Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Computer Infected, Need Help Please [Solved]


  • This topic is locked This topic is locked

#16
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
rogue killer log:

RogueKiller V8.0.5 [09/23/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Joyce [Admin rights]
Mode : Scan -- Date : 09/27/2012 21:16:10

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts

˙ž1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: FUJITSU MJA2320BH G2 ATA Device +++++
--- User ---
[MBR] 2d064189859ddab840883a8668e51f50
[BSP] 9b9284ace17357bc81c960ad077b6017 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 294603 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 606420992 | Size: 9141 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1].txt >>
RKreport[1].txt
  • 0

Advertisements


#17
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Some clarification, just in case....

The rogue killer log above was after scan but before delete. Also, the report doesn't produce automatically, I have to hit the report button.

Here is the rogue killer log after delete was clicked:

RogueKiller V8.0.5 [09/23/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Joyce [Admin rights]
Mode : Remove -- Date : 09/27/2012 21:18:33

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts

˙ž1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: FUJITSU MJA2320BH G2 ATA Device +++++
--- User ---
[MBR] 2d064189859ddab840883a8668e51f50
[BSP] 9b9284ace17357bc81c960ad077b6017 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 294603 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 606420992 | Size: 9141 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
  • 0

#18
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
after fix shortcuts:

RogueKiller V8.0.5 [09/23/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Joyce [Admin rights]
Mode : Shortcuts HJfix -- Date : 09/27/2012 21:23:32

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ File attributes restored: ¤¤¤
Desktop: Success 1 / Fail 0
Quick launch: Success 1 / Fail 0
Programs: Success 12 / Fail 0
Start menu: Success 1 / Fail 0
User folder: Success 116 / Fail 0
My documents: Success 35 / Fail 35
My favorites: Success 0 / Fail 0
My pictures: Success 1 / Fail 0
My music: Success 181 / Fail 0
My videos: Success 0 / Fail 0
Local drives: Success 80 / Fail 0
Backup: [NOT FOUND]

Drives:
[C:] \Device\HarddiskVolume2 -- 0x3 --> Restored
[D:] \Device\CdRom0 -- 0x5 --> Skipped

¤¤¤ Infection : ¤¤¤

Finished : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt
  • 0

#19
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Went to three of my sites and did searches. Two worked great, one gave me the same google message as before.

We're sorry...

... but your computer or network may be sending automated queries. To protect our users, we can't process your request right now.
See Google Help for more information.
  • 0

#20
CompCav

CompCav

    Member 5k

  • Expert
  • 12,448 posts
OK if this warning is in Firefox do this:


  • Rename (or delete) cookies.sqlite (cookies.sqlite.old) and delete other present cookie files like cookies.sqlite-journal in the Firefox Profile Folder in case the file cookies.sqlite got corrupted.
Detailed directions for this are here.


Then try your sites again. If that did not do it then do this:

Create a new profile as a test to check if your current profile is causing the problems.

See "Basic Troubleshooting: Make a new profile":

Additional profiles can be created using the Firefox Profile Manager. If you haven't yet created a new profile, completely close Firefox by choosing File -> Exit (or Quit) and then open the Profile Manager and follow the prompts to create a new profile. Make note of the name you give to the new profile so you can distinguish between the old and the new. You can exit the Profile Manager at this point and a new profile folder will be created (if you don't open Firefox with the new profile, the newly created profile folder will be an "empty shell").


Try it again it should work then you can copy over data to your new profile:


Instructions for copying data from old to new profiles are here.


Please let me know how it goes and if any other browsers are having issues. :thumbsup:
  • 0

#21
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
CompCav.....sorry I didn't get to this yesterday. Don't want you to think I don't appreciate your help.

I deleted the cookies cookies.sqlite......didn't change anything

Made the new profile in firefox....didn't change anything

Tried to access the sites in Chrome....same message
  • 0

#22
CompCav

CompCav

    Member 5k

  • Expert
  • 12,448 posts
Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

  • 0

#23
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
19:27:14.0770 3304 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
19:27:16.0346 3304 ============================================================
19:27:16.0346 3304 Current date / time: 2012/09/29 19:27:16.0346
19:27:16.0346 3304 SystemInfo:
19:27:16.0346 3304
19:27:16.0346 3304 OS Version: 6.1.7601 ServicePack: 1.0
19:27:16.0346 3304 Product type: Workstation
19:27:16.0346 3304 ComputerName: JOYCE-LAPTOP
19:27:16.0346 3304 UserName: Joyce
19:27:16.0346 3304 Windows directory: C:\windows
19:27:16.0346 3304 System windows directory: C:\windows
19:27:16.0346 3304 Running under WOW64
19:27:16.0346 3304 Processor architecture: Intel x64
19:27:16.0346 3304 Number of processors: 2
19:27:16.0346 3304 Page size: 0x1000
19:27:16.0346 3304 Boot type: Normal boot
19:27:16.0346 3304 ============================================================
19:27:17.0718 3304 BG loaded
19:27:20.0152 3304 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:27:20.0183 3304 ============================================================
19:27:20.0183 3304 \Device\Harddisk0\DR0:
19:27:20.0246 3304 MBR partitions:
19:27:20.0246 3304 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x23F65800
19:27:20.0246 3304 ============================================================
19:27:20.0511 3304 C: <-> \Device\Harddisk0\DR0\Partition1
19:27:20.0511 3304 ============================================================
19:27:20.0511 3304 Initialize success
19:27:20.0511 3304 ============================================================
19:28:02.0780 5048 ============================================================
19:28:02.0780 5048 Scan started
19:28:02.0780 5048 Mode: Manual; SigCheck; TDLFS;
19:28:02.0780 5048 ============================================================
19:28:07.0435 5048 ================ Scan system memory ========================
19:28:07.0435 5048 System memory - ok
19:28:07.0436 5048 ================ Scan services =============================
19:28:08.0118 5048 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
19:28:08.0322 5048 1394ohci - ok
19:28:08.0431 5048 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
19:28:08.0479 5048 ACPI - ok
19:28:08.0609 5048 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
19:28:09.0238 5048 AcpiPmi - ok
19:28:09.0400 5048 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:28:09.0445 5048 AdobeARMservice - ok
19:28:09.0666 5048 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:28:09.0762 5048 AdobeFlashPlayerUpdateSvc - ok
19:28:09.0829 5048 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
19:28:09.0874 5048 adp94xx - ok
19:28:09.0933 5048 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
19:28:10.0009 5048 adpahci - ok
19:28:10.0060 5048 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
19:28:10.0128 5048 adpu320 - ok
19:28:10.0214 5048 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
19:28:10.0420 5048 AeLookupSvc - ok
19:28:10.0456 5048 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
19:28:10.0545 5048 AFD - ok
19:28:10.0663 5048 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
19:28:10.0747 5048 AgereModemAudio - ok
19:28:10.0838 5048 [ C98356D813B581E9C425B42A5D146CE0 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
19:28:10.0926 5048 AgereSoftModem - ok
19:28:10.0946 5048 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
19:28:10.0973 5048 agp440 - ok
19:28:11.0003 5048 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
19:28:11.0103 5048 ALG - ok
19:28:11.0139 5048 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
19:28:11.0206 5048 aliide - ok
19:28:11.0304 5048 [ 98A2774D3F18C107874C8C1163EBE484 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
19:28:11.0552 5048 AMD External Events Utility - ok
19:28:11.0831 5048 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
19:28:11.0882 5048 amdide - ok
19:28:11.0929 5048 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
19:28:12.0017 5048 AmdK8 - ok
19:28:12.0035 5048 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
19:28:12.0076 5048 AmdPPM - ok
19:28:12.0114 5048 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
19:28:12.0178 5048 amdsata - ok
19:28:12.0235 5048 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
19:28:12.0292 5048 amdsbs - ok
19:28:12.0361 5048 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
19:28:12.0409 5048 amdxata - ok
19:28:12.0459 5048 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
19:28:12.0687 5048 AppID - ok
19:28:12.0710 5048 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
19:28:12.0776 5048 AppIDSvc - ok
19:28:12.0824 5048 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
19:28:12.0896 5048 Appinfo - ok
19:28:12.0990 5048 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:28:13.0039 5048 Apple Mobile Device - ok
19:28:13.0075 5048 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
19:28:13.0102 5048 arc - ok
19:28:13.0116 5048 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
19:28:13.0153 5048 arcsas - ok
19:28:13.0168 5048 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
19:28:13.0249 5048 AsyncMac - ok
19:28:13.0282 5048 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
19:28:13.0294 5048 atapi - ok
19:28:14.0069 5048 [ 173F4C05F87085E9BDA3F7037BC9F40E ] atikmdag C:\windows\system32\DRIVERS\atikmdag.sys
19:28:14.0163 5048 atikmdag - ok
19:28:14.0195 5048 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys
19:28:14.0267 5048 AtiPcie - ok
19:28:14.0312 5048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
19:28:14.0403 5048 AudioEndpointBuilder - ok
19:28:14.0498 5048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
19:28:14.0551 5048 AudioSrv - ok
19:28:15.0698 5048 [ 7A0F6A3E0E41425B9BA54616B482668A ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
19:28:15.0837 5048 AVGIDSAgent - ok
19:28:15.0894 5048 [ E6671E90D38C88764412E07C9D9B3D63 ] AVGIDSDriver C:\windows\system32\DRIVERS\AVGIDSDriver.Sys
19:28:15.0945 5048 AVGIDSDriver - ok
19:28:15.0983 5048 [ 1553B388E0F0462C25AD8F30C3C29E83 ] AVGIDSEH C:\windows\system32\DRIVERS\AVGIDSEH.Sys
19:28:16.0019 5048 AVGIDSEH - ok
19:28:16.0059 5048 [ DCA426A66739E75F51A72160DFB945AD ] AVGIDSFilter C:\windows\system32\DRIVERS\AVGIDSFilter.Sys
19:28:16.0098 5048 AVGIDSFilter - ok
19:28:16.0168 5048 [ FF7383388A7D2283DAE5831ABC2B0720 ] Avgldx64 C:\windows\system32\DRIVERS\avgldx64.sys
19:28:16.0218 5048 Avgldx64 - ok
19:28:16.0271 5048 [ 997D002827D3E3DCBBB25BF46DB161AB ] Avgmfx64 C:\windows\system32\DRIVERS\avgmfx64.sys
19:28:16.0309 5048 Avgmfx64 - ok
19:28:16.0341 5048 [ BCCFE3374C887075CDE2AC8FDB1CB2F8 ] Avgrkx64 C:\windows\system32\DRIVERS\avgrkx64.sys
19:28:16.0374 5048 Avgrkx64 - ok
19:28:16.0393 5048 [ 0D49ADCEBE243B79366EA523B647519A ] Avgtdia C:\windows\system32\DRIVERS\avgtdia.sys
19:28:16.0421 5048 Avgtdia - ok
19:28:16.0532 5048 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
19:28:16.0602 5048 avgwd - ok
19:28:16.0670 5048 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
19:28:16.0808 5048 AxInstSV - ok
19:28:16.0871 5048 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
19:28:16.0981 5048 b06bdrv - ok
19:28:17.0020 5048 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
19:28:17.0093 5048 b57nd60a - ok
19:28:17.0130 5048 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
19:28:17.0203 5048 BDESVC - ok
19:28:17.0228 5048 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
19:28:17.0287 5048 Beep - ok
19:28:17.0443 5048 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
19:28:17.0524 5048 BFE - ok
19:28:17.0737 5048 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
19:28:17.0831 5048 BITS - ok
19:28:17.0854 5048 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
19:28:17.0890 5048 blbdrive - ok
19:28:18.0081 5048 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:28:18.0124 5048 Bonjour Service - ok
19:28:18.0193 5048 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
19:28:18.0251 5048 bowser - ok
19:28:18.0301 5048 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
19:28:18.0378 5048 BrFiltLo - ok
19:28:18.0397 5048 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
19:28:18.0422 5048 BrFiltUp - ok
19:28:18.0448 5048 [ 5C2F352A4E961D72518261257AAE204B ] Bridge C:\windows\system32\DRIVERS\bridge.sys
19:28:18.0529 5048 Bridge - ok
19:28:18.0542 5048 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
19:28:18.0579 5048 BridgeMP - ok
19:28:18.0648 5048 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
19:28:18.0723 5048 Browser - ok
19:28:18.0757 5048 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
19:28:18.0863 5048 Brserid - ok
19:28:18.0891 5048 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
19:28:18.0934 5048 BrSerWdm - ok
19:28:18.0963 5048 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
19:28:19.0029 5048 BrUsbMdm - ok
19:28:19.0046 5048 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
19:28:19.0087 5048 BrUsbSer - ok
19:28:19.0113 5048 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
19:28:19.0186 5048 BTHMODEM - ok
19:28:19.0247 5048 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
19:28:19.0341 5048 bthserv - ok
19:28:19.0376 5048 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
19:28:19.0447 5048 cdfs - ok
19:28:19.0495 5048 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
19:28:19.0547 5048 cdrom - ok
19:28:19.0581 5048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
19:28:19.0659 5048 CertPropSvc - ok
19:28:19.0840 5048 [ 837FF2D497880198C918E6954DBD170C ] cfWiMAXService C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
19:28:19.0889 5048 cfWiMAXService - ok
19:28:19.0935 5048 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
19:28:20.0001 5048 circlass - ok
19:28:20.0083 5048 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
19:28:20.0178 5048 CLFS - ok
19:28:20.0328 5048 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:28:20.0396 5048 clr_optimization_v2.0.50727_32 - ok
19:28:20.0578 5048 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:28:20.0676 5048 clr_optimization_v2.0.50727_64 - ok
19:28:20.0715 5048 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:28:20.0780 5048 clr_optimization_v4.0.30319_32 - ok
19:28:20.0807 5048 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:28:20.0837 5048 clr_optimization_v4.0.30319_64 - ok
19:28:20.0848 5048 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
19:28:20.0891 5048 CmBatt - ok
19:28:20.0917 5048 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
19:28:20.0950 5048 cmdide - ok
19:28:20.0988 5048 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
19:28:21.0033 5048 CNG - ok
19:28:21.0085 5048 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
19:28:21.0124 5048 Compbatt - ok
19:28:21.0166 5048 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
19:28:21.0222 5048 CompositeBus - ok
19:28:21.0227 5048 COMSysApp - ok
19:28:21.0277 5048 [ D252C53BCDFC199BBA55EEB10CDB266E ] ConfigFree Gadget Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
19:28:21.0318 5048 ConfigFree Gadget Service - ok
19:28:21.0344 5048 [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
19:28:21.0440 5048 ConfigFree Service - ok
19:28:21.0482 5048 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
19:28:21.0506 5048 crcdisk - ok
19:28:21.0565 5048 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
19:28:21.0660 5048 CryptSvc - ok
19:28:21.0755 5048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
19:28:21.0824 5048 DcomLaunch - ok
19:28:21.0879 5048 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
19:28:21.0982 5048 defragsvc - ok
19:28:22.0024 5048 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
19:28:22.0100 5048 DfsC - ok
19:28:22.0180 5048 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
19:28:22.0262 5048 Dhcp - ok
19:28:22.0300 5048 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
19:28:22.0375 5048 discache - ok
19:28:22.0412 5048 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
19:28:22.0437 5048 Disk - ok
19:28:22.0490 5048 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
19:28:22.0547 5048 Dnscache - ok
19:28:22.0628 5048 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
19:28:22.0739 5048 dot3svc - ok
19:28:22.0843 5048 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
19:28:22.0902 5048 DPS - ok
19:28:22.0949 5048 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
19:28:23.0018 5048 drmkaud - ok
19:28:23.0103 5048 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
19:28:23.0165 5048 DXGKrnl - ok
19:28:23.0213 5048 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
19:28:23.0292 5048 EapHost - ok
19:28:23.0704 5048 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
19:28:23.0899 5048 ebdrv - ok
19:28:23.0924 5048 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
19:28:23.0992 5048 EFS - ok
19:28:24.0129 5048 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
19:28:24.0251 5048 ehRecvr - ok
19:28:24.0290 5048 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
19:28:24.0350 5048 ehSched - ok
19:28:24.0441 5048 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
19:28:24.0550 5048 elxstor - ok
19:28:24.0593 5048 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
19:28:24.0677 5048 ErrDev - ok
19:28:24.0787 5048 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
19:28:24.0855 5048 EventSystem - ok
19:28:24.0859 5048 ewusbnet - ok
19:28:24.0866 5048 ew_hwusbdev - ok
19:28:24.0893 5048 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
19:28:24.0952 5048 exfat - ok
19:28:25.0043 5048 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
19:28:25.0170 5048 fastfat - ok
19:28:25.0279 5048 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
19:28:25.0348 5048 Fax - ok
19:28:25.0372 5048 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
19:28:25.0449 5048 fdc - ok
19:28:25.0490 5048 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
19:28:25.0645 5048 fdPHost - ok
19:28:25.0689 5048 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
19:28:25.0745 5048 FDResPub - ok
19:28:25.0795 5048 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
19:28:25.0868 5048 FileInfo - ok
19:28:25.0890 5048 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
19:28:25.0985 5048 Filetrace - ok
19:28:26.0008 5048 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
19:28:26.0063 5048 flpydisk - ok
19:28:26.0115 5048 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
19:28:26.0151 5048 FltMgr - ok
19:28:26.0288 5048 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
19:28:26.0555 5048 FontCache - ok
19:28:26.0625 5048 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:28:26.0687 5048 FontCache3.0.0.0 - ok
19:28:26.0746 5048 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
19:28:26.0803 5048 FsDepends - ok
19:28:26.0858 5048 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
19:28:26.0899 5048 Fs_Rec - ok
19:28:26.0928 5048 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
19:28:26.0983 5048 fvevol - ok
19:28:27.0066 5048 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
19:28:27.0120 5048 gagp30kx - ok
19:28:27.0262 5048 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
19:28:27.0334 5048 GamesAppService - ok
19:28:27.0383 5048 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
19:28:27.0433 5048 GEARAspiWDM - ok
19:28:27.0631 5048 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
19:28:27.0719 5048 gpsvc - ok
19:28:27.0867 5048 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:28:27.0915 5048 gupdate - ok
19:28:27.0920 5048 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:28:27.0932 5048 gupdatem - ok
19:28:27.0985 5048 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:28:28.0039 5048 gusvc - ok
19:28:28.0085 5048 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
19:28:28.0176 5048 hcw85cir - ok
19:28:28.0249 5048 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
19:28:28.0321 5048 HdAudAddService - ok
19:28:28.0347 5048 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
19:28:28.0367 5048 HDAudBus - ok
19:28:28.0434 5048 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
19:28:28.0480 5048 HidBatt - ok
19:28:28.0494 5048 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
19:28:28.0570 5048 HidBth - ok
19:28:28.0602 5048 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
19:28:28.0648 5048 HidIr - ok
19:28:28.0683 5048 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
19:28:28.0742 5048 hidserv - ok
19:28:28.0782 5048 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
19:28:28.0819 5048 HidUsb - ok
19:28:28.0858 5048 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
19:28:28.0947 5048 hkmsvc - ok
19:28:28.0987 5048 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
19:28:29.0038 5048 HomeGroupListener - ok
19:28:29.0123 5048 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
19:28:29.0162 5048 HomeGroupProvider - ok
19:28:29.0186 5048 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
19:28:29.0232 5048 HpSAMD - ok
19:28:29.0374 5048 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
19:28:29.0485 5048 HTTP - ok
19:28:29.0490 5048 huawei_enumerator - ok
19:28:29.0499 5048 hwdatacard - ok
19:28:29.0555 5048 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
19:28:29.0607 5048 hwpolicy - ok
19:28:29.0645 5048 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
19:28:29.0668 5048 i8042prt - ok
19:28:29.0718 5048 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
19:28:29.0787 5048 iaStorV - ok
19:28:29.0865 5048 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:28:30.0007 5048 idsvc - ok
19:28:30.0042 5048 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
19:28:30.0079 5048 iirsp - ok
19:28:30.0200 5048 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
19:28:30.0363 5048 IKEEXT - ok
19:28:30.0518 5048 [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
19:28:30.0578 5048 IntcAzAudAddService - ok
19:28:30.0638 5048 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
19:28:30.0679 5048 intelide - ok
19:28:30.0717 5048 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
19:28:30.0800 5048 intelppm - ok
19:28:30.0827 5048 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
19:28:30.0901 5048 IPBusEnum - ok
19:28:30.0935 5048 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
19:28:31.0032 5048 IpFilterDriver - ok
19:28:31.0133 5048 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
19:28:31.0285 5048 iphlpsvc - ok
19:28:31.0320 5048 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
19:28:31.0383 5048 IPMIDRV - ok
19:28:31.0438 5048 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
19:28:31.0543 5048 IPNAT - ok
19:28:31.0627 5048 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:28:31.0673 5048 iPod Service - ok
19:28:31.0744 5048 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
19:28:31.0857 5048 IRENUM - ok
19:28:31.0894 5048 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
19:28:31.0917 5048 isapnp - ok
19:28:31.0996 5048 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
19:28:32.0041 5048 iScsiPrt - ok
19:28:32.0065 5048 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
19:28:32.0088 5048 kbdclass - ok
19:28:32.0109 5048 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
19:28:32.0161 5048 kbdhid - ok
19:28:32.0182 5048 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
19:28:32.0195 5048 KeyIso - ok
19:28:32.0245 5048 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
19:28:32.0271 5048 KSecDD - ok
19:28:32.0282 5048 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
19:28:32.0317 5048 KSecPkg - ok
19:28:32.0340 5048 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
19:28:32.0409 5048 ksthunk - ok
19:28:32.0463 5048 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
19:28:32.0571 5048 KtmRm - ok
19:28:32.0616 5048 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
19:28:32.0681 5048 LanmanServer - ok
19:28:32.0737 5048 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
19:28:32.0813 5048 LanmanWorkstation - ok
19:28:32.0850 5048 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
19:28:32.0912 5048 lltdio - ok
19:28:32.0961 5048 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
19:28:33.0032 5048 lltdsvc - ok
19:28:33.0058 5048 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
19:28:33.0101 5048 lmhosts - ok
19:28:33.0179 5048 [ 16679269303613C4CE7C8FF03413410F ] LPCFilter C:\windows\system32\DRIVERS\LPCFilter.sys
19:28:33.0220 5048 LPCFilter - ok
19:28:33.0250 5048 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
19:28:33.0284 5048 LSI_FC - ok
19:28:33.0327 5048 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
19:28:33.0353 5048 LSI_SAS - ok
19:28:33.0397 5048 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
19:28:33.0422 5048 LSI_SAS2 - ok
19:28:33.0455 5048 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
19:28:33.0491 5048 LSI_SCSI - ok
19:28:33.0521 5048 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
19:28:33.0579 5048 luafv - ok
19:28:33.0611 5048 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
19:28:33.0635 5048 MBAMProtector - ok
19:28:33.0775 5048 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:28:33.0838 5048 MBAMScheduler - ok
19:28:33.0955 5048 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:28:34.0037 5048 MBAMService - ok
19:28:34.0073 5048 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
19:28:34.0140 5048 Mcx2Svc - ok
19:28:34.0211 5048 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
19:28:34.0252 5048 megasas - ok
19:28:34.0300 5048 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
19:28:34.0361 5048 MegaSR - ok
19:28:34.0389 5048 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
19:28:34.0451 5048 MMCSS - ok
19:28:34.0508 5048 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
19:28:34.0562 5048 Modem - ok
19:28:34.0585 5048 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
19:28:34.0618 5048 monitor - ok
19:28:34.0637 5048 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
19:28:34.0661 5048 mouclass - ok
19:28:34.0729 5048 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
19:28:34.0780 5048 mouhid - ok
19:28:34.0814 5048 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
19:28:34.0851 5048 mountmgr - ok
19:28:34.0901 5048 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:28:34.0973 5048 MozillaMaintenance - ok
19:28:35.0045 5048 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
19:28:35.0104 5048 mpio - ok
19:28:35.0136 5048 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
19:28:35.0182 5048 mpsdrv - ok
19:28:35.0365 5048 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
19:28:35.0460 5048 MpsSvc - ok
19:28:35.0493 5048 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
19:28:35.0547 5048 MRxDAV - ok
19:28:35.0608 5048 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
19:28:35.0689 5048 mrxsmb - ok
19:28:35.0722 5048 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
19:28:35.0768 5048 mrxsmb10 - ok
19:28:35.0797 5048 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
19:28:35.0821 5048 mrxsmb20 - ok
19:28:35.0849 5048 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
19:28:35.0874 5048 msahci - ok
19:28:35.0908 5048 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
19:28:35.0935 5048 msdsm - ok
19:28:35.0962 5048 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
19:28:36.0014 5048 MSDTC - ok
19:28:36.0048 5048 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
19:28:36.0091 5048 Msfs - ok
19:28:36.0102 5048 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
19:28:36.0166 5048 mshidkmdf - ok
19:28:36.0192 5048 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
19:28:36.0229 5048 msisadrv - ok
19:28:36.0264 5048 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
19:28:36.0333 5048 MSiSCSI - ok
19:28:36.0338 5048 msiserver - ok
19:28:36.0402 5048 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
19:28:36.0475 5048 MSKSSRV - ok
19:28:36.0496 5048 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
19:28:36.0561 5048 MSPCLOCK - ok
19:28:36.0618 5048 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
19:28:36.0681 5048 MSPQM - ok
19:28:36.0729 5048 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
19:28:36.0789 5048 MsRPC - ok
19:28:36.0843 5048 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
19:28:36.0855 5048 mssmbios - ok
19:28:36.0895 5048 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
19:28:36.0965 5048 MSTEE - ok
19:28:36.0985 5048 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
19:28:37.0043 5048 MTConfig - ok
19:28:37.0061 5048 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
19:28:37.0085 5048 Mup - ok
19:28:37.0148 5048 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
19:28:37.0215 5048 napagent - ok
19:28:37.0252 5048 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
19:28:37.0304 5048 NativeWifiP - ok
19:28:37.0407 5048 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
19:28:37.0459 5048 NDIS - ok
19:28:37.0483 5048 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
19:28:37.0546 5048 NdisCap - ok
19:28:37.0570 5048 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
19:28:37.0627 5048 NdisTapi - ok
19:28:37.0669 5048 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
19:28:37.0746 5048 Ndisuio - ok
19:28:37.0782 5048 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
19:28:37.0859 5048 NdisWan - ok
19:28:37.0909 5048 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
19:28:37.0976 5048 NDProxy - ok
19:28:38.0034 5048 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
19:28:38.0131 5048 NetBIOS - ok
19:28:38.0179 5048 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
19:28:38.0256 5048 NetBT - ok
19:28:38.0284 5048 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
19:28:38.0296 5048 Netlogon - ok
19:28:38.0365 5048 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
19:28:38.0444 5048 Netman - ok
19:28:38.0511 5048 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
19:28:38.0591 5048 netprofm - ok
19:28:38.0638 5048 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:28:38.0668 5048 NetTcpPortSharing - ok
19:28:38.0713 5048 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
19:28:38.0776 5048 nfrd960 - ok
19:28:38.0845 5048 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
19:28:38.0903 5048 NlaSvc - ok
19:28:38.0960 5048 [ 5FE6F8C05F0769BBB74AFAC11453B182 ] nmwcd C:\windows\system32\drivers\ccdcmbx64.sys
19:28:39.0045 5048 nmwcd - ok
19:28:39.0089 5048 [ 73C929945C0850B8D1FE2FEA05FDF05D ] nmwcdc C:\windows\system32\drivers\ccdcmbox64.sys
19:28:39.0147 5048 nmwcdc - ok
19:28:39.0212 5048 [ 697CA586209E022D15DD0C838B235D6A ] nmwcdnsucx64 C:\windows\system32\drivers\nmwcdnsucx64.sys
19:28:39.0247 5048 nmwcdnsucx64 - ok
19:28:39.0316 5048 [ 292DDF13F91F2CB2482B57AACD6AEB9B ] nmwcdnsux64 C:\windows\system32\drivers\nmwcdnsux64.sys
19:28:39.0391 5048 nmwcdnsux64 - ok
19:28:39.0419 5048 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
19:28:39.0463 5048 Npfs - ok
19:28:39.0489 5048 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
19:28:39.0531 5048 nsi - ok
19:28:39.0603 5048 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
19:28:39.0695 5048 nsiproxy - ok
19:28:39.0907 5048 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
19:28:39.0999 5048 Ntfs - ok
19:28:40.0055 5048 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
19:28:40.0098 5048 Null - ok
19:28:40.0166 5048 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
19:28:40.0193 5048 nvraid - ok
19:28:40.0229 5048 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
19:28:40.0255 5048 nvstor - ok
19:28:40.0274 5048 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
19:28:40.0301 5048 nv_agp - ok
19:28:40.0316 5048 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
19:28:40.0355 5048 ohci1394 - ok
19:28:40.0446 5048 [ A861B4223B6B8EE13E1A5F7199B7E6C5 ] OpenVPNService C:\Program Files (x86)\personalVPN\bin\openvpnserv.exe
19:28:40.0547 5048 OpenVPNService ( UnsignedFile.Multi.Generic ) - warning
19:28:40.0547 5048 OpenVPNService - detected UnsignedFile.Multi.Generic (1)
19:28:40.0587 5048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
19:28:40.0665 5048 p2pimsvc - ok
19:28:40.0752 5048 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
19:28:40.0787 5048 p2psvc - ok
19:28:40.0862 5048 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
19:28:40.0897 5048 Parport - ok
19:28:40.0947 5048 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
19:28:41.0030 5048 partmgr - ok
19:28:41.0073 5048 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
19:28:41.0115 5048 PcaSvc - ok
19:28:41.0164 5048 [ 3FDE033DFB0D07F8B7D5C9A3044AA121 ] pccsmcfd C:\windows\system32\DRIVERS\pccsmcfdx64.sys
19:28:41.0225 5048 pccsmcfd - ok
19:28:41.0260 5048 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
19:28:41.0318 5048 pci - ok
19:28:41.0348 5048 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
19:28:41.0389 5048 pciide - ok
19:28:41.0433 5048 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
19:28:41.0466 5048 pcmcia - ok
19:28:41.0532 5048 [ FD2A66E8B1A3D1483A8F6CFA3C950B9B ] PCPitstop Scheduling C:\Program Files (x86)\PCPitstop\PCPitstopScheduleService.exe
19:28:41.0586 5048 PCPitstop Scheduling ( UnsignedFile.Multi.Generic ) - warning
19:28:41.0586 5048 PCPitstop Scheduling - detected UnsignedFile.Multi.Generic (1)
19:28:41.0617 5048 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
19:28:41.0643 5048 pcw - ok
19:28:41.0666 5048 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
19:28:41.0726 5048 PEAUTH - ok
19:28:41.0876 5048 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
19:28:41.0942 5048 PerfHost - ok
19:28:41.0984 5048 [ 663962900E7FEA522126BA287715BB4A ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
19:28:42.0004 5048 PGEffect - ok
19:28:42.0065 5048 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
19:28:42.0172 5048 pla - ok
19:28:42.0255 5048 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
19:28:42.0325 5048 PlugPlay - ok
19:28:42.0354 5048 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
19:28:42.0376 5048 PNRPAutoReg - ok
19:28:42.0399 5048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
19:28:42.0416 5048 PNRPsvc - ok
19:28:42.0491 5048 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
19:28:42.0561 5048 PolicyAgent - ok
19:28:42.0628 5048 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
19:28:43.0074 5048 Power - ok
19:28:43.0128 5048 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
19:28:43.0223 5048 PptpMiniport - ok
19:28:43.0284 5048 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
19:28:43.0455 5048 Processor - ok
19:28:43.0574 5048 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
19:28:43.0726 5048 ProfSvc - ok
19:28:43.0786 5048 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
19:28:43.0815 5048 ProtectedStorage - ok
19:28:43.0895 5048 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
19:28:43.0995 5048 Psched - ok
19:28:44.0112 5048 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
19:28:44.0240 5048 ql2300 - ok
19:28:44.0269 5048 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
19:28:44.0331 5048 ql40xx - ok
19:28:44.0407 5048 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
19:28:44.0441 5048 QWAVE - ok
19:28:44.0469 5048 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
19:28:44.0524 5048 QWAVEdrv - ok
19:28:44.0575 5048 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
19:28:44.0662 5048 RasAcd - ok
19:28:44.0721 5048 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
19:28:44.0767 5048 RasAgileVpn - ok
19:28:44.0792 5048 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
19:28:44.0879 5048 RasAuto - ok
19:28:44.0929 5048 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
19:28:44.0993 5048 Rasl2tp - ok
19:28:45.0053 5048 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
19:28:45.0108 5048 RasMan - ok
19:28:45.0160 5048 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
19:28:45.0261 5048 RasPppoe - ok
19:28:45.0291 5048 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
19:28:45.0355 5048 RasSstp - ok
19:28:45.0393 5048 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
19:28:45.0459 5048 rdbss - ok
19:28:45.0497 5048 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
19:28:45.0554 5048 rdpbus - ok
19:28:45.0576 5048 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
19:28:45.0633 5048 RDPCDD - ok
19:28:45.0658 5048 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
19:28:45.0729 5048 RDPENCDD - ok
19:28:45.0758 5048 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
19:28:45.0802 5048 RDPREFMP - ok
19:28:45.0886 5048 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
19:28:45.0996 5048 RDPWD - ok
19:28:46.0048 5048 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
19:28:46.0082 5048 rdyboost - ok
19:28:46.0139 5048 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
19:28:46.0228 5048 RemoteAccess - ok
19:28:46.0262 5048 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
19:28:46.0352 5048 RemoteRegistry - ok
19:28:46.0388 5048 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
19:28:46.0482 5048 RpcEptMapper - ok
19:28:46.0513 5048 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
19:28:46.0690 5048 RpcLocator - ok
19:28:46.0770 5048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
19:28:46.0840 5048 RpcSs - ok
19:28:46.0930 5048 RSELSVC - ok
19:28:46.0973 5048 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
19:28:47.0043 5048 rspndr - ok
19:28:47.0078 5048 [ 8C22F21C924413D4E109995F748E18BB ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
19:28:47.0153 5048 RSUSBSTOR - ok
19:28:47.0196 5048 [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
19:28:47.0256 5048 RTL8167 - ok
19:28:47.0324 5048 [ 7475548B0BA58EBA4D12414FC9E9DFE6 ] rtl8192se C:\windows\system32\DRIVERS\rtl8192se.sys
19:28:47.0405 5048 rtl8192se - ok
19:28:47.0424 5048 RtsUIR - ok
19:28:47.0443 5048 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
19:28:47.0456 5048 SamSs - ok
19:28:47.0500 5048 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
19:28:47.0545 5048 sbp2port - ok
19:28:47.0617 5048 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
19:28:47.0694 5048 SCardSvr - ok
19:28:47.0758 5048 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
19:28:47.0837 5048 scfilter - ok
19:28:47.0944 5048 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
19:28:48.0042 5048 Schedule - ok
19:28:48.0079 5048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
19:28:48.0126 5048 SCPolicySvc - ok
19:28:48.0139 5048 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
19:28:48.0205 5048 SDRSVC - ok
19:28:48.0243 5048 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
19:28:48.0294 5048 secdrv - ok
19:28:48.0323 5048 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
19:28:48.0389 5048 seclogon - ok
19:28:48.0429 5048 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
19:28:48.0493 5048 SENS - ok
19:28:48.0525 5048 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
19:28:48.0574 5048 SensrSvc - ok
19:28:48.0595 5048 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
19:28:48.0646 5048 Serenum - ok
19:28:48.0708 5048 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
19:28:48.0744 5048 Serial - ok
19:28:48.0788 5048 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
19:28:48.0841 5048 sermouse - ok
19:28:48.0972 5048 [ E90CE237E99C5D26CB3872318A7799D0 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
19:28:48.0993 5048 ServiceLayer - ok
19:28:49.0053 5048 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
19:28:49.0144 5048 SessionEnv - ok
19:28:49.0208 5048 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
19:28:49.0268 5048 sffdisk - ok
19:28:49.0293 5048 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
19:28:49.0325 5048 sffp_mmc - ok
19:28:49.0354 5048 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
19:28:49.0397 5048 sffp_sd - ok
19:28:49.0442 5048 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
19:28:49.0509 5048 sfloppy - ok
19:28:49.0560 5048 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
19:28:49.0632 5048 SharedAccess - ok
19:28:49.0703 5048 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
19:28:49.0771 5048 ShellHWDetection - ok
19:28:49.0817 5048 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
19:28:49.0841 5048 SiSRaid2 - ok
19:28:49.0862 5048 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
19:28:49.0888 5048 SiSRaid4 - ok
19:28:49.0956 5048 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:28:50.0329 5048 SkypeUpdate - ok
19:28:50.0370 5048 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
19:28:50.0433 5048 Smb - ok
19:28:50.0472 5048 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
19:28:50.0513 5048 SNMPTRAP - ok
19:28:50.0558 5048 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
19:28:50.0580 5048 spldr - ok
19:28:50.0628 5048 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
19:28:50.0672 5048 Spooler - ok
19:28:50.0798 5048 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
19:28:51.0157 5048 sppsvc - ok
19:28:51.0191 5048 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
19:28:51.0257 5048 sppuinotify - ok
19:28:51.0373 5048 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
19:28:51.0467 5048 srv - ok
19:28:51.0549 5048 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
19:28:51.0596 5048 srv2 - ok
19:28:51.0642 5048 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
19:28:51.0682 5048 srvnet - ok
19:28:51.0733 5048 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
19:28:51.0807 5048 SSDPSRV - ok
19:28:51.0833 5048 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
19:28:51.0884 5048 SstpSvc - ok
19:28:51.0916 5048 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
19:28:51.0940 5048 stexstor - ok
19:28:52.0010 5048 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
19:28:52.0062 5048 stisvc - ok
19:28:52.0099 5048 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
19:28:52.0120 5048 swenum - ok
19:28:52.0196 5048 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
19:28:52.0283 5048 swprv - ok
19:28:52.0340 5048 [ BE7311DA9D6833FA69ED04B744A1C8F8 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
19:28:52.0364 5048 SynTP - ok
19:28:52.0461 5048 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
19:28:52.0514 5048 SysMain - ok
19:28:52.0546 5048 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
19:28:52.0619 5048 TabletInputService - ok
19:28:52.0680 5048 [ 7CCF5587BDCD50C102B526E69DA40BF0 ] tap0901 C:\windows\system32\DRIVERS\tap0901.sys
19:28:52.0736 5048 tap0901 - ok
19:28:52.0756 5048 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
19:28:52.0836 5048 TapiSrv - ok
19:28:52.0883 5048 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
19:28:52.0960 5048 TBS - ok
19:28:53.0024 5048 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
19:28:53.0075 5048 Tcpip - ok
19:28:53.0219 5048 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
19:28:53.0270 5048 TCPIP6 - ok
19:28:53.0309 5048 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
19:28:53.0371 5048 tcpipreg - ok
19:28:53.0417 5048 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
19:28:53.0436 5048 tdcmdpst - ok
19:28:53.0463 5048 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
19:28:53.0528 5048 TDPIPE - ok
19:28:53.0566 5048 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
19:28:53.0605 5048 TDTCP - ok
19:28:53.0640 5048 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
19:28:53.0704 5048 tdx - ok
19:28:53.0732 5048 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
19:28:53.0756 5048 TermDD - ok
19:28:53.0815 5048 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
19:28:53.0912 5048 TermService - ok
19:28:53.0955 5048 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
19:28:53.0973 5048 Themes - ok
19:28:53.0985 5048 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
19:28:54.0025 5048 THREADORDER - ok
19:28:54.0124 5048 [ 32577B987AE5401038451BB392CB8D89 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
19:28:54.0146 5048 TMachInfo - ok
19:28:54.0173 5048 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe
19:28:54.0197 5048 TODDSrv - ok
19:28:54.0238 5048 [ 06C61275ADC64F1E36240A2287998A5E ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
19:28:54.0267 5048 TosCoSrv - ok
19:28:54.0343 5048 [ 707800855AFBD7648375EFB1519B8D6D ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
19:28:54.0381 5048 TOSHIBA eco Utility Service - ok
19:28:54.0430 5048 [ DD58E1250F604CBBADDA04575E5E2376 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
19:28:54.0493 5048 TOSHIBA HDD SSD Alert Service - ok
19:28:54.0532 5048 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
19:28:54.0565 5048 tos_sps64 - ok
19:28:54.0626 5048 [ DE64C52BD0671165CF2EEBF2A728A3E2 ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
19:28:54.0733 5048 TPCHSrv - ok
19:28:54.0774 5048 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
19:28:54.0823 5048 TrkWks - ok
19:28:54.0885 5048 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
19:28:54.0967 5048 TrustedInstaller - ok
19:28:55.0010 5048 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
19:28:55.0071 5048 tssecsrv - ok
19:28:55.0099 5048 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
19:28:55.0150 5048 TsUsbFlt - ok
19:28:55.0187 5048 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
19:28:55.0243 5048 tunnel - ok
19:28:55.0300 5048 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
19:28:55.0320 5048 TVALZ - ok
19:28:55.0352 5048 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
19:28:55.0372 5048 TVALZFL - ok
19:28:55.0405 5048 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
19:28:55.0444 5048 uagp35 - ok
19:28:55.0475 5048 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
19:28:55.0573 5048 udfs - ok
19:28:55.0649 5048 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
19:28:55.0689 5048 UI0Detect - ok
19:28:55.0736 5048 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
19:28:55.0773 5048 uliagpkx - ok
19:28:55.0801 5048 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\drivers\umbus.sys
19:28:55.0838 5048 umbus - ok
19:28:55.0873 5048 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
19:28:55.0930 5048 UmPass - ok
19:28:55.0994 5048 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
19:28:56.0035 5048 upnphost - ok
19:28:56.0087 5048 [ 34AFB83C7BBA370E404E52CC2290350C ] upperdev C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys
19:28:56.0136 5048 upperdev - ok
19:28:56.0178 5048 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
19:28:56.0209 5048 usbccgp - ok
19:28:56.0215 5048 USBCCID - ok
19:28:56.0247 5048 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
19:28:56.0283 5048 usbcir - ok
19:28:56.0330 5048 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
19:28:56.0351 5048 usbehci - ok
19:28:56.0381 5048 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
19:28:56.0421 5048 usbhub - ok
19:28:56.0445 5048 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
19:28:56.0485 5048 usbohci - ok
19:28:56.0511 5048 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
19:28:56.0557 5048 usbprint - ok
19:28:56.0583 5048 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
19:28:56.0654 5048 usbscan - ok
19:28:56.0694 5048 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\windows\system32\drivers\usbser.sys
19:28:56.0782 5048 usbser - ok
19:28:56.0830 5048 [ AA75E1EFBEE7186B4CBAAACF1F15E6CA ] UsbserFilt C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys
19:28:56.0886 5048 UsbserFilt - ok
19:28:56.0902 5048 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
19:28:56.0966 5048 USBSTOR - ok
19:28:57.0014 5048 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
19:28:57.0079 5048 usbuhci - ok
19:28:57.0107 5048 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
19:28:57.0134 5048 usbvideo - ok
19:28:57.0187 5048 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
19:28:57.0248 5048 UxSms - ok
19:28:57.0268 5048 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
19:28:57.0284 5048 VaultSvc - ok
19:28:57.0323 5048 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
19:28:57.0380 5048 vdrvroot - ok
19:28:57.0449 5048 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
19:28:57.0518 5048 vds - ok
19:28:57.0557 5048 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
19:28:57.0582 5048 vga - ok
19:28:57.0623 5048 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
19:28:57.0684 5048 VgaSave - ok
19:28:57.0730 5048 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
19:28:57.0766 5048 vhdmp - ok
19:28:57.0780 5048 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
19:28:57.0803 5048 viaide - ok
19:28:57.0822 5048 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
19:28:57.0865 5048 volmgr - ok
19:28:57.0902 5048 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
19:28:57.0966 5048 volmgrx - ok
19:28:58.0066 5048 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
19:28:58.0130 5048 volsnap - ok
19:28:58.0163 5048 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
19:28:58.0197 5048 vsmraid - ok
19:28:58.0262 5048 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
19:28:58.0385 5048 VSS - ok
19:28:58.0409 5048 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
19:28:58.0445 5048 vwifibus - ok
19:28:58.0475 5048 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
19:28:58.0504 5048 vwififlt - ok
19:28:58.0540 5048 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
19:28:58.0567 5048 vwifimp - ok
19:28:58.0659 5048 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
19:28:58.0734 5048 W32Time - ok
19:28:58.0766 5048 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
19:28:58.0820 5048 WacomPen - ok
19:28:58.0850 5048 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
19:28:58.0908 5048 WANARP - ok
19:28:58.0915 5048 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
19:28:58.0953 5048 Wanarpv6 - ok
19:28:59.0067 5048 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
19:28:59.0273 5048 WatAdminSvc - ok
19:28:59.0352 5048 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
19:28:59.0486 5048 wbengine - ok
19:28:59.0559 5048 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
19:28:59.0598 5048 WbioSrvc - ok
19:28:59.0646 5048 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
19:28:59.0704 5048 wcncsvc - ok
19:28:59.0727 5048 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
19:28:59.0788 5048 WcsPlugInService - ok
19:28:59.0815 5048 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
19:28:59.0838 5048 Wd - ok
19:28:59.0871 5048 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
19:28:59.0919 5048 Wdf01000 - ok
19:28:59.0935 5048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
19:29:00.0052 5048 WdiServiceHost - ok
19:29:00.0061 5048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
19:29:00.0083 5048 WdiSystemHost - ok
19:29:00.0124 5048 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
19:29:00.0172 5048 WebClient - ok
19:29:00.0211 5048 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
19:29:00.0283 5048 Wecsvc - ok
19:29:00.0315 5048 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
19:29:00.0371 5048 wercplsupport - ok
19:29:00.0385 5048 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
19:29:00.0460 5048 WerSvc - ok
19:29:00.0489 5048 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
19:29:00.0539 5048 WfpLwf - ok
19:29:00.0577 5048 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
19:29:00.0600 5048 WIMMount - ok
19:29:00.0626 5048 WinDefend - ok
19:29:00.0636 5048 WinHttpAutoProxySvc - ok
19:29:00.0700 5048 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
19:29:00.0786 5048 Winmgmt - ok
19:29:00.0851 5048 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
19:29:01.0043 5048 WinRM - ok
19:29:01.0085 5048 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
19:29:01.0127 5048 WinUsb - ok
19:29:01.0170 5048 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
19:29:01.0226 5048 Wlansvc - ok
19:29:01.0404 5048 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:29:01.0486 5048 wlidsvc - ok
19:29:01.0527 5048 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
19:29:01.0562 5048 WmiAcpi - ok
19:29:01.0610 5048 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
19:29:01.0671 5048 wmiApSrv - ok
19:29:01.0707 5048 WMPNetworkSvc - ok
19:29:01.0772 5048 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
19:29:01.0810 5048 WPCSvc - ok
19:29:01.0839 5048 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
19:29:01.0861 5048 WPDBusEnum - ok
19:29:01.0899 5048 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
19:29:01.0943 5048 ws2ifsl - ok
19:29:01.0964 5048 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
19:29:02.0015 5048 wscsvc - ok
19:29:02.0023 5048 WSearch - ok
19:29:02.0209 5048 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
19:29:02.0359 5048 wuauserv - ok
19:29:02.0395 5048 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
19:29:02.0459 5048 WudfPf - ok
19:29:02.0501 5048 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
19:29:02.0570 5048 WUDFRd - ok
19:29:02.0630 5048 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
19:29:02.0717 5048 wudfsvc - ok
19:29:02.0757 5048 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
19:29:02.0820 5048 WwanSvc - ok
19:29:02.0920 5048 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:29:03.0008 5048 YahooAUService - ok
19:29:03.0034 5048 ================ Scan global ===============================
19:29:03.0083 5048 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
19:29:03.0133 5048 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
19:29:03.0166 5048 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
19:29:03.0229 5048 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
19:29:03.0290 5048 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
19:29:03.0315 5048 [Global] - ok
19:29:03.0315 5048 ================ Scan MBR ==================================
19:29:03.0330 5048 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
19:29:03.0943 5048 \Device\Harddisk0\DR0 - ok
19:29:03.0944 5048 ================ Scan VBR ==================================
19:29:03.0980 5048 [ 97C9AD973F7BC30BB325429C5183FCCC ] \Device\Harddisk0\DR0\Partition1
19:29:03.0983 5048 \Device\Harddisk0\DR0\Partition1 - ok
19:29:03.0984 5048 ================ Scan active images ========================
19:29:03.0991 5048 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
19:29:03.0991 5048 C:\Windows\System32\drivers\crashdmp.sys - ok
19:29:04.0004 5048 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
19:29:04.0004 5048 C:\Windows\System32\drivers\Dumpata.sys - ok
19:29:04.0011 5048 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] C:\Windows\System32\drivers\msahci.sys
19:29:04.0011 5048 C:\Windows\System32\drivers\msahci.sys - ok
19:29:04.0019 5048 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
19:29:04.0019 5048 C:\Windows\System32\drivers\dumpfve.sys - ok
19:29:04.0028 5048 [ 997D002827D3E3DCBBB25BF46DB161AB ] C:\Windows\System32\drivers\avgmfx64.sys
19:29:04.0028 5048 C:\Windows\System32\drivers\avgmfx64.sys - ok
19:29:04.0034 5048 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
19:29:04.0035 5048 C:\Windows\System32\drivers\cdrom.sys - ok
19:29:04.0042 5048 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
19:29:04.0042 5048 C:\Windows\System32\drivers\null.sys - ok
19:29:04.0047 5048 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
19:29:04.0047 5048 C:\Windows\System32\drivers\beep.sys - ok
19:29:04.0050 5048 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
19:29:04.0050 5048 C:\Windows\System32\drivers\RDPCDD.sys - ok
19:29:04.0056 5048 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
19:29:04.0056 5048 C:\Windows\System32\drivers\vga.sys - ok
19:29:04.0063 5048 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
19:29:04.0063 5048 C:\Windows\System32\drivers\videoprt.sys - ok
19:29:04.0069 5048 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
19:29:04.0069 5048 C:\Windows\System32\drivers\watchdog.sys - ok
19:29:04.0075 5048 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:29:04.0076 5048 C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:29:04.0081 5048 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
19:29:04.0081 5048 C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:29:04.0087 5048 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
19:29:04.0087 5048 C:\Windows\System32\drivers\msfs.sys - ok
19:29:04.0097 5048 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
19:29:04.0097 5048 C:\Windows\System32\drivers\npfs.sys - ok
19:29:04.0101 5048 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
19:29:04.0101 5048 C:\Windows\System32\drivers\tdi.sys - ok
19:29:04.0107 5048 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
19:29:04.0107 5048 C:\Windows\System32\drivers\tdx.sys - ok
19:29:04.0115 5048 [ 0D49ADCEBE243B79366EA523B647519A ] C:\Windows\System32\drivers\avgtdia.sys
19:29:04.0115 5048 C:\Windows\System32\drivers\avgtdia.sys - ok
19:29:04.0119 5048 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
19:29:04.0120 5048 C:\Windows\System32\drivers\netbt.sys - ok
19:29:04.0126 5048 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
19:29:04.0126 5048 C:\Windows\System32\drivers\afd.sys - ok
19:29:04.0132 5048 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
19:29:04.0132 5048 C:\Windows\System32\drivers\wfplwf.sys - ok
19:29:04.0138 5048 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
19:29:04.0138 5048 C:\Windows\System32\drivers\pacer.sys - ok
19:29:04.0144 5048 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
19:29:04.0144 5048 C:\Windows\System32\drivers\vwififlt.sys - ok
19:29:04.0151 5048 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
19:29:04.0151 5048 C:\Windows\System32\drivers\netbios.sys - ok
19:29:04.0156 5048 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
19:29:04.0156 5048 C:\Windows\System32\drivers\wanarp.sys - ok
19:29:04.0162 5048 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
19:29:04.0162 5048 C:\Windows\System32\drivers\termdd.sys - ok
19:29:04.0168 5048 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
19:29:04.0168 5048 C:\Windows\System32\drivers\rdbss.sys - ok
19:29:04.0174 5048 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
19:29:04.0174 5048 C:\Windows\System32\drivers\nsiproxy.sys - ok
19:29:04.0180 5048 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
19:29:04.0180 5048 C:\Windows\System32\drivers\mssmbios.sys - ok
19:29:04.0186 5048 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
19:29:04.0186 5048 C:\Windows\System32\drivers\discache.sys - ok
19:29:04.0192 5048 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
19:29:04.0192 5048 C:\Windows\System32\drivers\dfsc.sys - ok
19:29:04.0198 5048 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
19:29:04.0198 5048 C:\Windows\System32\drivers\blbdrive.sys - ok
19:29:04.0205 5048 [ FF7383388A7D2283DAE5831ABC2B0720 ] C:\Windows\System32\drivers\avgldx64.sys
19:29:04.0205 5048 C:\Windows\System32\drivers\avgldx64.sys - ok
19:29:04.0211 5048 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
19:29:04.0211 5048 C:\Windows\System32\drivers\amdppm.sys - ok
19:29:04.0216 5048 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
19:29:04.0218 5048 C:\Windows\System32\drivers\tunnel.sys - ok
19:29:04.0223 5048 [ 173F4C05F87085E9BDA3F7037BC9F40E ] C:\Windows\System32\drivers\atikmdag.sys
19:29:04.0223 5048 C:\Windows\System32\drivers\atikmdag.sys - ok
19:29:04.0228 5048 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
19:29:04.0228 5048 C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:29:04.0238 5048 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
19:29:04.0238 5048 C:\Windows\System32\smss.exe - ok
19:29:04.0242 5048 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
19:29:04.0242 5048 C:\Windows\System32\ntdll.dll - ok
19:29:04.0247 5048 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
19:29:04.0247 5048 C:\Windows\System32\drivers\dxgmms1.sys - ok
19:29:04.0254 5048 [ 7475548B0BA58EBA4D12414FC9E9DFE6 ] C:\Windows\System32\drivers\rtl8192se.sys
19:29:04.0254 5048 C:\Windows\System32\drivers\rtl8192se.sys - ok
19:29:04.0260 5048 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
19:29:04.0260 5048 C:\Windows\System32\drivers\vwifibus.sys - ok
19:29:04.0266 5048 [ B49DC435AE3695BAC5623DD94B05732D ] C:\Windows\System32\drivers\Rt64win7.sys
19:29:04.0266 5048 C:\Windows\System32\drivers\Rt64win7.sys - ok
19:29:04.0272 5048 [ FD542B661BD22FA69CA789AD0AC58C29 ] C:\Windows\System32\drivers\tdcmdpst.sys
19:29:04.0272 5048 C:\Windows\System32\drivers\tdcmdpst.sys - ok
19:29:04.0278 5048 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
19:29:04.0278 5048 C:\Windows\System32\autochk.exe - ok
19:29:04.0283 5048 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
19:29:04.0284 5048 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
19:29:04.0290 5048 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
19:29:04.0290 5048 C:\Windows\System32\rpcrt4.dll - ok
19:29:04.0296 5048 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
19:29:04.0296 5048 C:\Windows\System32\difxapi.dll - ok
19:29:04.0299 5048 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
19:29:04.0299 5048 C:\Windows\System32\drivers\usbport.sys - ok
19:29:04.0305 5048 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
19:29:04.0306 5048 C:\Windows\System32\normaliz.dll - ok
19:29:04.0311 5048 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
19:29:04.0311 5048 C:\Windows\System32\setupapi.dll - ok
19:29:04.0317 5048 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
19:29:04.0317 5048 C:\Windows\System32\drivers\hdaudbus.sys - ok
19:29:04.0324 5048 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
19:29:04.0324 5048 C:\Windows\System32\drivers\usbehci.sys - ok
19:29:04.0330 5048 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
19:29:04.0330 5048 C:\Windows\System32\drivers\usbohci.sys - ok
19:29:04.0336 5048 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
19:29:04.0336 5048 C:\Windows\System32\drivers\i8042prt.sys - ok
19:29:04.0343 5048 [ B9B42A302325537D7B9DC52D47F33A73 ] C:\Windows\System32\kernel32.dll
19:29:04.0343 5048 C:\Windows\System32\kernel32.dll - ok
19:29:04.0348 5048 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
19:29:04.0348 5048 C:\Windows\System32\shell32.dll - ok
19:29:04.0355 5048 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
19:29:04.0355 5048 C:\Windows\System32\msvcrt.dll - ok
19:29:04.0361 5048 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
19:29:04.0361 5048 C:\Windows\System32\psapi.dll - ok
19:29:04.0367 5048 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
19:29:04.0367 5048 C:\Windows\System32\clbcatq.dll - ok
19:29:04.0373 5048 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
19:29:04.0373 5048 C:\Windows\System32\advapi32.dll - ok
19:29:04.0380 5048 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
19:29:04.0380 5048 C:\Windows\System32\imagehlp.dll - ok
19:29:04.0386 5048 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
19:29:04.0386 5048 C:\Windows\System32\nsi.dll - ok
19:29:04.0391 5048 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
19:29:04.0391 5048 C:\Windows\System32\lpk.dll - ok
19:29:04.0399 5048 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
19:29:04.0399 5048 C:\Windows\System32\shlwapi.dll - ok
19:29:04.0404 5048 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
19:29:04.0405 5048 C:\Windows\System32\imm32.dll - ok
19:29:04.0410 5048 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
19:29:04.0410 5048 C:\Windows\System32\ws2_32.dll - ok
19:29:04.0416 5048 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
19:29:04.0416 5048 C:\Windows\System32\Wldap32.dll - ok
19:29:04.0422 5048 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
19:29:04.0422 5048 C:\Windows\System32\sechost.dll - ok
19:29:04.0428 5048 [ 7F7FE11DF2D67B36DFE5013881619A94 ] C:\Windows\System32\urlmon.dll
19:29:04.0428 5048 C:\Windows\System32\urlmon.dll - ok
19:29:04.0434 5048 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
19:29:04.0434 5048 C:\Windows\System32\ole32.dll - ok
19:29:04.0443 5048 [ 8EA68FD3780DDDD5072F8CB830B3CB3D ] C:\Windows\System32\wininet.dll
19:29:04.0443 5048 C:\Windows\System32\wininet.dll - ok
19:29:04.0447 5048 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
19:29:04.0447 5048 C:\Windows\System32\oleaut32.dll - ok
19:29:04.0453 5048 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
19:29:04.0453 5048 C:\Windows\System32\usp10.dll - ok
19:29:04.0459 5048 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
19:29:04.0459 5048 C:\Windows\System32\user32.dll - ok
19:29:04.0465 5048 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
19:29:04.0465 5048 C:\Windows\System32\msctf.dll - ok
19:29:04.0473 5048 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
19:29:04.0473 5048 C:\Windows\System32\gdi32.dll - ok
19:29:04.0477 5048 [ E10A0704318A6F7E52787D09717D7C2C ] C:\Windows\System32\iertutil.dll
19:29:04.0477 5048 C:\Windows\System32\iertutil.dll - ok
19:29:04.0483 5048 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
19:29:04.0483 5048 C:\Windows\System32\comdlg32.dll - ok
19:29:04.0489 5048 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
19:29:04.0489 5048 C:\Windows\System32\drivers\kbdclass.sys - ok
19:29:04.0495 5048 [ 6B5174702343BD955E174FDFEFA2A1A3 ] C:\Windows\System32\KernelBase.dll
19:29:04.0495 5048 C:\Windows\System32\KernelBase.dll - ok
19:29:04.0501 5048 [ 53238D99636BBA85F491C3E8FD22AB00 ] C:\Windows\System32\wintrust.dll
19:29:04.0502 5048 C:\Windows\System32\wintrust.dll - ok
19:29:04.0509 5048 [ FAF1BA660F84789CCCE747CE6F9D055A ] C:\Windows\System32\crypt32.dll
19:29:04.0509 5048 C:\Windows\System32\crypt32.dll - ok
19:29:04.0515 5048 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
19:29:04.0515 5048 C:\Windows\System32\cfgmgr32.dll - ok
19:29:04.0521 5048 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
19:29:04.0521 5048 C:\Windows\System32\comctl32.dll - ok
19:29:04.0527 5048 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
19:29:04.0527 5048 C:\Windows\System32\devobj.dll - ok
19:29:04.0533 5048 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
19:29:04.0533 5048 C:\Windows\System32\msasn1.dll - ok
19:29:04.0539 5048 [ BE7311DA9D6833FA69ED04B744A1C8F8 ] C:\Windows\System32\drivers\SynTP.sys
19:29:04.0539 5048 C:\Windows\System32\drivers\SynTP.sys - ok
19:29:04.0545 5048 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
19:29:04.0545 5048 C:\Windows\System32\drivers\usbd.sys - ok
19:29:04.0552 5048 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
19:29:04.0552 5048 C:\Windows\System32\drivers\mouclass.sys - ok
19:29:04.0556 5048 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
19:29:04.0556 5048 C:\Windows\System32\drivers\CmBatt.sys - ok
19:29:04.0562 5048 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
19:29:04.0562 5048 C:\Windows\System32\drivers\agilevpn.sys - ok
19:29:04.0567 5048 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
19:29:04.0568 5048 C:\Windows\System32\drivers\CompositeBus.sys - ok
19:29:04.0573 5048 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] C:\Windows\System32\drivers\TVALZFL.sys
19:29:04.0573 5048 C:\Windows\System32\drivers\TVALZFL.sys - ok
19:29:04.0579 5048 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
19:29:04.0579 5048 C:\Windows\System32\drivers\ndistapi.sys - ok
19:29:04.0586 5048 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
19:29:04.0586 5048 C:\Windows\System32\drivers\rasl2tp.sys - ok
19:29:04.0592 5048 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
19:29:04.0592 5048 C:\Windows\System32\drivers\ndiswan.sys - ok
19:29:04.0598 5048 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
19:29:04.0598 5048 C:\Windows\System32\drivers\raspppoe.sys - ok
19:29:04.0605 5048 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
19:29:04.0605 5048 C:\Windows\System32\drivers\raspptp.sys - ok
19:29:04.0611 5048 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
19:29:04.0611 5048 C:\Windows\System32\drivers\rassstp.sys - ok
19:29:04.0617 5048 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
19:29:04.0617 5048 C:\Windows\System32\drivers\ks.sys - ok
19:29:04.0623 5048 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
19:29:04.0623 5048 C:\Windows\System32\drivers\swenum.sys - ok
19:29:04.0631 5048 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
19:29:04.0631 5048 C:\Windows\System32\drivers\umbus.sys - ok
19:29:04.0635 5048 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
19:29:04.0636 5048 C:\Windows\System32\drivers\usbhub.sys - ok
19:29:04.0642 5048 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
19:29:04.0642 5048 C:\Windows\System32\drivers\ndproxy.sys - ok
19:29:04.0648 5048 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
19:29:04.0648 5048 C:\Windows\SysWOW64\normaliz.dll - ok
19:29:04.0655 5048 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
19:29:04.0655 5048 C:\Windows\System32\drivers\drmk.sys - ok
19:29:04.0662 5048 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
19:29:04.0662 5048 C:\Windows\System32\drivers\portcls.sys - ok
19:29:04.0666 5048 [ 0C3CF4B3BAE28E121A1689E3538F8712 ] C:\Windows\System32\drivers\RTKVHD64.sys
19:29:04.0666 5048 C:\Windows\System32\drivers\RTKVHD64.sys - ok
19:29:04.0672 5048 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
19:29:04.0673 5048 C:\Windows\System32\drivers\ksthunk.sys - ok
19:29:04.0678 5048 [ C98356D813B581E9C425B42A5D146CE0 ] C:\Windows\System32\drivers\agrsm64.sys
19:29:04.0678 5048 C:\Windows\System32\drivers\agrsm64.sys - ok
19:29:04.0685 5048 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
19:29:04.0685 5048 C:\Windows\System32\drivers\modem.sys - ok
19:29:04.0694 5048 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
19:29:04.0694 5048 C:\Windows\System32\drivers\dxapi.sys - ok
19:29:04.0697 5048 [ F0D6864A7D52CE137E0A9D24795C3F0E ] C:\Windows\System32\win32k.sys
19:29:04.0698 5048 C:\Windows\System32\win32k.sys - ok
19:29:04.0703 5048 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
19:29:04.0703 5048 C:\Windows\System32\csrsrv.dll - ok
19:29:04.0709 5048 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
19:29:04.0709 5048 C:\Windows\System32\csrss.exe - ok
19:29:04.0715 5048 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
19:29:04.0715 5048 C:\Windows\System32\basesrv.dll - ok
19:29:04.0721 5048 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\System32\winsrv.dll
19:29:04.0721 5048 C:\Windows\System32\winsrv.dll - ok
19:29:04.0727 5048 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
19:29:04.0727 5048 C:\Windows\System32\drivers\monitor.sys - ok
19:29:04.0733 5048 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
19:29:04.0733 5048 C:\Windows\System32\drivers\usbccgp.sys - ok
19:29:04.0739 5048 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
19:29:04.0740 5048 C:\Windows\System32\drivers\usbvideo.sys - ok
19:29:04.0745 5048 [ 663962900E7FEA522126BA287715BB4A ] C:\Windows\System32\drivers\PGEffect.sys
19:29:04.0745 5048 C:\Windows\System32\drivers\PGEffect.sys - ok
19:29:04.0751 5048 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
19:29:04.0751 5048 C:\Windows\System32\tsddd.dll - ok
19:29:04.0757 5048 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
19:29:04.0757 5048 C:\Windows\System32\sxssrv.dll - ok
19:29:04.0763 5048 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
19:29:04.0763 5048 C:\Windows\System32\wininit.exe - ok
19:29:04.0769 5048 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
19:29:04.0769 5048 C:\Windows\System32\cdd.dll - ok
19:29:04.0775 5048 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
19:29:04.0775 5048 C:\Windows\System32\profapi.dll - ok
19:29:04.0781 5048 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
19:29:04.0781 5048 C:\Windows\System32\RpcRtRemote.dll - ok
19:29:04.0787 5048 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
19:29:04.0787 5048 C:\Windows\System32\KBDUS.DLL - ok
19:29:04.0794 5048 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
19:29:04.0794 5048 C:\Windows\System32\sxs.dll - ok
19:29:04.0800 5048 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
19:29:04.0800 5048 C:\Windows\System32\WlS0WndH.dll - ok
19:29:04.0803 5048 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
19:29:04.0803 5048 C:\Windows\System32\cryptbase.dll - ok
19:29:04.0810 5048 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
19:29:04.0811 5048 C:\Windows\System32\apphelp.dll - ok
19:29:04.0816 5048 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
19:29:04.0816 5048 C:\Windows\System32\lsass.exe - ok
19:29:04.0822 5048 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
19:29:04.0822 5048 C:\Windows\System32\services.exe - ok
19:29:04.0829 5048 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
19:29:04.0829 5048 C:\Windows\System32\lsasrv.dll - ok
19:29:04.0836 5048 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
19:29:04.0836 5048 C:\Windows\System32\lsm.exe - ok
19:29:04.0841 5048 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
19:29:04.0841 5048 C:\Windows\System32\sspicli.dll - ok
19:29:04.0846 5048 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
19:29:04.0846 5048 C:\Windows\System32\sspisrv.dll - ok
19:29:04.0853 5048 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
19:29:04.0853 5048 C:\Windows\System32\samsrv.dll - ok
19:29:04.0859 5048 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
19:29:04.0859 5048 C:\Windows\System32\scesrv.dll - ok
19:29:04.0866 5048 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
19:29:04.0866 5048 C:\Windows\System32\scext.dll - ok
19:29:04.0871 5048 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
19:29:04.0872 5048 C:\Windows\System32\secur32.dll - ok
19:29:04.0877 5048 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
19:29:04.0877 5048 C:\Windows\System32\sysntfy.dll - ok
19:29:04.0883 5048 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
19:29:04.0883 5048 C:\Windows\System32\winlogon.exe - ok
19:29:04.0889 5048 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
19:29:04.0889 5048 C:\Windows\System32\wmsgapi.dll - ok
19:29:04.0894 5048 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
19:29:04.0895 5048 C:\Windows\System32\srvcli.dll - ok
19:29:04.0900 5048 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
19:29:04.0901 5048 C:\Windows\System32\winsta.dll - ok
19:29:04.0907 5048 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
19:29:04.0907 5048 C:\Windows\System32\cryptdll.dll - ok
19:29:04.0913 5048 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
19:29:04.0913 5048 C:\Windows\System32\wevtapi.dll - ok
19:29:04.0920 5048 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
19:29:04.0920 5048 C:\Windows\System32\authz.dll - ok
19:29:04.0926 5048 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
19:29:04.0926 5048 C:\Windows\System32\cngaudit.dll - ok
19:29:04.0932 5048 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
19:29:04.0932 5048 C:\Windows\System32\ncrypt.dll - ok
19:29:04.0938 5048 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
19:29:04.0938 5048 C:\Windows\System32\bcrypt.dll - ok
19:29:04.0944 5048 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
19:29:04.0944 5048 C:\Windows\System32\msprivs.dll - ok
19:29:04.0952 5048 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
19:29:04.0952 5048 C:\Windows\System32\netjoin.dll - ok
19:29:04.0957 5048 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
19:29:04.0957 5048 C:\Windows\System32\negoexts.dll - ok
19:29:04.0963 5048 [ 16ECE8BD6734CC170B9AE74176E89A9B ] C:\Windows\System32\kerberos.dll
19:29:04.0963 5048 C:\Windows\System32\kerberos.dll - ok
19:29:04.0970 5048 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
19:29:04.0970 5048 C:\Windows\System32\cryptsp.dll - ok
19:29:04.0975 5048 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
19:29:04.0975 5048 C:\Windows\System32\version.dll - ok
19:29:04.0981 5048 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
19:29:04.0981 5048 C:\Windows\System32\mswsock.dll - ok
19:29:04.0988 5048 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
19:29:04.0988 5048 C:\Windows\System32\wship6.dll - ok
19:29:04.0994 5048 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
19:29:04.0994 5048 C:\Windows\System32\msv1_0.dll - ok
19:29:05.0000 5048 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
19:29:05.0000 5048 C:\Windows\System32\netlogon.dll - ok
19:29:05.0007 5048 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
19:29:05.0007 5048 C:\Windows\System32\dnsapi.dll - ok
19:29:05.0013 5048 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
19:29:05.0013 5048 C:\Windows\System32\logoncli.dll - ok
19:29:05.0019 5048 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
19:29:05.0019 5048 C:\Windows\System32\schannel.dll - ok
19:29:05.0025 5048 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
19:29:05.0025 5048 C:\Windows\System32\wdigest.dll - ok
19:29:05.0031 5048 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
19:29:05.0031 5048 C:\Windows\System32\rsaenh.dll - ok
19:29:05.0038 5048 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
19:29:05.0038 5048 C:\Windows\System32\TSpkg.dll - ok
19:29:05.0044 5048 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
19:29:05.0044 5048 C:\Windows\System32\pku2u.dll - ok
19:29:05.0050 5048 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
19:29:05.0050 5048 C:\Windows\System32\LIVESSP.DLL - ok
19:29:05.0056 5048 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
19:29:05.0057 5048 C:\Windows\System32\bcryptprimitives.dll - ok
19:29:05.0062 5048 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
19:29:05.0062 5048 C:\Windows\System32\credssp.dll - ok
19:29:05.0068 5048 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
19:29:05.0068 5048 C:\Windows\System32\efslsaext.dll - ok
19:29:05.0074 5048 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
19:29:05.0074 5048 C:\Windows\System32\scecli.dll - ok
19:29:05.0083 5048 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
19:29:05.0083 5048 C:\Windows\System32\ubpm.dll - ok
19:29:05.0087 5048 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
19:29:05.0087 5048 C:\Windows\System32\svchost.exe - ok
19:29:05.0093 5048 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
19:29:05.0093 5048 C:\Windows\System32\umpnpmgr.dll - ok
19:29:05.0099 5048 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
19:29:05.0099 5048 C:\Windows\System32\SPInf.dll - ok
19:29:05.0105 5048 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
19:29:05.0105 5048 C:\Windows\System32\devrtl.dll - ok
19:29:05.0111 5048 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
19:29:05.0111 5048 C:\Windows\System32\userenv.dll - ok
19:29:05.0117 5048 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
19:29:05.0117 5048 C:\Windows\System32\gpapi.dll - ok
19:29:05.0123 5048 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
19:29:05.0123 5048 C:\Windows\System32\umpo.dll - ok
19:29:05.0129 5048 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
19:29:05.0129 5048 C:\Windows\System32\pcwum.dll - ok
19:29:05.0135 5048 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
19:29:05.0135 5048 C:\Windows\System32\powrprof.dll - ok
19:29:05.0142 5048 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
19:29:05.0142 5048 C:\Windows\System32\drivers\luafv.sys - ok
19:29:05.0148 5048 [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
19:29:05.0148 5048 C:\Windows\System32\drivers\WUDFPf.sys - ok
19:29:05.0154 5048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
19:29:05.0154 5048 C:\Windows\System32\rpcss.dll - ok
19:29:05.0161 5048 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
19:29:05.0161 5048 C:\Windows\System32\RpcEpMap.dll - ok
19:29:05.0166 5048 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
19:29:05.0166 5048 C:\Windows\System32\wshqos.dll - ok
19:29:05.0172 5048 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
19:29:05.0172 5048 C:\Windows\System32\WSHTCPIP.DLL - ok
19:29:05.0179 5048 [ 98A2774D3F18C107874C8C1163EBE484 ] C:\Windows\System32\atiesrxx.exe
19:29:05.0179 5048 C:\Windows\System32\atiesrxx.exe - ok
19:29:05.0184 5048 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
19:29:05.0184 5048 C:\Windows\System32\FirewallAPI.dll - ok
19:29:05.0192 5048 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
19:29:05.0192 5048 C:\Windows\System32\LogonUI.exe - ok
19:29:05.0197 5048 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
19:29:05.0197 5048 C:\Windows\System32\wtsapi32.dll - ok
19:29:05.0203 5048 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
19:29:05.0203 5048 C:\Windows\System32\wevtsvc.dll - ok
19:29:05.0209 5048 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
19:29:05.0209 5048 C:\Windows\System32\audiosrv.dll - ok
19:29:05.0216 5048 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
19:29:05.0216 5048 C:\Windows\System32\MMDevAPI.dll - ok
19:29:05.0222 5048 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
19:29:05.0222 5048 C:\Windows\System32\propsys.dll - ok
19:29:05.0228 5048 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
19:29:05.0228 5048 C:\Windows\System32\avrt.dll - ok
19:29:05.0237 5048 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
19:29:05.0237 5048 C:\Windows\System32\mmcss.dll - ok
19:29:05.0241 5048 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
19:29:05.0241 5048 C:\Windows\System32\authui.dll - ok
19:29:05.0247 5048 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
19:29:05.0247 5048 C:\Windows\System32\audiodg.exe - ok
19:29:05.0254 5048 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
19:29:05.0254 5048 C:\Windows\System32\ntmarta.dll - ok
19:29:05.0263 5048 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
19:29:05.0264 5048 C:\Windows\System32\gpsvc.dll - ok
19:29:05.0267 5048 [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
19:29:05.0267 5048 C:\Windows\System32\nlaapi.dll - ok
19:29:05.0273 5048 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
19:29:05.0273 5048 C:\Windows\System32\profsvc.dll - ok
19:29:05.0279 5048 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
19:29:05.0279 5048 C:\Windows\System32\atl.dll - ok
19:29:05.0285 5048 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
19:29:05.0286 5048 C:\Windows\System32\dsrole.dll - ok
19:29:05.0291 5048 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
19:29:05.0292 5048 C:\Windows\System32\slc.dll - ok
19:29:05.0297 5048 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
19:29:05.0297 5048 C:\Windows\System32\themeservice.dll - ok
19:29:05.0303 5048 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
19:29:05.0303 5048 C:\Windows\System32\wlansvc.dll - ok
19:29:05.0307 5048 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
19:29:05.0307 5048 C:\Windows\System32\es.dll - ok
19:29:05.0313 5048 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
19:29:05.0313 5048 C:\Windows\System32\Sens.dll - ok
19:29:05.0319 5048 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
19:29:05.0319 5048 C:\Windows\System32\uxsms.dll - ok
19:29:05.0326 5048 [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
19:29:05.0326 5048 C:\Windows\System32\WUDFPlatform.dll - ok
19:29:05.0332 5048 [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
19:29:05.0332 5048 C:\Windows\System32\WUDFSvc.dll - ok
19:29:05.0339 5048 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
19:29:05.0339 5048 C:\Windows\System32\drivers\lltdio.sys - ok
19:29:05.0345 5048 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
19:29:05.0345 5048 C:\Windows\System32\drivers\ndisuio.sys - ok
19:29:05.0351 5048 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
19:29:05.0351 5048 C:\Windows\System32\drivers\nwifi.sys - ok
19:29:05.0357 5048 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
19:29:05.0358 5048 C:\Windows\System32\drivers\rspndr.sys - ok
19:29:05.0364 5048 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
19:29:05.0364 5048 C:\Windows\System32\comres.dll - ok
19:29:05.0369 5048 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
19:29:05.0370 5048 C:\Windows\System32\IPHLPAPI.DLL - ok
19:29:05.0376 5048 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
19:29:05.0377 5048 C:\Windows\System32\lmhsvc.dll - ok
19:29:05.0382 5048 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
19:29:05.0382 5048 C:\Windows\System32\nsisvc.dll - ok
19:29:05.0388 5048 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
19:29:05.0388 5048 C:\Windows\System32\dhcpcore.dll - ok
19:29:05.0394 5048 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
19:29:05.0394 5048 C:\Windows\System32\nrpsrv.dll - ok
19:29:05.0400 5048 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
19:29:05.0400 5048 C:\Windows\System32\winnsi.dll - ok
19:29:05.0406 5048 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
19:29:05.0406 5048 C:\Windows\System32\dnsrslvr.dll - ok
19:29:05.0412 5048 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
19:29:05.0412 5048 C:\Windows\System32\keyiso.dll - ok
19:29:05.0421 5048 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
19:29:05.0421 5048 C:\Windows\System32\eapphost.dll - ok
19:29:05.0425 5048 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
19:29:05.0425 5048 C:\Windows\System32\eapsvc.dll - ok
19:29:05.0431 5048 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
19:29:05.0431 5048 C:\Windows\System32\FWPUCLNT.DLL - ok
19:29:05.0438 5048 [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
19:29:05.0438 5048 C:\Windows\System32\dhcpcore6.dll - ok
19:29:05.0444 5048 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:29:05.0444 5048 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:29:05.0451 5048 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
19:29:05.0451 5048 C:\Windows\System32\umb.dll - ok
19:29:05.0457 5048 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
19:29:05.0457 5048 C:\Windows\System32\drivers\fltMgr.sys - ok
19:29:05.0463 5048 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
19:29:05.0464 5048 C:\Windows\System32\netprofm.dll - ok
19:29:05.0469 5048 [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
19:29:05.0469 5048 C:\Windows\System32\nlasvc.dll - ok
19:29:05.0475 5048 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
19:29:05.0475 5048 C:\Windows\System32\PSHED.DLL - ok
19:29:05.0481 5048 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
19:29:05.0481 5048 C:\Windows\System32\dhcpcsvc.dll - ok
19:29:05.0487 5048 [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
19:29:05.0487 5048 C:\Windows\System32\ncsi.dll - ok
19:29:05.0492 5048 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
19:29:05.0492 5048 C:\Windows\System32\winhttp.dll - ok
19:29:05.0498 5048 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
19:29:05.0500 5048 C:\Windows\System32\adtschema.dll - ok
19:29:05.0505 5048 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
19:29:05.0505 5048 C:\Windows\System32\webio.dll - ok
19:29:05.0512 5048 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
19:29:05.0512 5048 C:\Windows\System32\dnsext.dll - ok
19:29:05.0518 5048 [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
19:29:05.0518 5048 C:\Windows\System32\dhcpcsvc6.dll - ok
19:29:05.0524 5048 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
19:29:05.0524 5048 C:\Windows\System32\ssdpapi.dll - ok
19:29:05.0530 5048 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
19:29:05.0530 5048 C:\Windows\System32\wkscli.dll - ok
19:29:05.0537 5048 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:29:05.0537 5048 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:29:05.0543 5048 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
19:29:05.0543 5048 C:\Windows\System32\netutils.dll - ok
19:29:05.0551 5048 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] C:\Windows\System32\wwansvc.dll
19:29:05.0551 5048 C:\Windows\System32\wwansvc.dll - ok
19:29:05.0555 5048 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
19:29:05.0555 5048 C:\Windows\System32\wmi.dll - ok
19:29:05.0558 5048 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
19:29:05.0558 5048 C:\Windows\System32\MPSSVC.dll - ok
19:29:05.0565 5048 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
19:29:05.0565 5048 C:\Windows\System32\cryptui.dll - ok
19:29:05.0571 5048 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
19:29:05.0571 5048 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
19:29:05.0580 5048 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
19:29:05.0580 5048 C:\Windows\System32\shacct.dll - ok
19:29:05.0583 5048 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
19:29:05.0583 5048 C:\Windows\System32\samlib.dll - ok
19:29:05.0590 5048 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
19:29:05.0590 5048 C:\Windows\System32\uxtheme.dll - ok
19:29:05.0596 5048 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
19:29:05.0596 5048 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
19:29:05.0602 5048 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
19:29:05.0602 5048 C:\Windows\System32\dui70.dll - ok
19:29:05.0608 5048 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
19:29:05.0608 5048 C:\Windows\System32\duser.dll - ok
19:29:05.0614 5048 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
19:29:05.0614 5048 C:\Windows\System32\SndVolSSO.dll - ok
19:29:05.0620 5048 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
19:29:05.0620 5048 C:\Windows\System32\hid.dll - ok
19:29:05.0627 5048 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
19:29:05.0627 5048 C:\Windows\System32\dwmapi.dll - ok
19:29:05.0633 5048 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
19:29:05.0633 5048 C:\Windows\System32\xmllite.dll - ok
19:29:05.0638 5048 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
19:29:05.0638 5048 C:\Windows\System32\wlanmsm.dll - ok
19:29:05.0647 5048 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
19:29:05.0647 5048 C:\Windows\System32\msxml6.dll - ok
19:29:05.0651 5048 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
19:29:05.0651 5048 C:\Windows\System32\wlansec.dll - ok
19:29:05.0658 5048 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
19:29:05.0658 5048 C:\Windows\System32\onex.dll - ok
19:29:05.0664 5048 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
19:29:05.0664 5048 C:\Windows\System32\eappcfg.dll - ok
19:29:05.0670 5048 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
19:29:05.0670 5048 C:\Windows\System32\eappprxy.dll - ok
19:29:05.0677 5048 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
19:29:05.0677 5048 C:\Windows\System32\wlgpclnt.dll - ok
19:29:05.0683 5048 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
19:29:05.0683 5048 C:\Windows\System32\l2gpstore.dll - ok
19:29:05.0694 5048 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
19:29:05.0694 5048 C:\Windows\System32\WinSCard.dll - ok
19:29:05.0697 5048 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
19:29:05.0697 5048 C:\Windows\System32\wlanutil.dll - ok
19:29:05.0703 5048 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
19:29:05.0703 5048 C:\Windows\System32\WindowsCodecs.dll - ok
19:29:05.0709 5048 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
19:29:05.0710 5048 C:\Windows\System32\winbrand.dll - ok
19:29:05.0716 5048 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:29:05.0716 5048 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:29:05.0722 5048 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
19:29:05.0722 5048 C:\Windows\System32\VaultCredProvider.dll - ok
19:29:05.0728 5048 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
19:29:05.0729 5048 C:\Windows\System32\BioCredProv.dll - ok
19:29:05.0734 5048 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
19:29:05.0734 5048 C:\Windows\System32\credui.dll - ok
19:29:05.0740 5048 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
19:29:05.0740 5048 C:\Windows\System32\winbio.dll - ok
19:29:05.0746 5048 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
19:29:05.0746 5048 C:\Windows\System32\netapi32.dll - ok
19:29:05.0752 5048 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
19:29:05.0753 5048 C:\Windows\System32\samcli.dll - ok
19:29:05.0758 5048 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
19:29:05.0758 5048 C:\Windows\System32\vaultcli.dll - ok
19:29:05.0765 5048 [ 4E488009C8C3B00EFCFA67A0C4FB0639 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll
19:29:05.0765 5048 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCP.dll - ok
19:29:05.0771 5048 [ CB04A5D666D89E134DE013A4459C70D1 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll
19:29:05.0771 5048 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVHelper.dll - ok
19:29:05.0778 5048 [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
19:29:05.0778 5048 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
19:29:05.0784 5048 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
19:29:05.0784 5048 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
19:29:05.0790 5048 [ 9AE75388EE2C110216B8319584E8AC34 ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll
19:29:05.0790 5048 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVCtrl.dll - ok
19:29:05.0797 5048 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
19:29:05.0797 5048 C:\Windows\System32\winmm.dll - ok
19:29:05.0802 5048 [ 2A9238A326763122424E07EF320D5D3A ] C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll
19:29:05.0803 5048 C:\Program Files\TOSHIBA\SmartFaceV\FaceRec.dll - ok
19:29:05.0809 5048 [ 91175B7E997CFAC64F271A15B4217BC7 ] C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll
19:29:05.0809 5048 C:\Program Files\TOSHIBA\SmartFaceV\FaceHI.dll - ok
19:29:05.0813 5048 [ BA1B90E4F0E5463C7F0DE8D77D21520E ] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll
19:29:05.0813 5048 C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVLogOn.dll - ok
19:29:05.0819 5048 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
19:29:05.0819 5048 C:\Windows\System32\certCredProvider.dll - ok
19:29:05.0825 5048 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
19:29:05.0825 5048 C:\Windows\System32\UXInit.dll - ok
19:29:05.0832 5048 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
19:29:05.0832 5048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
19:29:05.0839 5048 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
19:29:05.0839 5048 C:\Windows\System32\rasplap.dll - ok
19:29:05.0845 5048 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
19:29:05.0845 5048 C:\Windows\System32\rasapi32.dll - ok
19:29:05.0850 5048 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
19:29:05.0850 5048 C:\Windows\System32\rasman.dll - ok
19:29:05.0860 5048 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
19:29:05.0860 5048 C:\Windows\System32\rtutils.dll - ok
19:29:05.0863 5048 [ 7C3551D4431DD48B52D6378A369FCB8B ] C:\Windows\System32\atieclxx.exe
19:29:05.0863 5048 C:\Windows\System32\atieclxx.exe - ok
19:29:05.0869 5048 [ 9FF6AF6DD3670F69F1AC246C30D9959E ] C:\Windows\System32\atiadlxx.dll
19:29:05.0869 5048 C:\Windows\System32\atiadlxx.dll - ok
19:29:05.0875 5048 [ BECB1947F5AEA72EADA2B5A3674F9D10 ] C:\Windows\System32\atimuixx.dll
19:29:05.0875 5048 C:\Windows\System32\atimuixx.dll - ok
19:29:05.0881 5048 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
19:29:05.0881 5048 C:\Windows\System32\shsvcs.dll - ok
19:29:05.0888 5048 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
19:29:05.0888 5048 C:\Windows\System32\imageres.dll - ok
19:29:05.0894 5048 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
19:29:05.0894 5048 C:\Windows\System32\schedsvc.dll - ok
19:29:05.0899 5048 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
19:29:05.0899 5048 C:\Windows\System32\ktmw32.dll - ok
19:29:05.0906 5048 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
19:29:05.0906 5048 C:\Windows\System32\fveapi.dll - ok
19:29:05.0914 5048 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
19:29:05.0914 5048 C:\Windows\System32\fvecerts.dll - ok
19:29:05.0919 5048 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
19:29:05.0919 5048 C:\Windows\System32\tbs.dll - ok
19:29:05.0926 5048 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
19:29:05.0926 5048 C:\Windows\System32\wiarpc.dll - ok
19:29:05.0932 5048 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
19:29:05.0932 5048 C:\Windows\System32\taskcomp.dll - ok
19:29:05.0939 5048 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
19:29:05.0939 5048 C:\Windows\System32\drivers\http.sys - ok
19:29:05.0944 5048 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
19:29:05.0944 5048 C:\Windows\System32\spoolsv.exe - ok
19:29:05.0950 5048 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
19:29:05.0950 5048 C:\Windows\System32\BFE.DLL - ok
19:29:05.0959 5048 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
19:29:05.0959 5048 C:\Windows\System32\drivers\bowser.sys - ok
19:29:05.0963 5048 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
19:29:05.0963 5048 C:\Windows\System32\drivers\mpsdrv.sys - ok
19:29:05.0969 5048 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
19:29:05.0969 5048 C:\Windows\System32\wfapigp.dll - ok
19:29:05.0976 5048 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
19:29:05.0976 5048 C:\Windows\System32\netcfgx.dll - ok
19:29:05.0982 5048 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
19:29:05.0982 5048 C:\Windows\System32\drivers\mrxsmb.sys - ok
19:29:05.0988 5048 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
19:29:05.0988 5048 C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:29:05.0994 5048 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
19:29:05.0994 5048 C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:29:06.0000 5048 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
19:29:06.0000 5048 C:\Windows\System32\wkssvc.dll - ok
19:29:06.0006 5048 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
19:29:06.0006 5048 C:\Windows\System32\mscms.dll - ok
19:29:06.0013 5048 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
19:29:06.0013 5048 C:\Windows\System32\pcasvc.dll - ok
19:29:06.0018 5048 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
19:29:06.0018 5048 C:\Windows\System32\snmptrap.exe - ok
19:29:06.0028 5048 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
19:29:06.0028 5048 C:\Windows\System32\provsvc.dll - ok
19:29:06.0032 5048 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
19:29:06.0032 5048 C:\Windows\System32\sstpsvc.dll - ok
19:29:06.0038 5048 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:29:06.0038 5048 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
19:29:06.0044 5048 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
19:29:06.0044 5048 C:\Windows\SysWOW64\ntdll.dll - ok
19:29:06.0050 5048 [ B1E3772FFA96AC5AEE89BF202AF8E348 ] C:\Windows\System32\wow64.dll
19:29:06.0050 5048 C:\Windows\System32\wow64.dll - ok
19:29:06.0056 5048 [ AA0D2571A4348838B8DD49FD0043826A ] C:\Windows\System32\wow64cpu.dll
19:29:06.0056 5048 C:\Windows\System32\wow64cpu.dll - ok
19:29:06.0062 5048 [ FC5A43FA257F546F8F2B96B5529857E1 ] C:\Windows\System32\wow64win.dll
19:29:06.0062 5048 C:\Windows\System32\wow64win.dll - ok
19:29:06.0068 5048 [ 99C3F8E9CC59D95666EB8D8A8B4C2BEB ] C:\Windows\SysWOW64\kernel32.dll
19:29:06.0068 5048 C:\Windows\SysWOW64\kernel32.dll - ok
19:29:06.0074 5048 [ 5C2D21C9B6B6175B89BC5D7E3CB979E1 ] C:\Windows\SysWOW64\KernelBase.dll
19:29:06.0074 5048 C:\Windows\SysWOW64\KernelBase.dll - ok
19:29:06.0081 5048 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
19:29:06.0081 5048 C:\Windows\SysWOW64\user32.dll - ok
19:29:06.0087 5048 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
19:29:06.0087 5048 C:\Windows\SysWOW64\gdi32.dll - ok
19:29:06.0093 5048 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
19:29:06.0094 5048 C:\Windows\SysWOW64\lpk.dll - ok
19:29:06.0101 5048 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
19:29:06.0101 5048 C:\Windows\SysWOW64\msvcrt.dll - ok
19:29:06.0105 5048 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
19:29:06.0105 5048 C:\Windows\SysWOW64\usp10.dll - ok
19:29:06.0111 5048 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
19:29:06.0111 5048 C:\Windows\SysWOW64\advapi32.dll - ok
19:29:06.0117 5048 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
19:29:06.0117 5048 C:\Windows\SysWOW64\rpcrt4.dll - ok
19:29:06.0123 5048 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
19:29:06.0123 5048 C:\Windows\SysWOW64\sechost.dll - ok
19:29:06.0130 5048 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
19:29:06.0130 5048 C:\Windows\SysWOW64\cryptbase.dll - ok
19:29:06.0136 5048 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
19:29:06.0136 5048 C:\Windows\SysWOW64\shell32.dll - ok
19:29:06.0142 5048 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
19:29:06.0142 5048 C:\Windows\SysWOW64\sspicli.dll - ok
19:29:06.0152 5048 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
19:29:06.0152 5048 C:\Windows\SysWOW64\ole32.dll - ok
19:29:06.0155 5048 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
19:29:06.0155 5048 C:\Windows\SysWOW64\shlwapi.dll - ok
19:29:06.0161 5048 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
19:29:06.0162 5048 C:\Windows\SysWOW64\oleaut32.dll - ok
19:29:06.0171 5048 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\SysWOW64\crypt32.dll
19:29:06.0171 5048 C:\Windows\SysWOW64\crypt32.dll - ok
19:29:06.0174 5048 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
19:29:06.0174 5048 C:\Windows\SysWOW64\msasn1.dll - ok
19:29:06.0181 5048 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\SysWOW64\wintrust.dll
19:29:06.0181 5048 C:\Windows\SysWOW64\wintrust.dll - ok
19:29:06.0187 5048 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
19:29:06.0187 5048 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
19:29:06.0193 5048 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
19:29:06.0193 5048 C:\Windows\SysWOW64\imm32.dll - ok
19:29:06.0200 5048 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
19:29:06.0200 5048 C:\Windows\SysWOW64\msctf.dll - ok
19:29:06.0206 5048 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:29:06.0207 5048 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
19:29:06.0213 5048 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
19:29:06.0213 5048 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
19:29:06.0219 5048 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
19:29:06.0220 5048 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
19:29:06.0226 5048 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
19:29:06.0226 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
19:29:06.0232 5048 [ D339D7F6E52AECCA9C0898CB547B2902 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
19:29:06.0232 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
19:29:06.0239 5048 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
19:29:06.0239 5048 C:\Windows\SysWOW64\version.dll - ok
19:29:06.0245 5048 [ 5F3347EBA403EE64780980A5BAF10304 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
19:29:06.0245 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
19:29:06.0251 5048 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
19:29:06.0251 5048 C:\Windows\SysWOW64\ws2_32.dll - ok
19:29:06.0257 5048 [ 26655CA3645C49DA4A79AC18FE84EE11 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
19:29:06.0257 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
19:29:06.0264 5048 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
19:29:06.0264 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
19:29:06.0270 5048 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
19:29:06.0270 5048 C:\Windows\SysWOW64\nsi.dll - ok
19:29:06.0276 5048 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
19:29:06.0276 5048 C:\Windows\SysWOW64\wsock32.dll - ok
19:29:06.0282 5048 [ 09B7E7CD6F202247B3CF2306108589C2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
19:29:06.0282 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
19:29:06.0295 5048 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
19:29:06.0295 5048 C:\Windows\SysWOW64\winmm.dll - ok
19:29:06.0299 5048 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
19:29:06.0299 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
19:29:06.0305 5048 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
19:29:06.0305 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
19:29:06.0311 5048 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
19:29:06.0311 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
19:29:06.0315 5048 [ 24AA9776D6AB032071B61C88089AEA59 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
19:29:06.0315 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
19:29:06.0322 5048 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
19:29:06.0322 5048 C:\Windows\SysWOW64\profapi.dll - ok
19:29:06.0328 5048 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
19:29:06.0328 5048 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
19:29:06.0334 5048 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
19:29:06.0335 5048 C:\Windows\SysWOW64\setupapi.dll - ok
19:29:06.0341 5048 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
19:29:06.0341 5048 C:\Windows\SysWOW64\cfgmgr32.dll - ok
19:29:06.0347 5048 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
19:29:06.0347 5048 C:\Windows\SysWOW64\devobj.dll - ok
19:29:06.0353 5048 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
19:29:06.0353 5048 C:\Windows\SysWOW64\dnssd.dll - ok
19:29:06.0359 5048 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
19:29:06.0359 5048 C:\Windows\SysWOW64\userenv.dll - ok
19:29:06.0365 5048 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
19:29:06.0365 5048 C:\Windows\SysWOW64\wtsapi32.dll - ok
19:29:06.0371 5048 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
19:29:06.0371 5048 C:\Windows\SysWOW64\ntmarta.dll - ok
19:29:06.0377 5048 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
19:29:06.0378 5048 C:\Windows\SysWOW64\Wldap32.dll - ok
19:29:06.0383 5048 [ FC2BC51120A945F7C70376495E4E7737 ] C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
19:29:06.0384 5048 C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe - ok
19:29:06.0390 5048 [ DCA426A66739E75F51A72160DFB945AD ] C:\Windows\System32\drivers\AVGIDSFilter.sys
19:29:06.0390 5048 C:\Windows\System32\drivers\AVGIDSFilter.sys - ok
19:29:06.0397 5048 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
19:29:06.0397 5048 C:\Windows\SysWOW64\mswsock.dll - ok
19:29:06.0403 5048 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
19:29:06.0403 5048 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
19:29:06.0409 5048 [ 3FA61EF87E49FFACE4ED58C4F1A98EB1 ] C:\Program Files (x86)\AVG\AVG10\avglogx.dll
19:29:06.0409 5048 C:\Program Files (x86)\AVG\AVG10\avglogx.dll - ok
19:29:06.0415 5048 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
19:29:06.0415 5048 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
19:29:06.0422 5048 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
19:29:06.0422 5048 C:\Program Files\Bonjour\mDNSResponder.exe - ok
19:29:06.0431 5048 [ 75A97A2C060E72AB49E071E08C7DD2BA ] C:\Windows\SysWOW64\wininet.dll
19:29:06.0432 5048 C:\Windows\SysWOW64\wininet.dll - ok
19:29:06.0435 5048 [ 0DCF16B1449811EFA47AB52CAC84093C ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:29:06.0436 5048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
19:29:06.0442 5048 [ 1D817D77C8EB600AB311AAC8E68B5A1A ] C:\Windows\System32\cryptnet.dll
19:29:06.0442 5048 C:\Windows\System32\cryptnet.dll - ok
19:29:06.0449 5048 [ 4F5414602E2544A4554D95517948B705 ] C:\Windows\System32\cryptsvc.dll
19:29:06.0449 5048 C:\Windows\System32\cryptsvc.dll - ok
19:29:06.0455 5048 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
19:29:06.0455 5048 C:\Windows\System32\dps.dll - ok
19:29:06.0462 5048 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
19:29:06.0462 5048 C:\Windows\System32\vssapi.dll - ok
19:29:06.0468 5048 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
19:29:06.0468 5048 C:\Windows\System32\taskschd.dll - ok
19:29:06.0475 5048 [ 923BB61D913C37EAB1570F236CCDCE41 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
19:29:06.0475 5048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
19:29:06.0482 5048 [ AEBDB652D9273AD61E10C5D8F51C86FB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
19:29:06.0482 5048 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
19:29:06.0488 5048 [ B17ADBBBDC97148D28F995F32C380F2E ] C:\Windows\SysWOW64\iertutil.dll
19:29:06.0488 5048 C:\Windows\SysWOW64\iertutil.dll - ok
19:29:06.0495 5048 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
19:29:06.0495 5048 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
19:29:06.0501 5048 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
19:29:06.0501 5048 C:\Windows\SysWOW64\winnsi.dll - ok
19:29:06.0508 5048 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
19:29:06.0508 5048 C:\Windows\System32\aepic.dll - ok
19:29:06.0514 5048 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
19:29:06.0514 5048 C:\Windows\System32\drivers\PEAuth.sys - ok
19:29:06.0520 5048 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
19:29:06.0520 5048 C:\Windows\SysWOW64\cryptsp.dll - ok
19:29:06.0526 5048 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
19:29:06.0526 5048 C:\Windows\System32\sfc.dll - ok
19:29:06.0532 5048 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
19:29:06.0532 5048 C:\Windows\System32\sfc_os.dll - ok
19:29:06.0538 5048 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
19:29:06.0538 5048 C:\Windows\SysWOW64\rsaenh.dll - ok
19:29:06.0544 5048 [ EA396139541706B4B433641D62EA53CE ] C:\Program Files (x86)\Skype\Updater\Updater.exe
19:29:06.0544 5048 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
19:29:06.0554 5048 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
19:29:06.0554 5048 C:\Windows\System32\drivers\secdrv.sys - ok
19:29:06.0557 5048 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
19:29:06.0557 5048 C:\Windows\SysWOW64\psapi.dll - ok
19:29:06.0564 5048 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
19:29:06.0564 5048 C:\Windows\System32\drivers\srvnet.sys - ok
19:29:06.0567 5048 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
19:29:06.0567 5048 C:\Windows\SysWOW64\clbcatq.dll - ok
19:29:06.0573 5048 [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
19:29:06.0573 5048 C:\Windows\System32\drivers\tcpipreg.sys - ok
19:29:06.0579 5048 [ ED32035BDFECED1AD66D459FD9CC1140 ] C:\Windows\System32\TODDSrv.exe
19:29:06.0580 5048 C:\Windows\System32\TODDSrv.exe - ok
19:29:06.0586 5048 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
19:29:06.0586 5048 C:\Windows\System32\vsstrace.dll - ok
19:29:06.0591 5048 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
19:29:06.0592 5048 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
19:29:06.0597 5048 [ 667981F2E7C26275F0694B58EEE303B9 ] C:\Windows\SysWOW64\urlmon.dll
19:29:06.0597 5048 C:\Windows\SysWOW64\urlmon.dll - ok
19:29:06.0604 5048 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
19:29:06.0604 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
19:29:06.0610 5048 [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
19:29:06.0611 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
19:29:06.0617 5048 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
19:29:06.0617 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
19:29:06.0624 5048 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
19:29:06.0624 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
19:29:06.0630 5048 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
19:29:06.0630 5048 C:\Windows\System32\wiaservc.dll - ok
19:29:06.0636 5048 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
19:29:06.0636 5048 C:\Windows\System32\wiatrace.dll - ok
19:29:06.0642 5048 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
19:29:06.0642 5048 C:\Windows\System32\sysmain.dll - ok
19:29:06.0648 5048 [ 06C61275ADC64F1E36240A2287998A5E ] C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
19:29:06.0648 5048 C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe - ok
19:29:06.0655 5048 [ 8AF6CFD797041E12BDB90938766B6329 ] C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll
19:29:06.0655 5048 C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll - ok
19:29:06.0661 5048 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
19:29:06.0661 5048 C:\Windows\System32\aeevts.dll - ok
19:29:06.0668 5048 [ 1F60F2240DEDAAB7BF5AA0E83ADA1E84 ] C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll
19:29:06.0668 5048 C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll - ok
19:29:06.0674 5048 [ 707800855AFBD7648375EFB1519B8D6D ] C:\Program Files\TOSHIBA\TECO\TecoService.exe
19:29:06.0674 5048 C:\Program Files\TOSHIBA\TECO\TecoService.exe - ok
19:29:06.0682 5048 [ 058B00EB9482D4FF30AE896DE4176B81 ] C:\Program Files\TOSHIBA\TECO\TecoHci.dll
19:29:06.0682 5048 C:\Program Files\TOSHIBA\TECO\TecoHci.dll - ok
19:29:06.0687 5048 [ ACB4EF4979D38B08B75144CA86E7CE74 ] C:\Program Files\TOSHIBA\TECO\TecoPower.dll
19:29:06.0688 5048 C:\Program Files\TOSHIBA\TECO\TecoPower.dll - ok
19:29:06.0694 5048 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:29:06.0694 5048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
19:29:06.0700 5048 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
19:29:06.0701 5048 C:\Windows\System32\trkwks.dll - ok
19:29:06.0707 5048 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
19:29:06.0707 5048 C:\Windows\System32\wbem\WMIsvc.dll - ok
19:29:06.0713 5048 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
19:29:06.0713 5048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
19:29:06.0720 5048 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
19:29:06.0720 5048 C:\Windows\System32\SensApi.dll - ok
19:29:06.0725 5048 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
19:29:06.0725 5048 C:\Windows\System32\wer.dll - ok
19:29:06.0731 5048 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
19:29:06.0731 5048 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
19:29:06.0738 5048 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
19:29:06.0738 5048 C:\Windows\System32\msxml3.dll - ok
19:29:06.0744 5048 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
19:29:06.0744 5048 C:\Windows\System32\SearchIndexer.exe - ok
19:29:06.0750 5048 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
19:29:06.0750 5048 C:\Windows\System32\tquery.dll - ok
19:29:06.0757 5048 [ CE62652689462E14ED8C5D87FA34A28B ] C:\Program Files (x86)\AVG\AVG10\avgwd.dll
19:29:06.0757 5048 C:\Program Files (x86)\AVG\AVG10\avgwd.dll - ok
19:29:06.0763 5048 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
19:29:06.0763 5048 C:\Windows\System32\wbemcomn.dll - ok
19:29:06.0769 5048 [ 2F12417827653994C8D5A335DA438787 ] C:\Program Files (x86)\AVG\AVG10\avgcfgx.dll
19:29:06.0771 5048 C:\Program Files (x86)\AVG\AVG10\avgcfgx.dll - ok
19:29:06.0776 5048 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
19:29:06.0776 5048 C:\Windows\System32\mssrch.dll - ok
19:29:06.0782 5048 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
19:29:06.0782 5048 C:\Windows\System32\esent.dll - ok
19:29:06.0788 5048 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
19:29:06.0788 5048 C:\Windows\System32\msidle.dll - ok
19:29:06.0794 5048 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
19:29:06.0794 5048 C:\Windows\SysWOW64\msi.dll - ok
19:29:06.0800 5048 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
19:29:06.0800 5048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
19:29:06.0810 5048 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
19:29:06.0810 5048 C:\Windows\System32\en-US\tquery.dll.mui - ok
19:29:06.0814 5048 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:29:06.0814 5048 C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:29:06.0820 5048 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:29:06.0820 5048 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:29:06.0826 5048 [ 6D7FEA5353AE646167E91152F1D9BE89 ] C:\Program Files (x86)\AVG\AVG10\avgcslx.dll
19:29:06.0826 5048 C:\Program Files (x86)\AVG\AVG10\avgcslx.dll - ok
19:29:06.0832 5048 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
19:29:06.0832 5048 C:\Windows\System32\wbem\fastprox.dll - ok
19:29:06.0838 5048 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
19:29:06.0839 5048 C:\Windows\System32\ntdsapi.dll - ok
19:29:06.0844 5048 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
19:29:06.0844 5048 C:\Windows\System32\wbem\wbemprox.dll - ok
19:29:06.0850 5048 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:29:06.0850 5048 C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
19:29:06.0857 5048 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
19:29:06.0857 5048 C:\Windows\SysWOW64\imagehlp.dll - ok
19:29:06.0863 5048 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
19:29:06.0863 5048 C:\Windows\SysWOW64\winhttp.dll - ok
19:29:06.0869 5048 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
19:29:06.0869 5048 C:\Windows\SysWOW64\webio.dll - ok
19:29:06.0875 5048 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
19:29:06.0875 5048 C:\Windows\SysWOW64\apphelp.dll - ok
19:29:06.0881 5048 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
19:29:06.0881 5048 C:\Windows\System32\wbem\wbemcore.dll - ok
19:29:06.0886 5048 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
19:29:06.0887 5048 C:\Windows\System32\wbem\esscli.dll - ok
19:29:06.0894 5048 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
19:29:06.0894 5048 C:\Windows\System32\wbem\wbemsvc.dll - ok
19:29:06.0900 5048 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
19:29:06.0901 5048 C:\Windows\System32\wbem\wmiutils.dll - ok
19:29:06.0906 5048 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
19:29:06.0906 5048 C:\Windows\System32\wbem\repdrvfs.dll - ok
19:29:06.0913 5048 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
19:29:06.0913 5048 C:\Windows\System32\dllhost.exe - ok
19:29:06.0918 5048 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
19:29:06.0919 5048 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
19:29:06.0924 5048 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
19:29:06.0926 5048 C:\Windows\System32\IDStore.dll - ok
19:29:06.0930 5048 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
19:29:06.0931 5048 C:\Windows\System32\taskhost.exe - ok
19:29:06.0936 5048 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
19:29:06.0936 5048 C:\Windows\SysWOW64\winsta.dll - ok
19:29:06.0942 5048 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
19:29:06.0943 5048 C:\Windows\System32\mpr.dll - ok
19:29:06.0949 5048 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
19:29:06.0949 5048 C:\Windows\System32\userinit.exe - ok
19:29:06.0955 5048 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
19:29:06.0955 5048 C:\Windows\System32\dwm.exe - ok
19:29:06.0960 5048 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
19:29:06.0960 5048 C:\Windows\System32\dwmredir.dll - ok
19:29:06.0969 5048 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
19:29:06.0969 5048 C:\Windows\System32\dwmcore.dll - ok
19:29:06.0973 5048 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:29:06.0973 5048 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:29:06.0979 5048 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
19:29:06.0979 5048 C:\Windows\System32\ncobjapi.dll - ok
19:29:06.0985 5048 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
19:29:06.0985 5048 C:\Windows\System32\wbem\wbemess.dll - ok
19:29:06.0991 5048 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
19:29:06.0991 5048 C:\Windows\System32\MsCtfMonitor.dll - ok
19:29:06.0997 5048 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
19:29:06.0997 5048 C:\Windows\System32\msutb.dll - ok
19:29:07.0003 5048 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
19:29:07.0003 5048 C:\Windows\System32\HotStartUserAgent.dll - ok
19:29:07.0009 5048 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
19:29:07.0009 5048 C:\Windows\System32\PlaySndSrv.dll - ok
19:29:07.0015 5048 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
19:29:07.0015 5048 C:\Windows\System32\d3d10_1.dll - ok
19:29:07.0020 5048 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
19:29:07.0020 5048 C:\Windows\System32\d3d10_1core.dll - ok
19:29:07.0026 5048 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
19:29:07.0026 5048 C:\Windows\System32\dxgi.dll - ok
19:29:07.0032 5048 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
19:29:07.0033 5048 C:\Windows\System32\taskeng.exe - ok
19:29:07.0039 5048 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
19:29:07.0039 5048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
19:29:07.0045 5048 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
19:29:07.0045 5048 C:\Program Files\Bonjour\mdnsNSP.dll - ok
19:29:07.0051 5048 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
19:29:07.0051 5048 C:\Windows\System32\rasadhlp.dll - ok
19:29:07.0056 5048 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
19:29:07.0056 5048 C:\Windows\System32\localspl.dll - ok
19:29:07.0062 5048 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
19:29:07.0062 5048 C:\Windows\System32\TSChannel.dll - ok
19:29:07.0071 5048 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
19:29:07.0071 5048 C:\Windows\System32\spoolss.dll - ok
19:29:07.0077 5048 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
19:29:07.0077 5048 C:\Windows\System32\winspool.drv - ok
19:29:07.0084 5048 [ 50074722936A769B0A54BF7CD71B6500 ] C:\Windows\System32\CNHF1LM.DLL
19:29:07.0084 5048 C:\Windows\System32\CNHF1LM.DLL - ok
19:29:07.0090 5048 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
19:29:07.0090 5048 C:\Windows\System32\PrintIsolationProxy.dll - ok
19:29:07.0095 5048 [ EC98366AD462383659681BDFFD384CED ] C:\Windows\System32\CNBLM4.DLL
19:29:07.0095 5048 C:\Windows\System32\CNBLM4.DLL - ok
19:29:07.0102 5048 [ 05EC573958146FFC960AB39A246A4733 ] C:\Windows\System32\CNMLM8U.DLL
19:29:07.0102 5048 C:\Windows\System32\CNMLM8U.DLL - ok
19:29:07.0108 5048 [ 37F0A09C3EE8DCD7EEFC13DBB508E72F ] C:\Windows\System32\hpinksts8711LM.dll
19:29:07.0108 5048 C:\Windows\System32\hpinksts8711LM.dll - ok
19:29:07.0114 5048 [ 51C6A7165FE38E52D3C13DF4E31654EB ] C:\Windows\System32\hpinksts8811LM.dll
19:29:07.0114 5048 C:\Windows\System32\hpinksts8811LM.dll - ok
19:29:07.0120 5048 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
19:29:07.0120 5048 C:\Windows\System32\FXSMON.dll - ok
19:29:07.0126 5048 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
19:29:07.0126 5048 C:\Windows\System32\tcpmon.dll - ok
19:29:07.0131 5048 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
19:29:07.0131 5048 C:\Windows\System32\snmpapi.dll - ok
19:29:07.0139 5048 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
19:29:07.0139 5048 C:\Windows\System32\usbmon.dll - ok
19:29:07.0144 5048 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
19:29:07.0144 5048 C:\Windows\System32\wsnmp32.dll - ok
19:29:07.0149 5048 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
19:29:07.0151 5048 C:\Windows\System32\WSDMon.dll - ok
19:29:07.0156 5048 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
19:29:07.0156 5048 C:\Windows\System32\WSDApi.dll - ok
19:29:07.0162 5048 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
19:29:07.0162 5048 C:\Windows\AppPatch\AcGenral.dll - ok
19:29:07.0167 5048 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
19:29:07.0167 5048 C:\Windows\SysWOW64\netapi32.dll - ok
19:29:07.0173 5048 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
19:29:07.0173 5048 C:\Windows\SysWOW64\netutils.dll - ok
19:29:07.0180 5048 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
19:29:07.0180 5048 C:\Windows\SysWOW64\srvcli.dll - ok
19:29:07.0186 5048 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
19:29:07.0186 5048 C:\Windows\SysWOW64\wkscli.dll - ok
19:29:07.0192 5048 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:29:07.0192 5048 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
19:29:07.0198 5048 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
19:29:07.0198 5048 C:\Windows\System32\webservices.dll - ok
19:29:07.0207 5048 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
19:29:07.0207 5048 C:\Windows\System32\fdPnp.dll - ok
19:29:07.0211 5048 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
19:29:07.0211 5048 C:\Windows\System32\fundisc.dll - ok
19:29:07.0217 5048 [ 389B0EEE1FFB490D76A556F04C0B268E ] C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL
19:29:07.0217 5048 C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL - ok
19:29:07.0224 5048 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
19:29:07.0224 5048 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
19:29:07.0229 5048 [ 6798171C34B3DEC45B24C4F6B67B0532 ] C:\Windows\System32\spool\prtprocs\x64\CNMPD8U.DLL
19:29:07.0229 5048 C:\Windows\System32\spool\prtprocs\x64\CNMPD8U.DLL - ok
19:29:07.0235 5048 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
19:29:07.0235 5048 C:\Windows\System32\win32spl.dll - ok
19:29:07.0241 5048 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
19:29:07.0242 5048 C:\Windows\System32\inetpp.dll - ok
19:29:07.0247 5048 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
19:29:07.0247 5048 C:\Windows\System32\cscapi.dll - ok
19:29:07.0253 5048 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
19:29:07.0253 5048 C:\Windows\SysWOW64\secur32.dll - ok
19:29:07.0259 5048 [ F71ECAB18972467500609A8FA4E98F33 ] C:\Program Files (x86)\AVG\AVG10\avgclitx.dll
19:29:07.0259 5048 C:\Program Files (x86)\AVG\AVG10\avgclitx.dll - ok
19:29:07.0265 5048 [ 28FB755A65BBC02144C1B6CFC1F119AD ] C:\Windows\System32\atidxx64.dll
19:29:07.0265 5048 C:\Windows\System32\atidxx64.dll - ok
19:29:07.0271 5048 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
19:29:07.0271 5048 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
19:29:07.0276 5048 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
19:29:07.0276 5048 C:\Windows\explorer.exe - ok
19:29:07.0282 5048 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
19:29:07.0282 5048 C:\Windows\System32\dssenh.dll - ok
19:29:07.0288 5048 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
19:29:07.0288 5048 C:\Windows\SysWOW64\uxtheme.dll - ok
19:29:07.0295 5048 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
19:29:07.0295 5048 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
19:29:07.0300 5048 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
19:29:07.0300 5048 C:\Windows\SysWOW64\cscapi.dll - ok
19:29:07.0306 5048 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
19:29:07.0306 5048 C:\Windows\SysWOW64\dbghelp.dll - ok
19:29:07.0312 5048 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
19:29:07.0312 5048 C:\Windows\SysWOW64\msacm32.dll - ok
19:29:07.0318 5048 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
19:29:07.0318 5048 C:\Windows\SysWOW64\samcli.dll - ok
19:29:07.0321 5048 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
19:29:07.0321 5048 C:\Windows\SysWOW64\sfc.dll - ok
19:29:07.0327 5048 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
19:29:07.0327 5048 C:\Windows\SysWOW64\dwmapi.dll - ok
19:29:07.0333 5048 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
19:29:07.0333 5048 C:\Windows\SysWOW64\sfc_os.dll - ok
19:29:07.0339 5048 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
19:29:07.0339 5048 C:\Windows\SysWOW64\mpr.dll - ok
19:29:07.0345 5048 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
19:29:07.0345 5048 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
19:29:07.0351 5048 [ E6671E90D38C88764412E07C9D9B3D63 ] C:\Windows\System32\drivers\AVGIDSDriver.sys
19:29:07.0351 5048 C:\Windows\System32\drivers\AVGIDSDriver.sys - ok
19:29:07.0358 5048 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
19:29:07.0358 5048 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
19:29:07.0363 5048 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
19:29:07.0363 5048 C:\Windows\SysWOW64\mstask.dll - ok
19:29:07.0370 5048 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
19:29:07.0370 5048 C:\Windows\System32\drivers\srv2.sys - ok
19:29:07.0375 5048 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
19:29:07.0375 5048 C:\Windows\System32\dbghelp.dll - ok
19:29:07.0382 5048 [ CA4912C91BAD92DD2AFCF282039740EC ] C:\Program Files (x86)\AVG\AVG10\avgcorex.dll
19:29:07.0382 5048 C:\Program Files (x86)\AVG\AVG10\avgcorex.dll - ok
19:29:07.0388 5048 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
19:29:07.0388 5048 C:\Windows\System32\ntprint.dll - ok
19:29:07.0394 5048 [ 7A0F6A3E0E41425B9BA54616B482668A ] C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
19:29:07.0394 5048 C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe - ok
19:29:07.0401 5048 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
19:29:07.0401 5048 C:\Windows\System32\ExplorerFrame.dll - ok
19:29:07.0406 5048 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
19:29:07.0406 5048 C:\Windows\System32\EhStorShell.dll - ok
19:29:07.0412 5048 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
19:29:07.0412 5048 C:\Windows\System32\ntshrui.dll - ok
19:29:07.0418 5048 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
19:29:07.0418 5048 C:\Windows\System32\IconCodecService.dll - ok
19:29:07.0424 5048 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
19:29:07.0424 5048 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
19:29:07.0433 5048 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
19:29:07.0433 5048 C:\Windows\System32\drivers\srv.sys - ok
19:29:07.0439 5048 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
19:29:07.0439 5048 C:\Windows\System32\srvsvc.dll - ok
19:29:07.0443 5048 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
19:29:07.0443 5048 C:\Windows\System32\browser.dll - ok
19:29:07.0453 5048 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
19:29:07.0453 5048 C:\Windows\System32\clusapi.dll - ok
19:29:07.0457 5048 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
19:29:07.0457 5048 C:\Windows\System32\netmsg.dll - ok
19:29:07.0463 5048 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
19:29:07.0463 5048 C:\Windows\System32\sscore.dll - ok
19:29:07.0469 5048 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
19:29:07.0469 5048 C:\Windows\System32\resutils.dll - ok
19:29:07.0475 5048 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
19:29:07.0475 5048 C:\Windows\SysWOW64\msxml3.dll - ok
19:29:07.0482 5048 [ DE81240BD5476BB8AA2261349AB32FF8 ] C:\Program Files (x86)\AVG\AVG10\avgamnot.dll
19:29:07.0482 5048 C:\Program Files (x86)\AVG\AVG10\avgamnot.dll - ok
19:29:07.0488 5048 [ 8F2E5F841DF279C41FA011E8F2E945BC ] C:\Program Files (x86)\AVG\AVG10\avgidpsdkx.dll
19:29:07.0488 5048 C:\Program Files (x86)\AVG\AVG10\avgidpsdkx.dll - ok
19:29:07.0493 5048 [ CFF3F66119D13EC1065CACDBCE6D6F2D ] C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\avgcslex.dll
19:29:07.0493 5048 C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\avgcslex.dll - ok
19:29:07.0499 5048 [ 7A7A90C3FF65DD7E970229BF98A27D41 ] C:\Program Files (x86)\AVG\AVG10\avgnsa.exe
19:29:07.0499 5048 C:\Program Files (x86)\AVG\AVG10\avgnsa.exe - ok
19:29:07.0505 5048 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\SysWOW64\msxml6.dll
19:29:07.0505 5048 C:\Windows\SysWOW64\msxml6.dll - ok
19:29:07.0511 5048 [ 0FFF051E4327DF1508CBF9EE098DEAB6 ] C:\Program Files (x86)\AVG\AVG10\avgemca.exe
19:29:07.0511 5048 C:\Program Files (x86)\AVG\AVG10\avgemca.exe - ok
19:29:07.0517 5048 [ 96EC140D8EC76556A3651987B7102F92 ] C:\Program Files (x86)\AVG\AVG10\avgsched.dll
19:29:07.0517 5048 C:\Program Files (x86)\AVG\AVG10\avgsched.dll - ok
19:29:07.0525 5048 [ 448BF22538F1DFCB3412AE2B1CF123A9 ] C:\Windows\System32\conhost.exe
19:29:07.0525 5048 C:\Windows\System32\conhost.exe - ok
19:29:07.0533 5048 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
19:29:07.0533 5048 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
19:29:07.0537 5048 [ 865A55BC96244466A0A094AEB5D3D0E9 ] C:\Program Files (x86)\AVG\AVG10\avgloga.dll
19:29:07.0537 5048 C:\Program Files (x86)\AVG\AVG10\avgloga.dll - ok
19:29:07.0543 5048 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
19:29:07.0543 5048 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
19:29:07.0549 5048 [ FAE6E67B7C221659037D2485D05DF123 ] C:\Program Files (x86)\AVG\AVG10\avgcfga.dll
19:29:07.0549 5048 C:\Program Files (x86)\AVG\AVG10\avgcfga.dll - ok
19:29:07.0556 5048 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
19:29:07.0556 5048 C:\Windows\System32\msi.dll - ok
19:29:07.0563 5048 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
19:29:07.0563 5048 C:\Windows\SysWOW64\propsys.dll - ok
19:29:07.0568 5048 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
19:29:07.0568 5048 C:\Windows\SysWOW64\SensApi.dll - ok
19:29:07.0571 5048 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
19:29:07.0571 5048 C:\Windows\SysWOW64\linkinfo.dll - ok
19:29:07.0577 5048 [ 98A243951E968F19B27CD6CDB7EAA436 ] C:\Program Files (x86)\AVG\AVG10\avgclita.dll
19:29:07.0577 5048 C:\Program Files (x86)\AVG\AVG10\avgclita.dll - ok
19:29:07.0583 5048 [ 32E15ECF5854F5610BC895490BC3246A ] C:\Windows\SysWOW64\ieframe.dll
19:29:07.0583 5048 C:\Windows\SysWOW64\ieframe.dll - ok
19:29:07.0590 5048 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
19:29:07.0590 5048 C:\Windows\SysWOW64\oleacc.dll - ok
19:29:07.0595 5048 [ 80AEC7987F4F315DC8B65FA1A42FF554 ] C:\Program Files (x86)\AVG\AVG10\avgwdwsc.dll
19:29:07.0595 5048 C:\Program Files (x86)\AVG\AVG10\avgwdwsc.dll - ok
19:29:07.0601 5048 [ 19BC13711AC403FEB830522E4831701B ] C:\Windows\SysWOW64\gameux.dll
19:29:07.0601 5048 C:\Windows\SysWOW64\gameux.dll - ok
19:29:07.0608 5048 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
19:29:07.0608 5048 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
19:29:07.0614 5048 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
19:29:07.0614 5048 C:\Windows\SysWOW64\xmllite.dll - ok
19:29:07.0620 5048 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
19:29:07.0620 5048 C:\Windows\SysWOW64\wer.dll - ok
19:29:07.0626 5048 [ 8948D4B24E6415896960776B28E7BFFD ] C:\Program Files (x86)\AVG\AVG10\avgrsa.exe
19:29:07.0626 5048 C:\Program Files (x86)\AVG\AVG10\avgrsa.exe - ok
19:29:07.0634 5048 [ 2E6F4C1F13031C7B2AC1F3A75DB59A96 ] C:\Program Files (x86)\AVG\AVG10\avgcclia.dll
19:29:07.0634 5048 C:\Program Files (x86)\AVG\AVG10\avgcclia.dll - ok
19:29:07.0639 5048 [ B737DB264CB1B5FFA2A886E3B940434A ] C:\Program Files (x86)\AVG\AVG10\avgchsva.exe
19:29:07.0640 5048 C:\Program Files (x86)\AVG\AVG10\avgchsva.exe - ok
19:29:07.0644 5048 [ BB63418C7269D1327ED2B95D13F76B4C ] C:\Program Files (x86)\AVG\AVG10\avgchjwa.dll
19:29:07.0644 5048 C:\Program Files (x86)\AVG\AVG10\avgchjwa.dll - ok
19:29:07.0648 5048 [ 2CDA4753B39225BA3F71A0F915280ACB ] C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe
19:29:07.0648 5048 C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe - ok
19:29:07.0651 5048 [ FC7BEA10A59ABEA8C225BD6C55B09B7F ] C:\Program Files (x86)\AVG\AVG10\avgcorea.dll
19:29:07.0652 5048 C:\Program Files (x86)\AVG\AVG10\avgcorea.dll - ok
19:29:07.0655 5048 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
19:29:07.0655 5048 C:\Windows\SysWOW64\shdocvw.dll - ok
19:29:07.0661 5048 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
19:29:07.0661 5048 C:\Windows\SysWOW64\ntshrui.dll - ok
19:29:07.0667 5048 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
19:29:07.0667 5048 C:\Windows\SysWOW64\slc.dll - ok
19:29:07.0672 5048 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
19:29:07.0672 5048 C:\Windows\System32\appinfo.dll - ok
19:29:07.0680 5048 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
19:29:07.0680 5048 C:\Windows\System32\wpdbusenum.dll - ok
19:29:07.0685 5048 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
19:29:07.0685 5048 C:\Windows\System32\wdi.dll - ok
19:29:07.0692 5048 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
19:29:07.0692 5048 C:\Windows\System32\perftrack.dll - ok
19:29:07.0698 5048 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
19:29:07.0698 5048 C:\Windows\System32\IPSECSVC.DLL - ok
19:29:07.0704 5048 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
19:29:07.0704 5048 C:\Windows\System32\FwRemoteSvr.dll - ok
19:29:07.0709 5048 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
19:29:07.0709 5048 C:\Windows\System32\NapiNSP.dll - ok
19:29:07.0716 5048 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
19:29:07.0716 5048 C:\Windows\System32\pnrpnsp.dll - ok
19:29:07.0721 5048 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
19:29:07.0721 5048 C:\Windows\System32\winrnr.dll - ok
19:29:07.0730 5048 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
19:29:07.0730 5048 C:\Windows\System32\dimsjob.dll - ok
19:29:07.0734 5048 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
19:29:07.0734 5048 C:\Windows\System32\PortableDeviceApi.dll - ok
19:29:07.0740 5048 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
19:29:07.0740 5048 C:\Windows\SysWOW64\ncrypt.dll - ok
19:29:07.0747 5048 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
19:29:07.0747 5048 C:\Windows\System32\runonce.exe - ok
19:29:07.0754 5048 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
19:29:07.0754 5048 C:\Windows\SysWOW64\bcrypt.dll - ok
19:29:07.0760 5048 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
19:29:07.0760 5048 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
19:29:07.0767 5048 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:29:07.0767 5048 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:29:07.0774 5048 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
19:29:07.0774 5048 C:\Windows\SysWOW64\runonce.exe - ok
19:29:07.0781 5048 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
19:29:07.0781 5048 C:\Windows\System32\diagperf.dll - ok
19:29:07.0786 5048 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
19:29:07.0786 5048 C:\Windows\System32\Apphlpdm.dll - ok
19:29:07.0792 5048 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
19:29:07.0792 5048 C:\Windows\System32\pnpts.dll - ok
19:29:07.0799 5048 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
19:29:07.0800 5048 C:\Windows\System32\wdiasqmmodule.dll - ok
19:29:07.0807 5048 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
19:29:07.0807 5048 C:\Windows\System32\radardt.dll - ok
19:29:07.0811 5048 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
19:29:07.0811 5048 C:\Windows\SysWOW64\cmd.exe - ok
19:29:07.0817 5048 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
19:29:07.0817 5048 C:\Windows\SysWOW64\winbrand.dll - ok
19:29:07.0820 5048 [ E842BEEE8B100CE128C1EC70B462E078 ] C:\Program Files (x86)\AVG\AVG10\avgcerta.dll
19:29:07.0820 5048 C:\Program Files (x86)\AVG\AVG10\avgcerta.dll - ok
19:29:07.0827 5048 [ 33BAC6BB9AE471B8F1CB54337BE6D03D ] C:\Program Files (x86)\AVG\AVG10\avgchcla.dll
19:29:07.0827 5048 C:\Program Files (x86)\AVG\AVG10\avgchcla.dll - ok
19:29:07.0835 5048 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
19:29:07.0835 5048 C:\Windows\System32\aelupsvc.dll - ok
19:29:07.0840 5048 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\Joyce\AppData\Local\Temp\DFA64436-189F-4629-AAF9-B3F013A66B72.exe
19:29:07.0840 5048 C:\Users\Joyce\AppData\Local\Temp\DFA64436-189F-4629-AAF9-B3F013A66B72.exe - ok
19:29:07.0847 5048 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
19:29:07.0847 5048 C:\Windows\SysWOW64\devrtl.dll - ok
19:29:07.0852 5048 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
19:29:07.0852 5048 C:\Windows\SysWOW64\gpapi.dll - ok
19:29:07.0858 5048 [ 6316957BB3431DFB06BFFA98C0F1926E ] C:\Windows\SysWOW64\cryptnet.dll
19:29:07.0858 5048 C:\Windows\SysWOW64\cryptnet.dll - ok
19:29:07.0864 5048 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
19:29:07.0864 5048 C:\Windows\System32\ie4uinit.exe - ok
19:29:07.0870 5048 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
19:29:07.0870 5048 C:\Windows\System32\timedate.cpl - ok
19:29:07.0878 5048 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
19:29:07.0878 5048 C:\Windows\System32\actxprxy.dll - ok
19:29:07.0882 5048 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
19:29:07.0883 5048 C:\Windows\System32\shdocvw.dll - ok
19:29:07.0889 5048 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
19:29:07.0889 5048 C:\Windows\System32\linkinfo.dll - ok
19:29:07.0894 5048 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
19:29:07.0894 5048 C:\Windows\SysWOW64\credssp.dll - ok
19:29:07.0900 5048 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
19:29:07.0900 5048 C:\Windows\SysWOW64\wship6.dll - ok
19:29:07.0906 5048 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
19:29:07.0907 5048 C:\Windows\SysWOW64\dnsapi.dll - ok
19:29:07.0912 5048 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
19:29:07.0912 5048 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
19:29:07.0918 5048 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
19:29:07.0918 5048 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
19:29:07.0925 5048 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
19:29:07.0925 5048 C:\Windows\System32\msftedit.dll - ok
19:29:07.0932 5048 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
19:29:07.0932 5048 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
19:29:07.0938 5048 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
19:29:07.0938 5048 C:\Windows\System32\msls31.dll - ok
19:29:07.0944 5048 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
19:29:07.0944 5048 C:\Windows\SysWOW64\rasadhlp.dll - ok
19:29:07.0950 5048 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
19:29:07.0950 5048 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
19:29:07.0956 5048 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
19:29:07.0956 5048 C:\Windows\System32\gameux.dll - ok
19:29:07.0962 5048 [ E1DCEE9E3EC0522DF24397BE1A64E449 ] C:\Windows\System32\dfshim.dll
19:29:07.0962 5048 C:\Windows\System32\dfshim.dll - ok
19:29:07.0967 5048 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
19:29:07.0967 5048 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
19:29:07.0974 5048 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
19:29:07.0974 5048 C:\Windows\System32\DeviceCenter.dll - ok
19:29:07.0980 5048 [ FEDB6110D3E0A7EFE6996F93CD8C48E7 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE
19:29:07.0980 5048 C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE - ok
19:29:07.0986 5048 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
19:29:07.0986 5048 C:\Windows\System32\mscoree.dll - ok
19:29:07.0993 5048 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
19:29:07.0993 5048 C:\Windows\System32\msiltcfg.dll - ok
19:29:07.0998 5048 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
19:29:07.0999 5048 C:\Windows\SysWOW64\comdlg32.dll - ok
19:29:08.0004 5048 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
19:29:08.0004 5048 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
19:29:08.0011 5048 [ 20437681A7678D440BBEE38C0453B852 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll
19:29:08.0011 5048 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll - ok
19:29:08.0017 5048 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
19:29:08.0018 5048 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
19:29:08.0024 5048 [ CF96AE49A34CE525D735A2666FF53CD6 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
19:29:08.0025 5048 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
19:29:08.0030 5048 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
19:29:08.0030 5048 C:\Windows\SysWOW64\winspool.drv - ok
19:29:08.0036 5048 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
19:29:08.0036 5048 C:\Windows\System32\npmproxy.dll - ok
19:29:08.0043 5048 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\14245389.sys
19:29:08.0043 5048 C:\Windows\System32\drivers\14245389.sys - ok
19:29:08.0048 5048 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
19:29:08.0048 5048 C:\Windows\System32\msvcr100_clr0400.dll - ok
19:29:08.0054 5048 [ B28AD85B8C199CB573621FCE54D7E19C ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
19:29:08.0054 5048 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
19:29:08.0061 5048 [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\Joyce\AppData\Local\Google\Update\GoogleUpdate.exe
19:29:08.0061 5048 C:\Users\Joyce\AppData\Local\Google\Update\GoogleUpdate.exe - ok
19:29:08.0069 5048 [ D9DAC6860D837686A22EFBAF08EFB515 ] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
19:29:08.0070 5048 C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe - ok
19:29:08.0073 5048 [ 123EBB4E85A6198C26E1AA482AA633DB ] C:\Program Files\Canon\MyPrinter\CNMPU.DLL
19:29:08.0073 5048 C:\Program Files\Canon\MyPrinter\CNMPU.DLL - ok
19:29:08.0080 5048 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Users\Joyce\AppData\Local\Google\Update\1.3.21.123\goopdate.dll
19:29:08.0080 5048 C:\Users\Joyce\AppData\Local\Google\Update\1.3.21.123\goopdate.dll - ok
19:29:08.0086 5048 [ 228184C83E8CDF094A8CA730C8C72E97 ] C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll
19:29:08.0086 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll - ok
19:29:08.0092 5048 [ 05F1A6A058E10DA99CCD421DD1247BDD ] C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll
19:29:08.0092 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll - ok
19:29:08.0098 5048 [ 2C8B6947F4AC11B098235E0C4FC22426 ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
19:29:08.0099 5048 C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
19:29:08.0106 5048 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Windows\SysWOW64\msvcp100.dll
19:29:08.0106 5048 C:\Windows\SysWOW64\msvcp100.dll - ok
19:29:08.0112 5048 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Windows\SysWOW64\msvcr100.dll
19:29:08.0112 5048 C:\Windows\SysWOW64\msvcr100.dll - ok
19:29:08.0119 5048 [ 178AFC19586335F3B5BEFAB52646BB91 ] C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll
19:29:08.0119 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll - ok
19:29:08.0125 5048 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Users\Joyce\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe
19:29:08.0125 5048 C:\Users\Joyce\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
19:29:08.0131 5048 [ 917C8EB4B7BD416F037D4F9D092D7519 ] C:\Program Files (x86)\Nokia\Nokia Suite\DAL.dll
19:29:08.0131 5048 C:\Program Files (x86)\Nokia\Nokia Suite\DAL.dll - ok
19:29:08.0138 5048 [ 9C6F3CC6A3BB310D70026AF1B4561F65 ] C:\Windows\System32\ieframe.dll
19:29:08.0138 5048 C:\Windows\System32\ieframe.dll - ok
19:29:08.0144 5048 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Users\Joyce\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
19:29:08.0144 5048 C:\Users\Joyce\AppData\Local\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
19:29:08.0150 5048 [ 1B67A934C336E9290F39D0E28FC0DFDC ] C:\Program Files (x86)\Nokia\Nokia Suite\CommonUtilities.dll
19:29:08.0150 5048 C:\Program Files (x86)\Nokia\Nokia Suite\CommonUtilities.dll - ok
19:29:08.0157 5048 [ 7F30751B1AEB48CAD42300EB055B49D4 ] C:\Program Files (x86)\Nokia\Nokia Suite\MMSParser.dll
19:29:08.0157 5048 C:\Program Files (x86)\Nokia\Nokia Suite\MMSParser.dll - ok
19:29:08.0163 5048 [ 06105D08927E3498B3D380CBF0688E78 ] C:\Program Files (x86)\AVG\AVG10\avgtray.exe
19:29:08.0163 5048 C:\Program Files (x86)\AVG\AVG10\avgtray.exe - ok
19:29:08.0169 5048 [ C76093E7D3D0991D3BE535A6E73EE601 ] C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll
19:29:08.0169 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll - ok
19:29:08.0175 5048 [ EAAFD6002F435D7C616D1026D60D4428 ] C:\Program Files (x86)\Nokia\Nokia Suite\nossu2dm.dll
19:29:08.0175 5048 C:\Program Files (x86)\Nokia\Nokia Suite\nossu2dm.dll - ok
19:29:08.0181 5048 [ C29D7377C174BD5F496B5789D991DD0E ] C:\Program Files (x86)\Nokia\Nokia Suite\CommonWidgets.dll
19:29:08.0181 5048 C:\Program Files (x86)\Nokia\Nokia Suite\CommonWidgets.dll - ok
19:29:08.0188 5048 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
19:29:08.0188 5048 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
19:29:08.0194 5048 [ EF1D0E0F1C4B07F2B10C7AA1E8CB0617 ] C:\Program Files (x86)\Nokia\Nokia Suite\WidgetLibrary.dll
19:29:08.0194 5048 C:\Program Files (x86)\Nokia\Nokia Suite\WidgetLibrary.dll - ok
19:29:08.0200 5048 [ 191B8E680CE10458D81E1DEF021A563A ] C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll
19:29:08.0200 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll - ok
19:29:08.0207 5048 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
19:29:08.0207 5048 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
19:29:08.0213 5048 [ 010F36A128B4BB5D9A5E79E37B322E0C ] C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll
19:29:08.0213 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll - ok
19:29:08.0220 5048 [ 9EC7B96291F052E01EEEB2E3C090E6A0 ] C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll
19:29:08.0220 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll - ok
19:29:08.0227 5048 [ 4ECD3175D323FA9DB3F50D1359200FD2 ] C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll
19:29:08.0227 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll - ok
19:29:08.0233 5048 [ 01EAA324C4F55ACE8903A70D25E03F79 ] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
19:29:08.0233 5048 C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe - ok
19:29:08.0239 5048 [ 846965AE55A2662B1576C0F392DD1D6E ] C:\Program Files (x86)\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
19:29:08.0239 5048 C:\Program Files (x86)\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe - ok
19:29:08.0245 5048 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
19:29:08.0245 5048 C:\Windows\SysWOW64\shfolder.dll - ok
19:29:08.0251 5048 [ F8D427DAE2984A4968E2D1CB53634784 ] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe
19:29:08.0251 5048 C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe - ok
19:29:08.0256 5048 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
19:29:08.0256 5048 C:\Windows\SysWOW64\oledlg.dll - ok
19:29:08.0263 5048 [ FBA22C413FE8B13BA49D7535174DDBEF ] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpHookSE4.dll
19:29:08.0264 5048 C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpHookSE4.dll - ok
19:29:08.0269 5048 [ 3573A4FD6682D3DB7FAA089159AFFD1C ] C:\Program Files (x86)\Brownie\BrStsW64.exe
19:29:08.0269 5048 C:\Program Files (x86)\Brownie\BrStsW64.exe - ok
19:29:08.0275 5048 [ 82CC8F77E9EC61C6B4D48DD4D5CA78E7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:29:08.0276 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
19:29:08.0282 5048 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
19:29:08.0282 5048 C:\Windows\SysWOW64\riched20.dll - ok
19:29:08.0288 5048 [ AF43C4F7F3C8BC95DAD95024F96CDC4A ] C:\Program Files (x86)\QuickTime\QTTask.exe
19:29:08.0288 5048 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
19:29:08.0294 5048 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
19:29:08.0294 5048 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
19:29:08.0301 5048 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
19:29:08.0301 5048 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
19:29:08.0307 5048 [ 5CEDF292F4573A1F36CC7DE598ECCFC7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
19:29:08.0307 5048 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
19:29:08.0315 5048 [ 4AFFDCAADCB1DBBFFAF06C7F82E7F6FC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
19:29:08.0315 5048 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
19:29:08.0320 5048 [ 7B845BFE314509D08AB5865CB141E332 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
19:29:08.0320 5048 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
19:29:08.0324 5048 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
19:29:08.0324 5048 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
19:29:08.0330 5048 [ A7146C0C90D7BA0F251AC073E655D4D2 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
19:29:08.0330 5048 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
19:29:08.0337 5048 [ BB9531BF3804DBE13F481C77B6386136 ] C:\Program Files (x86)\Nokia\Nokia Suite\Styles\Style.dll
19:29:08.0337 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Styles\Style.dll - ok
19:29:08.0343 5048 [ 9DEE004269DADEE715BD572410AA6076 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
19:29:08.0343 5048 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
19:29:08.0349 5048 [ 22B6FC26372F09919FD611D5A9C52ACE ] C:\Program Files (x86)\Nokia\Nokia Suite\Imageformats\qgif4.dll
19:29:08.0349 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Imageformats\qgif4.dll - ok
19:29:08.0357 5048 [ 037204BCCE4B63ECB6B999B788C69B7D ] C:\Program Files (x86)\Nokia\Nokia Suite\Imageformats\qico4.dll
19:29:08.0357 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Imageformats\qico4.dll - ok
19:29:08.0364 5048 [ 112E16923A8CFFAEA9B8D1FF6C002A4E ] C:\Program Files (x86)\Nokia\Nokia Suite\Imageformats\qjpeg4.dll
19:29:08.0364 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Imageformats\qjpeg4.dll - ok
19:29:08.0370 5048 [ 3F565AB2CDE400557C5D8D7343D5B3C1 ] C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Service.dll
19:29:08.0370 5048 C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Service.dll - ok
19:29:08.0376 5048 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
19:29:08.0376 5048 C:\Windows\SysWOW64\msimg32.dll - ok
19:29:08.0381 5048 [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
19:29:08.0382 5048 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
19:29:08.0387 5048 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
19:29:08.0387 5048 C:\Windows\SysWOW64\msvfw32.dll - ok
19:29:08.0393 5048 [ 394117608EB031E622D4812E67746F09 ] C:\Windows\SysWOW64\wmdrmsdk.dll
19:29:08.0393 5048 C:\Windows\SysWOW64\wmdrmsdk.dll - ok
19:29:08.0399 5048 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
19:29:08.0399 5048 C:\Windows\SysWOW64\mfplat.dll - ok
19:29:08.0404 5048 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
19:29:08.0404 5048 C:\Windows\SysWOW64\avrt.dll - ok
19:29:08.0410 5048 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
19:29:08.0410 5048 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
19:29:08.0416 5048 [ 0D1F99C2FE82C2AEBB2B7C43A9179204 ] C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Pccs.dll
19:29:08.0416 5048 C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Pccs.dll - ok
19:29:08.0422 5048 [ BACFFBBD03EA98340500CA5C2761C6D6 ] C:\Program Files (x86)\Nokia\Nokia Suite\TrayIcon.dll
19:29:08.0423 5048 C:\Program Files (x86)\Nokia\Nokia Suite\TrayIcon.dll - ok
19:29:08.0429 5048 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
19:29:08.0429 5048 C:\Windows\System32\oleacc.dll - ok
19:29:08.0435 5048 [ 199F9ADDB1C1E633169B9F6CB40D7724 ] C:\Program Files (x86)\AVG\AVG10\avglngx.dll
19:29:08.0435 5048 C:\Program Files (x86)\AVG\AVG10\avglngx.dll - ok
19:29:08.0441 5048 [ 3DF81CFFD4DA553614F23A52550EA9CE ] C:\Program Files (x86)\PC Connectivity Solution\ConnAPI.dll
19:29:08.0442 5048 C:\Program Files (x86)\PC Connectivity Solution\ConnAPI.dll - ok
19:29:08.0447 5048 [ FB355B817AE641BBAE08607E58CB5CE2 ] C:\Windows\System32\hhctrl.ocx
19:29:08.0448 5048 C:\Windows\System32\hhctrl.ocx - ok
19:29:08.0456 5048 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
19:29:08.0456 5048 C:\Windows\System32\stobject.dll - ok
19:29:08.0466 5048 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
19:29:08.0466 5048 C:\Windows\System32\batmeter.dll - ok
19:29:08.0470 5048 [ 98C53540A2860383E3A5D352CED59C9D ] C:\Program Files (x86)\PC Connectivity Solution\ConfServer.dll
19:29:08.0470 5048 C:\Program Files (x86)\PC Connectivity Solution\ConfServer.dll - ok
19:29:08.0479 5048 [ BCACA78707C8B44F732CCE05918277D3 ] C:\Program Files (x86)\Brownie\brpjp04a.exe
19:29:08.0479 5048 C:\Program Files (x86)\Brownie\brpjp04a.exe - ok
19:29:08.0485 5048 [ AF4DC6348884A5636F439FC6CE93A8DC ] C:\Program Files (x86)\AVG\AVG10\avgabout.dll
19:29:08.0485 5048 C:\Program Files (x86)\AVG\AVG10\avgabout.dll - ok
19:29:08.0490 5048 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
19:29:08.0490 5048 C:\Windows\System32\prnfldr.dll - ok
19:29:08.0496 5048 [ 9C935FC1D608C7C5AD0FE75B0F223533 ] C:\Program Files (x86)\Nokia\Nokia Suite\CDC.dll
19:29:08.0497 5048 C:\Program Files (x86)\Nokia\Nokia Suite\CDC.dll - ok
19:29:08.0504 5048 [ 61B12427CCBF5512E3439664C00D5FCD ] C:\Program Files (x86)\AVG\AVG10\avguires.dll
19:29:08.0504 5048 C:\Program Files (x86)\AVG\AVG10\avguires.dll - ok
19:29:08.0508 5048 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
19:29:08.0508 5048 C:\Windows\SysWOW64\d3d9.dll - ok
19:29:08.0514 5048 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
19:29:08.0514 5048 C:\Windows\System32\DXP.dll - ok
19:29:08.0520 5048 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
19:29:08.0520 5048 C:\Windows\System32\networkexplorer.dll - ok
19:29:08.0525 5048 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
19:29:08.0525 5048 C:\Windows\SysWOW64\d3d8thk.dll - ok
19:29:08.0531 5048 [ 7C0DBC9B60A6C9439A1E0197837BDD88 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\dashboard.dll
19:29:08.0531 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\dashboard.dll - ok
19:29:08.0537 5048 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
19:29:08.0537 5048 C:\Windows\System32\AudioSes.dll - ok
19:29:08.0544 5048 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
19:29:08.0544 5048 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
19:29:08.0550 5048 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
19:29:08.0550 5048 C:\Windows\System32\thumbcache.dll - ok
19:29:08.0556 5048 [ 350A0C2CC411A6B0982604C8893C3E93 ] C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
19:29:08.0556 5048 C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe - ok
19:29:08.0562 5048 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
19:29:08.0562 5048 C:\Windows\System32\AltTab.dll - ok
19:29:08.0568 5048 [ FFEF0218D4A727FBB6B468EF72984996 ] C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll
19:29:08.0568 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll - ok
19:29:08.0571 5048 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
19:29:08.0571 5048 C:\Windows\System32\Syncreg.dll - ok
19:29:08.0577 5048 [ 9D77E8A2EE92E9DAFAC88DEFCF6D777D ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
19:29:08.0577 5048 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe - ok
19:29:08.0583 5048 [ 6E50CFA46527B39015B750AAD161C5CC ] C:\Program Files\iPod\bin\iPodService.exe
19:29:08.0584 5048 C:\Program Files\iPod\bin\iPodService.exe - ok
19:29:08.0589 5048 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
19:29:08.0589 5048 C:\Windows\System32\pnidui.dll - ok
19:29:08.0595 5048 [ ADB67488447D0FF271355A4451ED6C73 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSParts.dll
19:29:08.0595 5048 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSParts.dll - ok
19:29:08.0601 5048 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
19:29:08.0601 5048 C:\Windows\System32\QUTIL.DLL - ok
19:29:08.0606 5048 [ C7F070BDD9700BD4A482401334D3488E ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSAPI.dll
19:29:08.0607 5048 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSAPI.dll - ok
19:29:08.0612 5048 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
19:29:08.0612 5048 C:\Windows\ehome\ehSSO.dll - ok
19:29:08.0618 5048 [ 995DFC3B647849E31942E13FA2017B11 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\CFWlApi.dll
19:29:08.0618 5048 C:\Program Files (x86)\TOSHIBA\ConfigFree\CFWlApi.dll - ok
19:29:08.0624 5048 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
19:29:08.0624 5048 C:\Windows\System32\netshell.dll - ok
19:29:08.0631 5048 [ E90CE237E99C5D26CB3872318A7799D0 ] C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
19:29:08.0631 5048 C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe - ok
19:29:08.0637 5048 [ 4D3061BEF2306B6931D8998D54A6D4A1 ] C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll
19:29:08.0637 5048 C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll - ok
19:29:08.0643 5048 [ 1F06F310DF9EB44A67DB261DEEE64895 ] C:\Program Files (x86)\PC Connectivity Solution\PCCS_DBEngine.dll
19:29:08.0643 5048 C:\Program Files (x86)\PC Connectivity Solution\PCCS_DBEngine.dll - ok
19:29:08.0649 5048 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
19:29:08.0650 5048 C:\Windows\System32\WPDShServiceObj.dll - ok
19:29:08.0656 5048 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
19:29:08.0656 5048 C:\Windows\System32\PortableDeviceTypes.dll - ok
19:29:08.0661 5048 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
19:29:08.0661 5048 C:\Windows\SysWOW64\sxs.dll - ok
19:29:08.0667 5048 [ BF3EBB9F60768A81C2625A4B23BA7EA0 ] C:\Program Files (x86)\PC Connectivity Solution\NclInstaller64.exe
19:29:08.0667 5048 C:\Program Files (x86)\PC Connectivity Solution\NclInstaller64.exe - ok
19:29:08.0673 5048 [ FA48C6989C8F718E31055738517FC0C8 ] C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
19:29:08.0674 5048 C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe - ok
19:29:08.0679 5048 [ BB7E865599FA258C70DF8B1F70109F6F ] C:\Windows\System32\newdev.dll
19:29:08.0679 5048 C:\Windows\System32\newdev.dll - ok
19:29:08.0686 5048 [ 7E129DAF19B1B533FE7DD52428A941F1 ] C:\Program Files (x86)\PC Connectivity Solution\PCCS_ABAPI.dll
19:29:08.0686 5048 C:\Program Files (x86)\PC Connectivity Solution\PCCS_ABAPI.dll - ok
19:29:08.0692 5048 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
19:29:08.0692 5048 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
19:29:08.0697 5048 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
19:29:08.0697 5048 C:\Windows\System32\ActionCenter.dll - ok
19:29:08.0703 5048 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
19:29:08.0703 5048 C:\Windows\SysWOW64\duser.dll - ok
19:29:08.0709 5048 [ 8044B0D9959B03894973BBD805CA4F36 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
19:29:08.0709 5048 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
19:29:08.0715 5048 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
19:29:08.0715 5048 C:\Windows\SysWOW64\dui70.dll - ok
19:29:08.0722 5048 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
19:29:08.0722 5048 C:\Windows\System32\bthprops.cpl - ok
19:29:08.0727 5048 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
19:29:08.0727 5048 C:\Windows\System32\srchadmin.dll - ok
19:29:08.0732 5048 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
19:29:08.0732 5048 C:\Windows\System32\mlang.dll - ok
19:29:08.0738 5048 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
19:29:08.0738 5048 C:\Windows\System32\UIAnimation.dll - ok
19:29:08.0744 5048 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
19:29:08.0744 5048 C:\Windows\System32\ksuser.dll - ok
19:29:08.0749 5048 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
19:29:08.0749 5048 C:\Windows\System32\wdmaud.drv - ok
19:29:08.0755 5048 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
19:29:08.0755 5048 C:\Windows\System32\msacm32.drv - ok
19:29:08.0761 5048 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
19:29:08.0761 5048 C:\Windows\System32\msacm32.dll - ok
19:29:08.0767 5048 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
19:29:08.0767 5048 C:\Windows\System32\midimap.dll - ok
19:29:08.0772 5048 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
19:29:08.0772 5048 C:\Windows\System32\mssprxy.dll - ok
19:29:08.0778 5048 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
19:29:08.0778 5048 C:\Windows\System32\webcheck.dll - ok
19:29:08.0784 5048 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
19:29:08.0784 5048 C:\Windows\System32\AudioEng.dll - ok
19:29:08.0790 5048 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
19:29:08.0790 5048 C:\Windows\System32\SyncCenter.dll - ok
19:29:08.0796 5048 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
19:29:08.0796 5048 C:\Windows\System32\AUDIOKSE.dll - ok
19:29:08.0801 5048 [ 3A6C8001E421CE7794739510B5616AD1 ] C:\Windows\System32\RtkAPO64.dll
19:29:08.0802 5048 C:\Windows\System32\RtkAPO64.dll - ok
19:29:08.0810 5048 [ EA31D3007986F6EC3782022CF8F636EC ] C:\Program Files (x86)\PC Connectivity Solution\DAAPI.dll
19:29:08.0810 5048 C:\Program Files (x86)\PC Connectivity Solution\DAAPI.dll - ok
19:29:08.0815 5048 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
19:29:08.0815 5048 C:\Windows\System32\netman.dll - ok
19:29:08.0821 5048 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
19:29:08.0821 5048 C:\Windows\System32\WMALFXGFXDSP.dll - ok
19:29:08.0824 5048 [ 9AF2D062007C2C39BFC04679E13DC0C4 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
19:29:08.0825 5048 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
19:29:08.0831 5048 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
19:29:08.0831 5048 C:\Windows\SysWOW64\wlanapi.dll - ok
19:29:08.0836 5048 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
19:29:08.0836 5048 C:\Windows\SysWOW64\wlanutil.dll - ok
19:29:08.0842 5048 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
19:29:08.0842 5048 C:\Windows\System32\mfplat.dll - ok
19:29:08.0848 5048 [ 0D686573AC62CFD2E078DC0C07A911B5 ] C:\Program Files (x86)\PC Connectivity Solution\NclFT.dll
19:29:08.0848 5048 C:\Program Files (x86)\PC Connectivity Solution\NclFT.dll - ok
19:29:08.0854 5048 [ 986A803380F74E752B1FEAF07A8C2636 ] C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NossuService.dll
19:29:08.0854 5048 C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NossuService.dll - ok
19:29:08.0861 5048 [ C8FE08F7FF481373E2291797F9513A0D ] C:\Program Files (x86)\Nokia\Nokia Suite\nossu2fn.dll
19:29:08.0861 5048 C:\Program Files (x86)\Nokia\Nokia Suite\nossu2fn.dll - ok
19:29:08.0867 5048 [ A21E4CBBF5BE5CE786418199B28B4C0F ] C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NokiaService.dll
19:29:08.0867 5048 C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NokiaService.dll - ok
19:29:08.0873 5048 [ 900714370D634A89C0B4ABC2BC866153 ] C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll
19:29:08.0873 5048 C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll - ok
19:29:08.0880 5048 [ 55EDD93740E201C1FA18E353CCC2E77D ] C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll
19:29:08.0880 5048 C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll - ok
19:29:08.0885 5048 [ C01EF9820C8ECEAAB3326083E9A92917 ] C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Sync.dll
19:29:08.0885 5048 C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Sync.dll - ok
19:29:08.0891 5048 [ 2283E8C8030FB993B32FC54AC11DE229 ] C:\Program Files (x86)\Nokia\Nokia Suite\syncRuntimeAPI.dll
19:29:08.0891 5048 C:\Program Files (x86)\Nokia\Nokia Suite\syncRuntimeAPI.dll - ok
19:29:08.0897 5048 [ 45BD1B57B3618A8DFA2DEADDEC8E536B ] C:\Program Files (x86)\Nokia\Nokia Suite\ilsyncEx.dll
19:29:08.0898 5048 C:\Program Files (x86)\Nokia\Nokia Suite\ilsyncEx.dll - ok
19:29:08.0903 5048 [ 69D27ADF4CA5B0C41CBD891F223926C4 ] C:\Program Files (x86)\Nokia\Nokia Suite\Attendees.dll
19:29:08.0903 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Attendees.dll - ok
19:29:08.0909 5048 [ 0522393B802252A9E80234A82C54D753 ] C:\Program Files (x86)\Nokia\Nokia Suite\recipients.dll
19:29:08.0909 5048 C:\Program Files (x86)\Nokia\Nokia Suite\recipients.dll - ok
19:29:08.0916 5048 [ C9449EA486A90B822A2BCE8A948C6137 ] C:\Program Files (x86)\Nokia\Nokia Suite\PtAttach.dll
19:29:08.0916 5048 C:\Program Files (x86)\Nokia\Nokia Suite\PtAttach.dll - ok
19:29:08.0922 5048 [ 1192FC04491206E2FBEF18644AAB9A3E ] C:\Program Files (x86)\Nokia\Nokia Suite\IlTif32.dll
19:29:08.0922 5048 C:\Program Files (x86)\Nokia\Nokia Suite\IlTif32.dll - ok
19:29:08.0928 5048 [ CE2BC4272871A97616781D9B9B8FDCEF ] C:\Program Files (x86)\Nokia\Nokia Suite\UI-QML_Library.dll
19:29:08.0928 5048 C:\Program Files (x86)\Nokia\Nokia Suite\UI-QML_Library.dll - ok
19:29:08.0934 5048 [ 3C065D227D2854F570915409D04B9D44 ] C:\Program Files (x86)\Nokia\Nokia Suite\MDataStore.dll
19:29:08.0934 5048 C:\Program Files (x86)\Nokia\Nokia Suite\MDataStore.dll - ok
19:29:08.0940 5048 [ 5A9356019D623019BA6E6F14DC816B46 ] C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll
19:29:08.0940 5048 C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll - ok
19:29:08.0946 5048 [ 57B5AD36B14257C988207ECEB651AD4B ] C:\Program Files (x86)\Nokia\Nokia Suite\MEvent.dll
19:29:08.0946 5048 C:\Program Files (x86)\Nokia\Nokia Suite\MEvent.dll - ok
19:29:08.0952 5048 [ 7392520CA79FF6AA11748F72CC2C4028 ] C:\Program Files (x86)\Nokia\Nokia Suite\MItems.dll
19:29:08.0952 5048 C:\Program Files (x86)\Nokia\Nokia Suite\MItems.dll - ok
19:29:08.0958 5048 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
19:29:08.0958 5048 C:\Windows\System32\imapi2.dll - ok
19:29:08.0963 5048 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
19:29:08.0963 5048 C:\Windows\System32\FXSST.dll - ok
19:29:08.0969 5048 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
19:29:08.0969 5048 C:\Windows\System32\FXSAPI.dll - ok
19:29:08.0975 5048 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
19:29:08.0975 5048 C:\Windows\System32\FXSRESM.dll - ok
19:29:08.0980 5048 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
19:29:08.0981 5048 C:\Windows\System32\FXSSVC.exe - ok
19:29:08.0985 5048 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
19:29:08.0985 5048 C:\Windows\System32\rasdlg.dll - ok
19:29:08.0990 5048 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
19:29:08.0990 5048 C:\Windows\System32\hgcpl.dll - ok
19:29:08.0995 5048 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
19:29:08.0995 5048 C:\Windows\System32\mprapi.dll - ok
19:29:09.0001 5048 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
19:29:09.0001 5048 C:\Windows\System32\fdPHost.dll - ok
19:29:09.0007 5048 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
19:29:09.0007 5048 C:\Windows\System32\FDResPub.dll - ok
19:29:09.0013 5048 [ 7F9D7E6489EB33E860D952053BA21D6F ] C:\Program Files (x86)\Nokia\Nokia Suite\libeay32.dll
19:29:09.0013 5048 C:\Program Files (x86)\Nokia\Nokia Suite\libeay32.dll - ok
19:29:09.0019 5048 [ 74EA1EC5749E1816158C2445D091CB20 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\carousel.dll
19:29:09.0019 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\carousel.dll - ok
19:29:09.0025 5048 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
19:29:09.0025 5048 C:\Windows\System32\httpapi.dll - ok
19:29:09.0031 5048 [ 410E3137B5886CFB5E56F156F8553E7D ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\contacts.dll
19:29:09.0031 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\contacts.dll - ok
19:29:09.0037 5048 [ A70BB82CA9377CA4190362DB48D9D472 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\BringYourStuff.dll
19:29:09.0038 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\BringYourStuff.dll - ok
19:29:09.0044 5048 [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
19:29:09.0044 5048 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
19:29:09.0050 5048 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
19:29:09.0050 5048 C:\Windows\SysWOW64\rasapi32.dll - ok
19:29:09.0056 5048 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
19:29:09.0056 5048 C:\Windows\SysWOW64\rasman.dll - ok
19:29:09.0062 5048 [ E55ED2C26CB03FBF10FC93F2CA77A9CE ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Photos.dll
19:29:09.0062 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Photos.dll - ok
19:29:09.0068 5048 [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\SysWOW64\rasdlg.dll
19:29:09.0068 5048 C:\Windows\SysWOW64\rasdlg.dll - ok
19:29:09.0074 5048 [ E734E317CC133C53E9C462CE0D8E7A3A ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Messages.dll
19:29:09.0074 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Messages.dll - ok
19:29:09.0078 5048 [ C678408259ED33287AE39F9074033A4F ] C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
19:29:09.0078 5048 C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll - ok
19:29:09.0083 5048 [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\Windows\SysWOW64\mprapi.dll
19:29:09.0084 5048 C:\Windows\SysWOW64\mprapi.dll - ok
19:29:09.0089 5048 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
19:29:09.0089 5048 C:\Windows\SysWOW64\rtutils.dll - ok
19:29:09.0095 5048 [ 15936A348676D246A41A4781E6A34692 ] C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSMUI.dll
19:29:09.0095 5048 C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSMUI.dll - ok
19:29:09.0101 5048 [ 095B5A8588E298F9FFA740DBD66DB045 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Music.dll
19:29:09.0101 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Music.dll - ok
19:29:09.0107 5048 [ 562D81E6F9B8AA647F68EC667E1581E3 ] C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll
19:29:09.0107 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll - ok
19:29:09.0113 5048 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
19:29:09.0113 5048 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
19:29:09.0119 5048 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
19:29:09.0119 5048 C:\Windows\SysWOW64\opengl32.dll - ok
19:29:09.0125 5048 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
19:29:09.0126 5048 C:\Windows\SysWOW64\glu32.dll - ok
19:29:09.0131 5048 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
19:29:09.0131 5048 C:\Windows\SysWOW64\ddraw.dll - ok
19:29:09.0137 5048 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
19:29:09.0137 5048 C:\Windows\SysWOW64\dciman32.dll - ok
19:29:09.0143 5048 [ 8287B1C4D0A9BA31D079DC40AB8E352D ] C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll
19:29:09.0143 5048 C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll - ok
19:29:09.0149 5048 [ 0165E18C8816F92B5B44BA31A5509F37 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Store.dll
19:29:09.0149 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Store.dll - ok
19:29:09.0155 5048 [ 1FFF57590CA62FB1C95DA77586E9D23B ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\maps.dll
19:29:09.0155 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\maps.dll - ok
19:29:09.0161 5048 [ A1A69F3FFDE016E627EA407DAD11860E ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\SoftwareUpdater.dll
19:29:09.0161 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\SoftwareUpdater.dll - ok
19:29:09.0167 5048 [ B092E95867B5BEA815E17F17A2F087D0 ] C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll
19:29:09.0168 5048 C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll - ok
19:29:09.0174 5048 [ 92CEAB4AC27D733DE3291EFFCED6A875 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\ApplicationInstaller.dll
19:29:09.0174 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\ApplicationInstaller.dll - ok
19:29:09.0180 5048 [ 99351ED3BFE300A079F9A17FF2E2D941 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\BackUp.dll
19:29:09.0180 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\BackUp.dll - ok
19:29:09.0186 5048 [ DC0F65997B7FF32B28C217CE2DBC5DB7 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\caresuite.dll
19:29:09.0186 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\caresuite.dll - ok
19:29:09.0192 5048 [ 5902C165242D82AE45AFE9C4D3D5B164 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\ConnectToInternet.dll
19:29:09.0193 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\ConnectToInternet.dll - ok
19:29:09.0199 5048 [ 92B4306F925D8B0286E4F1F84E5437A9 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\customerfeedback.dll
19:29:09.0199 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\customerfeedback.dll - ok
19:29:09.0205 5048 [ 62096CB6A8E2170DCD7EE6D392B4052F ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\FirstTimeUse.dll
19:29:09.0205 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\FirstTimeUse.dll - ok
19:29:09.0212 5048 [ E20FFB3C399FBD8B810B43CD79253FF6 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\NokiaAccount.dll
19:29:09.0213 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\NokiaAccount.dll - ok
19:29:09.0219 5048 [ 3095C1BFD33196E52BD4C3C7C8A7AAE2 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\nps.dll
19:29:09.0219 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\nps.dll - ok
19:29:09.0224 5048 [ BBA94C7862E0870E0657083CE68A6E35 ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\PIM.dll
19:29:09.0225 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\PIM.dll - ok
19:29:09.0231 5048 [ 3F16D9018C38014901554201A570BABC ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Settings.dll
19:29:09.0231 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\Settings.dll - ok
19:29:09.0237 5048 [ 6A504B634D7FC5E8D45F08159961970E ] C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\WhatsNew.dll
19:29:09.0237 5048 C:\Program Files (x86)\Nokia\Nokia Suite\Plugins\WhatsNew.dll - ok
19:29:09.0243 5048 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
19:29:09.0243 5048 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
19:29:09.0249 5048 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\SysWOW64\netshell.dll
19:29:09.0250 5048 C:\Windows\SysWOW64\netshell.dll - ok
19:29:09.0255 5048 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
19:29:09.0255 5048 C:\Windows\SysWOW64\nlaapi.dll - ok
19:29:09.0261 5048 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
19:29:09.0261 5048 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
19:29:09.0267 5048 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
19:29:09.0267 5048 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
19:29:09.0272 5048 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
19:29:09.0273 5048 C:\Windows\SysWOW64\wbemcomn.dll - ok
19:29:09.0278 5048 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
19:29:09.0278 5048 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
19:29:09.0284 5048 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
19:29:09.0284 5048 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
19:29:09.0290 5048 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
19:29:09.0290 5048 C:\Windows\SysWOW64\ntdsapi.dll - ok
19:29:09.0296 5048 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:29:09.0296 5048 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:29:09.0301 5048 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
19:29:09.0303 5048 C:\Windows\System32\wbem\cimwin32.dll - ok
19:29:09.0308 5048 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
19:29:09.0308 5048 C:\Windows\System32\framedynos.dll - ok
19:29:09.0313 5048 [ 8A07221789D46B2EA7DFCA2BC807572A ] C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
19:29:09.0314 5048 C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe - ok
19:29:09.0320 5048 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
19:29:09.0320 5048 C:\Windows\SysWOW64\FirewallAPI.dll - ok
19:29:09.0326 5048 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
19:29:09.0326 5048 C:\Windows\System32\fdWSD.dll - ok
19:29:09.0329 5048 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
19:29:09.0329 5048 C:\Windows\System32\fdSSDP.dll - ok
19:29:09.0335 5048 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
19:29:09.0335 5048 C:\Windows\System32\fdProxy.dll - ok
19:29:09.0341 5048 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
19:29:09.0341 5048 C:\Windows\System32\hnetcfg.dll - ok
19:29:09.0347 5048 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
19:29:09.0347 5048 C:\Windows\System32\ListSvc.dll - ok
19:29:09.0352 5048 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
19:29:09.0353 5048 C:\Windows\System32\P2P.dll - ok
19:29:09.0359 5048 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
19:29:09.0359 5048 C:\Windows\System32\p2pcollab.dll - ok
19:29:09.0365 5048 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
19:29:09.0365 5048 C:\Windows\System32\wlanhlp.dll - ok
19:29:09.0370 5048 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
19:29:09.0370 5048 C:\Windows\System32\wlanapi.dll - ok
19:29:09.0376 5048 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
19:29:09.0376 5048 C:\Windows\System32\dot3api.dll - ok
19:29:09.0382 5048 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
19:29:09.0382 5048 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
19:29:09.0388 5048 [ 65AB1A3B45B933697F74B53116B46523 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
19:29:09.0388 5048 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
19:29:09.0395 5048 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
19:29:09.0395 5048 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
19:29:09.0401 5048 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
19:29:09.0401 5048 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
19:29:09.0407 5048 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
19:29:09.0407 5048 C:\Windows\System32\wsock32.dll - ok
19:29:09.0413 5048 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
19:29:09.0413 5048 C:\Windows\System32\IdListen.dll - ok
19:29:09.0418 5048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
19:29:09.0418 5048 C:\Windows\System32\pnrpsvc.dll - ok
19:29:09.0424 5048 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
19:29:09.0424 5048 C:\Windows\System32\hgprint.dll - ok
19:29:09.0430 5048 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
19:29:09.0430 5048 C:\Windows\System32\WWanAPI.dll - ok
19:29:09.0436 5048 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
19:29:09.0436 5048 C:\Windows\System32\wwapi.dll - ok
19:29:09.0441 5048 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
19:29:09.0441 5048 C:\Windows\System32\QAGENT.DLL - ok
19:29:09.0448 5048 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
19:29:09.0448 5048 C:\Windows\System32\sqmapi.dll - ok
19:29:09.0453 5048 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
19:29:09.0453 5048 C:\Windows\System32\QAGENTRT.DLL - ok
19:29:09.0459 5048 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
19:29:09.0459 5048 C:\Windows\System32\fveui.dll - ok
19:29:09.0465 5048 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
19:29:09.0465 5048 C:\Windows\System32\wmp.dll - ok
19:29:09.0470 5048 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
19:29:09.0471 5048 C:\Windows\System32\p2psvc.dll - ok
19:29:09.0476 5048 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
19:29:09.0476 5048 C:\Windows\System32\P2PGraph.dll - ok
19:29:09.0482 5048 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
19:29:09.0482 5048 C:\Windows\System32\wmdrmdev.dll - ok
19:29:09.0488 5048 [ 89280076EBE2DED8962C626FB81FBFBC ] C:\Program Files (x86)\Nokia\Nokia Suite\MThumbnailService.dll
19:29:09.0488 5048 C:\Program Files (x86)\Nokia\Nokia Suite\MThumbnailService.dll - ok
19:29:09.0494 5048 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
19:29:09.0494 5048 C:\Windows\System32\drmv2clt.dll - ok
19:29:09.0500 5048 [ 270CBAA170C7905CBA1EA6E94788D44B ] C:\Program Files\Internet Explorer\ieproxy.dll
19:29:09.0500 5048 C:\Program Files\Internet Explorer\ieproxy.dll - ok
19:29:09.0506 5048 [ 338A8DF7932B9F11F9E10D9862E63142 ] C:\Program Files (x86)\Nokia\Nokia Suite\MItemPlugins.dll
19:29:09.0506 5048 C:\Program Files (x86)\Nokia\Nokia Suite\MItemPlugins.dll - ok
19:29:09.0512 5048 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
19:29:09.0512 5048 C:\Windows\SysWOW64\WMVCORE.DLL - ok
19:29:09.0518 5048 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
19:29:09.0519 5048 C:\Windows\SysWOW64\WMASF.DLL - ok
19:29:09.0524 5048 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
19:29:09.0524 5048 C:\Windows\SysWOW64\quartz.dll - ok
19:29:09.0530 5048 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
19:29:09.0530 5048 C:\Windows\System32\wmploc.DLL - ok
19:29:09.0536 5048 [ 9698A1EFFF132A45EB7E51BA8D6F5ADA ] C:\Program Files (x86)\Nokia\Nokia Suite\mediaservice\dsengine.dll
19:29:09.0536 5048 C:\Program Files (x86)\Nokia\Nokia Suite\mediaservice\dsengine.dll - ok
19:29:09.0542 5048 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
19:29:09.0542 5048 C:\Windows\SysWOW64\devenum.dll - ok
19:29:09.0547 5048 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
19:29:09.0547 5048 C:\Windows\SysWOW64\msdmo.dll - ok
19:29:09.0554 5048 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
19:29:09.0554 5048 C:\Windows\SysWOW64\MMDevAPI.dll - ok
19:29:09.0559 5048 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
19:29:09.0559 5048 C:\Windows\SysWOW64\wdmaud.drv - ok
19:29:09.0565 5048 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
19:29:09.0565 5048 C:\Windows\SysWOW64\ksuser.dll - ok
19:29:09.0571 5048 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
19:29:09.0571 5048 C:\Windows\SysWOW64\AudioSes.dll - ok
19:29:09.0577 5048 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
19:29:09.0577 5048 C:\Windows\SysWOW64\msacm32.drv - ok
19:29:09.0583 5048 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
19:29:09.0583 5048 C:\Windows\SysWOW64\midimap.dll - ok
19:29:09.0590 5048 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
19:29:09.0590 5048 C:\Windows\SysWOW64\dsound.dll - ok
19:29:09.0596 5048 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
19:29:09.0596 5048 C:\Windows\SysWOW64\powrprof.dll - ok
19:29:09.0602 5048 [ AACD9B8E5E5E369C3518B86486CFC9D4 ] C:\Program Files (x86)\Nokia\Nokia Suite\7z.dll
19:29:09.0602 5048 C:\Program Files (x86)\Nokia\Nokia Suite\7z.dll - ok
19:29:09.0608 5048 [ 1BEB5EFEBEB145EBD2DFB8FE38EE42CD ] C:\Windows\SysWOW64\atiumdag.dll
19:29:09.0608 5048 C:\Windows\SysWOW64\atiumdag.dll - ok
19:29:09.0615 5048 [ F60877E20D02E506D1FF176CC90E3D3E ] C:\Windows\SysWOW64\atiumdva.dll
19:29:09.0615 5048 C:\Windows\SysWOW64\atiumdva.dll - ok
19:29:09.0621 5048 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
19:29:09.0621 5048 C:\Windows\SysWOW64\dxva2.dll - ok
19:29:09.0627 5048 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
19:29:09.0627 5048 C:\Windows\System32\ssdpsrv.dll - ok
19:29:09.0632 5048 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
19:29:09.0632 5048 C:\Windows\System32\drttransport.dll - ok
19:29:09.0638 5048 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
19:29:09.0638 5048 C:\Windows\System32\drt.dll - ok
19:29:09.0644 5048 [ E42A5AEB05CCFF3D4CFD6E7EF08F79CF ] C:\Program Files (x86)\Nokia\Nokia Suite\ssleay32.dll
19:29:09.0644 5048 C:\Program Files (x86)\Nokia\Nokia Suite\ssleay32.dll - ok
19:29:09.0650 5048 [ 1016CB3148632331F0059D7B3B6FBCD8 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
19:29:09.0650 5048 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
19:29:09.0657 5048 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
19:29:09.0657 5048 C:\Windows\System32\upnp.dll - ok
19:29:09.0663 5048 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\SysWOW64\WinSATAPI.dll
19:29:09.0663 5048 C:\Windows\SysWOW64\WinSATAPI.dll - ok
19:29:09.0668 5048 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
19:29:09.0669 5048 C:\Windows\System32\wmpps.dll - ok
19:29:09.0674 5048 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
19:29:09.0674 5048 C:\Windows\SysWOW64\dxgi.dll - ok
19:29:09.0680 5048 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
19:29:09.0680 5048 C:\Windows\System32\wmpmde.dll - ok
19:29:09.0686 5048 [ C3BEA75DF1458F12472C18F121F73929 ] C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
19:29:09.0686 5048 C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe - ok
19:29:09.0692 5048 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
19:29:09.0693 5048 C:\Windows\System32\WinSATAPI.dll - ok
19:29:09.0702 5048 [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\SysWOW64\bthprops.cpl
19:29:09.0702 5048 C:\Windows\SysWOW64\bthprops.cpl - ok
19:29:09.0707 5048 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
19:29:09.0707 5048 C:\Windows\System32\MSMPEG2ENC.DLL - ok
19:29:09.0715 5048 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
19:29:09.0715 5048 C:\Windows\System32\devenum.dll - ok
19:29:09.0721 5048 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
19:29:09.0721 5048 C:\Windows\System32\msdmo.dll - ok
19:29:09.0727 5048 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
19:29:09.0727 5048 C:\Windows\System32\upnphost.dll - ok
19:29:09.0734 5048 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
19:29:09.0734 5048 C:\Windows\System32\wbem\wmiprov.dll - ok
19:29:09.0740 5048 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
19:29:09.0740 5048 C:\Windows\System32\udhisapi.dll - ok
19:29:09.0746 5048 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
19:29:09.0746 5048 C:\Windows\System32\qmgr.dll - ok
19:29:09.0752 5048 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
19:29:09.0752 5048 C:\Windows\System32\bitsperf.dll - ok
19:29:09.0758 5048 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
19:29:09.0758 5048 C:\Windows\System32\bitsigd.dll - ok
19:29:09.0765 5048 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
19:29:09.0765 5048 C:\Windows\System32\qmgrprxy.dll - ok
19:29:09.0771 5048 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
19:29:09.0771 5048 C:\Windows\SysWOW64\qmgrprxy.dll - ok
19:29:09.0777 5048 [ A204A8659DA3C07F992C69CD972A288F ] C:\Windows\System32\bitsprx5.dll
19:29:09.0777 5048 C:\Windows\System32\bitsprx5.dll - ok
19:29:09.0783 5048 [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
19:29:09.0783 5048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
19:29:09.0789 5048 [ 4927DF280CBD35B8C8C7B9FD80638643 ] C:\Windows\System32\bitsprx3.dll
19:29:09.0789 5048 C:\Windows\System32\bitsprx3.dll - ok
19:29:09.0795 5048 [ DF2B70963BF48DC6ADF774894EF74C38 ] C:\Windows\System32\bitsprx2.dll
19:29:09.0795 5048 C:\Windows\System32\bitsprx2.dll - ok
19:29:09.0801 5048 [ 1EE8F90EAD0DB665A372B9F8EC3109C2 ] C:\Windows\SysWOW64\bitsprx5.dll
19:29:09.0801 5048 C:\Windows\SysWOW64\bitsprx5.dll - ok
19:29:09.0806 5048 [ 27169CC385259A89C0A29A317B419FB2 ] C:\Windows\SysWOW64\bitsprx3.dll
19:29:09.0806 5048 C:\Windows\SysWOW64\bitsprx3.dll - ok
19:29:09.0812 5048 [ 878E7E537FB94B133B4640C917E76EA7 ] C:\Windows\SysWOW64\bitsprx2.dll
19:29:09.0812 5048 C:\Windows\SysWOW64\bitsprx2.dll - ok
19:29:09.0818 5048 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
19:29:09.0818 5048 C:\Windows\System32\drprov.dll - ok
19:29:09.0823 5048 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
19:29:09.0824 5048 C:\Windows\System32\ntlanman.dll - ok
19:29:09.0829 5048 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
19:29:09.0829 5048 C:\Windows\System32\davclnt.dll - ok
19:29:09.0836 5048 [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
19:29:09.0836 5048 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
19:29:09.0842 5048 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
19:29:09.0842 5048 C:\Windows\System32\davhlpr.dll - ok
19:29:09.0845 5048 ============================================================
19:29:09.0845 5048 Scan finished
19:29:09.0845 5048 ============================================================
19:29:09.0858 5032 Detected object count: 2
19:29:09.0858 5032 Actual detected object count: 2
19:29:42.0291 5032 OpenVPNService ( UnsignedFile.Multi.Generic ) - skipped by user
19:29:42.0291 5032 OpenVPNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:29:42.0292 5032 PCPitstop Scheduling ( UnsignedFile.Multi.Generic ) - skipped by user
19:29:42.0292 5032 PCPitstop Scheduling ( UnsignedFile.Multi.Generic ) - User select action: Skip








It did not reboot at the end. I rebooted.
  • 0

#24
CompCav

CompCav

    Member 5k

  • Expert
  • 12,448 posts
Step 1.

Scanning with GMER

Before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while the scan is being performed. Do not use your computer for anything else during the scan

Posted Image
Download GMER Rootkit Scanner from here or here.
  • Extract the contents of the zipped file to desktop.
  • Double click GMER.exe. If asked to allow gmer.sys driver to load, please consent .
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.

Posted Image
Click here to see enlarge it

  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...

  • IAT/EAT
  • Drives/Partition other than Systemdrive (typically C:\)
  • Show All (don't miss this one)

  • Then click the Scan button & wait for it to finish.
  • Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop, and attach it in your reply.


Notes:
**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning


Step 2.

Download farbar service scanner to your desktop and then run it.

Posted Image

Tick "All" options.
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.

Please copy and paste the log to your reply


Step 3.

Please post:

GMER log
FSS.txt

  • 0

#25
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Gmer.txt

Nothing was found and the log is blank.



FSS

Farbar Service Scanner Version: 19-09-2012
Ran by Joyce (administrator) on 29-09-2012 at 21:47:02
Running from "C:\Users\Joyce\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
  • 0

Advertisements


#26
CompCav

CompCav

    Member 5k

  • Expert
  • 12,448 posts
Download and Install Combofix

Download ComboFix from one of the following locations:

Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop * IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here. Sometimes ComboFix will say AVG is still running after you disable it. Try to ignore it and make it run, however if it does not then you will need to uninstall AVG and try to run it again. If that still does not work then you will need to run the 64 bit AVG removal tool before running ComboFix.

Double click on ComboFix.exe & follow the prompts.
Accept the disclaimer and allow to update if it asks

Posted Image

Posted Image

When finished, it produces a log for you.
Please include the C:\ComboFix.txt in your next reply.



Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions


Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

After the run you may have internet problems or access to something problems. Simply reboot the computer.
  • 0

#27
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
ComboFix 12-09-29.01 - Joyce 09/29/2012 23:19:01.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3838.2523 [GMT -7:00]
Running from: c:\users\Joyce\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-08-28 to 2012-09-30 )))))))))))))))))))))))))))))))
.
.
2012-09-30 06:23 . 2012-09-30 06:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-28 01:49 . 2012-09-28 01:49 -------- d-----w- C:\_OTL
2012-09-21 05:24 . 2012-09-21 05:24 -------- d-----w- c:\users\Joyce\AppData\Local\Apple Computer
2012-09-21 05:23 . 2012-08-21 20:01 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-09-21 05:23 . 2012-09-21 05:23 -------- d-----w- c:\program files\iPod
2012-09-21 05:23 . 2012-09-21 05:23 -------- d-----w- c:\program files\iTunes
2012-09-21 05:23 . 2012-09-21 05:23 -------- d-----w- c:\program files (x86)\iTunes
2012-09-21 05:21 . 2012-09-21 05:21 -------- d-----w- c:\program files\Common Files\Apple
2012-09-21 05:21 . 2012-09-21 05:21 -------- d-----w- c:\program files\Bonjour
2012-09-21 05:21 . 2012-09-21 05:21 -------- d-----w- c:\program files (x86)\Bonjour
2012-09-17 16:24 . 2012-09-17 16:24 73696 ----a-w- c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll
2012-09-12 20:44 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 20:44 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 20:44 . 2012-08-02 17:58 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-12 20:44 . 2012-08-02 16:57 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-09-12 20:44 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 20:44 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 20:44 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-06 16:17 . 2012-09-06 16:17 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2012-09-06 16:16 . 2012-06-27 22:18 26112 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2012-09-06 16:16 . 2012-09-06 16:16 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2012-08-31 22:53 . 2012-08-31 22:53 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-08-31 15:25 . 2012-09-21 05:24 -------- d-----w- c:\users\Joyce\AppData\Roaming\Apple Computer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-21 01:24 . 2012-08-18 02:36 696240 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-09-21 01:24 . 2012-08-01 23:43 73136 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-17 16:05 . 2010-09-07 22:26 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-09-08 00:04 . 2012-02-16 23:32 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-31 22:53 . 2010-09-19 04:16 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-08-21 20:01 . 2012-08-21 20:01 125872 ----a-w- c:\windows\system32\GEARAspi64.dll
2012-08-21 20:01 . 2012-08-21 20:01 106928 ----a-w- c:\windows\SysWow64\GEARAspi.dll
2012-07-18 18:15 . 2012-08-15 15:32 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-07-04 22:16 . 2012-08-15 15:32 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-07-04 22:13 . 2012-08-15 15:32 59392 ----a-w- c:\windows\system32\browcli.dll
2012-07-04 22:13 . 2012-08-15 15:32 136704 ----a-w- c:\windows\system32\browser.dll
2012-07-04 21:14 . 2012-08-15 15:32 41984 ----a-w- c:\windows\SysWow64\browcli.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG10\avgtray.exe" [2012-08-01 2345592]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"Family Tree Builder Update"="c:\program files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe" [2011-12-21 229376]
"SSBkgdUpdate"="c:\program files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
"OpwareSE4"="c:\program files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]
"BrStsWnd"="c:\program files (x86)\Brownie\BrstsW64.exe" [2009-08-19 3695928]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-28 59280]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-10 421776]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"DisableStartupSound"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoAutorun"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-22 136176]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-03 160944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-21 250288]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-22 136176]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-17 114144]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2012-01-10 12800]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2012-01-10 171008]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-07-31 222208]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-08-17 51512]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2009-08-04 137560]
R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [2009-08-04 826224]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-09 1255736]
R4 PCPitstop Scheduling;PCPitstop Scheduling;c:\program files (x86)\PCPitstop\PCPitstopScheduleService.exe [2009-06-26 85504]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 26704]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2011-03-16 37456]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys [2009-07-24 482384]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2011-01-07 304720]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-03-01 41552]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2011-04-04 377936]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-07-30 203264]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2012-01-31 7391072]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520]
S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2009-08-11 248688]
S2 ConfigFree Gadget Service;ConfigFree Gadget Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe [2009-07-15 42368]
S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-11 46448]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-08 399432]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-08 676936]
S2 RSELSVC;TOSHIBA Modem region select service;c:\program files\TOSHIBA\rselect\RSelSvc.exe [2009-07-07 65904]
S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe [2009-08-27 251760]
S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-20 14472]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-05-27 118864]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 29264]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-08 25928]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys [2009-06-23 35008]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-05-23 215040]
S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [2010-04-26 1103904]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2012-09-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-18 01:24]
.
2012-09-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-22 10:25]
.
2012-09-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-22 10:25]
.
2012-09-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3380222333-2128879009-353504607-1000Core.job
- c:\users\Joyce\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-31 01:20]
.
2012-09-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3380222333-2128879009-353504607-1000UA.job
- c:\users\Joyce\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-31 01:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-15 644696]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-04 1840720]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.yahoo.com/
mDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~2\MIF5BA~1\Office12\EXCEL.EXE/3000
Trusted Zone: yahoo.com\get.games
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{30BB7FD4-CB96-44B2-B4C2-B31FACB14833}: NameServer = 208.67.222.123,208.67.220.123
TCP: Interfaces\{CAB59AA8-45E8-4C13-B8EF-8B0B8B292AF5}: NameServer = 208.67.222.123,208.67.220.123
TCP: Interfaces\{CAB59AA8-45E8-4C13-B8EF-8B0B8B292AF5}\2375942554237333: NameServer = 208.67.222.123,208.67.220.123
TCP: Interfaces\{CAB59AA8-45E8-4C13-B8EF-8B0B8B292AF5}\4434353544: NameServer = 208.67.222.123,208.67.220.123
TCP: Interfaces\{CAB59AA8-45E8-4C13-B8EF-8B0B8B292AF5}\C696E6B6379737: NameServer = 208.67.222.123,208.67.220.123
TCP: Interfaces\{E2AE2B25-3A7A-4864-9EE3-398CB68DFF09}: NameServer = 208.67.222.123,208.67.220.123
FF - ProfilePath - c:\users\Joyce\AppData\Roaming\Mozilla\Firefox\Profiles\a4ccebqt.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://us.yahoo.com/
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-12706958.sys
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}"=hex:51,66,7a,6c,4c,1d,38,12,7c,f0,b1,
38,5c,21,3d,0e,d9,78,0d,25,e1,c9,8c,d4
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}"=hex:51,66,7a,6c,4c,1d,38,12,07,5b,93,
aa,6e,60,ba,0b,f0,6d,b2,b7,80,44,00,83
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:55,b6,b5,30,fc,79,cc,01
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1d,b1,fa,27,c8,2c,10,42,8e,93,5a,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1d,b1,fa,27,c8,2c,10,42,8e,93,5a,\
.
[HKEY_USERS\S-1-5-21-3380222333-2128879009-353504607-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-3380222333-2128879009-353504607-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
.
**************************************************************************
.
Completion time: 2012-09-29 23:31:35 - machine was rebooted
ComboFix-quarantined-files.txt 2012-09-30 06:31
.
Pre-Run: 201,670,340,608 bytes free
Post-Run: 201,291,902,976 bytes free
.
- - End Of File - - F709B5A5FF71085AF19C3F6DFFA20C80



I can search my sites!!! Yea!
  • 0

#28
CompCav

CompCav

    Member 5k

  • Expert
  • 12,448 posts

I can search my sites!!! Yea!

:thumbsup:



Step 1.

  • Start MalwareBytes', click on the update tab and update.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.


Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.



Step 2.

Run ESET Online Scan

Note: You can use either Internet Explorer or Mozilla FireFox for this scan.

Vista / 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

Please go here then click on: Posted Image

If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
All of the following instructions work with either Internet Explorer or Mozilla FireFox.

  • Select the option YES, I accept the Terms of Use then click on: Posted Image
  • When prompted allow Add-On/Active X to install.
  • Make sure that the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: Posted Image
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close, make sure you copy the logfile first!
  • Now click on: Posted Image
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.


Step 3.

Security Check
Download Security Check by screen317 from here or here.

Save it to your Desktop.
Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.


Step 4.

Please post:


mbam log
eset log
security check log


Please give me an update on how your computer is doing!
  • 0

#29
Calla

Calla

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.30.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Joyce :: JOYCE-LAPTOP [administrator]

9/30/2012 6:34:09 PM
mbam-log-2012-09-30 (18-34-09).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 205422
Time elapsed: 3 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


The Eset.......

I messed this up. It ran for 2:17 and then my computer went to sleep. I debated and debated what to do. Woke up computer. The sleep/hibernation is set for 15 minutes so I waited and at 15 minutes, it went to sleep again. I wrote down everything I could read on the screen and stopped the scan because I thought it was stalled. There was no option to save the log that I could find. This is what I wrote down: the file it was on was c:\windows\softwaredistribution\download\dc27c38d...\windows6.1-kb976932-x64cab

under threats, I could read:
win32/open candy app
variant of win 32/elex app
variant of win 32/toolbar.widgi app
multiple threats
variant of win 32/elex app
multiple threats


I restarted eset and it ran fine this time. When it got to the file above, it did take a long time, but computer did not hibernate this time. It finished correctly.

I am sorry if I messed this up.

eset log
[email protected] as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=b10e8b7e6fe2f647b5768a555d86e485
# end=stopped
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-10-01 04:09:37
# local_time=2012-09-30 09:09:37 (-0800, Pacific Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1032 16777213 100 88 0 91269640 0 0
# compatibility_mode=5893 16776574 100 94 41055986 100599346 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=132281
# found=14
# cleaned=14
# scan_time=8702
C:\Users\Joyce\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\101119081850399.rsc

multiple threats (deleted - quarantined) 00000000000000000000000000000000

C
C:\Users\Joyce\Downloads\Americas_Next_Top_Model_S18E09_PDTV_x264-BAJSKORV[ettv].exe

Win32/Adware.1ClickDownload.C application (cleaned by deleting - quarantined)

00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\Americas_Next_Top_Model_S18E09_PDTV_x264_BAJSKORV_ettv_.exe

Win32/Adware.1ClickDownload.C application (cleaned by deleting - quarantined)

00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\asc-setup (1).exe a variant of Win32/ELEX application

(cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\asc-setup(1).exe a variant of Win32/Toolbar.Widgi

application (cleaned by deleting - quarantined) 00000000000000000000000000000000

C
C:\Users\Joyce\Downloads\asc-setup(2).exe a variant of Win32/Toolbar.Widgi

application (cleaned by deleting - quarantined) 00000000000000000000000000000000

C
C:\Users\Joyce\Downloads\asc-setup(3).exe a variant of Win32/Toolbar.Widgi

application (cleaned by deleting - quarantined) 00000000000000000000000000000000

C
C:\Users\Joyce\Downloads\asc-setup.exe a variant of Win32/Toolbar.Widgi application

(cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\asc5-setup-cnet.exe multiple threats (cleaned by deleting -

quarantined) 00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\defragsetup.exe a variant of Win32/ELEX application

(cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\imf-setup(1).exe multiple threats (cleaned by deleting -

quarantined) 00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\imf-setup.exe a variant of Win32/Toolbar.Widgi application

(cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\sd-setup.exe a variant of Win32/ELEX application (cleaned by

deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\Joyce\Downloads\winamp5581_full_emusic-7plus_en-us.exe Win32/OpenCandy

application (cleaned by deleting - quarantined) 00000000000000000000000000000000

C
[email protected] as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=b10e8b7e6fe2f647b5768a555d86e485
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-10-01 07:05:52
# local_time=2012-10-01 12:05:52 (-0800, Pacific Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1032 16777213 100 88 0 91278491 0 0
# compatibility_mode=5893 16776574 100 94 41064837 100608197 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=213538
# found=0
# cleaned=0
# scan_time=10426
  • 0

#30
CompCav

CompCav

    Member 5k

  • Expert
  • 12,448 posts
Very good. Now please run Security Check for me and post that log
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP