqos.dll - ok
21:01:13.0774 6048 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
21:01:13.0774 6048 C:\Windows\System32\WSHTCPIP.DLL - ok
21:01:13.0781 6048 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
21:01:13.0781 6048 C:\Windows\System32\FirewallAPI.dll - ok
21:01:13.0790 6048 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
21:01:13.0790 6048 C:\Windows\System32\LogonUI.exe - ok
21:01:13.0798 6048 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
21:01:13.0798 6048 C:\Windows\System32\wevtsvc.dll - ok
21:01:13.0806 6048 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
21:01:13.0806 6048 C:\Windows\System32\authui.dll - ok
21:01:13.0814 6048 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
21:01:13.0814 6048 C:\Windows\System32\cryptui.dll - ok
21:01:13.0822 6048 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
21:01:13.0822 6048 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
21:01:13.0831 6048 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
21:01:13.0831 6048 C:\Windows\System32\samlib.dll - ok
21:01:13.0841 6048 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
21:01:13.0841 6048 C:\Windows\System32\shacct.dll - ok
21:01:13.0848 6048 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
21:01:13.0849 6048 C:\Windows\System32\propsys.dll - ok
21:01:13.0856 6048 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
21:01:13.0856 6048 C:\Windows\System32\wlansvc.dll - ok
21:01:13.0864 6048 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
21:01:13.0864 6048 C:\Windows\System32\audiosrv.dll - ok
21:01:13.0873 6048 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
21:01:13.0873 6048 C:\Windows\System32\adtschema.dll - ok
21:01:13.0881 6048 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
21:01:13.0882 6048 C:\Windows\System32\uxtheme.dll - ok
21:01:13.0889 6048 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
21:01:13.0890 6048 C:\Windows\System32\avrt.dll - ok
21:01:13.0896 6048 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
21:01:13.0897 6048 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
21:01:13.0905 6048 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
21:01:13.0905 6048 C:\Windows\System32\MMDevAPI.dll - ok
21:01:13.0913 6048 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
21:01:13.0913 6048 C:\Windows\System32\drivers\fltMgr.sys - ok
21:01:13.0921 6048 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
21:01:13.0921 6048 C:\Windows\System32\PSHED.DLL - ok
21:01:13.0930 6048 [ 5697FB5DCF36ADA09C153378E88AE6AD ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\stacsv64.exe
21:01:13.0930 6048 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\stacsv64.exe - ok
21:01:13.0938 6048 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
21:01:13.0938 6048 C:\Windows\System32\netprofm.dll - ok
21:01:13.0946 6048 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
21:01:13.0946 6048 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
21:01:13.0955 6048 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
21:01:13.0955 6048 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
21:01:13.0966 6048 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
21:01:13.0966 6048 C:\Windows\System32\mmcss.dll - ok
21:01:13.0974 6048 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
21:01:13.0975 6048 C:\Windows\System32\dsound.dll - ok
21:01:13.0982 6048 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
21:01:13.0984 6048 C:\Windows\System32\winmm.dll - ok
21:01:13.0991 6048 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
21:01:13.0991 6048 C:\Windows\System32\MPSSVC.dll - ok
21:01:13.0999 6048 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
21:01:13.0999 6048 C:\Windows\System32\dui70.dll - ok
21:01:14.0008 6048 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
21:01:14.0008 6048 C:\Windows\System32\duser.dll - ok
21:01:14.0016 6048 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
21:01:14.0016 6048 C:\Windows\System32\hid.dll - ok
21:01:14.0024 6048 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
21:01:14.0024 6048 C:\Windows\System32\SndVolSSO.dll - ok
21:01:14.0032 6048 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
21:01:14.0033 6048 C:\Windows\System32\dwmapi.dll - ok
21:01:14.0041 6048 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
21:01:14.0041 6048 C:\Windows\System32\xmllite.dll - ok
21:01:14.0049 6048 [ 47232CB3941B68B0E70FB053C42CBCE0 ] C:\Windows\System32\stapi64.dll
21:01:14.0049 6048 C:\Windows\System32\stapi64.dll - ok
21:01:14.0058 6048 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
21:01:14.0058 6048 C:\Windows\System32\WindowsCodecs.dll - ok
21:01:14.0066 6048 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:01:14.0066 6048 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:01:14.0075 6048 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
21:01:14.0075 6048 C:\Windows\System32\VaultCredProvider.dll - ok
21:01:14.0082 6048 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
21:01:14.0083 6048 C:\Windows\System32\winbrand.dll - ok
21:01:14.0090 6048 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
21:01:14.0091 6048 C:\Windows\System32\wtsapi32.dll - ok
21:01:14.0099 6048 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
21:01:14.0099 6048 C:\Windows\System32\BioCredProv.dll - ok
21:01:14.0106 6048 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
21:01:14.0107 6048 C:\Windows\System32\credui.dll - ok
21:01:14.0117 6048 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
21:01:14.0117 6048 C:\Windows\System32\winbio.dll - ok
21:01:14.0125 6048 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
21:01:14.0125 6048 C:\Windows\System32\netapi32.dll - ok
21:01:14.0133 6048 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
21:01:14.0133 6048 C:\Windows\System32\netutils.dll - ok
21:01:14.0141 6048 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
21:01:14.0142 6048 C:\Windows\System32\samcli.dll - ok
21:01:14.0149 6048 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
21:01:14.0149 6048 C:\Windows\System32\vaultcli.dll - ok
21:01:14.0157 6048 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
21:01:14.0157 6048 C:\Windows\System32\wkscli.dll - ok
21:01:14.0166 6048 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
21:01:14.0166 6048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
21:01:14.0173 6048 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
21:01:14.0174 6048 C:\Windows\System32\certCredProvider.dll - ok
21:01:14.0181 6048 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
21:01:14.0182 6048 C:\Windows\System32\audiodg.exe - ok
21:01:14.0190 6048 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
21:01:14.0190 6048 C:\Windows\System32\rasapi32.dll - ok
21:01:14.0198 6048 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
21:01:14.0198 6048 C:\Windows\System32\rasman.dll - ok
21:01:14.0206 6048 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
21:01:14.0206 6048 C:\Windows\System32\rasplap.dll - ok
21:01:14.0215 6048 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
21:01:14.0215 6048 C:\Windows\System32\rtutils.dll - ok
21:01:14.0222 6048 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
21:01:14.0222 6048 C:\Windows\System32\AudioSes.dll - ok
21:01:14.0230 6048 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
21:01:14.0230 6048 C:\Windows\System32\ntmarta.dll - ok
21:01:14.0238 6048 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
21:01:14.0238 6048 C:\Windows\System32\gpsvc.dll - ok
21:01:14.0246 6048 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
21:01:14.0246 6048 C:\Windows\System32\nlaapi.dll - ok
21:01:14.0254 6048 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
21:01:14.0254 6048 C:\Windows\System32\profsvc.dll - ok
21:01:14.0263 6048 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
21:01:14.0267 6048 C:\Windows\System32\themeservice.dll - ok
21:01:14.0274 6048 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
21:01:14.0274 6048 C:\Windows\System32\wdmaud.drv - ok
21:01:14.0283 6048 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
21:01:14.0283 6048 C:\Windows\System32\atl.dll - ok
21:01:14.0291 6048 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
21:01:14.0291 6048 C:\Windows\System32\ksuser.dll - ok
21:01:14.0301 6048 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
21:01:14.0301 6048 C:\Windows\System32\dsrole.dll - ok
21:01:14.0309 6048 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
21:01:14.0309 6048 C:\Windows\System32\slc.dll - ok
21:01:14.0317 6048 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
21:01:14.0317 6048 C:\Windows\System32\es.dll - ok
21:01:14.0325 6048 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
21:01:14.0325 6048 C:\Windows\System32\UXInit.dll - ok
21:01:14.0333 6048 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
21:01:14.0333 6048 C:\Windows\System32\midimap.dll - ok
21:01:14.0341 6048 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
21:01:14.0341 6048 C:\Windows\System32\msacm32.dll - ok
21:01:14.0350 6048 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
21:01:14.0351 6048 C:\Windows\System32\msacm32.drv - ok
21:01:14.0357 6048 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
21:01:14.0358 6048 C:\Windows\System32\AudioEng.dll - ok
21:01:14.0367 6048 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
21:01:14.0367 6048 C:\Windows\System32\AUDIOKSE.dll - ok
21:01:14.0373 6048 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
21:01:14.0373 6048 C:\Windows\System32\Sens.dll - ok
21:01:14.0384 6048 [ 30D5604D63055850D35A318F11A7D9F8 ] C:\Windows\System32\stapo64.dll
21:01:14.0384 6048 C:\Windows\System32\stapo64.dll - ok
21:01:14.0392 6048 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
21:01:14.0392 6048 C:\Windows\System32\mfplat.dll - ok
21:01:14.0402 6048 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
21:01:14.0402 6048 C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:01:14.0409 6048 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
21:01:14.0409 6048 C:\Windows\System32\comres.dll - ok
21:01:14.0418 6048 [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
21:01:14.0418 6048 C:\Program Files\Dell\DellDock\DockLogin.exe - ok
21:01:14.0428 6048 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
21:01:14.0428 6048 C:\Windows\SysWOW64\ntdll.dll - ok
21:01:14.0441 6048 [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
21:01:14.0441 6048 C:\Windows\System32\wow64.dll - ok
21:01:14.0449 6048 [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
21:01:14.0452 6048 C:\Windows\System32\wow64win.dll - ok
21:01:14.0457 6048 [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
21:01:14.0457 6048 C:\Windows\System32\wow64cpu.dll - ok
21:01:14.0465 6048 [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
21:01:14.0465 6048 C:\Windows\SysWOW64\kernel32.dll - ok
21:01:14.0473 6048 [ B4F1BFD9165FDD72C03B7D9C20A39F71 ] C:\Windows\System32\ctapo64.dll
21:01:14.0473 6048 C:\Windows\System32\ctapo64.dll - ok
21:01:14.0481 6048 [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
21:01:14.0482 6048 C:\Windows\SysWOW64\KernelBase.dll - ok
21:01:14.0490 6048 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
21:01:14.0490 6048 C:\Windows\SysWOW64\wtsapi32.dll - ok
21:01:14.0498 6048 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
21:01:14.0499 6048 C:\Windows\SysWOW64\msvcrt.dll - ok
21:01:14.0505 6048 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
21:01:14.0506 6048 C:\Windows\SysWOW64\advapi32.dll - ok
21:01:14.0513 6048 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
21:01:14.0514 6048 C:\Windows\System32\IPHLPAPI.DLL - ok
21:01:14.0522 6048 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
21:01:14.0523 6048 C:\Windows\SysWOW64\sechost.dll - ok
21:01:14.0535 6048 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
21:01:14.0535 6048 C:\Windows\SysWOW64\rpcrt4.dll - ok
21:01:14.0543 6048 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
21:01:14.0543 6048 C:\Windows\SysWOW64\sspicli.dll - ok
21:01:14.0553 6048 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
21:01:14.0553 6048 C:\Windows\SysWOW64\cryptbase.dll - ok
21:01:14.0559 6048 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
21:01:14.0559 6048 C:\Windows\SysWOW64\shlwapi.dll - ok
21:01:14.0569 6048 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
21:01:14.0570 6048 C:\Windows\SysWOW64\gdi32.dll - ok
21:01:14.0578 6048 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
21:01:14.0578 6048 C:\Windows\SysWOW64\user32.dll - ok
21:01:14.0597 6048 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
21:01:14.0597 6048 C:\Windows\SysWOW64\lpk.dll - ok
21:01:14.0603 6048 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
21:01:14.0603 6048 C:\Windows\System32\winnsi.dll - ok
21:01:14.0610 6048 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
21:01:14.0610 6048 C:\Windows\SysWOW64\usp10.dll - ok
21:01:14.0620 6048 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
21:01:14.0620 6048 C:\Windows\System32\AESTAR64.dll - ok
21:01:14.0634 6048 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
21:01:14.0634 6048 C:\Windows\SysWOW64\imm32.dll - ok
21:01:14.0643 6048 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
21:01:14.0644 6048 C:\Windows\SysWOW64\msctf.dll - ok
21:01:14.0657 6048 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
21:01:14.0657 6048 C:\Windows\System32\imageres.dll - ok
21:01:14.0664 6048 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
21:01:14.0664 6048 C:\Windows\System32\drivers\lltdio.sys - ok
21:01:14.0676 6048 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
21:01:14.0676 6048 C:\Windows\System32\uxsms.dll - ok
21:01:14.0690 6048 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
21:01:14.0690 6048 C:\Windows\System32\drivers\nwifi.sys - ok
21:01:14.0697 6048 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
21:01:14.0697 6048 C:\Windows\System32\drivers\ndisuio.sys - ok
21:01:14.0705 6048 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
21:01:14.0705 6048 C:\Windows\System32\drivers\rspndr.sys - ok
21:01:14.0713 6048 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
21:01:14.0713 6048 C:\Windows\System32\lmhsvc.dll - ok
21:01:14.0721 6048 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
21:01:14.0721 6048 C:\Windows\System32\nrpsrv.dll - ok
21:01:14.0729 6048 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
21:01:14.0729 6048 C:\Windows\System32\nsisvc.dll - ok
21:01:14.0738 6048 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
21:01:14.0739 6048 C:\Windows\System32\dhcpcore.dll - ok
21:01:14.0747 6048 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
21:01:14.0747 6048 C:\Windows\System32\dhcpcore6.dll - ok
21:01:14.0756 6048 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
21:01:14.0756 6048 C:\Windows\System32\dnsrslvr.dll - ok
21:01:14.0766 6048 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
21:01:14.0766 6048 C:\Windows\System32\keyiso.dll - ok
21:01:14.0780 6048 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
21:01:14.0780 6048 C:\Windows\System32\eapphost.dll - ok
21:01:14.0792 6048 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
21:01:14.0793 6048 C:\Windows\System32\eapsvc.dll - ok
21:01:14.0805 6048 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
21:01:14.0805 6048 C:\Windows\System32\FWPUCLNT.DLL - ok
21:01:14.0817 6048 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
21:01:14.0817 6048 C:\Windows\System32\umb.dll - ok
21:01:14.0834 6048 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
21:01:14.0834 6048 C:\Windows\System32\wlanmsm.dll - ok
21:01:14.0846 6048 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
21:01:14.0846 6048 C:\Windows\System32\wlansec.dll - ok
21:01:14.0860 6048 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
21:01:14.0860 6048 C:\Windows\System32\dhcpcsvc.dll - ok
21:01:14.0873 6048 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
21:01:14.0873 6048 C:\Windows\System32\eappprxy.dll - ok
21:01:14.0882 6048 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
21:01:14.0882 6048 C:\Windows\System32\onex.dll - ok
21:01:14.0890 6048 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
21:01:14.0890 6048 C:\Windows\System32\eappcfg.dll - ok
21:01:14.0901 6048 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
21:01:14.0901 6048 C:\Windows\System32\l2gpstore.dll - ok
21:01:14.0912 6048 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
21:01:14.0912 6048 C:\Windows\System32\wlanutil.dll - ok
21:01:14.0924 6048 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
21:01:14.0924 6048 C:\Windows\System32\wlgpclnt.dll - ok
21:01:14.0935 6048 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
21:01:14.0935 6048 C:\Windows\System32\WinSCard.dll - ok
21:01:14.0946 6048 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
21:01:14.0946 6048 C:\Windows\System32\dnsext.dll - ok
21:01:14.0958 6048 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
21:01:14.0958 6048 C:\Windows\System32\dhcpcsvc6.dll - ok
21:01:14.0970 6048 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
21:01:14.0970 6048 C:\Windows\System32\msxml6.dll - ok
21:01:14.0980 6048 [ 13B0A570E1AE451C92DA550085D72CF3 ] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
21:01:14.0980 6048 C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE - ok
21:01:14.0991 6048 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
21:01:14.0991 6048 C:\Windows\System32\wlanext.exe - ok
21:01:15.0003 6048 [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
21:01:15.0003 6048 C:\Windows\System32\conhost.exe - ok
21:01:15.0015 6048 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
21:01:15.0015 6048 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
21:01:15.0029 6048 [ AD3283C6BD152824A35E0E9B497AEACB ] C:\Program Files\Dell\Dell Wireless WLAN Card\BCMWLTRY.EXE
21:01:15.0029 6048 C:\Program Files\Dell\Dell Wireless WLAN Card\BCMWLTRY.EXE - ok
21:01:15.0042 6048 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
21:01:15.0042 6048 C:\Windows\System32\shsvcs.dll - ok
21:01:15.0051 6048 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
21:01:15.0051 6048 C:\Windows\System32\schedsvc.dll - ok
21:01:15.0065 6048 [ 28B97AF4BE035D73684A066253CF3CAB ] C:\Windows\System32\bcmihvsrv64.dll
21:01:15.0065 6048 C:\Windows\System32\bcmihvsrv64.dll - ok
21:01:15.0077 6048 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
21:01:15.0077 6048 C:\Windows\System32\ktmw32.dll - ok
21:01:15.0082 6048 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
21:01:15.0082 6048 C:\Windows\System32\mscoree.dll - ok
21:01:15.0092 6048 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
21:01:15.0093 6048 C:\Windows\System32\wlanapi.dll - ok
21:01:15.0101 6048 [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
21:01:15.0101 6048 C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok
21:01:15.0109 6048 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
21:01:15.0109 6048 C:\Windows\System32\taskcomp.dll - ok
21:01:15.0118 6048 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
21:01:15.0118 6048 C:\Windows\System32\drivers\http.sys - ok
21:01:15.0126 6048 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
21:01:15.0126 6048 C:\Windows\System32\fveapi.dll - ok
21:01:15.0135 6048 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
21:01:15.0135 6048 C:\Windows\System32\tbs.dll - ok
21:01:15.0140 6048 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
21:01:15.0140 6048 C:\Windows\System32\fvecerts.dll - ok
21:01:15.0149 6048 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
21:01:15.0150 6048 C:\Windows\System32\spoolsv.exe - ok
21:01:15.0157 6048 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
21:01:15.0160 6048 C:\Windows\System32\wiarpc.dll - ok
21:01:15.0165 6048 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
21:01:15.0166 6048 C:\Windows\System32\msimg32.dll - ok
21:01:15.0174 6048 [ DB4BC74DC444CC7A5F8F6DF2D38FBD96 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
21:01:15.0177 6048 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll - ok
21:01:15.0183 6048 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
21:01:15.0184 6048 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
21:01:15.0193 6048 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
21:01:15.0194 6048 C:\Windows\System32\wsock32.dll - ok
21:01:15.0201 6048 [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
21:01:15.0201 6048 C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
21:01:15.0210 6048 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
21:01:15.0210 6048 C:\Windows\System32\netcfgx.dll - ok
21:01:15.0220 6048 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
21:01:15.0220 6048 C:\Windows\System32\BFE.DLL - ok
21:01:15.0231 6048 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
21:01:15.0231 6048 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
21:01:15.0240 6048 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
21:01:15.0240 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
21:01:15.0249 6048 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
21:01:15.0249 6048 C:\Windows\System32\drivers\bowser.sys - ok
21:01:15.0257 6048 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
21:01:15.0257 6048 C:\Windows\System32\drivers\mpsdrv.sys - ok
21:01:15.0266 6048 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
21:01:15.0267 6048 C:\Windows\System32\drivers\mrxsmb.sys - ok
21:01:15.0275 6048 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
21:01:15.0275 6048 C:\Windows\System32\drivers\mrxsmb10.sys - ok
21:01:15.0286 6048 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
21:01:15.0287 6048 C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:01:15.0295 6048 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
21:01:15.0295 6048 C:\Windows\System32\wkssvc.dll - ok
21:01:15.0303 6048 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
21:01:15.0303 6048 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
21:01:15.0312 6048 [ ADC420616C501B45D26C0FD3EF1E54E4 ] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:01:15.0313 6048 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe - ok
21:01:15.0322 6048 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
21:01:15.0322 6048 C:\Windows\System32\wfapigp.dll - ok
21:01:15.0331 6048 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
21:01:15.0331 6048 C:\Windows\SysWOW64\shell32.dll - ok
21:01:15.0345 6048 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
21:01:15.0346 6048 C:\Windows\System32\mscms.dll - ok
21:01:15.0352 6048 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
21:01:15.0353 6048 C:\Windows\System32\pcasvc.dll - ok
21:01:15.0362 6048 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
21:01:15.0362 6048 C:\Windows\System32\snmptrap.exe - ok
21:01:15.0372 6048 [ 01AEA2F16FE0C522DDFD7FAFFC959C6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll
21:01:15.0372 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll - ok
21:01:15.0379 6048 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
21:01:15.0379 6048 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
21:01:15.0386 6048 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
21:01:15.0387 6048 C:\Windows\System32\provsvc.dll - ok
21:01:15.0391 6048 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
21:01:15.0392 6048 C:\Windows\System32\sstpsvc.dll - ok
21:01:15.0400 6048 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
21:01:15.0400 6048 C:\Windows\SysWOW64\psapi.dll - ok
21:01:15.0407 6048 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
21:01:15.0407 6048 C:\Windows\SysWOW64\userenv.dll - ok
21:01:15.0415 6048 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
21:01:15.0415 6048 C:\Windows\SysWOW64\profapi.dll - ok
21:01:15.0421 6048 [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe
21:01:15.0421 6048 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe - ok
21:01:15.0429 6048 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
21:01:15.0430 6048 C:\Windows\SysWOW64\ole32.dll - ok
21:01:15.0435 6048 [ 7548C242D95CBFF76908360AD629C09F ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\ArcCon.dll
21:01:15.0435 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\ArcCon.dll - ok
21:01:15.0441 6048 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
21:01:15.0441 6048 C:\Windows\SysWOW64\iertutil.dll - ok
21:01:15.0448 6048 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
21:01:15.0448 6048 C:\Windows\SysWOW64\oleaut32.dll - ok
21:01:15.0455 6048 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
21:01:15.0455 6048 C:\Windows\SysWOW64\urlmon.dll - ok
21:01:15.0463 6048 [ 56C73C5BC1656656CAC38A23B4310466 ] C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
21:01:15.0463 6048 C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe - ok
21:01:15.0471 6048 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
21:01:15.0471 6048 C:\Windows\SysWOW64\wininet.dll - ok
21:01:15.0478 6048 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
21:01:15.0479 6048 C:\Windows\SysWOW64\version.dll - ok
21:01:15.0486 6048 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
21:01:15.0486 6048 C:\Windows\SysWOW64\msi.dll - ok
21:01:15.0494 6048 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
21:01:15.0494 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
21:01:15.0501 6048 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
21:01:15.0502 6048 C:\Windows\SysWOW64\ntmarta.dll - ok
21:01:15.0509 6048 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
21:01:15.0509 6048 C:\Windows\SysWOW64\Wldap32.dll - ok
21:01:15.0522 6048 [ 42836D10270B1940F9A2FF77AE679537 ] C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll
21:01:15.0522 6048 C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll - ok
21:01:15.0526 6048 [ 40D70FDA37369916B6078EC4DF4BE49F ] C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll
21:01:15.0526 6048 C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll - ok
21:01:15.0534 6048 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
21:01:15.0534 6048 C:\Windows\SysWOW64\msvcp100.dll - ok
21:01:15.0542 6048 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
21:01:15.0542 6048 C:\Windows\SysWOW64\msvcr100.dll - ok
21:01:15.0550 6048 [ 720971F2603EF221AA4EF33980EF8137 ] C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlrmt.dll
21:01:15.0550 6048 C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlrmt.dll - ok
21:01:15.0557 6048 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
21:01:15.0557 6048 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
21:01:15.0565 6048 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
21:01:15.0565 6048 C:\Windows\SysWOW64\nsi.dll - ok
21:01:15.0572 6048 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
21:01:15.0572 6048 C:\Windows\SysWOW64\winnsi.dll - ok
21:01:15.0581 6048 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
21:01:15.0582 6048 C:\Windows\SysWOW64\ws2_32.dll - ok
21:01:15.0587 6048 [ F036DB9CF05B3C21405403FF074A78D9 ] C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll
21:01:15.0587 6048 C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll - ok
21:01:15.0595 6048 [ 05DEB6BF3C7F0C241FFB9A7C3503BDFB ] C:\Windows\System32\wltrynt.dll
21:01:15.0595 6048 C:\Windows\System32\wltrynt.dll - ok
21:01:15.0603 6048 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
21:01:15.0603 6048 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
21:01:15.0611 6048 [ 1C2E1FC9F8ED794CC191E92F27D1391C ] C:\Program Files (x86)\AVG\AVG2013\avglogx.dll
21:01:15.0611 6048 C:\Program Files (x86)\AVG\AVG2013\avglogx.dll - ok
21:01:15.0618 6048 [ A6251155B7017D4B4A77A3531A8DA6D8 ] C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll
21:01:15.0618 6048 C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll - ok
21:01:15.0625 6048 [ F59BEDB7C098DAE90DC5C9EB5296621A ] C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll
21:01:15.0625 6048 C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll - ok
21:01:15.0632 6048 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
21:01:15.0632 6048 C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe - ok
21:01:15.0640 6048 [ 76FFA2433FEB42E78FB5421A50C8FBE3 ] C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll
21:01:15.0640 6048 C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll - ok
21:01:15.0650 6048 [ 8BE887F1743FBB39ED2C9CA2937742D6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll
21:01:15.0650 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll - ok
21:01:15.0655 6048 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
21:01:15.0655 6048 C:\Windows\System32\cryptnet.dll - ok
21:01:15.0662 6048 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
21:01:15.0662 6048 C:\Windows\System32\cryptsvc.dll - ok
21:01:15.0671 6048 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
21:01:15.0671 6048 C:\Windows\System32\dps.dll - ok
21:01:15.0677 6048 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
21:01:15.0677 6048 C:\Windows\System32\efscore.dll - ok
21:01:15.0684 6048 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
21:01:15.0684 6048 C:\Windows\System32\efssvc.dll - ok
21:01:15.0690 6048 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
21:01:15.0691 6048 C:\Windows\System32\efsutil.dll - ok
21:01:15.0697 6048 [ 85B16A92B117A5A800032ECD904B86DB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:01:15.0697 6048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
21:01:15.0704 6048 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
21:01:15.0704 6048 C:\Windows\System32\FDResPub.dll - ok
21:01:15.0711 6048 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
21:01:15.0711 6048 C:\Windows\System32\vssapi.dll - ok
21:01:15.0717 6048 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
21:01:15.0718 6048 C:\Windows\System32\WSDApi.dll - ok
21:01:15.0724 6048 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
21:01:15.0724 6048 C:\Windows\System32\IKEEXT.DLL - ok
21:01:15.0730 6048 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
21:01:15.0730 6048 C:\Windows\System32\webservices.dll - ok
21:01:15.0737 6048 [ C0F7C25EEFB1C5FD554AAA801201A83C ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
21:01:15.0737 6048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
21:01:15.0743 6048 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
21:01:15.0744 6048 C:\Windows\System32\fundisc.dll - ok
21:01:15.0751 6048 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
21:01:15.0751 6048 C:\Windows\System32\taskschd.dll - ok
21:01:15.0758 6048 [ 10D5823CD673836BC9961F3FE0D87B9F ] C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll
21:01:15.0758 6048 C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll - ok
21:01:15.0764 6048 [ A8AD2773202A3913D1E1564BD5703183 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
21:01:15.0765 6048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
21:01:15.0772 6048 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
21:01:15.0772 6048 C:\Windows\System32\webio.dll - ok
21:01:15.0779 6048 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
21:01:15.0779 6048 C:\Windows\System32\winhttp.dll - ok
21:01:15.0785 6048 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
21:01:15.0786 6048 C:\Windows\System32\httpapi.dll - ok
21:01:15.0793 6048 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
21:01:15.0793 6048 C:\Windows\System32\vpnikeapi.dll - ok
21:01:15.0801 6048 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
21:01:15.0801 6048 C:\Windows\System32\vsstrace.dll - ok
21:01:15.0808 6048 [ 8F2AE8122F98E20549165F9D526E4430 ] C:\Program Files (x86)\AVG\AVG2013\avgwd.dll
21:01:15.0808 6048 C:\Program Files (x86)\AVG\AVG2013\avgwd.dll - ok
21:01:15.0815 6048 [ 95EFDCB44DD093EDAD447F1D21C8A3F7 ] C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll
21:01:15.0815 6048 C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll - ok
21:01:15.0822 6048 [ 6F19639188F792BBB234B2A3FCB0C8C9 ] C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll
21:01:15.0822 6048 C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll - ok
21:01:15.0828 6048 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
21:01:15.0828 6048 C:\Windows\SysWOW64\wintrust.dll - ok
21:01:15.0836 6048 [ 39108FC94EE1FEA6ED043CC8FD3F1BC0 ] C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll
21:01:15.0836 6048 C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll - ok
21:01:15.0844 6048 [ 5DCD11D0B1CB71E2B035B30670365C35 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\6c3851b925e2a31ddefb3d36bb9163cb\System.Runtime.Remoting.ni.dll
21:01:15.0844 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\6c3851b925e2a31ddefb3d36bb9163cb\System.Runtime.Remoting.ni.dll - ok
21:01:15.0851 6048 [ 625D390D5CBA512166571019E5EFECFB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\98059f32b988a3e2d869e9b3bf56db17\System.Management.ni.dll
21:01:15.0851 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\98059f32b988a3e2d869e9b3bf56db17\System.Management.ni.dll - ok
21:01:15.0859 6048 [ 893C44082C97F7AED3E7C180FA1F93D8 ] C:\Windows\System32\mpnotify.exe
21:01:15.0859 6048 C:\Windows\System32\mpnotify.exe - ok
21:01:15.0868 6048 [ F820B93E4ABCCABD698A175FD5FC83FE ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll
21:01:15.0868 6048 C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll - ok
21:01:15.0874 6048 [ 8BEA0348E53222D9D09FEDB6B074C554 ] C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll
21:01:15.0874 6048 C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll - ok
21:01:15.0882 6048 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
21:01:15.0882 6048 C:\Windows\SysWOW64\cfgmgr32.dll - ok
21:01:15.0890 6048 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
21:01:15.0890 6048 C:\Windows\SysWOW64\wevtapi.dll - ok
21:01:15.0897 6048 [ EE4309C3BEBB9CA54E5A84E412023E0F ] C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll
21:01:15.0897 6048 C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll - ok
21:01:15.0902 6048 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
21:01:15.0902 6048 C:\Windows\SysWOW64\secur32.dll - ok
21:01:15.0913 6048 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
21:01:15.0913 6048 C:\Windows\SysWOW64\wscapi.dll - ok
21:01:15.0918 6048 [ 2FC6C98A23864B2E50E53B4848939EAF ] C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
21:01:15.0919 6048 C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe - ok
21:01:15.0924 6048 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
21:01:15.0924 6048 C:\Windows\SysWOW64\apphelp.dll - ok

