Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Really slow computer... [Solved]

Started by Bassman02 , Nov 14 2012 06:33 PM

  • This topic is locked This topic is locked

#16
Bassman02
Posted 16 November 2012 - 06:04 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
OTL logfile created on: 11/16/2012 6:02:37 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Computer\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.87 Gb Available Physical Memory | 68.10% Memory free
5.49 Gb Paging File | 4.47 Gb Available in Paging File | 81.40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 254.14 Gb Total Space | 222.28 Gb Free Space | 87.46% Space Free | Partition Type: NTFS
Drive D: | 29.00 Gb Total Space | 28.07 Gb Free Space | 96.80% Space Free | Partition Type: NTFS

Computer Name: COMPUTER-PC | User Name: Computer | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/11/15 23:51:20 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Computer\Desktop\OTL.exe
PRC - [2012/11/15 18:01:18 | 002,254,768 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2012/02/10 11:28:06 | 000,193,816 | ---- | M] (Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
PRC - [2011/03/17 22:37:10 | 003,122,528 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
PRC - [2010/03/02 14:37:40 | 000,171,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
PRC - [2009/12/18 18:52:48 | 000,100,256 | ---- | M] () -- C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe


========== Modules (No Company Name) ==========

MOD - [2011/03/17 22:37:10 | 000,492,896 | ---- | M] () -- C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
MOD - [2009/12/18 18:52:48 | 000,100,256 | ---- | M] () -- C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
MOD - [2009/12/18 18:51:18 | 000,133,024 | ---- | M] () -- C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll32.dll
MOD - [2009/12/18 18:50:38 | 000,161,696 | ---- | M] () -- C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect32.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/09/12 21:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/09/12 21:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2010/09/22 10:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/07/19 10:19:32 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/09/22 10:16:32 | 000,579,400 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe -- (Lenovo ReadyComm ConnSvc)
SRV:64bit: - [2009/08/14 06:22:48 | 000,509,192 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\AppSvc.exe -- (Lenovo ReadyComm AppSvc)
SRV:64bit: - [2009/07/13 17:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/11/15 18:01:16 | 002,461,104 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012/02/10 11:28:06 | 000,240,408 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.EXE -- (BBUpdate)
SRV - [2012/02/10 11:28:06 | 000,193,816 | ---- | M] (Microsoft Corporation.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE -- (BBSvc)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/15 19:12:42 | 000,276,296 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\PS_MDP.dll -- (PS_MDP)
SRV - [2009/07/14 06:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe -- (IGRS)
SRV - [2009/07/14 06:27:20 | 000,103,688 | ---- | M] (Lenovo Group Limited) [Auto | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\router.dll -- (ReadyComm.DirectRouter)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/08/30 22:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/10 22:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 22:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 05:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 03:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/08/07 00:07:16 | 001,326,928 | ---- | M] (Bison Electronics. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BisonC07.sys -- (Cam5607)
DRV:64bit: - [2010/07/19 10:45:56 | 007,448,576 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/07/19 09:39:40 | 000,268,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/07/15 04:47:42 | 000,116,240 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2010/06/17 01:15:36 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie)
DRV:64bit: - [2010/03/11 19:23:16 | 000,242,720 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010/02/22 02:03:44 | 000,075,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2010/02/02 07:52:02 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2010/01/15 10:08:34 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2010/01/07 04:46:20 | 000,302,128 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/10/18 16:40:50 | 000,028,176 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2009/07/21 06:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:64bit: - [2009/07/16 03:55:34 | 000,011,280 | ---- | M] (Lenovo) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WDMirror.sys -- (wdmirror)
DRV:64bit: - [2009/07/15 19:38:20 | 000,079,376 | ---- | M] (Lenovo) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WDBridge.sys -- (Bridge0)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 12:37:05 | 006,108,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/06/10 12:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 12:34:36 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/03/18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008/08/06 04:32:16 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com/ [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - SOFTWARE\Classes\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}\InprocServer32 File not found
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@bestbuy.com/npBestBuyPcAppDetector,version=1.0: C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll (Best Buy)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@bestbuy.com/npBestBuyPcAppDetector,version=1.0: C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll (Best Buy)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Computer\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)



========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Bing Bar (Enabled) = C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Best Buy pc app Detector (Enabled) = C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
CHR - Extension: YouTube = C:\Users\Computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Adblock Plus = C:\Users\Computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.3.1_0\
CHR - Extension: Google Search = C:\Users\Computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Bloxorz = C:\Users\Computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfkaiemjhgblkkcanmhciiopcehlhnhi\2.0.0_0\
CHR - Extension: Site destroyer = C:\Users\Computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jboojccdkandbhenafkeflkggnokiang\1.0.1_0\
CHR - Extension: Gmail = C:\Users\Computer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2012/11/16 13:19:57 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll File not found
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [OnekeyStudio] C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe (Lenovo)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
O4 - HKLM..\Run: [YouCam Mirror Tray icon] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (CyberLink Corp.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{726E5C64-492F-4F2F-A957-45FC4631D3B2}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

< End of report >
  • 0

Advertisements

#17
emeraldnzl
Posted 16 November 2012 - 06:18 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
What we know with this is that it doesn't happen in Safe Mode.

That says that it relates to programs that are started in normal mode but not there in Safe Mode. Often this can be security programs that run in normal mode but not in Safe Mode... at least mostly. We have checked for malware and unless it is hidden very well that doesn't seem to be the problem.

SOoo, we now are left with a process of elimination to find what might be the cause.

Click Start > Run

enter msconfig

choose the Startup tab

uncheck unwanted startup programs and click Apply > OK

Restart you computer

You can turn them back on by reversing the process.

Do that one by one until you find the culprit. Another way to do it is to uncheck everything and then reinstate them one by one.

One other thing you might try before you do that is to uninstall Microsoft Security Essentials and see if there is any difference. You can reinstall it again afterwards.
  • 0

#18
Bassman02
Posted 17 November 2012 - 12:31 AM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
I disabled the start up options that didn't seem important and it is better but the longer it runs the slower it gets until it freezes.
  • 0

#19
emeraldnzl
Posted 17 November 2012 - 01:38 AM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hmm... Your machine isn't overheating is it?

http://itconflict.co...ating-computer/

http://mobileoffice....overheating.htm

Make sure all vents are clear and it is placed in an area with plenty of ventilation.

Check it out and tell me what you think.
  • 0

#20
Bassman02
Posted 17 November 2012 - 04:39 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
No over heating.

tried uninstalling MSE and no difference but did get 2 different error messages about memory.
  • 0

#21
emeraldnzl
Posted 17 November 2012 - 06:15 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts

No over heating.

tried uninstalling MSE and no difference but did get 2 different error messages about memory.


For the memory you might like to check out Windows 7 - Memory Diagnostics Tool

Otherwise:

Is it still okay when you run in Safe Mode? In other words are we still saying it is something that starts up in normal mode?

Let's run a couple more malware tools just in case:

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    Posted Image
  • Put a checkmark beside loaded modules.

    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.

    Posted Image
  • Click the Start Scan button.

    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    Posted Image

    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
After that

Please download Farbar Service Scanner and run.

  • Make sure the following options are checked:


  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Other Services

[*]Press Scan
[*]A log (FSS.txt) will be created in the same directory the tool is run.
[*]Copy and paste the log back here.
[/list]When you return please post
  • TDSSKiller log
  • FSS. txt
  • and tell me whether it still runs fine in Safe Mode
  • 0

#22
Bassman02
Posted 17 November 2012 - 06:26 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
As I have been using it if I use Internet exploer it is a lot faster to the point where it is useable, with Chrome it starts to slow the more I use it.
  • 0

#23
emeraldnzl
Posted 17 November 2012 - 06:31 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Ah ha looks like it is narrowing down to browsers then.

Firstly though let's see what TDSSKiller and FSS turn up.
  • 0

#24
Bassman02
Posted 17 November 2012 - 06:52 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
18:44:21.0374 2440 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:44:22.0232 2440 ============================================================
18:44:22.0232 2440 Current date / time: 2012/11/17 18:44:22.0232
18:44:22.0232 2440 SystemInfo:
18:44:22.0232 2440
18:44:22.0232 2440 OS Version: 6.1.7601 ServicePack: 1.0
18:44:22.0232 2440 Product type: Workstation
18:44:22.0232 2440 ComputerName: COMPUTER-PC
18:44:22.0232 2440 UserName: Computer
18:44:22.0232 2440 Windows directory: C:\windows
18:44:22.0232 2440 System windows directory: C:\windows
18:44:22.0232 2440 Running under WOW64
18:44:22.0232 2440 Processor architecture: Intel x64
18:44:22.0232 2440 Number of processors: 2
18:44:22.0232 2440 Page size: 0x1000
18:44:22.0232 2440 Boot type: Normal boot
18:44:22.0232 2440 ============================================================
18:44:34.0071 2440 BG loaded
18:44:34.0875 2440 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:44:34.0885 2440 ============================================================
18:44:34.0885 2440 \Device\Harddisk0\DR0:
18:44:34.0885 2440 MBR partitions:
18:44:34.0885 2440 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
18:44:34.0885 2440 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x1FC49800
18:44:35.0305 2440 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FCAE800, BlocksNum 0x39FD800
18:44:35.0305 2440 ============================================================
18:44:35.0495 2440 C: <-> \Device\Harddisk0\DR0\Partition2
18:44:35.0565 2440 D: <-> \Device\Harddisk0\DR0\Partition3
18:44:35.0565 2440 ============================================================
18:44:35.0565 2440 Initialize success
18:44:35.0565 2440 ============================================================
18:46:04.0796 3672 ============================================================
18:46:04.0796 3672 Scan started
18:46:04.0796 3672 Mode: Manual; SigCheck; TDLFS;
18:46:04.0796 3672 ============================================================
18:46:05.0919 3672 ================ Scan system memory ========================
18:46:05.0919 3672 System memory - ok
18:46:05.0919 3672 ================ Scan services =============================
18:46:06.0356 3672 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
18:46:06.0496 3672 1394ohci - ok
18:46:06.0543 3672 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
18:46:06.0558 3672 ACPI - ok
18:46:06.0590 3672 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
18:46:06.0714 3672 AcpiPmi - ok
18:46:06.0761 3672 [ DC201246A14CB3B274DF59FAF539AB07 ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys
18:46:06.0808 3672 ACPIVPC - ok
18:46:07.0089 3672 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:46:07.0120 3672 AdobeFlashPlayerUpdateSvc - ok
18:46:07.0182 3672 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
18:46:07.0198 3672 adp94xx - ok
18:46:07.0229 3672 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
18:46:07.0245 3672 adpahci - ok
18:46:07.0260 3672 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
18:46:07.0292 3672 adpu320 - ok
18:46:07.0307 3672 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
18:46:07.0448 3672 AeLookupSvc - ok
18:46:07.0494 3672 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
18:46:07.0541 3672 AFD - ok
18:46:07.0588 3672 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
18:46:07.0619 3672 agp440 - ok
18:46:07.0650 3672 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
18:46:07.0728 3672 ALG - ok
18:46:07.0760 3672 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
18:46:07.0775 3672 aliide - ok
18:46:07.0822 3672 [ 5D39A8A3C5F1AF5A8C91CE0658314664 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
18:46:07.0884 3672 AMD External Events Utility - ok
18:46:07.0916 3672 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
18:46:07.0947 3672 amdide - ok
18:46:07.0994 3672 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
18:46:08.0040 3672 AmdK8 - ok
18:46:08.0243 3672 [ 59A119E7AE39A95755BB1C0E889C7FAD ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
18:46:08.0337 3672 amdkmdag - ok
18:46:08.0352 3672 [ DC746FE518C2E63DB4C8954772FA4F71 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
18:46:08.0384 3672 amdkmdap - ok
18:46:08.0415 3672 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
18:46:08.0446 3672 AmdPPM - ok
18:46:08.0477 3672 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
18:46:08.0493 3672 amdsata - ok
18:46:08.0524 3672 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
18:46:08.0555 3672 amdsbs - ok
18:46:08.0555 3672 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
18:46:08.0571 3672 amdxata - ok
18:46:08.0618 3672 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
18:46:08.0805 3672 AppID - ok
18:46:08.0836 3672 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
18:46:08.0930 3672 AppIDSvc - ok
18:46:08.0961 3672 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
18:46:08.0992 3672 Appinfo - ok
18:46:09.0039 3672 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
18:46:09.0070 3672 arc - ok
18:46:09.0086 3672 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
18:46:09.0101 3672 arcsas - ok
18:46:09.0132 3672 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
18:46:09.0195 3672 AsyncMac - ok
18:46:09.0226 3672 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
18:46:09.0242 3672 atapi - ok
18:46:09.0288 3672 [ CBE5F8B3E54198F5DFE403A55A95DE08 ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys
18:46:09.0320 3672 AtiHDAudioService - ok
18:46:09.0335 3672 [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie64.sys
18:46:09.0351 3672 AtiPcie - ok
18:46:09.0413 3672 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
18:46:09.0522 3672 AudioEndpointBuilder - ok
18:46:09.0554 3672 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
18:46:09.0585 3672 AudioSrv - ok
18:46:09.0632 3672 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
18:46:09.0741 3672 AxInstSV - ok
18:46:09.0772 3672 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
18:46:09.0834 3672 b06bdrv - ok
18:46:09.0850 3672 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
18:46:09.0897 3672 b57nd60a - ok
18:46:10.0037 3672 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
18:46:10.0068 3672 BBSvc - ok
18:46:10.0146 3672 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
18:46:10.0178 3672 BBUpdate - ok
18:46:10.0271 3672 [ 5B5C36B2EC500462A715DB6BCBAF5DA7 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
18:46:10.0318 3672 BCM43XX - ok
18:46:10.0349 3672 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
18:46:10.0396 3672 BDESVC - ok
18:46:10.0443 3672 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
18:46:10.0536 3672 Beep - ok
18:46:10.0614 3672 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
18:46:10.0661 3672 BFE - ok
18:46:10.0677 3672 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
18:46:10.0739 3672 BITS - ok
18:46:10.0755 3672 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
18:46:10.0770 3672 blbdrive - ok
18:46:10.0817 3672 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
18:46:10.0864 3672 bowser - ok
18:46:10.0880 3672 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
18:46:11.0004 3672 BrFiltLo - ok
18:46:11.0020 3672 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
18:46:11.0036 3672 BrFiltUp - ok
18:46:11.0082 3672 [ 34F786535F9245E4028C57B28248C9D8 ] Bridge0 C:\windows\system32\drivers\WDBridge.sys
18:46:11.0098 3672 Bridge0 - ok
18:46:11.0145 3672 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
18:46:11.0207 3672 BridgeMP - ok
18:46:11.0238 3672 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
18:46:11.0285 3672 Browser - ok
18:46:11.0301 3672 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
18:46:11.0348 3672 Brserid - ok
18:46:11.0363 3672 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
18:46:11.0394 3672 BrSerWdm - ok
18:46:11.0410 3672 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
18:46:11.0441 3672 BrUsbMdm - ok
18:46:11.0441 3672 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
18:46:11.0472 3672 BrUsbSer - ok
18:46:11.0519 3672 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
18:46:11.0582 3672 BthEnum - ok
18:46:11.0613 3672 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
18:46:11.0660 3672 BTHMODEM - ok
18:46:11.0691 3672 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
18:46:11.0706 3672 BthPan - ok
18:46:11.0769 3672 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
18:46:11.0816 3672 BTHPORT - ok
18:46:11.0847 3672 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
18:46:11.0894 3672 bthserv - ok
18:46:11.0925 3672 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
18:46:11.0956 3672 BTHUSB - ok
18:46:12.0065 3672 [ 27C684D57A49DAB19BCE9D69529E8BE7 ] Cam5607 C:\windows\system32\Drivers\BisonC07.sys
18:46:12.0112 3672 Cam5607 - ok
18:46:12.0112 3672 catchme - ok
18:46:12.0128 3672 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
18:46:12.0174 3672 cdfs - ok
18:46:12.0237 3672 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\drivers\cdrom.sys
18:46:12.0268 3672 cdrom - ok
18:46:12.0315 3672 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
18:46:12.0377 3672 CertPropSvc - ok
18:46:12.0408 3672 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
18:46:12.0455 3672 circlass - ok
18:46:12.0502 3672 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
18:46:12.0518 3672 CLFS - ok
18:46:12.0642 3672 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:46:12.0674 3672 clr_optimization_v2.0.50727_32 - ok
18:46:12.0798 3672 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:46:12.0830 3672 clr_optimization_v2.0.50727_64 - ok
18:46:12.0986 3672 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:46:13.0048 3672 clr_optimization_v4.0.30319_32 - ok
18:46:13.0220 3672 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:46:13.0235 3672 clr_optimization_v4.0.30319_64 - ok
18:46:13.0298 3672 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
18:46:13.0329 3672 CmBatt - ok
18:46:13.0344 3672 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
18:46:13.0376 3672 cmdide - ok
18:46:13.0407 3672 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
18:46:13.0438 3672 CNG - ok
18:46:13.0485 3672 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
18:46:13.0500 3672 Compbatt - ok
18:46:13.0547 3672 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
18:46:13.0594 3672 CompositeBus - ok
18:46:13.0610 3672 COMSysApp - ok
18:46:13.0625 3672 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
18:46:13.0656 3672 crcdisk - ok
18:46:13.0688 3672 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
18:46:13.0719 3672 CryptSvc - ok
18:46:13.0750 3672 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
18:46:13.0812 3672 DcomLaunch - ok
18:46:13.0844 3672 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
18:46:13.0890 3672 defragsvc - ok
18:46:13.0922 3672 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
18:46:13.0953 3672 DfsC - ok
18:46:14.0000 3672 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
18:46:14.0031 3672 Dhcp - ok
18:46:14.0062 3672 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
18:46:14.0140 3672 discache - ok
18:46:14.0156 3672 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
18:46:14.0171 3672 Disk - ok
18:46:14.0202 3672 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
18:46:14.0249 3672 Dnscache - ok
18:46:14.0296 3672 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
18:46:14.0358 3672 dot3svc - ok
18:46:14.0390 3672 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
18:46:14.0468 3672 DPS - ok
18:46:14.0514 3672 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
18:46:14.0546 3672 drmkaud - ok
18:46:14.0608 3672 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
18:46:14.0639 3672 DXGKrnl - ok
18:46:14.0670 3672 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
18:46:14.0733 3672 EapHost - ok
18:46:14.0858 3672 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
18:46:14.0982 3672 ebdrv - ok
18:46:15.0014 3672 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
18:46:15.0029 3672 EFS - ok
18:46:15.0138 3672 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
18:46:15.0232 3672 ehRecvr - ok
18:46:15.0263 3672 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
18:46:15.0310 3672 ehSched - ok
18:46:15.0372 3672 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
18:46:15.0419 3672 elxstor - ok
18:46:15.0435 3672 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
18:46:15.0450 3672 ErrDev - ok
18:46:15.0497 3672 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
18:46:15.0560 3672 EventSystem - ok
18:46:15.0591 3672 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
18:46:15.0669 3672 exfat - ok
18:46:15.0684 3672 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
18:46:15.0716 3672 fastfat - ok
18:46:15.0794 3672 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
18:46:15.0825 3672 Fax - ok
18:46:15.0840 3672 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
18:46:15.0872 3672 fdc - ok
18:46:15.0918 3672 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
18:46:15.0965 3672 fdPHost - ok
18:46:15.0965 3672 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
18:46:16.0012 3672 FDResPub - ok
18:46:16.0028 3672 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
18:46:16.0028 3672 FileInfo - ok
18:46:16.0043 3672 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
18:46:16.0090 3672 Filetrace - ok
18:46:16.0106 3672 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
18:46:16.0137 3672 flpydisk - ok
18:46:16.0168 3672 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
18:46:16.0184 3672 FltMgr - ok
18:46:16.0246 3672 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\windows\system32\FntCache.dll
18:46:16.0293 3672 FontCache - ok
18:46:16.0340 3672 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:46:16.0371 3672 FontCache3.0.0.0 - ok
18:46:16.0402 3672 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
18:46:16.0418 3672 FsDepends - ok
18:46:16.0449 3672 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
18:46:16.0464 3672 Fs_Rec - ok
18:46:16.0496 3672 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
18:46:16.0511 3672 fvevol - ok
18:46:16.0542 3672 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
18:46:16.0558 3672 gagp30kx - ok
18:46:16.0605 3672 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
18:46:16.0652 3672 gpsvc - ok
18:46:16.0714 3672 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:46:16.0730 3672 gupdate - ok
18:46:16.0761 3672 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:46:16.0776 3672 gupdatem - ok
18:46:16.0808 3672 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\windows\system32\DRIVERS\hamachi.sys
18:46:16.0808 3672 hamachi - ok
18:46:16.0964 3672 [ 848BB54F18819EC6D7B255B38697E239 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
18:46:16.0995 3672 Hamachi2Svc - ok
18:46:17.0026 3672 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
18:46:17.0073 3672 hcw85cir - ok
18:46:17.0120 3672 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:46:17.0166 3672 HdAudAddService - ok
18:46:17.0198 3672 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
18:46:17.0244 3672 HDAudBus - ok
18:46:17.0276 3672 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
18:46:17.0322 3672 HidBatt - ok
18:46:17.0354 3672 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
18:46:17.0369 3672 HidBth - ok
18:46:17.0385 3672 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
18:46:17.0400 3672 HidIr - ok
18:46:17.0432 3672 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
18:46:17.0478 3672 hidserv - ok
18:46:17.0510 3672 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
18:46:17.0541 3672 HidUsb - ok
18:46:17.0572 3672 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
18:46:17.0634 3672 hkmsvc - ok
18:46:17.0666 3672 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:46:17.0728 3672 HomeGroupListener - ok
18:46:17.0759 3672 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:46:17.0790 3672 HomeGroupProvider - ok
18:46:17.0837 3672 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
18:46:17.0853 3672 HpSAMD - ok
18:46:17.0900 3672 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
18:46:17.0978 3672 HTTP - ok
18:46:17.0993 3672 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
18:46:17.0993 3672 hwpolicy - ok
18:46:18.0040 3672 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
18:46:18.0071 3672 i8042prt - ok
18:46:18.0102 3672 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
18:46:18.0134 3672 iaStorV - ok
18:46:18.0196 3672 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:46:18.0274 3672 idsvc - ok
18:46:18.0430 3672 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
18:46:18.0633 3672 igfx - ok
18:46:18.0695 3672 [ D951D20153E51928F9DB2227D6FF5C7A ] IGRS C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
18:46:18.0726 3672 IGRS - ok
18:46:18.0758 3672 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
18:46:18.0773 3672 iirsp - ok
18:46:18.0836 3672 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
18:46:18.0898 3672 IKEEXT - ok
18:46:18.0992 3672 [ 72190080AB7D7D876F4210A048A0A892 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
18:46:19.0054 3672 IntcAzAudAddService - ok
18:46:19.0085 3672 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
18:46:19.0101 3672 intelide - ok
18:46:19.0132 3672 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
18:46:19.0163 3672 intelppm - ok
18:46:19.0194 3672 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
18:46:19.0257 3672 IPBusEnum - ok
18:46:19.0272 3672 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
18:46:19.0304 3672 IpFilterDriver - ok
18:46:19.0350 3672 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
18:46:19.0397 3672 iphlpsvc - ok
18:46:19.0428 3672 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
18:46:19.0444 3672 IPMIDRV - ok
18:46:19.0475 3672 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
18:46:19.0553 3672 IPNAT - ok
18:46:19.0569 3672 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
18:46:19.0584 3672 IRENUM - ok
18:46:19.0600 3672 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
18:46:19.0616 3672 isapnp - ok
18:46:19.0647 3672 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
18:46:19.0694 3672 iScsiPrt - ok
18:46:19.0709 3672 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
18:46:19.0740 3672 k57nd60a - ok
18:46:19.0756 3672 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
18:46:19.0772 3672 kbdclass - ok
18:46:19.0803 3672 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
18:46:19.0834 3672 kbdhid - ok
18:46:19.0850 3672 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
18:46:19.0850 3672 KeyIso - ok
18:46:19.0881 3672 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
18:46:19.0896 3672 KSecDD - ok
18:46:19.0912 3672 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
18:46:19.0928 3672 KSecPkg - ok
18:46:19.0943 3672 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
18:46:19.0990 3672 ksthunk - ok
18:46:20.0006 3672 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
18:46:20.0052 3672 KtmRm - ok
18:46:20.0084 3672 [ 55480B9C63F3F91A8EBBADCBF28FE581 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
18:46:20.0084 3672 L1C - ok
18:46:20.0146 3672 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
18:46:20.0224 3672 LanmanServer - ok
18:46:20.0255 3672 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:46:20.0333 3672 LanmanWorkstation - ok
18:46:20.0458 3672 [ 7FCB3EC66361F157BCD5B5C33CE2AC16 ] Lenovo ReadyComm AppSvc C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
18:46:20.0489 3672 Lenovo ReadyComm AppSvc - ok
18:46:20.0520 3672 [ 5287074E79E4BA82510886F684DC5F72 ] Lenovo ReadyComm ConnSvc C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
18:46:20.0536 3672 Lenovo ReadyComm ConnSvc - ok
18:46:20.0583 3672 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys
18:46:20.0598 3672 LHDmgr - ok
18:46:20.0614 3672 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
18:46:20.0676 3672 lltdio - ok
18:46:20.0692 3672 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
18:46:20.0739 3672 lltdsvc - ok
18:46:20.0739 3672 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
18:46:20.0770 3672 lmhosts - ok
18:46:20.0801 3672 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
18:46:20.0817 3672 LSI_FC - ok
18:46:20.0848 3672 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
18:46:20.0864 3672 LSI_SAS - ok
18:46:20.0879 3672 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
18:46:20.0879 3672 LSI_SAS2 - ok
18:46:20.0895 3672 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
18:46:20.0910 3672 LSI_SCSI - ok
18:46:20.0926 3672 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
18:46:20.0957 3672 luafv - ok
18:46:20.0973 3672 McAfee SiteAdvisor Service - ok
18:46:21.0020 3672 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
18:46:21.0051 3672 Mcx2Svc - ok
18:46:21.0082 3672 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
18:46:21.0113 3672 megasas - ok
18:46:21.0113 3672 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
18:46:21.0129 3672 MegaSR - ok
18:46:21.0160 3672 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
18:46:21.0207 3672 MMCSS - ok
18:46:21.0207 3672 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
18:46:21.0254 3672 Modem - ok
18:46:21.0269 3672 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
18:46:21.0285 3672 monitor - ok
18:46:21.0316 3672 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
18:46:21.0332 3672 mouclass - ok
18:46:21.0378 3672 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
18:46:21.0394 3672 mouhid - ok
18:46:21.0425 3672 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
18:46:21.0441 3672 mountmgr - ok
18:46:21.0472 3672 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
18:46:21.0519 3672 mpio - ok
18:46:21.0519 3672 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
18:46:21.0566 3672 mpsdrv - ok
18:46:21.0612 3672 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
18:46:21.0644 3672 MpsSvc - ok
18:46:21.0690 3672 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
18:46:21.0737 3672 MRxDAV - ok
18:46:21.0768 3672 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
18:46:21.0815 3672 mrxsmb - ok
18:46:21.0846 3672 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
18:46:21.0893 3672 mrxsmb10 - ok
18:46:21.0909 3672 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
18:46:21.0940 3672 mrxsmb20 - ok
18:46:21.0971 3672 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
18:46:21.0987 3672 msahci - ok
18:46:22.0002 3672 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
18:46:22.0018 3672 msdsm - ok
18:46:22.0049 3672 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
18:46:22.0065 3672 MSDTC - ok
18:46:22.0112 3672 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
18:46:22.0158 3672 Msfs - ok
18:46:22.0158 3672 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
18:46:22.0190 3672 mshidkmdf - ok
18:46:22.0221 3672 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
18:46:22.0221 3672 msisadrv - ok
18:46:22.0268 3672 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
18:46:22.0346 3672 MSiSCSI - ok
18:46:22.0346 3672 msiserver - ok
18:46:22.0377 3672 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
18:46:22.0439 3672 MSKSSRV - ok
18:46:22.0455 3672 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
18:46:22.0502 3672 MSPCLOCK - ok
18:46:22.0502 3672 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
18:46:22.0533 3672 MSPQM - ok
18:46:22.0580 3672 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
18:46:22.0595 3672 MsRPC - ok
18:46:22.0611 3672 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
18:46:22.0626 3672 mssmbios - ok
18:46:22.0658 3672 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
18:46:22.0704 3672 MSTEE - ok
18:46:22.0704 3672 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
18:46:22.0720 3672 MTConfig - ok
18:46:22.0736 3672 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
18:46:22.0751 3672 Mup - ok
18:46:22.0782 3672 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
18:46:22.0829 3672 napagent - ok
18:46:22.0892 3672 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
18:46:22.0954 3672 NativeWifiP - ok
18:46:23.0001 3672 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
18:46:23.0063 3672 NDIS - ok
18:46:23.0079 3672 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
18:46:23.0126 3672 NdisCap - ok
18:46:23.0157 3672 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
18:46:23.0219 3672 NdisTapi - ok
18:46:23.0266 3672 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
18:46:23.0344 3672 Ndisuio - ok
18:46:23.0375 3672 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
18:46:23.0406 3672 NdisWan - ok
18:46:23.0422 3672 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
18:46:23.0453 3672 NDProxy - ok
18:46:23.0484 3672 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
18:46:23.0516 3672 NetBIOS - ok
18:46:23.0547 3672 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
18:46:23.0578 3672 NetBT - ok
18:46:23.0578 3672 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
18:46:23.0594 3672 Netlogon - ok
18:46:23.0625 3672 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
18:46:23.0672 3672 Netman - ok
18:46:23.0703 3672 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
18:46:23.0734 3672 netprofm - ok
18:46:23.0765 3672 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:46:23.0781 3672 NetTcpPortSharing - ok
18:46:23.0937 3672 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\windows\system32\DRIVERS\netw5v64.sys
18:46:24.0108 3672 netw5v64 - ok
18:46:24.0124 3672 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
18:46:24.0140 3672 nfrd960 - ok
18:46:24.0171 3672 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
18:46:24.0186 3672 NlaSvc - ok
18:46:24.0218 3672 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
18:46:24.0249 3672 Npfs - ok
18:46:24.0280 3672 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
18:46:24.0296 3672 nsi - ok
18:46:24.0311 3672 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
18:46:24.0342 3672 nsiproxy - ok
18:46:24.0436 3672 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
18:46:24.0514 3672 Ntfs - ok
18:46:24.0530 3672 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
18:46:24.0576 3672 Null - ok
18:46:24.0592 3672 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
18:46:24.0608 3672 nvraid - ok
18:46:24.0639 3672 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
18:46:24.0654 3672 nvstor - ok
18:46:24.0670 3672 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
18:46:24.0686 3672 nv_agp - ok
18:46:24.0701 3672 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
18:46:24.0717 3672 ohci1394 - ok
18:46:24.0748 3672 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
18:46:24.0795 3672 p2pimsvc - ok
18:46:24.0842 3672 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
18:46:24.0888 3672 p2psvc - ok
18:46:24.0920 3672 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
18:46:24.0951 3672 Parport - ok
18:46:24.0982 3672 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
18:46:24.0982 3672 partmgr - ok
18:46:24.0998 3672 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
18:46:25.0029 3672 PcaSvc - ok
18:46:25.0044 3672 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
18:46:25.0060 3672 pci - ok
18:46:25.0076 3672 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
18:46:25.0091 3672 pciide - ok
18:46:25.0122 3672 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
18:46:25.0138 3672 pcmcia - ok
18:46:25.0138 3672 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
18:46:25.0154 3672 pcw - ok
18:46:25.0169 3672 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
18:46:25.0216 3672 PEAUTH - ok
18:46:25.0450 3672 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
18:46:25.0497 3672 PerfHost - ok
18:46:25.0559 3672 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
18:46:25.0637 3672 pla - ok
18:46:25.0684 3672 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
18:46:25.0746 3672 PlugPlay - ok
18:46:25.0762 3672 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
18:46:25.0809 3672 PNRPAutoReg - ok
18:46:25.0824 3672 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
18:46:25.0856 3672 PNRPsvc - ok
18:46:25.0887 3672 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
18:46:25.0934 3672 PolicyAgent - ok
18:46:25.0934 3672 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
18:46:25.0980 3672 Power - ok
18:46:26.0012 3672 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
18:46:26.0043 3672 PptpMiniport - ok
18:46:26.0074 3672 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
18:46:26.0090 3672 Processor - ok
18:46:26.0136 3672 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
18:46:26.0168 3672 ProfSvc - ok
18:46:26.0168 3672 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
18:46:26.0183 3672 ProtectedStorage - ok
18:46:26.0214 3672 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
18:46:26.0261 3672 Psched - ok
18:46:26.0261 3672 PS_MDP - ok
18:46:26.0308 3672 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
18:46:26.0386 3672 ql2300 - ok
18:46:26.0402 3672 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
18:46:26.0417 3672 ql40xx - ok
18:46:26.0433 3672 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
18:46:26.0464 3672 QWAVE - ok
18:46:26.0480 3672 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
18:46:26.0495 3672 QWAVEdrv - ok
18:46:26.0511 3672 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
18:46:26.0526 3672 RasAcd - ok
18:46:26.0589 3672 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
18:46:26.0636 3672 RasAgileVpn - ok
18:46:26.0667 3672 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
18:46:26.0698 3672 RasAuto - ok
18:46:26.0729 3672 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
18:46:26.0776 3672 Rasl2tp - ok
18:46:26.0792 3672 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
18:46:26.0823 3672 RasMan - ok
18:46:26.0838 3672 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
18:46:26.0885 3672 RasPppoe - ok
18:46:26.0885 3672 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
18:46:26.0916 3672 RasSstp - ok
18:46:26.0948 3672 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
18:46:26.0994 3672 rdbss - ok
18:46:27.0010 3672 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
18:46:27.0026 3672 rdpbus - ok
18:46:27.0041 3672 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
18:46:27.0072 3672 RDPCDD - ok
18:46:27.0088 3672 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
18:46:27.0135 3672 RDPENCDD - ok
18:46:27.0135 3672 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
18:46:27.0166 3672 RDPREFMP - ok
18:46:27.0197 3672 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
18:46:27.0244 3672 RDPWD - ok
18:46:27.0291 3672 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
18:46:27.0322 3672 rdyboost - ok
18:46:27.0338 3672 ReadyComm.DirectRouter - ok
18:46:27.0353 3672 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
18:46:27.0416 3672 RemoteAccess - ok
18:46:27.0447 3672 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
18:46:27.0509 3672 RemoteRegistry - ok
18:46:27.0556 3672 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
18:46:27.0587 3672 RFCOMM - ok
18:46:27.0650 3672 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
18:46:27.0696 3672 RpcEptMapper - ok
18:46:27.0728 3672 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
18:46:27.0728 3672 RpcLocator - ok
18:46:27.0759 3672 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\System32\rpcss.dll
18:46:27.0790 3672 RpcSs - ok
18:46:27.0821 3672 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
18:46:27.0837 3672 rspndr - ok
18:46:27.0884 3672 [ 5AAB4808E8CCAE8C2ECDA5B791260616 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
18:46:27.0899 3672 RSUSBSTOR - ok
18:46:27.0915 3672 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
18:46:27.0915 3672 SamSs - ok
18:46:27.0946 3672 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
18:46:27.0962 3672 sbp2port - ok
18:46:27.0993 3672 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
18:46:28.0040 3672 SCardSvr - ok
18:46:28.0055 3672 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
18:46:28.0133 3672 scfilter - ok
18:46:28.0164 3672 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
18:46:28.0242 3672 Schedule - ok
18:46:28.0274 3672 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
18:46:28.0289 3672 SCPolicySvc - ok
18:46:28.0320 3672 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
18:46:28.0367 3672 SDRSVC - ok
18:46:28.0414 3672 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
18:46:28.0461 3672 secdrv - ok
18:46:28.0492 3672 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
18:46:28.0554 3672 seclogon - ok
18:46:28.0586 3672 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
18:46:28.0617 3672 SENS - ok
18:46:28.0632 3672 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
18:46:28.0664 3672 SensrSvc - ok
18:46:28.0679 3672 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
18:46:28.0695 3672 Serenum - ok
18:46:28.0710 3672 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
18:46:28.0710 3672 Serial - ok
18:46:28.0742 3672 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
18:46:28.0757 3672 sermouse - ok
18:46:28.0804 3672 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
18:46:28.0882 3672 SessionEnv - ok
18:46:28.0913 3672 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
18:46:28.0960 3672 sffdisk - ok
18:46:28.0976 3672 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
18:46:29.0022 3672 sffp_mmc - ok
18:46:29.0022 3672 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
18:46:29.0069 3672 sffp_sd - ok
18:46:29.0100 3672 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
18:46:29.0116 3672 sfloppy - ok
18:46:29.0163 3672 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
18:46:29.0194 3672 SharedAccess - ok
18:46:29.0225 3672 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:46:29.0272 3672 ShellHWDetection - ok
18:46:29.0288 3672 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
18:46:29.0288 3672 SiSRaid2 - ok
18:46:29.0319 3672 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
18:46:29.0334 3672 SiSRaid4 - ok
18:46:29.0350 3672 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
18:46:29.0381 3672 Smb - ok
18:46:29.0412 3672 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
18:46:29.0428 3672 SNMPTRAP - ok
18:46:29.0428 3672 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
18:46:29.0444 3672 spldr - ok
18:46:29.0490 3672 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
18:46:29.0537 3672 Spooler - ok
18:46:29.0646 3672 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
18:46:29.0709 3672 sppsvc - ok
18:46:29.0740 3672 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
18:46:29.0787 3672 sppuinotify - ok
18:46:29.0818 3672 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
18:46:29.0865 3672 srv - ok
18:46:29.0896 3672 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
18:46:29.0927 3672 srv2 - ok
18:46:29.0943 3672 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
18:46:29.0958 3672 srvnet - ok
18:46:30.0005 3672 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
18:46:30.0052 3672 SSDPSRV - ok
18:46:30.0068 3672 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
18:46:30.0099 3672 SstpSvc - ok
18:46:30.0114 3672 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
18:46:30.0130 3672 stexstor - ok
18:46:30.0161 3672 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
18:46:30.0192 3672 stisvc - ok
18:46:30.0239 3672 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
18:46:30.0255 3672 swenum - ok
18:46:30.0317 3672 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
18:46:30.0411 3672 swprv - ok
18:46:30.0442 3672 [ E5D73228176C9F69072D1F91CED83484 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
18:46:30.0473 3672 SynTP - ok
18:46:30.0536 3672 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
18:46:30.0582 3672 SysMain - ok
18:46:30.0614 3672 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
18:46:30.0629 3672 TabletInputService - ok
18:46:30.0645 3672 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
18:46:30.0692 3672 TapiSrv - ok
18:46:30.0723 3672 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
18:46:30.0754 3672 TBS - ok
18:46:30.0816 3672 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
18:46:30.0926 3672 Tcpip - ok
18:46:30.0988 3672 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
18:46:31.0035 3672 TCPIP6 - ok
18:46:31.0050 3672 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
18:46:31.0066 3672 tcpipreg - ok
18:46:31.0097 3672 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
18:46:31.0144 3672 TDPIPE - ok
18:46:31.0175 3672 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
18:46:31.0206 3672 TDTCP - ok
18:46:31.0253 3672 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
18:46:31.0316 3672 tdx - ok
18:46:31.0347 3672 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
18:46:31.0347 3672 TermDD - ok
18:46:31.0378 3672 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
18:46:31.0456 3672 TermService - ok
18:46:31.0487 3672 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
18:46:31.0534 3672 Themes - ok
18:46:31.0550 3672 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
18:46:31.0581 3672 THREADORDER - ok
18:46:31.0596 3672 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
18:46:31.0643 3672 TrkWks - ok
18:46:31.0690 3672 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:46:31.0752 3672 TrustedInstaller - ok
18:46:31.0784 3672 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
18:46:31.0815 3672 tssecsrv - ok
18:46:31.0846 3672 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
18:46:31.0893 3672 TsUsbFlt - ok
18:46:31.0940 3672 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
18:46:32.0002 3672 tunnel - ok
18:46:32.0033 3672 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
18:46:32.0049 3672 uagp35 - ok
18:46:32.0096 3672 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
18:46:32.0127 3672 udfs - ok
18:46:32.0158 3672 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
18:46:32.0158 3672 UI0Detect - ok
18:46:32.0174 3672 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
18:46:32.0189 3672 uliagpkx - ok
18:46:32.0220 3672 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\drivers\umbus.sys
18:46:32.0236 3672 umbus - ok
18:46:32.0252 3672 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
18:46:32.0283 3672 UmPass - ok
18:46:32.0298 3672 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
18:46:32.0330 3672 upnphost - ok
18:46:32.0361 3672 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
18:46:32.0376 3672 usbccgp - ok
18:46:32.0392 3672 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
18:46:32.0408 3672 usbcir - ok
18:46:32.0423 3672 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
18:46:32.0454 3672 usbehci - ok
18:46:32.0517 3672 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
18:46:32.0564 3672 usbhub - ok
18:46:32.0595 3672 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
18:46:32.0610 3672 usbohci - ok
18:46:32.0642 3672 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
18:46:32.0704 3672 usbprint - ok
18:46:32.0735 3672 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\drivers\USBSTOR.SYS
18:46:32.0798 3672 USBSTOR - ok
18:46:32.0813 3672 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
18:46:32.0844 3672 usbuhci - ok
18:46:32.0907 3672 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
18:46:32.0954 3672 usbvideo - ok
18:46:32.0969 3672 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
18:46:33.0032 3672 UxSms - ok
18:46:33.0047 3672 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
18:46:33.0063 3672 VaultSvc - ok
18:46:33.0094 3672 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
18:46:33.0094 3672 vdrvroot - ok
18:46:33.0141 3672 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
18:46:33.0172 3672 vds - ok
18:46:33.0219 3672 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
18:46:33.0250 3672 vga - ok
18:46:33.0250 3672 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
18:46:33.0281 3672 VgaSave - ok
18:46:33.0312 3672 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
18:46:33.0328 3672 vhdmp - ok
18:46:33.0344 3672 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
18:46:33.0375 3672 viaide - ok
18:46:33.0406 3672 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
18:46:33.0422 3672 volmgr - ok
18:46:33.0453 3672 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
18:46:33.0484 3672 volmgrx - ok
18:46:33.0500 3672 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
18:46:33.0531 3672 volsnap - ok
18:46:33.0562 3672 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
18:46:33.0593 3672 vsmraid - ok
18:46:33.0671 3672 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
18:46:33.0780 3672 VSS - ok
18:46:33.0796 3672 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
18:46:33.0812 3672 vwifibus - ok
18:46:33.0812 3672 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
18:46:33.0843 3672 vwififlt - ok
18:46:33.0874 3672 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
18:46:33.0905 3672 W32Time - ok
18:46:33.0905 3672 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
18:46:33.0921 3672 WacomPen - ok
18:46:33.0968 3672 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
18:46:34.0061 3672 WANARP - ok
18:46:34.0092 3672 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
18:46:34.0155 3672 Wanarpv6 - ok
18:46:34.0233 3672 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
18:46:34.0311 3672 WatAdminSvc - ok
18:46:34.0389 3672 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
18:46:34.0498 3672 wbengine - ok
18:46:34.0545 3672 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
18:46:34.0576 3672 WbioSrvc - ok
18:46:34.0607 3672 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
18:46:34.0638 3672 wcncsvc - ok
18:46:34.0654 3672 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:46:34.0685 3672 WcsPlugInService - ok
18:46:34.0701 3672 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
18:46:34.0716 3672 Wd - ok
18:46:34.0748 3672 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
18:46:34.0779 3672 Wdf01000 - ok
18:46:34.0810 3672 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
18:46:34.0919 3672 WdiServiceHost - ok
18:46:34.0919 3672 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
18:46:34.0935 3672 WdiSystemHost - ok
18:46:34.0966 3672 [ 2A444ACF7DD446505BCC801F8F6AE5FD ] wdmirror C:\windows\system32\DRIVERS\WDMirror.sys
18:46:34.0997 3672 wdmirror - ok
18:46:35.0028 3672 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
18:46:35.0075 3672 WebClient - ok
18:46:35.0122 3672 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
18:46:35.0184 3672 Wecsvc - ok
18:46:35.0200 3672 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
18:46:35.0231 3672 wercplsupport - ok
18:46:35.0247 3672 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
18:46:35.0278 3672 WerSvc - ok
18:46:35.0309 3672 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
18:46:35.0403 3672 WfpLwf - ok
18:46:35.0418 3672 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
18:46:35.0434 3672 WimFltr - ok
18:46:35.0434 3672 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
18:46:35.0450 3672 WIMMount - ok
18:46:35.0496 3672 WinDefend - ok
18:46:35.0512 3672 WinHttpAutoProxySvc - ok
18:46:35.0637 3672 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
18:46:35.0699 3672 Winmgmt - ok
18:46:35.0777 3672 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
18:46:35.0886 3672 WinRM - ok
18:46:35.0964 3672 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
18:46:36.0011 3672 Wlansvc - ok
18:46:36.0089 3672 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:46:36.0120 3672 wlcrasvc - ok
18:46:36.0214 3672 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:46:36.0261 3672 wlidsvc - ok
18:46:36.0292 3672 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
18:46:36.0323 3672 WmiAcpi - ok
18:46:36.0354 3672 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
18:46:36.0386 3672 wmiApSrv - ok
18:46:36.0417 3672 WMPNetworkSvc - ok
18:46:36.0464 3672 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
18:46:36.0495 3672 WPCSvc - ok
18:46:36.0526 3672 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
18:46:36.0557 3672 WPDBusEnum - ok
18:46:36.0573 3672 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
18:46:36.0620 3672 ws2ifsl - ok
18:46:36.0651 3672 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
18:46:36.0682 3672 wscsvc - ok
18:46:36.0698 3672 WSearch - ok
18:46:36.0729 3672 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\windows\system32\DRIVERS\wsvd.sys
18:46:36.0744 3672 wsvd - ok
18:46:36.0838 3672 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
18:46:36.0885 3672 wuauserv - ok
18:46:36.0916 3672 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
18:46:36.0947 3672 WudfPf - ok
18:46:36.0978 3672 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
18:46:37.0010 3672 WUDFRd - ok
18:46:37.0041 3672 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
18:46:37.0056 3672 wudfsvc - ok
18:46:37.0088 3672 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
18:46:37.0134 3672 WwanSvc - ok
18:46:37.0150 3672 ================ Scan global ===============================
18:46:37.0181 3672 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
18:46:37.0228 3672 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
18:46:37.0244 3672 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
18:46:37.0275 3672 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
18:46:37.0290 3672 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
18:46:37.0290 3672 [Global] - ok
18:46:37.0290 3672 ================ Scan MBR ==================================
18:46:37.0306 3672 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:46:37.0712 3672 \Device\Harddisk0\DR0 - ok
18:46:37.0712 3672 ================ Scan VBR ==================================
18:46:37.0727 3672 [ C36CD88D221D31C225C1F24FE1CF78A4 ] \Device\Harddisk0\DR0\Partition1
18:46:37.0727 3672 \Device\Harddisk0\DR0\Partition1 - ok
18:46:37.0758 3672 [ F5C48685E01C3570411EE534FE6C3C8C ] \Device\Harddisk0\DR0\Partition2
18:46:37.0774 3672 \Device\Harddisk0\DR0\Partition2 - ok
18:46:37.0805 3672 [ BB83DB6231CA26A3E6884B42BBF363A5 ] \Device\Harddisk0\DR0\Partition3
18:46:37.0805 3672 \Device\Harddisk0\DR0\Partition3 - ok
18:46:37.0805 3672 ================ Scan active images ========================
18:46:37.0805 3672 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
18:46:37.0805 3672 C:\Windows\System32\drivers\crashdmp.sys - ok
18:46:37.0821 3672 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
18:46:37.0821 3672 C:\Windows\System32\drivers\Dumpata.sys - ok
18:46:37.0836 3672 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
18:46:37.0836 3672 C:\Windows\System32\drivers\dumpfve.sys - ok
18:46:37.0852 3672 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] C:\Windows\System32\drivers\msahci.sys
18:46:37.0852 3672 C:\Windows\System32\drivers\msahci.sys - ok
18:46:37.0852 3672 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
18:46:37.0852 3672 C:\Windows\System32\drivers\beep.sys - ok
18:46:37.0868 3672 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
18:46:37.0868 3672 C:\Windows\System32\drivers\cdrom.sys - ok
18:46:37.0868 3672 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
18:46:37.0868 3672 C:\Windows\System32\drivers\null.sys - ok
18:46:37.0883 3672 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
18:46:37.0883 3672 C:\Windows\System32\drivers\RDPCDD.sys - ok
18:46:37.0883 3672 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
18:46:37.0883 3672 C:\Windows\System32\drivers\vga.sys - ok
18:46:37.0899 3672 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
18:46:37.0899 3672 C:\Windows\System32\drivers\videoprt.sys - ok
18:46:37.0899 3672 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
18:46:37.0899 3672 C:\Windows\System32\drivers\watchdog.sys - ok
18:46:37.0899 3672 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
18:46:37.0899 3672 C:\Windows\System32\drivers\msfs.sys - ok
18:46:37.0914 3672 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
18:46:37.0914 3672 C:\Windows\System32\drivers\npfs.sys - ok
18:46:37.0914 3672 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
18:46:37.0914 3672 C:\Windows\System32\drivers\RDPENCDD.sys - ok
18:46:37.0914 3672 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
18:46:37.0914 3672 C:\Windows\System32\drivers\RDPREFMP.sys - ok
18:46:37.0914 3672 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
18:46:37.0914 3672 C:\Windows\System32\drivers\tdi.sys - ok
18:46:37.0930 3672 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
18:46:37.0930 3672 C:\Windows\System32\drivers\tdx.sys - ok
18:46:37.0930 3672 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
18:46:37.0930 3672 C:\Windows\System32\drivers\netbt.sys - ok
18:46:37.0930 3672 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
18:46:37.0930 3672 C:\Windows\System32\drivers\afd.sys - ok
18:46:37.0946 3672 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
18:46:37.0946 3672 C:\Windows\System32\drivers\wfplwf.sys - ok
18:46:37.0946 3672 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
18:46:37.0946 3672 C:\Windows\System32\drivers\ws2ifsl.sys - ok
18:46:37.0946 3672 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
18:46:37.0946 3672 C:\Windows\System32\drivers\pacer.sys - ok
18:46:37.0946 3672 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
18:46:37.0946 3672 C:\Windows\System32\drivers\netbios.sys - ok
18:46:37.0961 3672 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
18:46:37.0961 3672 C:\Windows\System32\drivers\vwififlt.sys - ok
18:46:37.0961 3672 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
18:46:37.0961 3672 C:\Windows\System32\drivers\wanarp.sys - ok
18:46:37.0961 3672 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
18:46:37.0961 3672 C:\Windows\System32\drivers\termdd.sys - ok
18:46:37.0977 3672 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
18:46:37.0977 3672 C:\Windows\System32\drivers\nsiproxy.sys - ok
18:46:37.0977 3672 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
18:46:37.0977 3672 C:\Windows\System32\drivers\rdbss.sys - ok
18:46:37.0977 3672 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
18:46:37.0977 3672 C:\Windows\System32\drivers\mssmbios.sys - ok
18:46:37.0992 3672 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
18:46:37.0992 3672 C:\Windows\System32\drivers\discache.sys - ok
18:46:37.0992 3672 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
18:46:37.0992 3672 C:\Windows\System32\drivers\blbdrive.sys - ok
18:46:37.0992 3672 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
18:46:37.0992 3672 C:\Windows\System32\drivers\dfsc.sys - ok
18:46:37.0992 3672 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
18:46:37.0992 3672 C:\Windows\System32\drivers\tunnel.sys - ok
18:46:38.0008 3672 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
18:46:38.0008 3672 C:\Windows\System32\drivers\amdppm.sys - ok
18:46:38.0008 3672 [ DC746FE518C2E63DB4C8954772FA4F71 ] C:\Windows\System32\drivers\atikmpag.sys
18:46:38.0008 3672 C:\Windows\System32\drivers\atikmpag.sys - ok
18:46:38.0008 3672 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
18:46:38.0008 3672 C:\Windows\System32\smss.exe - ok
18:46:38.0024 3672 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
18:46:38.0024 3672 C:\Windows\System32\ntdll.dll - ok
18:46:38.0024 3672 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
18:46:38.0024 3672 C:\Windows\System32\autochk.exe - ok
18:46:38.0024 3672 [ 59A119E7AE39A95755BB1C0E889C7FAD ] C:\Windows\System32\drivers\atikmdag.sys
18:46:38.0024 3672 C:\Windows\System32\drivers\atikmdag.sys - ok
18:46:38.0039 3672 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
18:46:38.0039 3672 C:\Windows\System32\drivers\dxgkrnl.sys - ok
18:46:38.0039 3672 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
18:46:38.0039 3672 C:\Windows\System32\drivers\dxgmms1.sys - ok
18:46:38.0039 3672 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
18:46:38.0039 3672 C:\Windows\System32\drivers\hdaudbus.sys - ok
18:46:38.0055 3672 [ 5B5C36B2EC500462A715DB6BCBAF5DA7 ] C:\Windows\System32\drivers\BCMWL664.SYS
18:46:38.0055 3672 C:\Windows\System32\drivers\BCMWL664.SYS - ok
18:46:38.0055 3672 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
18:46:38.0055 3672 C:\Windows\System32\drivers\vwifibus.sys - ok
18:46:38.0055 3672 [ 55480B9C63F3F91A8EBBADCBF28FE581 ] C:\Windows\System32\drivers\L1C62x64.sys
18:46:38.0055 3672 C:\Windows\System32\drivers\L1C62x64.sys - ok
18:46:38.0055 3672 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
18:46:38.0055 3672 C:\Windows\System32\drivers\usbohci.sys - ok
18:46:38.0070 3672 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
18:46:38.0070 3672 C:\Windows\System32\drivers\usbport.sys - ok
18:46:38.0070 3672 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
18:46:38.0070 3672 C:\Windows\System32\drivers\usbehci.sys - ok
18:46:38.0070 3672 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
18:46:38.0070 3672 C:\Windows\System32\drivers\i8042prt.sys - ok
18:46:38.0086 3672 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
18:46:38.0086 3672 C:\Windows\System32\drivers\kbdclass.sys - ok
18:46:38.0086 3672 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
18:46:38.0086 3672 C:\Windows\System32\drivers\usbd.sys - ok
18:46:38.0086 3672 [ E5D73228176C9F69072D1F91CED83484 ] C:\Windows\System32\drivers\SynTP.sys
18:46:38.0086 3672 C:\Windows\System32\drivers\SynTP.sys - ok
18:46:38.0102 3672 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
18:46:38.0102 3672 C:\Windows\System32\drivers\mouclass.sys - ok
18:46:38.0102 3672 [ DC201246A14CB3B274DF59FAF539AB07 ] C:\Windows\System32\drivers\AcpiVpc.sys
18:46:38.0102 3672 C:\Windows\System32\drivers\AcpiVpc.sys - ok
18:46:38.0102 3672 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
18:46:38.0102 3672 C:\Windows\System32\drivers\CmBatt.sys - ok
18:46:38.0102 3672 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
18:46:38.0102 3672 C:\Windows\System32\drivers\CompositeBus.sys - ok
18:46:38.0117 3672 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
18:46:38.0117 3672 C:\Windows\System32\drivers\agilevpn.sys - ok
18:46:38.0117 3672 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
18:46:38.0117 3672 C:\Windows\System32\drivers\rasl2tp.sys - ok
18:46:38.0117 3672 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
18:46:38.0117 3672 C:\Windows\System32\drivers\ndistapi.sys - ok
18:46:38.0133 3672 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
18:46:38.0133 3672 C:\Windows\System32\drivers\ndiswan.sys - ok
18:46:38.0133 3672 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
18:46:38.0133 3672 C:\Windows\System32\drivers\raspppoe.sys - ok
18:46:38.0133 3672 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
18:46:38.0133 3672 C:\Windows\System32\drivers\raspptp.sys - ok
18:46:38.0148 3672 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
18:46:38.0148 3672 C:\Windows\System32\drivers\rassstp.sys - ok
18:46:38.0148 3672 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] C:\Windows\System32\drivers\hamachi.sys
18:46:38.0148 3672 C:\Windows\System32\drivers\hamachi.sys - ok
18:46:38.0148 3672 [ 2A444ACF7DD446505BCC801F8F6AE5FD ] C:\Windows\System32\drivers\WDMirror.sys
18:46:38.0148 3672 C:\Windows\System32\drivers\WDMirror.sys - ok
18:46:38.0164 3672 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
18:46:38.0164 3672 C:\Windows\System32\drivers\ks.sys - ok
18:46:38.0164 3672 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
18:46:38.0164 3672 C:\Windows\System32\drivers\swenum.sys - ok
18:46:38.0164 3672 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
18:46:38.0164 3672 C:\Windows\System32\drivers\umbus.sys - ok
18:46:38.0164 3672 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
18:46:38.0164 3672 C:\Windows\System32\drivers\usbhub.sys - ok
18:46:38.0180 3672 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
18:46:38.0180 3672 C:\Windows\System32\drivers\ndproxy.sys - ok
18:46:38.0180 3672 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
18:46:38.0180 3672 C:\Windows\System32\drivers\drmk.sys - ok
18:46:38.0180 3672 [ CBE5F8B3E54198F5DFE403A55A95DE08 ] C:\Windows\System32\drivers\AtihdW76.sys
18:46:38.0180 3672 C:\Windows\System32\drivers\AtihdW76.sys - ok
18:46:38.0195 3672 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
18:46:38.0195 3672 C:\Windows\System32\drivers\portcls.sys - ok
18:46:38.0195 3672 [ A19DB004D954BBC9C4EC125711E1D1C2 ] C:\Windows\System32\wininet.dll
18:46:38.0195 3672 C:\Windows\System32\wininet.dll - ok
18:46:38.0195 3672 [ E519FD2CE6D57062400537C95C3B17FD ] C:\Windows\System32\urlmon.dll
18:46:38.0195 3672 C:\Windows\System32\urlmon.dll - ok
18:46:38.0195 3672 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
18:46:38.0195 3672 C:\Windows\System32\Wldap32.dll - ok
18:46:38.0211 3672 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
18:46:38.0211 3672 C:\Windows\System32\clbcatq.dll - ok
18:46:38.0211 3672 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
18:46:38.0211 3672 C:\Windows\System32\comdlg32.dll - ok
18:46:38.0211 3672 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
18:46:38.0211 3672 C:\Windows\System32\ole32.dll - ok
18:46:38.0226 3672 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
18:46:38.0226 3672 C:\Windows\System32\advapi32.dll - ok
18:46:38.0226 3672 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
18:46:38.0226 3672 C:\Windows\System32\usp10.dll - ok
18:46:38.0226 3672 [ D25968D163EC487A50C8C6A91D4134B4 ] C:\Windows\System32\iertutil.dll
18:46:38.0226 3672 C:\Windows\System32\iertutil.dll - ok
18:46:38.0226 3672 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
18:46:38.0226 3672 C:\Windows\System32\shlwapi.dll - ok
18:46:38.0242 3672 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
18:46:38.0242 3672 C:\Windows\System32\imagehlp.dll - ok
18:46:38.0242 3672 [ EAF41CFBA5281834CBC383C710AC7965 ] C:\Windows\System32\kernel32.dll
18:46:38.0242 3672 C:\Windows\System32\kernel32.dll - ok
18:46:38.0242 3672 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
18:46:38.0242 3672 C:\Windows\System32\drivers\ksthunk.sys - ok
18:46:38.0258 3672 [ 72190080AB7D7D876F4210A048A0A892 ] C:\Windows\System32\drivers\RTKVHD64.sys
18:46:38.0258 3672 C:\Windows\System32\drivers\RTKVHD64.sys - ok
18:46:38.0258 3672 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
18:46:38.0258 3672 C:\Windows\System32\psapi.dll - ok
18:46:38.0258 3672 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
18:46:38.0258 3672 C:\Windows\System32\rpcrt4.dll - ok
18:46:38.0273 3672 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
18:46:38.0273 3672 C:\Windows\System32\drivers\usbccgp.sys - ok
18:46:38.0273 3672 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
18:46:38.0273 3672 C:\Windows\System32\gdi32.dll - ok
18:46:38.0273 3672 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
18:46:38.0273 3672 C:\Windows\System32\ws2_32.dll - ok
18:46:38.0289 3672 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
18:46:38.0289 3672 C:\Windows\System32\oleaut32.dll - ok
18:46:38.0289 3672 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
18:46:38.0289 3672 C:\Windows\System32\difxapi.dll - ok
18:46:38.0289 3672 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
18:46:38.0289 3672 C:\Windows\System32\user32.dll - ok
18:46:38.0289 3672 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
18:46:38.0289 3672 C:\Windows\System32\shell32.dll - ok
18:46:38.0304 3672 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
18:46:38.0304 3672 C:\Windows\System32\imm32.dll - ok
18:46:38.0304 3672 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
18:46:38.0304 3672 C:\Windows\System32\normaliz.dll - ok
18:46:38.0304 3672 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
18:46:38.0304 3672 C:\Windows\System32\nsi.dll - ok
18:46:38.0320 3672 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
18:46:38.0320 3672 C:\Windows\System32\sechost.dll - ok
18:46:38.0320 3672 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
18:46:38.0320 3672 C:\Windows\System32\lpk.dll - ok
18:46:38.0320 3672 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
18:46:38.0320 3672 C:\Windows\System32\setupapi.dll - ok
18:46:38.0320 3672 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
18:46:38.0320 3672 C:\Windows\System32\msctf.dll - ok
18:46:38.0336 3672 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
18:46:38.0336 3672 C:\Windows\System32\msvcrt.dll - ok
18:46:38.0336 3672 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
18:46:38.0336 3672 C:\Windows\System32\drivers\hidclass.sys - ok
18:46:38.0336 3672 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
18:46:38.0336 3672 C:\Windows\System32\drivers\hidparse.sys - ok
18:46:38.0351 3672 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
18:46:38.0351 3672 C:\Windows\System32\drivers\hidusb.sys - ok
18:46:38.0351 3672 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
18:46:38.0351 3672 C:\Windows\System32\drivers\mouhid.sys - ok
18:46:38.0351 3672 [ 27C684D57A49DAB19BCE9D69529E8BE7 ] C:\Windows\System32\drivers\BisonC07.sys
18:46:38.0351 3672 C:\Windows\System32\drivers\BisonC07.sys - ok
18:46:38.0367 3672 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
18:46:38.0367 3672 C:\Windows\System32\comctl32.dll - ok
18:46:38.0367 3672 [ CF0997050DB2B359D7F4103092296A1B ] C:\Windows\System32\KernelBase.dll
18:46:38.0367 3672 C:\Windows\System32\KernelBase.dll - ok
18:46:38.0367 3672 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
18:46:38.0367 3672 C:\Windows\System32\cfgmgr32.dll - ok
18:46:38.0367 3672 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
18:46:38.0367 3672 C:\Windows\System32\devobj.dll - ok
18:46:38.0382 3672 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
18:46:38.0382 3672 C:\Windows\System32\wintrust.dll - ok
18:46:38.0382 3672 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
18:46:38.0382 3672 C:\Windows\System32\crypt32.dll - ok
18:46:38.0382 3672 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
18:46:38.0382 3672 C:\Windows\System32\msasn1.dll - ok
18:46:38.0398 3672 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
18:46:38.0398 3672 C:\Windows\SysWOW64\normaliz.dll - ok
18:46:38.0398 3672 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
18:46:38.0398 3672 C:\Windows\System32\drivers\dxapi.sys - ok
18:46:38.0398 3672 [ 34B419EDEAC6F12B34908DE3758F98C9 ] C:\Windows\System32\win32k.sys
18:46:38.0398 3672 C:\Windows\System32\win32k.sys - ok
18:46:38.0414 3672 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
18:46:38.0414 3672 C:\Windows\System32\csrsrv.dll - ok
18:46:38.0414 3672 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
18:46:38.0414 3672 C:\Windows\System32\csrss.exe - ok
18:46:38.0414 3672 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
18:46:38.0414 3672 C:\Windows\System32\basesrv.dll - ok
18:46:38.0414 3672 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\System32\winsrv.dll
18:46:38.0414 3672 C:\Windows\System32\winsrv.dll - ok
18:46:38.0429 3672 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
18:46:38.0429 3672 C:\Windows\System32\drivers\monitor.sys - ok
18:46:38.0429 3672 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
18:46:38.0429 3672 C:\Windows\System32\sxssrv.dll - ok
18:46:38.0429 3672 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
18:46:38.0429 3672 C:\Windows\System32\tsddd.dll - ok
18:46:38.0445 3672 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
18:46:38.0445 3672 C:\Windows\System32\wininit.exe - ok
18:46:38.0445 3672 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
18:46:38.0445 3672 C:\Windows\System32\cdd.dll - ok
18:46:38.0445 3672 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
18:46:38.0445 3672 C:\Windows\System32\profapi.dll - ok
18:46:38.0460 3672 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
18:46:38.0460 3672 C:\Windows\System32\KBDUS.DLL - ok
18:46:38.0460 3672 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
18:46:38.0460 3672 C:\Windows\System32\RpcRtRemote.dll - ok
18:46:38.0460 3672 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
18:46:38.0460 3672 C:\Windows\System32\sxs.dll - ok
18:46:38.0460 3672 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
18:46:38.0460 3672 C:\Windows\System32\WlS0WndH.dll - ok
18:46:38.0476 3672 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
18:46:38.0476 3672 C:\Windows\System32\cryptbase.dll - ok
18:46:38.0476 3672 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
18:46:38.0476 3672 C:\Windows\System32\apphelp.dll - ok
18:46:38.0476 3672 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
18:46:38.0476 3672 C:\Windows\System32\lsass.exe - ok
18:46:38.0492 3672 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
18:46:38.0492 3672 C:\Windows\System32\lsm.exe - ok
18:46:38.0492 3672 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
18:46:38.0492 3672 C:\Windows\System32\services.exe - ok
18:46:38.0492 3672 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
18:46:38.0492 3672 C:\Windows\System32\lsasrv.dll - ok
18:46:38.0492 3672 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
18:46:38.0492 3672 C:\Windows\System32\sspisrv.dll - ok
18:46:38.0507 3672 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
18:46:38.0507 3672 C:\Windows\System32\sspicli.dll - ok
18:46:38.0507 3672 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
18:46:38.0507 3672 C:\Windows\System32\sysntfy.dll - ok
18:46:38.0507 3672 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
18:46:38.0507 3672 C:\Windows\System32\wmsgapi.dll - ok
18:46:38.0523 3672 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
18:46:38.0523 3672 C:\Windows\System32\samsrv.dll - ok
18:46:38.0523 3672 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
18:46:38.0523 3672 C:\Windows\System32\scext.dll - ok
18:46:38.0523 3672 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
18:46:38.0523 3672 C:\Windows\System32\winlogon.exe - ok
18:46:38.0538 3672 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
18:46:38.0538 3672 C:\Windows\System32\scesrv.dll - ok
18:46:38.0538 3672 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
18:46:38.0538 3672 C:\Windows\System32\secur32.dll - ok
18:46:38.0538 3672 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
18:46:38.0538 3672 C:\Windows\System32\winsta.dll - ok
18:46:38.0538 3672 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
18:46:38.0538 3672 C:\Windows\System32\srvcli.dll - ok
18:46:38.0554 3672 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
18:46:38.0554 3672 C:\Windows\System32\cryptdll.dll - ok
18:46:38.0554 3672 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
18:46:38.0554 3672 C:\Windows\System32\wevtapi.dll - ok
18:46:38.0554 3672 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
18:46:38.0554 3672 C:\Windows\System32\authz.dll - ok
18:46:38.0570 3672 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
18:46:38.0570 3672 C:\Windows\System32\cngaudit.dll - ok
18:46:38.0570 3672 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
18:46:38.0570 3672 C:\Windows\System32\ncrypt.dll - ok
18:46:38.0570 3672 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
18:46:38.0570 3672 C:\Windows\System32\bcrypt.dll - ok
18:46:38.0570 3672 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
18:46:38.0570 3672 C:\Windows\System32\msprivs.dll - ok
18:46:38.0585 3672 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
18:46:38.0585 3672 C:\Windows\System32\netjoin.dll - ok
18:46:38.0585 3672 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
18:46:38.0585 3672 C:\Windows\System32\negoexts.dll - ok
18:46:38.0585 3672 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
18:46:38.0585 3672 C:\Windows\System32\kerberos.dll - ok
18:46:38.0601 3672 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
18:46:38.0601 3672 C:\Windows\System32\cryptsp.dll - ok
18:46:38.0601 3672 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
18:46:38.0601 3672 C:\Windows\System32\mswsock.dll - ok
18:46:38.0601 3672 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
18:46:38.0601 3672 C:\Windows\System32\msv1_0.dll - ok
18:46:38.0616 3672 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
18:46:38.0616 3672 C:\Windows\System32\wship6.dll - ok
18:46:38.0616 3672 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
18:46:38.0616 3672 C:\Windows\System32\netlogon.dll - ok
18:46:38.0616 3672 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
18:46:38.0616 3672 C:\Windows\System32\dnsapi.dll - ok
18:46:38.0632 3672 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
18:46:38.0632 3672 C:\Windows\System32\logoncli.dll - ok
18:46:38.0632 3672 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
18:46:38.0632 3672 C:\Windows\System32\schannel.dll - ok
18:46:38.0632 3672 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
18:46:38.0632 3672 C:\Windows\System32\wdigest.dll - ok
18:46:38.0632 3672 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
18:46:38.0632 3672 C:\Windows\System32\pku2u.dll - ok
18:46:38.0648 3672 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
18:46:38.0648 3672 C:\Windows\System32\rsaenh.dll - ok
18:46:38.0648 3672 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
18:46:38.0648 3672 C:\Windows\System32\TSpkg.dll - ok
18:46:38.0648 3672 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
18:46:38.0648 3672 C:\Windows\System32\LIVESSP.DLL - ok
18:46:38.0663 3672 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
18:46:38.0663 3672 C:\Windows\System32\bcryptprimitives.dll - ok
18:46:38.0663 3672 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
18:46:38.0663 3672 C:\Windows\System32\credssp.dll - ok
18:46:38.0663 3672 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
18:46:38.0663 3672 C:\Windows\System32\efslsaext.dll - ok
18:46:38.0679 3672 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
18:46:38.0679 3672 C:\Windows\System32\scecli.dll - ok
18:46:38.0679 3672 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
18:46:38.0679 3672 C:\Windows\System32\ubpm.dll - ok
18:46:38.0679 3672 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
18:46:38.0679 3672 C:\Windows\System32\svchost.exe - ok
18:46:38.0679 3672 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
18:46:38.0679 3672 C:\Windows\System32\umpnpmgr.dll - ok
18:46:38.0694 3672 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
18:46:38.0694 3672 C:\Windows\System32\SPInf.dll - ok
18:46:38.0694 3672 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
18:46:38.0694 3672 C:\Windows\System32\devrtl.dll - ok
18:46:38.0694 3672 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
18:46:38.0694 3672 C:\Windows\System32\userenv.dll - ok
18:46:38.0710 3672 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
18:46:38.0710 3672 C:\Windows\System32\gpapi.dll - ok
18:46:38.0710 3672 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
18:46:38.0710 3672 C:\Windows\System32\pcwum.dll - ok
18:46:38.0710 3672 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
18:46:38.0710 3672 C:\Windows\System32\umpo.dll - ok
18:46:38.0710 3672 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
18:46:38.0710 3672 C:\Windows\System32\powrprof.dll - ok
18:46:38.0726 3672 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
18:46:38.0726 3672 C:\Windows\System32\drivers\luafv.sys - ok
18:46:38.0726 3672 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
18:46:38.0726 3672 C:\Windows\System32\drivers\WUDFPf.sys - ok
18:46:38.0726 3672 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
18:46:38.0726 3672 C:\Windows\System32\rpcss.dll - ok
18:46:38.0741 3672 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
18:46:38.0741 3672 C:\Windows\System32\RpcEpMap.dll - ok
18:46:38.0741 3672 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
18:46:38.0741 3672 C:\Windows\System32\wshqos.dll - ok
18:46:38.0741 3672 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
18:46:38.0741 3672 C:\Windows\System32\WSHTCPIP.DLL - ok
18:46:38.0741 3672 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
18:46:38.0741 3672 C:\Windows\System32\FirewallAPI.dll - ok
18:46:38.0757 3672 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
18:46:38.0757 3672 C:\Windows\System32\LogonUI.exe - ok
18:46:38.0757 3672 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
18:46:38.0757 3672 C:\Windows\System32\version.dll - ok
18:46:38.0757 3672 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
18:46:38.0757 3672 C:\Windows\System32\authui.dll - ok
18:46:38.0772 3672 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
18:46:38.0772 3672 C:\Windows\System32\cryptui.dll - ok
18:46:38.0772 3672 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
18:46:38.0772 3672 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
18:46:38.0772 3672 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
18:46:38.0772 3672 C:\Windows\System32\samlib.dll - ok
18:46:38.0788 3672 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
18:46:38.0788 3672 C:\Windows\System32\shacct.dll - ok
18:46:38.0788 3672 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
18:46:38.0788 3672 C:\Windows\System32\propsys.dll - ok
18:46:38.0788 3672 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
18:46:38.0788 3672 C:\Windows\System32\uxtheme.dll - ok
18:46:38.0788 3672 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
18:46:38.0788 3672 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
18:46:38.0804 3672 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
18:46:38.0804 3672 C:\Windows\System32\dui70.dll - ok
18:46:38.0804 3672 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
18:46:38.0804 3672 C:\Windows\System32\duser.dll - ok
18:46:38.0804 3672 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
18:46:38.0804 3672 C:\Windows\System32\SndVolSSO.dll - ok
18:46:38.0819 3672 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
18:46:38.0819 3672 C:\Windows\System32\hid.dll - ok
18:46:38.0819 3672 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
18:46:38.0819 3672 C:\Windows\System32\MMDevAPI.dll - ok
18:46:38.0819 3672 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
18:46:38.0819 3672 C:\Windows\System32\dwmapi.dll - ok
18:46:38.0835 3672 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
18:46:38.0835 3672 C:\Windows\System32\xmllite.dll - ok
18:46:38.0835 3672 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
18:46:38.0835 3672 C:\Windows\System32\WindowsCodecs.dll - ok
18:46:38.0835 3672 [ 5D39A8A3C5F1AF5A8C91CE0658314664 ] C:\Windows\System32\atiesrxx.exe
18:46:38.0835 3672 C:\Windows\System32\atiesrxx.exe - ok
18:46:38.0835 3672 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
18:46:38.0835 3672 C:\Windows\System32\wtsapi32.dll - ok
18:46:38.0850 3672 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
18:46:38.0850 3672 C:\Windows\System32\wevtsvc.dll - ok
18:46:38.0850 3672 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
18:46:38.0850 3672 C:\Windows\System32\audiosrv.dll - ok
18:46:38.0850 3672 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
18:46:38.0850 3672 C:\Windows\System32\mmcss.dll - ok
18:46:38.0866 3672 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
18:46:38.0866 3672 C:\Windows\System32\avrt.dll - ok
18:46:38.0866 3672 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
18:46:38.0866 3672 C:\Windows\System32\audiodg.exe - ok
18:46:38.0866 3672 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
18:46:38.0866 3672 C:\Windows\System32\ntmarta.dll - ok
18:46:38.0882 3672 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
18:46:38.0882 3672 C:\Windows\System32\gpsvc.dll - ok
18:46:38.0882 3672 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
18:46:38.0882 3672 C:\Windows\System32\nlaapi.dll - ok
18:46:38.0882 3672 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
18:46:38.0882 3672 C:\Windows\System32\profsvc.dll - ok
18:46:38.0882 3672 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
18:46:38.0882 3672 C:\Windows\System32\atl.dll - ok
18:46:38.0897 3672 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
18:46:38.0897 3672 C:\Windows\System32\dsrole.dll - ok
18:46:38.0897 3672 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
18:46:38.0897 3672 C:\Windows\System32\themeservice.dll - ok
18:46:38.0897 3672 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
18:46:38.0897 3672 C:\Windows\System32\slc.dll - ok
18:46:38.0913 3672 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
18:46:38.0913 3672 C:\Windows\System32\es.dll - ok
18:46:38.0913 3672 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
18:46:38.0913 3672 C:\Windows\System32\comres.dll - ok
18:46:38.0913 3672 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
18:46:38.0913 3672 C:\Windows\System32\Sens.dll - ok
18:46:38.0913 3672 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
18:46:38.0913 3672 C:\Windows\System32\adtschema.dll - ok
18:46:38.0928 3672 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
18:46:38.0928 3672 C:\Windows\System32\radardt.dll - ok
18:46:38.0928 3672 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
18:46:38.0928 3672 C:\Windows\System32\netprofm.dll - ok
18:46:38.0928 3672 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
18:46:38.0928 3672 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
18:46:38.0944 3672 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
18:46:38.0944 3672 C:\Windows\System32\wlansvc.dll - ok
18:46:38.0944 3672 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
18:46:38.0944 3672 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
18:46:38.0944 3672 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
18:46:38.0944 3672 C:\Windows\System32\drivers\fltMgr.sys - ok
18:46:38.0960 3672 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
18:46:38.0960 3672 C:\Windows\System32\PSHED.DLL - ok
18:46:38.0960 3672 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
18:46:38.0960 3672 C:\Windows\System32\MPSSVC.dll - ok
18:46:38.0960 3672 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
18:46:38.0960 3672 C:\Windows\System32\winbrand.dll - ok
18:46:38.0960 3672 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
18:46:38.0960 3672 C:\Windows\System32\VaultCredProvider.dll - ok
18:46:38.0975 3672 [ 49A5E5CC9662904AFD047E6E578C56C7 ] C:\Windows\System32\imagereog.dll
18:46:38.0975 3672 C:\Windows\System32\imagereog.dll - ok
18:46:38.0975 3672 [ BA8F29A31D99D6B2C5A3C2516B5F9592 ] C:\Windows\System32\Apblend64.dll
18:46:38.0975 3672 C:\Windows\System32\Apblend64.dll - ok
18:46:38.0975 3672 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
18:46:38.0975 3672 C:\Windows\System32\oleacc.dll - ok
18:46:38.0991 3672 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
18:46:38.0991 3672 C:\Windows\System32\netapi32.dll - ok
18:46:38.0991 3672 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
18:46:38.0991 3672 C:\Windows\System32\netutils.dll - ok
18:46:38.0991 3672 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
18:46:38.0991 3672 C:\Windows\System32\wkscli.dll - ok
18:46:38.0991 3672 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
18:46:38.0991 3672 C:\Windows\System32\samcli.dll - ok
18:46:39.0006 3672 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
18:46:39.0006 3672 C:\Windows\System32\winspool.drv - ok
18:46:39.0006 3672 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
18:46:39.0006 3672 C:\Windows\System32\UXInit.dll - ok
18:46:39.0006 3672 [ ACB5BD75F5A6A6AD2B72DF1751A25896 ] C:\Windows\System32\atieclxx.exe
18:46:39.0006 3672 C:\Windows\System32\atieclxx.exe - ok
18:46:39.0022 3672 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
18:46:39.0022 3672 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
18:46:39.0022 3672 [ 7A7869363C680044DA2ECEB3AE19BAC4 ] C:\Windows\System32\atiadlxx.dll
18:46:39.0022 3672 C:\Windows\System32\atiadlxx.dll - ok
18:46:39.0022 3672 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
18:46:39.0022 3672 C:\Windows\System32\BioCredProv.dll - ok
18:46:39.0038 3672 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
18:46:39.0038 3672 C:\Windows\System32\winbio.dll - ok
18:46:39.0038 3672 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
18:46:39.0038 3672 C:\Windows\System32\credui.dll - ok
18:46:39.0038 3672 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
18:46:39.0038 3672 C:\Windows\System32\vaultcli.dll - ok
18:46:39.0038 3672 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
18:46:39.0038 3672 C:\Windows\System32\uxsms.dll - ok
18:46:39.0053 3672 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
18:46:39.0053 3672 C:\Windows\System32\WUDFPlatform.dll - ok
18:46:39.0053 3672 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
18:46:39.0053 3672 C:\Windows\System32\WUDFSvc.dll - ok
18:46:39.0053 3672 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
18:46:39.0053 3672 C:\Windows\System32\drivers\lltdio.sys - ok
18:46:39.0069 3672 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
18:46:39.0069 3672 C:\Windows\System32\certCredProvider.dll - ok
18:46:39.0069 3672 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
18:46:39.0069 3672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
18:46:39.0069 3672 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
18:46:39.0069 3672 C:\Windows\System32\rasplap.dll - ok
18:46:39.0084 3672 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
18:46:39.0084 3672 C:\Windows\System32\rasapi32.dll - ok
18:46:39.0084 3672 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
18:46:39.0084 3672 C:\Windows\System32\rasman.dll - ok
18:46:39.0084 3672 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
18:46:39.0084 3672 C:\Windows\System32\rtutils.dll - ok
18:46:39.0084 3672 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
18:46:39.0084 3672 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
18:46:39.0100 3672 [ 9B7C4A267050F70F5E3A6895DA090351 ] C:\Windows\System32\atimuixx.dll
18:46:39.0100 3672 C:\Windows\System32\atimuixx.dll - ok
18:46:39.0100 3672 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
18:46:39.0100 3672 C:\Windows\System32\drivers\nwifi.sys - ok
18:46:39.0100 3672 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
18:46:39.0100 3672 C:\Windows\System32\drivers\ndisuio.sys - ok
18:46:39.0116 3672 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
18:46:39.0116 3672 C:\Windows\System32\drivers\rspndr.sys - ok
18:46:39.0116 3672 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
18:46:39.0116 3672 C:\Windows\System32\IPHLPAPI.DLL - ok
18:46:39.0116 3672 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
18:46:39.0116 3672 C:\Windows\System32\lmhsvc.dll - ok
18:46:39.0131 3672 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
18:46:39.0131 3672 C:\Windows\System32\nsisvc.dll - ok
18:46:39.0131 3672 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
18:46:39.0131 3672 C:\Windows\System32\dnsrslvr.dll - ok
18:46:39.0131 3672 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
18:46:39.0131 3672 C:\Windows\System32\keyiso.dll - ok
18:46:39.0131 3672 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
18:46:39.0131 3672 C:\Windows\System32\eapsvc.dll - ok
18:46:39.0147 3672 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
18:46:39.0147 3672 C:\Windows\System32\FWPUCLNT.DLL - ok
18:46:39.0147 3672 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
18:46:39.0147 3672 C:\Windows\System32\winnsi.dll - ok
18:46:39.0147 3672 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
18:46:39.0147 3672 C:\Windows\System32\dhcpcore.dll - ok
18:46:39.0162 3672 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
18:46:39.0162 3672 C:\Windows\System32\nrpsrv.dll - ok
18:46:39.0162 3672 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
18:46:39.0162 3672 C:\Windows\System32\dhcpcore6.dll - ok
18:46:39.0162 3672 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
18:46:39.0162 3672 C:\Windows\System32\dhcpcsvc.dll - ok
18:46:39.0178 3672 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
18:46:39.0178 3672 C:\Windows\System32\dnsext.dll - ok
18:46:39.0178 3672 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
18:46:39.0178 3672 C:\Windows\System32\dhcpcsvc6.dll - ok
18:46:39.0178 3672 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
18:46:39.0178 3672 C:\Windows\System32\eapphost.dll - ok
18:46:39.0178 3672 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
18:46:39.0178 3672 C:\Windows\System32\umb.dll - ok
18:46:39.0194 3672 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
18:46:39.0194 3672 C:\Windows\System32\wlanmsm.dll - ok
18:46:39.0194 3672 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
18:46:39.0194 3672 C:\Windows\System32\wlansec.dll - ok
18:46:39.0194 3672 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
18:46:39.0194 3672 C:\Windows\System32\onex.dll - ok
18:46:39.0209 3672 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
18:46:39.0209 3672 C:\Windows\System32\eappprxy.dll - ok
18:46:39.0209 3672 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
18:46:39.0209 3672 C:\Windows\System32\eappcfg.dll - ok
18:46:39.0209 3672 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
18:46:39.0209 3672 C:\Windows\System32\l2gpstore.dll - ok
18:46:39.0225 3672 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
18:46:39.0225 3672 C:\Windows\System32\wlgpclnt.dll - ok
18:46:39.0225 3672 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
18:46:39.0225 3672 C:\Windows\System32\wlanutil.dll - ok
18:46:39.0225 3672 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
18:46:39.0225 3672 C:\Windows\System32\WinSCard.dll - ok
18:46:39.0225 3672 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
18:46:39.0225 3672 C:\Windows\System32\msxml6.dll - ok
18:46:39.0240 3672 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
18:46:39.0240 3672 C:\Windows\System32\wlanext.exe - ok
18:46:39.0240 3672 [ 402B44B31C7183FCF2C4E1083AF317FA ] C:\Windows\System32\conhost.exe
18:46:39.0240 3672 C:\Windows\System32\conhost.exe - ok
18:46:39.0240 3672 [ 95CAE3D82E682CB56BF6F02D281C4E08 ] C:\Windows\System32\bcmihvsrv64.dll
18:46:39.0240 3672 C:\Windows\System32\bcmihvsrv64.dll - ok
18:46:39.0256 3672 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
18:46:39.0256 3672 C:\Windows\System32\imageres.dll - ok
18:46:39.0256 3672 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
18:46:39.0256 3672 C:\Windows\System32\shsvcs.dll - ok
18:46:39.0256 3672 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
18:46:39.0256 3672 C:\Windows\System32\wlanapi.dll - ok
18:46:39.0256 3672 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
18:46:39.0256 3672 C:\Windows\System32\schedsvc.dll - ok
18:46:39.0272 3672 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
18:46:39.0272 3672 C:\Windows\System32\ktmw32.dll - ok
18:46:39.0272 3672 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
18:46:39.0272 3672 C:\Windows\System32\fveapi.dll - ok
18:46:39.0272 3672 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
18:46:39.0272 3672 C:\Windows\System32\netcfgx.dll - ok
18:46:39.0287 3672 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
18:46:39.0287 3672 C:\Windows\System32\tbs.dll - ok
18:46:39.0287 3672 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
18:46:39.0287 3672 C:\Windows\System32\fvecerts.dll - ok
18:46:39.0287 3672 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
18:46:39.0287 3672 C:\Windows\System32\taskcomp.dll - ok
18:46:39.0303 3672 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
18:46:39.0303 3672 C:\Windows\System32\wiarpc.dll - ok
18:46:39.0303 3672 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
18:46:39.0303 3672 C:\Windows\System32\drivers\http.sys - ok
18:46:39.0303 3672 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
18:46:39.0303 3672 C:\Windows\System32\spoolsv.exe - ok
18:46:39.0303 3672 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
18:46:39.0303 3672 C:\Windows\System32\BFE.DLL - ok
18:46:39.0318 3672 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
18:46:39.0318 3672 C:\Windows\System32\drivers\bowser.sys - ok
18:46:39.0318 3672 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
18:46:39.0318 3672 C:\Windows\System32\drivers\mpsdrv.sys - ok
18:46:39.0318 3672 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
18:46:39.0318 3672 C:\Windows\System32\drivers\mrxsmb.sys - ok
18:46:39.0334 3672 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
18:46:39.0334 3672 C:\Windows\System32\drivers\mrxsmb10.sys - ok
18:46:39.0334 3672 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
18:46:39.0334 3672 C:\Windows\System32\drivers\mrxsmb20.sys - ok
18:46:39.0334 3672 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
18:46:39.0334 3672 C:\Windows\System32\wkssvc.dll - ok
18:46:39.0350 3672 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
18:46:39.0350 3672 C:\Windows\System32\wfapigp.dll - ok
18:46:39.0350 3672 [ A2494901E7226B356B8C1005C45F1C5F ] C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE
18:46:39.0350 3672 C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.EXE - ok
18:46:39.0350 3672 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
18:46:39.0350 3672 C:\Windows\SysWOW64\ntdll.dll - ok
18:46:39.0365 3672 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
18:46:39.0365 3672 C:\Windows\System32\mscms.dll - ok
18:46:39.0365 3672 [ D29902687A6110FE637F87189C6A3FB5 ] C:\Windows\System32\wow64.dll
18:46:39.0365 3672 C:\Windows\System32\wow64.dll - ok
18:46:39.0365 3672 [ CFBE90EF20EE550F4A6B74CED16DAFCA ] C:\Windows\System32\wow64win.dll
18:46:39.0365 3672 C:\Windows\System32\wow64win.dll - ok
18:46:39.0365 3672 [ E9EEC159B08BFDD76FAD2C1C333223B3 ] C:\Windows\System32\wow64cpu.dll
18:46:39.0365 3672 C:\Windows\System32\wow64cpu.dll - ok
18:46:39.0381 3672 [ 9B98D47916EAD4F69EF51B56B0C2323C ] C:\Windows\SysWOW64\kernel32.dll
18:46:39.0381 3672 C:\Windows\SysWOW64\kernel32.dll - ok
18:46:39.0381 3672 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
18:46:39.0381 3672 C:\Windows\System32\pcasvc.dll - ok
18:46:39.0381 3672 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
18:46:39.0381 3672 C:\Windows\System32\snmptrap.exe - ok
18:46:39.0396 3672 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
18:46:39.0396 3672 C:\Windows\SysWOW64\advapi32.dll - ok
18:46:39.0396 3672 [ 53BB811ED12D2C867B354390FABF9612 ] C:\Windows\SysWOW64\KernelBase.dll
18:46:39.0396 3672 C:\Windows\SysWOW64\KernelBase.dll - ok
18:46:39.0396 3672 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
18:46:39.0396 3672 C:\Windows\SysWOW64\msvcrt.dll - ok
18:46:39.0412 3672 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
18:46:39.0412 3672 C:\Windows\SysWOW64\rpcrt4.dll - ok
18:46:39.0412 3672 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
18:46:39.0412 3672 C:\Windows\SysWOW64\sechost.dll - ok
18:46:39.0412 3672 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
18:46:39.0412 3672 C:\Windows\SysWOW64\cryptbase.dll - ok
18:46:39.0412 3672 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
18:46:39.0412 3672 C:\Windows\SysWOW64\sspicli.dll - ok
18:46:39.0428 3672 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
18:46:39.0428 3672 C:\Windows\SysWOW64\user32.dll - ok
18:46:39.0428 3672 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
18:46:39.0428 3672 C:\Windows\SysWOW64\gdi32.dll - ok
18:46:39.0428 3672 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
18:46:39.0428 3672 C:\Windows\SysWOW64\lpk.dll - ok
18:46:39.0443 3672 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
18:46:39.0443 3672 C:\Windows\SysWOW64\usp10.dll - ok
18:46:39.0443 3672 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
18:46:39.0443 3672 C:\Windows\SysWOW64\ole32.dll - ok
18:46:39.0443 3672 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
18:46:39.0443 3672 C:\Windows\SysWOW64\oleaut32.dll - ok
18:46:39.0459 3672 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
18:46:39.0459 3672 C:\Windows\SysWOW64\shell32.dll - ok
18:46:39.0459 3672 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
18:46:39.0459 3672 C:\Windows\SysWOW64\shlwapi.dll - ok
18:46:39.0459 3672 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
18:46:39.0459 3672 C:\Windows\SysWOW64\msi.dll - ok
18:46:39.0459 3672 [ 9CB0D2A9A77D91D9614355EE9FF00519 ] C:\Windows\SysWOW64\wininet.dll
18:46:39.0459 3672 C:\Windows\SysWOW64\wininet.dll - ok
18:46:39.0474 3672 [ 3178C47DB9F1615E5334029607BD3459 ] C:\Windows\SysWOW64\iertutil.dll
18:46:39.0474 3672 C:\Windows\SysWOW64\iertutil.dll - ok
18:46:39.0474 3672 [ FC4EE980C3BD87D35816EC55007E00B5 ] C:\Windows\SysWOW64\urlmon.dll
18:46:39.0474 3672 C:\Windows\SysWOW64\urlmon.dll - ok
18:46:39.0474 3672 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
18:46:39.0474 3672 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
18:46:39.0490 3672 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
18:46:39.0490 3672 C:\Windows\SysWOW64\nsi.dll - ok
18:46:39.0490 3672 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
18:46:39.0490 3672 C:\Windows\SysWOW64\version.dll - ok
18:46:39.0490 3672 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
18:46:39.0490 3672 C:\Windows\SysWOW64\winnsi.dll - ok
18:46:39.0506 3672 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
18:46:39.0506 3672 C:\Windows\SysWOW64\ws2_32.dll - ok
18:46:39.0506 3672 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
18:46:39.0506 3672 C:\Windows\SysWOW64\crypt32.dll - ok
18:46:39.0506 3672 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
18:46:39.0506 3672 C:\Windows\SysWOW64\imm32.dll - ok
18:46:39.0506 3672 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
18:46:39.0506 3672 C:\Windows\SysWOW64\msasn1.dll - ok
18:46:39.0521 3672 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
18:46:39.0521 3672 C:\Windows\SysWOW64\SensApi.dll - ok
18:46:39.0521 3672 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
18:46:39.0521 3672 C:\Windows\SysWOW64\msctf.dll - ok
18:46:39.0521 3672 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
18:46:39.0521 3672 C:\Windows\System32\cryptsvc.dll - ok
18:46:39.0537 3672 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
18:46:39.0537 3672 C:\Windows\System32\dps.dll - ok
18:46:39.0537 3672 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
18:46:39.0537 3672 C:\Windows\SysWOW64\clbcatq.dll - ok
18:46:39.0537 3672 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
18:46:39.0537 3672 C:\Windows\System32\taskschd.dll - ok
18:46:39.0537 3672 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
18:46:39.0537 3672 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
18:46:39.0552 3672 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
18:46:39.0552 3672 C:\Windows\System32\provsvc.dll - ok
18:46:39.0552 3672 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
18:46:39.0552 3672 C:\Windows\System32\sstpsvc.dll - ok
18:46:39.0552 3672 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
18:46:39.0552 3672 C:\Windows\SysWOW64\cryptsp.dll - ok
18:46:39.0568 3672 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
18:46:39.0568 3672 C:\Windows\System32\cryptnet.dll - ok
18:46:39.0568 3672 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
18:46:39.0568 3672 C:\Windows\SysWOW64\rsaenh.dll - ok
18:46:39.0568 3672 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
18:46:39.0568 3672 C:\Windows\System32\vssapi.dll - ok
18:46:39.0584 3672 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
18:46:39.0584 3672 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
18:46:39.0584 3672 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
18:46:39.0584 3672 C:\Windows\System32\vsstrace.dll - ok
18:46:39.0584 3672 [ 848BB54F18819EC6D7B255B38697E239 ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
18:46:39.0584 3672 C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe - ok
18:46:39.0599 3672 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
18:46:39.0599 3672 C:\Windows\System32\IKEEXT.DLL - ok
18:46:39.0599 3672 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
18:46:39.0599 3672 C:\Windows\System32\netman.dll - ok
18:46:39.0599 3672 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
18:46:39.0599 3672 C:\Windows\System32\nlasvc.dll - ok
18:46:39.0599 3672 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
18:46:39.0599 3672 C:\Windows\System32\vpnikeapi.dll - ok
18:46:39.0615 3672 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
18:46:39.0615 3672 C:\Windows\System32\sfc.dll - ok
18:46:39.0615 3672 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
18:46:39.0615 3672 C:\Windows\System32\sfc_os.dll - ok
18:46:39.0615 3672 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
18:46:39.0615 3672 C:\Windows\System32\mpr.dll - ok
18:46:39.0630 3672 [ 6BA3AA852ED9CC6F25B7277B2DA205EB ] C:\Program Files (x86)\Lenovo\VeriFace\VerifyHost.exe
18:46:39.0630 3672 C:\Program Files (x86)\Lenovo\VeriFace\VerifyHost.exe - ok
18:46:39.0630 3672 [ 5ED3EC7EC6D21170119429C83EFBB2D8 ] C:\Program Files (x86)\Lenovo\VeriFace\FaceVerify2.dll
18:46:39.0630 3672 C:\Program Files (x86)\Lenovo\VeriFace\FaceVerify2.dll - ok
18:46:39.0630 3672 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
18:46:39.0630 3672 C:\Windows\System32\ncsi.dll - ok
18:46:39.0646 3672 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
18:46:39.0646 3672 C:\Windows\System32\aepic.dll - ok
18:46:39.0646 3672 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
18:46:39.0646 3672 C:\Windows\System32\drivers\PEAuth.sys - ok
18:46:39.0646 3672 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
18:46:39.0646 3672 C:\Windows\System32\drivers\secdrv.sys - ok
18:46:39.0646 3672 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
18:46:39.0646 3672 C:\Windows\System32\seclogon.dll - ok
18:46:39.0662 3672 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
18:46:39.0662 3672 C:\Windows\System32\drivers\srvnet.sys - ok
18:46:39.0662 3672 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
18:46:39.0662 3672 C:\Windows\System32\httpapi.dll - ok
18:46:39.0662 3672 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
18:46:39.0662 3672 C:\Windows\System32\sysmain.dll - ok
18:46:39.0677 3672 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
18:46:39.0677 3672 C:\Windows\System32\webio.dll - ok
18:46:39.0677 3672 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
18:46:39.0677 3672 C:\Windows\System32\winhttp.dll - ok
18:46:39.0677 3672 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
18:46:39.0677 3672 C:\Windows\System32\tapisrv.dll - ok
18:46:39.0693 3672 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
18:46:39.0693 3672 C:\Windows\System32\ssdpapi.dll - ok
18:46:39.0693 3672 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
18:46:39.0693 3672 C:\Windows\System32\drivers\tcpipreg.sys - ok
18:46:39.0693 3672 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
18:46:39.0693 3672 C:\Windows\System32\trkwks.dll - ok
18:46:39.0693 3672 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
18:46:39.0693 3672 C:\Windows\System32\wbem\WMIsvc.dll - ok
18:46:39.0708 3672 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
18:46:39.0708 3672 C:\Program Files\Windows Defender\MpSvc.dll - ok
18:46:39.0708 3672 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
18:46:39.0708 3672 C:\Program Files\Windows Defender\MpClient.dll - ok
18:46:39.0708 3672 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
18:46:39.0708 3672 C:\Windows\System32\esent.dll - ok
18:46:39.0724 3672 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
18:46:39.0724 3672 C:\Windows\System32\wbemcomn.dll - ok
18:46:39.0724 3672 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
18:46:39.0724 3672 C:\Windows\System32\aeevts.dll - ok
18:46:39.0724 3672 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:46:39.0724 3672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
18:46:39.0740 3672 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
18:46:39.0740 3672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
18:46:39.0740 3672 [ 637982A421D0133DCEAA0D1490D1DC9C ] C:\Windows\System32\netsh.exe
18:46:39.0740 3672 C:\Windows\System32\netsh.exe - ok
18:46:39.0740 3672 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
18:46:39.0740 3672 C:\Windows\System32\rasadhlp.dll - ok
18:46:39.0755 3672 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
18:46:39.0755 3672 C:\Windows\System32\wbem\WinMgmtR.dll - ok
18:46:39.0755 3672 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
18:46:39.0755 3672 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
18:46:39.0755 3672 [ 40E1F127557EFC86882581C55108D4AE ] C:\Windows\System32\rasmontr.dll
18:46:39.0755 3672 C:\Windows\System32\rasmontr.dll - ok
18:46:39.0755 3672 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
18:46:39.0755 3672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
18:46:39.0771 3672 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
18:46:39.0771 3672 C:\Windows\System32\SensApi.dll - ok
18:46:39.0771 3672 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
18:46:39.0771 3672 C:\Program Files\Windows Defender\MpRTP.dll - ok
18:46:39.0771 3672 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
18:46:39.0771 3672 C:\Windows\System32\wer.dll - ok
18:46:39.0786 3672 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
18:46:39.0786 3672 C:\Windows\System32\iphlpsvc.dll - ok
18:46:39.0786 3672 [ E2102B5AC1303C2E045B926B9C745F6F ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
18:46:39.0786 3672 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
18:46:39.0786 3672 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
18:46:39.0786 3672 C:\Windows\System32\mprapi.dll - ok
18:46:39.0786 3672 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
18:46:39.0786 3672 C:\Windows\System32\mfc42u.dll - ok
18:46:39.0802 3672 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
18:46:39.0802 3672 C:\Windows\System32\drivers\srv2.sys - ok
18:46:39.0802 3672 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
18:46:39.0802 3672 C:\Windows\System32\odbc32.dll - ok
18:46:39.0802 3672 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
18:46:39.0802 3672 C:\Windows\System32\odbcint.dll - ok
18:46:39.0818 3672 [ 47F29A09E01B5D01866E2061FCFF766F ] C:\Windows\System32\nshwfp.dll
18:46:39.0818 3672 C:\Windows\System32\nshwfp.dll - ok
18:46:39.0818 3672 [ FA753FAB0B93E3427C1EB722E876501E ] C:\Windows\System32\dhcpcmonitor.dll
18:46:39.0818 3672 C:\Windows\System32\dhcpcmonitor.dll - ok
18:46:39.0818 3672 [ CB06D9EDB2A0C225C25A3B33BEDF4DD7 ] C:\Windows\System32\DHCPQEC.DLL
18:46:39.0818 3672 C:\Windows\System32\DHCPQEC.DLL - ok
18:46:39.0833 3672 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
18:46:39.0833 3672 C:\Windows\System32\QUTIL.DLL - ok
18:46:39.0833 3672 [ EFFA3C1731775272F074F3FF257020FC ] C:\Windows\System32\fwcfg.dll
18:46:39.0833 3672 C:\Windows\System32\fwcfg.dll - ok
18:46:39.0833 3672 [ FA4D595B2C5B2E54E8A49A82CFFAB155 ] C:\Windows\System32\nshhttp.dll
18:46:39.0833 3672 C:\Windows\System32\nshhttp.dll - ok
18:46:39.0849 3672 [ 8396C6C26AADDFE4590CCEF0F419B6B7 ] C:\Windows\System32\ws2help.dll
18:46:39.0849 3672 C:\Windows\System32\ws2help.dll - ok
18:46:39.0849 3672 [ D314DA4B0B8DCD023D547FC568E34FB6 ] C:\Windows\System32\wshelper.dll
18:46:39.0849 3672 C:\Windows\System32\wshelper.dll - ok
18:46:39.0849 3672 [ 55F1C5EFF3D81EE93B0691FFC610BCF2 ] C:\Windows\System32\authfwcfg.dll
18:46:39.0849 3672 C:\Windows\System32\authfwcfg.dll - ok
18:46:39.0849 3672 [ FA4C81DC1E0B5D5F0BD5CB1C78659CAA ] C:\Windows\System32\winipsec.dll
18:46:39.0849 3672 C:\Windows\System32\winipsec.dll - ok
18:46:39.0864 3672 [ 2553AF518536B2E365A814730EB93E0A ] C:\Windows\System32\ifmon.dll
18:46:39.0864 3672 C:\Windows\System32\ifmon.dll - ok
18:46:39.0864 3672 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
18:46:39.0864 3672 C:\Windows\System32\nci.dll - ok
18:46:39.0864 3672 [ 0FE14E3B3C0DAA77DFB5B60E1D274D6F ] C:\Windows\System32\netiohlp.dll
18:46:39.0864 3672 C:\Windows\System32\netiohlp.dll - ok
18:46:39.0880 3672 [ 840B884B2071186C0D354F3A7F4E4D56 ] C:\Windows\System32\hnetmon.dll
18:46:39.0880 3672 C:\Windows\System32\hnetmon.dll - ok
18:46:39.0880 3672 [ 110A8C1EA034CE155CC99F083B2415CA ] C:\Windows\System32\whhelper.dll
18:46:39.0880 3672 C:\Windows\System32\whhelper.dll - ok
18:46:39.0880 3672 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
18:46:39.0880 3672 C:\Windows\System32\netshell.dll - ok
18:46:39.0896 3672 [ 18AAD5A845EEC8A0555582ED6A8B061F ] C:\Windows\System32\rpcnsh.dll
18:46:39.0896 3672 C:\Windows\System32\rpcnsh.dll - ok
18:46:39.0896 3672 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
18:46:39.0896 3672 C:\Windows\System32\dot3api.dll - ok
18:46:39.0896 3672 [ 7A09F960C73A63D68293EFDFD843A5FF ] C:\Windows\System32\dot3cfg.dll
18:46:39.0896 3672 C:\Windows\System32\dot3cfg.dll - ok
18:46:39.0896 3672 [ A68E038D88A255B24F78AE47B944C7AF ] C:\Windows\System32\NAPMONTR.DLL
18:46:39.0896 3672 C:\Windows\System32\NAPMONTR.DLL - ok
18:46:39.0911 3672 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
18:46:39.0911 3672 C:\Windows\System32\certcli.dll - ok
18:46:39.0911 3672 [ 97BA1A7979EB66F4E8E95270854DFBDC ] C:\Windows\System32\nshipsec.dll
18:46:39.0911 3672 C:\Windows\System32\nshipsec.dll - ok
18:46:39.0911 3672 [ 011F0B067E47612F57C4ECE377D9C9DF ] C:\Windows\System32\activeds.dll
18:46:39.0911 3672 C:\Windows\System32\activeds.dll - ok
18:46:39.0927 3672 [ 05F620B4B2E7DEB9409C0C6A4FEDD2A4 ] C:\Windows\System32\adsldpc.dll
18:46:39.0927 3672 C:\Windows\System32\adsldpc.dll - ok
18:46:39.0927 3672 [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650 ] C:\Windows\System32\polstore.dll
18:46:39.0927 3672 C:\Windows\System32\polstore.dll - ok
18:46:39.0927 3672 [ 6D672FE62DF8B2A6626F128C1ABAB4F8 ] C:\Windows\System32\nettrace.dll
18:46:39.0927 3672 C:\Windows\System32\nettrace.dll - ok
18:46:39.0942 3672 [ 18D4729031314F8C217CDFCC599EF4E4 ] C:\Windows\System32\ndfapi.dll
18:46:39.0942 3672 C:\Windows\System32\ndfapi.dll - ok
18:46:39.0942 3672 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
18:46:39.0942 3672 C:\Windows\System32\wdi.dll - ok
18:46:39.0942 3672 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
18:46:39.0942 3672 C:\Windows\System32\tdh.dll - ok
18:46:39.0942 3672 [ DB991B869472AF2A3BB97460BBA59AA3 ] C:\Windows\System32\WcnNetsh.dll
18:46:39.0942 3672 C:\Windows\System32\WcnNetsh.dll - ok
18:46:39.0958 3672 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
18:46:39.0958 3672 C:\Windows\System32\P2P.dll - ok
18:46:39.0958 3672 [ 01A9E95A520247E110AFBDF2ACBC6AE8 ] C:\Windows\System32\p2pnetsh.dll
18:46:39.0958 3672 C:\Windows\System32\p2pnetsh.dll - ok
18:46:39.0958 3672 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
18:46:39.0958 3672 C:\Windows\System32\p2pcollab.dll - ok
18:46:39.0974 3672 [ E5AC79743E58A973CB0A140CDD1B3DC0 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{59FEDBD2-DFE0-4711-BE2B-9F31D09C9FBE}\mpengine.dll
18:46:39.0974 3672 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{59FEDBD2-DFE0-4711-BE2B-9F31D09C9FBE}\mpengine.dll - ok
18:46:39.0974 3672 [ 66ADDF8355C54BC22462EC5F39B4C4FB ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{59FEDBD2-DFE0-4711-BE2B-9F31D09C9FBE}\mpasbase.vdm
18:46:39.0974 3672 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{59FEDBD2-DFE0-4711-BE2B-9F31D09C9FBE}\mpasbase.vdm - ok
18:46:39.0974 3672 [ EC7C148D2C31F93DD3CFCA3F54870033 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{59FEDBD2-DFE0-4711-BE2B-9F31D09C9FBE}\mpasdlta.vdm
18:46:39.0974 3672 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{59FEDBD2-DFE0-4711-BE2B-9F31D09C9FBE}\mpasdlta.vdm - ok
18:46:39.0989 3672 [ DFE67CB5060D6B4E950646ABDBB0C9C4 ] C:\Windows\System32\wlancfg.dll
18:46:39.0989 3672 C:\Windows\System32\wlancfg.dll - ok
18:46:39.0989 3672 [ D63A0FF194BF6BEC0E2776B550B3691B ] C:\Windows\System32\wwancfg.dll
18:46:39.0989 3672 C:\Windows\System32\wwancfg.dll - ok
18:46:39.0989 3672 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
18:46:39.0989 3672 C:\Windows\System32\wwapi.dll - ok
18:46:40.0005 3672 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
18:46:40.0005 3672 C:\Windows\System32\msxml3.dll - ok
18:46:40.0005 3672 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
18:46:40.0005 3672 C:\Windows\System32\QAGENT.DLL - ok
18:46:40.0005 3672 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
18:46:40.0005 3672 C:\Windows\System32\wlanhlp.dll - ok
18:46:40.0005 3672 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
18:46:40.0005 3672 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
18:46:40.0020 3672 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
18:46:40.0020 3672 C:\Windows\System32\sqmapi.dll - ok
18:46:40.0020 3672 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
18:46:40.0020 3672 C:\Windows\System32\drivers\srv.sys - ok
18:46:40.0020 3672 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
18:46:40.0020 3672 C:\Windows\System32\wbem\fastprox.dll - ok
18:46:40.0036 3672 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
18:46:40.0036 3672 C:\Windows\System32\ntdsapi.dll - ok
18:46:40.0036 3672 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
18:46:40.0036 3672 C:\Windows\System32\wbem\wbemprox.dll - ok
18:46:40.0036 3672 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
18:46:40.0036 3672 C:\Program Files\Windows Defender\MsMpLics.dll - ok
18:46:40.0052 3672 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
18:46:40.0052 3672 C:\Windows\System32\wscapi.dll - ok
18:46:40.0052 3672 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
18:46:40.0052 3672 C:\Windows\System32\wscisvif.dll - ok
18:46:40.0052 3672 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
18:46:40.0052 3672 C:\Windows\System32\wscproxystub.dll - ok
18:46:40.0052 3672 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
18:46:40.0052 3672 C:\Windows\System32\wdscore.dll - ok
18:46:40.0067 3672 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
18:46:40.0067 3672 C:\Windows\System32\rasmans.dll - ok
18:46:40.0067 3672 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
18:46:40.0067 3672 C:\Windows\System32\rastapi.dll - ok
18:46:40.0067 3672 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
18:46:40.0067 3672 C:\Windows\System32\tapi32.dll - ok
18:46:40.0083 3672 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
18:46:40.0083 3672 C:\Windows\System32\srvsvc.dll - ok
18:46:40.0083 3672 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
18:46:40.0083 3672 C:\Windows\System32\browser.dll - ok
18:46:40.0083 3672 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
18:46:40.0083 3672 C:\Windows\System32\netmsg.dll - ok
18:46:40.0098 3672 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
18:46:40.0098 3672 C:\Windows\System32\unimdm.tsp - ok
18:46:40.0098 3672 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
18:46:40.0098 3672 C:\Windows\System32\hidphone.tsp - ok
18:46:40.0098 3672 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
18:46:40.0098 3672 C:\Windows\System32\kmddsp.tsp - ok
18:46:40.0098 3672 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
18:46:40.0098 3672 C:\Windows\System32\ndptsp.tsp - ok
18:46:40.0114 3672 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
18:46:40.0114 3672 C:\Windows\System32\uniplat.dll - ok
18:46:40.0114 3672 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
18:46:40.0114 3672 C:\Windows\System32\winmm.dll - ok
18:46:40.0114 3672 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
18:46:40.0114 3672 C:\Windows\System32\dllhost.exe - ok
18:46:40.0130 3672 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
18:46:40.0130 3672 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
18:46:40.0130 3672 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
18:46:40.0130 3672 C:\Windows\System32\sscore.dll - ok
18:46:40.0130 3672 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
18:46:40.0130 3672 C:\Windows\System32\clusapi.dll - ok
18:46:40.0145 3672 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
18:46:40.0145 3672 C:\Windows\System32\resutils.dll - ok
18:46:40.0145 3672 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
18:46:40.0145 3672 C:\Windows\System32\hnetcfg.dll - ok
18:46:40.0145 3672 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
18:46:40.0145 3672 C:\Windows\System32\IDStore.dll - ok
18:46:40.0145 3672 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
18:46:40.0145 3672 C:\Windows\System32\taskhost.exe - ok
18:46:40.0161 3672 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
18:46:40.0161 3672 C:\Windows\System32\wbem\wbemcore.dll - ok
18:46:40.0161 3672 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
18:46:40.0161 3672 C:\Windows\System32\wbem\esscli.dll - ok
18:46:40.0161 3672 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
18:46:40.0161 3672 C:\Windows\System32\rasppp.dll - ok
18:46:40.0176 3672 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
18:46:40.0176 3672 C:\Windows\System32\vpnike.dll - ok
18:46:40.0176 3672 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
18:46:40.0176 3672 C:\Windows\System32\wbem\wbemsvc.dll - ok
18:46:40.0176 3672 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
18:46:40.0176 3672 C:\Windows\System32\PlaySndSrv.dll - ok
18:46:40.0192 3672 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
18:46:40.0192 3672 C:\Windows\System32\wbem\wmiutils.dll - ok
18:46:40.0192 3672 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
18:46:40.0192 3672 C:\Windows\System32\raschap.dll - ok
18:46:40.0192 3672 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
18:46:40.0192 3672 C:\Windows\System32\MsCtfMonitor.dll - ok
18:46:40.0192 3672 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
18:46:40.0208 3672 C:\Windows\System32\userinit.exe - ok
18:46:40.0208 3672 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
18:46:40.0208 3672 C:\Windows\System32\dwm.exe - ok
18:46:40.0208 3672 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
18:46:40.0208 3672 C:\Windows\System32\dwmredir.dll - ok
18:46:40.0208 3672 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
18:46:40.0208 3672 C:\Windows\System32\dwmcore.dll - ok
18:46:40.0223 3672 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
18:46:40.0223 3672 C:\Windows\System32\msutb.dll - ok
18:46:40.0223 3672 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
18:46:40.0223 3672 C:\Windows\System32\wbem\repdrvfs.dll - ok
18:46:40.0223 3672 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
18:46:40.0223 3672 C:\Windows\System32\ipnathlp.dll - ok
18:46:40.0239 3672 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
18:46:40.0239 3672 C:\Windows\System32\taskeng.exe - ok
18:46:40.0239 3672 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
18:46:40.0239 3672 C:\Windows\System32\dssenh.dll - ok
18:46:40.0239 3672 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
18:46:40.0239 3672 C:\Windows\System32\TSChannel.dll - ok
18:46:40.0254 3672 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
18:46:40.0254 3672 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
18:46:40.0254 3672 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
18:46:40.0254 3672 C:\Windows\System32\HotStartUserAgent.dll - ok
18:46:40.0254 3672 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
18:46:40.0254 3672 C:\Windows\System32\d3d10_1.dll - ok
18:46:40.0254 3672 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
18:46:40.0254 3672 C:\Windows\System32\d3d10_1core.dll - ok
18:46:40.0270 3672 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
18:46:40.0270 3672 C:\Windows\System32\dxgi.dll - ok
18:46:40.0270 3672 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
18:46:40.0270 3672 C:\Windows\explorer.exe - ok
18:46:40.0270 3672 [ 3B3878804023C9106799163B898A56FE ] C:\Windows\System32\aticfx64.dll
18:46:40.0270 3672 C:\Windows\System32\aticfx64.dll - ok
18:46:40.0286 3672 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
18:46:40.0286 3672 C:\Windows\System32\ExplorerFrame.dll - ok
18:46:40.0286 3672 [ F73925142FE8EF663DEF25E0C199F3C4 ] C:\Windows\System32\atiuxp64.dll
18:46:40.0286 3672 C:\Windows\System32\atiuxp64.dll - ok
18:46:40.0286 3672 [ AFDAD241C0BC130D715A960BA4BEEA19 ] C:\Windows\System32\atidxx64.dll
18:46:40.0286 3672 C:\Windows\System32\atidxx64.dll - ok
18:46:40.0301 3672 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
18:46:40.0301 3672 C:\Windows\System32\uDWM.dll - ok
18:46:40.0301 3672 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
18:46:40.0301 3672 C:\Windows\System32\EhStorShell.dll - ok
18:46:40.0301 3672 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
18:46:40.0301 3672 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
18:46:40.0301 3672 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
18:46:40.0301 3672 C:\Windows\System32\localspl.dll - ok
18:46:40.0317 3672 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
18:46:40.0317 3672 C:\Windows\System32\ncobjapi.dll - ok
18:46:40.0317 3672 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
18:46:40.0317 3672 C:\Windows\System32\spoolss.dll - ok
18:46:40.0317 3672 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
18:46:40.0317 3672 C:\Windows\System32\wbem\wbemess.dll - ok
18:46:40.0332 3672 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
18:46:40.0332 3672 C:\Windows\System32\hidserv.dll - ok
18:46:40.0332 3672 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
18:46:40.0332 3672 C:\Windows\System32\ntshrui.dll - ok
18:46:40.0332 3672 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
18:46:40.0332 3672 C:\Windows\System32\PrintIsolationProxy.dll - ok
18:46:40.0332 3672 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
18:46:40.0332 3672 C:\Windows\System32\cscapi.dll - ok
18:46:40.0348 3672 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
18:46:40.0348 3672 C:\Windows\System32\diagperf.dll - ok
18:46:40.0348 3672 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
18:46:40.0348 3672 C:\Windows\System32\FXSMON.dll - ok
18:46:40.0348 3672 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
18:46:40.0348 3672 C:\Windows\System32\tcpmon.dll - ok
18:46:40.0364 3672 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
18:46:40.0364 3672 C:\Windows\System32\snmpapi.dll - ok
18:46:40.0364 3672 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:46:40.0364 3672 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
18:46:40.0364 3672 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
18:46:40.0364 3672 C:\Windows\System32\Apphlpdm.dll - ok
18:46:40.0379 3672 [ C3F833FD9A71502BC6C0F3F8F19745F4 ] C:\Windows\System32\IcnOvrly.dll
18:46:40.0379 3672 C:\Windows\System32\IcnOvrly.dll - ok
18:46:40.0379 3672 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
18:46:40.0379 3672 C:\Windows\System32\wpdbusenum.dll - ok
18:46:40.0379 3672 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
18:46:40.0379 3672 C:\Windows\System32\wsnmp32.dll - ok
18:46:40.0379 3672 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
18:46:40.0379 3672 C:\Windows\System32\usbmon.dll - ok
18:46:40.0395 3672 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
18:46:40.0395 3672 C:\Windows\System32\WSDMon.dll - ok
18:46:40.0395 3672 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
18:46:40.0395 3672 C:\Windows\SysWOW64\netapi32.dll - ok
18:46:40.0395 3672 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
18:46:40.0395 3672 C:\Windows\SysWOW64\netutils.dll - ok
18:46:40.0410 3672 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
18:46:40.0410 3672 C:\Windows\SysWOW64\srvcli.dll - ok
18:46:40.0410 3672 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
18:46:40.0410 3672 C:\Windows\SysWOW64\wkscli.dll - ok
18:46:40.0410 3672 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
18:46:40.0410 3672 C:\Windows\SysWOW64\comdlg32.dll - ok
18:46:40.0426 3672 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
18:46:40.0426 3672 C:\Windows\SysWOW64\samcli.dll - ok
18:46:40.0426 3672 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
18:46:40.0426 3672 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
18:46:40.0426 3672 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
18:46:40.0426 3672 C:\Windows\System32\dimsjob.dll - ok
18:46:40.0442 3672 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
18:46:40.0442 3672 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
18:46:40.0442 3672 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
18:46:40.0442 3672 C:\Windows\System32\WSDApi.dll - ok
18:46:40.0442 3672 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
18:46:40.0442 3672 C:\Windows\SysWOW64\imagehlp.dll - ok
18:46:40.0442 3672 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
18:46:40.0442 3672 C:\Windows\SysWOW64\winspool.drv - ok
18:46:40.0457 3672 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
18:46:40.0457 3672 C:\Windows\SysWOW64\wintrust.dll - ok
18:46:40.0457 3672 [ 35C4838C288B68B708F32839065D9288 ] C:\Program Files (x86)\Lenovo\VeriFace\Apblend.dll
18:46:40.0457 3672 C:\Program Files (x86)\Lenovo\VeriFace\Apblend.dll - ok
18:46:40.0457 3672 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
18:46:40.0457 3672 C:\Windows\SysWOW64\cscapi.dll - ok
18:46:40.0473 3672 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
18:46:40.0473 3672 C:\Windows\SysWOW64\ntmarta.dll - ok
18:46:40.0473 3672 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
18:46:40.0473 3672 C:\Windows\SysWOW64\Wldap32.dll - ok
18:46:40.0473 3672 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
18:46:40.0473 3672 C:\Windows\SysWOW64\dbghelp.dll - ok
18:46:40.0488 3672 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
18:46:40.0488 3672 C:\Windows\System32\perftrack.dll - ok
18:46:40.0488 3672 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
18:46:40.0488 3672 C:\Windows\SysWOW64\apphelp.dll - ok
18:46:40.0488 3672 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
18:46:40.0488 3672 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
18:46:40.0504 3672 [ 53214857EFEDD273D8B72571F7F188F5 ] C:\Program Files (x86)\Lenovo\VeriFace\MainOp.dll
18:46:40.0504 3672 C:\Program Files (x86)\Lenovo\VeriFace\MainOp.dll - ok
18:46:40.0504 3672 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
18:46:40.0504 3672 C:\Windows\SysWOW64\psapi.dll - ok
18:46:40.0504 3672 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
18:46:40.0504 3672 C:\Windows\SysWOW64\msvfw32.dll - ok
18:46:40.0504 3672 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
18:46:40.0504 3672 C:\Windows\SysWOW64\winmm.dll - ok
18:46:40.0520 3672 [ 2A63DAFAF83F6324330310993F753E59 ] C:\Program Files (x86)\Lenovo\VeriFace\Momo.dll
18:46:40.0520 3672 C:\Program Files (x86)\Lenovo\VeriFace\Momo.dll - ok
18:46:40.0520 3672 [ 0FAA326194F92B5D47A372A5AC0BA75B ] C:\Program Files (x86)\Lenovo\VeriFace\SetDev.dll
18:46:40.0520 3672 C:\Program Files (x86)\Lenovo\VeriFace\SetDev.dll - ok
18:46:40.0520 3672 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
18:46:40.0520 3672 C:\Windows\SysWOW64\avicap32.dll - ok
18:46:40.0535 3672 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
18:46:40.0535 3672 C:\Windows\SysWOW64\dsound.dll - ok
18:46:40.0535 3672 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
18:46:40.0535 3672 C:\Windows\SysWOW64\powrprof.dll - ok
18:46:40.0535 3672 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
18:46:40.0535 3672 C:\Windows\SysWOW64\setupapi.dll - ok
18:46:40.0551 3672 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
18:46:40.0551 3672 C:\Windows\SysWOW64\cfgmgr32.dll - ok
18:46:40.0551 3672 [ 5B9731C5E44E54831E56AD7D469ED744 ] C:\Program Files (x86)\Lenovo\VeriFace\FunFrm.dll
18:46:40.0551 3672 C:\Program Files (x86)\Lenovo\VeriFace\FunFrm.dll - ok
18:46:40.0551 3672 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
18:46:40.0551 3672 C:\Windows\SysWOW64\devobj.dll - ok
18:46:40.0551 3672 [ 185CEA3699B6E5D8309FEB6FDD15C2F3 ] C:\Program Files (x86)\Lenovo\VeriFace\LangHlpr.dll
18:46:40.0551 3672 C:\Program Files (x86)\Lenovo\VeriFace\LangHlpr.dll - ok
18:46:40.0566 3672 [ AA1F84D9410806BFAA6CFA09FA1D95E1 ] C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
18:46:40.0566 3672 C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll - ok
18:46:40.0566 3672 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
18:46:40.0566 3672 C:\Windows\SysWOW64\oledlg.dll - ok
18:46:40.0566 3672 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
18:46:40.0566 3672 C:\Windows\SysWOW64\uxtheme.dll - ok
18:46:40.0582 3672 [ C9E73EBCD5E38CB6379FAAEA3FBD97BD ] C:\Program Files (x86)\Lenovo\VeriFace\English\Facev.dll
18:46:40.0629 3672 C:\Program Files (x86)\Lenovo\VeriFace\English\Facev.dll - ok
18:46:40.0644 3672 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
18:46:40.0644 3672 C:\Windows\SysWOW64\profapi.dll - ok
18:46:40.0644 3672 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
18:46:40.0644 3672 C:\Windows\SysWOW64\dwmapi.dll - ok
18:46:40.0660 3672 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
18:46:40.0660 3672 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
18:46:40.0660 3672 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
18:46:40.0660 3672 C:\Windows\System32\npmproxy.dll - ok
18:46:40.0676 3672 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
18:46:40.0676 3672 C:\Windows\System32\NapiNSP.dll - ok
18:46:40.0676 3672 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
18:46:40.0676 3672 C:\Windows\System32\pnpts.dll - ok
18:46:40.0691 3672 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
18:46:40.0691 3672 C:\Windows\System32\pnrpnsp.dll - ok
18:46:40.0691 3672 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
18:46:40.0691 3672 C:\Windows\System32\wdiasqmmodule.dll - ok
18:46:40.0691 3672 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
18:46:40.0691 3672 C:\Windows\System32\IPSECSVC.DLL - ok
18:46:40.0707 3672 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
18:46:40.0707 3672 C:\Windows\System32\FwRemoteSvr.dll - ok
18:46:40.0707 3672 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
18:46:40.0707 3672 C:\Windows\System32\PortableDeviceApi.dll - ok
18:46:40.0707 3672 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
18:46:40.0707 3672 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
18:46:40.0707 3672 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
18:46:40.0707 3672 C:\Windows\System32\IconCodecService.dll - ok
18:46:40.0722 3672 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
18:46:40.0722 3672 C:\Windows\System32\appinfo.dll - ok
18:46:40.0722 3672 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
18:46:40.0722 3672 C:\Windows\System32\webservices.dll - ok
18:46:40.0722 3672 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
18:46:40.0722 3672 C:\Windows\System32\fdPnp.dll - ok
18:46:40.0738 3672 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
18:46:40.0738 3672 C:\Windows\System32\fundisc.dll - ok
18:46:40.0738 3672 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
18:46:40.0738 3672 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
18:46:40.0738 3672 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
18:46:40.0738 3672 C:\Windows\System32\win32spl.dll - ok
18:46:40.0754 3672 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
18:46:40.0754 3672 C:\Windows\System32\inetpp.dll - ok
18:46:40.0754 3672 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
18:46:40.0754 3672 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
18:46:40.0754 3672 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
18:46:40.0754 3672 C:\Windows\SysWOW64\mstask.dll - ok
18:46:40.0754 3672 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
18:46:40.0754 3672 C:\Windows\SysWOW64\userenv.dll - ok
18:46:40.0769 3672 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
18:46:40.0769 3672 C:\Windows\System32\dbghelp.dll - ok
18:46:40.0769 3672 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
18:46:40.0769 3672 C:\Windows\System32\runonce.exe - ok
18:46:40.0769 3672 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
18:46:40.0769 3672 C:\Windows\SysWOW64\runonce.exe - ok
18:46:40.0785 3672 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
18:46:40.0785 3672 C:\Windows\SysWOW64\propsys.dll - ok
18:46:40.0785 3672 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
18:46:40.0785 3672 C:\Windows\System32\wshbth.dll - ok
18:46:40.0785 3672 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
18:46:40.0785 3672 C:\Windows\System32\winrnr.dll - ok
18:46:40.0800 3672 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
18:46:40.0800 3672 C:\Windows\SysWOW64\secur32.dll - ok
18:46:40.0800 3672 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
18:46:40.0800 3672 C:\Windows\SysWOW64\cmd.exe - ok
18:46:40.0800 3672 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
18:46:40.0800 3672 C:\Windows\System32\aelupsvc.dll - ok
18:46:40.0816 3672 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
18:46:40.0816 3672 C:\Windows\SysWOW64\winbrand.dll - ok
18:46:40.0816 3672 [ A6B73FCB9496DB101F3066CAF5A7DA4B ] C:\Windows\SysWOW64\ieframe.dll
18:46:40.0816 3672 C:\Windows\SysWOW64\ieframe.dll - ok
18:46:40.0816 3672 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
18:46:40.0816 3672 C:\Windows\SysWOW64\oleacc.dll - ok
18:46:40.0816 3672 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
18:46:40.0816 3672 C:\Windows\SysWOW64\shdocvw.dll - ok
18:46:40.0832 3672 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Computer\AppData\Local\Temp\D9A15A14-84E4-4EC0-8C60-5E29CD2543B6.exe
18:46:40.0832 3672 C:\Users\Computer\AppData\Local\Temp\D9A15A14-84E4-4EC0-8C60-5E29CD2543B6.exe - ok
18:46:40.0832 3672 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
18:46:40.0832 3672 C:\Windows\SysWOW64\ncrypt.dll - ok
18:46:40.0832 3672 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
18:46:40.0832 3672 C:\Windows\SysWOW64\bcrypt.dll - ok
18:46:40.0847 3672 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
18:46:40.0847 3672 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
18:46:40.0847 3672 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
18:46:40.0847 3672 C:\Windows\SysWOW64\gpapi.dll - ok
18:46:40.0847 3672 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
18:46:40.0847 3672 C:\Windows\SysWOW64\cryptnet.dll - ok
18:46:40.0847 3672 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
18:46:40.0847 3672 C:\Windows\System32\ndiscapCfg.dll - ok
18:46:40.0863 3672 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
18:46:40.0863 3672 C:\Windows\System32\rascfg.dll - ok
18:46:40.0863 3672 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
18:46:40.0863 3672 C:\Windows\SysWOW64\EhStorShell.dll - ok
18:46:40.0863 3672 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
18:46:40.0863 3672 C:\Windows\SysWOW64\ntshrui.dll - ok
18:46:40.0878 3672 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
18:46:40.0878 3672 C:\Windows\SysWOW64\slc.dll - ok
18:46:40.0878 3672 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
18:46:40.0878 3672 C:\Windows\SysWOW64\imageres.dll - ok
18:46:40.0878 3672 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
18:46:40.0878 3672 C:\Windows\System32\mprmsg.dll - ok
18:46:40.0894 3672 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
18:46:40.0894 3672 C:\Windows\System32\tcpipcfg.dll - ok
18:46:40.0894 3672 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
18:46:40.0894 3672 C:\Windows\System32\wlaninst.dll - ok
18:46:40.0894 3672 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
18:46:40.0894 3672 C:\Windows\System32\wwaninst.dll - ok
18:46:40.0894 3672 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
18:46:40.0910 3672 C:\Windows\System32\rundll32.exe - ok
18:46:40.0910 3672 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
18:46:40.0910 3672 C:\Windows\System32\actxprxy.dll - ok
18:46:40.0910 3672 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
18:46:40.0910 3672 C:\Windows\System32\spfileq.dll - ok
18:46:40.0910 3672 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
18:46:40.0910 3672 C:\Windows\System32\wbem\NCProv.dll - ok
18:46:40.0925 3672 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:46:40.0925 3672 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
18:46:40.0925 3672 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
18:46:40.0925 3672 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
18:46:40.0925 3672 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
18:46:40.0925 3672 C:\Windows\SysWOW64\mscoree.dll - ok
18:46:40.0941 3672 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:46:40.0941 3672 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
18:46:40.0941 3672 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
18:46:40.0941 3672 C:\Windows\System32\msvcr100_clr0400.dll - ok
18:46:40.0941 3672 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
18:46:40.0941 3672 C:\Windows\System32\mscoree.dll - ok
18:46:40.0956 3672 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
18:46:40.0956 3672 C:\Windows\System32\FDResPub.dll - ok
18:46:40.0956 3672 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] C:\Windows\System32\FntCache.dll
18:46:40.0956 3672 C:\Windows\System32\FntCache.dll - ok
18:46:40.0956 3672 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
18:46:40.0956 3672 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
18:46:40.0956 3672 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
18:46:40.0956 3672 C:\Windows\System32\sppsvc.exe - ok
18:46:40.0956 3672 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
18:46:40.0972 3672 C:\Windows\System32\drivers\spsys.sys - ok
18:46:40.0972 3672 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
18:46:40.0972 3672 C:\Windows\System32\wscsvc.dll - ok
18:46:40.0972 3672 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
18:46:40.0972 3672 C:\Windows\System32\SearchIndexer.exe - ok
18:46:40.0972 3672 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
18:46:40.0972 3672 C:\Windows\System32\wuapi.dll - ok
18:46:40.0988 3672 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
18:46:40.0988 3672 C:\Windows\System32\tquery.dll - ok
18:46:40.0988 3672 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
18:46:40.0988 3672 C:\Windows\System32\cabinet.dll - ok
18:46:40.0988 3672 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
18:46:40.0988 3672 C:\Windows\System32\wups.dll - ok
18:46:40.0988 3672 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
18:46:40.0988 3672 C:\Windows\System32\mssrch.dll - ok
18:46:41.0003 3672 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
18:46:41.0003 3672 C:\Windows\System32\msidle.dll - ok
18:46:41.0003 3672 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
18:46:41.0003 3672 C:\Windows\System32\sppwinob.dll - ok
18:46:41.0003 3672 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
18:46:41.0003 3672 C:\Windows\System32\en-US\tquery.dll.mui - ok
18:46:41.0019 3672 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
18:46:41.0019 3672 C:\Windows\System32\sppobjs.dll - ok
18:46:41.0019 3672 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
18:46:41.0019 3672 C:\Windows\System32\wuaueng.dll - ok
18:46:41.0019 3672 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
18:46:41.0019 3672 C:\Windows\System32\mspatcha.dll - ok
18:46:41.0019 3672 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
18:46:41.0019 3672 C:\Windows\System32\wups2.dll - ok
18:46:41.0034 3672 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
18:46:41.0034 3672 C:\Windows\SysWOW64\sfc.dll - ok
18:46:41.0034 3672 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
18:46:41.0034 3672 C:\Windows\SysWOW64\sfc_os.dll - ok
18:46:41.0034 3672 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
18:46:41.0034 3672 C:\Windows\System32\SearchProtocolHost.exe - ok
18:46:41.0050 3672 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
18:46:41.0050 3672 C:\Windows\SysWOW64\devrtl.dll - ok
18:46:41.0050 3672 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
18:46:41.0050 3672 C:\Windows\System32\msshooks.dll - ok
18:46:41.0050 3672 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
18:46:41.0050 3672 C:\Windows\SysWOW64\mpr.dll - ok
18:46:41.0066 3672 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
18:46:41.0066 3672 C:\Windows\SysWOW64\winhttp.dll - ok
18:46:41.0066 3672 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
18:46:41.0066 3672 C:\Windows\System32\SearchFilterHost.exe - ok
18:46:41.0066 3672 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
18:46:41.0066 3672 C:\Windows\SysWOW64\webio.dll - ok
18:46:41.0081 3672 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
18:46:41.0081 3672 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
18:46:41.0081 3672 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
18:46:41.0081 3672 C:\Windows\System32\ie4uinit.exe - ok
18:46:41.0081 3672 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
18:46:41.0081 3672 C:\Windows\System32\iedkcs32.dll - ok
18:46:41.0081 3672 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
18:46:41.0081 3672 C:\Windows\System32\timedate.cpl - ok
18:46:41.0097 3672 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
18:46:41.0097 3672 C:\Windows\System32\mssprxy.dll - ok
18:46:41.0097 3672 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
18:46:41.0097 3672 C:\Windows\System32\mssph.dll - ok
18:46:41.0097 3672 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
18:46:41.0097 3672 C:\Windows\System32\mapi32.dll - ok
18:46:41.0112 3672 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
18:46:41.0112 3672 C:\Windows\System32\shdocvw.dll - ok
18:46:41.0112 3672 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
18:46:41.0112 3672 C:\Windows\SysWOW64\credssp.dll - ok
18:46:41.0112 3672 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
18:46:41.0112 3672 C:\Windows\SysWOW64\mswsock.dll - ok
18:46:41.0112 3672 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
18:46:41.0112 3672 C:\Windows\SysWOW64\wship6.dll - ok
18:46:41.0128 3672 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
18:46:41.0128 3672 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
18:46:41.0128 3672 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
18:46:41.0128 3672 C:\Windows\System32\linkinfo.dll - ok
18:46:41.0128 3672 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
18:46:41.0128 3672 C:\Windows\SysWOW64\dnsapi.dll - ok
18:46:41.0144 3672 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
18:46:41.0144 3672 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
18:46:41.0144 3672 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
18:46:41.0144 3672 C:\Windows\SysWOW64\rasadhlp.dll - ok
18:46:41.0144 3672 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
18:46:41.0144 3672 C:\Windows\System32\msftedit.dll - ok
18:46:41.0159 3672 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
18:46:41.0159 3672 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
18:46:41.0159 3672 [ 98B6F9204610EC0B7D2ADFF3E6F058A8 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
18:46:41.0159 3672 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
18:46:41.0159 3672 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
18:46:41.0159 3672 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
18:46:41.0159 3672 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
18:46:41.0175 3672 C:\Windows\System32\msls31.dll - ok
18:46:41.0175 3672 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
18:46:41.0175 3672 C:\Windows\System32\gameux.dll - ok
18:46:41.0175 3672 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
18:46:41.0175 3672 C:\Windows\System32\DeviceCenter.dll - ok
18:46:41.0175 3672 [ C189EC2983140F20484E94FB1F5CB042 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
18:46:41.0175 3672 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
18:46:41.0190 3672 [ 840FBAA45DF80E74C9113704137F2CEA ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
18:46:41.0190 3672 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe - ok
18:46:41.0190 3672 [ 595F2732EAFB3E778F1499C4D8F3A51F ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
18:46:41.0190 3672 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
18:46:41.0190 3672 [ 01D8330E630471EDF5703B5F4D7445DB ] C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
18:46:41.0190 3672 C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe - ok
18:46:41.0206 3672 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
18:46:41.0206 3672 C:\Windows\System32\msiltcfg.dll - ok
18:46:41.0206 3672 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
18:46:41.0206 3672 C:\Windows\System32\msi.dll - ok
18:46:41.0206 3672 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
18:46:41.0206 3672 C:\Windows\System32\opengl32.dll - ok
18:46:41.0222 3672 [ 35BA6F164ADC8708223C7149A7A77F21 ] C:\Windows\System32\SynCOM.dll
18:46:41.0222 3672 C:\Windows\System32\SynCOM.dll - ok
18:46:41.0222 3672 [ EE5DF21E63B46E1A004CA0577526E93F ] C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll
18:46:41.0222 3672 C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll - ok
18:46:41.0222 3672 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
18:46:41.0222 3672 C:\Windows\System32\thumbcache.dll - ok
18:46:41.0222 3672 [ C083F40450A977D92A9587BA08B8C486 ] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
18:46:41.0222 3672 C:\Program Files (x86)\Lenovo\Energy Management\utility.exe - ok
18:46:41.0237 3672 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
18:46:41.0237 3672 C:\Windows\System32\Query.dll - ok
18:46:41.0237 3672 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
18:46:41.0237 3672 C:\Windows\System32\AudioSes.dll - ok
18:46:41.0237 3672 [ 318821F830C447026FEAC97EF2B77972 ] C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll64.dll
18:46:41.0237 3672 C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll64.dll - ok
18:46:41.0253 3672 [ 4C60956F1CAE77DAC7F17C5B2A6AB3AA ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
18:46:41.0253 3672 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
18:46:41.0253 3672 [ ECF6DA581F15B07C32DADE2F85187744 ] C:\Windows\System32\SynTPAPI.dll
18:46:41.0253 3672 C:\Windows\System32\SynTPAPI.dll - ok
18:46:41.0253 3672 [ 430A24654B72208F6A8A084FF89C85A8 ] C:\Windows\System32\RtkApi64.dll
18:46:41.0253 3672 C:\Windows\System32\RtkApi64.dll - ok
18:46:41.0268 3672 [ A9237B59D531828BAE20F85611E05563 ] C:\Windows\System32\RtkCfg64.dll
18:46:41.0268 3672 C:\Windows\System32\RtkCfg64.dll - ok
18:46:41.0268 3672 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
18:46:41.0268 3672 C:\Windows\System32\glu32.dll - ok
18:46:41.0268 3672 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
18:46:41.0268 3672 C:\Windows\System32\ddraw.dll - ok
18:46:41.0284 3672 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
18:46:41.0284 3672 C:\Windows\System32\consent.exe - ok
18:46:41.0284 3672 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
18:46:41.0284 3672 C:\Windows\System32\dciman32.dll - ok
18:46:41.0284 3672 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
18:46:41.0284 3672 C:\Windows\System32\msimg32.dll - ok
18:46:41.0284 3672 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
18:46:41.0284 3672 C:\Windows\System32\oledlg.dll - ok
18:46:41.0300 3672 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
18:46:41.0300 3672 C:\Windows\System32\stobject.dll - ok
18:46:41.0300 3672 [ 283A671E0248AC422173B289BCDCCC54 ] C:\Windows\System32\RtkAPO64.dll
18:46:41.0300 3672 C:\Windows\System32\RtkAPO64.dll - ok
18:46:41.0300 3672 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
18:46:41.0300 3672 C:\Windows\System32\batmeter.dll - ok
18:46:41.0315 3672 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
18:46:41.0315 3672 C:\Windows\System32\networkexplorer.dll - ok
18:46:41.0315 3672 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
18:46:41.0315 3672 C:\Windows\System32\dsound.dll - ok
18:46:41.0315 3672 [ 39F56BD3EBC3EC88D0319CCC63B6D452 ] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
18:46:41.0315 3672 C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe - ok
18:46:41.0331 3672 [ EE8F4B17BC2FCD84E323C4BF11D1308F ] C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
18:46:41.0331 3672 C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe - ok
18:46:41.0331 3672 [ 3CECEEE139E15B2DD7EB1524E827F24B ] C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect32.dll
18:46:41.0331 3672 C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect32.dll - ok
18:46:41.0331 3672 [ DACA95E077E91DF033EFE60D38B4BBE1 ] C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll32.dll
18:46:41.0331 3672 C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll32.dll - ok
18:46:41.0346 3672 [ 17E03B6C08DE84D8E88F0577A6BC0974 ] C:\Program Files (x86)\Lenovo\Energy Management\KbdHook.dll
18:46:41.0346 3672 C:\Program Files (x86)\Lenovo\Energy Management\KbdHook.dll - ok
18:46:41.0346 3672 [ B2A4E7F9CEBD75B2D1A2A2E6283AA00C ] C:\Program Files (x86)\Lenovo\Energy Management\Open EnergyManagement.exe
18:46:41.0346 3672 C:\Program Files (x86)\Lenovo\Energy Management\Open EnergyManagement.exe - ok
18:46:41.0346 3672 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
18:46:41.0346 3672 C:\Windows\System32\pdh.dll - ok
18:46:41.0362 3672 [ 706AA831C8C83FC0F7583B109B9CFC7F ] C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
18:46:41.0362 3672 C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll - ok
18:46:41.0362 3672 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
18:46:41.0362 3672 C:\Windows\System32\wdmaud.drv - ok
18:46:41.0362 3672 [ 1F73166784BAC7F30F1A83CC44BD4B5F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
18:46:41.0362 3672 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
18:46:41.0362 3672 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
18:46:41.0362 3672 C:\Windows\System32\ksuser.dll - ok
18:46:41.0378 3672 [ AE32C25F82309CC4481B1D7D9790139F ] C:\Windows\SysWOW64\atiadlxy.dll
18:46:41.0378 3672 C:\Windows\SysWOW64\atiadlxy.dll - ok
18:46:41.0378 3672 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
18:46:41.0378 3672 C:\Windows\System32\msacm32.drv - ok
18:46:41.0378 3672 [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
18:46:41.0378 3672 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
18:46:41.0393 3672 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
18:46:41.0393 3672 C:\Windows\System32\msacm32.dll - ok
18:46:41.0393 3672 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
18:46:41.0393 3672 C:\Windows\System32\midimap.dll - ok
18:46:41.0393 3672 [ 616FA62EDCDD9638414ED26477FB9B5C ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
18:46:41.0393 3672 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
18:46:41.0393 3672 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
18:46:41.0393 3672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
18:46:41.0409 3672 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
18:46:41.0409 3672 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
18:46:41.0409 3672 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
18:46:41.0409 3672 C:\Windows\System32\prnfldr.dll - ok
18:46:41.0409 3672 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
18:46:41.0409 3672 C:\Windows\System32\AudioEng.dll - ok
18:46:41.0424 3672 [ EE4339BB9F7B4CFB234CD1C847EC4E32 ] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
18:46:41.0424 3672 C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe - ok
18:46:41.0424 3672 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
18:46:41.0424 3672 C:\Windows\System32\AUDIOKSE.dll - ok
18:46:41.0424 3672 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
18:46:41.0424 3672 C:\Windows\System32\DXP.dll - ok
18:46:41.0440 3672 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
18:46:41.0440 3672 C:\Windows\System32\Syncreg.dll - ok
18:46:41.0440 3672 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
18:46:41.0440 3672 C:\Windows\ehome\ehSSO.dll - ok
18:46:41.0440 3672 [ CB3CF9915ED7888FDBAF3694775DCCC7 ] C:\Windows\System32\RTEEL64A.dll
18:46:41.0440 3672 C:\Windows\System32\RTEEL64A.dll - ok
18:46:41.0456 3672 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
18:46:41.0456 3672 C:\Windows\System32\AltTab.dll - ok
18:46:41.0456 3672 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
18:46:41.0456 3672 C:\Windows\System32\WPDShServiceObj.dll - ok
18:46:41.0456 3672 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
18:46:41.0456 3672 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
18:46:41.0456 3672 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
18:46:41.0456 3672 C:\Windows\System32\pnidui.dll - ok
18:46:41.0471 3672 [ 483849E481652C22BAFC8052414B3099 ] C:\Windows\System32\RTEED64A.dll
18:46:41.0471 3672 C:\Windows\System32\RTEED64A.dll - ok
18:46:41.0471 3672 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
18:46:41.0471 3672 C:\Windows\SysWOW64\wtsapi32.dll - ok
18:46:41.0471 3672 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
18:46:41.0471 3672 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
18:46:41.0487 3672 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
18:46:41.0487 3672 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
18:46:41.0487 3672 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
18:46:41.0487 3672 C:\Windows\System32\PortableDeviceTypes.dll - ok
18:46:41.0487 3672 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
18:46:41.0487 3672 C:\Windows\System32\ActionCenter.dll - ok
18:46:41.0502 3672 [ B497BDE6B16DD773DA8D3D25DED50784 ] C:\Program Files (x86)\Lenovo\VeriFace\English\TimeLockRes.dll
18:46:41.0502 3672 C:\Program Files (x86)\Lenovo\VeriFace\English\TimeLockRes.dll - ok
18:46:41.0502 3672 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
18:46:41.0502 3672 C:\Windows\System32\srchadmin.dll - ok
18:46:41.0502 3672 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
18:46:41.0502 3672 C:\Windows\System32\bthprops.cpl - ok
18:46:41.0518 3672 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
18:46:41.0518 3672 C:\Windows\SysWOW64\winsta.dll - ok
18:46:41.0518 3672 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
18:46:41.0518 3672 C:\Windows\System32\webcheck.dll - ok
18:46:41.0518 3672 [ 180A7380320AF73CCF7F7D8880CA2193 ] C:\Windows\System32\ieframe.dll
18:46:41.0518 3672 C:\Windows\System32\ieframe.dll - ok
18:46:41.0534 3672 [ 807EB11BD87CD9026906FB79015414CE ] C:\Windows\System32\perfdisk.dll
18:46:41.0534 3672 C:\Windows\System32\perfdisk.dll - ok
18:46:41.0534 3672 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\13337716.sys
18:46:41.0534 3672 C:\Windows\System32\drivers\13337716.sys - ok
18:46:41.0534 3672 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
18:46:41.0534 3672 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
18:46:41.0549 3672 [ 01AEA2F16FE0C522DDFD7FAFFC959C6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll
18:46:41.0549 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll - ok
18:46:41.0549 3672 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
18:46:41.0549 3672 C:\Windows\SysWOW64\riched20.dll - ok
18:46:41.0549 3672 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
18:46:41.0549 3672 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
18:46:41.0549 3672 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
18:46:41.0549 3672 C:\Windows\System32\mlang.dll - ok
18:46:41.0565 3672 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
18:46:41.0565 3672 C:\Windows\System32\FXSST.dll - ok
18:46:41.0565 3672 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
18:46:41.0565 3672 C:\Windows\SysWOW64\duser.dll - ok
18:46:41.0565 3672 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
18:46:41.0565 3672 C:\Windows\SysWOW64\dui70.dll - ok
18:46:41.0580 3672 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
18:46:41.0580 3672 C:\Windows\System32\FXSAPI.dll - ok
18:46:41.0580 3672 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
18:46:41.0580 3672 C:\Windows\System32\SyncCenter.dll - ok
18:46:41.0580 3672 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
18:46:41.0580 3672 C:\Windows\System32\FXSRESM.dll - ok
18:46:41.0596 3672 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
18:46:41.0596 3672 C:\Windows\System32\UIAnimation.dll - ok
18:46:41.0596 3672 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
18:46:41.0596 3672 C:\Windows\System32\imapi2.dll - ok
18:46:41.0596 3672 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
18:46:41.0596 3672 C:\Windows\System32\FXSSVC.exe - ok
18:46:41.0596 3672 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
18:46:41.0596 3672 C:\Windows\System32\hgcpl.dll - ok
18:46:41.0612 3672 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
18:46:41.0612 3672 C:\Windows\System32\fdPHost.dll - ok
18:46:41.0612 3672 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
18:46:41.0612 3672 C:\Windows\System32\fdWSD.dll - ok
18:46:41.0612 3672 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
18:46:41.0612 3672 C:\Windows\System32\fdSSDP.dll - ok
18:46:41.0627 3672 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
18:46:41.0627 3672 C:\Windows\System32\fdProxy.dll - ok
18:46:41.0627 3672 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
18:46:41.0627 3672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
18:46:41.0627 3672 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
18:46:41.0627 3672 C:\Windows\System32\rasdlg.dll - ok
18:46:41.0643 3672 [ 8BE887F1743FBB39ED2C9CA2937742D6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll
18:46:41.0643 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll - ok
18:46:41.0643 3672 [ D79D19EC66106119DCD45D042C6B5170 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll
18:46:41.0643 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll - ok
18:46:41.0643 3672 [ EADFC95980BC24DF3C7EE5B2CD38F043 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll
18:46:41.0643 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll - ok
18:46:41.0658 3672 [ 5DCD11D0B1CB71E2B035B30670365C35 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\6c3851b925e2a31ddefb3d36bb9163cb\System.Runtime.Remoting.ni.dll
18:46:41.0658 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\6c3851b925e2a31ddefb3d36bb9163cb\System.Runtime.Remoting.ni.dll - ok
18:46:41.0658 3672 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
18:46:41.0658 3672 C:\Windows\System32\shfolder.dll - ok
18:46:41.0658 3672 [ 74EF310FAC89341CE2897B7F2C4A7B0F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
18:46:41.0658 3672 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
18:46:41.0674 3672 [ A555EC9827745E760BBABB7C6D4CE37F ] C:\Program Files\Internet Explorer\ieproxy.dll
18:46:41.0674 3672 C:\Program Files\Internet Explorer\ieproxy.dll - ok
18:46:41.0674 3672 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
18:46:41.0674 3672 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
18:46:41.0674 3672 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
18:46:41.0674 3672 C:\Windows\System32\WWanAPI.dll - ok
18:46:41.0674 3672 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
18:46:41.0674 3672 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
18:46:41.0690 3672 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
18:46:41.0690 3672 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
18:46:41.0690 3672 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
18:46:41.0690 3672 C:\Windows\System32\wsock32.dll - ok
18:46:41.0690 3672 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
18:46:41.0690 3672 C:\Windows\System32\wmdrmdev.dll - ok
18:46:41.0705 3672 [ E63EAF09FC29954D7F8EAB2DEF495062 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\193e9d54d5a1785730cc76195c3ed9c6\System.Web.ni.dll
18:46:41.0705 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\193e9d54d5a1785730cc76195c3ed9c6\System.Web.ni.dll - ok
18:46:41.0705 3672 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
18:46:41.0705 3672 C:\Windows\System32\drmv2clt.dll - ok
18:46:41.0705 3672 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
18:46:41.0705 3672 C:\Windows\System32\mfplat.dll - ok
18:46:41.0721 3672 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
18:46:41.0721 3672 C:\Windows\System32\blackbox.dll - ok
18:46:41.0721 3672 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
18:46:41.0721 3672 C:\Windows\System32\upnp.dll - ok
18:46:41.0721 3672 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
18:46:41.0721 3672 C:\Windows\System32\ssdpsrv.dll - ok
18:46:41.0721 3672 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
18:46:41.0721 3672 C:\Windows\System32\wmp.dll - ok
18:46:41.0736 3672 [ A4B3A9FFA483F8CB36E56C19448DDE36 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll
18:46:41.0736 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll - ok
18:46:41.0736 3672 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
18:46:41.0736 3672 C:\Windows\System32\wmploc.DLL - ok
18:46:41.0736 3672 [ 5D0E28A22860E487148B2820309C0063 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll
18:46:41.0736 3672 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll - ok
18:46:41.0752 3672 [ 624D2EE631B396A88CDA56B99A145507 ] C:\Windows\System32\atipdl64.dll
18:46:41.0752 3672 C:\Windows\System32\atipdl64.dll - ok
18:46:41.0752 3672 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
18:46:41.0752 3672 C:\Windows\SysWOW64\msxml3.dll - ok
18:46:41.0752 3672 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
18:46:41.0752 3672 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
18:46:41.0768 3672 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
18:46:41.0768 3672 C:\Windows\System32\wmpps.dll - ok
18:46:41.0768 3672 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
18:46:41.0768 3672 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
18:46:41.0768 3672 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
18:46:41.0768 3672 C:\Windows\System32\wbem\cimwin32.dll - ok
18:46:41.0783 3672 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
18:46:41.0783 3672 C:\Windows\System32\framedynos.dll - ok
18:46:41.0783 3672 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
18:46:41.0783 3672 C:\Windows\System32\security.dll - ok
18:46:41.0783 3672 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
18:46:41.0783 3672 C:\Windows\System32\browcli.dll - ok
18:46:41.0799 3672 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
18:46:41.0799 3672 C:\Windows\System32\schedcli.dll - ok
18:46:41.0799 3672 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
18:46:41.0799 3672 C:\Windows\System32\wbem\wmipcima.dll - ok
18:46:41.0799 3672 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
18:46:41.0799 3672 C:\Windows\System32\wmi.dll - ok
18:46:41.0799 3672 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
18:46:41.0799 3672 C:\Windows\System32\wuauclt.exe - ok
18:46:41.0814 3672 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
18:46:41.0814 3672 C:\Windows\System32\wucltux.dll - ok
18:46:41.0814 3672 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
18:46:41.0814 3672 C:\Windows\System32\wbem\WMIADAP.exe - ok
18:46:41.0814 3672 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
18:46:41.0814 3672 C:\Windows\System32\loadperf.dll - ok
18:46:41.0830 3672 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
18:46:41.0830 3672 C:\Windows\System32\wbem\wmiprov.dll - ok
18:46:41.0830 3672 ============================================================
18:46:41.0830 3672 Scan finished
18:46:41.0830 3672 ============================================================
18:46:41.0830 3664 Detected object count: 0
18:46:41.0830 3664 Actual detected object count: 0
18:47:31.0079 2984 Deinitialize success
  • 0

