Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Microsoft Security Essentials wont run.... [Solved]

Started by TrevorAS35 , Sep 05 2012 07:30 PM

This topic is locked

#16
emeraldnzl

Posted 08 September 2012 - 09:21 PM

GeekU Instructor

GeekU Moderator
20,051 posts

I did find out the internet is not just not working it just takes extremely long to load, like 20-30 mins. Hope that helps

Yes that is good to know. :thumbsup:

Im sorry if i posted wrong, wasnt quite sure if you wanted the log file or to post it like this.

No problem we will get there.

Now

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

#17
TrevorAS35

Posted 08 September 2012 - 09:46 PM

Member

Topic Starter
Member
17 posts

I will do these new steps as fast as i can then. Sorry im completely lost and clueless though :wacko:

#18
emeraldnzl

Posted 08 September 2012 - 09:49 PM

GeekU Instructor

GeekU Moderator
20,051 posts

I will do these new steps as fast as i can then. Sorry im completely lost and clueless though

Plenty of time. Just take it step by step. :thumbsup:

#19
TrevorAS35

Posted 08 September 2012 - 11:25 PM

Member

Topic Starter
Member
17 posts

Still no normal internet. Ran the program and no threats were found, also found two logs?:

00:09:17.0804 3696 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
00:09:18.0506 3696 ============================================================
00:09:18.0506 3696 Current date / time: 2012/09/09 00:09:18.0506
00:09:18.0506 3696 SystemInfo:
00:09:18.0506 3696
00:09:18.0506 3696 OS Version: 6.1.7601 ServicePack: 1.0
00:09:18.0506 3696 Product type: Workstation
00:09:18.0506 3696 ComputerName: TERESA-PC
00:09:18.0506 3696 UserName: Teresa
00:09:18.0506 3696 Windows directory: C:\Windows
00:09:18.0506 3696 System windows directory: C:\Windows
00:09:18.0506 3696 Running under WOW64
00:09:18.0506 3696 Processor architecture: Intel x64
00:09:18.0506 3696 Number of processors: 2
00:09:18.0506 3696 Page size: 0x1000
00:09:18.0506 3696 Boot type: Normal boot
00:09:18.0506 3696 ============================================================
00:09:20.0347 3696 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x193C38, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x6, Type 'K0', Flags 0x00000040
00:09:20.0362 3696 Drive \Device\Harddisk1\DR1 - Size: 0xF0A00000 (3.76 Gb), SectorSize: 0x200, Cylinders: 0x1EA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:09:20.0378 3696 ============================================================
00:09:20.0378 3696 \Device\Harddisk0\DR0:
00:09:20.0378 3696 MBR partitions:
00:09:20.0378 3696 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
00:09:20.0378 3696 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23B06800
00:09:20.0378 3696 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x23B6A800, BlocksNum 0x18C3800
00:09:20.0378 3696 \Device\Harddisk1\DR1:
00:09:20.0378 3696 MBR partitions:
00:09:20.0378 3696 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0x783080
00:09:20.0378 3696 ============================================================
00:09:20.0565 3696 C: <-> \Device\Harddisk0\DR0\Partition2
00:09:20.0752 3696 D: <-> \Device\Harddisk0\DR0\Partition3
00:09:20.0752 3696 ============================================================
00:09:20.0752 3696 Initialize success
00:09:20.0752 3696 ============================================================
00:09:58.0473 0696 Deinitialize success

And:

00:13:59.0775 1904 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
00:14:00.0633 1904 ============================================================
00:14:00.0633 1904 Current date / time: 2012/09/09 00:14:00.0633
00:14:00.0633 1904 SystemInfo:
00:14:00.0633 1904
00:14:00.0633 1904 OS Version: 6.1.7601 ServicePack: 1.0
00:14:00.0633 1904 Product type: Workstation
00:14:00.0633 1904 ComputerName: TERESA-PC
00:14:00.0633 1904 UserName: Teresa
00:14:00.0633 1904 Windows directory: C:\Windows
00:14:00.0633 1904 System windows directory: C:\Windows
00:14:00.0633 1904 Running under WOW64
00:14:00.0633 1904 Processor architecture: Intel x64
00:14:00.0633 1904 Number of processors: 2
00:14:00.0633 1904 Page size: 0x1000
00:14:00.0633 1904 Boot type: Normal boot
00:14:00.0633 1904 ============================================================
00:14:06.0131 1904 BG loaded
00:14:10.0078 1904 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x193C38, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x6, Type 'K0', Flags 0x00000040
00:14:10.0094 1904 Drive \Device\Harddisk1\DR1 - Size: 0xF0A00000 (3.76 Gb), SectorSize: 0x200, Cylinders: 0x1EA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:14:10.0094 1904 ============================================================
00:14:10.0094 1904 \Device\Harddisk0\DR0:
00:14:10.0094 1904 MBR partitions:
00:14:10.0094 1904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
00:14:10.0094 1904 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23B06800
00:14:10.0094 1904 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x23B6A800, BlocksNum 0x18C3800
00:14:10.0094 1904 \Device\Harddisk1\DR1:
00:14:10.0094 1904 MBR partitions:
00:14:10.0094 1904 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0x783080
00:14:10.0094 1904 ============================================================
00:14:10.0234 1904 C: <-> \Device\Harddisk0\DR0\Partition2
00:14:14.0384 1904 D: <-> \Device\Harddisk0\DR0\Partition3
00:14:14.0384 1904 ============================================================
00:14:14.0384 1904 Initialize success
00:14:14.0384 1904 ============================================================
00:16:21.0321 4136 ============================================================
00:16:21.0321 4136 Scan started
00:16:21.0321 4136 Mode: Manual; SigCheck; TDLFS;
00:16:21.0321 4136 ============================================================
00:16:22.0195 4136 ================ Scan system memory ========================
00:16:22.0195 4136 System memory - ok
00:16:22.0195 4136 ================ Scan services =============================
00:16:22.0351 4136 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
00:16:22.0444 4136 1394ohci - ok
00:16:22.0475 4136 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
00:16:22.0491 4136 ACPI - ok
00:16:22.0522 4136 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
00:16:22.0600 4136 AcpiPmi - ok
00:16:22.0741 4136 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:16:22.0756 4136 AdobeARMservice - ok
00:16:22.0881 4136 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:16:22.0897 4136 AdobeFlashPlayerUpdateSvc - ok
00:16:22.0959 4136 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
00:16:22.0990 4136 adp94xx - ok
00:16:23.0021 4136 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
00:16:23.0037 4136 adpahci - ok
00:16:23.0068 4136 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
00:16:23.0084 4136 adpu320 - ok
00:16:23.0131 4136 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:16:23.0193 4136 AeLookupSvc - ok
00:16:23.0240 4136 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
00:16:23.0287 4136 AFD - ok
00:16:23.0302 4136 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
00:16:23.0318 4136 agp440 - ok
00:16:23.0365 4136 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
00:16:23.0411 4136 ALG - ok
00:16:23.0458 4136 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
00:16:23.0474 4136 aliide - ok
00:16:23.0505 4136 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
00:16:23.0505 4136 amdide - ok
00:16:23.0552 4136 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
00:16:23.0583 4136 AmdK8 - ok
00:16:23.0614 4136 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
00:16:23.0645 4136 AmdPPM - ok
00:16:23.0692 4136 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
00:16:23.0708 4136 amdsata - ok
00:16:23.0739 4136 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
00:16:23.0755 4136 amdsbs - ok
00:16:23.0786 4136 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
00:16:23.0801 4136 amdxata - ok
00:16:23.0864 4136 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
00:16:24.0035 4136 AppID - ok
00:16:24.0051 4136 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
00:16:24.0129 4136 AppIDSvc - ok
00:16:24.0191 4136 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
00:16:24.0238 4136 Appinfo - ok
00:16:24.0316 4136 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:16:24.0332 4136 Apple Mobile Device - ok
00:16:24.0410 4136 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
00:16:24.0425 4136 arc - ok
00:16:24.0457 4136 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
00:16:24.0472 4136 arcsas - ok
00:16:24.0503 4136 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:16:24.0581 4136 AsyncMac - ok
00:16:24.0613 4136 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
00:16:24.0613 4136 atapi - ok
00:16:24.0737 4136 [ B4421D8CDADC441F76BA39532A3E3414 ] athr C:\Windows\system32\DRIVERS\athrx.sys
00:16:24.0831 4136 athr - ok
00:16:24.0847 4136 ATMFBUS - ok
00:16:24.0862 4136 ATMFCVsp - ok
00:16:24.0862 4136 ATMFFLT - ok
00:16:24.0878 4136 ATMFMdm - ok
00:16:24.0878 4136 ATMFNET - ok
00:16:24.0893 4136 ATMFNVsp - ok
00:16:24.0893 4136 ATMFVsp - ok
00:16:24.0956 4136 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:16:25.0034 4136 AudioEndpointBuilder - ok
00:16:25.0034 4136 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
00:16:25.0081 4136 AudioSrv - ok
00:16:25.0143 4136 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
00:16:25.0205 4136 AxInstSV - ok
00:16:25.0283 4136 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
00:16:25.0315 4136 b06bdrv - ok
00:16:25.0361 4136 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
00:16:25.0408 4136 b57nd60a - ok
00:16:25.0439 4136 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
00:16:25.0471 4136 BDESVC - ok
00:16:25.0517 4136 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
00:16:25.0564 4136 Beep - ok
00:16:25.0627 4136 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
00:16:25.0689 4136 BFE - ok
00:16:25.0720 4136 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
00:16:25.0798 4136 BITS - ok
00:16:25.0829 4136 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
00:16:25.0861 4136 blbdrive - ok
00:16:25.0985 4136 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:16:26.0001 4136 Bonjour Service - ok
00:16:26.0032 4136 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:16:26.0048 4136 bowser - ok
00:16:26.0079 4136 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:16:26.0141 4136 BrFiltLo - ok
00:16:26.0141 4136 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:16:26.0157 4136 BrFiltUp - ok
00:16:26.0219 4136 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
00:16:26.0266 4136 BridgeMP - ok
00:16:26.0297 4136 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
00:16:26.0329 4136 Browser - ok
00:16:26.0360 4136 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
00:16:26.0407 4136 Brserid - ok
00:16:26.0438 4136 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
00:16:26.0469 4136 BrSerWdm - ok
00:16:26.0500 4136 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
00:16:26.0547 4136 BrUsbMdm - ok
00:16:26.0578 4136 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
00:16:26.0609 4136 BrUsbSer - ok
00:16:26.0641 4136 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
00:16:26.0672 4136 BTHMODEM - ok
00:16:26.0703 4136 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
00:16:26.0750 4136 bthserv - ok
00:16:26.0797 4136 catchme - ok
00:16:26.0843 4136 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
00:16:26.0875 4136 CAXHWAZL - ok
00:16:26.0906 4136 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:16:26.0953 4136 cdfs - ok
00:16:26.0999 4136 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:16:27.0031 4136 cdrom - ok
00:16:27.0093 4136 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
00:16:27.0155 4136 CertPropSvc - ok
00:16:27.0187 4136 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
00:16:27.0218 4136 circlass - ok
00:16:27.0265 4136 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
00:16:27.0280 4136 CLFS - ok
00:16:27.0358 4136 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:16:27.0374 4136 clr_optimization_v2.0.50727_32 - ok
00:16:27.0421 4136 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:16:27.0436 4136 clr_optimization_v2.0.50727_64 - ok
00:16:27.0514 4136 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:16:27.0545 4136 clr_optimization_v4.0.30319_32 - ok
00:16:27.0577 4136 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:16:27.0592 4136 clr_optimization_v4.0.30319_64 - ok
00:16:27.0623 4136 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
00:16:27.0655 4136 CmBatt - ok
00:16:27.0670 4136 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:16:27.0686 4136 cmdide - ok
00:16:27.0733 4136 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
00:16:27.0764 4136 CNG - ok
00:16:27.0811 4136 [ A44DFDB81DC62B11760881175E5B2266 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
00:16:27.0873 4136 CnxtHdAudService - ok
00:16:27.0967 4136 [ C7A0E61D5714AC20DE52D4F66EC773B8 ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
00:16:27.0982 4136 Com4QLBEx - ok
00:16:28.0013 4136 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
00:16:28.0029 4136 Compbatt - ok
00:16:28.0076 4136 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
00:16:28.0107 4136 CompositeBus - ok
00:16:28.0123 4136 COMSysApp - ok
00:16:28.0154 4136 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
00:16:28.0169 4136 crcdisk - ok
00:16:28.0216 4136 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:16:28.0263 4136 CryptSvc - ok
00:16:28.0310 4136 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
00:16:28.0372 4136 DcomLaunch - ok
00:16:28.0419 4136 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
00:16:28.0466 4136 defragsvc - ok
00:16:28.0513 4136 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:16:28.0559 4136 DfsC - ok
00:16:28.0622 4136 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
00:16:28.0700 4136 Dhcp - ok
00:16:28.0731 4136 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
00:16:28.0762 4136 discache - ok
00:16:28.0809 4136 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
00:16:28.0809 4136 Disk - ok
00:16:28.0856 4136 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:16:28.0903 4136 Dnscache - ok
00:16:28.0949 4136 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
00:16:28.0996 4136 dot3svc - ok
00:16:29.0027 4136 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
00:16:29.0074 4136 DPS - ok
00:16:29.0105 4136 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:16:29.0152 4136 drmkaud - ok
00:16:29.0199 4136 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:16:29.0230 4136 DXGKrnl - ok
00:16:29.0293 4136 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
00:16:29.0339 4136 EapHost - ok
00:16:29.0433 4136 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
00:16:29.0558 4136 ebdrv - ok
00:16:29.0589 4136 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
00:16:29.0620 4136 EFS - ok
00:16:29.0714 4136 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
00:16:29.0745 4136 ehRecvr - ok
00:16:29.0792 4136 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
00:16:29.0807 4136 ehSched - ok
00:16:29.0870 4136 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
00:16:29.0885 4136 elxstor - ok
00:16:29.0917 4136 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
00:16:29.0948 4136 ErrDev - ok
00:16:30.0010 4136 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
00:16:30.0073 4136 EventSystem - ok
00:16:30.0135 4136 [ DA7CEF9FFBBD6498DF106BCAB84EB10A ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
00:16:30.0166 4136 ewusbnet - ok
00:16:30.0229 4136 [ E2CBB821C7CAE0EF8B56DE28ED85C740 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
00:16:30.0260 4136 ew_hwusbdev - ok
00:16:30.0291 4136 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
00:16:30.0338 4136 exfat - ok
00:16:30.0353 4136 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:16:30.0416 4136 fastfat - ok
00:16:30.0494 4136 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
00:16:30.0541 4136 Fax - ok
00:16:30.0572 4136 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
00:16:30.0603 4136 fdc - ok
00:16:30.0634 4136 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
00:16:30.0681 4136 fdPHost - ok
00:16:30.0697 4136 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
00:16:30.0743 4136 FDResPub - ok
00:16:30.0775 4136 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:16:30.0775 4136 FileInfo - ok
00:16:30.0806 4136 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:16:30.0853 4136 Filetrace - ok
00:16:30.0884 4136 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
00:16:30.0899 4136 flpydisk - ok
00:16:30.0946 4136 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:16:30.0962 4136 FltMgr - ok
00:16:31.0009 4136 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
00:16:31.0055 4136 FontCache - ok
00:16:31.0118 4136 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:16:31.0133 4136 FontCache3.0.0.0 - ok
00:16:31.0165 4136 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
00:16:31.0180 4136 FsDepends - ok
00:16:31.0227 4136 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
00:16:31.0243 4136 fssfltr - ok
00:16:31.0336 4136 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
00:16:31.0367 4136 fsssvc - ok
00:16:31.0414 4136 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:16:31.0430 4136 Fs_Rec - ok
00:16:31.0461 4136 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
00:16:31.0492 4136 fvevol - ok
00:16:31.0523 4136 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
00:16:31.0539 4136 gagp30kx - ok
00:16:31.0586 4136 [ AF4DEE5531395DEE72B35B36C9671FD0 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:16:31.0601 4136 GEARAspiWDM - ok
00:16:31.0648 4136 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
00:16:31.0726 4136 gpsvc - ok
00:16:31.0835 4136 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:16:31.0835 4136 gupdate - ok
00:16:31.0882 4136 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:16:31.0882 4136 gupdatem - ok
00:16:31.0960 4136 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
00:16:31.0960 4136 gusvc - ok
00:16:31.0991 4136 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
00:16:32.0023 4136 hcw85cir - ok
00:16:32.0069 4136 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:16:32.0101 4136 HdAudAddService - ok
00:16:32.0116 4136 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
00:16:32.0147 4136 HDAudBus - ok
00:16:32.0179 4136 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
00:16:32.0210 4136 HidBatt - ok
00:16:32.0241 4136 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
00:16:32.0272 4136 HidBth - ok
00:16:32.0303 4136 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
00:16:32.0335 4136 HidIr - ok
00:16:32.0366 4136 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
00:16:32.0413 4136 hidserv - ok
00:16:32.0475 4136 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
00:16:32.0491 4136 HidUsb - ok
00:16:32.0522 4136 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
00:16:32.0584 4136 hkmsvc - ok
00:16:32.0615 4136 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:16:32.0662 4136 HomeGroupListener - ok
00:16:32.0693 4136 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:16:32.0725 4136 HomeGroupProvider - ok
00:16:32.0771 4136 HP Support Assistant Service - ok
00:16:32.0803 4136 [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
00:16:32.0849 4136 HpqKbFiltr - ok
00:16:32.0927 4136 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
00:16:32.0943 4136 hpqwmiex - ok
00:16:32.0990 4136 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
00:16:33.0005 4136 HpSAMD - ok
00:16:33.0099 4136 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
00:16:33.0130 4136 HsfXAudioService - ok
00:16:33.0193 4136 [ 26C5D00321937E49B6BC91029947D094 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
00:16:33.0239 4136 HSF_DPV - ok
00:16:33.0286 4136 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
00:16:33.0302 4136 htcnprot - ok
00:16:33.0349 4136 [ 12DD535008AF8E55B13336D76E80F7F3 ] HtcVCom32 C:\Windows\system32\DRIVERS\HtcVComV64.sys
00:16:33.0380 4136 HtcVCom32 - ok
00:16:33.0458 4136 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:16:33.0505 4136 HTTP - ok
00:16:33.0551 4136 [ 6DBD08BC1331C78548298E82C4B667C5 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
00:16:33.0598 4136 huawei_enumerator - ok
00:16:33.0645 4136 [ 6E5CD3984742A922D0C183C7E82C3C94 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
00:16:33.0676 4136 hwdatacard - ok
00:16:33.0707 4136 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
00:16:33.0723 4136 hwpolicy - ok
00:16:33.0785 4136 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
00:16:33.0801 4136 i8042prt - ok
00:16:33.0832 4136 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
00:16:33.0863 4136 iaStorV - ok
00:16:33.0926 4136 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:16:33.0941 4136 idsvc - ok
00:16:34.0191 4136 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
00:16:34.0441 4136 igfx - ok
00:16:34.0487 4136 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
00:16:34.0503 4136 iirsp - ok
00:16:34.0565 4136 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
00:16:34.0628 4136 IKEEXT - ok
00:16:34.0675 4136 [ 88A20FA54C73DED4E8DAC764E9130AE9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
00:16:34.0721 4136 IntcHdmiAddService - ok
00:16:34.0737 4136 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
00:16:34.0753 4136 intelide - ok
00:16:34.0799 4136 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:16:34.0815 4136 intelppm - ok
00:16:34.0862 4136 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:16:34.0924 4136 IPBusEnum - ok
00:16:34.0955 4136 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:16:35.0018 4136 IpFilterDriver - ok
00:16:35.0049 4136 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:16:35.0111 4136 iphlpsvc - ok
00:16:35.0143 4136 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
00:16:35.0158 4136 IPMIDRV - ok
00:16:35.0189 4136 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
00:16:35.0221 4136 IPNAT - ok
00:16:35.0330 4136 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
00:16:35.0361 4136 iPod Service - ok
00:16:35.0392 4136 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:16:35.0408 4136 IRENUM - ok
00:16:35.0439 4136 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:16:35.0455 4136 isapnp - ok
00:16:35.0470 4136 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
00:16:35.0501 4136 iScsiPrt - ok
00:16:35.0548 4136 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:16:35.0564 4136 kbdclass - ok
00:16:35.0595 4136 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:16:35.0626 4136 kbdhid - ok
00:16:35.0642 4136 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
00:16:35.0657 4136 KeyIso - ok
00:16:35.0689 4136 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:16:35.0704 4136 KSecDD - ok
00:16:35.0735 4136 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
00:16:35.0751 4136 KSecPkg - ok
00:16:35.0798 4136 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
00:16:35.0845 4136 ksthunk - ok
00:16:35.0891 4136 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
00:16:35.0954 4136 KtmRm - ok
00:16:36.0016 4136 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
00:16:36.0079 4136 LanmanServer - ok
00:16:36.0125 4136 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:16:36.0172 4136 LanmanWorkstation - ok
00:16:36.0235 4136 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:16:36.0297 4136 lltdio - ok
00:16:36.0344 4136 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:16:36.0375 4136 lltdsvc - ok
00:16:36.0391 4136 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
00:16:36.0453 4136 lmhosts - ok
00:16:36.0500 4136 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
00:16:36.0515 4136 LSI_FC - ok
00:16:36.0547 4136 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
00:16:36.0562 4136 LSI_SAS - ok
00:16:36.0593 4136 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:16:36.0609 4136 LSI_SAS2 - ok
00:16:36.0640 4136 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:16:36.0656 4136 LSI_SCSI - ok
00:16:36.0687 4136 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
00:16:36.0734 4136 luafv - ok
00:16:36.0843 4136 [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
00:16:36.0859 4136 McComponentHostService - ok
00:16:36.0921 4136 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
00:16:36.0937 4136 Mcx2Svc - ok
00:16:36.0952 4136 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
00:16:36.0983 4136 mdmxsdk - ok
00:16:36.0999 4136 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
00:16:37.0015 4136 megasas - ok
00:16:37.0046 4136 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
00:16:37.0077 4136 MegaSR - ok
00:16:37.0108 4136 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
00:16:37.0155 4136 MMCSS - ok
00:16:37.0186 4136 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
00:16:37.0249 4136 Modem - ok
00:16:37.0280 4136 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:16:37.0311 4136 monitor - ok
00:16:37.0342 4136 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:16:37.0358 4136 mouclass - ok
00:16:37.0405 4136 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:16:37.0420 4136 mouhid - ok
00:16:37.0467 4136 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
00:16:37.0483 4136 mountmgr - ok
00:16:37.0561 4136 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
00:16:37.0576 4136 MpFilter - ok
00:16:37.0592 4136 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
00:16:37.0607 4136 mpio - ok
00:16:37.0639 4136 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:16:37.0670 4136 mpsdrv - ok
00:16:37.0732 4136 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
00:16:37.0779 4136 MpsSvc - ok
00:16:37.0826 4136 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:16:37.0857 4136 MRxDAV - ok
00:16:37.0888 4136 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:16:37.0935 4136 mrxsmb - ok
00:16:37.0982 4136 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:16:37.0997 4136 mrxsmb10 - ok
00:16:38.0029 4136 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:16:38.0044 4136 mrxsmb20 - ok
00:16:38.0075 4136 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
00:16:38.0091 4136 msahci - ok
00:16:38.0122 4136 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:16:38.0122 4136 msdsm - ok
00:16:38.0153 4136 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
00:16:38.0200 4136 MSDTC - ok
00:16:38.0231 4136 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:16:38.0278 4136 Msfs - ok
00:16:38.0294 4136 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
00:16:38.0356 4136 mshidkmdf - ok
00:16:38.0403 4136 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:16:38.0419 4136 msisadrv - ok
00:16:38.0465 4136 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:16:38.0543 4136 MSiSCSI - ok
00:16:38.0543 4136 msiserver - ok
00:16:38.0590 4136 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:16:38.0637 4136 MSKSSRV - ok
00:16:38.0731 4136 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
00:16:38.0746 4136 MsMpSvc - ok
00:16:38.0777 4136 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:16:38.0840 4136 MSPCLOCK - ok
00:16:38.0871 4136 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:16:38.0918 4136 MSPQM - ok
00:16:38.0949 4136 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:16:38.0980 4136 MsRPC - ok
00:16:39.0011 4136 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
00:16:39.0011 4136 mssmbios - ok
00:16:39.0058 4136 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:16:39.0105 4136 MSTEE - ok
00:16:39.0136 4136 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
00:16:39.0152 4136 MTConfig - ok
00:16:39.0183 4136 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
00:16:39.0199 4136 Mup - ok
00:16:39.0245 4136 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
00:16:39.0308 4136 napagent - ok
00:16:39.0370 4136 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:16:39.0401 4136 NativeWifiP - ok
00:16:39.0464 4136 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
00:16:39.0495 4136 NDIS - ok
00:16:39.0542 4136 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
00:16:39.0589 4136 NdisCap - ok
00:16:39.0620 4136 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:16:39.0667 4136 NdisTapi - ok
00:16:39.0698 4136 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:16:39.0760 4136 Ndisuio - ok
00:16:39.0791 4136 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:16:39.0838 4136 NdisWan - ok
00:16:39.0869 4136 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:16:39.0901 4136 NDProxy - ok
00:16:39.0932 4136 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:16:39.0994 4136 NetBIOS - ok
00:16:40.0041 4136 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
00:16:40.0103 4136 NetBT - ok
00:16:40.0119 4136 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
00:16:40.0135 4136 Netlogon - ok
00:16:40.0181 4136 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
00:16:40.0228 4136 Netman - ok
00:16:40.0275 4136 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
00:16:40.0322 4136 netprofm - ok
00:16:40.0353 4136 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:16:40.0369 4136 NetTcpPortSharing - ok
00:16:40.0525 4136 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
00:16:40.0712 4136 netw5v64 - ok
00:16:40.0774 4136 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
00:16:40.0790 4136 nfrd960 - ok
00:16:40.0821 4136 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
00:16:40.0837 4136 NisDrv - ok
00:16:40.0883 4136 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
00:16:40.0899 4136 NisSrv - ok
00:16:40.0961 4136 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:16:41.0024 4136 NlaSvc - ok
00:16:41.0055 4136 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:16:41.0086 4136 Npfs - ok
00:16:41.0117 4136 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
00:16:41.0149 4136 nsi - ok
00:16:41.0164 4136 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:16:41.0227 4136 nsiproxy - ok
00:16:41.0305 4136 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:16:41.0351 4136 Ntfs - ok
00:16:41.0383 4136 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
00:16:41.0429 4136 Null - ok
00:16:41.0461 4136 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:16:41.0476 4136 nvraid - ok
00:16:41.0507 4136 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:16:41.0523 4136 nvstor - ok
00:16:41.0554 4136 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:16:41.0570 4136 nv_agp - ok
00:16:41.0679 4136 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
00:16:41.0695 4136 odserv - ok
00:16:41.0726 4136 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
00:16:41.0741 4136 ohci1394 - ok
00:16:41.0788 4136 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:16:41.0804 4136 ose - ok
00:16:41.0835 4136 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
00:16:41.0866 4136 p2pimsvc - ok
00:16:41.0882 4136 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
00:16:41.0897 4136 p2psvc - ok
00:16:41.0944 4136 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
00:16:41.0975 4136 Parport - ok
00:16:42.0007 4136 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:16:42.0022 4136 partmgr - ok
00:16:42.0053 4136 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
00:16:42.0085 4136 PcaSvc - ok
00:16:42.0116 4136 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
00:16:42.0131 4136 pci - ok
00:16:42.0163 4136 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
00:16:42.0178 4136 pciide - ok
00:16:42.0225 4136 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
00:16:42.0241 4136 pcmcia - ok
00:16:42.0256 4136 PCTINDIS5X64 - ok
00:16:42.0287 4136 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
00:16:42.0287 4136 pcw - ok
00:16:42.0319 4136 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:16:42.0397 4136 PEAUTH - ok
00:16:42.0443 4136 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
00:16:42.0490 4136 PerfHost - ok
00:16:42.0568 4136 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
00:16:42.0631 4136 pla - ok
00:16:42.0693 4136 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:16:42.0709 4136 PlugPlay - ok
00:16:42.0740 4136 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
00:16:42.0755 4136 PNRPAutoReg - ok
00:16:42.0787 4136 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
00:16:42.0802 4136 PNRPsvc - ok
00:16:42.0849 4136 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:16:42.0896 4136 PolicyAgent - ok
00:16:42.0943 4136 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
00:16:42.0989 4136 Power - ok
00:16:43.0052 4136 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:16:43.0099 4136 PptpMiniport - ok
00:16:43.0130 4136 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
00:16:43.0161 4136 Processor - ok
00:16:43.0208 4136 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
00:16:43.0239 4136 ProfSvc - ok
00:16:43.0270 4136 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:16:43.0286 4136 ProtectedStorage - ok
00:16:43.0364 4136 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
00:16:43.0411 4136 Psched - ok
00:16:43.0457 4136 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
00:16:43.0504 4136 ql2300 - ok
00:16:43.0535 4136 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
00:16:43.0551 4136 ql40xx - ok
00:16:43.0582 4136 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
00:16:43.0598 4136 QWAVE - ok
00:16:43.0629 4136 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:16:43.0676 4136 QWAVEdrv - ok
00:16:43.0691 4136 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:16:43.0723 4136 RasAcd - ok
00:16:43.0769 4136 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
00:16:43.0816 4136 RasAgileVpn - ok
00:16:43.0863 4136 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
00:16:43.0910 4136 RasAuto - ok
00:16:43.0972 4136 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:16:44.0019 4136 Rasl2tp - ok
00:16:44.0066 4136 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
00:16:44.0113 4136 RasMan - ok
00:16:44.0159 4136 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:16:44.0206 4136 RasPppoe - ok
00:16:44.0237 4136 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:16:44.0300 4136 RasSstp - ok
00:16:44.0347 4136 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:16:44.0393 4136 rdbss - ok
00:16:44.0440 4136 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
00:16:44.0456 4136 rdpbus - ok
00:16:44.0503 4136 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:16:44.0549 4136 RDPCDD - ok
00:16:44.0596 4136 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:16:44.0643 4136 RDPENCDD - ok
00:16:44.0659 4136 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
00:16:44.0705 4136 RDPREFMP - ok
00:16:44.0737 4136 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:16:44.0783 4136 RDPWD - ok
00:16:44.0830 4136 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
00:16:44.0846 4136 rdyboost - ok
00:16:44.0877 4136 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
00:16:44.0971 4136 RemoteAccess - ok
00:16:45.0002 4136 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:16:45.0064 4136 RemoteRegistry - ok
00:16:45.0142 4136 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
00:16:45.0158 4136 RichVideo - ok
00:16:45.0189 4136 [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
00:16:45.0220 4136 RimVSerPort - ok
00:16:45.0251 4136 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
00:16:45.0298 4136 ROOTMODEM - ok
00:16:45.0345 4136 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
00:16:45.0392 4136 RpcEptMapper - ok
00:16:45.0407 4136 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
00:16:45.0439 4136 RpcLocator - ok
00:16:45.0485 4136 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
00:16:45.0532 4136 RpcSs - ok
00:16:45.0563 4136 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:16:45.0595 4136 rspndr - ok
00:16:45.0641 4136 [ 2DB8116D52B19216812C4E6D5D837810 ] RSUSBSTOR C:\Windows\System32\Drivers\RtsUStor.sys
00:16:45.0657 4136 RSUSBSTOR - ok
00:16:45.0688 4136 [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
00:16:45.0766 4136 RTL8167 - ok
00:16:45.0782 4136 RtsUIR - ok
00:16:45.0797 4136 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
00:16:45.0813 4136 SamSs - ok
00:16:45.0844 4136 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:16:45.0860 4136 sbp2port - ok
00:16:45.0891 4136 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:16:45.0953 4136 SCardSvr - ok
00:16:45.0985 4136 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
00:16:46.0047 4136 scfilter - ok
00:16:46.0094 4136 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
00:16:46.0172 4136 Schedule - ok
00:16:46.0219 4136 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
00:16:46.0250 4136 SCPolicySvc - ok
00:16:46.0281 4136 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
00:16:46.0312 4136 sdbus - ok
00:16:46.0343 4136 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:16:46.0375 4136 SDRSVC - ok
00:16:46.0421 4136 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:16:46.0453 4136 secdrv - ok
00:16:46.0499 4136 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
00:16:46.0546 4136 seclogon - ok
00:16:46.0577 4136 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
00:16:46.0624 4136 SENS - ok
00:16:46.0640 4136 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
00:16:46.0687 4136 SensrSvc - ok
00:16:46.0702 4136 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
00:16:46.0733 4136 Serenum - ok
00:16:46.0765 4136 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
00:16:46.0780 4136 Serial - ok
00:16:46.0811 4136 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
00:16:46.0843 4136 sermouse - ok
00:16:46.0905 4136 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
00:16:46.0952 4136 SessionEnv - ok
00:16:46.0983 4136 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
00:16:46.0999 4136 sffdisk - ok
00:16:47.0014 4136 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:16:47.0061 4136 sffp_mmc - ok
00:16:47.0092 4136 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
00:16:47.0123 4136 sffp_sd - ok
00:16:47.0155 4136 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
00:16:47.0170 4136 sfloppy - ok
00:16:47.0233 4136 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:16:47.0279 4136 SharedAccess - ok
00:16:47.0326 4136 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:16:47.0373 4136 ShellHWDetection - ok
00:16:47.0404 4136 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:16:47.0420 4136 SiSRaid2 - ok
00:16:47.0435 4136 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
00:16:47.0451 4136 SiSRaid4 - ok
00:16:47.0498 4136 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:16:47.0545 4136 Smb - ok
00:16:47.0591 4136 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:16:47.0607 4136 SNMPTRAP - ok
00:16:47.0654 4136 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
00:16:47.0654 4136 spldr - ok
00:16:47.0701 4136 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
00:16:47.0732 4136 Spooler - ok
00:16:47.0841 4136 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
00:16:47.0919 4136 sppsvc - ok
00:16:47.0950 4136 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
00:16:48.0028 4136 sppuinotify - ok
00:16:48.0059 4136 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
00:16:48.0106 4136 srv - ok
00:16:48.0122 4136 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:16:48.0137 4136 srv2 - ok
00:16:48.0184 4136 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
00:16:48.0200 4136 SrvHsfHDA - ok
00:16:48.0262 4136 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
00:16:48.0309 4136 SrvHsfV92 - ok
00:16:48.0325 4136 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
00:16:48.0371 4136 SrvHsfWinac - ok
00:16:48.0403 4136 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:16:48.0418 4136 srvnet - ok
00:16:48.0465 4136 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:16:48.0512 4136 SSDPSRV - ok
00:16:48.0543 4136 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:16:48.0574 4136 SstpSvc - ok
00:16:48.0621 4136 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
00:16:48.0637 4136 stexstor - ok
00:16:48.0683 4136 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
00:16:48.0715 4136 stisvc - ok
00:16:48.0761 4136 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
00:16:48.0777 4136 swenum - ok
00:16:48.0793 4136 swmsflt - ok
00:16:48.0839 4136 [ 808CB62212DD7A934074ED65D3106948 ] SWNC8UA3 C:\Windows\system32\DRIVERS\swnc8ua3.sys
00:16:48.0871 4136 SWNC8UA3 - ok
00:16:48.0917 4136 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
00:16:48.0964 4136 swprv - ok
00:16:49.0011 4136 [ DF3F437A890A77CCE5E3FD7B7BB93585 ] SWUMXA3 C:\Windows\system32\DRIVERS\swumxa3.sys
00:16:49.0027 4136 SWUMXA3 - ok
00:16:49.0073 4136 [ BCF305959B53B200CEB2AD25AD22F8A7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
00:16:49.0089 4136 SynTP - ok
00:16:49.0167 4136 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
00:16:49.0198 4136 SysMain - ok
00:16:49.0245 4136 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:16:49.0292 4136 TabletInputService - ok
00:16:49.0307 4136 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
00:16:49.0354 4136 TapiSrv - ok
00:16:49.0385 4136 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
00:16:49.0417 4136 TBS - ok
00:16:49.0495 4136 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:16:49.0541 4136 Tcpip - ok
00:16:49.0604 4136 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
00:16:49.0651 4136 TCPIP6 - ok
00:16:49.0682 4136 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:16:49.0744 4136 tcpipreg - ok
00:16:49.0776 4136 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:16:49.0807 4136 TDPIPE - ok
00:16:49.0838 4136 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:16:49.0869 4136 TDTCP - ok
00:16:49.0916 4136 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:16:49.0947 4136 tdx - ok
00:16:49.0978 4136 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
00:16:49.0994 4136 TermDD - ok
00:16:50.0025 4136 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
00:16:50.0088 4136 TermService - ok
00:16:50.0134 4136 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
00:16:50.0166 4136 Themes - ok
00:16:50.0181 4136 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
00:16:50.0212 4136 THREADORDER - ok
00:16:50.0228 4136 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
00:16:50.0275 4136 TrkWks - ok
00:16:50.0337 4136 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:16:50.0400 4136 TrustedInstaller - ok
00:16:50.0431 4136 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:16:50.0493 4136 tssecsrv - ok
00:16:50.0524 4136 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
00:16:50.0540 4136 TsUsbFlt - ok
00:16:50.0587 4136 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:16:50.0649 4136 tunnel - ok
00:16:50.0680 4136 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
00:16:50.0696 4136 uagp35 - ok
00:16:50.0727 4136 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:16:50.0790 4136 udfs - ok
00:16:50.0836 4136 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:16:50.0852 4136 UI0Detect - ok
00:16:50.0883 4136 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:16:50.0883 4136 uliagpkx - ok
00:16:50.0914 4136 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:16:50.0946 4136 umbus - ok
00:16:50.0977 4136 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
00:16:51.0008 4136 UmPass - ok
00:16:51.0055 4136 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
00:16:51.0086 4136 upnphost - ok
00:16:51.0133 4136 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
00:16:51.0148 4136 USBAAPL64 - ok
00:16:51.0180 4136 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:16:51.0195 4136 usbccgp - ok
00:16:51.0195 4136 USBCCID - ok
00:16:51.0226 4136 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:16:51.0242 4136 usbcir - ok
00:16:51.0273 4136 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
00:16:51.0289 4136 usbehci - ok
00:16:51.0336 4136 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:16:51.0367 4136 usbhub - ok
00:16:51.0398 4136 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
00:16:51.0414 4136 usbohci - ok
00:16:51.0445 4136 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
00:16:51.0476 4136 usbprint - ok
00:16:51.0523 4136 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:16:51.0538 4136 USBSTOR - ok
00:16:51.0570 4136 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
00:16:51.0601 4136 usbuhci - ok
00:16:51.0648 4136 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
00:16:51.0663 4136 usbvideo - ok
00:16:51.0694 4136 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
00:16:51.0804 4136 UxSms - ok
00:16:51.0819 4136 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
00:16:51.0835 4136 VaultSvc - ok
00:16:51.0882 4136 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
00:16:51.0897 4136 vdrvroot - ok
00:16:51.0944 4136 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
00:16:51.0991 4136 vds - ok
00:16:52.0022 4136 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:16:52.0038 4136 vga - ok
00:16:52.0069 4136 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
00:16:52.0116 4136 VgaSave - ok
00:16:52.0147 4136 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
00:16:52.0178 4136 vhdmp - ok
00:16:52.0194 4136 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
00:16:52.0209 4136 viaide - ok
00:16:52.0225 4136 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
00:16:52.0240 4136 volmgr - ok
00:16:52.0287 4136 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
00:16:52.0318 4136 volmgrx - ok
00:16:52.0334 4136 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
00:16:52.0350 4136 volsnap - ok
00:16:52.0396 4136 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
00:16:52.0412 4136 vsmraid - ok
00:16:52.0474 4136 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
00:16:52.0552 4136 VSS - ok
00:16:52.0568 4136 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
00:16:52.0599 4136 vwifibus - ok
00:16:52.0646 4136 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
00:16:52.0662 4136 vwififlt - ok
00:16:52.0708 4136 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
00:16:52.0740 4136 W32Time - ok
00:16:52.0771 4136 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
00:16:52.0786 4136 WacomPen - ok
00:16:52.0849 4136 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
00:16:52.0896 4136 WANARP - ok
00:16:52.0896 4136 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
00:16:52.0927 4136 Wanarpv6 - ok
00:16:53.0005 4136 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
00:16:53.0052 4136 WatAdminSvc - ok
00:16:53.0114 4136 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
00:16:53.0161 4136 wbengine - ok
00:16:53.0208 4136 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
00:16:53.0223 4136 WbioSrvc - ok
00:16:53.0270 4136 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
00:16:53.0301 4136 wcncsvc - ok
00:16:53.0348 4136 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:16:53.0379 4136 WcsPlugInService - ok
00:16:53.0410 4136 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
00:16:53.0426 4136 Wd - ok
00:16:53.0473 4136 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
00:16:53.0488 4136 Wdf01000 - ok
00:16:53.0520 4136 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
00:16:53.0566 4136 WdiServiceHost - ok
00:16:53.0566 4136 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
00:16:53.0582 4136 WdiSystemHost - ok
00:16:53.0629 4136 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
00:16:53.0660 4136 WebClient - ok
00:16:53.0707 4136 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
00:16:53.0769 4136 Wecsvc - ok
00:16:53.0785 4136 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
00:16:53.0863 4136 wercplsupport - ok
00:16:53.0894 4136 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
00:16:53.0941 4136 WerSvc - ok
00:16:53.0972 4136 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
00:16:54.0019 4136 WfpLwf - ok
00:16:54.0019 4136 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
00:16:54.0034 4136 WIMMount - ok
00:16:54.0081 4136 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
00:16:54.0112 4136 winachsf - ok
00:16:54.0144 4136 WinDefend - ok
00:16:54.0159 4136 WinHttpAutoProxySvc - ok
00:16:54.0206 4136 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
00:16:54.0253 4136 Winmgmt - ok
00:16:54.0331 4136 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
00:16:54.0409 4136 WinRM - ok
00:16:54.0456 4136 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
00:16:54.0502 4136 WinUsb - ok
00:16:54.0549 4136 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
00:16:54.0596 4136 Wlansvc - ok
00:16:54.0674 4136 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:16:54.0690 4136 wlcrasvc - ok
00:16:54.0814 4136 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:16:54.0861 4136 wlidsvc - ok
00:16:54.0892 4136 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
00:16:54.0924 4136 WmiAcpi - ok
00:16:54.0970 4136 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
00:16:55.0017 4136 wmiApSrv - ok
00:16:55.0064 4136 WMPNetworkSvc - ok
00:16:55.0095 4136 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
00:16:55.0111 4136 WPCSvc - ok
00:16:55.0158 4136 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:16:55.0173 4136 WPDBusEnum - ok
00:16:55.0204 4136 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:16:55.0236 4136 ws2ifsl - ok
00:16:55.0267 4136 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
00:16:55.0314 4136 wscsvc - ok
00:16:55.0314 4136 WSearch - ok
00:16:55.0407 4136 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
00:16:55.0454 4136 wuauserv - ok
00:16:55.0470 4136 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
00:16:55.0532 4136 WudfPf - ok
00:16:55.0594 4136 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:16:55.0641 4136 WUDFRd - ok
00:16:55.0672 4136 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:16:55.0719 4136 wudfsvc - ok
00:16:55.0750 4136 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
00:16:55.0813 4136 WwanSvc - ok
00:16:55.0860 4136 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
00:16:55.0875 4136 XAudio - ok
00:16:55.0938 4136 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
00:16:55.0953 4136 yukonw7 - ok
00:16:55.0984 4136 ================ Scan global ===============================
00:16:56.0016 4136 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:16:56.0047 4136 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
00:16:56.0062 4136 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
00:16:56.0109 4136 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:16:56.0140 4136 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:16:56.0140 4136 [Global] - ok
00:16:56.0140 4136 ================ Scan MBR ==================================
00:16:56.0156 4136 [ 5867BE28F633277963455E40FCB3B05F ] \Device\Harddisk0\DR0
00:16:57.0123 4136 \Device\Harddisk0\DR0 - ok
00:16:57.0139 4136 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR1
00:16:57.0732 4136 \Device\Harddisk1\DR1 - ok
00:16:57.0732 4136 ================ Scan VBR ==================================
00:16:57.0763 4136 [ 07FCEBEA2747F47DC34A3012E5888ED8 ] \Device\Harddisk0\DR0\Partition1
00:16:57.0763 4136 \Device\Harddisk0\DR0\Partition1 - ok
00:16:57.0778 4136 [ C4557E3DD4EECF37D1DC0FE2B7F8FF2E ] \Device\Harddisk0\DR0\Partition2
00:16:57.0778 4136 \Device\Harddisk0\DR0\Partition2 - ok
00:16:57.0810 4136 [ 6C2711DA0FFCCDFFC9EE788FC5CC22E4 ] \Device\Harddisk0\DR0\Partition3
00:16:57.0810 4136 \Device\Harddisk0\DR0\Partition3 - ok
00:16:57.0810 4136 [ 44D4E0DD819E9C54411AF44CA03993A4 ] \Device\Harddisk1\DR1\Partition1
00:16:57.0810 4136 \Device\Harddisk1\DR1\Partition1 - ok
00:16:57.0810 4136 ================ Scan active images ========================
00:16:57.0825 4136 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
00:16:57.0825 4136 C:\Windows\System32\drivers\crashdmp.sys - ok
00:16:57.0825 4136 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
00:16:57.0825 4136 C:\Windows\System32\drivers\Dumpata.sys - ok
00:16:57.0841 4136 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
00:16:57.0841 4136 C:\Windows\System32\drivers\dumpfve.sys - ok
00:16:57.0841 4136 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] C:\Windows\System32\drivers\msahci.sys
00:16:57.0841 4136 C:\Windows\System32\drivers\msahci.sys - ok
00:16:57.0841 4136 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
00:16:57.0841 4136 C:\Windows\System32\drivers\cdrom.sys - ok
00:16:57.0856 4136 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
00:16:57.0856 4136 C:\Windows\System32\drivers\beep.sys - ok
00:16:57.0856 4136 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
00:16:57.0856 4136 C:\Windows\System32\drivers\null.sys - ok
00:16:57.0872 4136 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
00:16:57.0872 4136 C:\Windows\System32\drivers\RDPCDD.sys - ok
00:16:57.0872 4136 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
00:16:57.0872 4136 C:\Windows\System32\drivers\vga.sys - ok
00:16:57.0888 4136 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
00:16:57.0888 4136 C:\Windows\System32\drivers\videoprt.sys - ok
00:16:57.0888 4136 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
00:16:57.0888 4136 C:\Windows\System32\drivers\watchdog.sys - ok
00:16:57.0888 4136 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
00:16:57.0888 4136 C:\Windows\System32\drivers\RDPENCDD.sys - ok
00:16:57.0903 4136 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
00:16:57.0903 4136 C:\Windows\System32\drivers\RDPREFMP.sys - ok
00:16:57.0903 4136 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
00:16:57.0903 4136 C:\Windows\System32\drivers\msfs.sys - ok
00:16:57.0919 4136 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
00:16:57.0919 4136 C:\Windows\System32\drivers\npfs.sys - ok
00:16:57.0919 4136 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
00:16:57.0919 4136 C:\Windows\System32\drivers\tdi.sys - ok
00:16:57.0919 4136 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
00:16:57.0919 4136 C:\Windows\System32\drivers\tdx.sys - ok
00:16:57.0934 4136 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
00:16:57.0934 4136 C:\Windows\System32\drivers\afd.sys - ok
00:16:57.0934 4136 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
00:16:57.0934 4136 C:\Windows\System32\drivers\netbt.sys - ok
00:16:57.0950 4136 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
00:16:57.0950 4136 C:\Windows\System32\drivers\netbios.sys - ok
00:16:57.0950 4136 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
00:16:57.0950 4136 C:\Windows\System32\drivers\pacer.sys - ok
00:16:57.0966 4136 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
00:16:57.0966 4136 C:\Windows\System32\drivers\serial.sys - ok
00:16:57.0966 4136 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
00:16:57.0966 4136 C:\Windows\System32\drivers\vwififlt.sys - ok
00:16:57.0966 4136 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
00:16:57.0966 4136 C:\Windows\System32\drivers\wfplwf.sys - ok
00:16:57.0981 4136 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
00:16:57.0981 4136 C:\Windows\System32\drivers\ws2ifsl.sys - ok
00:16:57.0981 4136 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
00:16:57.0981 4136 C:\Windows\System32\drivers\rdbss.sys - ok
00:16:57.0997 4136 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
00:16:57.0997 4136 C:\Windows\System32\drivers\termdd.sys - ok
00:16:57.0997 4136 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
00:16:57.0997 4136 C:\Windows\System32\drivers\wanarp.sys - ok
00:16:58.0012 4136 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
00:16:58.0012 4136 C:\Windows\System32\drivers\blbdrive.sys - ok
00:16:58.0012 4136 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
00:16:58.0012 4136 C:\Windows\System32\drivers\dfsc.sys - ok
00:16:58.0012 4136 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
00:16:58.0012 4136 C:\Windows\System32\drivers\discache.sys - ok
00:16:58.0028 4136 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
00:16:58.0028 4136 C:\Windows\System32\drivers\mssmbios.sys - ok
00:16:58.0028 4136 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
00:16:58.0028 4136 C:\Windows\System32\drivers\nsiproxy.sys - ok
00:16:58.0044 4136 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
00:16:58.0044 4136 C:\Windows\System32\drivers\intelppm.sys - ok
00:16:58.0044 4136 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
00:16:58.0044 4136 C:\Windows\System32\drivers\tunnel.sys - ok
00:16:58.0059 4136 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
00:16:58.0059 4136 C:\Windows\System32\drivers\wmiacpi.sys - ok
00:16:58.0059 4136 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
00:16:58.0059 4136 C:\Windows\System32\smss.exe - ok
00:16:58.0059 4136 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
00:16:58.0059 4136 C:\Windows\System32\ntdll.dll - ok
00:16:58.0075 4136 [ C6238C6ABD6AC99F5D152DA4E9439A3D ] C:\Windows\System32\drivers\igdkmd64.sys
00:16:58.0075 4136 C:\Windows\System32\drivers\igdkmd64.sys - ok
00:16:58.0075 4136 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
00:16:58.0075 4136 C:\Windows\System32\drivers\dxgkrnl.sys - ok
00:16:58.0090 4136 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
00:16:58.0090 4136 C:\Windows\System32\autochk.exe - ok
00:16:58.0090 4136 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
00:16:58.0090 4136 C:\Windows\System32\drivers\dxgmms1.sys - ok
00:16:58.0106 4136 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
00:16:58.0106 4136 C:\Windows\System32\drivers\usbehci.sys - ok
00:16:58.0106 4136 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
00:16:58.0106 4136 C:\Windows\System32\drivers\usbport.sys - ok
00:16:58.0106 4136 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
00:16:58.0106 4136 C:\Windows\System32\drivers\usbuhci.sys - ok
00:16:58.0122 4136 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
00:16:58.0122 4136 C:\Windows\System32\drivers\hdaudbus.sys - ok
00:16:58.0122 4136 [ B49DC435AE3695BAC5623DD94B05732D ] C:\Windows\System32\drivers\Rt64win7.sys
00:16:58.0122 4136 C:\Windows\System32\drivers\Rt64win7.sys - ok
00:16:58.0137 4136 [ B4421D8CDADC441F76BA39532A3E3414 ] C:\Windows\System32\drivers\athrx.sys
00:16:58.0137 4136 C:\Windows\System32\drivers\athrx.sys - ok
00:16:58.0137 4136 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
00:16:58.0137 4136 C:\Windows\System32\drivers\i8042prt.sys - ok
00:16:58.0153 4136 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
00:16:58.0153 4136 C:\Windows\System32\drivers\vwifibus.sys - ok
00:16:58.0153 4136 [ 9AF482D058BE59CC28BCE52E7C4B747C ] C:\Windows\System32\drivers\HpqKbFiltr.sys
00:16:58.0153 4136 C:\Windows\System32\drivers\HpqKbFiltr.sys - ok
00:16:58.0153 4136 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
00:16:58.0153 4136 C:\Windows\System32\drivers\kbdclass.sys - ok
00:16:58.0168 4136 [ BCF305959B53B200CEB2AD25AD22F8A7 ] C:\Windows\System32\drivers\SynTP.sys
00:16:58.0168 4136 C:\Windows\System32\drivers\SynTP.sys - ok
00:16:58.0168 4136 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
00:16:58.0168 4136 C:\Windows\System32\drivers\usbd.sys - ok
00:16:58.0184 4136 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
00:16:58.0184 4136 C:\Windows\System32\drivers\CmBatt.sys - ok
00:16:58.0184 4136 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
00:16:58.0184 4136 C:\Windows\System32\drivers\mouclass.sys - ok
00:16:58.0184 4136 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
00:16:58.0184 4136 C:\Windows\System32\drivers\CompositeBus.sys - ok
00:16:58.0200 4136 [ AF4DEE5531395DEE72B35B36C9671FD0 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
00:16:58.0200 4136 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
00:16:58.0200 4136 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
00:16:58.0200 4136 C:\Windows\System32\drivers\modem.sys - ok
00:16:58.0215 4136 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] C:\Windows\System32\drivers\rootmdm.sys
00:16:58.0215 4136 C:\Windows\System32\drivers\rootmdm.sys - ok
00:16:58.0215 4136 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
00:16:58.0215 4136 C:\Windows\System32\drivers\agilevpn.sys - ok
00:16:58.0231 4136 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
00:16:58.0231 4136 C:\Windows\System32\drivers\ndistapi.sys - ok
00:16:58.0231 4136 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
00:16:58.0231 4136 C:\Windows\System32\drivers\ndiswan.sys - ok
00:16:58.0231 4136 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
00:16:58.0231 4136 C:\Windows\System32\drivers\rasl2tp.sys - ok
00:16:58.0246 4136 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
00:16:58.0246 4136 C:\Windows\System32\drivers\raspppoe.sys - ok
00:16:58.0246 4136 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
00:16:58.0246 4136 C:\Windows\System32\drivers\raspptp.sys - ok
00:16:58.0262 4136 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
00:16:58.0262 4136 C:\Windows\System32\drivers\rassstp.sys - ok
00:16:58.0262 4136 [ C903D49655B4AAE46673F0AAA6BE0F58 ] C:\Windows\System32\drivers\RimSerial_AMD64.sys
00:16:58.0262 4136 C:\Windows\System32\drivers\RimSerial_AMD64.sys - ok
00:16:58.0278 4136 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
00:16:58.0278 4136 C:\Windows\System32\drivers\ks.sys - ok
00:16:58.0278 4136 [ 6DBD08BC1331C78548298E82C4B667C5 ] C:\Windows\System32\drivers\ew_jubusenum.sys
00:16:58.0278 4136 C:\Windows\System32\drivers\ew_jubusenum.sys - ok
00:16:58.0278 4136 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
00:16:58.0278 4136 C:\Windows\System32\drivers\swenum.sys - ok
00:16:58.0293 4136 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
00:16:58.0293 4136 C:\Windows\System32\drivers\umbus.sys - ok
00:16:58.0293 4136 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
00:16:58.0293 4136 C:\Windows\System32\drivers\usbhub.sys - ok
00:16:58.0309 4136 [ 7F7FE11DF2D67B36DFE5013881619A94 ] C:\Windows\System32\urlmon.dll
00:16:58.0309 4136 C:\Windows\System32\urlmon.dll - ok
00:16:58.0309 4136 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
00:16:58.0309 4136 C:\Windows\System32\shell32.dll - ok
00:16:58.0324 4136 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
00:16:58.0324 4136 C:\Windows\System32\shlwapi.dll - ok
00:16:58.0324 4136 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
00:16:58.0324 4136 C:\Windows\System32\msctf.dll - ok
00:16:58.0324 4136 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
00:16:58.0324 4136 C:\Windows\System32\advapi32.dll - ok
00:16:58.0340 4136 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
00:16:58.0340 4136 C:\Windows\System32\imagehlp.dll - ok
00:16:58.0340 4136 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
00:16:58.0340 4136 C:\Windows\System32\psapi.dll - ok
00:16:58.0356 4136 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
00:16:58.0356 4136 C:\Windows\System32\ws2_32.dll - ok
00:16:58.0356 4136 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
00:16:58.0356 4136 C:\Windows\System32\clbcatq.dll - ok
00:16:58.0356 4136 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
00:16:58.0356 4136 C:\Windows\System32\comdlg32.dll - ok
00:16:58.0371 4136 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
00:16:58.0371 4136 C:\Windows\System32\usp10.dll - ok
00:16:58.0371 4136 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
00:16:58.0371 4136 C:\Windows\System32\msvcrt.dll - ok
00:16:58.0387 4136 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
00:16:58.0387 4136 C:\Windows\System32\setupapi.dll - ok
00:16:58.0387 4136 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
00:16:58.0387 4136 C:\Windows\System32\ole32.dll - ok
00:16:58.0402 4136 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
00:16:58.0402 4136 C:\Windows\System32\rpcrt4.dll - ok
00:16:58.0402 4136 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
00:16:58.0402 4136 C:\Windows\System32\imm32.dll - ok
00:16:58.0402 4136 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
00:16:58.0402 4136 C:\Windows\System32\oleaut32.dll - ok
00:16:58.0418 4136 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
00:16:58.0418 4136 C:\Windows\System32\Wldap32.dll - ok
00:16:58.0418 4136 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
00:16:58.0418 4136 C:\Windows\System32\normaliz.dll - ok
00:16:58.0434 4136 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
00:16:58.0434 4136 C:\Windows\System32\nsi.dll - ok
00:16:58.0434 4136 [ 8EA68FD3780DDDD5072F8CB830B3CB3D ] C:\Windows\System32\wininet.dll
00:16:58.0434 4136 C:\Windows\System32\wininet.dll - ok
00:16:58.0434 4136 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll
00:16:58.0434 4136 C:\Windows\System32\kernel32.dll - ok
00:16:58.0449 4136 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
00:16:58.0449 4136 C:\Windows\System32\lpk.dll - ok
00:16:58.0449 4136 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
00:16:58.0449 4136 C:\Windows\System32\drivers\ndproxy.sys - ok
00:16:58.0465 4136 [ A44DFDB81DC62B11760881175E5B2266 ] C:\Windows\System32\drivers\CHDRT64.sys
00:16:58.0465 4136 C:\Windows\System32\drivers\CHDRT64.sys - ok
00:16:58.0465 4136 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
00:16:58.0465 4136 C:\Windows\System32\drivers\drmk.sys - ok
00:16:58.0480 4136 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
00:16:58.0480 4136 C:\Windows\System32\drivers\portcls.sys - ok
00:16:58.0480 4136 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
00:16:58.0480 4136 C:\Windows\System32\drivers\ksthunk.sys - ok
00:16:58.0480 4136 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] C:\Windows\System32\drivers\CAXHWAZL.sys
00:16:58.0480 4136 C:\Windows\System32\drivers\CAXHWAZL.sys - ok
00:16:58.0496 4136 [ 26C5D00321937E49B6BC91029947D094 ] C:\Windows\System32\drivers\CAX_DPV.sys
00:16:58.0496 4136 C:\Windows\System32\drivers\CAX_DPV.sys - ok
00:16:58.0496 4136 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] C:\Windows\System32\drivers\CAX_CNXT.sys
00:16:58.0496 4136 C:\Windows\System32\drivers\CAX_CNXT.sys - ok
00:16:58.0512 4136 [ 88A20FA54C73DED4E8DAC764E9130AE9 ] C:\Windows\System32\drivers\IntcHdmi.sys
00:16:58.0512 4136 C:\Windows\System32\drivers\IntcHdmi.sys - ok
00:16:58.0512 4136 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
00:16:58.0512 4136 C:\Windows\System32\user32.dll - ok
00:16:58.0527 4136 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
00:16:58.0527 4136 C:\Windows\System32\drivers\usbccgp.sys - ok
00:16:58.0527 4136 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
00:16:58.0527 4136 C:\Windows\System32\drivers\usbvideo.sys - ok
00:16:58.0527 4136 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
00:16:58.0527 4136 C:\Windows\System32\gdi32.dll - ok
00:16:58.0543 4136 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
00:16:58.0543 4136 C:\Windows\System32\difxapi.dll - ok
00:16:58.0543 4136 [ E10A0704318A6F7E52787D09717D7C2C ] C:\Windows\System32\iertutil.dll
00:16:58.0543 4136 C:\Windows\System32\iertutil.dll - ok
00:16:58.0558 4136 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
00:16:58.0558 4136 C:\Windows\System32\sechost.dll - ok
00:16:58.0558 4136 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll
00:16:58.0558 4136 C:\Windows\System32\wintrust.dll - ok
00:16:58.0574 4136 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
00:16:58.0574 4136 C:\Windows\System32\comctl32.dll - ok
00:16:58.0574 4136 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
00:16:58.0574 4136 C:\Windows\System32\devobj.dll - ok
00:16:58.0590 4136 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll
00:16:58.0590 4136 C:\Windows\System32\crypt32.dll - ok
00:16:58.0590 4136 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll
00:16:58.0590 4136 C:\Windows\System32\KernelBase.dll - ok
00:16:58.0590 4136 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
00:16:58.0590 4136 C:\Windows\System32\cfgmgr32.dll - ok
00:16:58.0605 4136 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
00:16:58.0605 4136 C:\Windows\System32\msasn1.dll - ok
00:16:58.0605 4136 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
00:16:58.0605 4136 C:\Windows\SysWOW64\normaliz.dll - ok
00:16:58.0621 4136 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
00:16:58.0621 4136 C:\Windows\System32\drivers\dxapi.sys - ok
00:16:58.0621 4136 [ F0D6864A7D52CE137E0A9D24795C3F0E ] C:\Windows\System32\win32k.sys
00:16:58.0621 4136 C:\Windows\System32\win32k.sys - ok
00:16:58.0636 4136 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
00:16:58.0636 4136 C:\Windows\System32\csrss.exe - ok
00:16:58.0636 4136 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
00:16:58.0636 4136 C:\Windows\System32\basesrv.dll - ok
00:16:58.0636 4136 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
00:16:58.0636 4136 C:\Windows\System32\csrsrv.dll - ok
00:16:58.0652 4136 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll
00:16:58.0652 4136 C:\Windows\System32\winsrv.dll - ok
00:16:58.0652 4136 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
00:16:58.0652 4136 C:\Windows\System32\drivers\monitor.sys - ok
00:16:58.0668 4136 [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
00:16:58.0668 4136 C:\Windows\System32\drivers\udfs.sys - ok
00:16:58.0668 4136 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
00:16:58.0668 4136 C:\Windows\System32\sxssrv.dll - ok
00:16:58.0668 4136 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
00:16:58.0668 4136 C:\Windows\System32\tsddd.dll - ok
00:16:58.0683 4136 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
00:16:58.0683 4136 C:\Windows\System32\wininit.exe - ok
00:16:58.0683 4136 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
00:16:58.0683 4136 C:\Windows\System32\profapi.dll - ok
00:16:58.0699 4136 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
00:16:58.0699 4136 C:\Windows\System32\cdd.dll - ok
00:16:58.0699 4136 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
00:16:58.0699 4136 C:\Windows\System32\KBDUS.DLL - ok
00:16:58.0699 4136 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
00:16:58.0699 4136 C:\Windows\System32\RpcRtRemote.dll - ok
00:16:58.0714 4136 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
00:16:58.0714 4136 C:\Windows\System32\sxs.dll - ok
00:16:58.0714 4136 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
00:16:58.0714 4136 C:\Windows\System32\WlS0WndH.dll - ok
00:16:58.0730 4136 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
00:16:58.0730 4136 C:\Windows\System32\cryptbase.dll - ok
00:16:58.0730 4136 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
00:16:58.0730 4136 C:\Windows\System32\apphelp.dll - ok
00:16:58.0746 4136 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
00:16:58.0746 4136 C:\Windows\System32\lsass.exe - ok
00:16:58.0746 4136 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
00:16:58.0746 4136 C:\Windows\System32\lsm.exe - ok
00:16:58.0746 4136 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
00:16:58.0746 4136 C:\Windows\System32\services.exe - ok
00:16:58.0761 4136 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
00:16:58.0761 4136 C:\Windows\System32\lsasrv.dll - ok
00:16:58.0761 4136 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
00:16:58.0761 4136 C:\Windows\System32\sspisrv.dll - ok
00:16:58.0777 4136 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
00:16:58.0777 4136 C:\Windows\System32\sspicli.dll - ok
00:16:58.0777 4136 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
00:16:58.0777 4136 C:\Windows\System32\scesrv.dll - ok
00:16:58.0777 4136 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
00:16:58.0792 4136 C:\Windows\System32\scext.dll - ok
00:16:58.0792 4136 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
00:16:58.0792 4136 C:\Windows\System32\secur32.dll - ok
00:16:58.0792 4136 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
00:16:58.0792 4136 C:\Windows\System32\samsrv.dll - ok
00:16:58.0808 4136 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
00:16:58.0808 4136 C:\Windows\System32\srvcli.dll - ok
00:16:58.0808 4136 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
00:16:58.0808 4136 C:\Windows\System32\sysntfy.dll - ok
00:16:58.0824 4136 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
00:16:58.0824 4136 C:\Windows\System32\wmsgapi.dll - ok
00:16:58.0824 4136 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
00:16:58.0824 4136 C:\Windows\System32\winlogon.exe - ok
00:16:58.0824 4136 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
00:16:58.0824 4136 C:\Windows\System32\cryptdll.dll - ok
00:16:58.0839 4136 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
00:16:58.0839 4136 C:\Windows\System32\wevtapi.dll - ok
00:16:58.0839 4136 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
00:16:58.0839 4136 C:\Windows\System32\authz.dll - ok
00:16:58.0855 4136 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
00:16:58.0855 4136 C:\Windows\System32\cngaudit.dll - ok
00:16:58.0855 4136 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
00:16:58.0855 4136 C:\Windows\System32\winsta.dll - ok
00:16:58.0870 4136 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
00:16:58.0870 4136 C:\Windows\System32\bcrypt.dll - ok
00:16:58.0870 4136 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
00:16:58.0870 4136 C:\Windows\System32\ncrypt.dll - ok
00:16:58.0870 4136 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
00:16:58.0870 4136 C:\Windows\System32\msprivs.dll - ok
00:16:58.0886 4136 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
00:16:58.0886 4136 C:\Windows\System32\netjoin.dll - ok
00:16:58.0886 4136 [ 4AC74A462F3A0506B929F599B5E1B1FB ] C:\Windows\System32\atmfd.dll
00:16:58.0886 4136 C:\Windows\System32\atmfd.dll - ok
00:16:58.0902 4136 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
00:16:58.0902 4136 C:\Windows\System32\negoexts.dll - ok
00:16:58.0902 4136 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll
00:16:58.0902 4136 C:\Windows\System32\kerberos.dll - ok
00:16:58.0902 4136 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
00:16:58.0917 4136 C:\Windows\System32\cryptsp.dll - ok
00:16:58.0917 4136 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
00:16:58.0917 4136 C:\Windows\System32\mswsock.dll - ok
00:16:58.0917 4136 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
00:16:58.0917 4136 C:\Windows\System32\version.dll - ok
00:16:58.0933 4136 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
00:16:58.0933 4136 C:\Windows\System32\msv1_0.dll - ok
00:16:58.0933 4136 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
00:16:58.0933 4136 C:\Windows\System32\wship6.dll - ok
00:16:58.0948 4136 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
00:16:58.0948 4136 C:\Windows\System32\netlogon.dll - ok
00:16:58.0948 4136 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
00:16:58.0948 4136 C:\Windows\System32\dnsapi.dll - ok
00:16:58.0948 4136 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
00:16:58.0948 4136 C:\Windows\System32\logoncli.dll - ok
00:16:58.0964 4136 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
00:16:58.0964 4136 C:\Windows\System32\schannel.dll - ok
00:16:58.0964 4136 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
00:16:58.0964 4136 C:\Windows\System32\wdigest.dll - ok
00:16:58.0980 4136 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
00:16:58.0980 4136 C:\Windows\System32\rsaenh.dll - ok
00:16:58.0980 4136 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
00:16:58.0980 4136 C:\Windows\System32\TSpkg.dll - ok
00:16:58.0980 4136 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
00:16:58.0980 4136 C:\Windows\System32\pku2u.dll - ok
00:16:58.0995 4136 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
00:16:58.0995 4136 C:\Windows\System32\LIVESSP.DLL - ok
00:16:58.0995 4136 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
00:16:58.0995 4136 C:\Windows\System32\bcryptprimitives.dll - ok
00:16:59.0011 4136 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
00:16:59.0011 4136 C:\Windows\System32\credssp.dll - ok
00:16:59.0011 4136 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
00:16:59.0011 4136 C:\Windows\System32\efslsaext.dll - ok
00:16:59.0026 4136 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
00:16:59.0026 4136 C:\Windows\System32\scecli.dll - ok
00:16:59.0026 4136 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
00:16:59.0026 4136 C:\Windows\System32\ubpm.dll - ok
00:16:59.0026 4136 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
00:16:59.0026 4136 C:\Windows\System32\svchost.exe - ok
00:16:59.0042 4136 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
00:16:59.0042 4136 C:\Windows\System32\umpnpmgr.dll - ok
00:16:59.0042 4136 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
00:16:59.0042 4136 C:\Windows\System32\SPInf.dll - ok
00:16:59.0058 4136 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
00:16:59.0058 4136 C:\Windows\System32\devrtl.dll - ok
00:16:59.0058 4136 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
00:16:59.0058 4136 C:\Windows\System32\userenv.dll - ok
00:16:59.0058 4136 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
00:16:59.0073 4136 C:\Windows\System32\gpapi.dll - ok
00:16:59.0073 4136 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
00:16:59.0073 4136 C:\Windows\System32\umpo.dll - ok
00:16:59.0073 4136 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
00:16:59.0073 4136 C:\Windows\System32\pcwum.dll - ok
00:16:59.0089 4136 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
00:16:59.0089 4136 C:\Windows\System32\powrprof.dll - ok
00:16:59.0089 4136 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
00:16:59.0089 4136 C:\Windows\System32\drivers\luafv.sys - ok
00:16:59.0104 4136 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
00:16:59.0104 4136 C:\Windows\System32\drivers\WUDFPf.sys - ok
00:16:59.0104 4136 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
00:16:59.0104 4136 C:\Windows\System32\rpcss.dll - ok
00:16:59.0104 4136 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
00:16:59.0104 4136 C:\Windows\System32\RpcEpMap.dll - ok
00:16:59.0120 4136 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
00:16:59.0120 4136 C:\Windows\System32\wshqos.dll - ok
00:16:59.0120 4136 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
00:16:59.0120 4136 C:\Windows\System32\WSHTCPIP.DLL - ok
00:16:59.0136 4136 [ 267DE30D38FBB8ABB40DA0A395280215 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
00:16:59.0136 4136 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
00:16:59.0136 4136 [ 59FAAF2C83C8169EA20F9E335E418907 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
00:16:59.0136 4136 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
00:16:59.0151 4136 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
00:16:59.0151 4136 C:\Windows\System32\FirewallAPI.dll - ok
00:16:59.0151 4136 [ 27CE807EE1E61A30D136D2C59D4B1627 ] C:\Program Files\Microsoft Security Client\MpClient.dll
00:16:59.0151 4136 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
00:16:59.0151 4136 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
00:16:59.0151 4136 C:\Windows\System32\wtsapi32.dll - ok
00:16:59.0167 4136 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
00:16:59.0167 4136 C:\Windows\System32\ntmarta.dll - ok
00:16:59.0167 4136 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
00:16:59.0167 4136 C:\Windows\System32\LogonUI.exe - ok
00:16:59.0182 4136 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
00:16:59.0182 4136 C:\Windows\System32\authui.dll - ok
00:16:59.0182 4136 [ 948BF310B8AE0DA1821175FF027B3391 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
00:16:59.0182 4136 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
00:16:59.0198 4136 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
00:16:59.0198 4136 C:\Windows\System32\wevtsvc.dll - ok
00:16:59.0198 4136 [ 658744929D634AA782DD0DF17004C3AA ] C:\Program Files\Microsoft Security Client\MpRTP.dll
00:16:59.0198 4136 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
00:16:59.0214 4136 [ 077567CE3D35E129A984D707928D70F1 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
00:16:59.0214 4136 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
00:16:59.0214 4136 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
00:16:59.0214 4136 C:\Windows\System32\fltLib.dll - ok
00:16:59.0214 4136 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
00:16:59.0214 4136 C:\Windows\System32\mmcss.dll - ok
00:16:59.0229 4136 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
00:16:59.0229 4136 C:\Windows\System32\audiosrv.dll - ok
00:16:59.0245 4136 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
00:16:59.0245 4136 C:\Windows\System32\MMDevAPI.dll - ok
00:16:59.0245 4136 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
00:16:59.0245 4136 C:\Windows\System32\avrt.dll - ok
00:16:59.0260 4136 [ 94C66EDEDCDB6A126880472F9A704D8E ] C:\Windows\System32\drivers\MpFilter.sys
00:16:59.0260 4136 C:\Windows\System32\drivers\MpFilter.sys - ok
00:16:59.0260 4136 [ 2E3FF871D8208A4D0C0020B97BC4C961 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
00:16:59.0260 4136 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
00:16:59.0276 4136 [ 4D7CD1EA9562B93780423956C84ABA1F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F5BBB43-7FC5-4044-9957-74BB9B7C1226}\mpengine.dll
00:16:59.0276 4136 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F5BBB43-7FC5-4044-9957-74BB9B7C1226}\mpengine.dll - ok
00:16:59.0276 4136 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
00:16:59.0276 4136 C:\Windows\System32\propsys.dll - ok
00:16:59.0292 4136 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
00:16:59.0292 4136 C:\Windows\System32\netprofm.dll - ok
00:16:59.0292 4136 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
00:16:59.0292 4136 C:\Windows\System32\audiodg.exe - ok
00:16:59.0292 4136 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
00:16:59.0292 4136 C:\Windows\System32\gpsvc.dll - ok
00:16:59.0307 4136 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
00:16:59.0307 4136 C:\Windows\System32\cryptui.dll - ok
00:16:59.0307 4136 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
00:16:59.0307 4136 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
00:16:59.0323 4136 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
00:16:59.0323 4136 C:\Windows\System32\shacct.dll - ok
00:16:59.0323 4136 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
00:16:59.0323 4136 C:\Windows\System32\samlib.dll - ok
00:16:59.0338 4136 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
00:16:59.0338 4136 C:\Windows\System32\uxtheme.dll - ok
00:16:59.0338 4136 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
00:16:59.0338 4136 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
00:16:59.0354 4136 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
00:16:59.0354 4136 C:\Windows\System32\dui70.dll - ok
00:16:59.0354 4136 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
00:16:59.0354 4136 C:\Windows\System32\duser.dll - ok
00:16:59.0354 4136 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
00:16:59.0354 4136 C:\Windows\System32\SndVolSSO.dll - ok
00:16:59.0370 4136 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
00:16:59.0370 4136 C:\Windows\System32\dwmapi.dll - ok
00:16:59.0370 4136 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
00:16:59.0370 4136 C:\Windows\System32\hid.dll - ok
00:16:59.0385 4136 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
00:16:59.0385 4136 C:\Windows\System32\xmllite.dll - ok
00:16:59.0385 4136 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
00:16:59.0385 4136 C:\Windows\System32\adtschema.dll - ok
00:16:59.0401 4136 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
00:16:59.0401 4136 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
00:16:59.0401 4136 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
00:16:59.0401 4136 C:\Windows\System32\nlaapi.dll - ok
00:16:59.0401 4136 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
00:16:59.0401 4136 C:\Windows\System32\profsvc.dll - ok
00:16:59.0416 4136 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
00:16:59.0416 4136 C:\Windows\System32\atl.dll - ok
00:16:59.0416 4136 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
00:16:59.0416 4136 C:\Windows\System32\themeservice.dll - ok
00:16:59.0432 4136 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
00:16:59.0432 4136 C:\Windows\System32\dsrole.dll - ok
00:16:59.0432 4136 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
00:16:59.0432 4136 C:\Windows\System32\slc.dll - ok
00:16:59.0448 4136 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
00:16:59.0448 4136 C:\Windows\System32\es.dll - ok
00:16:59.0448 4136 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
00:16:59.0448 4136 C:\Windows\System32\Sens.dll - ok
00:16:59.0448 4136 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
00:16:59.0448 4136 C:\Windows\System32\uxsms.dll - ok
00:16:59.0463 4136 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
00:16:59.0463 4136 C:\Windows\System32\WindowsCodecs.dll - ok
00:16:59.0463 4136 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
00:16:59.0463 4136 C:\Windows\System32\winmm.dll - ok
00:16:59.0479 4136 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
00:16:59.0479 4136 C:\Windows\System32\WUDFSvc.dll - ok
00:16:59.0479 4136 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
00:16:59.0479 4136 C:\Windows\System32\WUDFPlatform.dll - ok
00:16:59.0479 4136 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
00:16:59.0479 4136 C:\Windows\System32\ksuser.dll - ok
00:16:59.0494 4136 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
00:16:59.0494 4136 C:\Windows\System32\wdmaud.drv - ok
00:16:59.0494 4136 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
00:16:59.0494 4136 C:\Windows\System32\drivers\lltdio.sys - ok
00:16:59.0510 4136 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
00:16:59.0510 4136 C:\Windows\System32\winbrand.dll - ok
00:16:59.0510 4136 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
00:16:59.0510 4136 C:\Windows\System32\VaultCredProvider.dll - ok
00:16:59.0510 4136 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
00:16:59.0510 4136 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
00:16:59.0526 4136 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
00:16:59.0526 4136 C:\Windows\System32\BioCredProv.dll - ok
00:16:59.0526 4136 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
00:16:59.0526 4136 C:\Windows\System32\winbio.dll - ok
00:16:59.0541 4136 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
00:16:59.0541 4136 C:\Windows\System32\credui.dll - ok
00:16:59.0541 4136 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
00:16:59.0541 4136 C:\Windows\System32\netapi32.dll - ok
00:16:59.0557 4136 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
00:16:59.0557 4136 C:\Windows\System32\vaultcli.dll - ok
00:16:59.0557 4136 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
00:16:59.0557 4136 C:\Windows\System32\netutils.dll - ok
00:16:59.0557 4136 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
00:16:59.0557 4136 C:\Windows\System32\samcli.dll - ok
00:16:59.0572 4136 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
00:16:59.0572 4136 C:\Windows\System32\wkscli.dll - ok
00:16:59.0572 4136 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
00:16:59.0572 4136 C:\Windows\System32\certCredProvider.dll - ok
00:16:59.0588 4136 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
00:16:59.0588 4136 C:\Windows\System32\drivers\nwifi.sys - ok
00:16:59.0588 4136 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
00:16:59.0588 4136 C:\Windows\System32\drivers\ndisuio.sys - ok
00:16:59.0604 4136 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
00:16:59.0604 4136 C:\Windows\System32\drivers\rspndr.sys - ok
00:16:59.0604 4136 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
00:16:59.0604 4136 C:\Windows\System32\lmhsvc.dll - ok
00:16:59.0604 4136 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
00:16:59.0604 4136 C:\Windows\System32\nsisvc.dll - ok
00:16:59.0619 4136 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
00:16:59.0619 4136 C:\Windows\System32\dnsrslvr.dll - ok
00:16:59.0619 4136 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
00:16:59.0619 4136 C:\Windows\System32\keyiso.dll - ok
00:16:59.0635 4136 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
00:16:59.0635 4136 C:\Windows\System32\winnsi.dll - ok
00:16:59.0635 4136 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
00:16:59.0635 4136 C:\Windows\System32\eapsvc.dll - ok
00:16:59.0635 4136 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
00:16:59.0635 4136 C:\Windows\System32\IPHLPAPI.DLL - ok
00:16:59.0650 4136 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
00:16:59.0650 4136 C:\Windows\System32\nrpsrv.dll - ok
00:16:59.0650 4136 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
00:16:59.0650 4136 C:\Windows\System32\nlasvc.dll - ok
00:16:59.0666 4136 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
00:16:59.0666 4136 C:\Windows\System32\dhcpcore.dll - ok
00:16:59.0666 4136 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
00:16:59.0666 4136 C:\Windows\System32\dhcpcore6.dll - ok
00:16:59.0682 4136 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
00:16:59.0682 4136 C:\Windows\System32\eapphost.dll - ok
00:16:59.0682 4136 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
00:16:59.0682 4136 C:\Windows\System32\umb.dll - ok
00:16:59.0682 4136 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
00:16:59.0682 4136 C:\Windows\System32\wlansvc.dll - ok
00:16:59.0697 4136 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
00:16:59.0697 4136 C:\Windows\System32\dhcpcsvc.dll - ok
00:16:59.0697 4136 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
00:16:59.0697 4136 C:\Windows\System32\ncsi.dll - ok
00:16:59.0713 4136 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
00:16:59.0713 4136 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
00:16:59.0713 4136 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
00:16:59.0713 4136 C:\Windows\System32\winhttp.dll - ok
00:16:59.0728 4136 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
00:16:59.0728 4136 C:\Windows\System32\webio.dll - ok
00:16:59.0728 4136 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
00:16:59.0728 4136 C:\Windows\System32\FWPUCLNT.DLL - ok
00:16:59.0728 4136 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
00:16:59.0728 4136 C:\Windows\System32\dhcpcsvc6.dll - ok
00:16:59.0744 4136 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
00:16:59.0744 4136 C:\Windows\System32\dnsext.dll - ok
00:16:59.0744 4136 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
00:16:59.0744 4136 C:\Windows\System32\ssdpapi.dll - ok
00:16:59.0760 4136 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
00:16:59.0760 4136 C:\Windows\System32\comres.dll - ok
00:16:59.0760 4136 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
00:16:59.0760 4136 C:\Windows\System32\MPSSVC.dll - ok
00:16:59.0760 4136 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
00:16:59.0760 4136 C:\Windows\System32\rasplap.dll - ok
00:16:59.0775 4136 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
00:16:59.0775 4136 C:\Windows\System32\rasapi32.dll - ok
00:16:59.0775 4136 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
00:16:59.0775 4136 C:\Windows\System32\rasman.dll - ok
00:16:59.0791 4136 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
00:16:59.0791 4136 C:\Windows\System32\rtutils.dll - ok
00:16:59.0791 4136 [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
00:16:59.0791 4136 C:\Windows\System32\termsrv.dll - ok
00:16:59.0791 4136 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
00:16:59.0791 4136 C:\Windows\System32\wlanmsm.dll - ok
00:16:59.0806 4136 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
00:16:59.0806 4136 C:\Windows\System32\wlansec.dll - ok
00:16:59.0806 4136 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
00:16:59.0806 4136 C:\Windows\System32\onex.dll - ok
00:16:59.0822 4136 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
00:16:59.0822 4136 C:\Windows\System32\eappcfg.dll - ok
00:16:59.0822 4136 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
00:16:59.0822 4136 C:\Windows\System32\eappprxy.dll - ok
00:16:59.0838 4136 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
00:16:59.0838 4136 C:\Windows\System32\l2gpstore.dll - ok
00:16:59.0838 4136 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
00:16:59.0838 4136 C:\Windows\System32\wlgpclnt.dll - ok
00:16:59.0838 4136 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
00:16:59.0838 4136 C:\Windows\System32\WinSCard.dll - ok
00:16:59.0853 4136 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
00:16:59.0853 4136 C:\Windows\System32\wlanutil.dll - ok
00:16:59.0853 4136 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
00:16:59.0853 4136 C:\Windows\System32\msxml6.dll - ok
00:16:59.0869 4136 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
00:16:59.0869 4136 C:\Windows\System32\UXInit.dll - ok
00:16:59.0869 4136 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
00:16:59.0869 4136 C:\Windows\System32\AudioSes.dll - ok
00:16:59.0884 4136 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
00:16:59.0884 4136 C:\Windows\System32\msacm32.drv - ok
00:16:59.0884 4136 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
00:16:59.0884 4136 C:\Windows\System32\midimap.dll - ok
00:16:59.0884 4136 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
00:16:59.0884 4136 C:\Windows\System32\msacm32.dll - ok
00:16:59.0900 4136 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
00:16:59.0900 4136 C:\Windows\System32\AudioEng.dll - ok
00:16:59.0900 4136 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
00:16:59.0900 4136 C:\Windows\System32\imageres.dll - ok
00:16:59.0916 4136 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
00:16:59.0916 4136 C:\Windows\System32\AUDIOKSE.dll - ok
00:16:59.0916 4136 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
00:16:59.0916 4136 C:\Windows\System32\wmi.dll - ok
00:16:59.0916 4136 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] C:\Windows\System32\wwansvc.dll
00:16:59.0916 4136 C:\Windows\System32\wwansvc.dll - ok
00:16:59.0931 4136 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
00:16:59.0931 4136 C:\Windows\System32\shsvcs.dll - ok
00:16:59.0931 4136 [ DCE4C04469AE79ED613C250A7F129286 ] C:\Windows\System32\CX64PP19.dll
00:16:59.0931 4136 C:\Windows\System32\CX64PP19.dll - ok
00:16:59.0947 4136 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
00:16:59.0947 4136 C:\Windows\System32\WMALFXGFXDSP.dll - ok
00:16:59.0947 4136 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
00:16:59.0947 4136 C:\Windows\System32\mfplat.dll - ok
00:16:59.0962 4136 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
00:16:59.0962 4136 C:\Windows\System32\drivers\fltMgr.sys - ok
00:16:59.0962 4136 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
00:16:59.0962 4136 C:\Windows\System32\PSHED.DLL - ok
00:16:59.0962 4136 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
00:16:59.0962 4136 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
00:16:59.0978 4136 [ 623FEE8BDC376E48A6F161F82FF6279E ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
00:16:59.0978 4136 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
00:16:59.0978 4136 [ B6DD2A245268D961CC163C21457201D4 ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
00:16:59.0978 4136 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
00:16:59.0994 4136 [ 448BF22538F1DFCB3412AE2B1CF123A9 ] C:\Windows\System32\conhost.exe
00:16:59.0994 4136 C:\Windows\System32\conhost.exe - ok
00:16:59.0994 4136 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
00:16:59.0994 4136 C:\Windows\System32\netcfgx.dll - ok
00:17:00.0009 4136 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
00:17:00.0009 4136 C:\Windows\System32\wscapi.dll - ok
00:17:00.0009 4136 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
00:17:00.0009 4136 C:\Windows\System32\schedsvc.dll - ok
00:17:00.0025 4136 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
00:17:00.0025 4136 C:\Windows\System32\ktmw32.dll - ok
00:17:00.0025 4136 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
00:17:00.0025 4136 C:\Windows\System32\taskcomp.dll - ok
00:17:00.0025 4136 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
00:17:00.0025 4136 C:\Windows\System32\fveapi.dll - ok
00:17:00.0040 4136 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
00:17:00.0040 4136 C:\Windows\System32\fvecerts.dll - ok
00:17:00.0040 4136 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
00:17:00.0040 4136 C:\Windows\System32\tbs.dll - ok
00:17:00.0040 4136 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
00:17:00.0040 4136 C:\Windows\System32\cabinet.dll - ok
00:17:00.0056 4136 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
00:17:00.0056 4136 C:\Windows\System32\wscisvif.dll - ok
00:17:00.0072 4136 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
00:17:00.0072 4136 C:\Windows\System32\wscproxystub.dll - ok
00:17:00.0072 4136 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
00:17:00.0072 4136 C:\Windows\System32\wiarpc.dll - ok
00:17:00.0087 4136 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
00:17:00.0087 4136 C:\Windows\System32\drivers\http.sys - ok
00:17:00.0087 4136 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
00:17:00.0087 4136 C:\Windows\System32\spoolsv.exe - ok
00:17:00.0103 4136 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
00:17:00.0103 4136 C:\Windows\System32\BFE.DLL - ok
00:17:00.0103 4136 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
00:17:00.0103 4136 C:\Windows\System32\p2pcollab.dll - ok
00:17:00.0118 4136 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
00:17:00.0118 4136 C:\Windows\System32\QAGENTRT.DLL - ok
00:17:00.0118 4136 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
00:17:00.0118 4136 C:\Windows\System32\fveui.dll - ok
00:17:00.0134 4136 [ 187A29743880CE49D6A2AF372AEFC7DE ] C:\Program Files\Microsoft Security Client\MsseWat.dll
00:17:00.0134 4136 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
00:17:00.0150 4136 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
00:17:00.0150 4136 C:\Windows\System32\slwga.dll - ok
00:17:00.0150 4136 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
00:17:00.0150 4136 C:\Windows\System32\sppc.dll - ok
00:17:00.0165 4136 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
00:17:00.0165 4136 C:\Windows\System32\drivers\bowser.sys - ok
00:17:00.0181 4136 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
00:17:00.0181 4136 C:\Windows\System32\drivers\mpsdrv.sys - ok
00:17:00.0181 4136 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
00:17:00.0181 4136 C:\Windows\System32\drivers\mrxsmb.sys - ok
00:17:00.0196 4136 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
00:17:00.0196 4136 C:\Windows\System32\drivers\mrxsmb10.sys - ok
00:17:00.0196 4136 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
00:17:00.0196 4136 C:\Windows\System32\drivers\mrxsmb20.sys - ok
00:17:00.0212 4136 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
00:17:00.0212 4136 C:\Windows\System32\wkssvc.dll - ok
00:17:00.0228 4136 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:17:00.0228 4136 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
00:17:00.0243 4136 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
00:17:00.0243 4136 C:\Windows\System32\wfapigp.dll - ok
00:17:00.0243 4136 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
00:17:00.0243 4136 C:\Windows\SysWOW64\ntdll.dll - ok
00:17:00.0259 4136 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
00:17:00.0259 4136 C:\Windows\System32\mscms.dll - ok
00:17:00.0274 4136 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll
00:17:00.0274 4136 C:\Windows\System32\wow64.dll - ok
00:17:00.0274 4136 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll
00:17:00.0274 4136 C:\Windows\System32\wow64win.dll - ok
00:17:00.0274 4136 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll
00:17:00.0274 4136 C:\Windows\System32\wow64cpu.dll - ok
00:17:00.0290 4136 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
00:17:00.0290 4136 C:\Windows\System32\pcasvc.dll - ok
00:17:00.0290 4136 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
00:17:00.0290 4136 C:\Windows\System32\snmptrap.exe - ok
00:17:00.0306 4136 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
00:17:00.0306 4136 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
00:17:00.0306 4136 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll
00:17:00.0306 4136 C:\Windows\SysWOW64\kernel32.dll - ok
00:17:00.0321 4136 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
00:17:00.0321 4136 C:\Windows\System32\provsvc.dll - ok
00:17:00.0321 4136 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
00:17:00.0321 4136 C:\Windows\System32\sstpsvc.dll - ok
00:17:00.0337 4136 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll
00:17:00.0337 4136 C:\Windows\SysWOW64\KernelBase.dll - ok
00:17:00.0337 4136 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
00:17:00.0337 4136 C:\Windows\SysWOW64\user32.dll - ok
00:17:00.0337 4136 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
00:17:00.0337 4136 C:\Windows\SysWOW64\gdi32.dll - ok
00:17:00.0352 4136 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
00:17:00.0352 4136 C:\Windows\SysWOW64\lpk.dll - ok
00:17:00.0352 4136 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
00:17:00.0352 4136 C:\Windows\SysWOW64\usp10.dll - ok
00:17:00.0368 4136 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
00:17:00.0368 4136 C:\Windows\SysWOW64\msvcrt.dll - ok
00:17:00.0368 4136 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
00:17:00.0368 4136 C:\Windows\SysWOW64\advapi32.dll - ok
00:17:00.0368 4136 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
00:17:00.0368 4136 C:\Windows\SysWOW64\rpcrt4.dll - ok
00:17:00.0384 4136 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
00:17:00.0384 4136 C:\Windows\SysWOW64\sechost.dll - ok
00:17:00.0384 4136 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
00:17:00.0384 4136 C:\Windows\SysWOW64\cryptbase.dll - ok
00:17:00.0399 4136 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
00:17:00.0399 4136 C:\Windows\SysWOW64\shell32.dll - ok
00:17:00.0399 4136 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
00:17:00.0399 4136 C:\Windows\SysWOW64\sspicli.dll - ok
00:17:00.0415 4136 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
00:17:00.0415 4136 C:\Windows\SysWOW64\shlwapi.dll - ok
00:17:00.0415 4136 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
00:17:00.0415 4136 C:\Windows\SysWOW64\ole32.dll - ok
00:17:00.0415 4136 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
00:17:00.0415 4136 C:\Windows\SysWOW64\oleaut32.dll - ok
00:17:00.0430 4136 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll
00:17:00.0430 4136 C:\Windows\SysWOW64\crypt32.dll - ok
00:17:00.0430 4136 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
00:17:00.0430 4136 C:\Windows\SysWOW64\msasn1.dll - ok
00:17:00.0446 4136 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll
00:17:00.0446 4136 C:\Windows\SysWOW64\wintrust.dll - ok
00:17:00.0446 4136 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
00:17:00.0446 4136 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
00:17:00.0462 4136 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
00:17:00.0462 4136 C:\Windows\SysWOW64\imm32.dll - ok
00:17:00.0462 4136 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
00:17:00.0462 4136 C:\Windows\SysWOW64\msctf.dll - ok
00:17:00.0462 4136 [ F401929EE0CC92BFE7F15161CA535383 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:17:00.0462 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
00:17:00.0477 4136 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
00:17:00.0477 4136 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
00:17:00.0477 4136 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
00:17:00.0477 4136 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
00:17:00.0493 4136 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
00:17:00.0493 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
00:17:00.0493 4136 [ 53A6FFB9FFF5C3E64B64E9B68C31D4E5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
00:17:00.0493 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
00:17:00.0508 4136 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
00:17:00.0508 4136 C:\Windows\SysWOW64\version.dll - ok
00:17:00.0508 4136 [ 67B539D844F804EBAC7A1E3828FDE709 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
00:17:00.0508 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
00:17:00.0524 4136 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
00:17:00.0524 4136 C:\Windows\SysWOW64\ws2_32.dll - ok
00:17:00.0524 4136 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
00:17:00.0524 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
00:17:00.0524 4136 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
00:17:00.0524 4136 C:\Windows\SysWOW64\nsi.dll - ok
00:17:00.0540 4136 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
00:17:00.0540 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
00:17:00.0540 4136 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
00:17:00.0540 4136 C:\Windows\SysWOW64\wsock32.dll - ok
00:17:00.0555 4136 [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
00:17:00.0555 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
00:17:00.0555 4136 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
00:17:00.0555 4136 C:\Windows\SysWOW64\winmm.dll - ok
00:17:00.0555 4136 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
00:17:00.0555 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
00:17:00.0571 4136 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
00:17:00.0571 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
00:17:00.0571 4136 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
00:17:00.0571 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
00:17:00.0586 4136 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
00:17:00.0586 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
00:17:00.0586 4136 [ 3B7D8EAE5E44CBDA4CD772720594F116 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
00:17:00.0586 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
00:17:00.0602 4136 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
00:17:00.0602 4136 C:\Windows\SysWOW64\profapi.dll - ok
00:17:00.0602 4136 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
00:17:00.0602 4136 C:\Windows\SysWOW64\setupapi.dll - ok
00:17:00.0602 4136 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
00:17:00.0602 4136 C:\Windows\SysWOW64\cfgmgr32.dll - ok
00:17:00.0618 4136 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
00:17:00.0618 4136 C:\Windows\SysWOW64\devobj.dll - ok
00:17:00.0618 4136 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
00:17:00.0618 4136 C:\Windows\SysWOW64\userenv.dll - ok
00:17:00.0633 4136 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
00:17:00.0633 4136 C:\Windows\SysWOW64\dnssd.dll - ok
00:17:00.0633 4136 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
00:17:00.0633 4136 C:\Windows\SysWOW64\wtsapi32.dll - ok
00:17:00.0649 4136 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
00:17:00.0649 4136 C:\Windows\SysWOW64\ntmarta.dll - ok
00:17:00.0649 4136 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
00:17:00.0649 4136 C:\Windows\SysWOW64\Wldap32.dll - ok
00:17:00.0649 4136 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
00:17:00.0649 4136 C:\Program Files\Bonjour\mDNSResponder.exe - ok
00:17:00.0664 4136 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
00:17:00.0664 4136 C:\Windows\SysWOW64\mswsock.dll - ok
00:17:00.0664 4136 [ B0BF87F9E247BB0621BCE59EB8CD113F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
00:17:00.0664 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
00:17:00.0680 4136 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
00:17:00.0680 4136 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
00:17:00.0680 4136 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll
00:17:00.0680 4136 C:\Windows\System32\cryptsvc.dll - ok
00:17:00.0696 4136 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
00:17:00.0696 4136 C:\Windows\System32\dps.dll - ok
00:17:00.0696 4136 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
00:17:00.0696 4136 C:\Windows\System32\fdPHost.dll - ok
00:17:00.0696 4136 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
00:17:00.0696 4136 C:\Windows\System32\fdWSD.dll - ok
00:17:00.0711 4136 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll
00:17:00.0711 4136 C:\Windows\System32\cryptnet.dll - ok
00:17:00.0711 4136 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
00:17:00.0711 4136 C:\Windows\System32\IKEEXT.DLL - ok
00:17:00.0727 4136 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
00:17:00.0727 4136 C:\Windows\System32\mlang.dll - ok
00:17:00.0727 4136 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
00:17:00.0727 4136 C:\Windows\System32\vssapi.dll - ok
00:17:00.0742 4136 [ 447256D1C026654C5CD3CC17E7B20631 ] C:\Windows\SysWOW64\XAudio64.dll
00:17:00.0742 4136 C:\Windows\SysWOW64\XAudio64.dll - ok
00:17:00.0742 4136 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
00:17:00.0742 4136 C:\Windows\System32\WSDApi.dll - ok
00:17:00.0742 4136 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
00:17:00.0742 4136 C:\Windows\System32\taskschd.dll - ok
00:17:00.0758 4136 [ 75A97A2C060E72AB49E071E08C7DD2BA ] C:\Windows\SysWOW64\wininet.dll
00:17:00.0758 4136 C:\Windows\SysWOW64\wininet.dll - ok
00:17:00.0758 4136 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
00:17:00.0758 4136 C:\Windows\System32\vpnikeapi.dll - ok
00:17:00.0774 4136 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
00:17:00.0774 4136 C:\Windows\System32\webservices.dll - ok
00:17:00.0774 4136 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
00:17:00.0774 4136 C:\Windows\System32\vsstrace.dll - ok
00:17:00.0789 4136 [ B17ADBBBDC97148D28F995F32C380F2E ] C:\Windows\SysWOW64\iertutil.dll
00:17:00.0789 4136 C:\Windows\SysWOW64\iertutil.dll - ok
00:17:00.0789 4136 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
00:17:00.0789 4136 C:\Windows\System32\fdSSDP.dll - ok
00:17:00.0789 4136 [ 667981F2E7C26275F0694B58EEE303B9 ] C:\Windows\SysWOW64\urlmon.dll
00:17:00.0789 4136 C:\Windows\SysWOW64\urlmon.dll - ok
00:17:00.0805 4136 [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
00:17:00.0805 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
00:17:00.0805 4136 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
00:17:00.0805 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
00:17:00.0820 4136 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
00:17:00.0820 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
00:17:00.0820 4136 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
00:17:00.0820 4136 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
00:17:00.0820 4136 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
00:17:00.0820 4136 C:\Windows\SysWOW64\winnsi.dll - ok
00:17:00.0836 4136 [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
00:17:00.0836 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
00:17:00.0836 4136 [ 3353FA13F36E0694EE92EED9F0225135 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ssleay32.dll
00:17:00.0836 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ssleay32.dll - ok
00:17:00.0852 4136 [ 31FB275F3384353592FC908535B46E18 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\libeay32.dll
00:17:00.0852 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\libeay32.dll - ok
00:17:00.0852 4136 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
00:17:00.0852 4136 C:\Windows\SysWOW64\netapi32.dll - ok
00:17:00.0867 4136 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
00:17:00.0867 4136 C:\Windows\SysWOW64\netutils.dll - ok
00:17:00.0867 4136 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
00:17:00.0867 4136 C:\Windows\SysWOW64\srvcli.dll - ok
00:17:00.0867 4136 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
00:17:00.0867 4136 C:\Windows\SysWOW64\wkscli.dll - ok
00:17:00.0883 4136 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
00:17:00.0883 4136 C:\Windows\SysWOW64\cryptsp.dll - ok
00:17:00.0883 4136 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
00:17:00.0883 4136 C:\Windows\SysWOW64\rsaenh.dll - ok
00:17:00.0898 4136 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
00:17:00.0898 4136 C:\Windows\System32\esent.dll - ok
00:17:00.0898 4136 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
00:17:00.0898 4136 C:\Windows\System32\drivers\USBSTOR.SYS - ok
00:17:00.0914 4136 [ E4F44EC214B3E381E1FC844A02926666 ] C:\Windows\System32\drivers\mdmxsdk.sys
00:17:00.0914 4136 C:\Windows\System32\drivers\mdmxsdk.sys - ok
00:17:00.0914 4136 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
00:17:00.0914 4136 C:\Windows\System32\drivers\PEAuth.sys - ok
00:17:00.0914 4136 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
00:17:00.0914 4136 C:\Windows\System32\netman.dll - ok
00:17:00.0930 4136 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
00:17:00.0930 4136 C:\Windows\System32\aepic.dll - ok
00:17:00.0930 4136 [ 498EB62A160674E793FA40FD65390625 ] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
00:17:00.0930 4136 C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe - ok
00:17:00.0945 4136 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
00:17:00.0945 4136 C:\Windows\System32\sfc.dll - ok
00:17:00.0945 4136 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
00:17:00.0945 4136 C:\Windows\System32\sfc_os.dll - ok
00:17:00.0945 4136 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
00:17:00.0945 4136 C:\Windows\System32\drivers\secdrv.sys - ok
00:17:00.0961 4136 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
00:17:00.0961 4136 C:\Windows\System32\drivers\srvnet.sys - ok
00:17:00.0961 4136 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
00:17:00.0961 4136 C:\Windows\System32\seclogon.dll - ok
00:17:00.0976 4136 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
00:17:00.0976 4136 C:\Windows\SysWOW64\clbcatq.dll - ok
00:17:00.0976 4136 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
00:17:00.0976 4136 C:\Windows\System32\drivers\hidparse.sys - ok
00:17:00.0992 4136 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
00:17:00.0992 4136 C:\Windows\System32\httpapi.dll - ok
00:17:00.0992 4136 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
00:17:00.0992 4136 C:\Windows\System32\ssdpsrv.dll - ok
00:17:00.0992 4136 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
00:17:00.0992 4136 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
00:17:01.0008 4136 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
00:17:01.0008 4136 C:\Windows\System32\drivers\hidclass.sys - ok
00:17:01.0008 4136 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
00:17:01.0008 4136 C:\Windows\System32\drivers\hidusb.sys - ok
00:17:01.0023 4136 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
00:17:01.0023 4136 C:\Windows\System32\wiaservc.dll - ok
00:17:01.0023 4136 [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
00:17:01.0023 4136 C:\Windows\System32\drivers\tcpipreg.sys - ok
00:17:01.0039 4136 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
00:17:01.0039 4136 C:\Windows\System32\sysmain.dll - ok
00:17:01.0039 4136 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
00:17:01.0039 4136 C:\Windows\System32\drivers\kbdhid.sys - ok
00:17:01.0039 4136 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
00:17:01.0039 4136 C:\Windows\System32\tapisrv.dll - ok
00:17:01.0054 4136 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
00:17:01.0054 4136 C:\Windows\System32\drivers\mouhid.sys - ok
00:17:01.0054 4136 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
00:17:01.0054 4136 C:\Windows\System32\wiatrace.dll - ok
00:17:01.0070 4136 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
00:17:01.0070 4136 C:\Windows\System32\icaapi.dll - ok
00:17:01.0070 4136 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
00:17:01.0070 4136 C:\Windows\System32\trkwks.dll - ok
00:17:01.0086 4136 [ 988121D083B7AB61D4A7E244290BAAB0 ] C:\Windows\System32\lsmproxy.dll
00:17:01.0086 4136 C:\Windows\System32\lsmproxy.dll - ok
00:17:01.0086 4136 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:17:01.0086 4136 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
00:17:01.0086 4136 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
00:17:01.0086 4136 C:\Windows\System32\wbem\WMIsvc.dll - ok
00:17:01.0101 4136 [ E377BBA01F34E4183C32E5BBD688CE83 ] C:\Windows\System32\regapi.dll
00:17:01.0101 4136 C:\Windows\System32\regapi.dll - ok
00:17:01.0101 4136 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
00:17:01.0101 4136 C:\Windows\System32\wbemcomn.dll - ok
00:17:01.0117 4136 [ 6D5DCC1579B3961D791ABDE286A1CB5E ] C:\Windows\System32\rdpwsx.dll
00:17:01.0117 4136 C:\Windows\System32\rdpwsx.dll - ok
00:17:01.0117 4136 [ 1B4A711265FEA91259553D7B4E83394B ] C:\Windows\System32\tlscsp.dll
00:17:01.0117 4136 C:\Windows\System32\tlscsp.dll - ok
00:17:01.0117 4136 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
00:17:01.0117 4136 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
00:17:01.0132 4136 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
00:17:01.0132 4136 C:\Windows\System32\wbem\fastprox.dll - ok
00:17:01.0132 4136 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
00:17:01.0132 4136 C:\Windows\System32\wbem\WinMgmtR.dll - ok
00:17:01.0148 4136 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
00:17:01.0148 4136 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
00:17:01.0148 4136 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
00:17:01.0148 4136 C:\Windows\System32\SensApi.dll - ok
00:17:01.0164 4136 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
00:17:01.0164 4136 C:\Windows\System32\ntdsapi.dll - ok
00:17:01.0164 4136 [ 5B236296E233CAA6BF86BE0C6501A224 ] C:\Windows\System32\rdpcorekmts.dll
00:17:01.0164 4136 C:\Windows\System32\rdpcorekmts.dll - ok
00:17:01.0164 4136 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
00:17:01.0164 4136 C:\Windows\System32\wbem\wbemprox.dll - ok
00:17:01.0179 4136 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
00:17:01.0179 4136 C:\Windows\System32\wer.dll - ok
00:17:01.0179 4136 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
00:17:01.0179 4136 C:\Windows\System32\wbem\wbemcore.dll - ok
00:17:01.0195 4136 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] C:\Windows\System32\drivers\tdtcp.sys
00:17:01.0195 4136 C:\Windows\System32\drivers\tdtcp.sys - ok
00:17:01.0195 4136 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] C:\Windows\System32\drivers\tssecsrv.sys
00:17:01.0195 4136 C:\Windows\System32\drivers\tssecsrv.sys - ok
00:17:01.0210 4136 [ E61608AA35E98999AF9AAEEEA6114B0A ] C:\Windows\System32\drivers\rdpwd.sys
00:17:01.0210 4136 C:\Windows\System32\drivers\rdpwd.sys - ok
00:17:01.0210 4136 [ E8F3FA126A06F8E7088F63757112A186 ] C:\Windows\System32\drivers\XAudio64.sys
00:17:01.0210 4136 C:\Windows\System32\drivers\XAudio64.sys - ok
00:17:01.0210 4136 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
00:17:01.0210 4136 C:\Windows\System32\IPBusEnum.dll - ok
00:17:01.0226 4136 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
00:17:01.0226 4136 C:\Windows\System32\drivers\srv2.sys - ok
00:17:01.0226 4136 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
00:17:01.0226 4136 C:\Windows\System32\fundisc.dll - ok
00:17:01.0242 4136 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
00:17:01.0242 4136 C:\Windows\System32\wbem\esscli.dll - ok
00:17:01.0242 4136 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] C:\Windows\System32\Mcx2Svc.dll
00:17:01.0242 4136 C:\Windows\System32\Mcx2Svc.dll - ok
00:17:01.0257 4136 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
00:17:01.0257 4136 C:\Windows\ehome\ehtrace.dll - ok
00:17:01.0257 4136 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
00:17:01.0257 4136 C:\Windows\System32\drivers\srv.sys - ok
00:17:01.0257 4136 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
00:17:01.0257 4136 C:\Windows\System32\rasmans.dll - ok
00:17:01.0273 4136 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
00:17:01.0273 4136 C:\Windows\System32\wbem\wbemsvc.dll - ok
00:17:01.0273 4136 [ 08F0BE836428436724EE15964AE8A2E1 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
00:17:01.0273 4136 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
00:17:01.0288 4136 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
00:17:01.0288 4136 C:\Windows\System32\fdPnp.dll - ok
00:17:01.0288 4136 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
00:17:01.0288 4136 C:\Windows\System32\msxml3.dll - ok
00:17:01.0288 4136 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
00:17:01.0288 4136 C:\Windows\System32\fdProxy.dll - ok
00:17:01.0304 4136 [ A34A587FFFD45FA649FBA6D03784D257 ] C:\Windows\System32\iphlpsvc.dll
00:17:01.0304 4136 C:\Windows\System32\iphlpsvc.dll - ok
00:17:01.0304 4136 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
00:17:01.0304 4136 C:\Windows\System32\sqmapi.dll - ok
00:17:01.0320 4136 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
00:17:01.0320 4136 C:\Windows\System32\wdscore.dll - ok
00:17:01.0320 4136 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
00:17:01.0320 4136 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
00:17:01.0335 4136 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
00:17:01.0335 4136 C:\Windows\System32\browser.dll - ok
00:17:01.0335 4136 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
00:17:01.0335 4136 C:\Windows\System32\rastapi.dll - ok
00:17:01.0335 4136 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
00:17:01.0335 4136 C:\Windows\System32\srvsvc.dll - ok
00:17:01.0351 4136 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
00:17:01.0351 4136 C:\Windows\System32\tapi32.dll - ok
00:17:01.0351 4136 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
00:17:01.0351 4136 C:\Windows\System32\netmsg.dll - ok
00:17:01.0366 4136 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
00:17:01.0366 4136 C:\Windows\System32\wbem\wmiutils.dll - ok
00:17:01.0366 4136 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
00:17:01.0366 4136 C:\Windows\System32\unimdm.tsp - ok
00:17:01.0366 4136 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
00:17:01.0366 4136 C:\Windows\System32\wbem\repdrvfs.dll - ok
00:17:01.0382 4136 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
00:17:01.0382 4136 C:\Windows\System32\hnetcfg.dll - ok
00:17:01.0382 4136 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
00:17:01.0382 4136 C:\Windows\System32\clusapi.dll - ok
00:17:01.0398 4136 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
00:17:01.0398 4136 C:\Windows\System32\sscore.dll - ok
00:17:01.0398 4136 [ C1446A66BB89FC3AA2485C67562247DA ] C:\Windows\System32\modemui.dll
00:17:01.0398 4136 C:\Windows\System32\modemui.dll - ok
00:17:01.0413 4136 [ 2472BDF30C62F3E81AE27A968C25608C ] C:\Windows\System32\unimdmat.dll
00:17:01.0413 4136 C:\Windows\System32\unimdmat.dll - ok
00:17:01.0413 4136 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
00:17:01.0413 4136 C:\Windows\System32\uniplat.dll - ok
00:17:01.0413 4136 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
00:17:01.0413 4136 C:\Windows\System32\resutils.dll - ok
00:17:01.0429 4136 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
00:17:01.0429 4136 C:\Windows\System32\nci.dll - ok
00:17:01.0429 4136 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
00:17:01.0429 4136 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
00:17:01.0444 4136 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
00:17:01.0444 4136 C:\Windows\System32\kmddsp.tsp - ok
00:17:01.0444 4136 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
00:17:01.0444 4136 C:\Windows\System32\hidphone.tsp - ok
00:17:01.0460 4136 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
00:17:01.0460 4136 C:\Windows\System32\ndptsp.tsp - ok
00:17:01.0460 4136 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
00:17:01.0460 4136 C:\Program Files\Bonjour\mdnsNSP.dll - ok
00:17:01.0460 4136 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
00:17:01.0460 4136 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
00:17:01.0476 4136 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
00:17:01.0476 4136 C:\Windows\System32\ncobjapi.dll - ok
00:17:01.0476 4136 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
00:17:01.0476 4136 C:\Windows\System32\rasppp.dll - ok
00:17:01.0491 4136 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
00:17:01.0491 4136 C:\Windows\System32\vpnike.dll - ok
00:17:01.0491 4136 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
00:17:01.0491 4136 C:\Windows\System32\wbem\wbemess.dll - ok
00:17:01.0491 4136 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
00:17:01.0507 4136 C:\Windows\System32\raschap.dll - ok
00:17:01.0507 4136 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
00:17:01.0507 4136 C:\Windows\System32\ipnathlp.dll - ok
00:17:01.0507 4136 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
00:17:01.0507 4136 C:\Windows\System32\mprapi.dll - ok
00:17:01.0522 4136 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
00:17:01.0522 4136 C:\Windows\System32\netshell.dll - ok
00:17:01.0522 4136 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
00:17:01.0522 4136 C:\Windows\System32\rasadhlp.dll - ok
00:17:01.0538 4136 [ F17D1D393BBC69C5322FBFAFACA28C7F ] C:\Windows\System32\certprop.dll
00:17:01.0538 4136 C:\Windows\System32\certprop.dll - ok
00:17:01.0538 4136 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
00:17:01.0538 4136 C:\Windows\System32\wpdbusenum.dll - ok
00:17:01.0538 4136 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
00:17:01.0538 4136 C:\Windows\System32\wdi.dll - ok
00:17:01.0554 4136 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
00:17:01.0554 4136 C:\Windows\System32\diagperf.dll - ok
00:17:01.0554 4136 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
00:17:01.0554 4136 C:\Windows\System32\npmproxy.dll - ok
00:17:01.0569 4136 [ 0B6231BF38174A1628C4AC812CC75804 ] C:\Windows\System32\SessEnv.dll
00:17:01.0569 4136 C:\Windows\System32\SessEnv.dll - ok
00:17:01.0569 4136 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
00:17:01.0569 4136 C:\Windows\System32\PortableDeviceApi.dll - ok
00:17:01.0585 4136 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
00:17:01.0585 4136 C:\Windows\System32\perftrack.dll - ok
00:17:01.0585 4136 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
00:17:01.0585 4136 C:\Windows\System32\pnpts.dll - ok
00:17:01.0600 4136 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
00:17:01.0600 4136 C:\Windows\System32\Apphlpdm.dll - ok
00:17:01.0600 4136 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
00:17:01.0600 4136 C:\Windows\System32\wdiasqmmodule.dll - ok
00:17:01.0616 4136 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
00:17:01.0616 4136 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
00:17:01.0616 4136 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
00:17:01.0616 4136 C:\Windows\System32\NapiNSP.dll - ok
00:17:01.0616 4136 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
00:17:01.0616 4136 C:\Windows\System32\pnrpnsp.dll - ok
00:17:01.0632 4136 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
00:17:01.0632 4136 C:\Windows\System32\winrnr.dll - ok
00:17:01.0632 4136 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
00:17:01.0632 4136 C:\Windows\System32\aeevts.dll - ok
00:17:01.0632 4136 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
00:17:01.0632 4136 C:\Windows\System32\IPSECSVC.DLL - ok
00:17:01.0647 4136 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
00:17:01.0647 4136 C:\Windows\System32\hidserv.dll - ok
00:17:01.0647 4136 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
00:17:01.0647 4136 C:\Windows\System32\drivers\fastfat.sys - ok
00:17:01.0663 4136 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
00:17:01.0663 4136 C:\Windows\System32\FwRemoteSvr.dll - ok
00:17:01.0663 4136 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
00:17:01.0663 4136 C:\Windows\System32\taskhost.exe - ok
00:17:01.0678 4136 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
00:17:01.0678 4136 C:\Windows\System32\dimsjob.dll - ok
00:17:01.0678 4136 [ CF8D590BE3373029D57AF80914190682 ] C:\Windows\System32\drivers\WUDFRd.sys
00:17:01.0678 4136 C:\Windows\System32\drivers\WUDFRd.sys - ok
00:17:01.0678 4136 [ D0FF1CA89D013B94768A289023958F6B ] C:\Windows\System32\WUDFHost.exe
00:17:01.0678 4136 C:\Windows\System32\WUDFHost.exe - ok
00:17:01.0694 4136 [ 1950B1C38AED4154BA79F77E36494D8A ] C:\Windows\System32\WUDFx.dll
00:17:01.0694 4136 C:\Windows\System32\WUDFx.dll - ok
00:17:01.0694 4136 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
00:17:01.0694 4136 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
00:17:01.0710 4136 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
00:17:01.0710 4136 C:\Windows\System32\WMVCORE.DLL - ok
00:17:01.0710 4136 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
00:17:01.0710 4136 C:\Windows\System32\tdh.dll - ok
00:17:01.0725 4136 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
00:17:01.0725 4136 C:\Windows\System32\actxprxy.dll - ok
00:17:01.0725 4136 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
00:17:01.0725 4136 C:\Windows\System32\WMASF.DLL - ok
00:17:01.0725 4136 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
00:17:01.0725 4136 C:\Windows\System32\pautoenr.dll - ok
00:17:01.0741 4136 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
00:17:01.0741 4136 C:\Windows\System32\certcli.dll - ok
00:17:01.0741 4136 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
00:17:01.0741 4136 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
00:17:01.0756 4136 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
00:17:01.0756 4136 C:\Windows\System32\pnidui.dll - ok
00:17:01.0756 4136 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
00:17:01.0756 4136 C:\Windows\System32\PortableDeviceTypes.dll - ok
00:17:01.0772 4136 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
00:17:01.0772 4136 C:\Windows\System32\CertEnroll.dll - ok
00:17:01.0772 4136 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
00:17:01.0772 4136 C:\Windows\System32\wmp.dll - ok
00:17:01.0772 4136 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
00:17:01.0772 4136 C:\Windows\System32\wbem\NCProv.dll - ok
00:17:01.0788 4136 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
00:17:01.0788 4136 C:\Windows\System32\localspl.dll - ok
00:17:01.0788 4136 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
00:17:01.0788 4136 C:\Windows\System32\spoolss.dll - ok
00:17:01.0803 4136 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
00:17:01.0803 4136 C:\Windows\System32\winspool.drv - ok
00:17:01.0803 4136 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
00:17:01.0803 4136 C:\Windows\System32\PrintIsolationProxy.dll - ok
00:17:01.0819 4136 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
00:17:01.0819 4136 C:\Windows\System32\FXSMON.dll - ok
00:17:01.0819 4136 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
00:17:01.0819 4136 C:\Windows\System32\tcpmon.dll - ok
00:17:01.0819 4136 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
00:17:01.0819 4136 C:\Windows\System32\snmpapi.dll - ok
00:17:01.0834 4136 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
00:17:01.0834 4136 C:\Windows\System32\wsnmp32.dll - ok
00:17:01.0834 4136 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
00:17:01.0834 4136 C:\Windows\System32\usbmon.dll - ok
00:17:01.0850 4136 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
00:17:01.0850 4136 C:\Windows\System32\WSDMon.dll - ok
00:17:01.0850 4136 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
00:17:01.0850 4136 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
00:17:01.0866 4136 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
00:17:01.0866 4136 C:\Windows\System32\win32spl.dll - ok
00:17:01.0866 4136 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
00:17:01.0866 4136 C:\Windows\System32\inetpp.dll - ok
00:17:01.0866 4136 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
00:17:01.0866 4136 C:\Windows\System32\cscapi.dll - ok
00:17:01.0881 4136 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
00:17:01.0881 4136 C:\Windows\System32\dllhost.exe - ok
00:17:01.0881 4136 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
00:17:01.0881 4136 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
00:17:01.0897 4136 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
00:17:01.0897 4136 C:\Windows\System32\IDStore.dll - ok
00:17:01.0897 4136 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
00:17:01.0897 4136 C:\Windows\SysWOW64\winsta.dll - ok
00:17:01.0897 4136 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
00:17:01.0897 4136 C:\Windows\System32\taskeng.exe - ok
00:17:01.0912 4136 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
00:17:01.0912 4136 C:\Windows\System32\AtBroker.exe - ok
00:17:01.0912 4136 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
00:17:01.0912 4136 C:\Windows\System32\mpr.dll - ok
00:17:01.0928 4136 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
00:17:01.0928 4136 C:\Windows\System32\userinit.exe - ok
00:17:01.0928 4136 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
00:17:01.0928 4136 C:\Windows\System32\dssenh.dll - ok
00:17:01.0928 4136 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
00:17:01.0928 4136 C:\Windows\System32\radardt.dll - ok
00:17:01.0944 4136 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
00:17:01.0944 4136 C:\Windows\System32\PlaySndSrv.dll - ok
00:17:01.0944 4136 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
00:17:01.0944 4136 C:\Windows\System32\dwm.exe - ok
00:17:01.0959 4136 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
00:17:01.0959 4136 C:\Windows\explorer.exe - ok
00:17:01.0959 4136 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
00:17:01.0959 4136 C:\Windows\System32\MsCtfMonitor.dll - ok
00:17:01.0975 4136 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
00:17:01.0975 4136 C:\Windows\System32\msutb.dll - ok
00:17:01.0975 4136 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
00:17:01.0975 4136 C:\Windows\System32\HotStartUserAgent.dll - ok
00:17:01.0975 4136 [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll
00:17:01.0975 4136 C:\Windows\System32\dxva2.dll - ok
00:17:01.0990 4136 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
00:17:01.0990 4136 C:\Windows\System32\dwmredir.dll - ok
00:17:01.0990 4136 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
00:17:01.0990 4136 C:\Windows\System32\dwmcore.dll - ok
00:17:02.0006 4136 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
00:17:02.0006 4136 C:\Windows\System32\TSChannel.dll - ok
00:17:02.0006 4136 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:17:02.0006 4136 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
00:17:02.0022 4136 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
00:17:02.0022 4136 C:\Windows\System32\d3d10_1.dll - ok
00:17:02.0022 4136 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
00:17:02.0022 4136 C:\Windows\System32\d3d10_1core.dll - ok
00:17:02.0037 4136 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
00:17:02.0037 4136 C:\Windows\System32\dxgi.dll - ok
00:17:02.0037 4136 [ 8F19AA7A891F429578D19753E3659A16 ] C:\Windows\System32\igd10umd64.dll
00:17:02.0037 4136 C:\Windows\System32\igd10umd64.dll - ok
00:17:02.0037 4136 [ 39C5FCF8AA3B83D79A0E853ECB38BF25 ] C:\Program Files (x86)\Google\Update\1.3.21.115\goopdate.dll
00:17:02.0037 4136 C:\Program Files (x86)\Google\Update\1.3.21.115\goopdate.dll - ok
00:17:02.0053 4136 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
00:17:02.0053 4136 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
00:17:02.0053 4136 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
00:17:02.0053 4136 C:\Windows\System32\ExplorerFrame.dll - ok
00:17:02.0068 4136 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
00:17:02.0068 4136 C:\Windows\System32\EhStorShell.dll - ok
00:17:02.0068 4136 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
00:17:02.0068 4136 C:\Windows\SysWOW64\imagehlp.dll - ok
00:17:02.0068 4136 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
00:17:02.0084 4136 C:\Windows\SysWOW64\msi.dll - ok
00:17:02.0084 4136 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
00:17:02.0084 4136 C:\Windows\System32\ntshrui.dll - ok
00:17:02.0084 4136 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
00:17:02.0084 4136 C:\Windows\System32\IconCodecService.dll - ok
00:17:02.0100 4136 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
00:17:02.0100 4136 C:\Windows\System32\appinfo.dll - ok
00:17:02.0100 4136 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
00:17:02.0100 4136 C:\Windows\SysWOW64\cscapi.dll - ok
00:17:02.0115 4136 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
00:17:02.0115 4136 C:\Windows\SysWOW64\dbghelp.dll - ok
00:17:02.0115 4136 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
00:17:02.0115 4136 C:\Windows\SysWOW64\apphelp.dll - ok
00:17:02.0115 4136 [ 93F29E6964BAEF31E53D203992B0AFD4 ] C:\Program Files (x86)\Google\Update\1.3.21.115\GoogleCrashHandler.exe
00:17:02.0115 4136 C:\Program Files (x86)\Google\Update\1.3.21.115\GoogleCrashHandler.exe - ok
00:17:02.0131 4136 [ C282F4A84FDA6EF4376996542F7A1249 ] C:\Program Files (x86)\Google\Update\1.3.21.115\GoogleCrashHandler64.exe
00:17:02.0131 4136 C:\Program Files (x86)\Google\Update\1.3.21.115\GoogleCrashHandler64.exe - ok
00:17:02.0131 4136 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
00:17:02.0131 4136 C:\Windows\SysWOW64\mstask.dll - ok
00:17:02.0146 4136 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
00:17:02.0146 4136 C:\Windows\System32\runonce.exe - ok
00:17:02.0146 4136 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
00:17:02.0146 4136 C:\Windows\SysWOW64\runonce.exe - ok
00:17:02.0146 4136 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
00:17:02.0146 4136 C:\Windows\SysWOW64\uxtheme.dll - ok
00:17:02.0162 4136 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
00:17:02.0162 4136 C:\Windows\SysWOW64\propsys.dll - ok
00:17:02.0162 4136 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
00:17:02.0162 4136 C:\Windows\SysWOW64\secur32.dll - ok
00:17:02.0178 4136 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
00:17:02.0178 4136 C:\Windows\SysWOW64\cmd.exe - ok
00:17:02.0178 4136 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
00:17:02.0178 4136 C:\Windows\SysWOW64\winbrand.dll - ok
00:17:02.0193 4136 [ 32E15ECF5854F5610BC895490BC3246A ] C:\Windows\SysWOW64\ieframe.dll
00:17:02.0193 4136 C:\Windows\SysWOW64\ieframe.dll - ok
00:17:02.0193 4136 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
00:17:02.0193 4136 C:\Windows\SysWOW64\psapi.dll - ok
00:17:02.0193 4136 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
00:17:02.0193 4136 C:\Windows\SysWOW64\oleacc.dll - ok
00:17:02.0209 4136 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
00:17:02.0209 4136 C:\Windows\SysWOW64\shdocvw.dll - ok
00:17:02.0209 4136 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
00:17:02.0209 4136 C:\Windows\System32\aelupsvc.dll - ok
00:17:02.0224 4136 [ AD6B1A69B0CCCF27A792F4C00740D24D ] C:\Users\Teresa\AppData\Local\Temp\1812A83A-2C6C-47C8-9E4C-C4251B46F168.exe
00:17:02.0224 4136 C:\Users\Teresa\AppData\Local\Temp\1812A83A-2C6C-47C8-9E4C-C4251B46F168.exe - ok
00:17:02.0224 4136 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
00:17:02.0224 4136 C:\Windows\SysWOW64\sfc.dll - ok
00:17:02.0240 4136 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
00:17:02.0240 4136 C:\Windows\SysWOW64\sfc_os.dll - ok
00:17:02.0240 4136 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
00:17:02.0240 4136 C:\Windows\SysWOW64\devrtl.dll - ok
00:17:02.0240 4136 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
00:17:02.0240 4136 C:\Windows\SysWOW64\mpr.dll - ok
00:17:02.0256 4136 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
00:17:02.0256 4136 C:\Windows\SysWOW64\winhttp.dll - ok
00:17:02.0256 4136 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
00:17:02.0256 4136 C:\Windows\SysWOW64\webio.dll - ok
00:17:02.0271 4136 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
00:17:02.0271 4136 C:\Windows\System32\ie4uinit.exe - ok
00:17:02.0271 4136 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
00:17:02.0271 4136 C:\Windows\System32\themeui.dll - ok
00:17:02.0271 4136 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
00:17:02.0287 4136 C:\Windows\System32\timedate.cpl - ok
00:17:02.0287 4136 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
00:17:02.0287 4136 C:\Windows\System32\shdocvw.dll - ok
00:17:02.0287 4136 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
00:17:02.0287 4136 C:\Windows\System32\linkinfo.dll - ok
00:17:02.0302 4136 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\Program Files (x86)\Windows Live\Messenger\msgslang.dll
00:17:02.0302 4136 C:\Program Files (x86)\Windows Live\Messenger\msgslang.dll - ok
00:17:02.0302 4136 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
00:17:02.0302 4136 C:\Windows\SysWOW64\dwmapi.dll - ok
00:17:02.0318 4136 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
00:17:02.0318 4136 C:\Windows\System32\msftedit.dll - ok
00:17:02.0318 4136 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
00:17:02.0318 4136 C:\Windows\System32\msls31.dll - ok
00:17:02.0334 4136 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
00:17:02.0334 4136 C:\Windows\SysWOW64\credssp.dll - ok
00:17:02.0334 4136 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
00:17:02.0334 4136 C:\Windows\SysWOW64\wship6.dll - ok
00:17:02.0334 4136 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
00:17:02.0334 4136 C:\Windows\SysWOW64\dnsapi.dll - ok
00:17:02.0349 4136 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
00:17:02.0349 4136 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
00:17:02.0349 4136 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
00:17:02.0349 4136 C:\Windows\System32\gameux.dll - ok
00:17:02.0365 4136 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
00:17:02.0365 4136 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
00:17:02.0365 4136 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
00:17:02.0365 4136 C:\Windows\SysWOW64\rasadhlp.dll - ok
00:17:02.0380 4136 [ E0F0D738B5FA3F8FD42D30B8C3B44EEE ] C:\Windows\Installer\{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}\iTunesIco.exe
00:17:02.0380 4136 C:\Windows\Installer\{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}\iTunesIco.exe - ok
00:17:02.0380 4136 [ FD217F6DDBB90D84A46B36E17E99CA0C ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
00:17:02.0380 4136 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
00:17:02.0380 4136 [ 9C6F3CC6A3BB310D70026AF1B4561F65 ] C:\Windows\System32\ieframe.dll
00:17:02.0380 4136 C:\Windows\System32\ieframe.dll - ok
00:17:02.0396 4136 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
00:17:02.0396 4136 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
00:17:02.0396 4136 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
00:17:02.0396 4136 C:\Windows\System32\oleacc.dll - ok
00:17:02.0412 4136 [ 2C9A0045260091CC35A96F6D26C95E82 ] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
00:17:02.0412 4136 C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe - ok
00:17:02.0412 4136 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
00:17:02.0412 4136 C:\Windows\System32\msiltcfg.dll - ok
00:17:02.0412 4136 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
00:17:02.0412 4136 C:\Windows\System32\msi.dll - ok
00:17:02.0427 4136 [ 442AC4C12E0FA2575402A9C1E3D8B3C8 ] C:\Windows\System32\SynCOM.dll
00:17:02.0427 4136 C:\Windows\System32\SynCOM.dll - ok
00:17:02.0427 4136 [ C984A23C68995C5C9B6BADC8E60662FE ] C:\Windows\System32\SynTPAPI.dll
00:17:02.0427 4136 C:\Windows\System32\SynTPAPI.dll - ok
00:17:02.0443 4136 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
00:17:02.0443 4136 C:\Windows\System32\thumbcache.dll - ok
00:17:02.0443 4136 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
00:17:02.0443 4136 C:\Windows\System32\DeviceCenter.dll - ok
00:17:02.0458 4136 [ 2F407AA24101E4678B110A1FFA13F587 ] C:\Program Files\Java\jre6\bin\jusched.exe
00:17:02.0458 4136 C:\Program Files\Java\jre6\bin\jusched.exe - ok
00:17:02.0458 4136 [ C6BE59AE498497F78EC46DADB5335766 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
00:17:02.0458 4136 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
00:17:02.0458 4136 [ 87A4570E9D15A2821015B7FB6B821654 ] C:\Windows\System32\igfxtray.exe
00:17:02.0458 4136 C:\Windows\System32\igfxtray.exe - ok
00:17:02.0474 4136 [ 842683D8F1A58A76E5A03DA35B4962EE ] C:\Windows\System32\hkcmd.exe
00:17:02.0474 4136 C:\Windows\System32\hkcmd.exe - ok
00:17:02.0474 4136 [ 82BD1656314D2FA949A0E8522828F837 ] C:\Windows\System32\hccutils.dll
00:17:02.0474 4136 C:\Windows\System32\hccutils.dll - ok
00:17:02.0490 4136 [ 99F8C1060BFB20D2039716BBF741D6C2 ] C:\Windows\System32\igfxpers.exe
00:17:02.0490 4136 C:\Windows\System32\igfxpers.exe - ok
00:17:02.0490 4136 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
00:17:02.0490 4136 C:\Windows\System32\consent.exe - ok
00:17:02.0490 4136 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
00:17:02.0490 4136 C:\Windows\System32\networkexplorer.dll - ok
00:17:02.0505 4136 [ 7CB55ECF3860D14DEA2DED97461A08B0 ] C:\Windows\System32\igfxsrvc.exe
00:17:02.0505 4136 C:\Windows\System32\igfxsrvc.exe - ok
00:17:02.0505 4136 [ B95E9630242E2154A320F042EBF20DB1 ] C:\Windows\System32\igfxsrvc.dll
00:17:02.0505 4136 C:\Windows\System32\igfxsrvc.dll - ok
00:17:02.0521 4136 [ 026E1B4D80750DC88357694443724729 ] C:\Windows\System32\igfxdev.dll
00:17:02.0521 4136 C:\Windows\System32\igfxdev.dll - ok
00:17:02.0521 4136 [ 135255E6557AD2B342A4BB4D892AE2DB ] C:\Windows\System32\igfxrenu.lrc
00:17:02.0521 4136 C:\Windows\System32\igfxrenu.lrc - ok
00:17:02.0536 4136 [ 4E8E3880A3E0632AA5C8F7EF8B37E2B2 ] C:\Windows\System32\GfxUI.exe
00:17:02.0536 4136 C:\Windows\System32\GfxUI.exe - ok
00:17:02.0536 4136 [ 314C76642049DD4E9B964BC333A620B1 ] C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
00:17:02.0536 4136 C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe - ok
00:17:02.0552 4136 [ 00490C2A421579311EFF460ADDAB7AD0 ] C:\Program Files\Microsoft Security Client\msseces.exe
00:17:02.0552 4136 C:\Program Files\Microsoft Security Client\msseces.exe - ok
00:17:02.0552 4136 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
00:17:02.0552 4136 C:\Windows\System32\msimg32.dll - ok
00:17:02.0552 4136 [ E02E715FA2BC8D88FF9362374E309D76 ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
00:17:02.0552 4136 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe - ok
00:17:02.0568 4136 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
00:17:02.0568 4136 C:\Windows\System32\drprov.dll - ok
00:17:02.0568 4136 [ 05A58F9A6BBA37412CDEACD055FAEB37 ] C:\Windows\System32\igfxress.dll
00:17:02.0568 4136 C:\Windows\System32\igfxress.dll - ok
00:17:02.0583 4136 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
00:17:02.0583 4136 C:\Windows\System32\ntlanman.dll - ok
00:17:02.0583 4136 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
00:17:02.0583 4136 C:\Windows\System32\davclnt.dll - ok
00:17:02.0599 4136 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
00:17:02.0599 4136 C:\Program Files\Windows Sidebar\sidebar.exe - ok
00:17:02.0599 4136 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
00:17:02.0599 4136 C:\Windows\System32\davhlpr.dll - ok
00:17:02.0599 4136 [ E0E15F209360E4A97ABCC21A486B4AEE ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
00:17:02.0599 4136 C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe - ok
00:17:02.0614 4136 [ 8F89E6CB82E6DB45BC993D423CD0FDBD ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
00:17:02.0614 4136 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe - ok
00:17:02.0614 4136 [ DA4ED31DD43ABB0AF99888E236FFDB91 ] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
00:17:02.0614 4136 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe - ok
00:17:02.0630 4136 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
00:17:02.0630 4136 C:\Windows\System32\mscoree.dll - ok
00:17:02.0630 4136 [ 3FBBF6092C4EF5F50302707063E853EF ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
00:17:02.0630 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe - ok
00:17:02.0646 4136 [ B45F2C4076ACFD9714037B7C69D90167 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
00:17:02.0646 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
00:17:02.0646 4136 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
00:17:02.0646 4136 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
00:17:02.0646 4136 [ 3129AC158EA2682786939973420D5C0C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll
00:17:02.0646 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll - ok
00:17:02.0661 4136 [ 6055F2812C4E4658D772074AEF132098 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
00:17:02.0661 4136 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
00:17:02.0661 4136 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
00:17:02.0661 4136 C:\Windows\SysWOW64\hid.dll - ok
00:17:02.0677 4136 [ B787E68D41E3A2EC8A9DBF697AE23D1A ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll
00:17:02.0677 4136 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll - ok
00:17:02.0677 4136 [ 57549093CA2C536855F7C04E8789679A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll
00:17:02.0677 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll - ok
00:17:02.0677 4136 [ 0930656E3154516E19E9A5C5309023E6 ] C:\Program Files (x86)\McAfee Security Scan\2.1.121\SSScheduler.exe
00:17:02.0677 4136 C:\Program Files (x86)\McAfee Security Scan\2.1.121\SSScheduler.exe - ok
00:17:02.0692 4136 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
00:17:02.0692 4136 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
00:17:02.0692 4136 [ 32C26797AB646074A2BB562F9D10ADB5 ] C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
00:17:02.0692 4136 C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE - ok
00:17:02.0708 4136 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
00:17:02.0708 4136 C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
00:17:02.0708 4136 [ 1843E81FA7ACFFF4344A7DD4328D7DA0 ] C:\Program Files (x86)\Microsoft Office\Office12\1033\ONINTL.DLL
00:17:02.0708 4136 C:\Program Files (x86)\Microsoft Office\Office12\1033\ONINTL.DLL - ok
00:17:02.0724 4136 [ E0CD5872CA4552056C4C705361A6BB5A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
00:17:02.0724 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
00:17:02.0724 4136 [ 82D73D171BF119B5AAE68BFEFADFE9FE ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd_main.dll
00:17:02.0724 4136 C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd_main.dll - ok
00:17:02.0739 4136 [ 89D9685F59184F2D52BEE50E8298C8D9 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll
00:17:02.0739 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll - ok
00:17:02.0739 4136 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
00:17:02.0739 4136 C:\Windows\SysWOW64\winspool.drv - ok
00:17:02.0755 4136 [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
00:17:02.0755 4136 C:\Windows\SysWOW64\wpdshext.dll - ok
00:17:02.0755 4136 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe
00:17:02.0755 4136 C:\Windows\Installer\{91120000-002F-0000-0000-0000000FF1CE}\wordicon.exe - ok
00:17:02.0755 4136 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
00:17:02.0755 4136 C:\Windows\System32\qmgr.dll - ok
00:17:02.0770 4136 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
00:17:02.0770 4136 C:\Windows\SysWOW64\msxml3.dll - ok
00:17:02.0770 4136 [ C16C054F1E07EE69090B03B5E053BA36 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\GenerationalStorage.dll
00:17:02.0770 4136 C:\Program Files (x86)\Common Files\Apple\Internet Services\GenerationalStorage.dll - ok
00:17:02.0786 4136 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
00:17:02.0786 4136 C:\Windows\System32\bitsperf.dll - ok
00:17:02.0786 4136 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
00:17:02.0786 4136 C:\Windows\System32\bitsigd.dll - ok
00:17:02.0802 4136 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:17:02.0802 4136 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
00:17:02.0802 4136 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
00:17:02.0802 4136 C:\Windows\System32\upnp.dll - ok
00:17:02.0802 4136 [ 2424231BBD703A677D115C29983B4293 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL
00:17:02.0802 4136 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL - ok
00:17:02.0817 4136 [ F81F14DC4DD866552DD37398E68FE23F ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ChunkingLibrary.dll
00:17:02.0817 4136 C:\Program Files (x86)\Common Files\Apple\Internet Services\ChunkingLibrary.dll - ok
00:17:02.0817 4136 [ 8415F4792D7BC07BE328DF56FE32045A ] C:\Windows\System32\mshtml.dll
00:17:02.0817 4136 C:\Windows\System32\mshtml.dll - ok
00:17:02.0833 4136 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\14426653.sys
00:17:02.0833 4136 C:\Windows\System32\drivers\14426653.sys - ok
00:17:02.0833 4136 [ 41E31912E5B6345AAFFC9C82D8980A97 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll
00:17:02.0833 4136 C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll - ok
00:17:02.0848 4136 [ E2D1853679F5BCCDB9100D02AE8A0444 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll
00:17:02.0848 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll - ok
00:17:02.0848 4136 [ A05C0003E8D7CEA359A439690554F8BB ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
00:17:02.0848 4136 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
00:17:02.0848 4136 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
00:17:02.0864 4136 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
00:17:02.0864 4136 [ 916A2C4EB028604783FD5EA169236C1D ] C:\Program Files (x86)\QuickTime\QTTask.exe
00:17:02.0864 4136 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
00:17:02.0864 4136 [ 9AB3620C0A97366E1565967BD78BF64C ] C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
00:17:02.0864 4136 C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll - ok
00:17:02.0880 4136 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
00:17:02.0880 4136 C:\Windows\System32\stobject.dll - ok
00:17:02.0880 4136 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
00:17:02.0880 4136 C:\Windows\System32\msimtf.dll - ok
00:17:02.0895 4136 [ 799D3B219B84CA5AB76CB13619389A73 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
00:17:02.0895 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe - ok
00:17:02.0895 4136 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
00:17:02.0895 4136 C:\Windows\SysWOW64\samcli.dll - ok
00:17:02.0911 4136 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
00:17:02.0911 4136 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
00:17:02.0911 4136 [ 9CB819197E6B2FD3DC0429E3DC1CCFDD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll
00:17:02.0911 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll - ok
00:17:02.0911 4136 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
00:17:02.0911 4136 C:\Windows\System32\batmeter.dll - ok
00:17:02.0926 4136 [ 41C56FB44C7B18744BCB87B7A3CCF1DE ] C:\Windows\System32\jscript9.dll
00:17:02.0926 4136 C:\Windows\System32\jscript9.dll - ok
00:17:02.0926 4136 [ C7301A1D3DB09DE86528D9D916069859 ] C:\Windows\System32\dfrgui.exe
00:17:02.0926 4136 C:\Windows\System32\dfrgui.exe - ok
00:17:02.0942 4136 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
00:17:02.0942 4136 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
00:17:02.0942 4136 [ 618933C71F7750B932E84F0F040399A5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll
00:17:02.0942 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll - ok
00:17:02.0942 4136 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
00:17:02.0942 4136 C:\Windows\SysWOW64\SensApi.dll - ok
00:17:02.0958 4136 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
00:17:02.0958 4136 C:\Windows\SysWOW64\comdlg32.dll - ok
00:17:02.0958 4136 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
00:17:02.0958 4136 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
00:17:02.0973 4136 [ C753ED3DA24F3FE86F754E08A14E2460 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\Ubiquity.dll
00:17:02.0973 4136 C:\Program Files (x86)\Common Files\Apple\Internet Services\Ubiquity.dll - ok
00:17:02.0973 4136 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
00:17:02.0973 4136 C:\Windows\System32\prnfldr.dll - ok
00:17:02.0989 4136 [ 89084DD8C7A4C7FCDA50485B33C6C98D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\mmcs.dll
00:17:02.0989 4136 C:\Program Files (x86)\Common Files\Apple\Internet Services\mmcs.dll - ok
00:17:02.0989 4136 [ BB3A22F3EED85A12CFB2DD60D9F9B52F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
00:17:02.0989 4136 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe - ok
00:17:02.0989 4136 [ 98A078F838A70F84E1BD490D7C7675F4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
00:17:02.0989 4136 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
00:17:03.0004 4136 [ 34086F1DBB4065047EA3671CB70505CC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
00:17:03.0004 4136 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
00:17:03.0004 4136 [ 76CDA84DCB30EBDEF0D86051A72E0C0F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll
00:17:03.0004 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\f73f0a9c9a83dcd3ff428be509a7992f\mscorlib.ni.dll - ok
00:17:03.0020 4136 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
00:17:03.0020 4136 C:\Windows\System32\DXP.dll - ok
00:17:03.0020 4136 [ 85EA5C1262CF39BA63E54DB029DA6E63 ] C:\Windows\System32\cleanmgr.exe
00:17:03.0020 4136 C:\Windows\System32\cleanmgr.exe - ok
00:17:03.0036 4136 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
00:17:03.0036 4136 C:\Windows\System32\Syncreg.dll - ok
00:17:03.0036 4136 [ 7DA4F72284D2C927927DFC0E12AFAB85 ] C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
00:17:03.0036 4136 C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll - ok
00:17:03.0036 4136 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
00:17:03.0036 4136 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
00:17:03.0051 4136 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
00:17:03.0051 4136 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
00:17:03.0051 4136 [ BA2655001D1F017EDFD9132D5C07E941 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe
00:17:03.0051 4136 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe - ok
00:17:03.0067 4136 [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
00:17:03.0067 4136 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
00:17:03.0067 4136 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
00:17:03.0067 4136 C:\Windows\ehome\ehSSO.dll - ok
00:17:03.0082 4136 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
00:17:03.0082 4136 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
00:17:03.0082 4136 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
00:17:03.0082 4136 C:\Windows\SysWOW64\mscoree.dll - ok
00:17:03.0098 4136 [ 1F04E809409A9B5FFD510B5FD89A1155 ] C:\Windows\System32\d2d1.dll
00:17:03.0098 4136 C:\Windows\System32\d2d1.dll - ok
00:17:03.0098 4136 [ B1CA4AA760FF0DDFA1C38E95D19CFEFB ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
00:17:03.0098 4136 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
00:17:03.0098 4136 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
00:17:03.0098 4136 C:\Windows\System32\AltTab.dll - ok
00:17:03.0114 4136 [ 0654195051D1024C005E7BE135A6FEE7 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
00:17:03.0114 4136 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
00:17:03.0114 4136 [ E7FE89F69C3CC65CAD3D1ADC5D6A9F41 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
00:17:03.0114 4136 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
00:17:03.0129 4136 [ 7426279D625196393EABBEFE1C60A0C2 ] C:\Windows\System32\DWrite.dll
00:17:03.0129 4136 C:\Windows\System32\DWrite.dll - ok
00:17:03.0129 4136 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:17:03.0129 4136 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
00:17:03.0145 4136 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
00:17:03.0145 4136 C:\Windows\System32\WPDShServiceObj.dll - ok
00:17:03.0145 4136 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
00:17:03.0145 4136 C:\Windows\System32\QUTIL.DLL - ok
00:17:03.0145 4136 [ 66FCD568BF0797BE89085034C21D11CE ] C:\Program Files (x86)\HTC\HTC Sync 3.0\OutputLog.dll
00:17:03.0145 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\OutputLog.dll - ok
00:17:03.0160 4136 [ 7B93C623333F121DC9E689CCB1B7A733 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\MFC71u.dll
00:17:03.0160 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\MFC71u.dll - ok
00:17:03.0160 4136 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
00:17:03.0160 4136 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
00:17:03.0176 4136 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
00:17:03.0176 4136 C:\Windows\System32\srchadmin.dll - ok
00:17:03.0176 4136 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
00:17:03.0176 4136 C:\Windows\System32\ActionCenter.dll - ok
00:17:03.0192 4136 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
00:17:03.0192 4136 C:\Windows\SysWOW64\nlaapi.dll - ok
00:17:03.0192 4136 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
00:17:03.0192 4136 C:\Windows\System32\bthprops.cpl - ok
00:17:03.0192 4136 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
00:17:03.0207 4136 C:\Windows\SysWOW64\NapiNSP.dll - ok
00:17:03.0207 4136 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
00:17:03.0207 4136 C:\Windows\SysWOW64\pnrpnsp.dll - ok
00:17:03.0207 4136 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
00:17:03.0207 4136 C:\Windows\System32\rasdlg.dll - ok
00:17:03.0223 4136 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
00:17:03.0223 4136 C:\Windows\SysWOW64\winrnr.dll - ok
00:17:03.0223 4136 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
00:17:03.0223 4136 C:\Windows\System32\dot3api.dll - ok
00:17:03.0223 4136 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
00:17:03.0223 4136 C:\Windows\System32\wlanhlp.dll - ok
00:17:03.0238 4136 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\msvcr71.dll
00:17:03.0238 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\msvcr71.dll - ok
00:17:03.0238 4136 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\msvcp71.dll
00:17:03.0238 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\msvcp71.dll - ok
00:17:03.0254 4136 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
00:17:03.0254 4136 C:\Windows\System32\wlanapi.dll - ok
00:17:03.0254 4136 [ D02F845EF350910B3424AD15BBB68E83 ] C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
00:17:03.0254 4136 C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll - ok
00:17:03.0270 4136 [ C6AF064CE23D822C397C771CD4985BC5 ] C:\Program Files (x86)\Common Files\LightScribe\LSCAPI.dll
00:17:03.0270 4136 C:\Program Files (x86)\Common Files\LightScribe\LSCAPI.dll - ok
00:17:03.0270 4136 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
00:17:03.0270 4136 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
00:17:03.0285 4136 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
00:17:03.0285 4136 C:\Windows\System32\msvcr100_clr0400.dll - ok
00:17:03.0285 4136 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
00:17:03.0285 4136 C:\Windows\System32\WWanAPI.dll - ok
00:17:03.0285 4136 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
00:17:03.0285 4136 C:\Windows\System32\FntCache.dll - ok
00:17:03.0301 4136 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
00:17:03.0301 4136 C:\Windows\System32\SearchIndexer.exe - ok
00:17:03.0301 4136 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
00:17:03.0301 4136 C:\Windows\System32\wwapi.dll - ok
00:17:03.0316 4136 [ AAFCA5BE1E8D0844A4DBA0A6E61C2CA3 ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
00:17:03.0316 4136 C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
00:17:03.0316 4136 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
00:17:03.0316 4136 C:\Windows\System32\QAGENT.DLL - ok
00:17:03.0332 4136 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
00:17:03.0332 4136 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
00:17:03.0332 4136 [ D5369247B6C11EAE2C0650D8303E23B4 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
00:17:03.0332 4136 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
00:17:03.0332 4136 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
00:17:03.0332 4136 C:\Windows\System32\tquery.dll - ok
00:17:03.0348 4136 [ 7DEA54CE6051D36D6B56ADFD95467082 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\UPCT_DB.dll
00:17:03.0348 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\UPCT_DB.dll - ok
00:17:03.0348 4136 [ 6515C8E7AA6787CD9672ECE6F9BB6C0A ] C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.dll
00:17:03.0348 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.dll - ok
00:17:03.0363 4136 [ 3F5A73A49355241E5D9D5CF3EE14DBB8 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\PIMAccess.dll
00:17:03.0363 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\PIMAccess.dll - ok
00:17:03.0363 4136 [ 06CEEBD701C41782C884F17833D06706 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\UpdateHelper.dll
00:17:03.0363 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\UpdateHelper.dll - ok
00:17:03.0379 4136 [ 51201F338ABCB964F79BE0FAB97D4941 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\fdHttpd.dll
00:17:03.0379 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\fdHttpd.dll - ok
00:17:03.0379 4136 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
00:17:03.0379 4136 C:\Windows\System32\mssrch.dll - ok
00:17:03.0379 4136 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
00:17:03.0379 4136 C:\Windows\SysWOW64\rasapi32.dll - ok
00:17:03.0394 4136 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
00:17:03.0394 4136 C:\Windows\SysWOW64\rasman.dll - ok
00:17:03.0394 4136 [ 64ABE1250EC1A1CFD1442E7C8800216E ] C:\Windows\System32\d3d10warp.dll
00:17:03.0394 4136 C:\Windows\System32\d3d10warp.dll - ok
00:17:03.0410 4136 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
00:17:03.0410 4136 C:\Windows\System32\msidle.dll - ok
00:17:03.0410 4136 [ 85F0CCD6E2C2694793ADF04B6B6658AA ] C:\Program Files (x86)\Google\Update\1.3.21.115\goopdateres_en.dll
00:17:03.0410 4136 C:\Program Files (x86)\Google\Update\1.3.21.115\goopdateres_en.dll - ok
00:17:03.0426 4136 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
00:17:03.0426 4136 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
00:17:03.0426 4136 [ 7D631675030CE69C78FB131912E0E3DF ] C:\Windows\System32\igdumd64.dll
00:17:03.0426 4136 C:\Windows\System32\igdumd64.dll - ok
00:17:03.0426 4136 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
00:17:03.0426 4136 C:\Windows\System32\mssprxy.dll - ok
00:17:03.0441 4136 [ 8BFAE48174B91C3B4EAD45F8497693EF ] C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetect.dll
00:17:03.0441 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetect.dll - ok
00:17:03.0441 4136 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
00:17:03.0441 4136 C:\Windows\System32\FXSST.dll - ok
00:17:03.0457 4136 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
00:17:03.0457 4136 C:\Windows\SysWOW64\rtutils.dll - ok
00:17:03.0457 4136 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
00:17:03.0457 4136 C:\Windows\System32\FXSAPI.dll - ok
00:17:03.0472 4136 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
00:17:03.0472 4136 C:\Windows\System32\FXSRESM.dll - ok
00:17:03.0472 4136 [ 03A059C00E53D2CEE57ED9F13E8F06BF ] C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDisk.dll
00:17:03.0472 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDisk.dll - ok
00:17:03.0472 4136 [ B1609DCD4CFD1BC66DE4B1FA9FDA7FB4 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\AutoplayControl.dll
00:17:03.0472 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\AutoplayControl.dll - ok
00:17:03.0488 4136 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
00:17:03.0488 4136 C:\Windows\SysWOW64\netprofm.dll - ok
00:17:03.0488 4136 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
00:17:03.0488 4136 C:\Windows\System32\FXSSVC.exe - ok
00:17:03.0504 4136 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
00:17:03.0504 4136 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
00:17:03.0504 4136 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
00:17:03.0504 4136 C:\Windows\System32\riched20.dll - ok
00:17:03.0504 4136 [ 42E68F6F8657118DA5A189612268A473 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetectLegend.dll
00:17:03.0504 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetectLegend.dll - ok
00:17:03.0519 4136 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
00:17:03.0519 4136 C:\Windows\System32\en-US\tquery.dll.mui - ok
00:17:03.0519 4136 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
00:17:03.0519 4136 C:\Windows\SysWOW64\riched20.dll - ok
00:17:03.0535 4136 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
00:17:03.0535 4136 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
00:17:03.0535 4136 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
00:17:03.0535 4136 C:\Windows\System32\SearchFolder.dll - ok
00:17:03.0550 4136 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
00:17:03.0550 4136 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
00:17:03.0550 4136 [ C87001CBC0E191A4D21D8ABDF966AD0F ] C:\Program Files (x86)\HTC\HTC Sync 3.0\FileSyncEngine.dll
00:17:03.0550 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\FileSyncEngine.dll - ok
00:17:03.0550 4136 [ 10CCD6842CA0FF024FBC9EE4F9B369BD ] C:\Program Files (x86)\HTC\HTC Sync 3.0\Utility.dll
00:17:03.0550 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\Utility.dll - ok
00:17:03.0566 4136 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
00:17:03.0566 4136 C:\Windows\System32\wsock32.dll - ok
00:17:03.0566 4136 [ EC9739A46F1F83C6E52A7A4697F44A65 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
00:17:03.0566 4136 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe - ok
00:17:03.0582 4136 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
00:17:03.0582 4136 C:\Windows\System32\wmdrmdev.dll - ok
00:17:03.0582 4136 [ B2232D645FAD62FD49D7D3EFCB7B5FB4 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.7.dll
00:17:03.0582 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.7.dll - ok
00:17:03.0597 4136 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
00:17:03.0597 4136 C:\Windows\SysWOW64\wbemcomn.dll - ok
00:17:03.0597 4136 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
00:17:03.0597 4136 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
00:17:03.0597 4136 [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
00:17:03.0597 4136 C:\Windows\System32\StructuredQuery.dll - ok
00:17:03.0613 4136 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
00:17:03.0613 4136 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
00:17:03.0613 4136 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
00:17:03.0613 4136 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
00:17:03.0628 4136 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
00:17:03.0628 4136 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
00:17:03.0628 4136 [ BA48FCD5653B8A62F39AAF2663EC5D10 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll
00:17:03.0628 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c40ec0f4cd203c880298f94c0427dd54\System.ni.dll - ok
00:17:03.0644 4136 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
00:17:03.0644 4136 C:\Windows\System32\drmv2clt.dll - ok
00:17:03.0644 4136 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
00:17:03.0644 4136 C:\Windows\SysWOW64\ntdsapi.dll - ok
00:17:03.0660 4136 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
00:17:03.0660 4136 C:\Windows\SysWOW64\duser.dll - ok
00:17:03.0660 4136 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
00:17:03.0660 4136 C:\Windows\SysWOW64\WMVCORE.DLL - ok
00:17:03.0660 4136 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
00:17:03.0660 4136 C:\Windows\SysWOW64\dui70.dll - ok
00:17:03.0675 4136 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
00:17:03.0675 4136 C:\Windows\System32\UIAnimation.dll - ok
00:17:03.0675 4136 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
00:17:03.0675 4136 C:\Windows\SysWOW64\sxs.dll - ok
00:17:03.0691 4136 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
00:17:03.0691 4136 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
00:17:03.0691 4136 [ A9AB99EE7D39725EAFEC82732D2B3271 ] C:\Program Files\iPod\bin\iPodService.exe
00:17:03.0691 4136 C:\Program Files\iPod\bin\iPodService.exe - ok
00:17:03.0691 4136 [ 50F9394F53CF8015C703EBD2EF3BABC6 ] C:\Windows\System32\LocationApi.dll
00:17:03.0691 4136 C:\Windows\System32\LocationApi.dll - ok
00:17:03.0706 4136 [ 9111354A308612483F8DA995A1DD1835 ] C:\Windows\System32\SensorsApi.dll
00:17:03.0706 4136 C:\Windows\System32\SensorsApi.dll - ok
00:17:03.0706 4136 [ DDC0B23D7EB77356E8D32FFE05718C6E ] C:\Windows\System32\vbscript.dll
00:17:03.0706 4136 C:\Windows\System32\vbscript.dll - ok
00:17:03.0722 4136 [ 040CAD6E6600BCEF7A91AE9885C4158F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll
00:17:03.0722 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\222eb8aa336953a6b0216db2b0c4770d\System.Drawing.ni.dll - ok
00:17:03.0722 4136 [ 92CBA4EBF1EAC5329662A967C079F660 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\4bcc5a6e9e9d25e068fc304bd7eda6af\WindowsBase.ni.dll
00:17:03.0722 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\4bcc5a6e9e9d25e068fc304bd7eda6af\WindowsBase.ni.dll - ok
00:17:03.0738 4136 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
00:17:03.0738 4136 C:\Windows\SysWOW64\WMASF.DLL - ok
00:17:03.0738 4136 [ F7066900109916EE1D426BBD0A7B4DD1 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\ItemSyncEngine.dll
00:17:03.0738 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\ItemSyncEngine.dll - ok
00:17:03.0738 4136 [ BD66ECA9479C688412DDDA9F2CCD2C69 ] C:\Windows\System32\d3d10.dll
00:17:03.0738 4136 C:\Windows\System32\d3d10.dll - ok
00:17:03.0753 4136 [ 08C2F2FF814C813DD5B68B313B8A1ABF ] C:\Program Files (x86)\HTC\HTC Sync 3.0\MsgSyncEngine.dll
00:17:03.0753 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\MsgSyncEngine.dll - ok
00:17:03.0753 4136 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
00:17:03.0753 4136 C:\Windows\System32\blackbox.dll - ok
00:17:03.0769 4136 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
00:17:03.0769 4136 C:\Windows\SysWOW64\npmproxy.dll - ok
00:17:03.0769 4136 [ B628DA8B548E6D11A35B86799714CB22 ] C:\Windows\System32\d3d10core.dll
00:17:03.0769 4136 C:\Windows\System32\d3d10core.dll - ok
00:17:03.0784 4136 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
00:17:03.0784 4136 C:\Windows\System32\ddraw.dll - ok
00:17:03.0784 4136 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
00:17:03.0784 4136 C:\Windows\System32\wmploc.DLL - ok
00:17:03.0784 4136 [ 5CB4174FB02E0BD4639B6EBDE31EC8E1 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
00:17:03.0784 4136 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
00:17:03.0800 4136 [ BFC43967D25EA76082B9369B619AE5A7 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
00:17:03.0800 4136 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
00:17:03.0800 4136 [ 2E76FF14C5987BE45AB65A91332E3C58 ] C:\Program Files\Windows Sidebar\wlsrvc.dll
00:17:03.0800 4136 C:\Program Files\Windows Sidebar\wlsrvc.dll - ok
00:17:03.0816 4136 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
00:17:03.0816 4136 C:\Windows\System32\dciman32.dll - ok
00:17:03.0816 4136 [ 1E8D1091011E1C51B44A94DE5EE89A6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll
00:17:03.0816 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\dc5bb74eefdbf954cdfb70dd534d5564\System.Windows.Forms.ni.dll - ok
00:17:03.0831 4136 [ 270CBAA170C7905CBA1EA6E94788D44B ] C:\Program Files\Internet Explorer\ieproxy.dll
00:17:03.0831 4136 C:\Program Files\Internet Explorer\ieproxy.dll - ok
00:17:03.0831 4136 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
00:17:03.0831 4136 C:\Windows\System32\wmpps.dll - ok
00:17:03.0847 4136 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
00:17:03.0847 4136 C:\Windows\System32\wmpmde.dll - ok
00:17:03.0847 4136 [ B79515AFF098E5A56DFBD316152534DE ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
00:17:03.0847 4136 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
00:17:03.0847 4136 [ 383661D710295D2DA3FDFBA0C3ED4BCF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3a9d13514a8c4c710fa5ce8e9b5393fe\PresentationCore.ni.dll
00:17:03.0847 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\3a9d13514a8c4c710fa5ce8e9b5393fe\PresentationCore.ni.dll - ok
00:17:03.0862 4136 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
00:17:03.0862 4136 C:\Windows\System32\sppsvc.exe - ok
00:17:03.0862 4136 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
00:17:03.0862 4136 C:\Windows\System32\WinSATAPI.dll - ok
00:17:03.0878 4136 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
00:17:03.0878 4136 C:\Windows\System32\MSMPEG2ENC.DLL - ok
00:17:03.0878 4136 [ F3196D214F08A910EFEB900D7AACD452 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\R66Api.dll
00:17:03.0878 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\R66Api.dll - ok
00:17:03.0894 4136 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
00:17:03.0894 4136 C:\Windows\System32\devenum.dll - ok
00:17:03.0894 4136 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
00:17:03.0894 4136 C:\Windows\System32\msdmo.dll - ok
00:17:03.0894 4136 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
00:17:03.0894 4136 C:\Windows\System32\wbem\wmiprov.dll - ok
00:17:03.0909 4136 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
00:17:03.0909 4136 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
00:17:03.0909 4136 [ 4552F8F61A7975C2359D19673483604D ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
00:17:03.0909 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
00:17:03.0925 4136 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
00:17:03.0925 4136 C:\Windows\System32\upnphost.dll - ok
00:17:03.0925 4136 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
00:17:03.0925 4136 C:\Windows\System32\drivers\spsys.sys - ok
00:17:03.0940 4136 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
00:17:03.0940 4136 C:\Windows\System32\shfolder.dll - ok
00:17:03.0940 4136 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
00:17:03.0940 4136 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
00:17:03.0956 4136 [ 4370B54FC11742DC5A88DC8602729459 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\fd4a8227569e64d657b80483da8ffe78\System.Management.ni.dll
00:17:03.0956 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\fd4a8227569e64d657b80483da8ffe78\System.Management.ni.dll - ok
00:17:03.0956 4136 [ 20DBD74F9F2AB4B97C6D2005C1BC9254 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll
00:17:03.0956 4136 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll - ok
00:17:03.0956 4136 [ C7A0E61D5714AC20DE52D4F66EC773B8 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
00:17:03.0956 4136 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe - ok
00:17:03.0972 4136 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
00:17:03.0972 4136 C:\Windows\System32\dbghelp.dll - ok
00:17:03.0972 4136 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
00:17:03.0972 4136 C:\Windows\System32\wscsvc.dll - ok
00:17:03.0987 4136 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
00:17:03.0987 4136 C:\Windows\System32\wuapi.dll - ok
00:17:03.0987 4136 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
00:17:03.0987 4136 C:\Windows\System32\webcheck.dll - ok
00:17:04.0003 4136 [ C2335D714EFAFFFB4C7A3C164F2024B1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
00:17:04.0003 4136 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll - ok
00:17:04.0003 4136 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
00:17:04.0003 4136 C:\Windows\System32\wuaueng.dll - ok
00:17:04.0003 4136 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
00:17:04.0003 4136 C:\Windows\System32\udhisapi.dll - ok
00:17:04.0018 4136 [ 77D23D333BF27515EA51A23E96A63D6C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\47054c4d5b7e522c21a9d57797410302\PresentationFramework.ni.dll
00:17:04.0018 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\47054c4d5b7e522c21a9d57797410302\PresentationFramework.ni.dll - ok
00:17:04.0018 4136 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
00:17:04.0018 4136 C:\Windows\System32\mspatcha.dll - ok
00:17:04.0034 4136 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
00:17:04.0034 4136 C:\Windows\System32\wups.dll - ok
00:17:04.0034 4136 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
00:17:04.0034 4136 C:\Windows\System32\sppwinob.dll - ok
00:17:04.0050 4136 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
00:17:04.0050 4136 C:\Windows\System32\SyncCenter.dll - ok
00:17:04.0050 4136 [ ACA938A939E3279DE1D07FB33BC39D02 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\SyncEngine.API.dll
00:17:04.0050 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\SyncEngine.API.dll - ok
00:17:04.0050 4136 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
00:17:04.0065 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
00:17:04.0065 4136 [ 964EC91866D50FFD6A7F7CA7490227C1 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\SyncEngine.dll
00:17:04.0065 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\SyncEngine.dll - ok
00:17:04.0065 4136 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
00:17:04.0065 4136 C:\Windows\System32\imapi2.dll - ok
00:17:04.0081 4136 [ 84F862608BAA7640576D5A073BF0EF12 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\ApplicationUtils.dll
00:17:04.0081 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\ApplicationUtils.dll - ok
00:17:04.0081 4136 [ 5259AD96BE93F3DC9B649759DAC05B7A ] C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
00:17:04.0081 4136 C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
00:17:04.0096 4136 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
00:17:04.0096 4136 C:\Windows\System32\hgcpl.dll - ok
00:17:04.0096 4136 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
00:17:04.0096 4136 C:\Windows\System32\FDResPub.dll - ok
00:17:04.0112 4136 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
00:17:04.0112 4136 C:\Windows\System32\SearchProtocolHost.exe - ok
00:17:04.0112 4136 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
00:17:04.0112 4136 C:\Windows\System32\ListSvc.dll - ok
00:17:04.0112 4136 [ 65AB1A3B45B933697F74B53116B46523 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
00:17:04.0112 4136 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
00:17:04.0128 4136 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
00:17:04.0128 4136 C:\Windows\System32\msshooks.dll - ok
00:17:04.0128 4136 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
00:17:04.0128 4136 C:\Windows\System32\P2P.dll - ok
00:17:04.0143 4136 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
00:17:04.0143 4136 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
00:17:04.0143 4136 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
00:17:04.0143 4136 C:\Windows\System32\SearchFilterHost.exe - ok
00:17:04.0159 4136 [ 26A68554F95A344B62E5771AF598E0E8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
00:17:04.0159 4136 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll - ok
00:17:04.0159 4136 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
00:17:04.0159 4136 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
00:17:04.0174 4136 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
00:17:04.0174 4136 C:\Windows\System32\sppobjs.dll - ok
00:17:04.0174 4136 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
00:17:04.0174 4136 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
00:17:04.0174 4136 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
00:17:04.0174 4136 C:\Windows\System32\IdListen.dll - ok
00:17:04.0190 4136 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
00:17:04.0190 4136 C:\Windows\System32\hgprint.dll - ok
00:17:04.0190 4136 [ A18C3579512D96D02C8BEC1400454BE8 ] C:\Windows\System32\gfxSrvc.dll
00:17:04.0190 4136 C:\Windows\System32\gfxSrvc.dll - ok
00:17:04.0206 4136 [ 90E03A12E4BAD479257ACB33E7BDE9DC ] C:\Windows\System32\IGFXDEVLib.dll
00:17:04.0206 4136 C:\Windows\System32\IGFXDEVLib.dll - ok
00:17:04.0206 4136 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
00:17:04.0206 4136 C:\Windows\System32\mssph.dll - ok
00:17:04.0206 4136 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
00:17:04.0221 4136 C:\Windows\System32\pnrpsvc.dll - ok
00:17:04.0221 4136 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
00:17:04.0221 4136 C:\Windows\System32\mapi32.dll - ok
00:17:04.0221 4136 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
00:17:04.0221 4136 C:\Windows\System32\d3d9.dll - ok
00:17:04.0237 4136 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
00:17:04.0237 4136 C:\Windows\System32\Query.dll - ok
00:17:04.0237 4136 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
00:17:04.0237 4136 C:\Windows\System32\NaturalLanguage6.dll - ok
00:17:04.0252 4136 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
00:17:04.0252 4136 C:\Windows\System32\d3d8thk.dll - ok
00:17:04.0252 4136 [ 37C813CF6B4E892E2CDA6FEF3B871AFC ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll
00:17:04.0252 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\24d1b7ccbedaa3602bae6a6acea9929e\System.Xml.ni.dll - ok
00:17:04.0268 4136 [ CFF61A7F4FBD3F855B8F15BDCCDF0724 ] C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\DevicesCommon.dll
00:17:04.0268 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\DevicesCommon.dll - ok
00:17:04.0268 4136 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
00:17:04.0268 4136 C:\Program Files\Windows Defender\MpClient.dll - ok
00:17:04.0284 4136 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
00:17:04.0284 4136 C:\Windows\SysWOW64\shfolder.dll - ok
00:17:04.0284 4136 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
00:17:04.0284 4136 C:\Windows\System32\NlsData0009.dll - ok
00:17:04.0299 4136 [ 0DE3C7622EC33126579B1742260F08C2 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
00:17:04.0299 4136 C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe - ok
00:17:04.0299 4136 [ 10307046E19C8EC964C792A798B32BB3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
00:17:04.0299 4136 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll - ok
00:17:04.0315 4136 [ 2291D1FABC087E43D4122CACE1CA30F9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
00:17:04.0315 4136 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll - ok
00:17:04.0315 4136 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
00:17:04.0315 4136 C:\Windows\System32\wups2.dll - ok
00:17:04.0330 4136 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
00:17:04.0330 4136 C:\Windows\System32\p2psvc.dll - ok
00:17:04.0330 4136 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
00:17:04.0330 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
00:17:04.0330 4136 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
00:17:04.0330 4136 C:\Windows\SysWOW64\oledlg.dll - ok
00:17:04.0346 4136 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
00:17:04.0346 4136 C:\Windows\System32\P2PGraph.dll - ok
00:17:04.0346 4136 [ 22309C300E4F1E33BC75EDA065C3C384 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
00:17:04.0346 4136 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe - ok
00:17:04.0362 4136 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
00:17:04.0362 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
00:17:04.0362 4136 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
00:17:04.0362 4136 C:\Windows\System32\NlsLexicons0009.dll - ok
00:17:04.0377 4136 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
00:17:04.0377 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
00:17:04.0377 4136 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
00:17:04.0377 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
00:17:04.0393 4136 [ 857F78A80A36BF9BE8B10D85E49CE2C4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll
00:17:04.0393 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\193d03ca60573c92f92d9b07fa5bc243\System.Configuration.ni.dll - ok
00:17:04.0393 4136 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
00:17:04.0393 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
00:17:04.0393 4136 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
00:17:04.0393 4136 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
00:17:04.0408 4136 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
00:17:04.0408 4136 C:\Windows\System32\WindowsCodecsExt.dll - ok
00:17:04.0408 4136 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
00:17:04.0408 4136 C:\Windows\System32\icm32.dll - ok
00:17:04.0424 4136 [ E94404A007037C5899941F285CA5444D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f4d304fcbfda323997083a1f88b83719\WindowsFormsIntegration.ni.dll
00:17:04.0424 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f4d304fcbfda323997083a1f88b83719\WindowsFormsIntegration.ni.dll - ok
00:17:04.0424 4136 [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
00:17:04.0424 4136 C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
00:17:04.0440 4136 [ BE63879E3ED6893F84309DF1EBECF26D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\4f3567165e2a444fc9a62980c4d0ea82\PresentationFramework.Aero.ni.dll
00:17:04.0440 4136 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\4f3567165e2a444fc9a62980c4d0ea82\PresentationFramework.Aero.ni.dll - ok
00:17:04.0440 4136 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
00:17:04.0440 4136 C:\Windows\System32\ELSCore.dll - ok
00:17:04.0455 4136 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
00:17:04.0455 4136 C:\Windows\System32\elsTrans.dll - ok
00:17:04.0455 4136 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
00:17:04.0455 4136 C:\Windows\System32\elslad.dll - ok
00:17:04.0455 4136 [ 411C1C00A8B9E363DD9651B30EF9B6A7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f3814b488d9e083cbbc623e01b389f09\System.Data.ni.dll
00:17:04.0455 4136 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f3814b488d9e083cbbc623e01b389f09\System.Data.ni.dll - ok
00:17:04.0471 4136 [ 38BAAD389B24454993AA78F70984DADE ] C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\DeviceScanning.dll
00:17:04.0471 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\DeviceScanning.dll - ok
00:17:04.0471 4136 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
00:17:04.0471 4136 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
00:17:04.0486 4136 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
00:17:04.0486 4136 C:\Windows\SysWOW64\security.dll - ok
00:17:04.0486 4136 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
00:17:04.0486 4136 C:\Windows\SysWOW64\schannel.dll - ok
00:17:04.0502 4136 [ 21AF83894420D47152A8F43C564A359E ] C:\Program Files (x86)\HTC\HTC Sync 3.0\HtcUpctApi.dll
00:17:04.0502 4136 C:\Program Files (x86)\HTC\HTC Sync 3.0\HtcUpctApi.dll - ok
00:17:04.0502 4136 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
00:17:04.0502 4136 C:\Windows\SysWOW64\ncrypt.dll - ok
00:17:04.0502 4136 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
00:17:04.0502 4136 C:\Windows\SysWOW64\bcrypt.dll - ok
00:17:04.0518 4136 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
00:17:04.0518 4136 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
00:17:04.0518 4136 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
00:17:04.0518 4136 C:\Windows\SysWOW64\gpapi.dll - ok
00:17:04.0533 4136 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
00:17:04.0533 4136 C:\Windows\System32\drttransport.dll - ok
00:17:04.0533 4136 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
00:17:04.0533 4136 C:\Windows\System32\drt.dll - ok
00:17:04.0533 4136 [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
00:17:04.0533 4136 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
00:17:04.0549 4136 [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
00:17:04.0549 4136 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
00:17:04.0549 4136 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
00:17:04.0549 4136 C:\Windows\System32\wbem\cimwin32.dll - ok
00:17:04.0564 4136 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
00:17:04.0564 4136 C:\Windows\System32\framedynos.dll - ok
00:17:04.0564 4136 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
00:17:04.0564 4136 C:\Windows\System32\security.dll - ok
00:17:04.0580 4136 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
00:17:04.0580 4136 C:\Windows\System32\browcli.dll - ok
00:17:04.0580 4136 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
00:17:04.0580 4136 C:\Windows\System32\schedcli.dll - ok
00:17:04.0596 4136 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
00:17:04.0596 4136 C:\Windows\System32\wbem\wmipcima.dll - ok
00:17:04.0596 4136 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
00:17:04.0596 4136 C:\Windows\System32\wbem\WMIADAP.exe - ok
00:17:04.0611 4136 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
00:17:04.0611 4136 C:\Windows\System32\loadperf.dll - ok
00:17:04.0611 4136 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
00:17:04.0611 4136 C:\Windows\System32\wscinterop.dll - ok
00:17:04.0611 4136 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
00:17:04.0611 4136 C:\Windows\System32\wscui.cpl - ok
00:17:04.0627 4136 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
00:17:04.0627 4136 C:\Windows\System32\werconcpl.dll - ok
00:17:04.0627 4136 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
00:17:04.0627 4136 C:\Windows\System32\wercplsupport.dll - ok
00:17:04.0642 4136 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
00:17:04.0642 4136 C:\Windows\System32\hcproviders.dll - ok
00:17:04.0642 4136 ============================================================
00:17:04.0642 4136 Scan finished
00:17:04.0642 4136 ============================================================
00:17:04.0658 3188 Detected object count: 0
00:17:04.0658 3188 Actual detected object count: 0
00:17:59.0461 1656 Deinitialize success

#20
emeraldnzl

Posted 08 September 2012 - 11:47 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello TrevorAS35,

Moving on

Download RogueKiller to your desktop

Quit all running programs
For Vista/Seven, right click -> run as administrator, for XP simply run RogueKiller.exe
Wait until Prescan has finished...
Click on Scan
Wait for the scan to finish.
The report is created on your desktop.
Click on the Delete button
The report is created on your desktop.
Next click on the ShortcutsFix button.
If the program is blocked, do not hesitate to try several times. If it really does not work (it could happen), rename it to winlogon.exe

Please post the contents of all the RKreport.txt files from your desktop in your next Reply.

#21
TrevorAS35

Posted 09 September 2012 - 01:52 PM

Member

Topic Starter
Member
17 posts

Here are the reports, but what do i need to do with the RK_Quarantine folder that is on my desktop now?

Report 1:

RogueKiller V8.0.2 [08/31/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Teresa [Admin rights]
Mode : Scan -- Date : 09/09/2012 14:34:59

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 6 ¤¤¤
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJPOL] HKLM\[...]\Wow6432Node\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK3263GSX ATA Device +++++
--- User ---
[MBR] d26b8e27cd90e7bcae85375d00281110
[BSP] 2ae5bdc354d2c564e6c6f46025c9305b : Windows Vista/7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 292365 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 599173120 | Size: 12679 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: SanDisk U3 Cruzer Micro USB Device +++++
--- User ---
[MBR] f9fea5fa2c02941e7b8826eb1f747bd8
[BSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknown
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 38 | Size: 3827 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive2: HP v125w USB Device +++++
--- User ---
[MBR] b305a011d887843cbf51c81be0226f72
[BSP] ef3177ea6997481f5647d45aa222b26f : MBR Code unknown
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 8064 | Size: 3846 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[1].txt >>
RKreport[1].txt

Report 2:

RogueKiller V8.0.2 [08/31/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Teresa [Admin rights]
Mode : Remove -- Date : 09/09/2012 14:35:49

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 5 ¤¤¤
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK3263GSX ATA Device +++++
--- User ---
[MBR] d26b8e27cd90e7bcae85375d00281110
[BSP] 2ae5bdc354d2c564e6c6f46025c9305b : Windows Vista/7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 292365 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 599173120 | Size: 12679 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: SanDisk U3 Cruzer Micro USB Device +++++
--- User ---
[MBR] f9fea5fa2c02941e7b8826eb1f747bd8
[BSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknown
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 38 | Size: 3827 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive2: HP v125w USB Device +++++
--- User ---
[MBR] b305a011d887843cbf51c81be0226f72
[BSP] ef3177ea6997481f5647d45aa222b26f : MBR Code unknown
Partition table:
0 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 8064 | Size: 3846 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

Report 3:

RogueKiller V8.0.2 [08/31/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Teresa [Admin rights]
Mode : Shortcuts HJfix -- Date : 09/09/2012 14:39:27

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ File attributes restored: ¤¤¤
Desktop: Success 0 / Fail 0
Quick launch: Success 0 / Fail 0
Programs: Success 1 / Fail 0
Start menu: Success 0 / Fail 0
User folder: Success 43 / Fail 0
My documents: Success 0 / Fail 0
My favorites: Success 0 / Fail 0
My pictures: Success 0 / Fail 0
My music: Success 0 / Fail 0
My videos: Success 0 / Fail 0
Local drives: Success 16 / Fail 0
Backup: [NOT FOUND]

Drives:
[C:] \Device\HarddiskVolume2 -- 0x3 --> Restored
[D:] \Device\HarddiskVolume3 -- 0x3 --> Restored
[E:] \Device\CdRom0 -- 0x5 --> Skipped
[F:] \Device\HarddiskVolume5 -- 0x2 --> Restored
[G:] \Device\CdRom1 -- 0x5 --> Skipped
[H:] \Device\HarddiskVolume4 -- 0x2 --> Restored

¤¤¤ Infection : ¤¤¤

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

#22
emeraldnzl

Posted 09 September 2012 - 01:59 PM

GeekU Instructor

GeekU Moderator
20,051 posts

but what do i need to do with the RK_Quarantine folder that is on my desktop now?

Leave it for the time being.

Let's have another look at things. Has there been a change in your machine?

Close all windows and open OTL again.
Click Run Scan and let the program run uninterrupted
It will produce a log for you. Post the log here.

Note: If the log doesn't appear where you saved OTL when you downloaded it then a copy of the OTL fix log is saved in a text file at

:\_OTL\MovedFiles
in most cases this will be C:\_OTL\MovedFiles

#23
TrevorAS35

Posted 09 September 2012 - 04:24 PM

Member

Topic Starter
Member
17 posts

Scanned and got this:

OTL logfile created on: 9/9/2012 3:14:54 PM - Run 2
OTL by OldTimer - Version 3.2.61.3 Folder = C:\Users\Teresa\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.93 Gb Total Physical Memory | 1.75 Gb Available Physical Memory | 59.60% Memory free
5.86 Gb Paging File | 4.50 Gb Available in Paging File | 76.76% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 285.51 Gb Total Space | 197.10 Gb Free Space | 69.03% Space Free | Partition Type: NTFS
Drive D: | 12.38 Gb Total Space | 2.07 Gb Free Space | 16.73% Space Free | Partition Type: NTFS
Drive E: | 4.20 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive F: | 3.75 Gb Total Space | 3.75 Gb Free Space | 100.00% Space Free | Partition Type: FAT32

Computer Name: TERESA-PC | User Name: Teresa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/09 15:03:36 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Users\Teresa\Desktop\OTL.exe
PRC - [2012/07/27 15:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/04/17 15:05:00 | 000,651,264 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
PRC - [2012/02/23 13:30:40 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
PRC - [2010/09/03 01:45:02 | 000,255,536 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee Security Scan\2.1.121\SSScheduler.exe

========== Modules (No Company Name) ==========

MOD - [2012/05/11 12:36:21 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f3814b488d9e083cbbc623e01b389f09\System.Data.ni.dll
MOD - [2012/05/11 12:35:03 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012/05/11 12:34:57 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012/05/11 12:34:56 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012/05/11 12:34:48 | 011,492,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2012/04/17 15:05:00 | 001,515,520 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\R66Api.dll
MOD - [2012/04/17 15:05:00 | 000,651,264 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
MOD - [2012/04/17 15:05:00 | 000,559,244 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.7.dll
MOD - [2012/04/17 15:05:00 | 000,516,599 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.dll
MOD - [2012/04/17 15:05:00 | 000,389,120 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetect.dll
MOD - [2012/04/17 15:05:00 | 000,172,032 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetectLegend.dll
MOD - [2012/04/17 15:05:00 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDisk.dll
MOD - [2012/04/17 15:05:00 | 000,103,936 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\OutputLog.dll
MOD - [2012/04/17 15:05:00 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\HTC\HTC Sync 3.0\fdHttpd.dll
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010/11/04 20:58:05 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2009/08/20 15:35:48 | 007,745,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
MOD - [2009/08/20 15:35:46 | 002,121,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
MOD - [2009/08/20 15:35:46 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll

========== Services (SafeList) ==========

SRV:64bit: - [2012/03/26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/03/26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2010/09/22 19:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/08/23 16:34:03 | 000,250,568 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/27 15:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010/09/03 01:45:02 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe -- (McComponentHostService)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/04/29 14:21:18 | 000,436,736 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\XAudio64.dll -- (HsfXAudioService)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/06/20 09:42:44 | 003,678,720 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2012/03/20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/03/01 01:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/15 12:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/07/06 12:44:00 | 000,034,288 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2011/03/11 01:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/02/11 19:16:38 | 010,628,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/11/20 08:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 06:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 04:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/09/23 01:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/06/25 16:08:10 | 000,036,928 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2010/05/22 15:49:30 | 000,083,456 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:64bit: - [2010/04/30 17:53:10 | 000,252,928 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbnet.sys -- (ewusbnet)
DRV:64bit: - [2010/03/25 11:08:46 | 000,120,704 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:64bit: - [2010/03/20 12:56:56 | 000,114,560 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:64bit: - [2010/02/26 11:05:32 | 000,699,960 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2009/09/08 08:49:30 | 000,031,744 | ---- | M] (Research in Motion Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RimSerial_AMD64.sys -- (RimVSerPort)
DRV:64bit: - [2009/07/30 19:50:24 | 000,118,872 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HtcVComV64.sys -- (HtcVCom32)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 19:10:47 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rootmdm.sys -- (ROOTMODEM)
DRV:64bit: - [2009/07/10 09:45:10 | 000,139,264 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2009/06/18 23:12:32 | 000,272,432 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/06/10 16:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 16:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 16:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 15:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 15:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 19:46:50 | 000,216,064 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2009/05/23 01:52:30 | 000,215,040 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/05/04 16:02:20 | 000,198,528 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\swumxa3.sys -- (SWUMXA3)
DRV:64bit: - [2009/04/29 14:21:08 | 000,010,240 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\XAudio64.sys -- (XAudio)
DRV:64bit: - [2009/04/29 10:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:64bit: - [2009/03/31 14:50:38 | 000,227,840 | ---- | M] (Sierra Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\swnc8ua3.sys -- (SWNC8UA3)
DRV:64bit: - [2009/02/13 01:24:56 | 001,485,824 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CAX_DPV.sys -- (HSF_DPV)
DRV:64bit: - [2009/02/13 01:20:56 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CAXHWAZL.sys -- (CAXHWAZL)
DRV:64bit: - [2009/02/13 01:19:34 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CAX_CNXT.sys -- (winachsf)
DRV:64bit: - [2006/06/18 09:27:24 | 000,017,024 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mdmxsdk.sys -- (mdmxsdk)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{C887568D-7112-4CF0-838A-79A360E66271}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{DE066803-3056-41E6-9D8A-9F2C2DC958AA}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{C887568D-7112-4CF0-838A-79A360E66271}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{DE066803-3056-41E6-9D8A-9F2C2DC958AA}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{97F09E65-00BF-4DBE-9224-C5167301A265}: "URL" =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_35: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Teresa\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Teresa\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2009/11/01 03:16:29 | 000,000,000 | ---D | M]

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Teresa\AppData\Local\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Teresa\AppData\Local\Google\Chrome\Application\16.0.912.75\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Teresa\AppData\Local\Google\Chrome\Application\16.0.912.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U30 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2012/09/08 21:44:34 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll (Microsoft Corp.)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [HTC Sync Loader] C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe ()
O4 - HKCU..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegedit = 0
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_35)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0770C25A-591D-4CB1-81C9-103B24F8A548}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9DAB06B5-9715-4D66-9B63-9467063594B6}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A259A798-7CBF-47FA-8A18-FAB09E2A22EE}: DhcpNameServer = 209.183.50.151 209.183.50.151
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F19EA1D7-803A-4B44-B142-1BA0BAACFDCE}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/11/06 17:20:46 | 000,000,000 | R--D | M] - E:\AutoRun -- [ UDF ]
O32 - AutoRun File - [2006/11/06 16:59:47 | 000,569,344 | R--- | M] (Electronic Arts Inc.) - E:\AutoRun.exe -- [ UDF ]
O32 - AutoRun File - [2006/11/06 17:18:16 | 000,000,180 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2006/10/28 21:39:19 | 000,880,640 | R--- | M] (Electronic Arts Inc.) - E:\AutoRunGUI.dll -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/09 15:13:56 | 000,600,064 | ---- | C] (OldTimer Tools) -- C:\Users\Teresa\Desktop\OTL.exe
[2012/09/09 14:34:17 | 000,000,000 | ---D | C] -- C:\Users\Teresa\Desktop\RK_Quarantine
[2012/09/08 21:58:24 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/09/08 21:44:41 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2012/09/08 21:29:12 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/09/08 21:29:12 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/09/08 21:29:12 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/09/08 21:15:06 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/09/08 21:14:41 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/09/06 18:25:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/09/06 18:25:02 | 000,157,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012/09/06 18:25:02 | 000,149,488 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012/09/06 18:25:02 | 000,149,488 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012/09/06 17:09:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Free Offers from Freeze.com
[2012/08/28 18:20:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
[2012/08/28 17:31:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2012/08/23 16:58:19 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/08/17 22:22:48 | 000,000,000 | ---D | C] -- C:\Users\Teresa\Documents\My Curse
[2012/08/17 22:22:30 | 000,000,000 | ---D | C] -- C:\Users\Teresa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse
[2012/08/17 22:19:34 | 000,000,000 | ---D | C] -- C:\Users\Teresa\AppData\Local\Apps
[2012/08/17 22:19:32 | 000,000,000 | ---D | C] -- C:\Users\Teresa\AppData\Local\Deployment
[2012/08/15 21:31:32 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/08/15 21:31:32 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/08/15 21:31:31 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/08/15 21:31:31 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/08/15 21:31:30 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/08/15 21:31:29 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/08/15 21:31:29 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/08/15 21:31:29 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/08/15 21:31:28 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/08/15 21:31:28 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/08/15 21:31:27 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/08/15 21:31:26 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/08/15 21:31:25 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/08/15 20:29:01 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2012/08/15 20:28:41 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2012/08/15 20:28:40 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2012/08/15 20:28:40 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2012/08/15 20:23:28 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2012/08/15 20:23:28 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2012/08/15 20:23:28 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2012/08/15 20:23:21 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll

========== Files - Modified Within 30 Days ==========

[2012/09/09 15:03:36 | 000,600,064 | ---- | M] (OldTimer Tools) -- C:\Users\Teresa\Desktop\OTL.exe
[2012/09/09 14:40:01 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/09 14:40:01 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/09 14:35:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2039216336-3497305235-770163139-1000UA.job
[2012/09/09 14:34:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/09 14:33:00 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/09 14:32:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/09 14:32:28 | 2361,802,752 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/09 14:25:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/09/09 13:26:36 | 001,378,816 | ---- | M] () -- C:\Users\Teresa\Desktop\RogueKiller.exe
[2012/09/08 21:44:34 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/09/06 18:24:44 | 000,157,680 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2012/09/06 18:24:44 | 000,149,488 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2012/09/06 18:24:44 | 000,149,488 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2012/09/03 18:58:03 | 000,729,880 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/09/03 18:58:03 | 000,626,540 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/09/03 18:58:03 | 000,107,784 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/09/03 15:59:23 | 000,000,860 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2039216336-3497305235-770163139-1000Core.job
[2012/08/28 20:24:56 | 000,477,168 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\npdeployJava1.dll
[2012/08/28 20:24:53 | 000,473,072 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2012/08/23 16:34:02 | 000,696,520 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/08/23 16:34:02 | 000,073,416 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/08/16 18:21:13 | 000,362,440 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2012/09/09 14:33:48 | 001,378,816 | ---- | C] () -- C:\Users\Teresa\Desktop\RogueKiller.exe
[2012/09/08 21:29:12 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/09/08 21:29:12 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/09/08 21:29:12 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/09/08 21:29:12 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/09/08 21:29:12 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/07/25 12:41:45 | 000,156,292 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2012/03/01 19:04:28 | 000,744,030 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/03/01 18:30:09 | 000,000,258 | R-S- | C] () -- C:\ProgramData\ntuser.pol
[2012/01/15 16:54:27 | 000,000,563 | ---- | C] () -- C:\Windows\EReg213.dat
[2011/06/09 22:58:44 | 000,001,854 | ---- | C] () -- C:\Users\Teresa\AppData\Roaming\GhostObjGAFix.xml
[2011/05/27 16:48:35 | 000,001,940 | ---- | C] () -- C:\Users\Teresa\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2010/05/15 12:53:20 | 000,000,000 | ---- | C] () -- C:\Users\Teresa\AppData\Roaming\wklnhst.dat

< End of report >

#24
emeraldnzl

Posted 09 September 2012 - 05:05 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hi TrevorAS35,

That question I asked at my last post... has there been any change in your machine i.e. how is you internet connection now?

Tell me when you come back.

For now

Download AdwCleaner from here to your desktop

Click on the green downward facing arrow on the right to commence download.
Run AdwCleaner and select Delete

Once done it will ask to reboot, allow this
On reboot a log will be produced please attach that

#25
TrevorAS35

Posted 09 September 2012 - 05:09 PM

Member

Topic Starter
Member
17 posts

IE is starting to work faster but also found out that Safari and Google Chrome work perfectly.... Big duh not trying them on my part. Any suggestions about IE and if i should just uninstall it? Also if i should just scrap IE which is better Safari or Chrome?

#26
emeraldnzl

Posted 09 September 2012 - 05:26 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Let's see how IE works after we clean away some Adware.

Look forward to seeing the log from AdwCleaner

#27
TrevorAS35

Posted 10 September 2012 - 08:50 PM

Member

Topic Starter
Member
17 posts

Here are the results:

# AdwCleaner v2.001 - Logfile created 09/10/2012 at 21:44:25
# Updated 09/09/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Teresa - TERESA-PC
# Boot Mode : Normal
# Running from : C:\Users\Teresa\Desktop\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Free Offers from Freeze.com
Folder Deleted : C:\ProgramData\Ask

***** [Registry] *****

Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\Freeze.com
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Google Chrome v21.0.1180.89

File : C:\Users\Teresa\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1492 octets] - [10/09/2012 21:44:25]

########## EOF - C:\AdwCleaner[S1].txt - [1552 octets] ##########

#28
emeraldnzl

Posted 10 September 2012 - 09:10 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Any suggestions about IE and if i should just uninstall it? Also if i should just scrap IE which is better Safari or Chrome?

IE should be left it is so entwined with your OS. As to whether you should use another browser well that is up to you really. Chrome and Safari are both good browsers. I generally comment on that area when I post my clearing away the tools statement at the end. See what you make of that.

Now

I think we are pretty nearly finished.

One last scan and then we will go to clearing away the tools we have been using.

Please run a free online scan with the ESET Online Scanner

Vista / Win7 users: Right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator.

Note: This scan works with Internet Explorer or Mozilla FireFox.

If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.

Click the green ESET Online Scanner box
Tick the box next to YES, I accept the Terms of Use
then click on: Start
You may see a panel towards the top of the screen telling you the website wants to install an addon... click and allow it to install. If your firewall asks whether you want to allow installation, say yes.
Make sure that the option Scan archives is checked.
Now click on Advanced Settings and select the following:
- Scan for potentially unwanted applications
- Scan for potentially unsafe applications
- Enable Anti-Stealth Technology
Click on Start
The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
When completed the Online Scan will begin automatically. The scan may take several hours.
Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
When completed select Uninstall application on close, make sure you copy the logfile first!
Then click on: Finish
Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
Copy and paste that log as a reply to this topic.

#29
TrevorAS35

Posted 11 September 2012 - 03:34 PM

Member

Topic Starter
Member
17 posts

Heres the log, said no threats were found:

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=e3b3d3c4fbe5594fb0bec2a4f7011f76
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-09-11 03:16:20
# local_time=2012-09-11 10:16:20 (-0600, Central Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 11562862 98911182 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=200442
# found=0
# cleaned=0
# scan_time=8848

#30
emeraldnzl

Posted 11 September 2012 - 05:19 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello again TrevorAS35,

All looks good.

We have a couple of last steps to perform and then you're all set. Posted Image

Follow these steps to uninstall Combofix and tools used in the removal of malware. This will also clean out and reset your Restore Points.

Click START then RUN
Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.

Step 2

Double-click OTL.exe to run it. (Vista users, please right click on OTL.exe and select "Run as an Administrator")
Click on the CleanUp! button
Click Yes to begin the Cleanup process and remove these components, including this application.
You will be asked to reboot the machine to finish the Cleanup process. If you are asked to reboot the machine choose Yes.

Step 3

To uninstall ESET OnlineScanner

Go to Start and type in the Search programs and files box ESET

Click on the ESET folder

Right Click on OnlineScannerUninstaller and run as Administrator

Click yes to run

-------------------------------------------------------------------------------------------------------------------

A reminder: Remember to (re-install if unistalled during cleaning) up date and turn back on any anti-malware programs you may have turned off during the cleaning process.
-------------------------------------------------------------------------------------------------------------------

Here are some things that I think are worth having a look at if you don't already know about them:

---------------------------------------------------------------------------------------------------------------------

It is good security practice to change your passwords to all your online accounts on a fairly regular basis, this is especially true after an infection. Refer to this Microsoft article Strong passwords: How to create and use them.

----------------------------------------------------------------------------------------------------------------------

Regularly check that your Java is up to date. Older versions are vunerable to malicious attack.

Download Java for Windows

Reboot your computer.
You also need to unininstall older versions of Java.
Click Start > Control Panel > Add or Remove Programs
Remove all Java updates except the latest one you have just installed.

--------------------------------------------------------------------------------------------------------------------

Make Internet Explorer more secure

Click Start > Run
Type Inetcpl.cpl & click OK
Click on the Security tab
Click Reset all zones to default level
Make sure the Internet Zone is selected & Click Custom level
In the ActiveX section, set the first two options ("Download signed and unsigned ActiveX controls) to "Prompt", and ("Initialize and Script ActiveX controls not marked as safe") to "Disable".
Next Click OK, then Apply button and then OK to exit the Internet Properties page.

* Consider using an alternate browser.

Opera may be downloaded from here. It is one of the least targeted of all browers.

Avant may be downloaded from here. Another one that is less well known.

Chrome may be downloaded from here . One of the most used nowadays.

Firefox may be downloaded from Here. I use Firefox because I like it. Used to be one of the safest but now targeted probably as much as IE.

Adblock Plus is a good Add-on for Firefox that helps prevent those annoying pop ups.

-----------------------------------------------------------------------------------------------------------------------

To help protect your computer in the future here are some free programs you can look at:

If you do not already have automatic updates set then it is recommended that you do set Windows to check, download and install your updates automatically.

* Click Start > Control Panel > System and Security > Windows Update
* Under Windows Update click on Turn automatic updating on or off
* Check items shown to ensure you receive updates automatically. Click OK.

And to keep your system clean consider choosing from these free for home use malware scanners and updating and running weekly.
Malwarebytes
SuperAntiSpyWare

Be aware of what emails you open and websites you visit.

Go here for some good advice about how to prevent infection.
Have a safe and happy computing day!