It was still too long to post, so here's part 2

21:01:15.0931 6048 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
21:01:15.0931 6048 C:\Windows\SysWOW64\clbcatq.dll - ok
21:01:15.0939 6048 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
21:01:15.0939 6048 C:\Windows\SysWOW64\cryptsp.dll - ok
21:01:15.0946 6048 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
21:01:15.0946 6048 C:\Windows\SysWOW64\wbemcomn.dll - ok
21:01:15.0953 6048 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
21:01:15.0953 6048 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
21:01:15.0960 6048 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
21:01:15.0960 6048 C:\Windows\SysWOW64\rsaenh.dll - ok
21:01:15.0969 6048 [ FF0602E28D69B977F889D435F902545E ] C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
21:01:15.0969 6048 C:\Program Files (x86)\AVG\AVG2013\avgemca.exe - ok
21:01:15.0975 6048 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
21:01:15.0975 6048 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
21:01:15.0983 6048 [ 8622AE563E2AC2F8BF9FAFEE726FC7B8 ] C:\Program Files (x86)\AVG\AVG2013\avgsched.dll
21:01:15.0983 6048 C:\Program Files (x86)\AVG\AVG2013\avgsched.dll - ok
21:01:15.0990 6048 [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
21:01:15.0990 6048 C:\Windows\System32\msvcr100.dll - ok
21:01:15.0998 6048 [ FF9AFBD2864BBEA6A9E7F90F8C94F6B7 ] C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll
21:01:15.0998 6048 C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll - ok
21:01:16.0008 6048 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
21:01:16.0008 6048 C:\Windows\SysWOW64\SensApi.dll - ok
21:01:16.0015 6048 [ DD2751B165C7DC4EC44E70C05D96523B ] C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll
21:01:16.0015 6048 C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll - ok
21:01:16.0021 6048 [ F4E1314516A67A8A53F73406E867A09C ] C:\Program Files (x86)\AVG\AVG2013\avgkrnlapia.dll
21:01:16.0021 6048 C:\Program Files (x86)\AVG\AVG2013\avgkrnlapia.dll - ok
21:01:16.0028 6048 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
21:01:16.0028 6048 C:\Windows\SysWOW64\crypt32.dll - ok
21:01:16.0037 6048 [ 2E420EA0DE469FD45DCC75961FB4DA4E ] C:\Program Files (x86)\AVG\AVG2013\avgsecapia.dll
21:01:16.0037 6048 C:\Program Files (x86)\AVG\AVG2013\avgsecapia.dll - ok
21:01:16.0044 6048 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
21:01:16.0044 6048 C:\Windows\System32\mpr.dll - ok
21:01:16.0049 6048 [ 80223885B9EB2DACEC4595D88F8345CB ] C:\Windows\System32\BCMLogon.dll
21:01:16.0049 6048 C:\Windows\System32\BCMLogon.dll - ok
21:01:16.0058 6048 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
21:01:16.0058 6048 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
21:01:16.0065 6048 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
21:01:16.0065 6048 C:\Windows\System32\dllhost.exe - ok
21:01:16.0074 6048 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
21:01:16.0074 6048 C:\Windows\System32\IDStore.dll - ok
21:01:16.0082 6048 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
21:01:16.0082 6048 C:\Windows\System32\taskhost.exe - ok
21:01:16.0091 6048 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
21:01:16.0091 6048 C:\Windows\SysWOW64\winsta.dll - ok
21:01:16.0099 6048 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
21:01:16.0099 6048 C:\Windows\System32\taskeng.exe - ok
21:01:16.0108 6048 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
21:01:16.0108 6048 C:\Windows\System32\userinit.exe - ok
21:01:16.0116 6048 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
21:01:16.0116 6048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
21:01:16.0125 6048 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
21:01:16.0125 6048 C:\Windows\System32\HotStartUserAgent.dll - ok
21:01:16.0132 6048 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
21:01:16.0132 6048 C:\Windows\System32\dwm.exe - ok
21:01:16.0139 6048 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
21:01:16.0140 6048 C:\Windows\System32\dwmredir.dll - ok
21:01:16.0147 6048 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
21:01:16.0147 6048 C:\Windows\System32\rasadhlp.dll - ok
21:01:16.0151 6048 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
21:01:16.0151 6048 C:\Windows\System32\localspl.dll - ok
21:01:16.0160 6048 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
21:01:16.0160 6048 C:\Windows\System32\PlaySndSrv.dll - ok
21:01:16.0168 6048 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
21:01:16.0168 6048 C:\Windows\System32\TSChannel.dll - ok
21:01:16.0175 6048 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
21:01:16.0175 6048 C:\Windows\System32\MsCtfMonitor.dll - ok
21:01:16.0182 6048 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
21:01:16.0182 6048 C:\Windows\System32\msutb.dll - ok
21:01:16.0190 6048 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
21:01:16.0190 6048 C:\Windows\System32\spoolss.dll - ok
21:01:16.0197 6048 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
21:01:16.0197 6048 C:\Windows\System32\winspool.drv - ok
21:01:16.0205 6048 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
21:01:16.0205 6048 C:\Windows\System32\PrintIsolationProxy.dll - ok
21:01:16.0212 6048 [ A2B34AF33854036D88441EB965D83D3D ] C:\Users\Julie\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe
21:01:16.0212 6048 C:\Users\Julie\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe - ok
21:01:16.0220 6048 [ 9701ACE999CFBF4E0F806F03EA87635F ] C:\Windows\System32\CNMLMAS.DLL
21:01:16.0220 6048 C:\Windows\System32\CNMLMAS.DLL - ok
21:01:16.0227 6048 [ 578AA7C3C0A38667FDC0091FEB3CD4F6 ] C:\Windows\System32\CNMXLMAS.DLL
21:01:16.0227 6048 C:\Windows\System32\CNMXLMAS.DLL - ok
21:01:16.0234 6048 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
21:01:16.0234 6048 C:\Windows\SysWOW64\msimg32.dll - ok
21:01:16.0241 6048 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:01:16.0241 6048 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
21:01:16.0247 6048 [ FEA3C4BA2C108106EFDE6D4BD55D05C3 ] C:\Windows\System32\CNMN6PPM.DLL
21:01:16.0248 6048 C:\Windows\System32\CNMN6PPM.DLL - ok
21:01:16.0256 6048 [ E6019253451DBB67740F7027AD9E1CB5 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
21:01:16.0256 6048 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
21:01:16.0262 6048 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
21:01:16.0262 6048 C:\Windows\System32\FXSMON.dll - ok
21:01:16.0275 6048 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
21:01:16.0275 6048 C:\Windows\System32\tcpmon.dll - ok
21:01:16.0290 6048 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
21:01:16.0290 6048 C:\Windows\System32\snmpapi.dll - ok
21:01:16.0308 6048 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
21:01:16.0308 6048 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
21:01:16.0324 6048 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
21:01:16.0325 6048 C:\Windows\SysWOW64\uxtheme.dll - ok
21:01:16.0338 6048 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
21:01:16.0338 6048 C:\Windows\System32\wsnmp32.dll - ok
21:01:16.0363 6048 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
21:01:16.0363 6048 C:\Windows\System32\usbmon.dll - ok
21:01:16.0382 6048 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
21:01:16.0382 6048 C:\Windows\System32\fdPnp.dll - ok
21:01:16.0400 6048 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
21:01:16.0400 6048 C:\Windows\System32\WSDMon.dll - ok
21:01:16.0428 6048 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
21:01:16.0428 6048 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
21:01:16.0446 6048 [ F94BD8FB70DBD18F7C2BE4CE71C018FD ] C:\Windows\System32\spool\prtprocs\x64\CNMPDAS.DLL
21:01:16.0446 6048 C:\Windows\System32\spool\prtprocs\x64\CNMPDAS.DLL - ok
21:01:16.0463 6048 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
21:01:16.0463 6048 C:\Windows\System32\win32spl.dll - ok
21:01:16.0482 6048 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
21:01:16.0482 6048 C:\Windows\System32\inetpp.dll - ok
21:01:16.0502 6048 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
21:01:16.0502 6048 C:\Windows\System32\cscapi.dll - ok
21:01:16.0521 6048 [ 3F994A6CF62AA8ED7B82CBE8AD7BE810 ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
21:01:16.0521 6048 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
21:01:16.0539 6048 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
21:01:16.0539 6048 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
21:01:16.0558 6048 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
21:01:16.0560 6048 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
21:01:16.0572 6048 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
21:01:16.0572 6048 C:\Windows\SysWOW64\setupapi.dll - ok
21:01:16.0587 6048 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
21:01:16.0587 6048 C:\Windows\SysWOW64\devobj.dll - ok
21:01:16.0602 6048 [ 27DB3CEB88A1EF2BE1E193A05964973C ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
21:01:16.0602 6048 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
21:01:16.0619 6048 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
21:01:16.0619 6048 C:\Windows\explorer.exe - ok
21:01:16.0635 6048 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
21:01:16.0635 6048 C:\Windows\SysWOW64\msasn1.dll - ok
21:01:16.0649 6048 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
21:01:16.0649 6048 C:\Windows\SysWOW64\sfc.dll - ok
21:01:16.0663 6048 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
21:01:16.0663 6048 C:\Windows\SysWOW64\sfc_os.dll - ok
21:01:16.0683 6048 [ 20E2469DB709FC675E655CEAA11BE312 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:01:16.0683 6048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
21:01:16.0702 6048 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
21:01:16.0702 6048 C:\Windows\System32\dwmcore.dll - ok
21:01:16.0721 6048 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
21:01:16.0721 6048 C:\Windows\System32\d3d10_1.dll - ok
21:01:16.0738 6048 [ 8EB9DF4D405524D5EF69AE9ECB0EDD16 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
21:01:16.0738 6048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
21:01:16.0755 6048 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
21:01:16.0756 6048 C:\Windows\SysWOW64\mpr.dll - ok
21:01:16.0774 6048 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
21:01:16.0774 6048 C:\Windows\System32\d3d10_1core.dll - ok
21:01:16.0789 6048 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
21:01:16.0789 6048 C:\Windows\System32\netman.dll - ok
21:01:16.0806 6048 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
21:01:16.0806 6048 C:\Windows\System32\ncsi.dll - ok
21:01:16.0823 6048 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
21:01:16.0823 6048 C:\Windows\System32\nlasvc.dll - ok
21:01:16.0846 6048 [ E127420B7FEB65C7F279EAAC183BBC0E ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe
21:01:16.0846 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe - ok
21:01:16.0864 6048 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
21:01:16.0864 6048 C:\Windows\System32\dxgi.dll - ok
21:01:16.0882 6048 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
21:01:16.0882 6048 C:\Windows\System32\ssdpapi.dll - ok
21:01:16.0903 6048 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
21:01:16.0903 6048 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
21:01:16.0919 6048 [ F6914429533842B964C98062B657FB1B ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccL110U.dll
21:01:16.0919 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccL110U.dll - ok
21:01:16.0927 6048 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
21:01:16.0927 6048 C:\Windows\System32\aepic.dll - ok
21:01:16.0948 6048 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
21:01:16.0948 6048 C:\Windows\System32\sfc.dll - ok
21:01:16.0966 6048 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
21:01:16.0966 6048 C:\Windows\System32\sfc_os.dll - ok
21:01:16.0985 6048 [ 2F86BE1818C2D7AC90478E3323EE7FCB ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe
21:01:16.0985 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe - ok
21:01:17.0008 6048 [ 88104CCBC329D185A881031A11259229 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccL90U.dll
21:01:17.0008 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccL90U.dll - ok
21:01:17.0033 6048 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
21:01:17.0033 6048 C:\Windows\SysWOW64\dbghelp.dll - ok
21:01:17.0057 6048 [ 47A2726C35EA4FF56EF1B5D89981992C ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccVrTrst.dll
21:01:17.0057 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccVrTrst.dll - ok
21:01:17.0075 6048 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
21:01:17.0075 6048 C:\Windows\System32\ExplorerFrame.dll - ok
21:01:17.0094 6048 [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\SysWOW64\mshtml.dll
21:01:17.0094 6048 C:\Windows\SysWOW64\mshtml.dll - ok
21:01:17.0116 6048 [ 8E90ACFFDAD6172A1DD02D1A9FF99CB2 ] C:\Windows\System32\igd10umd64.dll
21:01:17.0116 6048 C:\Windows\System32\igd10umd64.dll - ok
21:01:17.0135 6048 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
21:01:17.0135 6048 C:\Windows\SysWOW64\netapi32.dll - ok
21:01:17.0150 6048 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
21:01:17.0150 6048 C:\Windows\SysWOW64\imagehlp.dll - ok
21:01:17.0168 6048 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
21:01:17.0168 6048 C:\Windows\SysWOW64\netutils.dll - ok
21:01:17.0184 6048 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
21:01:17.0184 6048 C:\Windows\SysWOW64\srvcli.dll - ok
21:01:17.0194 6048 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
21:01:17.0194 6048 C:\Windows\SysWOW64\ncrypt.dll - ok
21:01:17.0211 6048 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
21:01:17.0211 6048 C:\Windows\SysWOW64\wkscli.dll - ok
21:01:17.0227 6048 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
21:01:17.0228 6048 C:\Windows\SysWOW64\bcrypt.dll - ok
21:01:17.0245 6048 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
21:01:17.0245 6048 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
21:01:17.0259 6048 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
21:01:17.0259 6048 C:\Windows\SysWOW64\cscapi.dll - ok
21:01:17.0273 6048 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
21:01:17.0273 6048 C:\Windows\System32\drivers\PEAuth.sys - ok
21:01:17.0280 6048 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
21:01:17.0280 6048 C:\Windows\SysWOW64\gpapi.dll - ok
21:01:17.0287 6048 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
21:01:17.0287 6048 C:\Windows\System32\drivers\secdrv.sys - ok
21:01:17.0294 6048 [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
21:01:17.0294 6048 C:\Windows\System32\drivers\Sftfslh.sys - ok
21:01:17.0302 6048 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
21:01:17.0302 6048 C:\Windows\System32\seclogon.dll - ok
21:01:17.0309 6048 [ 0EAD8118270D275149CA1422978BD642 ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvc.dll
21:01:17.0309 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvc.dll - ok
21:01:17.0320 6048 [ 0921ED273D89BA9778437ECD26B6A78A ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccVrTrst.dll
21:01:17.0320 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccVrTrst.dll - ok
21:01:17.0327 6048 [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
21:01:17.0327 6048 C:\Windows\System32\drivers\Sftplaylh.sys - ok
21:01:17.0335 6048 [ 58C8D469EDCA6C4396FC941107065AFA ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccIPC.dll
21:01:17.0336 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccIPC.dll - ok
21:01:17.0341 6048 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
21:01:17.0341 6048 C:\Windows\SysWOW64\cryptnet.dll - ok
21:01:17.0348 6048 [ 74EC60E20516AAA573BE74F31175270F ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
21:01:17.0349 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
21:01:17.0356 6048 [ 4050600091370422C9B20AC34DC1ACAC ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvc.dll
21:01:17.0356 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvc.dll - ok
21:01:17.0363 6048 [ 09A06ECC3CE3048B17F25F75ACC63D14 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccIPC.dll
21:01:17.0363 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccIPC.dll - ok
21:01:17.0371 6048 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
21:01:17.0371 6048 C:\Windows\System32\EhStorShell.dll - ok
21:01:17.0378 6048 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
21:01:17.0378 6048 C:\Windows\System32\uDWM.dll - ok
21:01:17.0386 6048 [ E5118CE6749A61D22EF62D1238D427B9 ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\diMaster.dll
21:01:17.0386 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\diMaster.dll - ok
21:01:17.0392 6048 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
21:01:17.0392 6048 C:\Windows\System32\ntshrui.dll - ok
21:01:17.0399 6048 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
21:01:17.0399 6048 C:\Windows\SysWOW64\dwmapi.dll - ok
21:01:17.0406 6048 [ BAC6EEDE73F2D61583982A07E6382015 ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSet.dll
21:01:17.0407 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSet.dll - ok
21:01:17.0414 6048 [ 725E8022808C6B92D99EF36F2E9FCE02 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\diMaster.dll
21:01:17.0414 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\diMaster.dll - ok
21:01:17.0422 6048 [ 6202E4AED3044BA97F191B3D884134D3 ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\coSvcNST.dll
21:01:17.0422 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\coSvcNST.dll - ok
21:01:17.0429 6048 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
21:01:17.0429 6048 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
21:01:17.0437 6048 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
21:01:17.0437 6048 C:\Windows\SysWOW64\webio.dll - ok
21:01:17.0441 6048 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
21:01:17.0441 6048 C:\Windows\SysWOW64\winhttp.dll - ok
21:01:17.0448 6048 [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:01:17.0448 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
21:01:17.0456 6048 [ 2B61F6766CAE1125C00DD9DDD268D876 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSet.dll
21:01:17.0456 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSet.dll - ok
21:01:17.0463 6048 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
21:01:17.0463 6048 C:\Windows\System32\IconCodecService.dll - ok
21:01:17.0473 6048 [ BBFED4A3A7CC264599F35D0C11AF5758 ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccGEvt.dll
21:01:17.0473 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccGEvt.dll - ok
21:01:17.0481 6048 [ 523600FDD5F41462CB0F0AFB7A00C94B ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\coFFNST.dll
21:01:17.0481 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\coFFNST.dll - ok
21:01:17.0488 6048 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
21:01:17.0488 6048 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
21:01:17.0497 6048 [ 8A43F5DA0D4DE4FB472ECD9DDB55E949 ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccGLog.dll
21:01:17.0498 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccGLog.dll - ok
21:01:17.0505 6048 [ 5B465C535EA4F73C4B14A1320B8CA5F8 ] C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccJobMgr.dll
21:01:17.0505 6048 C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccJobMgr.dll - ok
21:01:17.0512 6048 [ 59E52B5C6A70F28D8B6C0D1E5A7AFCBF ] C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccJobMgr.dll
21:01:17.0513 6048 C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccJobMgr.dll - ok
21:01:17.0521 6048 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
21:01:17.0521 6048 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
21:01:17.0527 6048 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
21:01:17.0527 6048 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
21:01:17.0534 6048 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
21:01:17.0534 6048 C:\Windows\SysWOW64\credssp.dll - ok
21:01:17.0556 6048 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
21:01:17.0556 6048 C:\Windows\System32\aeevts.dll - ok
21:01:17.0569 6048 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
21:01:17.0570 6048 C:\Windows\SysWOW64\powrprof.dll - ok
21:01:17.0574 6048 [ 523600FDD5F41462CB0F0AFB7A00C94B ] C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2.0.0.16\coFFNST\components\coFFNST.dll
21:01:17.0574 6048 C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2.0.0.16\coFFNST\components\coFFNST.dll - ok
21:01:17.0581 6048 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
21:01:17.0581 6048 C:\Windows\SysWOW64\mstask.dll - ok
21:01:17.0589 6048 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
21:01:17.0589 6048 C:\Windows\SysWOW64\dnsapi.dll - ok
21:01:17.0595 6048 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
21:01:17.0595 6048 C:\Windows\SysWOW64\taskschd.dll - ok
21:01:17.0602 6048 [ B7CFA3F9DF5DF31E67B93C4AACBB9C97 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
21:01:17.0602 6048 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
21:01:17.0609 6048 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
21:01:17.0609 6048 C:\Windows\SysWOW64\propsys.dll - ok
21:01:17.0616 6048 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
21:01:17.0616 6048 C:\Windows\SysWOW64\xmllite.dll - ok
21:01:17.0623 6048 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
21:01:17.0623 6048 C:\Windows\SysWOW64\msxml3.dll - ok
21:01:17.0631 6048 [ E14EC69620F1924A3318C3D7CA9A02B6 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
21:01:17.0631 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
21:01:17.0639 6048 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
21:01:17.0639 6048 C:\Windows\System32\drivers\srvnet.sys - ok
21:01:17.0645 6048 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
21:01:17.0645 6048 C:\Windows\SysWOW64\actxprxy.dll - ok
21:01:17.0653 6048 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
21:01:17.0653 6048 C:\Windows\System32\dbghelp.dll - ok
21:01:17.0662 6048 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
21:01:17.0662 6048 C:\Windows\System32\sysmain.dll - ok
21:01:17.0669 6048 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
21:01:17.0669 6048 C:\Windows\System32\wiaservc.dll - ok
21:01:17.0679 6048 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
21:01:17.0679 6048 C:\Windows\SysWOW64\ntshrui.dll - ok
21:01:17.0687 6048 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
21:01:17.0687 6048 C:\Windows\System32\drivers\tcpipreg.sys - ok
21:01:17.0696 6048 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
21:01:17.0696 6048 C:\Windows\System32\tapisrv.dll - ok
21:01:17.0700 6048 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
21:01:17.0700 6048 C:\Windows\System32\wiatrace.dll - ok
21:01:17.0721 6048 [ 7D110D645030C05A06C3CD08D1E47D0A ] C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
21:01:17.0721 6048 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe - ok
21:01:17.0738 6048 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
21:01:17.0738 6048 C:\Windows\System32\trkwks.dll - ok
21:01:17.0754 6048 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
21:01:17.0754 6048 C:\Windows\SysWOW64\slc.dll - ok
21:01:17.0769 6048 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
21:01:17.0769 6048 C:\Windows\System32\wbemcomn.dll - ok
21:01:17.0783 6048 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
21:01:17.0783 6048 C:\Windows\System32\wbem\WMIsvc.dll - ok
21:01:17.0797 6048 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:01:17.0797 6048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
21:01:17.0813 6048 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
21:01:17.0813 6048 C:\Windows\System32\wbem\WinMgmtR.dll - ok
21:01:17.0828 6048 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
21:01:17.0828 6048 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
21:01:17.0845 6048 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
21:01:17.0845 6048 C:\Windows\System32\wbem\fastprox.dll - ok
21:01:17.0862 6048 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
21:01:17.0862 6048 C:\Windows\System32\ntdsapi.dll - ok
21:01:17.0878 6048 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
21:01:17.0878 6048 C:\Windows\System32\SensApi.dll - ok
21:01:17.0889 6048 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
21:01:17.0889 6048 C:\Windows\System32\wbem\wbemcore.dll - ok
21:01:17.0909 6048 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
21:01:17.0909 6048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
21:01:17.0928 6048 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
21:01:17.0928 6048 C:\Windows\System32\wer.dll - ok
21:01:17.0941 6048 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
21:01:17.0941 6048 C:\Windows\System32\wbem\esscli.dll - ok
21:01:17.0949 6048 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
21:01:17.0949 6048 C:\Windows\System32\wbem\wbemprox.dll - ok
21:01:17.0966 6048 [ 7548066DF68A8A1A56B043359F915F37 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
21:01:17.0966 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
21:01:17.0981 6048 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
21:01:17.0982 6048 C:\Windows\System32\wbem\wbemsvc.dll - ok
21:01:17.0997 6048 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
21:01:17.0998 6048 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
21:01:18.0013 6048 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
21:01:18.0013 6048 C:\Windows\System32\wbem\wmiutils.dll - ok
21:01:18.0028 6048 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
21:01:18.0028 6048 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
21:01:18.0040 6048 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
21:01:18.0040 6048 C:\Windows\System32\msxml3.dll - ok
21:01:18.0055 6048 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
21:01:18.0055 6048 C:\Windows\System32\wbem\repdrvfs.dll - ok
21:01:18.0069 6048 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
21:01:18.0069 6048 C:\Windows\SysWOW64\ntdsapi.dll - ok
21:01:18.0084 6048 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
21:01:18.0084 6048 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
21:01:18.0099 6048 [ B3DC2359FA6E58C753ABE9D6F13B3608 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
21:01:18.0100 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
21:01:18.0114 6048 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
21:01:18.0114 6048 C:\Windows\SysWOW64\comdlg32.dll - ok
21:01:18.0129 6048 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
21:01:18.0129 6048 C:\Windows\SysWOW64\winspool.drv - ok
21:01:18.0146 6048 [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
21:01:18.0147 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
21:01:18.0162 6048 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
21:01:18.0163 6048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
21:01:18.0179 6048 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
21:01:18.0179 6048 C:\Windows\SysWOW64\ieframe.dll - ok
21:01:18.0201 6048 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:01:18.0202 6048 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:01:18.0210 6048 [ EBDD3032297EF6832A1D6D3AA6DC3537 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
21:01:18.0210 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
21:01:18.0225 6048 [ 3960CEB4A6B13784252D827ECF65CED3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
21:01:18.0226 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
21:01:18.0239 6048 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
21:01:18.0239 6048 C:\Windows\System32\ncobjapi.dll - ok
21:01:18.0257 6048 [ 1530DFBDFD68AAD1FD5FDA52EA44925E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
21:01:18.0257 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
21:01:18.0280 6048 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
21:01:18.0280 6048 C:\Windows\System32\wbem\wbemess.dll - ok
21:01:18.0297 6048 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
21:01:18.0297 6048 C:\Windows\SysWOW64\mscoree.dll - ok
21:01:18.0314 6048 [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:01:18.0314 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
21:01:18.0328 6048 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
21:01:18.0328 6048 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
21:01:18.0348 6048 [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
21:01:18.0348 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
21:01:18.0365 6048 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
21:01:18.0366 6048 C:\Windows\System32\iphlpsvc.dll - ok
21:01:18.0382 6048 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
21:01:18.0382 6048 C:\Windows\System32\dssenh.dll - ok
21:01:18.0399 6048 [ 9839C4217EBD9A6B84B60FF2FBD9B1A5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
21:01:18.0399 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
21:01:18.0415 6048 [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
21:01:18.0415 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
21:01:18.0428 6048 [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
21:01:18.0428 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
21:01:18.0445 6048 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
21:01:18.0445 6048 C:\Windows\System32\sqmapi.dll - ok
21:01:18.0456 6048 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
21:01:18.0456 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
21:01:18.0473 6048 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
21:01:18.0473 6048 C:\Windows\System32\rasmans.dll - ok
21:01:18.0488 6048 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
21:01:18.0489 6048 C:\Windows\System32\wdscore.dll - ok
21:01:18.0507 6048 [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
21:01:18.0507 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
21:01:18.0524 6048 [ EEA7E552C2C992CFD4B50857010F39EA ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
21:01:18.0524 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
21:01:18.0542 6048 [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
21:01:18.0542 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
21:01:18.0559 6048 [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
21:01:18.0559 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
21:01:18.0575 6048 [ CD4F7B90CB09831BCDEDE0A206CCDB35 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
21:01:18.0576 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe - ok
21:01:18.0594 6048 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
21:01:18.0594 6048 C:\Windows\System32\rastapi.dll - ok
21:01:18.0610 6048 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
21:01:18.0610 6048 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
21:01:18.0626 6048 [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
21:01:18.0626 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
21:01:18.0640 6048 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
21:01:18.0640 6048 C:\Windows\SysWOW64\oleacc.dll - ok
21:01:18.0654 6048 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
21:01:18.0654 6048 C:\Windows\SysWOW64\winmm.dll - ok
21:01:18.0673 6048 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
21:01:18.0673 6048 C:\Windows\AppPatch\AcLayers.dll - ok
21:01:18.0690 6048 [ 5E2623439A9936D320FE8DC1AB84526A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
21:01:18.0690 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
21:01:18.0708 6048 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
21:01:18.0708 6048 C:\Windows\SysWOW64\wsock32.dll - ok
21:01:18.0716 6048 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
21:01:18.0716 6048 C:\Windows\SysWOW64\logoncli.dll - ok
21:01:18.0738 6048 [ BF85366B209DFC11BAB31380C7C47E31 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
21:01:18.0738 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
21:01:18.0759 6048 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
21:01:18.0759 6048 C:\Windows\System32\drivers\srv2.sys - ok
21:01:18.0775 6048 [ 8F1656DEB2E861D608909792F5A68C3B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
21:01:18.0775 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
21:01:18.0790 6048 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
21:01:18.0790 6048 C:\Windows\SysWOW64\oledlg.dll - ok
21:01:18.0809 6048 [ 78193AA97D679531522C3E2FA4A5EDFE ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
21:01:18.0809 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
21:01:18.0825 6048 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
21:01:18.0825 6048 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
21:01:18.0843 6048 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
21:01:18.0843 6048 C:\Windows\SysWOW64\fltLib.dll - ok
21:01:18.0859 6048 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
21:01:18.0859 6048 C:\Windows\System32\tapi32.dll - ok
21:01:18.0873 6048 [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
21:01:18.0873 6048 C:\Windows\System32\drivers\Sftredirlh.sys - ok
21:01:18.0890 6048 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
21:01:18.0890 6048 C:\Windows\System32\drivers\srv.sys - ok
21:01:18.0907 6048 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
21:01:18.0907 6048 C:\Windows\SysWOW64\devrtl.dll - ok
21:01:18.0923 6048 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
21:01:18.0923 6048 C:\Windows\SysWOW64\schannel.dll - ok
21:01:18.0939 6048 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
21:01:18.0939 6048 C:\Windows\System32\hnetcfg.dll - ok
21:01:18.0953 6048 [ 42EBC2ECBB81A0FFE720601500760C7E ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
21:01:18.0953 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
21:01:18.0964 6048 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
21:01:18.0964 6048 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
21:01:18.0979 6048 [ 793A19EAB66BB232F019DFF9D1977A41 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
21:01:18.0979 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
21:01:18.0995 6048 [ 31D59387099070963EAD4CE14C5B5F04 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
21:01:18.0995 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll - ok
21:01:19.0018 6048 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
21:01:19.0018 6048 C:\Windows\System32\unimdm.tsp - ok
21:01:19.0037 6048 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
21:01:19.0037 6048 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
21:01:19.0052 6048 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
21:01:19.0052 6048 C:\Windows\System32\wbem\cimwin32.dll - ok
21:01:19.0071 6048 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
21:01:19.0073 6048 C:\Windows\System32\uniplat.dll - ok
21:01:19.0084 6048 [ BA726152513EC650EED219B7995DE852 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
21:01:19.0085 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
21:01:19.0102 6048 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\SysWOW64\msxml6.dll
21:01:19.0102 6048 C:\Windows\SysWOW64\msxml6.dll - ok
21:01:19.0118 6048 [ 77C8E1779E784189EA29D9A5ECCDD9E9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
21:01:19.0118 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
21:01:19.0133 6048 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
21:01:19.0133 6048 C:\Windows\System32\framedynos.dll - ok
21:01:19.0150 6048 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
21:01:19.0150 6048 C:\Windows\System32\kmddsp.tsp - ok
21:01:19.0165 6048 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
21:01:19.0165 6048 C:\Windows\System32\wmi.dll - ok
21:01:19.0182 6048 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
21:01:19.0182 6048 C:\Windows\System32\ndptsp.tsp - ok
21:01:19.0198 6048 [ AFD87B70E2C48EC080CA28ADCC3175B5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
21:01:19.0198 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
21:01:19.0214 6048 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
21:01:19.0214 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
21:01:19.0225 6048 [ 09890A2F032B138A74B5DF2C1233FB1D ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
21:01:19.0225 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
21:01:19.0242 6048 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
21:01:19.0242 6048 C:\Windows\System32\hidphone.tsp - ok
21:01:19.0259 6048 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
21:01:19.0259 6048 C:\Windows\SysWOW64\riched20.dll - ok
21:01:19.0276 6048 [ 5ECEA5F29DCEE8D320454C86A1CB3366 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
21:01:19.0276 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
21:01:19.0299 6048 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
21:01:19.0299 6048 C:\Windows\System32\esent.dll - ok
21:01:19.0316 6048 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
21:01:19.0316 6048 C:\Windows\System32\wbem\NCProv.dll - ok
21:01:19.0329 6048 [ 18873D2B1ABBB8826ED18F840CB8E0D3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
21:01:19.0329 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
21:01:19.0346 6048 [ 780836BB63852990382DF27DE7FEFD20 ] C:\Windows\System32\bcdedit.exe
21:01:19.0346 6048 C:\Windows\System32\bcdedit.exe - ok
21:01:19.0363 6048 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
21:01:19.0363 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
21:01:19.0380 6048 [ 79ECBC83B844F7A474C66BE77AAF7180 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
21:01:19.0380 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
21:01:19.0397 6048 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
21:01:19.0397 6048 C:\Windows\System32\rasppp.dll - ok
21:01:19.0413 6048 [ 069006BF253F32CD980E67E8671DFE3C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
21:01:19.0413 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
21:01:19.0432 6048 [ 6D6596E046CA6A61DE250AD3A281A1AF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
21:01:19.0432 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll - ok
21:01:19.0449 6048 [ 5925F32114BF5ACF50C66500433B35CC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
21:01:19.0449 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
21:01:19.0472 6048 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
21:01:19.0472 6048 C:\Windows\System32\vpnike.dll - ok
21:01:19.0481 6048 [ 03C7D7A1553E3009CEBE3013A578B0ED ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
21:01:19.0481 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
21:01:19.0499 6048 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
21:01:19.0499 6048 C:\Windows\System32\raschap.dll - ok
21:01:19.0515 6048 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
21:01:19.0515 6048 C:\Windows\System32\srvsvc.dll - ok
21:01:19.0532 6048 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
21:01:19.0532 6048 C:\Windows\System32\browser.dll - ok
21:01:19.0549 6048 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
21:01:19.0549 6048 C:\Windows\System32\netmsg.dll - ok
21:01:19.0572 6048 [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
21:01:19.0572 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
21:01:19.0588 6048 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
21:01:19.0588 6048 C:\Windows\System32\ipnathlp.dll - ok
21:01:19.0604 6048 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
21:01:19.0604 6048 C:\Windows\System32\mprapi.dll - ok
21:01:19.0620 6048 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
21:01:19.0620 6048 C:\Windows\System32\netshell.dll - ok
21:01:19.0638 6048 [ 2499E32320905E68F9710527593A0EDB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
21:01:19.0638 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
21:01:19.0655 6048 [ 47AC56BC5FA5D41F73940A02686627CB ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll
21:01:19.0655 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STSCheduler.dll - ok
21:01:19.0673 6048 [ 591EA8B6991D99720B36EBC1CC16CEA8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
21:01:19.0674 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
21:01:19.0691 6048 [ A4487F6CEFED12F2C1257F6DBCDAEB1E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
21:01:19.0692 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
21:01:19.0707 6048 [ 35989A505DEEC24DEF8D327D22FF14D4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
21:01:19.0707 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
21:01:19.0725 6048 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
21:01:19.0725 6048 C:\Windows\System32\clusapi.dll - ok
21:01:19.0736 6048 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
21:01:19.0736 6048 C:\Windows\System32\sscore.dll - ok
21:01:19.0750 6048 [ 9D825B4E6B28F93F326538515EFC880B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
21:01:19.0750 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
21:01:19.0765 6048 [ D9BFF3E59CBE32FE72D6D68F6AF348BD ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
21:01:19.0765 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
21:01:19.0782 6048 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
21:01:19.0782 6048 C:\Windows\System32\resutils.dll - ok
21:01:19.0796 6048 [ E84CB5D899098DDEA6D013057C9E4B5F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
21:01:19.0796 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
21:01:19.0812 6048 [ 43104328E99680FCF282E71CC45CB5D2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll
21:01:19.0812 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll - ok
21:01:19.0832 6048 [ 15C42334805B711FBF0C788A1D751528 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
21:01:19.0832 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
21:01:19.0852 6048 [ A5DBC74C5B91CF6E43B73D62936F8186 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
21:01:19.0853 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
21:01:19.0869 6048 [ 858716CED10DBBF0BC5748F71ED2F59D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b311b783e1efaa9527f4c2c9680c44d1\WindowsBase.ni.dll
21:01:19.0869 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b311b783e1efaa9527f4c2c9680c44d1\WindowsBase.ni.dll - ok
21:01:19.0884 6048 [ 3CEF96890064B3CDB190963157F24BAC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
21:01:19.0884 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
21:01:19.0900 6048 [ 5BFB02BDA2700D078400E149BC4CF87A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
21:01:19.0901 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
21:01:19.0917 6048 [ 3C29B98149A28FEDA42796D3EA904F62 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
21:01:19.0917 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
21:01:19.0934 6048 [ 38ADD53ECFC5F040EF1C647ECD22A2A4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
21:01:19.0934 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
21:01:19.0958 6048 [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
21:01:19.0958 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
21:01:19.0975 6048 [ 43B02D7C43B77775F1DA63B1D1014F38 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
21:01:19.0975 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
21:01:19.0986 6048 [ 5AF1E9600E3FF841E522703A4993ED0C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
21:01:19.0986 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
21:01:20.0001 6048 [ 9170C065FC76758E5D317B8FBA884F0C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\53d6d827964619285771ed72332d3659\PresentationCore.ni.dll
21:01:20.0001 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\53d6d827964619285771ed72332d3659\PresentationCore.ni.dll - ok
21:01:20.0018 6048 [ 7221E380FB8BFCF0160B9D4E704E7E77 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll
21:01:20.0018 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll - ok
21:01:20.0035 6048 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
21:01:20.0035 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
21:01:20.0051 6048 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
21:01:20.0052 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
21:01:20.0066 6048 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
21:01:20.0066 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
21:01:20.0078 6048 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
21:01:20.0078 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
21:01:20.0092 6048 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
21:01:20.0092 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
21:01:20.0105 6048 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
21:01:20.0105 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
21:01:20.0117 6048 [ 9E5868DB59C6D8E949F724DBBC639A31 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1ec80905a71750be50dfc7981ad5ae28\PresentationFramework.ni.dll
21:01:20.0117 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1ec80905a71750be50dfc7981ad5ae28\PresentationFramework.ni.dll - ok
21:01:20.0130 6048 [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
21:01:20.0130 6048 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
21:01:20.0149 6048 [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
21:01:20.0149 6048 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
21:01:20.0162 6048 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
21:01:20.0162 6048 C:\Windows\SysWOW64\credui.dll - ok
21:01:20.0173 6048 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
21:01:20.0173 6048 C:\Windows\SysWOW64\hlink.dll - ok
21:01:20.0186 6048 [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
21:01:20.0187 6048 C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
21:01:20.0234 6048 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
21:01:20.0234 6048 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
21:01:20.0242 6048 [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
21:01:20.0242 6048 C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
21:01:20.0257 6048 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
21:01:20.0257 6048 C:\Windows\SysWOW64\msv1_0.dll - ok
21:01:20.0271 6048 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
21:01:20.0271 6048 C:\Windows\SysWOW64\cryptdll.dll - ok
21:01:20.0279 6048 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
21:01:20.0279 6048 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
21:01:20.0289 6048 [ DD6F9A0B7E9C2172A9388050684524C9 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
21:01:20.0289 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
21:01:20.0299 6048 [ F705A150AC0E691FA866FD0947229CB5 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
21:01:20.0300 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
21:01:20.0309 6048 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
21:01:20.0309 6048 C:\Windows\SysWOW64\d3d9.dll - ok
21:01:20.0319 6048 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
21:01:20.0319 6048 C:\Windows\System32\npmproxy.dll - ok
21:01:20.0332 6048 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
21:01:20.0332 6048 C:\Windows\SysWOW64\d3d8thk.dll - ok
21:01:20.0341 6048 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
21:01:20.0341 6048 C:\Windows\System32\appinfo.dll - ok
21:01:20.0353 6048 [ F1006CA7711BEB67F223C07EB8E8C51A ] C:\Windows\SysWOW64\igdumdx32.dll
21:01:20.0353 6048 C:\Windows\SysWOW64\igdumdx32.dll - ok
21:01:20.0362 6048 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
21:01:20.0362 6048 C:\Windows\System32\SearchIndexer.exe - ok
21:01:20.0372 6048 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
21:01:20.0372 6048 C:\Windows\System32\wdi.dll - ok
21:01:20.0384 6048 [ 1047DF430C2BF0230465C49E103EF0CC ] C:\Windows\SysWOW64\igdumd32.dll
21:01:20.0384 6048 C:\Windows\SysWOW64\igdumd32.dll - ok
21:01:20.0399 6048 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
21:01:20.0399 6048 C:\Windows\System32\perftrack.dll - ok
21:01:20.0411 6048 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
21:01:20.0411 6048 C:\Windows\System32\tquery.dll - ok
21:01:20.0423 6048 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
21:01:20.0423 6048 C:\Windows\System32\ndiscapCfg.dll - ok
21:01:20.0431 6048 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
21:01:20.0431 6048 C:\Windows\System32\rascfg.dll - ok
21:01:20.0442 6048 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
21:01:20.0442 6048 C:\Windows\System32\mprmsg.dll - ok
21:01:20.0452 6048 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
21:01:20.0452 6048 C:\Windows\System32\mssrch.dll - ok
21:01:20.0461 6048 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
21:01:20.0461 6048 C:\Windows\System32\tcpipcfg.dll - ok
21:01:20.0473 6048 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
21:01:20.0474 6048 C:\Windows\System32\NapiNSP.dll - ok
21:01:20.0482 6048 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
21:01:20.0482 6048 C:\Windows\System32\pnrpnsp.dll - ok
21:01:20.0496 6048 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
21:01:20.0496 6048 C:\Windows\System32\winrnr.dll - ok
21:01:20.0503 6048 [ 2A72853494912BB034AF7AC1C86EC04E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll
21:01:20.0504 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll - ok
21:01:20.0513 6048 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] C:\Windows\System32\drivers\bcm42rly.sys
21:01:20.0513 6048 C:\Windows\System32\drivers\bcm42rly.sys - ok
21:01:20.0524 6048 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
21:01:20.0524 6048 C:\Windows\System32\msidle.dll - ok
21:01:20.0532 6048 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
21:01:20.0532 6048 C:\Windows\System32\mssprxy.dll - ok
21:01:20.0543 6048 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
21:01:20.0543 6048 C:\Windows\System32\diagperf.dll - ok
21:01:20.0554 6048 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
21:01:20.0554 6048 C:\Windows\System32\wpdbusenum.dll - ok
21:01:20.0563 6048 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
21:01:20.0563 6048 C:\Windows\System32\nci.dll - ok
21:01:20.0577 6048 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
21:01:20.0577 6048 C:\Windows\System32\wlaninst.dll - ok
21:01:20.0588 6048 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
21:01:20.0588 6048 C:\Windows\SysWOW64\mssprxy.dll - ok
21:01:20.0601 6048 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
21:01:20.0601 6048 C:\Windows\System32\wwaninst.dll - ok
21:01:20.0611 6048 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
21:01:20.0612 6048 C:\Windows\System32\PortableDeviceApi.dll - ok
21:01:20.0621 6048 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
21:01:20.0622 6048 C:\Windows\System32\en-US\tquery.dll.mui - ok
21:01:20.0632 6048 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:01:20.0632 6048 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:01:20.0643 6048 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
21:01:20.0643 6048 C:\Windows\System32\runonce.exe - ok
21:01:20.0657 6048 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
21:01:20.0657 6048 C:\Windows\System32\Apphlpdm.dll - ok
21:01:20.0664 6048 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
21:01:20.0664 6048 C:\Windows\System32\pnpts.dll - ok
21:01:20.0675 6048 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
21:01:20.0675 6048 C:\Windows\System32\wdiasqmmodule.dll - ok
21:01:20.0690 6048 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
21:01:20.0690 6048 C:\Windows\System32\p2pcollab.dll - ok
21:01:20.0696 6048 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
21:01:20.0696 6048 C:\Windows\SysWOW64\runonce.exe - ok
21:01:20.0706 6048 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
21:01:20.0706 6048 C:\Windows\System32\QAGENTRT.DLL - ok
21:01:20.0715 6048 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
21:01:20.0715 6048 C:\Windows\System32\fveui.dll - ok
21:01:20.0723 6048 [ AC6A3801F3CDE7EB41B3F52E9B0A1C2B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll
21:01:20.0723 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll - ok
21:01:20.0732 6048 [ 6FF2FC6CF5D0206F6D30CD4D255AB811 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
21:01:20.0732 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe - ok
21:01:20.0740 6048 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
21:01:20.0740 6048 C:\Windows\System32\radardt.dll - ok
21:01:20.0763 6048 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
21:01:20.0763 6048 C:\Windows\System32\aelupsvc.dll - ok
21:01:20.0775 6048 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
21:01:20.0775 6048 C:\Windows\System32\IPSECSVC.DLL - ok
21:01:20.0787 6048 [ A96DF7F02B248C65DF3947D8B0D588EB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7c4de95aa433eb8d81a81caf805947a8\PresentationFramework.Aero.ni.dll
21:01:20.0787 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7c4de95aa433eb8d81a81caf805947a8\PresentationFramework.Aero.ni.dll - ok
21:01:20.0799 6048 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
21:01:20.0800 6048 C:\Windows\System32\FwRemoteSvr.dll - ok
21:01:20.0808 6048 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
21:01:20.0808 6048 C:\Windows\SysWOW64\cmd.exe - ok
21:01:20.0823 6048 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
21:01:20.0823 6048 C:\Windows\System32\tdh.dll - ok
21:01:20.0836 6048 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
21:01:20.0836 6048 C:\Windows\SysWOW64\winbrand.dll - ok
21:01:20.0849 6048 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
21:01:20.0849 6048 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
21:01:20.0863 6048 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
21:01:20.0863 6048 C:\Windows\System32\pnidui.dll - ok
21:01:20.0874 6048 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
21:01:20.0874 6048 C:\Windows\SysWOW64\shdocvw.dll - ok
21:01:20.0883 6048 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
21:01:20.0883 6048 C:\Windows\System32\wmp.dll - ok
21:01:20.0896 6048 [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
21:01:20.0896 6048 C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
21:01:20.0914 6048 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
21:01:20.0914 6048 C:\Windows\System32\dimsjob.dll - ok
21:01:20.0927 6048 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Julie\AppData\Local\Temp\C6562FD4-A661-4CBC-AB84-FB58DF7B8A50.exe
21:01:20.0928 6048 C:\Users\Julie\AppData\Local\Temp\C6562FD4-A661-4CBC-AB84-FB58DF7B8A50.exe - ok
21:01:20.0937 6048 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
21:01:20.0937 6048 C:\Windows\System32\certcli.dll - ok
21:01:20.0944 6048 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
21:01:20.0945 6048 C:\Windows\System32\pautoenr.dll - ok
21:01:20.0953 6048 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
21:01:20.0953 6048 C:\Windows\System32\CertEnroll.dll - ok
21:01:20.0961 6048 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
21:01:20.0961 6048 C:\Windows\System32\spfileq.dll - ok
21:01:20.0970 6048 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
21:01:20.0970 6048 C:\Windows\SysWOW64\EhStorShell.dll - ok
21:01:20.0978 6048 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
21:01:20.0978 6048 C:\Windows\SysWOW64\imageres.dll - ok
21:01:20.0987 6048 [ E82E0ED8208A357F7D1115D09AFBC0A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\239d84cfdb9de9730c1efb43840ef2eb\System.Core.ni.dll
21:01:20.0987 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\239d84cfdb9de9730c1efb43840ef2eb\System.Core.ni.dll - ok
21:01:21.0008 6048 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
21:01:21.0008 6048 C:\Windows\SysWOW64\mswsock.dll - ok
21:01:21.0018 6048 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
21:01:21.0018 6048 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
21:01:21.0026 6048 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
21:01:21.0026 6048 C:\Windows\SysWOW64\wship6.dll - ok
21:01:21.0038 6048 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
21:01:21.0038 6048 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
21:01:21.0043 6048 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
21:01:21.0043 6048 C:\Windows\SysWOW64\rasadhlp.dll - ok
21:01:21.0053 6048 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
21:01:21.0053 6048 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
21:01:21.0061 6048 [ 51FCBAE9178BAE573026933317C95CB2 ] C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll
21:01:21.0061 6048 C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll - ok
21:01:21.0069 6048 [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
21:01:21.0069 6048 C:\Windows\System32\msvcp100.dll - ok
21:01:21.0077 6048 [ 7E87637EECBACBB11BBA1124B805A747 ] C:\Program Files (x86)\AVG\AVG2013\avgopenssla.dll
21:01:21.0077 6048 C:\Program Files (x86)\AVG\AVG2013\avgopenssla.dll - ok
21:01:21.0087 6048 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
21:01:21.0087 6048 C:\Windows\System32\ie4uinit.exe - ok
21:01:21.0094 6048 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
21:01:21.0094 6048 C:\Windows\System32\iedkcs32.dll - ok
21:01:21.0103 6048 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
21:01:21.0103 6048 C:\Windows\System32\themeui.dll - ok
21:01:21.0110 6048 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
21:01:21.0111 6048 C:\Windows\System32\timedate.cpl - ok
21:01:21.0124 6048 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
21:01:21.0124 6048 C:\Windows\System32\actxprxy.dll - ok
21:01:21.0128 6048 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
21:01:21.0128 6048 C:\Windows\System32\shdocvw.dll - ok
21:01:21.0142 6048 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
21:01:21.0142 6048 C:\Windows\System32\linkinfo.dll - ok
21:01:21.0150 6048 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
21:01:21.0150 6048 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
21:01:21.0158 6048 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
21:01:21.0158 6048 C:\Windows\System32\msftedit.dll - ok
21:01:21.0166 6048 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
21:01:21.0166 6048 C:\Windows\System32\msls31.dll - ok
21:01:21.0174 6048 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
21:01:21.0174 6048 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
21:01:21.0183 6048 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
21:01:21.0183 6048 C:\Windows\System32\gameux.dll - ok
21:01:21.0191 6048 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
21:01:21.0191 6048 C:\Windows\System32\DeviceCenter.dll - ok
21:01:21.0200 6048 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
21:01:21.0200 6048 C:\Windows\System32\msiltcfg.dll - ok
21:01:21.0207 6048 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
21:01:21.0207 6048 C:\Windows\System32\msi.dll - ok
21:01:21.0217 6048 [ 5BF94D45E79C5FADDFC8A92E4BE28A48 ] C:\Program Files\DellTPad\Apoint.exe
21:01:21.0217 6048 C:\Program Files\DellTPad\Apoint.exe - ok
21:01:21.0228 6048 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\22303584.sys
21:01:21.0228 6048 C:\Windows\System32\drivers\22303584.sys - ok
21:01:21.0239 6048 [ E207EB5CFBFE9599A46FE332D02F8B98 ] C:\Windows\System32\igfxtray.exe
21:01:21.0239 6048 C:\Windows\System32\igfxtray.exe - ok
21:01:21.0250 6048 [ 593569F826ED1829ADC4CA7C030DE70D ] C:\Program Files\IDT\WDM\sttray64.exe
21:01:21.0250 6048 C:\Program Files\IDT\WDM\sttray64.exe - ok
21:01:21.0254 6048 [ 95685C769AE1BFB540A3C91DE7E3A887 ] C:\Windows\System32\hkcmd.exe
21:01:21.0254 6048 C:\Windows\System32\hkcmd.exe - ok
21:01:21.0264 6048 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
21:01:21.0264 6048 C:\Windows\System32\mfc42u.dll - ok
21:01:21.0273 6048 [ 432049F72FFA35C5913BAAB9DF349C08 ] C:\Windows\System32\hccutils.dll
21:01:21.0273 6048 C:\Windows\System32\hccutils.dll - ok
21:01:21.0281 6048 [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
21:01:21.0281 6048 C:\Windows\System32\ieframe.dll - ok
21:01:21.0292 6048 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
21:01:21.0292 6048 C:\Windows\System32\odbc32.dll - ok
21:01:21.0301 6048 [ A485D002A0FF04EC1FB9E2EE5487E93F ] C:\Windows\System32\igfxpers.exe
21:01:21.0301 6048 C:\Windows\System32\igfxpers.exe - ok
21:01:21.0309 6048 [ 492AC8FE997E8CA937A0A6199AA05DB0 ] C:\Program Files\DellTPad\Apoint.dll
21:01:21.0309 6048 C:\Program Files\DellTPad\Apoint.dll - ok
21:01:21.0318 6048 [ 8BBEFDC942E6F82D45E5A1A950C98D9D ] C:\Windows\System32\igfxsrvc.exe
21:01:21.0318 6048 C:\Windows\System32\igfxsrvc.exe - ok
21:01:21.0325 6048 [ B7CA8E050201E12B198E72EDD9C9EEDF ] C:\Windows\System32\igfxdev.dll
21:01:21.0325 6048 C:\Windows\System32\igfxdev.dll - ok
21:01:21.0335 6048 [ 30590001482C5CD20F2584A3C1EBEFEB ] C:\Windows\System32\igfxsrvc.dll
21:01:21.0335 6048 C:\Windows\System32\igfxsrvc.dll - ok
21:01:21.0342 6048 [ D1AAA24898C93C66736CF98BE73944CC ] C:\Windows\System32\igfxrenu.lrc
21:01:21.0342 6048 C:\Windows\System32\igfxrenu.lrc - ok
21:01:21.0351 6048 [ 383027DC95B381904BE9AED58B34461E ] C:\Program Files\DellTPad\EzAuto.dll
21:01:21.0352 6048 C:\Program Files\DellTPad\EzAuto.dll - ok
21:01:21.0358 6048 [ 74FCBCDB4FC5B74EBE996AE66E8CBD9B ] C:\Windows\System32\Vxdif.dll
21:01:21.0358 6048 C:\Windows\System32\Vxdif.dll - ok
21:01:21.0369 6048 [ 340ACAAD76DE94000DCEAC541349A27C ] C:\Program Files\DellTPad\ApMsgFwd.exe
21:01:21.0369 6048 C:\Program Files\DellTPad\ApMsgFwd.exe - ok
21:01:21.0376 6048 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
21:01:21.0376 6048 C:\Windows\System32\consent.exe - ok
21:01:21.0386 6048 [ 566A4355CCFC6FDA21A898AB7E251778 ] C:\Program Files\IDT\WDM\stlang64.dll
21:01:21.0386 6048 C:\Program Files\IDT\WDM\stlang64.dll - ok
21:01:21.0395 6048 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
21:01:21.0395 6048 C:\Windows\System32\odbcint.dll - ok
21:01:21.0402 6048 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
21:01:21.0402 6048 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
21:01:21.0411 6048 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
21:01:21.0411 6048 C:\Windows\SysWOW64\duser.dll - ok
21:01:21.0421 6048 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
21:01:21.0421 6048 C:\Windows\SysWOW64\dui70.dll - ok
21:01:21.0430 6048 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
21:01:21.0430 6048 C:\Windows\System32\oleacc.dll - ok
21:01:21.0441 6048 [ FF432B8D53707AC63ACA43551CBBDB00 ] C:\Windows\System32\igfxress.dll
21:01:21.0441 6048 C:\Windows\System32\igfxress.dll - ok
21:01:21.0449 6048 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
21:01:21.0449 6048 C:\Windows\System32\UIAnimation.dll - ok
21:01:21.0459 6048 [ 1F83CB91A9830038DBE7CD1BA1921205 ] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE
21:01:21.0459 6048 C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE - ok
21:01:21.0471 6048 [ 5858DE874168C5F0AEA7A353DD520D48 ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
21:01:21.0471 6048 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
21:01:21.0479 6048 [ FC4C561550E5407FFA29D4F6C69B272F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll
21:01:21.0479 6048 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll - ok
21:01:21.0486 6048 [ 85A112B729EFF69669461ED39A5213FE ] C:\Program Files\DellTPad\ApntEx.exe
21:01:21.0487 6048 C:\Program Files\DellTPad\ApntEx.exe - ok
21:01:21.0495 6048 [ BCD9CBF0621F9A6767276A2E0BF1DD15 ] C:\Users\Julie\AppData\Roaming\Google\Google Talk\googletalk.exe
21:01:21.0495 6048 C:\Users\Julie\AppData\Roaming\Google\Google Talk\googletalk.exe - ok
21:01:21.0504 6048 [ D7FCD621FC17B4EDD453D0F5C22A7DA6 ] C:\Program Files\DellTPad\hidfind.exe
21:01:21.0504 6048 C:\Program Files\DellTPad\hidfind.exe - ok
21:01:21.0509 6048 [ 2C6DFC761F1DAE61940C7EAE97EBDB19 ] C:\Program Files (x86)\Skype\Phone\Skype.exe
21:01:21.0509 6048 C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
21:01:21.0516 6048 [ 609B1EC328B30D5DE438DCCE0732649C ] C:\Program Files\Dell\DellDock\DellDock.exe
21:01:21.0516 6048 C:\Program Files\Dell\DellDock\DellDock.exe - ok
21:01:21.0524 6048 [ C389DCD78E4BD8294097517A70CCE0E6 ] C:\Program Files\Canon\MyPrinter\CNMPU.DLL
21:01:21.0524 6048 C:\Program Files\Canon\MyPrinter\CNMPU.DLL - ok
21:01:21.0531 6048 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
21:01:21.0531 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
21:01:21.0541 6048 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
21:01:21.0541 6048 C:\Windows\System32\riched20.dll - ok
21:01:21.0549 6048 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
21:01:21.0549 6048 C:\Windows\System32\thumbcache.dll - ok
21:01:21.0557 6048 [ 452FA961163EF4AEE4815796A13AB2CF ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
21:01:21.0558 6048 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
21:01:21.0572 6048 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
21:01:21.0572 6048 C:\Windows\SysWOW64\msacm32.dll - ok
21:01:21.0577 6048 [ 637E9EEA864CE9C5778E3C4358B1E0D1 ] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
21:01:21.0577 6048 C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe - ok
21:01:21.0586 6048 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
21:01:21.0586 6048 C:\Windows\System32\networkexplorer.dll - ok
21:01:21.0595 6048 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
21:01:21.0595 6048 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
21:01:21.0609 6048 [ 0FD5B19CCB49F3D581D8A5620F91C94B ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
21:01:21.0610 6048 C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
21:01:21.0617 6048 [ 76BF13E24442B4A3314379ABEAD51C99 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
21:01:21.0617 6048 C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe - ok
21:01:21.0629 6048 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
21:01:21.0629 6048 C:\Windows\SysWOW64\ddraw.dll - ok
21:01:21.0639 6048 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
21:01:21.0639 6048 C:\Windows\SysWOW64\rasapi32.dll - ok
21:01:21.0651 6048 [ 80B62FF105908EC9E4B072AFB1CFC824 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
21:01:21.0651 6048 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe - ok
21:01:21.0657 6048 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
21:01:21.0658 6048 C:\Windows\System32\stobject.dll - ok
21:01:21.0665 6048 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
21:01:21.0665 6048 C:\Windows\System32\batmeter.dll - ok
21:01:21.0680 6048 [ 3181F76ED237CC3D50D10CEA05AF8B60 ] C:\Windows\System32\riched32.dll
21:01:21.0680 6048 C:\Windows\System32\riched32.dll - ok
21:01:21.0684 6048 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
21:01:21.0685 6048 C:\Windows\SysWOW64\rasman.dll - ok
21:01:21.0695 6048 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
21:01:21.0695 6048 C:\Windows\SysWOW64\rtutils.dll - ok
21:01:21.0709 6048 [ 0647EF247A5D0402E74FE89F5F6A8A11 ] C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
21:01:21.0709 6048 C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe - ok
21:01:21.0716 6048 [ A0A42BB19E085F4B3367F5057307C194 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll
21:01:21.0716 6048 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTLoadRs.dll - ok
21:01:21.0725 6048 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
21:01:21.0725 6048 C:\Windows\SysWOW64\dciman32.dll - ok
21:01:21.0742 6048 [ D458B563613E898EE7C627359AF5973D ] C:\Windows\SysWOW64\Nlsdl.dll
21:01:21.0742 6048 C:\Windows\SysWOW64\Nlsdl.dll - ok
21:01:21.0749 6048 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll
21:01:21.0749 6048 C:\Program Files (x86)\CyberLink\PowerDVD DX\MFC71.dll - ok
21:01:21.0756 6048 [ 2EF42B77565DA9D46F74BA08306811B4 ] C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll
21:01:21.0756 6048 C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll - ok
21:01:21.0761 6048 [ E748D0B8F4060F4F7A7ABB705E289890 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll
21:01:21.0762 6048 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\mfc42u.dll - ok
21:01:21.0777 6048 [ 4007C160649D060923E04368792B5E08 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\27040b8a9825d33eea978bdc449baf2b\MyDock.Util.ni.dll
21:01:21.0777 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\27040b8a9825d33eea978bdc449baf2b\MyDock.Util.ni.dll - ok
21:01:21.0783 6048 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
21:01:21.0783 6048 C:\Windows\SysWOW64\netprofm.dll - ok
21:01:21.0797 6048 [ 245A339AD3C2D5E6A173C64404BDE0F7 ] C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll
21:01:21.0797 6048 C:\Program Files (x86)\Roxio\Roxio Burn\AS_Storage_w32.dll - ok
21:01:21.0802 6048 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
21:01:21.0802 6048 C:\Windows\SysWOW64\nlaapi.dll - ok
21:01:21.0815 6048 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
21:01:21.0815 6048 C:\Windows\SysWOW64\npmproxy.dll - ok
21:01:21.0820 6048 [ 12CAF791C848FED972F3D8565BE92F2A ] C:\Program Files (x86)\Kodak\MediaImpression SE\ArcMonitor.exe
21:01:21.0820 6048 C:\Program Files (x86)\Kodak\MediaImpression SE\ArcMonitor.exe - ok
21:01:21.0832 6048 [ A7810B302294793DE88542AAE177D1B1 ] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
21:01:21.0832 6048 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe - ok
21:01:21.0838 6048 [ D3133B058E90AC908B8EDEBEEFA00598 ] C:\Program Files (x86)\Kodak\MediaImpression SE\USBStorageManager.dll
21:01:21.0838 6048 C:\Program Files (x86)\Kodak\MediaImpression SE\USBStorageManager.dll - ok
21:01:21.0848 6048 [ 5685F06FDE6374256365AF36F1984973 ] C:\Program Files (x86)\Kodak\MediaImpression SE\RctXMLBase.dll
21:01:21.0848 6048 C:\Program Files (x86)\Kodak\MediaImpression SE\RctXMLBase.dll - ok
21:01:21.0863 6048 [ 68CE18072E9CDFE63DD2E083868C7433 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
21:01:21.0863 6048 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
21:01:21.0868 6048 [ A1D4F80F18D81E444D55D10BB3ADA8F6 ] C:\Program Files (x86)\Kodak\MediaImpression SE\MagPCMac.dll
21:01:21.0868 6048 C:\Program Files (x86)\Kodak\MediaImpression SE\MagPCMac.dll - ok
21:01:21.0876 6048 [ 59A6413FB2CC89FD8651B1D2962FB8B9 ] C:\Program Files (x86)\Kodak\MediaImpression SE\msvcp60.dll
21:01:21.0876 6048 C:\Program Files (x86)\Kodak\MediaImpression SE\msvcp60.dll - ok
21:01:21.0885 6048 [ F400694D7D2785F60133C20F7F2F4F7A ] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
21:01:21.0885 6048 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac - ok
21:01:21.0894 6048 [ 6FC30299BCA75E7D694422428FBC77A8 ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagCore.dll
21:01:21.0894 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagCore.dll - ok
21:01:21.0904 6048 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll
21:01:21.0904 6048 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcr71.dll - ok
21:01:21.0911 6048 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll
21:01:21.0912 6048 C:\Program Files (x86)\CyberLink\PowerDVD DX\msvcp71.dll - ok
21:01:21.0919 6048 [ 9CC69E21A1ACA941C7DAE1F13212F233 ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagPCMac.dll
21:01:21.0919 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagPCMac.dll - ok
21:01:21.0928 6048 [ 59A6413FB2CC89FD8651B1D2962FB8B9 ] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\msvcp60.dll
21:01:21.0928 6048 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\msvcp60.dll - ok
21:01:21.0936 6048 [ 75CEF0D7583535D2B6A7922AF93AA505 ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUICommon.dll
21:01:21.0936 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUICommon.dll - ok
21:01:21.0946 6048 [ C939E909CC23598B10F78FA0A109F755 ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUIEngine.dll
21:01:21.0946 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUIEngine.dll - ok
21:01:21.0955 6048 [ 6E9A40A51F6588DB3F0FF3687512B4D2 ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUICommonET.dll
21:01:21.0955 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUICommonET.dll - ok
21:01:21.0967 6048 [ F3E06B350048CF40DC99342C05278A59 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl
21:01:21.0968 6048 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\en-US\WebcamDell2.crl - ok
21:01:21.0976 6048 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
21:01:21.0976 6048 C:\Windows\SysWOW64\shfolder.dll - ok
21:01:21.0984 6048 [ A0B5D04C293FE83E13498BC4E1A1293F ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUIInter.dll
21:01:21.0984 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUIInter.dll - ok
21:01:21.0994 6048 [ 6B8A2ED3775D50F838BEB49CA24F9089 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll
21:01:21.0994 6048 C:\Program Files (x86)\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll - ok
21:01:22.0002 6048 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
21:01:22.0002 6048 C:\Windows\SysWOW64\mscms.dll - ok
21:01:22.0012 6048 [ 1ABEDCA6C59B91A1EFAC92A6E0A9BE93 ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
21:01:22.0012 6048 C:\Program Files (x86)\Citrix\ICA Client\concentr.exe - ok
21:01:22.0020 6048 [ 0EB1510A539AF2DC59C890E57496EA92 ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUIImage.dll
21:01:22.0023 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\MagUIImage.dll - ok
21:01:22.0032 6048 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
21:01:22.0032 6048 C:\Windows\SysWOW64\sxs.dll - ok
21:01:22.0040 6048 [ FE798CC2F350E3567E75266F37B98BE2 ] C:\Program Files (x86)\Common Files\ArcSoft\Bin\magPltfm.dll
21:01:22.0040 6048 C:\Program Files (x86)\Common Files\ArcSoft\Bin\magPltfm.dll - ok
21:01:22.0049 6048 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
21:01:22.0049 6048 C:\Windows\SysWOW64\msimtf.dll - ok
21:01:22.0057 6048 [ 71BDAB98EAF2EA31681852A62DD6D772 ] C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll
21:01:22.0057 6048 C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll - ok
21:01:22.0067 6048 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
21:01:22.0067 6048 C:\Windows\SysWOW64\msvfw32.dll - ok
21:01:22.0074 6048 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
21:01:22.0074 6048 C:\Windows\SysWOW64\msls31.dll - ok
21:01:22.0083 6048 [ 92B43E48372361E984E1D20C80855907 ] C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll
21:01:22.0084 6048 C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll - ok
21:01:22.0099 6048 [ F3A847975F3EBC5DEF82CB0565A3C7F1 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\3aff25e2cc258060264695f524eb8312\DellDock.ni.exe
21:01:22.0100 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\3aff25e2cc258060264695f524eb8312\DellDock.ni.exe - ok
21:01:22.0105 6048 [ 00AB2B491C7037BB219BEB26FAD34C72 ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
21:01:22.0105 6048 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE - ok
21:01:22.0117 6048 [ 879341B450A39B6004F109CAFF6975C6 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll
21:01:22.0117 6048 C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll - ok
21:01:22.0133 6048 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
21:01:22.0133 6048 C:\Windows\SysWOW64\d2d1.dll - ok
21:01:22.0138 6048 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
21:01:22.0138 6048 C:\Windows\SysWOW64\DWrite.dll - ok
21:01:22.0146 6048 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
21:01:22.0146 6048 C:\Windows\System32\browcli.dll - ok
21:01:22.0158 6048 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
21:01:22.0158 6048 C:\Windows\System32\FntCache.dll - ok
21:01:22.0168 6048 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
21:01:22.0168 6048 C:\Windows\System32\l3codeca.acm - ok
21:01:22.0173 6048 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
21:01:22.0173 6048 C:\Windows\System32\schedcli.dll - ok
21:01:22.0187 6048 [ 3B184E076F8CBBC93DAE070501FB7D15 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll
21:01:22.0187 6048 C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll - ok
21:01:22.0193 6048 [ 16C94859F2A4F2403F6EFD516DF4B2B4 ] C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll
21:01:22.0193 6048 C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll - ok
21:01:22.0202 6048 [ 5F7EE76129F9A591F22F99F95D97AC95 ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
21:01:22.0202 6048 C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe - ok
21:01:22.0212 6048 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
21:01:22.0212 6048 C:\Windows\System32\DXP.dll - ok
21:01:22.0219 6048 [ 831F1CD855299D8C8482621C52E635C8 ] C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll
21:01:22.0219 6048 C:\Program Files (x86)\Common Files\PX Storage Engine\vxblock.dll - ok
21:01:22.0228 6048 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
21:01:22.0229 6048 C:\Windows\SysWOW64\icm32.dll - ok
21:01:22.0238 6048 [ 1D2B51E5291448DA123644A41250F6D6 ] C:\Program Files (x86)\AVG\AVG2013\avgui.exe
21:01:22.0238 6048 C:\Program Files (x86)\AVG\AVG2013\avgui.exe - ok
21:01:22.0246 6048 [ 471D7266AD659F79AE0281693F9CCD12 ] C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll
21:01:22.0247 6048 C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll - ok
21:01:22.0255 6048 [ BE60E1E2679D1779267465DF4DCC8627 ] C:\Program Files (x86)\Common Files\Citrix\WindowsAppRHelper.dll
21:01:22.0255 6048 C:\Program Files (x86)\Common Files\Citrix\WindowsAppRHelper.dll - ok
21:01:22.0263 6048 [ E63EAF09FC29954D7F8EAB2DEF495062 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\193e9d54d5a1785730cc76195c3ed9c6\System.Web.ni.dll
21:01:22.0263 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\193e9d54d5a1785730cc76195c3ed9c6\System.Web.ni.dll - ok
21:01:22.0272 6048 [ 7CB7FF216D25CAE3343174E3B49088FD ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_ENU.dll
21:01:22.0272 6048 C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_ENU.dll - ok
21:01:22.0279 6048 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
21:01:22.0280 6048 C:\Windows\SysWOW64\devenum.dll - ok
21:01:22.0287 6048 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
21:01:22.0287 6048 C:\Windows\SysWOW64\dxgi.dll - ok
21:01:22.0296 6048 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
21:01:22.0296 6048 C:\Windows\SysWOW64\d3d10_1.dll - ok
21:01:22.0306 6048 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
21:01:22.0306 6048 C:\Windows\System32\prnfldr.dll - ok
21:01:22.0315 6048 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
21:01:22.0315 6048 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
21:01:22.0324 6048 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
21:01:22.0325 6048 C:\Windows\System32\ActionCenter.dll - ok
21:01:22.0334 6048 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
21:01:22.0334 6048 C:\Windows\SysWOW64\d3d10_1core.dll - ok
21:01:22.0342 6048 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
21:01:22.0342 6048 C:\Windows\SysWOW64\d3d10warp.dll - ok
21:01:22.0350 6048 [ BE60E1E2679D1779267465DF4DCC8627 ] C:\Users\Julie\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll
21:01:22.0352 6048 C:\Users\Julie\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll - ok
21:01:22.0360 6048 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
21:01:22.0360 6048 C:\Windows\SysWOW64\avicap32.dll - ok
21:01:22.0368 6048 [ 4BC526551B07DF63A219B85576568B07 ] C:\Windows\SysWOW64\CNMNPPM.DLL
21:01:22.0368 6048 C:\Windows\SysWOW64\CNMNPPM.DLL - ok
21:01:22.0376 6048 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
21:01:22.0377 6048 C:\Windows\System32\FXSST.dll - ok
21:01:22.0388 6048 [ A73731A0B0A165907799E9AFB461F856 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
21:01:22.0389 6048 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok
21:01:22.0407 6048 [ 872DE4FB9C39A9B9837E80B4F1F47D84 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\3ee7b9f31e021b320a26cf5cca616245\VistaBridgeLibrary.ni.dll
21:01:22.0407 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\3ee7b9f31e021b320a26cf5cca616245\VistaBridgeLibrary.ni.dll - ok
21:01:22.0416 6048 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:01:22.0416 6048 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
21:01:22.0424 6048 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\SysWOW64\mfc100u.dll
21:01:22.0424 6048 C:\Windows\SysWOW64\mfc100u.dll - ok
21:01:22.0432 6048 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
21:01:22.0432 6048 C:\Windows\System32\FXSAPI.dll - ok
21:01:22.0440 6048 [ F2AE49F3E80A2B98270E2C2948520F04 ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\WindowsAppRHelper.dll
21:01:22.0440 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\WindowsAppRHelper.dll - ok
21:01:22.0451 6048 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
21:01:22.0451 6048 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
21:01:22.0465 6048 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
21:01:22.0465 6048 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
21:01:22.0472 6048 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
21:01:22.0472 6048 C:\Windows\SysWOW64\olepro32.dll - ok
21:01:22.0486 6048 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
21:01:22.0486 6048 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
21:01:22.0492 6048 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
21:01:22.0492 6048 C:\Windows\System32\FXSRESM.dll - ok
21:01:22.0502 6048 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\SysWOW64\shsvcs.dll
21:01:22.0502 6048 C:\Windows\SysWOW64\shsvcs.dll - ok
21:01:22.0511 6048 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
21:01:22.0511 6048 C:\Windows\SysWOW64\vfwwdm32.dll - ok
21:01:22.0520 6048 [ 2509E59DDE649146366399B42DFDC586 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\cf840dca36a7b949696ce331d0532d3e\System.Web.Services.ni.dll
21:01:22.0520 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\cf840dca36a7b949696ce331d0532d3e\System.Web.Services.ni.dll - ok
21:01:22.0528 6048 [ B1EA930AE1318F40AE51CDD11023CDBE ] C:\Windows\twain_32\MG4100 series\CISDS.DS
21:01:22.0528 6048 C:\Windows\twain_32\MG4100 series\CISDS.DS - ok
21:01:22.0536 6048 [ 14A1301778D69A64A0E79C4EF97BA42C ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll
21:01:22.0537 6048 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CtPinMgr.dll - ok
21:01:22.0545 6048 [ AF20DA051DE39496C098F2F33B958E94 ] C:\Program Files (x86)\Java\jre7\bin\java.exe
21:01:22.0545 6048 C:\Program Files (x86)\Java\jre7\bin\java.exe - ok
21:01:22.0553 6048 [ 78693EFB803C77F731726E7FA65A6517 ] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome150browserrecordhelper.dll
21:01:22.0553 6048 C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome150browserrecordhelper.dll - ok
21:01:22.0562 6048 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
21:01:22.0562 6048 C:\Windows\SysWOW64\avrt.dll - ok
21:01:22.0570 6048 [ C46CC2340D463438EE1AAD48FE41AD3C ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL
21:01:22.0571 6048 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL - ok
21:01:22.0580 6048 [ 6B84595A8C799B4C1361DF4AAC92A0AD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\115fbd68e86f1601e35c151450d0644d\MenuSkinning.ni.dll
21:01:22.0582 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\115fbd68e86f1601e35c151450d0644d\MenuSkinning.ni.dll - ok
21:01:22.0589 6048 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
21:01:22.0589 6048 C:\Windows\SysWOW64\cryptui.dll - ok
21:01:22.0599 6048 [ A5FE63E17F190EFED446FE90A06D1687 ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
21:01:22.0599 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe - ok
21:01:22.0607 6048 [ 2763D61D132BB47028BA7A6D67E54998 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll
21:01:22.0607 6048 C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\CTPControl.dll - ok
21:01:22.0616 6048 [ E72831417985680AAF432610DE880E53 ] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\AcStBmhE.exe
21:01:22.0616 6048 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\AcStBmhE.exe - ok
21:01:22.0627 6048 [ EBC3B2D1E54E88C0CC050099CAA5C8CF ] C:\Program Files (x86)\Java\jre7\bin\jpishare.dll
21:01:22.0627 6048 C:\Program Files (x86)\Java\jre7\bin\jpishare.dll - ok
21:01:22.0635 6048 [ C140F86932B5B61F54A4D836E2D34AB2 ] C:\Windows\SysWOW64\ksproxy.ax
21:01:22.0635 6048 C:\Windows\SysWOW64\ksproxy.ax - ok
21:01:22.0643 6048 [ 163A95975E1D8819E653AA3E961371CA ] C:\Windows\twain_32.dll
21:01:22.0643 6048 C:\Windows\twain_32.dll - ok
21:01:22.0651 6048 [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
21:01:22.0652 6048 C:\Program Files\Internet Explorer\ieproxy.dll - ok
21:01:22.0661 6048 [ C744E824ABAE9A7C24627E087F682137 ] C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll
21:01:22.0662 6048 C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll - ok
21:01:22.0676 6048 [ C0E2E7898707E94BAA38DADF676DBAC8 ] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcBmhE.dll
21:01:22.0676 6048 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcBmhE.dll - ok
21:01:22.0688 6048 [ 3C58D3F375B32E15E4AFC796D1B141F1 ] C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll
21:01:22.0688 6048 C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll - ok
21:01:22.0695 6048 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
21:01:22.0695 6048 C:\Windows\SysWOW64\ksuser.dll - ok
21:01:22.0703 6048 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
21:01:22.0703 6048 C:\Windows\System32\Syncreg.dll - ok
21:01:22.0711 6048 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
21:01:22.0711 6048 C:\Windows\SysWOW64\mapi32.dll - ok
21:01:22.0720 6048 [ 7FC86AA321F35120A051E7C13CB26991 ] C:\Program Files (x86)\Dell DataSafe Online\OlbEng.dll
21:01:22.0720 6048 C:\Program Files (x86)\Dell DataSafe Online\OlbEng.dll - ok
21:01:22.0729 6048 [ B1EA930AE1318F40AE51CDD11023CDBE ] C:\Windows\twain_32\MG4100 series\CISDS_Network.DS
21:01:22.0729 6048 C:\Windows\twain_32\MG4100 series\CISDS_Network.DS - ok
21:01:22.0738 6048 [ AC6A11B0F0F208E7D2800FD06A4437C3 ] C:\Program Files (x86)\Real\RealPlayer\realjbox.exe
21:01:22.0738 6048 C:\Program Files (x86)\Real\RealPlayer\realjbox.exe - ok
21:01:22.0747 6048 [ B98F28229D292B99FF449FF3647F31BA ] C:\Program Files (x86)\Java\jre7\bin\java.dll
21:01:22.0747 6048 C:\Program Files (x86)\Java\jre7\bin\java.dll - ok
21:01:22.0755 6048 [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\Windows\twain_32\wiatwain.ds
21:01:22.0756 6048 C:\Windows\twain_32\wiatwain.ds - ok
21:01:22.0767 6048 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
21:01:22.0767 6048 C:\Windows\ehome\ehSSO.dll - ok
21:01:22.0772 6048 [ 35A5C7AD281231C1DEA6751A63268DE5 ] C:\Program Files (x86)\Dell DataSafe Online\BuEng.dll
21:01:22.0772 6048 C:\Program Files (x86)\Dell DataSafe Online\BuEng.dll - ok
21:01:22.0781 6048 [ 80279007CAB3549A5999348BD0C23732 ] C:\Windows\SysWOW64\wiadss.dll
21:01:22.0781 6048 C:\Windows\SysWOW64\wiadss.dll - ok
21:01:22.0789 6048 [ 2D5AAFECAEE330D8A57C53D5FCC44F5F ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\Xerces-c_3_1.dll
21:01:22.0789 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\Xerces-c_3_1.dll - ok
21:01:22.0798 6048 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
21:01:22.0799 6048 C:\Windows\SysWOW64\wlanapi.dll - ok
21:01:22.0807 6048 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
21:01:22.0807 6048 C:\Windows\SysWOW64\wlanutil.dll - ok
21:01:22.0815 6048 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
21:01:22.0816 6048 C:\Windows\SysWOW64\msdmo.dll - ok
21:01:22.0826 6048 [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
21:01:22.0826 6048 C:\Windows\SysWOW64\vidcap.ax - ok
21:01:22.0837 6048 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
21:01:22.0837 6048 C:\Windows\System32\AltTab.dll - ok
21:01:22.0842 6048 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
21:01:22.0843 6048 C:\Windows\System32\FXSSVC.exe - ok
21:01:22.0852 6048 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
21:01:22.0852 6048 C:\Windows\System32\QUTIL.DLL - ok
21:01:22.0859 6048 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
21:01:22.0859 6048 C:\Windows\System32\sti.dll - ok
21:01:22.0869 6048 [ 630A31F277349109299E590856A4B004 ] C:\Windows\SysWOW64\Kswdmcap.ax
21:01:22.0869 6048 C:\Windows\SysWOW64\Kswdmcap.ax - ok
21:01:22.0874 6048 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
21:01:22.0875 6048 C:\Windows\System32\WPDShServiceObj.dll - ok
21:01:22.0883 6048 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
21:01:22.0883 6048 C:\Windows\SysWOW64\mfc42.dll - ok
21:01:22.0891 6048 [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\Windows\SysWOW64\mfc100enu.dll
21:01:22.0891 6048 C:\Windows\SysWOW64\mfc100enu.dll - ok
21:01:22.0899 6048 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
21:01:22.0899 6048 C:\Windows\SysWOW64\NapiNSP.dll - ok
21:01:22.0907 6048 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
21:01:22.0907 6048 C:\Windows\SysWOW64\sti.dll - ok
21:01:22.0915 6048 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
21:01:22.0915 6048 C:\Windows\System32\PortableDeviceTypes.dll - ok
21:01:22.0924 6048 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
21:01:22.0924 6048 C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll - ok
21:01:22.0934 6048 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
21:01:22.0934 6048 C:\Windows\SysWOW64\security.dll - ok
21:01:22.0942 6048 [ A3FA99A16F10D44EDB7A8C340FA2EE1B ] C:\Windows\SysWOW64\jscript9.dll
21:01:22.0942 6048 C:\Windows\SysWOW64\jscript9.dll - ok
21:01:22.0950 6048 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
21:01:22.0950 6048 C:\Windows\System32\srchadmin.dll - ok
21:01:22.0961 6048 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
21:01:22.0961 6048 C:\Windows\SysWOW64\wiatrace.dll - ok
21:01:22.0971 6048 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
21:01:22.0971 6048 C:\Windows\SysWOW64\odbc32.dll - ok
21:01:22.0978 6048 [ 966CD21542A62F9AB237D84C451CC137 ] C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll
21:01:22.0978 6048 C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll - ok
21:01:22.0987 6048 [ EC8771B7E50FEF948A57A1C065AC944B ] C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll
21:01:22.0987 6048 C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll - ok
21:01:22.0995 6048 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
21:01:22.0995 6048 C:\Windows\SysWOW64\odbcint.dll - ok
21:01:23.0004 6048 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
21:01:23.0004 6048 C:\Windows\System32\bthprops.cpl - ok
21:01:23.0011 6048 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
21:01:23.0012 6048 C:\Windows\SysWOW64\pnrpnsp.dll - ok
21:01:23.0020 6048 [ B7B0BDC5B096ACBA2D2D6DD89F7F8211 ] C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll
21:01:23.0021 6048 C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll - ok
21:01:23.0028 6048 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
21:01:23.0028 6048 C:\Windows\SysWOW64\winrnr.dll - ok
21:01:23.0038 6048 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
21:01:23.0038 6048 C:\Windows\System32\notepad.exe - ok
21:01:23.0049 6048 [ 151441E3505C042F1A272B13D110B90D ] C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL
21:01:23.0050 6048 C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL - ok
21:01:23.0058 6048 [ 40B28FBD1E4DEF0910E2AC3EAE4D43CF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\66694f9192bd0dddc2eaf90fbcbcd555\System.Management.ni.dll
21:01:23.0058 6048 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\66694f9192bd0dddc2eaf90fbcbcd555\System.Management.ni.dll - ok
21:01:23.0067 6048 [ 9730643AB698D3B7F19D9192E4D3E4B0 ] C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll
21:01:23.0067 6048 C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll - ok
21:01:23.0075 6048 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
21:01:23.0075 6048 C:\Windows\System32\webcheck.dll - ok
21:01:23.0085 6048 [ 972DCC74D4CDCB64086E7CFACBDB74CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
21:01:23.0085 6048 C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
21:01:23.0091 6048 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
21:01:23.0092 6048 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
21:01:23.0102 6048 [ 023963F60641E1AC19F69E7B84ADD564 ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\ResourceKeeper.dll
21:01:23.0102 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\ResourceKeeper.dll - ok
21:01:23.0115 6048 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
21:01:23.0115 6048 C:\Windows\System32\mlang.dll - ok
21:01:23.0123 6048 [ DFDF919265139FF792D42DEC0899397E ] C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
21:01:23.0124 6048 C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe - ok
21:01:23.0132 6048 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
21:01:23.0132 6048 C:\Windows\System32\SyncCenter.dll - ok
21:01:23.0141 6048 [ E8420094CF108385A2F7B2F20437C64B ] C:\Program Files (x86)\Dell DataSafe Online\CppUtils.dll
21:01:23.0141 6048 C:\Program Files (x86)\Dell DataSafe Online\CppUtils.dll - ok
21:01:23.0150 6048 [ 751EEDB874FD17A6F26B9E2CC5E19170 ] C:\Program Files (x86)\AVG\AVG2013\avglngx.dll
21:01:23.0150 6048 C:\Program Files (x86)\AVG\AVG2013\avglngx.dll - ok
21:01:23.0159 6048 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
21:01:23.0159 6048 C:\Windows\System32\imapi2.dll - ok
21:01:23.0166 6048 [ D76D81027210DFC5FA7462A61C56A916 ] C:\Program Files (x86)\Dell DataSafe Online\DataSafeUpdater.exe
21:01:23.0166 6048 C:\Program Files (x86)\Dell DataSafe Online\DataSafeUpdater.exe - ok
21:01:23.0174 6048 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
21:01:23.0174 6048 C:\Windows\System32\hgcpl.dll - ok
21:01:23.0182 6048 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
21:01:23.0182 6048 C:\Windows\System32\rasdlg.dll - ok
21:01:23.0190 6048 [ 382C595C477D2B22C605EA9FF13DBE7C ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\NativeMessageBox.dll
21:01:23.0190 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\NativeMessageBox.dll - ok
21:01:23.0199 6048 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
21:01:23.0199 6048 C:\Windows\System32\dot3api.dll - ok
21:01:23.0206 6048 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
21:01:23.0207 6048 C:\Windows\System32\wlanhlp.dll - ok
21:01:23.0214 6048 [ 92CDF303F266DD26F8884977B0FBFF0D ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\NativeSystrayUE.dll
21:01:23.0215 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\NativeSystrayUE.dll - ok
21:01:23.0223 6048 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
21:01:23.0223 6048 C:\Windows\SysWOW64\pdh.dll - ok
21:01:23.0231 6048 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
21:01:23.0231 6048 C:\Windows\SysWOW64\perfos.dll - ok
21:01:23.0240 6048 [ ADDB85019CDCC0651891D45D33E6DEA4 ] C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
21:01:23.0240 6048 C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe - ok
21:01:23.0248 6048 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
21:01:23.0248 6048 C:\Windows\SysWOW64\samcli.dll - ok
21:01:23.0259 6048 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
21:01:23.0260 6048 C:\Windows\SysWOW64\MMDevAPI.dll - ok
21:01:23.0268 6048 [ EB74C861075ECFA1B51B396615387657 ] C:\Program Files (x86)\AVG\AVG2013\avguires.dll
21:01:23.0269 6048 C:\Program Files (x86)\AVG\AVG2013\avguires.dll - ok
21:01:23.0277 6048 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
21:01:23.0277 6048 C:\Windows\System32\fdPHost.dll - ok
21:01:23.0286 6048 [ B75A08869C954DC8D463BEB53AF073A3 ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\ProgressNotification.dll
21:01:23.0286 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\ProgressNotification.dll - ok
21:01:23.0295 6048 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
21:01:23.0295 6048 C:\Windows\SysWOW64\wdmaud.drv - ok
21:01:23.0304 6048 [ 2F8EA4B8820B3694FE04D3C7B3A48B5A ] C:\Program Files (x86)\Citrix\ICA Client\Receiver\Toaster.dll
21:01:23.0304 6048 C:\Program Files (x86)\Citrix\ICA Client\Receiver\Toaster.dll - ok
21:01:23.0313 6048 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
21:01:23.0313 6048 C:\Windows\System32\fdWSD.dll - ok
21:01:23.0321 6048 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
21:01:23.0322 6048 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
21:01:23.0330 6048 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
21:01:23.0330 6048 C:\Windows\SysWOW64\AudioSes.dll - ok
21:01:23.0339 6048 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
21:01:23.0339 6048 C:\Windows\System32\WWanAPI.dll - ok
21:01:23.0348 6048 [ 15CA07D0AD05DF2D1CFB1204A1166D52 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZSMEX.DLL
21:01:23.0348 6048 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZSMEX.DLL - ok
21:01:23.0358 6048 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
21:01:23.0359 6048 C:\Windows\SysWOW64\msacm32.drv - ok
21:01:23.0365 6048 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
21:01:23.0365 6048 C:\Windows\System32\fdSSDP.dll - ok
21:01:23.0375 6048 [ 5D18F3897C0FF695E724372B195865F1 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMME.DLL
21:01:23.0376 6048 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMME.DLL - ok
21:01:23.0383 6048 [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
21:01:23.0383 6048 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
21:01:23.0393 6048 [ 251525F0A8F6157D7DA2E7455E58563C ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDBAC.DLL
21:01:23.0393 6048 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDBAC.DLL - ok
21:01:23.0403 6048 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
21:01:23.0403 6048 C:\Windows\SysWOW64\midimap.dll - ok
21:01:23.0411 6048 [ B9BFE20689398A7618C4AF5137F4068C ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\LEJES.DLL
21:01:23.0411 6048 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\LEJES.DLL - ok
21:01:23.0423 6048 [ 8578CD6C0C1BCE8FD6C26F16F1404920 ] C:\Windows\System32\AESTAC64.dll
21:01:23.0423 6048 C:\Windows\System32\AESTAC64.dll - ok
21:01:23.0431 6048 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
21:01:23.0431 6048 C:\Windows\System32\wwapi.dll - ok
21:01:23.0440 6048 [ F7E915FA38C119101873AE5E0E7C8B66 ] C:\Program Files (x86)\AVG\AVG2013\avgapps.dll
21:01:23.0440 6048 C:\Program Files (x86)\AVG\AVG2013\avgapps.dll - ok
21:01:23.0448 6048 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
21:01:23.0448 6048 C:\Windows\System32\fdProxy.dll - ok
21:01:23.0457 6048 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
21:01:23.0457 6048 C:\Windows\System32\QAGENT.DLL - ok
21:01:23.0466 6048 [ EF96D00440A696E5C0F68A4E50A803B3 ] C:\Program Files (x86)\Citrix\ICA Client\ProgressNotificationCommon.dll
21:01:23.0466 6048 C:\Program Files (x86)\Citrix\ICA Client\ProgressNotificationCommon.dll - ok
21:01:23.0476 6048 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
21:01:23.0476 6048 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
21:01:23.0483 6048 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
21:01:23.0484 6048 C:\Windows\System32\ListSvc.dll - ok
21:01:23.0493 6048 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
21:01:23.0493 6048 C:\Windows\System32\P2P.dll - ok
21:01:23.0500 6048 [ 9971958C840520A67DB2C53C8577F518 ] C:\Program Files (x86)\Citrix\ICA Client\wfcwinn.dll
21:01:23.0500 6048 C:\Program Files (x86)\Citrix\ICA Client\wfcwinn.dll - ok
21:01:23.0510 6048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
21:01:23.0510 6048 C:\Windows\System32\pnrpsvc.dll - ok
21:01:23.0518 6048 [ 1EA1D9375A7950C36DAA6F6DC983022C ] C:\Program Files (x86)\Citrix\ICA Client\acrdlg.dll
21:01:23.0518 6048 C:\Program Files (x86)\Citrix\ICA Client\acrdlg.dll - ok
21:01:23.0523 6048 [ 19BC13711AC403FEB830522E4831701B ] C:\Windows\SysWOW64\gameux.dll
21:01:23.0523 6048 C:\Windows\SysWOW64\gameux.dll - ok
21:01:23.0532 6048 [ 85804085A5C7A6E85904363F02BAA440 ] C:\Program Files (x86)\Citrix\ICA Client\statuin.dll
21:01:23.0532 6048 C:\Program Files (x86)\Citrix\ICA Client\statuin.dll - ok
21:01:23.0541 6048 [ 65AB1A3B45B933697F74B53116B46523 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
21:01:23.0541 6048 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
21:01:23.0550 6048 [ 1417D6BC2DC609DE70AC06F26C7F8F27 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
21:01:23.0551 6048 C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe - ok
21:01:23.0562 6048 [ E119722797DA761162AF707F4D8BE511 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\DazzleConfig.dll
21:01:23.0562 6048 C:\Program Files (x86)\Citrix\SelfServicePlugin\DazzleConfig.dll - ok
21:01:23.0572 6048 [ 2FDCABBADE80A702ABF7034AFAB7E579 ] C:\Program Files (x86)\Citrix\ICA Client\confmgr.dll
21:01:23.0572 6048 C:\Program Files (x86)\Citrix\ICA Client\confmgr.dll - ok
21:01:23.0580 6048 [ 8561DC4B7B9B8A6139F0CCF631409083 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\ReceiverShim.dll
21:01:23.0580 6048 C:\Program Files (x86)\Citrix\SelfServicePlugin\ReceiverShim.dll - ok
21:01:23.0590 6048 [ 9F5498832521CC6ED209B464897E0500 ] C:\Program Files (x86)\Citrix\ICA Client\ctxlogging.dll
21:01:23.0590 6048 C:\Program Files (x86)\Citrix\ICA Client\ctxlogging.dll - ok
21:01:23.0599 6048 [ F90ABF8A28CBC7CD38C90F8B39F7FB08 ] C:\Users\Julie\AppData\Local\Citrix\Receiver\WindowsAppRHelper_SelfServicePlugin.exe.dll
21:01:23.0599 6048 C:\Users\Julie\AppData\Local\Citrix\Receiver\WindowsAppRHelper_SelfServicePlugin.exe.dll - ok
21:01:23.0608 6048 [ 21DE0CF43F54BA698CD38115F33950A4 ] C:\Program Files (x86)\Citrix\ICA Client\icafile.dll
21:01:23.0609 6048 C:\Program Files (x86)\Citrix\ICA Client\icafile.dll - ok
21:01:23.0618 6048 [ D79D19EC66106119DCD45D042C6B5170 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll
21:01:23.0618 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll - ok
21:01:23.0628 6048 [ 265D10DFF04F4533CB9433CA3E28DA1C ] C:\Program Files (x86)\Citrix\ICA Client\RSManager.dll
21:01:23.0628 6048 C:\Program Files (x86)\Citrix\ICA Client\RSManager.dll - ok
21:01:23.0636 6048 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
21:01:23.0637 6048 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
21:01:23.0648 6048 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
21:01:23.0648 6048 C:\Windows\System32\p2psvc.dll - ok
21:01:23.0655 6048 [ B3DAE39955A072FF606D1AC58950A6CD ] C:\Program Files (x86)\Citrix\ICA Client\RSMHook.dll
21:01:23.0656 6048 C:\Program Files (x86)\Citrix\ICA Client\RSMHook.dll - ok
21:01:23.0664 6048 [ E8E838C10AA25BF482E6E8C1E188174A ] C:\Program Files (x86)\Citrix\ICA Client\cst.dll
21:01:23.0664 6048 C:\Program Files (x86)\Citrix\ICA Client\cst.dll - ok
21:01:23.0672 6048 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
21:01:23.0672 6048 C:\Windows\System32\P2PGraph.dll - ok
21:01:23.0680 6048 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
21:01:23.0681 6048 C:\Windows\System32\wmdrmdev.dll - ok
21:01:23.0696 6048 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
21:01:23.0696 6048 C:\Windows\SysWOW64\wer.dll - ok
21:01:23.0701 6048 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
21:01:23.0701 6048 C:\Windows\System32\drmv2clt.dll - ok
21:01:23.0709 6048 [ 138BC520590E37D8C212237786409316 ] C:\Windows\System32\spool\drivers\x64\3\CNMDRAS.DLL
21:01:23.0710 6048 C:\Windows\System32\spool\drivers\x64\3\CNMDRAS.DLL - ok
21:01:23.0718 6048 [ 3D3ACD5816960D566A9F04F9482A39E7 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\ProgressNotificationCommonUI.dll
21:01:23.0718 6048 C:\Program Files (x86)\Citrix\ICA Client\resource\en\ProgressNotificationCommonUI.dll - ok
21:01:23.0726 6048 [ 127AA81343A7C6F665C22CB1293B0A90 ] C:\Windows\splwow64.exe
21:01:23.0726 6048 C:\Windows\splwow64.exe - ok
21:01:23.0735 6048 [ 00F107F2608B2F6BE5FD2DA27633B983 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\statuiUI.dll
21:01:23.0735 6048 C:\Program Files (x86)\Citrix\ICA Client\resource\en\statuiUI.dll - ok
21:01:23.0744 6048 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
21:01:23.0746 6048 C:\Windows\SysWOW64\linkinfo.dll - ok
21:01:23.0752 6048 [ 4E6831D854FFE9953EE8479E287639F3 ] C:\Windows\System32\spool\drivers\x64\3\CNMUIAS.DLL
21:01:23.0752 6048 C:\Windows\System32\spool\drivers\x64\3\CNMUIAS.DLL - ok
21:01:23.0760 6048 [ F7B26FDC35E0AEC836A45803B39B317E ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\cstUI.dll
21:01:23.0761 6048 C:\Program Files (x86)\Citrix\ICA Client\resource\en\cstUI.dll - ok
21:01:23.0770 6048 [ EADFC95980BC24DF3C7EE5B2CD38F043 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll
21:01:23.0770 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll - ok
21:01:23.0775 6048 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
21:01:23.0775 6048 C:\Windows\System32\wmploc.DLL - ok
21:01:23.0783 6048 [ 94BA6120D5E4A3966FB932C46C17BEE5 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\wfcrunUI.dll
21:01:23.0784 6048 C:\Program Files (x86)\Citrix\ICA Client\resource\en\wfcrunUI.dll - ok
21:01:23.0793 6048 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
21:01:23.0793 6048 C:\Windows\System32\shfolder.dll - ok
21:01:23.0801 6048 [ 0A866897039E42DF8080BE5DD83BC8E0 ] C:\Windows\SysWOW64\jscript.dll
21:01:23.0801 6048 C:\Windows\SysWOW64\jscript.dll - ok
21:01:23.0809 6048 [ 5D0E28A22860E487148B2820309C0063 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll
21:01:23.0810 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll - ok
21:01:23.0818 6048 [ 2AE10C6704126D9043D3F0855E95755F ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
21:01:23.0818 6048 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
21:01:23.0827 6048 [ 22F020C76E339EB2B2187BA73A7E4173 ] C:\Windows\System32\PrintIsolationHost.exe
21:01:23.0827 6048 C:\Windows\System32\PrintIsolationHost.exe - ok
21:01:23.0835 6048 [ BE60E1E2679D1779267465DF4DCC8627 ] C:\Users\Julie\AppData\Local\Citrix\Receiver\WindowsAppRHelper_wfcrun32.exe.dll
21:01:23.0835 6048 C:\Users\Julie\AppData\Local\Citrix\Receiver\WindowsAppRHelper_wfcrun32.exe.dll - ok
21:01:23.0844 6048 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
21:01:23.0844 6048 C:\Windows\SysWOW64\mlang.dll - ok
21:01:23.0852 6048 [ 67DAC02EAF844B96A4497B82D0003110 ] C:\Windows\System32\spool\drivers\x64\3\CNMCPAS.DLL
21:01:23.0852 6048 C:\Windows\System32\spool\drivers\x64\3\CNMCPAS.DLL - ok
21:01:23.0860 6048 [ A4B3A9FFA483F8CB36E56C19448DDE36 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll
21:01:23.0861 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll - ok
21:01:23.0871 6048 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
21:01:23.0871 6048 C:\Windows\System32\upnp.dll - ok
21:01:23.0882 6048 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
21:01:23.0882 6048 C:\Windows\System32\ssdpsrv.dll - ok
21:01:23.0887 6048 [ 02C96F343AA235291D56491F549FA8AB ] C:\Windows\System32\spool\drivers\x64\3\CNMBS3AS.DLL
21:01:23.0888 6048 C:\Windows\System32\spool\drivers\x64\3\CNMBS3AS.DLL - ok
21:01:23.0898 6048 [ A7934B26A096F39B15960E0A56C1C8C4 ] C:\Windows\SysWOW64\bidispl.dll
21:01:23.0898 6048 C:\Windows\SysWOW64\bidispl.dll - ok
21:01:23.0905 6048 [ C240BE0730F3815BF4AFAF96A3DF3AF5 ] C:\Windows\System32\spool\drivers\x64\3\CNMFUAS.DLL
21:01:23.0905 6048 C:\Windows\System32\spool\drivers\x64\3\CNMFUAS.DLL - ok
21:01:23.0912 6048 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
21:01:23.0912 6048 C:\Windows\System32\wmpps.dll - ok
21:01:23.0920 6048 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
21:01:23.0920 6048 C:\Windows\System32\IdListen.dll - ok
21:01:23.0929 6048 [ 2D96BD686FFFC3754BDBDEC5DA7EE55E ] C:\Windows\System32\spool\drivers\x64\3\CNMBM3AS.DLL
21:01:23.0929 6048 C:\Windows\System32\spool\drivers\x64\3\CNMBM3AS.DLL - ok
21:01:23.0939 6048 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
21:01:23.0940 6048 C:\Windows\System32\wmpmde.dll - ok
21:01:23.0949 6048 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
21:01:23.0949 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
21:01:23.0956 6048 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
21:01:23.0956 6048 C:\Windows\System32\hgprint.dll - ok
21:01:23.0966 6048 [ CDCB65B20F6A36B77F1C016C2523AC75 ] C:\Program Files\Dell\DellDock\MyDockLib.dll
21:01:23.0966 6048 C:\Program Files\Dell\DellDock\MyDockLib.dll - ok
21:01:23.0974 6048 [ 36BD05A35D871905502BA071509444A2 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MG4100 series Printer\LanguageModules\0409\CNMurAS.dll
21:01:23.0974 6048 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MG4100 series Printer\LanguageModules\0409\CNMurAS.dll - ok
21:01:23.0982 6048 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
21:01:23.0982 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
21:01:23.0991 6048 [ E5D5B22EE9C31998FDE3966A874E1871 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MG4100 series Printer\LanguageModules\0411\CNMurAS.dll
21:01:23.0991 6048 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MG4100 series Printer\LanguageModules\0411\CNMurAS.dll - ok
21:01:23.0999 6048 [ F70F6FFE2C1FCCC243BAE27809C88096 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MG4100 series Printer\LanguageModules\0c0a\CNMurAS.dll
21:01:23.0999 6048 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MG4100 series Printer\LanguageModules\0c0a\CNMurAS.dll - ok
21:01:24.0010 6048 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
21:01:24.0010 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
21:01:24.0019 6048 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
21:01:24.0019 6048 C:\Windows\System32\WinSATAPI.dll - ok
21:01:24.0028 6048 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
21:01:24.0028 6048 C:\Windows\System32\MSMPEG2ENC.DLL - ok
21:01:24.0033 6048 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
21:01:24.0033 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
21:01:24.0041 6048 [ 46A55885CE411F772BF5205EADBF6639 ] C:\Windows\System32\spool\drivers\x64\3\CNMUBAS.DLL
21:01:24.0041 6048 C:\Windows\System32\spool\drivers\x64\3\CNMUBAS.DLL - ok
21:01:24.0049 6048 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
21:01:24.0049 6048 C:\Windows\System32\devenum.dll - ok
21:01:24.0057 6048 [ F469EFBCBD81BC0C6D6A4B3F24B5601D ] C:\Windows\System32\spool\drivers\x64\3\CNMBS6AS.DLL
21:01:24.0057 6048 C:\Windows\System32\spool\drivers\x64\3\CNMBS6AS.DLL - ok
21:01:24.0067 6048 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
21:01:24.0067 6048 C:\Windows\System32\msdmo.dll - ok
21:01:24.0073 6048 [ 9FA56171C452530E2F51E3238B52140B ] C:\Windows\System32\bidispl.dll
21:01:24.0073 6048 C:\Windows\System32\bidispl.dll - ok
21:01:24.0084 6048 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
21:01:24.0084 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
21:01:24.0090 6048 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
21:01:24.0091 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
21:01:24.0100 6048 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
21:01:24.0101 6048 C:\Windows\System32\upnphost.dll - ok
21:01:24.0108 6048 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
21:01:24.0108 6048 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
21:01:24.0118 6048 [ F4CABCBCBD9D5EC1C37FFAAD72CD4AC3 ] C:\Windows\System32\spool\drivers\x64\3\CNMEIAS.DLL
21:01:24.0118 6048 C:\Windows\System32\spool\drivers\x64\3\CNMEIAS.DLL - ok
21:01:24.0125 6048 [ 3381678371EBEF98C104C19762E7B13F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\bee015173ba31ca15216efd65c5e48f0\Accessibility.ni.dll
21:01:24.0125 6048 C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\bee015173ba31ca15216efd65c5e48f0\Accessibility.ni.dll - ok
21:01:24.0134 6048 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
21:01:24.0135 6048 C:\Windows\System32\wbem\wmiprov.dll - ok
21:01:24.0141 6048 [ B527D573D454C5629EE039103B842184 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMAIN.EXE
21:01:24.0142 6048 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMAIN.EXE - ok
21:01:24.0153 6048 [ 005C2F73761226A4224248B178F95612 ] C:\Program Files (x86)\Canon\MP Navigator EX 5.0\mpnex50.exe
21:01:24.0153 6048 C:\Program Files (x86)\Canon\MP Navigator EX 5.0\mpnex50.exe - ok
21:01:24.0162 6048 [ EBBD4C4F1EDB5C599E66E787C5C623CE ] C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
21:01:24.0162 6048 C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe - ok
21:01:24.0170 6048 [ 14DA421E463CE278854106421100E8DF ] C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.EXE
21:01:24.0170 6048 C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.EXE - ok
21:01:24.0178 6048 ============================================================
21:01:24.0178 6048 Scan finished
21:01:24.0178 6048 ============================================================
21:01:24.0197 5036 Detected object count: 2
21:01:24.0198 5036 Actual detected object count: 2
21:02:03.0795 5036 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:03.0795 5036 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:03.0795 5036 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:03.0796 5036 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:03:09.0469 4344 Deinitialize success

#9 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:57 PM

Posted 21 December 2012 - 09:49 PM

Hello

Lets get a deeper look into the system and see if something shows up.

Download and run OTL

Download OTL by Old Timer and save it to your Desktop.
  • Double click on OTL.exe to run it.
  • Under Output, ensure that Minimal Output is selected.
  • Under Extra Registry section, select Use SafeList.
  • Click the Scan All Users checkbox.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened and the that I need posted back here
    • Extra.txt <-- Will be minimized - save this one on your desktop in case I ask for it later
  • Please post the contents of OTL.txt in your next reply.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#10 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 22 December 2012 - 12:35 AM

Here's the log, as requested. The other one has been saved to my desktop.
Thanks!

OTL logfile created on: 12/21/2012 11:50:20 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Julie\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.96 Gb Total Physical Memory | 2.20 Gb Available Physical Memory | 55.51% Memory free
7.92 Gb Paging File | 5.65 Gb Available in Paging File | 71.36% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 283.40 Gb Total Space | 210.54 Gb Free Space | 74.29% Space Free | Partition Type: NTFS

Computer Name: JULIE-PC | User Name: Julie | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\Julie\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Users\Julie\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe (Google)
PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe ()
PRC - C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\SymcPCCULaunchSvc.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe (Citrix Systems, Inc.)
PRC - C:\Program Files (x86)\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc.)
PRC - C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe (Citrix Systems, Inc.)
PRC - C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe (Citrix Systems, Inc.)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe (SoftThinks - Dell)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe ()
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
PRC - C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
PRC - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe (SoftThinks - Dell)
PRC - C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
PRC - C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Kodak\MediaImpression SE\ArcMonitor.exe (ArcSoft, Inc.)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe ()
PRC - C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
PRC - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()
PRC - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
PRC - C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
PRC - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
PRC - C:\Users\Julie\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)


========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppgooglenaclpluginchrome.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libglesv2.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libegl.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avutil-51.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avformat-54.dll ()
MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avcodec-54.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\239d84cfdb9de9730c1efb43840ef2eb\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\66694f9192bd0dddc2eaf90fbcbcd555\System.Management.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7c4de95aa433eb8d81a81caf805947a8\PresentationFramework.Aero.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\cf840dca36a7b949696ce331d0532d3e\System.Web.Services.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1ec80905a71750be50dfc7981ad5ae28\PresentationFramework.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\53d6d827964619285771ed72332d3659\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b311b783e1efaa9527f4c2c9680c44d1\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe ()
MOD - C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe ()
MOD - C:\Program Files (x86)\Dell DataSafe Online\SdbShared.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Online\SdbShared.XmlSerializers.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Online\SdbUI.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Online\BalloonWindow.dll ()
MOD - C:\Program Files (x86)\Dell DataSafe Online\CppUtils.dll ()
MOD - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()


========== Services (SafeList) ==========

SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (STacSV) -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\stacsv64.exe (IDT, Inc.)
SRV:64bit: - (wltrysvc) -- C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE ()
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (DockLoginService) -- C:\Program Files\Dell\DellDock\DockLogin.exe (Stardock Corporation)
SRV:64bit: - (AESTFilters) -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe (Andrea Electronics Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (vToolbarUpdater13.2.0) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe ()
SRV - (AVGIDSAgent) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe (AVG Technologies CZ, s.r.o.)
SRV - (avgwd) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (PCCUJobMgr) -- C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe (Symantec Corporation)
SRV - (Norton PC Checkup Application Launcher) -- C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\SymcPCCULaunchSvc.exe (Symantec Corporation)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (SftService) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe (SoftThinks SAS)
SRV - (NSL) -- C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\ccSvcHst.exe (Symantec Corporation)
SRV - (GameConsoleService) -- C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe (WildTangent, Inc.)
SRV - (GoToAssist) -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (STacSV) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\STacSV64.exe (IDT, Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (IAANTMON) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation)
SRV - (AESTFilters) -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe (Andrea Electronics Corporation)


========== Driver Services (SafeList) ==========

DRV:64bit: - (avgtp) -- C:\Windows\SysNative\drivers\avgtpx64.sys (AVG Technologies)
DRV:64bit: - (AVGIDSDriver) -- C:\Windows\SysNative\drivers\avgidsdrivera.sys (AVG Technologies CZ, s.r.o. )
DRV:64bit: - (AVGIDSHA) -- C:\Windows\SysNative\drivers\avgidsha.sys (AVG Technologies CZ, s.r.o. )
DRV:64bit: - (Avgmfx64) -- C:\Windows\SysNative\drivers\avgmfx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgldx64) -- C:\Windows\SysNative\drivers\avgldx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (Avgtdia) -- C:\Windows\SysNative\drivers\avgtdia.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgloga) -- C:\Windows\SysNative\drivers\avgloga.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (Avgrkx64) -- C:\Windows\SysNative\drivers\avgrkx64.sys (AVG Technologies CZ, s.r.o.)
DRV:64bit: - (PCDSRVC{1E208CE0-FB7451FF-06020101}_0) -- c:\Program Files\Dell Support Center\pcdsrvc_x64.pkms (PC-Doctor, Inc.)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (ccSet_NST) -- C:\Windows\SysNative\drivers\NSTx64\0200000.010\ccSetx64.sys (Symantec Corporation)
DRV:64bit: - (ctxusbm) -- C:\Windows\SysNative\drivers\ctxusbm.sys (Citrix Systems, Inc.)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (ApfiltrService) -- C:\Windows\SysNative\drivers\Apfiltr.sys (Alps Electric Co., Ltd.)
DRV:64bit: - (STHDA) -- C:\Windows\SysNative\drivers\stwrt64.sys (IDT, Inc.)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (BCM42RLY) -- C:\Windows\SysNative\drivers\bcm42rly.sys (Broadcom Corporation)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (CtClsFlt) -- C:\Windows\SysNative\drivers\CtClsFlt.sys (Creative Technology Ltd.)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell)
DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (WimFltr) -- C:\Windows\SysNative\drivers\WimFltr.sys (Microsoft Corporation)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{AEF6646A-8CB1-4E5F-A88F-A0A3F26DD441}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.privitize.com/?aff=7
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{24A4C233-EE1D-4CED-BD75-76F8B0D8C8C5}: "URL" = http://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\..\SearchScopes,DefaultScope = {1FD3FA96-AA32-4028-B399-ACDD378D46CB}
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\..\SearchScopes\{1FD3FA96-AA32-4028-B399-ACDD378D46CB}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sear
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\..\SearchScopes\{D7B04635-848F-4A09-BB6F-BA4C31CFB7F2}: "URL" = https://isearch.avg.com/search?cid={02D0726B-7518-4B26-81C0-CE888049C7DB}&mid=c775e02d7eaf47d1adf275f39d3184a3-0811be8c2234e76d137dd88ee38f05e9d4867d9b&lang=en&ds=AVG&pr=fr&d=2012-10-01 14:28:51&v=12.2.5.34&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Citrix.com/npican: C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.6.14: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.6.14: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.6.14: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Julie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Julie\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Julie\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Julie\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin1017325.dll (Amazon.com, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{203FB6B2-2E1E-4474-863B-4C483ECCE78E}: C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2.0.0.16\coFFNST\ [2012/12/21 20:58:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0153E448-190B-4987-BDE1-F256CADA672F}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/12/20 11:22:58 | 000,000,000 | ---D | M]

[2012/12/20 11:22:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/12/20 11:22:56 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/07/06 17:11:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/04/14 13:01:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\mozilla firefox\components\Scriptff.dll

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Julie\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Julie\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL
CHR - plugin: AmazonMP3DownloaderPlugin (Enabled) = C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin1017325.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility for IJ (Enabled) = C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: Citrix ICA Client (Enabled) = C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 7 U9 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: RealPlayer Download Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: Google Drive = C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Skype Click to Call = C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.5.0.11422_0\
CHR - Extension: Zoomex = C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\okdigijmekgolinfoiajoopbekachpkf\3.2_0\
CHR - Extension: Gmail = C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL File not found
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll File not found
O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll File not found
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Norton Safe Web Lite BHO) - {F0DA78E9-6B60-42fb-BC26-EF2CFB8C8FF3} - C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Norton Safe Web Lite) - {30CEEEA2-3742-40e4-85DD-812BF1CBB83D} - C:\Program Files (x86)\Norton Safe Web Lite\Engine\2.0.0.16\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE (Dell Inc.)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [ArcSoft MediaImpression Monitor] C:\Program Files (x86)\Kodak\MediaImpression SE\ArcMonitor.exe (ArcSoft, Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [ConnectionCenter] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc.)
O4 - HKLM..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe ()
O4 - HKLM..\Run: [Dell Webcam Central] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [Desktop Disc Tool] c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe ()
O4 - HKLM..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (CANON INC.)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001..\Run: [googletalk] C:\Users\Julie\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
O4 - HKLM..\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe (Dell)
O4 - HKLM..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe (Softthinks)
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found
O4 - Startup: C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://zone.msn.com/bingame/dim2/default/popcaploader_v6.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F972F0E9-52A2-4CFD-824E-C6722E88F281}: DhcpNameServer = 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\cozi - No CLSID value found
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll File not found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\cozi {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\application/x-ica - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=euc-jp - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=ISO-8859-1 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=MS936 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=MS949 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=MS950 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=UTF8 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica; charset=UTF-8 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=euc-jp - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=ISO-8859-1 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=MS936 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=MS949 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=MS950 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=UTF8 - No CLSID value found
O18:64bit: - Protocol\Filter\application/x-ica;charset=UTF-8 - No CLSID value found
O18:64bit: - Protocol\Filter\ica - No CLSID value found
O18 - Protocol\Filter\application/x-ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/12/21 16:32:23 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/12/21 16:28:24 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/12/21 16:28:24 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/12/21 16:28:24 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/12/21 16:28:22 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/12/21 16:25:52 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/12/21 16:08:34 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/12/21 16:08:34 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/12/21 16:08:34 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/12/21 16:08:23 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/12/21 16:08:04 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/12/21 12:53:09 | 000,000,000 | ---D | C] -- C:\Users\Julie\Desktop\RK_Quarantine
[2012/12/20 10:38:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/12/20 10:38:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/12/19 11:05:34 | 000,000,000 | ---D | C] -- C:\Users\Julie\Documents\Tax info
[2012/12/19 10:55:35 | 000,000,000 | ---D | C] -- C:\Users\Julie\Documents\Step 1 questions
[2012/12/18 23:06:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/12/17 15:41:14 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Roaming\Malwarebytes
[2012/12/17 15:41:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/12/17 15:41:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/12/17 15:41:08 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/12/17 15:41:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/12/17 15:39:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GFI Software
[2012/12/17 15:39:20 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Roaming\GFI Software
[2012/12/17 15:36:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bitdefender
[2012/12/16 08:34:58 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Roaming\Mozilla
[2012/12/12 13:23:51 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/12/12 13:23:51 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/12/12 13:23:50 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/12/12 13:23:50 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/12/12 13:23:50 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/12/12 13:23:50 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/12/12 13:23:49 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/12/12 13:23:49 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/12/12 13:23:48 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/12/12 13:23:47 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/12/12 13:23:47 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/12/12 13:23:46 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/12/12 13:23:45 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/12/12 13:23:45 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/12/12 13:23:45 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/12/12 09:31:18 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/12/12 09:31:18 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/12/12 09:31:18 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/12/12 09:31:18 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/12/12 09:31:17 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/12/12 09:31:17 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/12/12 09:31:17 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/12/12 09:31:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/12/12 09:31:17 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/12/12 09:31:17 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/12/12 09:31:17 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/12/12 09:31:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/12/12 09:31:17 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/12/12 09:31:16 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/12/12 09:31:16 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/12/12 09:31:16 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/12/12 09:31:16 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/12/12 09:31:16 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/12/12 09:31:16 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/12/12 09:31:16 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/12/12 09:31:00 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2012/12/12 09:31:00 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2012/12/09 09:46:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2012/12/04 12:00:33 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Local\Torch
[2012/12/04 11:44:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Zoomex
[2012/12/03 13:30:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rapid Review - Pathology
[2012/12/03 13:30:53 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2012/12/03 13:30:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rapid Review - Pathology
[2012/12/03 09:46:48 | 000,000,000 | ---D | C] -- C:\Users\Julie\Documents\Step 1 books
[2012/12/01 13:25:58 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Local\{DACBE7F9-14A3-4E0A-BF4A-5A98AEF4C56F}

========== Files - Modified Within 30 Days ==========

[2012/12/21 23:34:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4077091692-2965806976-2974235168-1001UA.job
[2012/12/21 23:10:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/12/21 23:10:00 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/12/21 21:09:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/12/21 21:06:04 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/12/21 21:06:04 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/12/21 20:58:18 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Julie.job
[2012/12/21 20:57:26 | 3190,050,816 | -HS- | M] () -- C:\hiberfil.sys
[2012/12/21 16:31:42 | 000,275,712 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/12/21 16:31:36 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2012/12/21 16:31:36 | 000,000,506 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2012/12/21 14:34:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4077091692-2965806976-2974235168-1001Core.job
[2012/12/21 13:28:00 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateXML_Julie.job
[2012/12/20 12:28:02 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Julie.job
[2012/12/20 10:38:22 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/12/18 23:06:22 | 000,002,255 | ---- | M] () -- C:\Users\Julie\Desktop\Google Chrome.lnk
[2012/12/17 15:41:10 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/16 12:11:22 | 000,046,080 | ---- | M] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/12/16 09:45:03 | 000,367,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/12/16 09:13:28 | 000,295,424 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/12/16 09:13:20 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/12/09 09:46:09 | 000,000,927 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[2012/12/08 22:24:46 | 000,727,398 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/12/08 22:24:46 | 000,624,864 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/12/08 22:24:46 | 000,106,950 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/12/04 11:44:10 | 000,000,077 | ---- | M] () -- C:\prefs.js
[2012/12/03 13:30:21 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe

========== Files Created - No Company Name ==========

[2012/12/21 16:08:34 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/12/21 16:08:34 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/12/21 16:08:34 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/12/21 16:08:34 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/12/21 16:08:34 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/12/20 10:38:22 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/12/18 23:06:22 | 000,002,255 | ---- | C] () -- C:\Users\Julie\Desktop\Google Chrome.lnk
[2012/12/18 23:05:16 | 000,000,896 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/12/18 23:05:16 | 000,000,892 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/12/18 13:26:02 | 000,000,376 | ---- | C] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Julie.job
[2012/12/18 13:26:01 | 000,000,370 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Julie.job
[2012/12/18 13:26:01 | 000,000,366 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateXML_Julie.job
[2012/12/17 15:41:10 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/04 11:44:10 | 000,000,077 | ---- | C] () -- C:\prefs.js
[2011/06/23 11:57:55 | 000,009,800 | -HS- | C] () -- C:\Users\Julie\AppData\Local\v34614kokdn87ld5p5m0sj75hs41572n7x508nstf75
[2011/06/23 11:57:55 | 000,009,800 | -HS- | C] () -- C:\ProgramData\v34614kokdn87ld5p5m0sj75hs41572n7x508nstf75
[2010/07/13 12:50:18 | 000,000,048 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 00:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 23:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Alternate Data Streams ==========

@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:0B4227B4

< End of report >

#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:57 PM

Posted 22 December 2012 - 08:15 AM

Hello

Run this custom script and when it is complete I need to know how the computer is doing

Run OTL Script

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Posted Image textbox. Do not include the word Code
    :OTL
    FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    O2:64bit: - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL File not found
    O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll File not found
    O2 - BHO: (McAfee Phishing Filter) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll File not found
    O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll File not found
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKU\S-1-5-21-4077091692-2965806976-2974235168-1001\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found
    O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = File not found
    O4 - Startup: C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = File not found
    O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
    O18:64bit: - Protocol\Handler\cozi - No CLSID value found
    O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll File not found
    O18:64bit: - Protocol\Handler\livecall - No CLSID value found
    O18:64bit: - Protocol\Handler\msnim - No CLSID value found
    O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
    O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
    O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
    O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
    O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll File not found
    O18:64bit: - Protocol\Filter\application/x-ica - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica; charset=euc-jp - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica; charset=ISO-8859-1 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica; charset=MS936 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica; charset=MS949 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica; charset=MS950 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica; charset=UTF8 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica; charset=UTF-8 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica;charset=euc-jp - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica;charset=ISO-8859-1 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica;charset=MS936 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica;charset=MS949 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica;charset=MS950 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica;charset=UTF8 - No CLSID value found
    O18:64bit: - Protocol\Filter\application/x-ica;charset=UTF-8 - No CLSID value found
    O18:64bit: - Protocol\Filter\ica - No CLSID value found
    O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
    O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:0B4227B4  
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.privitize.com/?aff=7
    [2011/06/23 11:57:55 | 000,009,800 | -HS- | C] () -- C:\Users\Julie\AppData\Local\v34614kokdn87ld5p5m0sj75hs41572n7x508nstf75
    [2011/06/23 11:57:55 | 000,009,800 | -HS- | C] () -- C:\ProgramData\v34614kokdn87ld5p5m0sj75hs41572n7x508nstf75
    :Files
    ipconfig /flushdns /c
    :Commands
    [PURITY]
    [emptyjava]
    [EMPTYFLASH]
    [reboot]
    
  • Then click the Run Fix button at the top.
  • Click Posted Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

Let me know How things are doing

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 22 December 2012 - 11:27 AM

My computer is still having the following issues 1) my webcam still doesn't work, 2) Ads by "Browse to Save" are randomly inserted into websites I try to view with Chrome (most notably, facebook).

For good news: since yesterday my computer has been starting fine (although I haven't tried while the external hard drive is attached, which was the original problem), has not been going into sleep mode while I'm actively using it, and has not told me that an imaginary USB key has stopped working and needs attention.

Thank you for your help so far!

Here's the log:

========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{27B4851A-3207-45A2-B947-BE8AFE6163AB}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{27B4851A-3207-45A2-B947-BE8AFE6163AB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-4077091692-2965806976-2974235168-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk moved successfully.
File move failed. C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk scheduled to be moved on reboot.
C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk moved successfully.
64bit-Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Add to Google Photos Screensa&ver\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\cozi\ deleted successfully.
File Protocol\Handler\cozi - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}\ deleted successfully.
File {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype-ie-addon-data\ deleted successfully.
File Protocol\Handler\skype-ie-addon-data - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}\ deleted successfully.
File {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll File not found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
ADS C:\ProgramData\TEMP:0B4227B4 deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
C:\Users\Julie\AppData\Local\v34614kokdn87ld5p5m0sj75hs41572n7x508nstf75 moved successfully.
C:\ProgramData\v34614kokdn87ld5p5m0sj75hs41572n7x508nstf75 moved successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Julie\Downloads\cmd.bat deleted successfully.
C:\Users\Julie\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Julie
->Java cache emptied: 791898 bytes

User: Public

Total Java Files Cleaned = 1.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Julie
->Flash cache emptied: 175105 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12222012_111223

Files\Folders moved on Reboot...
File\Folder C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#13 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:57 PM

Posted 22 December 2012 - 11:53 AM

Run OTL Script

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Posted Image textbox. Do not include the word Code
    :Files
    C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default
    ipconfig /flushdns /c
    :Commands
    [PURITY]
    [emptyjava]
    [EMPTYFLASH]
    [reboot]
    
  • Then click the Run Fix button at the top.
  • Click Posted Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

Let me know How things are doing

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#14 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 22 December 2012 - 12:20 PM

Yea! The Browse to Save ads are gone!! But my webcam still isn't working. The blue light turns on but there is no image available.

Here's the log:

========== FILES ==========
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\User StyleSheets folder moved successfully.
Folder move failed. C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Session Storage scheduled to be moved on reboot.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\va1en.sftcdn.net\shared\flash\rs\storage.swf folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\va1en.sftcdn.net\shared\flash\rs folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\va1en.sftcdn.net\shared\flash folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\va1en.sftcdn.net\shared folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\va1en.sftcdn.net folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\tag.ybrant.hiro.tv\US_FARM_Ybran# folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\tag.ybrant.hiro.tv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\t.cxt.ms\lso.swf folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\t.cxt.ms folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\skypeassets.com\#ui folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\skypeassets.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\skype.com\#user folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\skype.com\#ui folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\skype.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\s.ytimg.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#va1en.sftcdn.net folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#tag.ybrant.hiro.tv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#t.cxt.ms folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#skypeassets.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#skype.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#s.ytimg.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#doug1izaerwt3.cloudfront.net folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#cdncache-a.akamaihd.net folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys\#cdn.adnxs.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer\sys folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support\flashplayer folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\support folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com\##26423DB68854A94F folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\macromedia.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\doug1izaerwt3.cloudfront.net\fa3e9c783cb6b# folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\doug1izaerwt3.cloudfront.net folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\cdncache-a.akamaihd.net\items\e6a00\storage.swf folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\cdncache-a.akamaihd.net\items\e6a00 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\cdncache-a.akamaihd.net\items folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\cdncache-a.akamaihd.net folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\cdn.adnxs.com folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\cd#\n.libraries.prd1.netshelter.net folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N\cd# folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\4M938X2N folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\HT24RNTK folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Pepper Data folder moved successfully.
Folder move failed. C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Media Cache scheduled to be moved on reboot.
Folder move failed. C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Local Storage scheduled to be moved on reboot.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\JumpListIconsOld folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\JumpListIcons folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\__MACOSX\_locales folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\__MACOSX folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_TW folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\zh_CN folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\vi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\uk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\tr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\th folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\sk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\se folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ru folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ro folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_PT folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pt_BR folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\pl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\no folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\nl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\lt folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ko folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ja folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\it folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\id folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hu folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\hi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fil folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\fi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\es folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\en folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\el folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\de folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\da folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\cs folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ca folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\bg folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales\ar folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\_locales folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\okdigijmekgolinfoiajoopbekachpkf\3.2_0 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\okdigijmekgolinfoiajoopbekachpkf folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.5.0.11422_0 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_TW folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_CN folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\vi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\uk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\tr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\th folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ru folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ro folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_PT folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_BR folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\no folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\nl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lt folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ko folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ja folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\it folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\id folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hu folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\he folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fil folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\et folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es_419 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_US folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_GB folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\el folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\de folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\da folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\cs folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ca folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\bg folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ar folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\zh_TW folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\zh_CN folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\vi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\uk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\tr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\th folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\sk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ru folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ro folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\pt_PT folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\pt_BR folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\pl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\no folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\nl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\lv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\lt folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ko folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ja folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\it folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\id folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\hu folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\hr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\hi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\he folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\fr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\fil folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\fi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\es folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\en folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\el folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\de folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\da folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\cs folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ca folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\bg folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales\ar folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX\_locales folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\__MACOSX folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_TW folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\zh_CN folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\vi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\uk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\tr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\th folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\sk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ru folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ro folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_PT folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pt_BR folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\pl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\no folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\nl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\lt folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ko folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ja folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\it folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\id folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hu folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\hi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\he folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fil folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\fi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\es folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\en folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\el folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\de folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\da folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\cs folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ca folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\bg folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales\ar folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\_locales folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\zh_TW folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\zh_CN folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\vi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\uk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\tr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\th folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\sk folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ru folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ro folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pt_PT folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pt_BR folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\pl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\no folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\nl folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ms folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\lv folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\lt folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ko folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ja folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\it folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\id folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hu folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\hi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\he folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fr folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fil folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\fi folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\eu folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\et folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\es_419 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\es folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\en_US folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\en_GB folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\el folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\de folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\da folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\cs folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ca folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\bg folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales\ar folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\_locales folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extensions folder moved successfully.
Folder move failed. C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extension State scheduled to be moved on reboot.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\databases folder moved successfully.
Folder move failed. C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Cache scheduled to be moved on reboot.
Folder move failed. C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default scheduled to be moved on reboot.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Julie\Downloads\cmd.bat deleted successfully.
C:\Users\Julie\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Julie
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Julie
->Flash cache emptied: 421 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12222012_115849

Files\Folders moved on Reboot...
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Session Storage folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Media Cache folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Local Storage folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Extension State folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\Cache folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default\User StyleSheets folder moved successfully.
C:\Users\Julie\AppData\Local\Google\Chrome\User Data\Default folder moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#15 Rhabdo

Rhabdo
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:07:57 PM

Posted 22 December 2012 - 07:06 PM

I was wrong. My computer is still going into sleep mode while I'm actively using it, just not as often as it had been.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users