#25
Bassman02
Posted 17 November 2012 - 06:54 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Farbar Service Scanner Version: 09-11-2012
Ran by Computer (administrator) on 17-11-2012 at 18:54:29
Running from "C:\Users\Computer\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-11-13 22:02] - [2012-10-03 09:56] - 1914248 ____A (Microsoft Corporation) 37608401DFDB388CAF66917F6B2D6FB0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
  • 0

Advertisements

#26
Bassman02
Posted 17 November 2012 - 06:57 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Seems to be working in safe mode still
  • 0

#27
emeraldnzl
Posted 17 November 2012 - 07:20 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Nothing there.

Moving on:

Open Chrome and go to the tool icon top right.

  • Click on Options > Under the Hood tab > and click on the Content Settings button
  • on the left hand side click on Plug-ins
  • click on the blue Disable individual plug-ins... link
  • Disable the Plug- ins one by one until you find the culprit
  • once you find the one causing the problem click on the blue Details word upper right hand side and note down the path to the file
Return here and tell me what it is.
  • 0

#28
Bassman02
Posted 17 November 2012 - 09:16 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Did that and it made no difference, also I had a error message that said windows explorer has stopped working and then the desktop disappeared.
  • 0

#29
emeraldnzl
Posted 17 November 2012 - 09:19 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Have you tried uninstalling and reinstalling Chrome?
  • 0

#30
Bassman02
Posted 17 November 2012 - 09:41 PM

Bassman02

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Just did and even using IE it froze up after a few mins.

Would doing a system restore help?

Also don't know if it matters but a few days ago the computer was in the midest of updating and it froze at 69 so I had to restart, it seems this all started after that.

Edited by Bassman02, 17 November 2012 - 09:55 PM.

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP