Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Hyperlink adware browser virus [Solved]

Started by sleepyjim , Mar 08 2013 01:12 AM

  • This topic is locked This topic is locked

#1
sleepyjim
Posted 08 March 2013 - 01:12 AM

sleepyjim

    Member

  • Member
  • PipPip
  • 92 posts
Cleaned out in Jan and is back due to a restore (I'm an idiot)....LOL

Gringo help!
Here is my OTL log:

OTL logfile created on: 3/8/2013 11:05:26 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Sleepyjims Blue\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.85 Gb Total Physical Memory | 1.52 Gb Available Physical Memory | 39.58% Memory free
7.70 Gb Paging File | 4.96 Gb Available in Paging File | 64.36% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 420.56 Gb Total Space | 357.28 Gb Free Space | 84.95% Space Free | Partition Type: NTFS
Drive D: | 25.47 Gb Total Space | 12.46 Gb Free Space | 48.92% Space Free | Partition Type: NTFS

Computer Name: SLEEPYJIMSBLUE | User Name: Sleepyjims Blue | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/03/08 11:04:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Sleepyjims Blue\Desktop\OTL.exe
PRC - [2013/03/05 23:41:44 | 000,418,024 | ---- | M] (BillP Studios) -- C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2013/02/28 23:52:04 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013/02/28 12:36:01 | 004,767,304 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/02/28 12:36:01 | 000,045,248 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/02/27 21:05:40 | 001,820,016 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_171.exe
PRC - [2013/01/24 12:06:40 | 011,184,480 | ---- | M] (SugarSync, Inc.) -- C:\Program Files (x86)\SugarSync\SugarSyncManager.exe
PRC - [2012/12/18 23:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/10/09 10:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Sleepyjims Blue\AppData\Local\Akamai\netsession_win.exe
PRC - [2012/06/16 01:32:18 | 000,329,056 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
PRC - [2012/03/01 21:34:24 | 000,415,272 | ---- | M] (Wistron Corp.) -- C:\Program Files\Launch Manager\HotkeyApp.exe
PRC - [2012/01/26 21:40:44 | 000,291,608 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2011/12/21 23:02:34 | 000,119,848 | ---- | M] (Wistron Corp.) -- C:\Program Files\Launch Manager\WisLMSvc.exe
PRC - [2011/12/16 08:37:30 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2011/12/16 08:37:26 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2011/12/16 08:37:18 | 000,128,280 | ---- | M] () -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2011/12/16 08:37:10 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/11/30 07:04:56 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011/11/30 07:04:54 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2011/11/24 12:06:58 | 000,548,864 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera\VM331_STI.EXE
PRC - [2011/10/29 00:58:18 | 000,158,880 | ---- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
PRC - [2011/01/29 10:29:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe


========== Modules (No Company Name) ==========

MOD - [2013/03/05 20:19:52 | 006,522,944 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\1033\GrooveIntlResource.dll
MOD - [2013/02/28 23:52:04 | 003,067,288 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013/02/27 21:05:39 | 014,718,320 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
MOD - [2013/02/16 17:35:32 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
MOD - [2013/01/12 11:25:46 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\389a1832a3da11e1b409cd6ae60cb9fa\IAStorCommon.ni.dll
MOD - [2013/01/12 11:25:45 | 000,487,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\7ffdaee3a54ffd1a5e3b008a5bde5ecf\IAStorUtil.ni.dll
MOD - [2013/01/10 17:58:32 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
MOD - [2013/01/10 17:58:01 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013/01/10 17:57:46 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
MOD - [2013/01/10 17:57:39 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013/01/10 17:57:36 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
MOD - [2013/01/10 17:57:35 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013/01/10 17:57:29 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2012/12/10 05:46:38 | 000,600,868 | ---- | M] () -- C:\Program Files (x86)\BillP Studios\WinPatrol\sqlite3.dll
MOD - [2012/11/28 14:13:52 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/11/28 14:13:30 | 001,242,512 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012/06/16 01:32:17 | 000,013,664 | ---- | M] () -- C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
MOD - [2011/03/17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010/01/21 01:34:10 | 008,793,952 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/02/28 12:36:01 | 000,045,248 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013/02/21 17:39:44 | 001,860,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe -- (OfficeSvc)
SRV:64bit: - [2012/12/12 17:53:02 | 000,060,528 | ---- | M] (SparkLabs) [Auto | Running] -- C:\Program Files\WiTopia\WiTopiaService.exe -- (WiTopiaService)
SRV:64bit: - [2012/11/07 23:37:40 | 002,828,408 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2012/07/11 22:54:58 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2012/03/27 01:41:18 | 000,572,976 | ---- | M] (Lenovo (Beijing) Limited) [Disabled | Stopped] -- C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe -- (DamageGuardSvc)
SRV:64bit: - [2011/12/21 23:02:34 | 000,119,848 | ---- | M] (Wistron Corp.) [Auto | Running] -- C:\Program Files\Launch Manager\WisLMSvc.exe -- (WisLMSvc)
SRV:64bit: - [2011/12/09 03:38:24 | 000,607,456 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV:64bit: - [2010/09/23 05:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/14 05:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/02/28 23:52:04 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/02/27 21:05:40 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/18 23:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/12/14 02:42:10 | 000,277,616 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012/10/03 02:21:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2011/12/16 08:37:30 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/12/16 08:37:26 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2011/12/16 08:37:18 | 000,128,280 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe -- (Intel®
SRV - [2011/12/16 08:37:10 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011/11/30 07:04:56 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2011/10/29 00:58:18 | 000,158,880 | ---- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (ZAtheros Bt&Wlan Coex Agent)
SRV - [2011/10/29 00:56:18 | 000,106,144 | ---- | M] (Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2010/03/19 01:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/11 01:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/02/28 12:36:34 | 000,177,672 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013/02/28 12:36:34 | 000,068,992 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013/02/28 12:36:33 | 001,025,880 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013/02/28 12:36:33 | 000,377,992 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013/02/28 12:36:33 | 000,071,064 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013/02/28 12:36:33 | 000,065,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013/02/28 12:36:32 | 000,080,888 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013/02/28 12:36:31 | 000,033,472 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/12/14 02:42:22 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/12/12 17:53:10 | 000,038,368 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\visctap0901.sys -- (visctap0901)
DRV:64bit: - [2012/10/03 02:21:00 | 000,030,056 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012/08/23 18:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 18:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/08/23 18:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/07/17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/06/16 01:35:44 | 000,057,952 | ---- | M] (Lenovo) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fbfmon.sys -- (fbfmon)
DRV:64bit: - [2012/06/16 01:35:44 | 000,013,408 | ---- | M] (Lenovo) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BPntDrv.sys -- (BPntDrv)
DRV:64bit: - [2012/06/16 01:34:06 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2012/06/16 01:34:06 | 000,030,816 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2012/03/26 14:31:32 | 000,428,304 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012/03/26 14:31:30 | 000,027,408 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvIntel)
DRV:64bit: - [2012/03/01 10:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/11 04:36:26 | 000,217,392 | ---- | M] (Lenovo) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\drivers\DamageGuardX64.sys -- (DamageGuard)
DRV:64bit: - [2012/01/26 21:39:34 | 000,787,736 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012/01/26 21:39:34 | 000,356,120 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012/01/26 21:39:34 | 000,016,152 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2011/12/15 14:47:40 | 000,085,080 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2011/12/13 22:04:52 | 000,023,648 | ---- | M] (Lenovo) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\drivers\dgfltrX64.sys -- (dgFltr)
DRV:64bit: - [2011/12/06 11:31:40 | 000,952,832 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vm331avs.sys -- (vm331avs)
DRV:64bit: - [2011/12/05 23:23:08 | 000,331,264 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011/11/30 06:40:32 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011/11/15 07:12:08 | 000,111,216 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2011/10/29 00:57:36 | 000,521,376 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2011/10/29 00:57:30 | 000,280,992 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2011/10/29 00:57:28 | 000,068,256 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2011/10/29 00:57:20 | 000,167,584 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2011/10/29 00:57:18 | 000,036,000 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2011/10/29 00:57:14 | 000,030,368 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2011/10/29 00:57:10 | 000,330,912 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2011/10/29 00:57:10 | 000,110,240 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
DRV:64bit: - [2011/10/10 11:56:15 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/10/10 11:56:15 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/07/22 20:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/13 01:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/05/24 11:24:22 | 002,750,464 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2011/05/18 08:08:32 | 000,047,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d)
DRV:64bit: - [2011/01/29 10:29:58 | 000,031,088 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:64bit: - [2010/11/21 07:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/09/23 11:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2009/07/22 01:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:64bit: - [2009/07/14 05:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 05:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 05:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 03:21:48 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2009/06/11 00:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/11 00:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/11 00:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/11 00:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 05:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.co...=LENN&bmod=LENN
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=LENN&bmod=LENN
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...ng}&rlz=1I7LENN
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>;*.local

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Alnaddy"
FF - prefs.js..browser.startup.homepage: "http://www.google.co...en&source=iglk"
FF - prefs.js..extensions.enabledAddons: newtaburl%40sogame.cat:2.2.3
FF - prefs.js..extensions.enabledAddons: %7B66E978CD-981F-47DF-AC42-E3CF417C1467%7D:0.4.3
FF - prefs.js..extensions.enabledAddons: %7BB17C1C5A-04B1-11DB-9804-B622A1EF5492%7D:1.2.1
FF - prefs.js..extensions.enabledAddons: firefox%40ghostery.com:2.9.2
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:8.0.1482
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_171.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013/03/07 08:37:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/02/28 23:52:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 19.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/02/28 23:52:04 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 19.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/11/15 14:57:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Extensions
[2013/03/07 07:55:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\extensions
[2013/03/07 07:55:20 | 000,000,000 | ---D | M] (Ghostery) -- C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\extensions\[email protected]
[2012/11/15 21:53:34 | 000,051,994 | ---- | M] () (No name found) -- C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\extensions\[email protected]
[2012/12/24 16:37:18 | 000,213,444 | ---- | M] () (No name found) -- C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\extensions\[email protected]
[2012/11/15 21:53:34 | 000,003,793 | ---- | M] () (No name found) -- C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi
[2012/11/15 21:53:34 | 000,089,442 | ---- | M] () (No name found) -- C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi
[2013/02/28 23:51:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/03/07 08:37:07 | 000,000,000 | ---D | M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
[2013/02/28 23:52:04 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/10/24 21:50:17 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2013/02/28 23:52:02 | 000,002,086 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: https://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.97\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.97\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Java™ Platform SE 7 U15 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
CHR - plugin: Java Deployment Toolkit 7.0.150.3 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll
CHR - Extension: avast! WebRep = C:\Users\Sleepyjims Blue\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\

O1 HOSTS File: ([2009/06/11 01:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
O4:64bit: - HKLM..\Run: [AthBtTray] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Atheros Commnucations)
O4:64bit: - HKLM..\Run: [AtherosBtStack] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations)
O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe (Lenovo)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [SynLenovoGestureMgr] C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe (Synaptics)
O4:64bit: - HKLM..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe (BillP Studios)
O4 - HKLM..\Run: [{CDF13D74-E6AA-4006-818A-B360D6A3573C}] C:\Program Files\Launch Manager\HotkeyApp.exe (Wistron Corp.)
O4 - HKLM..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE (Vimicro)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe (Lenovo, Inc.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
O4 - HKLM..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - HKLM..\Run: [YouCam Mirage] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
O4 - HKLM..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe (CyberLink Corp.)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Sleepyjims Blue\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKCU..\Run: [Power2GoExpress] NA File not found
O4 - HKCU..\Run: [SugarSync] C:\Program Files (x86)\SugarSync\SugarSyncManager.exe (SugarSync, Inc.)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKCU..\Run: [WiTopia] C:\Program Files\WiTopia\WiTopia.exe (SparkLabs)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:64bit: - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100 192.168.1.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B}: DhcpNameServer = 192.168.1.100 192.168.1.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6A7CB773-97FB-4254-965A-F71B3B1B5241}: DhcpNameServer = 10.118.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6B6B96C8-948C-4161-9DB2-AFD288A5AF72}: NameServer = 8.26.56.26,156.154.70.22
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\osf - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) - C:\Windows\SysWOW64\guard32.dll (COMODO)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/03/08 11:04:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Sleepyjims Blue\Desktop\OTL.exe
[2013/03/08 09:09:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2013/03/08 09:09:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2013/03/08 09:09:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2013/03/08 08:48:20 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\Desktop\cirque_du_soleil_shows
[2013/03/08 08:47:50 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\Desktop\Coast to coast AM 2011-04-26 Shamanism & Spiritual Growth
[2013/03/08 08:22:37 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\AppData\Roaming\WinPatrol
[2013/03/08 08:22:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
[2013/03/08 08:22:29 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2013/03/08 08:22:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BillP Studios
[2013/03/07 13:20:05 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\AppData\Roaming\7 Sticky Notes
[2013/03/06 10:15:15 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\AppData\Roaming\WiTopia
[2013/03/06 10:15:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WiTopia
[2013/03/06 10:15:01 | 000,000,000 | ---D | C] -- C:\Program Files\WiTopia
[2013/03/05 20:14:39 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1991-06.com.microsoft
[2013/03/05 20:10:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
[2013/03/05 20:09:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15
[2013/03/05 20:07:25 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\Desktop\Cherokee
[2013/03/05 20:06:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7 Sticky Notes
[2013/03/05 20:06:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7 Sticky Notes
[2013/03/05 12:54:54 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\Desktop\Playlist
[2013/03/04 00:34:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iDailyDiary
[2013/03/04 00:34:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iDailyDiary
[2013/03/04 00:33:23 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\Desktop\IDD Pages
[2013/02/28 23:51:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/02/28 22:04:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2013/02/22 18:23:21 | 000,000,000 | ---D | C] -- C:\Users\Sleepyjims Blue\Desktop\New
[2013/02/21 20:34:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/02/21 20:33:37 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/02/21 20:33:36 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/02/21 20:33:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2013/02/21 20:33:36 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

========== Files - Modified Within 30 Days ==========

[2013/03/08 11:05:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/03/08 11:04:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Sleepyjims Blue\Desktop\OTL.exe
[2013/03/08 10:50:02 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2013/03/08 10:24:00 | 000,000,912 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/03/08 08:30:16 | 332,120,789 | ---- | M] () -- C:\Users\Sleepyjims Blue\Desktop\Craig.Ferguson.2013.03.06.Christina.Hendricks.HDTV.x264-FQM.mp4
[2013/03/08 08:16:28 | 196,999,832 | ---- | M] () -- C:\Users\Sleepyjims Blue\Desktop\Pawn.Stars.S06E31.HDTV.x264-EVOLVE.mp4
[2013/03/08 08:14:32 | 379,992,734 | ---- | M] () -- C:\Users\Sleepyjims Blue\Desktop\Vikings.S01E01.avi
[2013/03/08 08:13:12 | 196,551,206 | ---- | M] () -- C:\Users\Sleepyjims Blue\Desktop\Pawn.Stars.S06E32.HDTV.x264-EVOLVE.mp4
[2013/03/08 08:03:06 | 147,597,786 | ---- | M] () -- C:\Users\Sleepyjims Blue\Desktop\The.Big.Bang.Theory.S06E18.HDTV.X264-LOL.mp4
[2013/03/07 21:34:36 | 473,209,274 | ---- | M] () -- C:\Users\Sleepyjims Blue\Desktop\Survivor.S26E04.HDTV.x264-SENAPSKORV.mp4
[2013/03/07 18:24:00 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/03/07 11:50:21 | 000,000,982 | ---- | M] () -- C:\Users\Sleepyjims Blue\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2013/03/07 11:41:32 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/03/07 11:41:32 | 000,032,064 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/03/07 11:34:46 | 000,642,928 | ---- | M] () -- C:\Windows\SysNative\fastboot.set
[2013/03/07 11:34:09 | 000,000,828 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2013/03/07 11:33:43 | 000,067,584 | ---- | M] () -- C:\Windows\bootstat.dat
[2013/03/07 11:33:34 | 3101,220,864 | -HS- | M] () -- C:\hiberfil.sys
[2013/03/07 08:38:26 | 000,726,316 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/03/07 08:38:26 | 000,624,178 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/03/07 08:38:26 | 000,106,522 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/03/07 08:37:07 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/03/06 10:15:09 | 000,000,807 | ---- | M] () -- C:\Users\Public\Desktop\WiTopia.lnk
[2013/03/05 21:08:14 | 000,451,584 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/03/01 00:19:11 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_dc3d_01009.Wdf
[2013/02/28 12:36:34 | 000,177,672 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/02/28 12:36:34 | 000,068,992 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/02/28 12:36:33 | 001,025,880 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/02/28 12:36:33 | 000,377,992 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/02/28 12:36:33 | 000,071,064 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/02/28 12:36:33 | 000,065,408 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/02/28 12:36:32 | 000,080,888 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/02/28 12:36:31 | 000,033,472 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/02/28 12:36:07 | 000,041,664 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/02/28 12:35:43 | 000,287,840 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe

========== Files Created - No Company Name ==========

[2013/03/08 08:00:16 | 379,992,734 | ---- | C] () -- C:\Users\Sleepyjims Blue\Desktop\Vikings.S01E01.avi
[2013/03/08 07:58:51 | 473,209,274 | ---- | C] () -- C:\Users\Sleepyjims Blue\Desktop\Survivor.S26E04.HDTV.x264-SENAPSKORV.mp4
[2013/03/08 07:58:07 | 196,999,832 | ---- | C] () -- C:\Users\Sleepyjims Blue\Desktop\Pawn.Stars.S06E31.HDTV.x264-EVOLVE.mp4
[2013/03/08 07:56:23 | 196,551,206 | ---- | C] () -- C:\Users\Sleepyjims Blue\Desktop\Pawn.Stars.S06E32.HDTV.x264-EVOLVE.mp4
[2013/03/08 07:56:05 | 332,120,789 | ---- | C] () -- C:\Users\Sleepyjims Blue\Desktop\Craig.Ferguson.2013.03.06.Christina.Hendricks.HDTV.x264-FQM.mp4
[2013/03/08 07:55:03 | 147,597,786 | ---- | C] () -- C:\Users\Sleepyjims Blue\Desktop\The.Big.Bang.Theory.S06E18.HDTV.X264-LOL.mp4
[2013/03/07 08:37:07 | 000,177,672 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/03/07 08:37:07 | 000,065,408 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/03/06 10:15:09 | 000,000,807 | ---- | C] () -- C:\Users\Public\Desktop\WiTopia.lnk
[2013/03/05 20:06:52 | 001,031,168 | ---- | C] () -- C:\Windows\SysWow64\ExLVwU.ocx
[2013/03/05 20:06:51 | 000,805,376 | ---- | C] () -- C:\Windows\SysWow64\EditCtlsU.ocx
[2013/03/05 20:06:51 | 000,604,672 | ---- | C] () -- C:\Windows\SysWow64\ExTVwU.ocx
[2013/03/01 00:19:11 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_dc3d_01009.Wdf
[2012/12/14 02:42:30 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012/12/14 02:42:24 | 000,754,652 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin
[2012/12/14 02:42:24 | 000,598,384 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin
[2012/11/15 14:04:58 | 000,000,000 | ---- | C] () -- C:\Windows\firstboot.dat
[2012/06/16 01:32:23 | 000,472,416 | ---- | C] () -- C:\Windows\SysWow64\Lenovo.VerifaceStub.dll
[2012/06/16 01:32:22 | 002,086,240 | ---- | C] () -- C:\Windows\SysWow64\LenovoVeriface.Interface.dll
[2012/06/16 01:32:22 | 001,500,512 | ---- | C] () -- C:\Windows\SysWow64\Apblend.dll
[2012/06/16 01:32:22 | 001,171,456 | ---- | C] () -- C:\Windows\SysWow64\PicNotify.dll
[2012/06/16 01:32:15 | 001,044,480 | ---- | C] () -- C:\Windows\SysWow64\3DImageRenderer.dll
[2012/06/16 01:20:22 | 000,001,822 | ---- | C] () -- C:\Windows\vm331Rmv.ini
[2012/06/16 01:20:22 | 000,001,822 | ---- | C] () -- C:\Windows\SysWow64\vm331Rmv.ini
[2012/03/21 05:54:01 | 000,735,796 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2012/03/21 05:53:56 | 000,561,508 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2011/12/09 03:14:58 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2009/07/14 08:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 09:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 08:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 05:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 07:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 05:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/03/07 13:20:14 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\7 Sticky Notes
[2012/12/10 21:53:52 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\Audacity
[2012/11/17 00:00:36 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\Cocoon Software
[2012/11/16 23:55:31 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\ImgBurn
[2012/11/15 14:10:29 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\Leadertech
[2013/01/28 16:38:46 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\LegalSounds
[2012/12/01 16:48:36 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\Lenovo
[2012/11/15 14:10:36 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\LSC
[2012/11/15 15:20:23 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\ooVoo Details
[2013/01/16 18:02:33 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\PinTool
[2012/11/17 00:05:01 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\Softland
[2013/03/08 09:13:08 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\uTorrent
[2013/03/08 08:22:39 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\WinPatrol
[2013/03/06 10:15:51 | 000,000,000 | ---D | M] -- C:\Users\Sleepyjims Blue\AppData\Roaming\WiTopia

========== Purity Check ==========



< End of report >
  • 0

Advertisements

#2
gringo_pr
Posted 08 March 2013 - 01:20 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello sleepyjim


These are the programs I would like you to run next, if you have any problems with these just skip it and move on to the next one.


-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
  • 0

#3
sleepyjim
Posted 08 March 2013 - 04:50 AM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
Adwcleaner log: (Will post other log next):
# AdwCleaner v2.114 - Logfile created 03/08/2013 at 14:43:10
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Sleepyjims Blue - SLEEPYJIMSBLUE
# Boot Mode : Normal
# Running from : C:\Users\Sleepyjims Blue\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Common Files\Plasmoo
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Users\Sleepyjims Blue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Folder Deleted : C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\jetpack
Folder Deleted : C:\Users\Sleepyjims Blue\Desktop\Save

***** [Registry] *****

Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v25.0.1364.152

File : C:\Users\Sleepyjims Blue\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1892 octets] - [08/03/2013 14:43:10]

########## EOF - C:\AdwCleaner[S1].txt - [1952 octets] ##########
  • 0

#4
sleepyjim
Posted 08 March 2013 - 04:54 AM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
RougeKiller Log:
RogueKiller V8.5.2 [Feb 23 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : http://tigzy.geeksto...roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Sleepyjims Blue [Admin rights]
Mode : Remove -- Date : 03/08/2013 14:53:02
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 8 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{6B6B96C8-948C-4161-9DB2-AFD288A5AF72} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{6B6B96C8-948C-4161-9DB2-AFD288A5AF72} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 74e4111a7133b4edde5abdff7167c1fa
[BSP] e694445ed498309506a85311c4e12e21 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 200 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 411648 | Size: 430658 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 882399232 | Size: 26080 Mo
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 935811072 | Size: 20001 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_03082013_02d1453.txt >>
RKreport[1]_S_03082013_02d1452.txt ; RKreport[2]_D_03082013_02d1453.txt



Still got virus.....

Jim
  • 0

#5
gringo_pr
Posted 08 March 2013 - 06:18 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello sleepyjim

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
  • 0

#6
sleepyjim
Posted 08 March 2013 - 08:35 AM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
Still got virus.

Combofix log:

ComboFix 13-03-07.03 - Sleepyjims Blue 03/08/2013 18:23:44.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3943.2187 [GMT 4:00]
Running from: C:\Users\Sleepyjims Blue\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
FW: COMODO Firewall *Enabled* {7DB03214-694B-060B-1600-BD4715C36DBB}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: COMODO Defense+ *Disabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


((((((((((((((((((((((((( Files Created from 2013-02-08 to 2013-03-08 )))))))))))))))))))))))))))))))


2013-03-08 14:29:05 . 2013-03-08 14:29:05 -------- d-----w- C:\Users\UpdatusUser\AppData\Local\temp
2013-03-08 14:29:05 . 2013-03-08 14:29:05 -------- d-----w- C:\Users\Default\AppData\Local\temp
2013-03-08 14:24:47 . 2013-03-08 14:24:47 76232 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\offreg.dll
2013-03-08 05:09:17 . 2013-03-08 05:09:18 -------- d-----w- C:\Program Files\Microsoft Silverlight
2013-03-08 05:09:17 . 2013-03-08 05:09:18 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight
2013-03-08 05:08:20 . 2013-03-08 05:08:13 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-08 04:22:37 . 2013-03-08 04:22:39 -------- d-----w- C:\Users\Sleepyjims Blue\AppData\Roaming\WinPatrol
2013-03-08 04:22:29 . 2013-03-08 04:22:29 -------- d-----w- C:\Program Files (x86)\BillP Studios
2013-03-07 09:20:05 . 2013-03-07 09:20:14 -------- d-----w- C:\Users\Sleepyjims Blue\AppData\Roaming\7 Sticky Notes
2013-03-07 04:37:07 . 2013-02-28 08:36:34 177672 ----a-w- C:\Windows\system32\drivers\aswVmm.sys
2013-03-07 04:37:07 . 2013-02-28 08:36:33 65408 ----a-w- C:\Windows\system32\drivers\aswRvrt.sys
2013-03-06 06:15:15 . 2013-03-06 06:15:51 -------- d-----w- C:\Users\Sleepyjims Blue\AppData\Roaming\WiTopia
2013-03-06 06:15:01 . 2013-03-06 06:15:12 -------- d-----w- C:\Program Files\WiTopia
2013-03-05 23:04:12 . 2013-03-05 23:04:12 -------- d-----w- C:\Users\Default\AppData\Local\Microsoft Help
2013-03-05 16:18:35 . 2013-03-05 16:14:02 563328 ----a-w- C:\ProgramData\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2013-03-05 16:14:39 . 2013-03-07 07:51:52 -------- d-----w- C:\ProgramData\regid.1991-06.com.microsoft
2013-03-05 16:09:15 . 2013-03-07 07:50:39 -------- d-----w- C:\Program Files\Microsoft Office 15
2013-03-05 16:06:52 . 2011-08-13 17:06:02 1031168 ----a-w- C:\Windows\SysWow64\ExLVwU.ocx
2013-03-05 16:06:51 . 2013-03-05 16:06:52 -------- d-----w- C:\Program Files (x86)\7 Sticky Notes
2013-03-05 16:06:51 . 2012-10-13 18:20:58 805376 ----a-w- C:\Windows\SysWow64\EditCtlsU.ocx
2013-03-05 16:06:51 . 2011-05-20 20:02:42 604672 ----a-w- C:\Windows\SysWow64\ExTVwU.ocx
2013-03-05 16:06:51 . 2008-01-19 07:34:50 554008 ----a-w- C:\Windows\SysWow64\dao360.dll
2013-03-05 16:06:51 . 2005-04-15 11:58:18 1351392 ----a-w- C:\Windows\SysWow64\comctl32.ocx
2013-03-05 16:06:51 . 2004-03-09 10:45:38 212240 ----a-w- C:\Windows\SysWow64\richtx32.ocx
2013-03-05 16:06:51 . 1998-06-23 21:00:00 198456 ----a-w- C:\Windows\SysWow64\MCI32.OCX
2013-03-05 09:55:34 . 2013-02-08 00:28:29 9162192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\mpengine.dll
2013-03-03 20:34:26 . 2013-03-03 20:35:37 -------- d-----w- C:\Program Files (x86)\iDailyDiary
2013-02-27 17:05:22 . 2013-02-27 17:05:23 16473456 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2013-02-21 16:33:37 . 2013-02-21 16:33:37 -------- d-----w- C:\Program Files\iPod
2013-02-21 16:33:36 . 2013-02-21 16:34:08 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-02-21 16:33:36 . 2013-02-21 16:34:07 -------- d-----w- C:\Program Files\iTunes
2013-02-21 16:33:36 . 2013-02-21 16:34:07 -------- d-----w- C:\Program Files (x86)\iTunes
2013-02-15 22:04:52 . 2013-02-15 22:04:52 208448 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2013-02-15 19:33:09 . 2013-01-09 01:10:05 996352 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-15 19:33:09 . 2013-01-08 22:01:00 768000 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-15 15:11:49 . 2013-01-05 05:53:43 5553512 ----a-w- C:\Windows\system32\ntoskrnl.exe
2013-02-15 15:11:48 . 2013-01-05 05:00:15 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-02-15 15:11:47 . 2013-01-05 05:00:11 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-02-15 15:11:36 . 2013-01-04 03:26:48 3153408 ----a-w- C:\Windows\system32\win32k.sys
2013-02-15 15:11:34 . 2013-01-04 05:46:09 215040 ----a-w- C:\Windows\system32\winsrv.dll
2013-02-15 15:11:34 . 2013-01-04 02:47:33 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-02-15 15:11:33 . 2013-01-04 04:51:16 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-02-15 15:11:33 . 2013-01-04 02:47:35 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-02-15 15:11:33 . 2013-01-04 02:47:34 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-02-15 15:11:32 . 2013-01-04 02:47:34 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-02-15 15:11:29 . 2013-01-03 06:00:54 1913192 ----a-w- C:\Windows\system32\drivers\tcpip.sys
2013-02-15 15:11:29 . 2013-01-03 06:00:42 288088 ----a-w- C:\Windows\system32\drivers\FWPKCLNT.SYS
.


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2013-03-08 05:08:11 . 2012-11-16 04:35:18 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-03-08 05:08:11 . 2012-11-16 04:35:18 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-02-28 08:36:34 . 2012-11-15 11:01:51 68992 ----a-w- C:\Windows\system32\drivers\aswTdi.sys
2013-02-28 08:36:33 . 2012-11-15 11:01:52 377992 ----a-w- C:\Windows\system32\drivers\aswSP.sys
2013-02-28 08:36:33 . 2012-11-15 11:01:51 71064 ----a-w- C:\Windows\system32\drivers\aswRdr2.sys
2013-02-28 08:36:33 . 2012-11-15 11:01:50 1025880 ----a-w- C:\Windows\system32\drivers\aswSnx.sys
2013-02-28 08:36:32 . 2012-11-15 11:01:47 80888 ----a-w- C:\Windows\system32\drivers\aswMonFlt.sys
2013-02-28 08:36:31 . 2012-11-15 11:01:53 33472 ----a-w- C:\Windows\system32\drivers\aswFsBlk.sys
2013-02-28 08:36:07 . 2012-11-15 11:01:25 41664 ----a-w- C:\Windows\avastSS.scr
2013-02-28 08:35:43 . 2012-11-15 11:01:47 287840 ----a-w- C:\Windows\system32\aswBoot.exe
2013-02-27 17:05:40 . 2012-11-15 12:33:18 71024 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-27 17:05:40 . 2012-11-15 12:33:18 691568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-02-15 19:36:00 . 2012-11-18 12:31:32 70004024 ----a-w- C:\Windows\system32\MRT.exe
2013-01-21 07:12:12 . 2013-01-21 07:12:12 2177664 ----a-w- C:\Windows\system32\coin93.dll
2013-01-16 21:28:58 . 2010-11-21 03:27:21 273840 ------w- C:\Windows\system32\MpSigStub.exe
2013-01-04 04:43:21 . 2013-02-15 15:11:34 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2012-12-16 17:11:22 . 2012-12-21 20:50:17 46080 ----a-w- C:\Windows\system32\atmlib.dll
2012-12-16 14:45:03 . 2012-12-21 20:50:16 367616 ----a-w- C:\Windows\system32\atmfd.dll
2012-12-16 14:13:28 . 2012-12-21 20:50:15 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-16 14:13:20 . 2012-12-21 20:50:17 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-13 22:42:36 . 2012-12-13 22:42:36 9728 ----a-w- C:\Windows\system32\IGFXDEVLib.dll
2012-12-13 22:42:36 . 2012-12-13 22:42:36 437760 ----a-w- C:\Windows\system32\igfxrnor.lrc
2012-12-13 22:42:36 . 2012-12-13 22:42:36 21850112 ----a-w- C:\Windows\SysWow64\igdfcl32.dll
2012-12-13 22:42:36 . 2012-12-13 22:42:36 196096 ----a-w- C:\Windows\SysWow64\IntelOpenCL32.dll
2012-12-13 22:42:34 . 2012-10-09 22:22:20 384512 ----a-w- C:\Windows\system32\igfxpph.dll
2012-12-13 22:42:34 . 2012-03-21 01:53:55 12615680 ----a-w- C:\Windows\system32\igdumd64.dll
2012-12-13 22:42:30 . 2012-12-13 22:42:30 64512 ----a-w- C:\Windows\SysWow64\igdde32.dll
2012-12-13 22:42:30 . 2012-12-13 22:42:30 440320 ----a-w- C:\Windows\system32\igfxrell.lrc
2012-12-13 22:42:30 . 2012-12-13 22:42:30 437760 ----a-w- C:\Windows\system32\igfxrptb.lrc
2012-12-13 22:42:30 . 2012-12-13 22:42:30 437248 ----a-w- C:\Windows\system32\igfxrtha.lrc
2012-12-13 22:42:30 . 2012-12-13 22:42:30 435712 ----a-w- C:\Windows\system32\igfxrheb.lrc
2012-12-13 22:42:30 . 2012-12-13 22:42:30 435712 ----a-w- C:\Windows\system32\igfxrara.lrc
2012-12-13 22:42:30 . 2012-12-13 22:42:30 431104 ----a-w- C:\Windows\system32\igfxrkor.lrc
2012-12-13 22:42:30 . 2012-12-13 22:42:30 429056 ----a-w- C:\Windows\system32\igfxrcht.lrc
2012-12-13 22:42:30 . 2012-12-13 22:42:30 330752 ----a-w- C:\Windows\SysWow64\igfxdv32.dll
2012-12-13 22:42:30 . 2012-12-13 22:42:30 28672 ----a-w- C:\Windows\system32\igfxexps.dll
2012-12-13 22:42:30 . 2012-12-13 22:42:30 11174912 ----a-w- C:\Windows\SysWow64\igd10umd32.dll
2012-12-13 22:42:30 . 2012-03-21 01:54:01 64000 ----a-w- C:\Windows\system32\igfxsrvc.dll
2012-12-13 22:42:30 . 2012-03-21 01:53:29 110592 ----a-w- C:\Windows\system32\hccutils.dll
2012-12-13 22:42:28 . 2012-12-13 22:42:28 640512 ----a-w- C:\Windows\SysWow64\igfxcmrt32.dll
2012-12-13 22:42:28 . 2012-12-13 22:42:28 512112 ----a-w- C:\Windows\system32\igfxsrvc.exe
2012-12-13 22:42:28 . 2012-12-13 22:42:28 438784 ----a-w- C:\Windows\system32\igfxrnld.lrc
2012-12-13 22:42:28 . 2012-12-13 22:42:28 438784 ----a-w- C:\Windows\system32\igfxrdeu.lrc
2012-12-13 22:42:28 . 2012-12-13 22:42:28 3121152 ----a-w- C:\Windows\SysWow64\igfxcmjit32.dll
2012-12-13 22:42:28 . 2012-12-13 22:42:28 255088 ----a-w- C:\Windows\system32\igfxext.exe
2012-12-13 22:42:26 . 2012-12-13 22:42:26 483840 ----a-w- C:\Windows\system32\igfx11cmrt64.dll
2012-12-13 22:42:26 . 2012-12-13 22:42:26 439808 ----a-w- C:\Windows\system32\igfxresn.lrc
2012-12-13 22:42:26 . 2012-12-13 22:42:26 437760 ----a-w- C:\Windows\system32\igfxrtrk.lrc
2012-12-13 22:42:26 . 2012-12-13 22:42:26 428544 ----a-w- C:\Windows\system32\igfxrchs.lrc
2012-12-13 22:42:26 . 2012-12-13 22:42:26 241664 ----a-w- C:\Windows\system32\IntelOpenCL64.dll
2012-12-13 22:42:26 . 2012-03-21 01:53:58 9007616 ----a-w- C:\Windows\system32\igfxress.dll
2012-12-13 22:42:26 . 2012-03-21 01:53:39 12858368 ----a-w- C:\Windows\system32\igd10umd64.dll
2012-12-13 22:42:24 . 2012-12-13 22:42:24 80384 ----a-w- C:\Windows\system32\igdde64.dll
2012-12-13 22:42:24 . 2012-12-13 22:42:24 754652 ----a-w- C:\Windows\system32\igcodeckrng700.bin
2012-12-13 22:42:24 . 2012-12-13 22:42:24 598384 ----a-w- C:\Windows\system32\igvpkrng700.bin
2012-12-13 22:42:24 . 2012-12-13 22:42:24 459264 ----a-w- C:\Windows\SysWow64\igfx11cmrt32.dll
2012-12-13 22:42:24 . 2012-12-13 22:42:24 439296 ----a-w- C:\Windows\system32\igfxrrus.lrc
2012-12-13 22:42:24 . 2012-12-13 22:42:24 438784 ----a-w- C:\Windows\system32\igfxrptg.lrc
2012-12-13 22:42:24 . 2012-12-13 22:42:24 286208 ----a-w- C:\Windows\system32\igfxrenu.lrc
2012-12-13 22:42:24 . 2012-12-13 22:42:24 142336 ----a-w- C:\Windows\system32\igfxdo.dll
2012-12-13 22:42:24 . 2012-12-13 22:42:24 11049472 ----a-w- C:\Windows\SysWow64\igdumd32.dll
2012-12-13 22:42:22 . 2012-12-13 22:42:22 5353888 ----a-w- C:\Windows\system32\drivers\igdkmd64.sys
2012-12-13 22:42:22 . 2012-12-13 22:42:22 439296 ----a-w- C:\Windows\system32\igfxrrom.lrc
2012-12-13 22:42:22 . 2012-12-13 22:42:22 438272 ----a-w- C:\Windows\system32\igfxrcsy.lrc
2012-12-13 22:42:22 . 2012-12-13 22:42:22 25088 ----a-w- C:\Windows\SysWow64\igfxexps32.dll
2012-12-13 22:42:22 . 2012-12-13 22:42:22 185968 ----a-w- C:\Windows\system32\difx64.exe
2012-12-13 22:42:22 . 2012-12-13 22:42:22 11633152 ----a-w- C:\Windows\system32\ig7icd64.dll
2012-12-13 22:42:20 . 2012-12-13 22:42:20 8621056 ----a-w- C:\Windows\SysWow64\ig7icd32.dll
2012-12-13 22:42:20 . 2012-12-13 22:42:20 518656 ----a-w- C:\Windows\system32\igfxcmrt64.dll
2012-12-13 22:42:20 . 2012-12-13 22:42:20 438272 ----a-w- C:\Windows\system32\igfxrfin.lrc
2012-12-13 22:42:20 . 2012-12-13 22:42:20 437760 ----a-w- C:\Windows\system32\igfxrsve.lrc
2012-12-13 22:42:20 . 2012-12-13 22:42:20 432128 ----a-w- C:\Windows\system32\igfxrjpn.lrc
2012-12-13 22:42:20 . 2012-12-13 22:42:20 27457536 ----a-w- C:\Windows\system32\igdfcl64.dll
2012-12-13 22:42:20 . 2012-12-13 22:42:20 116224 ----a-w- C:\Windows\system32\igfxCoIn_v2932.dll
2012-12-13 22:42:16 . 2012-12-13 22:42:16 438784 ----a-w- C:\Windows\system32\igfxrita.lrc
2012-12-13 22:42:16 . 2012-12-13 22:42:16 438272 ----a-w- C:\Windows\system32\igfxrhun.lrc
2012-12-13 22:42:16 . 2012-12-13 22:42:16 437248 ----a-w- C:\Windows\system32\igfxrdan.lrc
2012-12-13 22:42:16 . 2012-12-13 22:42:16 27643904 ----a-w- C:\Windows\SysWow64\igdrcl32.dll
2012-12-13 22:42:16 . 2012-12-13 22:42:16 126976 ----a-w- C:\Windows\system32\igfxcpl.cpl
2012-12-13 22:42:16 . 2012-10-09 22:22:28 442880 ----a-w- C:\Windows\system32\igfxdev.dll
2012-12-13 22:42:14 . 2012-12-13 22:42:14 441968 ----a-w- C:\Windows\system32\igfxpers.exe
2012-12-13 22:42:14 . 2012-12-13 22:42:14 439808 ----a-w- C:\Windows\system32\igfxrfra.lrc
2012-12-13 22:42:14 . 2012-12-13 22:42:14 410112 ----a-w- C:\Windows\system32\igfxTMM.dll
2012-12-13 22:42:14 . 2012-12-13 22:42:14 3581440 ----a-w- C:\Windows\system32\igdbcl64.dll
2012-12-13 22:42:14 . 2012-12-13 22:42:14 172144 ----a-w- C:\Windows\system32\igfxtray.exe
2012-12-13 22:42:12 . 2012-12-13 22:42:12 5906032 ----a-w- C:\Windows\system32\GfxUI.exe
2012-12-13 22:42:12 . 2012-12-13 22:42:12 438784 ----a-w- C:\Windows\system32\igfxrsky.lrc
2012-12-13 22:42:12 . 2012-12-13 22:42:12 438784 ----a-w- C:\Windows\system32\igfxrplk.lrc
2012-12-13 22:42:12 . 2012-12-13 22:42:12 438784 ----a-w- C:\Windows\system32\igfxrhrv.lrc
2012-12-13 22:42:12 . 2012-12-13 22:42:12 3511296 ----a-w- C:\Windows\system32\igfxcmjit64.dll
2012-12-13 22:42:12 . 2012-12-13 22:42:12 2898944 ----a-w- C:\Windows\SysWow64\igdbcl32.dll
2012-12-13 22:42:12 . 2012-12-13 22:42:12 27664896 ----a-w- C:\Windows\system32\igdrcl64.dll
2012-12-13 22:42:12 . 2012-12-13 22:42:12 175104 ----a-w- C:\Windows\system32\gfxSrvc.dll
2012-12-13 22:42:10 . 2012-12-13 22:42:10 437760 ----a-w- C:\Windows\system32\igfxrslv.lrc
2012-12-13 22:42:10 . 2012-12-13 22:42:10 399984 ----a-w- C:\Windows\system32\hkcmd.exe
2012-12-13 22:42:10 . 2012-12-13 22:42:10 277616 ----a-w- C:\Windows\SysWow64\IntelCpHeciSvc.exe
2012-12-13 09:50:38 . 2012-12-13 09:50:38 6112864 ----a-w- C:\Windows\system32\usbaaplrc.dll
2012-12-13 09:50:36 . 2012-12-13 09:50:36 54784 ----a-w- C:\Windows\system32\drivers\usbaapl64.sys
2012-12-12 13:53:10 . 2012-11-19 12:40:52 38368 ----a-w- C:\Windows\system32\drivers\visctap0901.sys


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2013-03-05 16:20:20 1722488 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2013-03-05 16:20:20 1722488 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2013-03-05 16:20:20 1722488 ----a-w- C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Power2GoExpress"="NA" [X]
"SugarSync"="C:\Program Files (x86)\SugarSync\SugarSyncManager.exe" [2013-01-24 08:06:40 11184480]
"WiTopia"="C:\Program Files\WiTopia\WiTopia.exe" [2012-12-12 13:53:00 664688]
"Akamai NetSession Interface"="C:\Users\Sleepyjims Blue\AppData\Local\Akamai\netsession_win.exe" [2012-10-09 06:53:36 4441920]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-01 19:41:30 5629312]
"uTorrent"="C:\Program Files (x86)\uTorrent\uTorrent.exe" [2013-03-07 07:50:20 1051984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2011-11-30 03:04:54 284440]
"USB3MON"="C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-26 17:40:44 291608]
"331BigDog"="C:\Program Files (x86)\USB Camera\VM331_STI.EXE" [2011-11-24 08:06:58 548864]
"Lenovo Registration"="C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe" [2012-01-26 19:41:56 4351712]
"YouCam Mirage"="C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe" [2011-01-29 06:29:36 136488]
"YouCam Tray"="C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" [2011-01-29 06:29:36 228448]
"UpdateP2GShortCut"="C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2010-07-26 23:35:56 222504]
"VeriFaceManager"="C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe" [2012-06-15 21:32:18 329056]
"UpdatePRCShortCut"="C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" [2009-05-13 23:38:24 222504]
"{CDF13D74-E6AA-4006-818A-B360D6A3573C}"="C:\Program Files\Launch Manager\HotkeyApp.exe" [2012-03-01 17:34:24 415272]
"avast"="C:\Program Files\AVAST Software\Avast\avastUI.exe" [2013-02-28 08:36:01 4767304]
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 07:35:28 946352]
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 09:08:14 59720]
"BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-01-21 13:22:24 91520]
"QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe" [2012-10-24 23:12:14 421888]
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 08:35:28 152392]
"WinPatrol"="C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe" [2013-03-05 19:41:44 418024]
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 05:04:54 252848]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=C:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\guard32.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 22:27:14 138576]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14:10:20 19456]
R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 14:07:35 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 14:08:26 30208]
R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys [2012-12-13 09:50:36 54784]
R3 visctap0901;Viscosity Virtual Adapter V9.1;C:\Windows\system32\DRIVERS\visctap0901.sys [2012-12-12 13:53:10 38368]
R3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-17 15:24:07 1255736]
R3 wsvd;wsvd;C:\Windows\system32\DRIVERS\wsvd.sys [2009-07-21 21:20:06 121840]
R4 DamageGuard;DamageGuard;C:\Windows\system32\DRIVERS\DamageGuardX64.sys [2012-02-11 00:36:26 217392]
R4 DamageGuardSvc;Lenovo Instant Reset Service;C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe [2012-03-26 21:41:18 572976]
R4 dgFltr;dgFltr;C:\Windows\system32\drivers\dgFltrX64.sys [2011-12-13 18:04:52 23648]
R4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 01:10:10 57184]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 fbfmon;fbfmon;C:\Windows\system32\drivers\fbfmon.sys [2012-06-15 21:35:44 57952]
S0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-01-26 17:39:34 16152]
S0 LHDmgr;LHDmgr;C:\Windows\System32\DRIVERS\LhdX64.sys [2012-06-15 21:34:06 39008]
S0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-10-02 22:21:00 30056]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 BPntDrv;BPntDrv;C:\Windows\system32\drivers\BPntDrv.sys [2012-06-15 21:35:44 13408]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\system32\DRIVERS\cmdguard.sys [2012-11-07 19:38:00 584056]
S1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\system32\DRIVERS\cmdhlp.sys [2012-11-07 19:38:02 38144]
S1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 16:26:56 14928]
S1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 21:55:18 12368]
S2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 18:54:58 140672]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;C:\Windows\system32\drivers\aswMonFlt.sys [2013-02-28 08:36:32 80888]
S2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-10-28 20:56:18 106144]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-30 03:04:56 13592]
S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 23:38:24 607456]
S2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2011-12-16 04:37:18 128280]
S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2011-12-16 04:37:10 161560]
S2 OfficeSvc;Microsoft Office Service;C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-02-21 13:39:44 1860264]
S2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-12-16 04:37:30 363800]
S2 WisLMSvc;WisLMSvc;C:\Program Files\Launch Manager\WisLMSvc.exe [2011-12-21 19:02:34 119848]
S2 WiTopiaService;WiTopia Service;C:\Program Files\WiTopia\WiTopiaService.exe [2012-12-12 13:53:02 60528]
S2 ZAtheros Bt&Wlan Coex Agent;ZAtheros Bt&Wlan Coex Agent;C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-10-28 20:58:18 158880]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\Windows\system32\DRIVERS\AcpiVpc.sys [2012-06-15 21:34:06 30816]
S3 AmUStor;AM USB Stroage Driver;C:\Windows\system32\drivers\AmUStor.SYS [2011-12-15 10:47:40 85080]
S3 AthBTPort;Atheros Virtual Bluetooth Class;C:\Windows\system32\DRIVERS\btath_flt.sys [2011-10-28 20:57:18 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\system32\drivers\btath_a2dp.sys [2011-10-28 20:57:10 330912]
S3 btath_avdt;Atheros Bluetooth AVDT Service;C:\Windows\system32\drivers\btath_avdt.sys [2011-10-28 20:57:10 110240]
S3 BTATH_BUS;Atheros Bluetooth Bus;C:\Windows\system32\DRIVERS\btath_bus.sys [2011-10-28 20:57:14 30368]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-10-28 20:57:20 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-10-28 20:57:28 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-10-28 20:57:30 280992]
S3 BtFilter;BtFilter;C:\Windows\system32\DRIVERS\btfilter.sys [2011-10-28 20:57:36 521376]
S3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\system32\DRIVERS\clwvd.sys [2011-01-29 06:29:58 31088]
S3 dc3d;MS Hardware Device Detection Driver (USB);C:\Windows\system32\DRIVERS\dc3d.sys [2011-05-18 04:08:32 47616]
S3 IntcDAud;Intel® Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 19:23:08 331264]
S3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-01-26 17:39:34 356120]
S3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-01-26 17:39:34 787736]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-11-15 03:12:08 111216]
S3 SmbDrvIntel;SmbDrvIntel;C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-03-26 10:31:30 27408]
S3 vm331avs;Digital Camera 1;C:\Windows\system32\Drivers\vm331avs.sys [2011-12-06 07:31:40 952832]


[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-05 21:25:11 1630672 ----a-w- C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.152\Installer\chrmstp.exe

Contents of the 'Scheduled Tasks' folder

2013-03-08 C:\Windows\Tasks\Adobe Flash Player Updater.job
- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-15 12:33:18 . 2013-02-27 17:05:40]

2013-03-08 C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-15 21:33:03 . 2012-06-15 21:33:02]

2013-03-08 C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-15 21:33:03 . 2012-06-15 21:33:02]

2013-03-08 C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
- C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 20:41:18 . 2011-11-25 20:41:18]

2013-03-08 C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
- C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25 20:41:18 . 2011-11-25 20:41:18]


--------- X64 Entries -----------


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2013-03-05 16:20:24 2324576 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2013-03-05 16:20:24 2324576 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2013-03-05 16:20:24 2324576 ----a-w- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-02-28 08:35:41 133840 ----a-w- C:\Program Files\AVAST Software\Avast\ashShA64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]
@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"
[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]
2013-01-24 07:48:32 482144 ----a-w- C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]
@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"
[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]
2013-01-24 07:48:32 482144 ----a-w- C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]
@="{A759AFF6-5851-457D-A540-F4ECED148351}"
[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]
2013-01-24 07:48:32 482144 ----a-w- C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]
@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"
[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]
2013-01-24 07:48:32 482144 ----a-w- C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VeriFace Enc]
@="{771C7324-DA80-49D3-8017-753B0AF60951}"
[HKEY_CLASSES_ROOT\CLSID\{771C7324-DA80-49D3-8017-753B0AF60951}]
2012-06-15 21:32:22 1508192 ----a-w- C:\Windows\System32\IcnOvrly.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2011-12-21 13:03:00 368728]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-01-10 11:11:30 12445288]
"RtHDVBg_Dolby"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" [2011-11-15 11:18:24 1156712]
"AtherosBtStack"="C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" [2011-10-28 20:56:38 984224]
"AthBtTray"="C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-10-28 20:56:20 800416]
"Energy Management"="C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe" [2012-06-15 21:34:05 8079408]
"EnergyUtility"="C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe" [2012-06-15 21:34:06 6199128]
"Lenovo EE Boot Optimizer"="C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe" [2012-06-15 21:35:44 206176]
"COMODO Internet Security"="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" [2012-11-07 19:37:14 9577680]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [2012-12-13 22:42:14 172144]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2012-12-13 22:42:10 399984]
"Persistence"="C:\Windows\system32\igfxpers.exe" [2012-12-13 22:42:14 441968]
"WinPatrol"="C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe" [2013-03-05 19:41:44 418024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=C:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\guard32.dll C:\Windows\System32\nvinitx.dll C:\Windows\System32\guard64.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache

------- Supplementary Scan -------

uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
uLocal Page = C:\Windows\system32\blank.htm
mLocal Page = C:\Windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>;*.local
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.100 192.168.1.100
TCP: Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B}: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B}\1426570244861626960205F6C6963656: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B}\35A402E4F4D4144402960586F6E656: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{19DEB351-1183-41F1-A2E8-EECC5287146B}\C45624F657C616E6765627D22456163686D234166656: NameServer = 8.26.56.26,156.154.70.22
TCP: Interfaces\{6B6B96C8-948C-4161-9DB2-AFD288A5AF72}: NameServer = 8.26.56.26,156.154.70.22
FF - ProfilePath - C:\Users\Sleepyjims Blue\AppData\Roaming\Mozilla\Firefox\Profiles\gtwcdxhk.default\
FF - prefs.js: browser.search.selectedEngine - Alnaddy
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig?hl=en&source=iglk

- - - - ORPHANS REMOVED - - - -

Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-SynLenovoGestureMgr - C:\Program Files (x86)\Synaptics\SynTP\SynLenovoGestureMgr.exe
  • 0

#7
gringo_pr
Posted 08 March 2013 - 11:32 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello sleepyjim


I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================

and I will see if I want to see the whole report

Malwarebytes Anti-Rootkit

1.Download Malwarebytes Anti-Rootkit
2.Unzip the contents to a folder in a convenient location.
3.Open the folder where the contents were unzipped and run mbar.exe
4.Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
5.Click on the Cleanup button to remove any threats and reboot if prompted to do so.
6.Wait while the system shuts down and the cleanup process is performed.
7.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
8.If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:
•Internet access
•Windows Update
•Windows Firewall9.If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included with Malwarebytes Anti-Rootkit and reboot.
10.Verify that your system is now functioning normally.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and MBAR

Gringo
  • 0

#8
sleepyjim
Posted 08 March 2013 - 02:08 PM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
Here is TDS log:
23:58:09.0327 4604 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:58:11.0342 4604 ============================================================
23:58:11.0342 4604 Current date / time: 2013/03/08 23:58:11.0342
23:58:11.0342 4604 SystemInfo:
23:58:11.0342 4604
23:58:11.0342 4604 OS Version: 6.1.7601 ServicePack: 1.0
23:58:11.0342 4604 Product type: Workstation
23:58:11.0342 4604 ComputerName: SLEEPYJIMSBLUE
23:58:11.0342 4604 UserName: Sleepyjims Blue
23:58:11.0342 4604 Windows directory: C:\Windows
23:58:11.0342 4604 System windows directory: C:\Windows
23:58:11.0342 4604 Running under WOW64
23:58:11.0342 4604 Processor architecture: Intel x64
23:58:11.0342 4604 Number of processors: 4
23:58:11.0342 4604 Page size: 0x1000
23:58:11.0342 4604 Boot type: Normal boot
23:58:11.0342 4604 ============================================================
23:58:13.0776 4604 BG loaded
23:58:14.0103 4604 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:58:14.0103 4604 ============================================================
23:58:14.0103 4604 \Device\Harddisk0\DR0:
23:58:14.0103 4604 MBR partitions:
23:58:14.0103 4604 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
23:58:14.0103 4604 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x34921000
23:58:14.0103 4604 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x34985800, BlocksNum 0x32F0000
23:58:14.0103 4604 ============================================================
23:58:14.0135 4604 C: <-> \Device\Harddisk0\DR0\Partition2
23:58:14.0181 4604 D: <-> \Device\Harddisk0\DR0\Partition3
23:58:14.0181 4604 ============================================================
23:58:14.0181 4604 Initialize success
23:58:14.0181 4604 ============================================================
00:00:09.0150 7316 ============================================================
00:00:09.0150 7316 Scan started
00:00:09.0150 7316 Mode: Manual; SigCheck; TDLFS;
00:00:09.0150 7316 ============================================================
00:00:10.0538 7316 ================ Scan system memory ========================
00:00:10.0538 7316 System memory - ok
00:00:10.0538 7316 ================ Scan services =============================
00:00:10.0632 7316 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
00:00:10.0678 7316 !SASCORE - ok
00:00:11.0739 7316 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
00:00:11.0786 7316 1394ohci - ok
00:00:11.0802 7316 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
00:00:11.0817 7316 ACPI - ok
00:00:11.0833 7316 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
00:00:11.0880 7316 AcpiPmi - ok
00:00:11.0911 7316 [ 5E813B11629007309E4FC0F0FD2B7C30 ] ACPIVPC C:\Windows\system32\DRIVERS\AcpiVpc.sys
00:00:11.0926 7316 ACPIVPC - ok
00:00:12.0036 7316 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:00:12.0051 7316 AdobeARMservice - ok
00:00:12.0145 7316 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:00:12.0160 7316 AdobeFlashPlayerUpdateSvc - ok
00:00:12.0207 7316 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
00:00:12.0238 7316 adp94xx - ok
00:00:12.0254 7316 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
00:00:12.0285 7316 adpahci - ok
00:00:12.0285 7316 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
00:00:12.0301 7316 adpu320 - ok
00:00:12.0332 7316 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:00:12.0379 7316 AeLookupSvc - ok
00:00:12.0441 7316 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
00:00:12.0472 7316 AFD - ok
00:00:12.0504 7316 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
00:00:12.0519 7316 agp440 - ok
00:00:12.0550 7316 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
00:00:12.0597 7316 ALG - ok
00:00:12.0628 7316 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
00:00:12.0644 7316 aliide - ok
00:00:12.0660 7316 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
00:00:12.0660 7316 amdide - ok
00:00:12.0722 7316 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
00:00:12.0800 7316 AmdK8 - ok
00:00:12.0847 7316 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
00:00:12.0987 7316 AmdPPM - ok
00:00:13.0050 7316 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
00:00:13.0065 7316 amdsata - ok
00:00:13.0081 7316 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
00:00:13.0096 7316 amdsbs - ok
00:00:13.0096 7316 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
00:00:13.0112 7316 amdxata - ok
00:00:13.0143 7316 [ C5D5B9BAF5A940953FE8393BF937AD60 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
00:00:13.0159 7316 AmUStor - ok
00:00:13.0190 7316 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
00:00:13.0237 7316 AppID - ok
00:00:13.0284 7316 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
00:00:13.0315 7316 AppIDSvc - ok
00:00:13.0315 7316 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
00:00:13.0362 7316 Appinfo - ok
00:00:13.0424 7316 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:00:13.0440 7316 Apple Mobile Device - ok
00:00:13.0486 7316 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
00:00:13.0502 7316 arc - ok
00:00:13.0533 7316 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
00:00:13.0549 7316 arcsas - ok
00:00:13.0580 7316 [ 4CA8E3A70263C3029935551204586701 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
00:00:13.0596 7316 aswFsBlk - ok
00:00:13.0611 7316 [ CF6A24076F978BF9C1FE61EE8595DB66 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
00:00:13.0627 7316 aswMonFlt - ok
00:00:13.0658 7316 [ 24EB5B96B8D215BAC4FC280D39B73049 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
00:00:13.0674 7316 aswRdr - ok
00:00:13.0720 7316 [ 76A2BD420185B468B6DE89AED1EEAE40 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
00:00:13.0736 7316 aswRvrt - ok
00:00:13.0798 7316 [ 5EB2FC36BD4639097A2F9BB68C825604 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
00:00:13.0814 7316 aswSnx - ok
00:00:13.0845 7316 [ AB1403AF5CC781D5148096216DA3A2A3 ] aswSP C:\Windows\system32\drivers\aswSP.sys
00:00:13.0861 7316 aswSP - ok
00:00:13.0876 7316 [ 6A2D4BB9DDAA7D74839936403BB31F06 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
00:00:13.0892 7316 aswTdi - ok
00:00:13.0908 7316 [ 0A83FFF1AEF6113EF8DCBB32D5014AB1 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
00:00:13.0923 7316 aswVmm - ok
00:00:13.0939 7316 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:00:13.0986 7316 AsyncMac - ok
00:00:14.0032 7316 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
00:00:14.0048 7316 atapi - ok
00:00:14.0064 7316 [ 185F180536188C1A4ED605234721A5B9 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
00:00:14.0064 7316 AthBTPort - ok
00:00:14.0142 7316 [ 846DBF46408C30941E6182E2EF084223 ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
00:00:14.0142 7316 AtherosSvc - ok
00:00:14.0220 7316 [ DE9FB3DADE8FD39AE2C587DF22D36B8E ] athr C:\Windows\system32\DRIVERS\athrx.sys
00:00:14.0251 7316 athr - ok
00:00:14.0313 7316 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:00:14.0360 7316 AudioEndpointBuilder - ok
00:00:14.0376 7316 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
00:00:14.0407 7316 AudioSrv - ok
00:00:14.0454 7316 [ AEF6E1DE647339C4990586D1DE427BBB ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
00:00:14.0469 7316 avast! Antivirus - ok
00:00:14.0516 7316 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
00:00:14.0563 7316 AxInstSV - ok
00:00:14.0594 7316 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
00:00:14.0625 7316 b06bdrv - ok
00:00:14.0719 7316 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
00:00:14.0781 7316 b57nd60a - ok
00:00:14.0844 7316 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
00:00:14.0875 7316 BDESVC - ok
00:00:14.0890 7316 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
00:00:14.0937 7316 Beep - ok
00:00:15.0000 7316 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
00:00:15.0046 7316 BFE - ok
00:00:15.0078 7316 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
00:00:15.0124 7316 BITS - ok
00:00:15.0140 7316 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
00:00:15.0156 7316 blbdrive - ok
00:00:15.0202 7316 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:00:15.0218 7316 Bonjour Service - ok
00:00:15.0249 7316 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:00:15.0265 7316 bowser - ok
00:00:15.0312 7316 [ AAA4F992F879977A000FE8B8C730CD2C ] BPntDrv C:\Windows\system32\drivers\BPntDrv.sys
00:00:15.0312 7316 BPntDrv - ok
00:00:15.0358 7316 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
00:00:15.0374 7316 BrFiltLo - ok
00:00:15.0390 7316 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
00:00:15.0405 7316 BrFiltUp - ok
00:00:15.0436 7316 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
00:00:15.0468 7316 BridgeMP - ok
00:00:15.0499 7316 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
00:00:15.0530 7316 Browser - ok
00:00:15.0530 7316 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
00:00:15.0561 7316 Brserid - ok
00:00:15.0592 7316 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
00:00:15.0608 7316 BrSerWdm - ok
00:00:15.0624 7316 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
00:00:15.0655 7316 BrUsbMdm - ok
00:00:15.0670 7316 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
00:00:15.0686 7316 BrUsbSer - ok
00:00:15.0717 7316 [ 58C4425368625D275BFC412B59363CE9 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
00:00:15.0733 7316 BTATH_A2DP - ok
00:00:15.0764 7316 [ 31D4AC3BE7BD37328D49885C380EC506 ] btath_avdt C:\Windows\system32\drivers\btath_avdt.sys
00:00:15.0764 7316 btath_avdt - ok
00:00:15.0826 7316 [ E6B734A37ADE36FE1A77035F4E484C8C ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys
00:00:15.0826 7316 BTATH_BUS - ok
00:00:15.0873 7316 [ FB3833E63FF602B69C2FF085846DCF43 ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys
00:00:15.0889 7316 BTATH_HCRP - ok
00:00:15.0936 7316 [ 371A11C1333BA526263A987A93ACDE3D ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
00:00:15.0936 7316 BTATH_LWFLT - ok
00:00:15.0982 7316 [ ABCD3C16CA850A7594CEB9AD5D966810 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys
00:00:15.0998 7316 BTATH_RCP - ok
00:00:16.0092 7316 [ 0EE0D4ECFE459C5937FEC7639C13E26E ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
00:00:16.0107 7316 BtFilter - ok
00:00:16.0138 7316 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
00:00:16.0201 7316 BthEnum - ok
00:00:16.0263 7316 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
00:00:16.0294 7316 BTHMODEM - ok
00:00:16.0310 7316 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
00:00:16.0341 7316 BthPan - ok
00:00:16.0404 7316 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
00:00:16.0435 7316 BTHPORT - ok
00:00:16.0450 7316 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
00:00:16.0497 7316 bthserv - ok
00:00:16.0513 7316 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
00:00:16.0528 7316 BTHUSB - ok
00:00:16.0544 7316 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:00:16.0575 7316 cdfs - ok
00:00:16.0622 7316 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:00:16.0653 7316 cdrom - ok
00:00:16.0684 7316 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
00:00:16.0731 7316 CertPropSvc - ok
00:00:16.0747 7316 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
00:00:16.0778 7316 circlass - ok
00:00:16.0794 7316 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
00:00:16.0809 7316 CLFS - ok
00:00:16.0872 7316 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:00:16.0887 7316 clr_optimization_v2.0.50727_32 - ok
00:00:16.0918 7316 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:00:16.0950 7316 clr_optimization_v2.0.50727_64 - ok
00:00:17.0012 7316 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:00:17.0043 7316 clr_optimization_v4.0.30319_32 - ok
00:00:17.0090 7316 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:00:17.0106 7316 clr_optimization_v4.0.30319_64 - ok
00:00:17.0152 7316 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
00:00:17.0152 7316 clwvd - ok
00:00:17.0184 7316 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
00:00:17.0199 7316 CmBatt - ok
00:00:17.0308 7316 [ 65FB5097D9EE7E3A99E932CFA0E4B344 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
00:00:17.0340 7316 cmdAgent - ok
00:00:17.0402 7316 [ 919ACCC22ABDC1C3CA68326C0E5DEAF9 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
00:00:17.0418 7316 cmdGuard - ok
00:00:17.0449 7316 [ F8FECE0F1D44C4A58778083B00EEADAC ] cmdHlp C:\Windows\system32\DRIVERS\cmdhlp.sys
00:00:17.0464 7316 cmdHlp - ok
00:00:17.0480 7316 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:00:17.0496 7316 cmdide - ok
00:00:17.0542 7316 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
00:00:17.0558 7316 CNG - ok
00:00:17.0605 7316 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
00:00:17.0605 7316 Compbatt - ok
00:00:17.0636 7316 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
00:00:17.0667 7316 CompositeBus - ok
00:00:17.0683 7316 COMSysApp - ok
00:00:17.0698 7316 [ 815F3180B5117E42E422188E9CCC89C6 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
00:00:17.0714 7316 cphs - ok
00:00:17.0761 7316 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
00:00:17.0761 7316 crcdisk - ok
00:00:17.0792 7316 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:00:17.0808 7316 CryptSvc - ok
00:00:17.0823 7316 [ 56F4750B7F0CE969E43DE2A76DDA5A5F ] DamageGuard C:\Windows\system32\DRIVERS\DamageGuardX64.sys
00:00:17.0839 7316 DamageGuard - ok
00:00:17.0917 7316 [ 75974DA59BA3D2E3DCE9386493A31F54 ] DamageGuardSvc C:\Program Files\Lenovo\Instant Reset\DamageGuardSvc.exe
00:00:17.0948 7316 DamageGuardSvc - ok
00:00:17.0995 7316 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
00:00:18.0026 7316 dc3d - ok
00:00:18.0057 7316 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
00:00:18.0104 7316 DcomLaunch - ok
00:00:18.0120 7316 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
00:00:18.0166 7316 defragsvc - ok
00:00:18.0198 7316 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:00:18.0229 7316 DfsC - ok
00:00:18.0229 7316 [ 5014042B07FE6CBE0E6C737AA3F1EBFC ] dgFltr C:\Windows\system32\drivers\dgFltrX64.sys
00:00:18.0244 7316 dgFltr - ok
00:00:18.0291 7316 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
00:00:18.0322 7316 Dhcp - ok
00:00:18.0354 7316 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
00:00:18.0400 7316 discache - ok
00:00:18.0416 7316 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
00:00:18.0432 7316 Disk - ok
00:00:18.0463 7316 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:00:18.0478 7316 Dnscache - ok
00:00:18.0494 7316 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
00:00:18.0541 7316 dot3svc - ok
00:00:18.0541 7316 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
00:00:18.0603 7316 DPS - ok
00:00:18.0634 7316 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:00:18.0681 7316 drmkaud - ok
00:00:18.0712 7316 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:00:18.0728 7316 DXGKrnl - ok
00:00:18.0775 7316 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
00:00:18.0806 7316 EapHost - ok
00:00:18.0900 7316 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
00:00:19.0040 7316 ebdrv - ok
00:00:19.0056 7316 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
00:00:19.0087 7316 EFS - ok
00:00:19.0149 7316 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
00:00:19.0196 7316 ehRecvr - ok
00:00:19.0212 7316 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
00:00:19.0227 7316 ehSched - ok
00:00:19.0274 7316 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
00:00:19.0290 7316 elxstor - ok
00:00:19.0305 7316 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
00:00:19.0336 7316 ErrDev - ok
00:00:19.0368 7316 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
00:00:19.0399 7316 EventSystem - ok
00:00:19.0430 7316 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
00:00:19.0461 7316 exfat - ok
00:00:19.0477 7316 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:00:19.0524 7316 fastfat - ok
00:00:19.0555 7316 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
00:00:19.0586 7316 Fax - ok
00:00:19.0602 7316 [ 0BDD7984DB7AAFF6DFEFD11D82D473DB ] fbfmon C:\Windows\system32\drivers\fbfmon.sys
00:00:19.0617 7316 fbfmon - ok
00:00:19.0633 7316 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
00:00:19.0664 7316 fdc - ok
00:00:19.0695 7316 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
00:00:19.0727 7316 fdPHost - ok
00:00:19.0758 7316 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
00:00:19.0805 7316 FDResPub - ok
00:00:19.0836 7316 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:00:19.0836 7316 FileInfo - ok
00:00:19.0851 7316 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:00:19.0883 7316 Filetrace - ok
00:00:19.0914 7316 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
00:00:19.0929 7316 flpydisk - ok
00:00:19.0945 7316 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:00:19.0961 7316 FltMgr - ok
00:00:20.0007 7316 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
00:00:20.0039 7316 FontCache - ok
00:00:20.0070 7316 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:00:20.0085 7316 FontCache3.0.0.0 - ok
00:00:20.0101 7316 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
00:00:20.0101 7316 FsDepends - ok
00:00:20.0132 7316 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
00:00:20.0148 7316 fssfltr - ok
00:00:20.0273 7316 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
00:00:20.0319 7316 fsssvc - ok
00:00:20.0366 7316 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:00:20.0382 7316 Fs_Rec - ok
00:00:20.0429 7316 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
00:00:20.0444 7316 fvevol - ok
00:00:20.0460 7316 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
00:00:20.0475 7316 gagp30kx - ok
00:00:20.0491 7316 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:00:20.0507 7316 GEARAspiWDM - ok
00:00:20.0538 7316 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
00:00:20.0569 7316 gpsvc - ok
00:00:20.0631 7316 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:00:20.0647 7316 gupdate - ok
00:00:20.0663 7316 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:00:20.0678 7316 gupdatem - ok
00:00:20.0694 7316 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
00:00:20.0709 7316 hcw85cir - ok
00:00:20.0741 7316 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:00:20.0772 7316 HdAudAddService - ok
00:00:20.0787 7316 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
00:00:20.0819 7316 HDAudBus - ok
00:00:20.0834 7316 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
00:00:20.0850 7316 HidBatt - ok
00:00:20.0865 7316 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
00:00:20.0897 7316 HidBth - ok
00:00:20.0912 7316 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
00:00:20.0928 7316 HidIr - ok
00:00:20.0975 7316 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
00:00:21.0021 7316 hidserv - ok
00:00:21.0068 7316 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
00:00:21.0084 7316 HidUsb - ok
00:00:21.0115 7316 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
00:00:21.0177 7316 hkmsvc - ok
00:00:21.0240 7316 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:00:21.0271 7316 HomeGroupListener - ok
00:00:21.0302 7316 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:00:21.0318 7316 HomeGroupProvider - ok
00:00:21.0349 7316 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
00:00:21.0365 7316 HpSAMD - ok
00:00:21.0396 7316 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:00:21.0443 7316 HTTP - ok
00:00:21.0458 7316 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
00:00:21.0474 7316 hwpolicy - ok
00:00:21.0505 7316 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
00:00:21.0521 7316 i8042prt - ok
00:00:21.0552 7316 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
00:00:21.0583 7316 iaStor - ok
00:00:21.0661 7316 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:00:21.0677 7316 IAStorDataMgrSvc - ok
00:00:21.0708 7316 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
00:00:21.0739 7316 iaStorV - ok
00:00:21.0801 7316 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:00:21.0848 7316 idsvc - ok
00:00:21.0973 7316 [ 348214F96642FD4FEF630DE021BA3540 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
00:00:22.0035 7316 igfx - ok
00:00:22.0067 7316 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
00:00:22.0098 7316 iirsp - ok
00:00:22.0129 7316 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
00:00:22.0191 7316 IKEEXT - ok
00:00:22.0238 7316 [ C4E67D3037DC79E39D7136581A947F50 ] inspect C:\Windows\system32\DRIVERS\inspect.sys
00:00:22.0254 7316 inspect - ok
00:00:22.0363 7316 [ BB0D3D57C25D6C5215077A8FAA7AD4B3 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
00:00:22.0441 7316 IntcAzAudAddService - ok
00:00:22.0488 7316 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
00:00:22.0519 7316 IntcDAud - ok
00:00:22.0566 7316 [ 2D66067C7A8A0112156BCD1C0BAA7042 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
00:00:22.0581 7316 Intel® Capability Licensing Service Interface - ok
00:00:22.0628 7316 [ C9DCE1CB628AEED3C0C30ABBF4F1E718 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
00:00:22.0659 7316 Intel® ME Service - ok
00:00:22.0691 7316 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
00:00:22.0706 7316 intelide - ok
00:00:22.0722 7316 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:00:22.0753 7316 intelppm - ok
00:00:22.0769 7316 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:00:22.0815 7316 IPBusEnum - ok
00:00:22.0831 7316 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:00:22.0878 7316 IpFilterDriver - ok
00:00:22.0909 7316 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:00:22.0940 7316 iphlpsvc - ok
00:00:22.0971 7316 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
00:00:23.0003 7316 IPMIDRV - ok
00:00:23.0018 7316 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
00:00:23.0065 7316 IPNAT - ok
00:00:23.0127 7316 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
00:00:23.0143 7316 iPod Service - ok
00:00:23.0174 7316 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:00:23.0205 7316 IRENUM - ok
00:00:23.0237 7316 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:00:23.0252 7316 isapnp - ok
00:00:23.0268 7316 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
00:00:23.0299 7316 iScsiPrt - ok
00:00:23.0330 7316 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
00:00:23.0361 7316 iusb3hcs - ok
00:00:23.0393 7316 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
00:00:23.0408 7316 iusb3hub - ok
00:00:23.0439 7316 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
00:00:23.0455 7316 iusb3xhc - ok
00:00:23.0502 7316 [ 3628933AF5305EAB8173949BFF912F04 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
00:00:23.0517 7316 jhi_service - ok
00:00:23.0564 7316 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:00:23.0580 7316 kbdclass - ok
00:00:23.0611 7316 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:00:23.0627 7316 kbdhid - ok
00:00:23.0642 7316 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
00:00:23.0658 7316 KeyIso - ok
00:00:23.0689 7316 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:00:23.0705 7316 KSecDD - ok
00:00:23.0720 7316 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
00:00:23.0736 7316 KSecPkg - ok
00:00:23.0767 7316 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
00:00:23.0814 7316 ksthunk - ok
00:00:23.0829 7316 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
00:00:23.0876 7316 KtmRm - ok
00:00:23.0939 7316 [ E84DA1A93978B3700EA63414357B9BA3 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
00:00:23.0954 7316 L1C - ok
00:00:24.0017 7316 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
00:00:24.0048 7316 LanmanServer - ok
00:00:24.0110 7316 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:00:24.0141 7316 LanmanWorkstation - ok
00:00:24.0173 7316 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\Windows\system32\DRIVERS\LhdX64.sys
00:00:24.0188 7316 LHDmgr - ok
00:00:24.0219 7316 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:00:24.0251 7316 lltdio - ok
00:00:24.0266 7316 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:00:24.0313 7316 lltdsvc - ok
00:00:24.0344 7316 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
00:00:24.0375 7316 lmhosts - ok
00:00:24.0407 7316 [ BF22ACF4CF3734D61357E67F0521BC03 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:00:24.0407 7316 LMS - ok
00:00:24.0453 7316 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
00:00:24.0469 7316 LSI_FC - ok
00:00:24.0485 7316 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
00:00:24.0500 7316 LSI_SAS - ok
00:00:24.0516 7316 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
00:00:24.0531 7316 LSI_SAS2 - ok
00:00:24.0531 7316 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
00:00:24.0547 7316 LSI_SCSI - ok
00:00:24.0563 7316 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
00:00:24.0609 7316 luafv - ok
00:00:24.0609 7316 McAfee SiteAdvisor Service - ok
00:00:24.0625 7316 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
00:00:24.0672 7316 Mcx2Svc - ok
00:00:24.0687 7316 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
00:00:24.0687 7316 megasas - ok
00:00:24.0734 7316 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
00:00:24.0750 7316 MegaSR - ok
00:00:24.0781 7316 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
00:00:24.0797 7316 MEIx64 - ok
00:00:24.0843 7316 Microsoft SharePoint Workspace Audit Service - ok
00:00:24.0875 7316 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
00:00:24.0906 7316 MMCSS - ok
00:00:24.0921 7316 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
00:00:24.0968 7316 Modem - ok
00:00:24.0999 7316 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:00:25.0015 7316 monitor - ok
00:00:25.0046 7316 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:00:25.0062 7316 mouclass - ok
00:00:25.0109 7316 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:00:25.0124 7316 mouhid - ok
00:00:25.0140 7316 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
00:00:25.0155 7316 mountmgr - ok
00:00:25.0202 7316 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:00:25.0218 7316 MozillaMaintenance - ok
00:00:25.0233 7316 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
00:00:25.0249 7316 mpio - ok
00:00:25.0280 7316 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:00:25.0311 7316 mpsdrv - ok
00:00:25.0358 7316 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
00:00:25.0405 7316 MpsSvc - ok
00:00:25.0436 7316 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:00:25.0467 7316 MRxDAV - ok
00:00:25.0483 7316 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:00:25.0514 7316 mrxsmb - ok
00:00:25.0530 7316 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:00:25.0545 7316 mrxsmb10 - ok
00:00:25.0561 7316 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:00:25.0577 7316 mrxsmb20 - ok
00:00:25.0592 7316 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
00:00:25.0592 7316 msahci - ok
00:00:25.0608 7316 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:00:25.0623 7316 msdsm - ok
00:00:25.0639 7316 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
00:00:25.0655 7316 MSDTC - ok
00:00:25.0686 7316 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:00:25.0717 7316 Msfs - ok
00:00:25.0779 7316 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
00:00:25.0826 7316 mshidkmdf - ok
00:00:25.0842 7316 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:00:25.0857 7316 msisadrv - ok
00:00:25.0873 7316 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:00:25.0920 7316 MSiSCSI - ok
00:00:25.0920 7316 msiserver - ok
00:00:25.0935 7316 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:00:25.0982 7316 MSKSSRV - ok
00:00:26.0013 7316 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:00:26.0060 7316 MSPCLOCK - ok
00:00:26.0076 7316 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:00:26.0123 7316 MSPQM - ok
00:00:26.0154 7316 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:00:26.0169 7316 MsRPC - ok
00:00:26.0201 7316 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
00:00:26.0216 7316 mssmbios - ok
00:00:26.0232 7316 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:00:26.0263 7316 MSTEE - ok
00:00:26.0294 7316 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
00:00:26.0310 7316 MTConfig - ok
00:00:26.0325 7316 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
00:00:26.0341 7316 Mup - ok
00:00:26.0372 7316 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
00:00:26.0419 7316 napagent - ok
00:00:26.0435 7316 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:00:26.0466 7316 NativeWifiP - ok
00:00:26.0497 7316 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
00:00:26.0544 7316 NDIS - ok
00:00:26.0559 7316 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
00:00:26.0591 7316 NdisCap - ok
00:00:26.0622 7316 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:00:26.0653 7316 NdisTapi - ok
00:00:26.0684 7316 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:00:26.0715 7316 Ndisuio - ok
00:00:26.0731 7316 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:00:26.0778 7316 NdisWan - ok
00:00:26.0793 7316 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:00:26.0825 7316 NDProxy - ok
00:00:26.0887 7316 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:00:26.0918 7316 NetBIOS - ok
00:00:26.0934 7316 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
00:00:26.0965 7316 NetBT - ok
00:00:26.0981 7316 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
00:00:26.0996 7316 Netlogon - ok
00:00:27.0043 7316 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
00:00:27.0090 7316 Netman - ok
00:00:27.0090 7316 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
00:00:27.0152 7316 netprofm - ok
00:00:27.0183 7316 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:00:27.0183 7316 NetTcpPortSharing - ok
00:00:27.0230 7316 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
00:00:27.0246 7316 nfrd960 - ok
00:00:27.0261 7316 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:00:27.0293 7316 NlaSvc - ok
00:00:27.0308 7316 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:00:27.0339 7316 Npfs - ok
00:00:27.0371 7316 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
00:00:27.0402 7316 nsi - ok
00:00:27.0417 7316 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:00:27.0464 7316 nsiproxy - ok
00:00:27.0511 7316 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:00:27.0573 7316 Ntfs - ok
00:00:27.0589 7316 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
00:00:27.0620 7316 Null - ok
00:00:27.0917 7316 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
00:00:28.0057 7316 nvlddmkm - ok
00:00:28.0073 7316 [ 918841B2454F4F2BD94479692079490B ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
00:00:28.0088 7316 nvpciflt - ok
00:00:28.0119 7316 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:00:28.0135 7316 nvraid - ok
00:00:28.0151 7316 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:00:28.0166 7316 nvstor - ok
00:00:28.0197 7316 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
00:00:28.0213 7316 nvsvc - ok
00:00:28.0291 7316 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
00:00:28.0338 7316 nvUpdatusService - ok
00:00:28.0369 7316 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:00:28.0385 7316 nv_agp - ok
00:00:28.0494 7316 [ 3B8C708A9DF59C436C5371C87E6AA864 ] OfficeSvc C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
00:00:28.0525 7316 OfficeSvc - ok
00:00:28.0541 7316 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
00:00:28.0556 7316 ohci1394 - ok
00:00:28.0619 7316 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:00:28.0634 7316 ose - ok
00:00:28.0790 7316 [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:00:28.0853 7316 osppsvc - ok
00:00:28.0915 7316 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
00:00:28.0946 7316 p2pimsvc - ok
00:00:28.0962 7316 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
00:00:28.0977 7316 p2psvc - ok
00:00:29.0009 7316 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
00:00:29.0024 7316 Parport - ok
00:00:29.0055 7316 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:00:29.0055 7316 partmgr - ok
00:00:29.0071 7316 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
00:00:29.0102 7316 PcaSvc - ok
00:00:29.0133 7316 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
00:00:29.0133 7316 pci - ok
00:00:29.0149 7316 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
00:00:29.0165 7316 pciide - ok
00:00:29.0180 7316 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
00:00:29.0196 7316 pcmcia - ok
00:00:29.0211 7316 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
00:00:29.0211 7316 pcw - ok
00:00:29.0227 7316 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:00:29.0274 7316 PEAUTH - ok
00:00:29.0367 7316 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
00:00:29.0383 7316 PerfHost - ok
00:00:29.0430 7316 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
00:00:29.0508 7316 pla - ok
00:00:29.0555 7316 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:00:29.0586 7316 PlugPlay - ok
00:00:29.0586 7316 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
00:00:29.0617 7316 PNRPAutoReg - ok
00:00:29.0633 7316 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
00:00:29.0648 7316 PNRPsvc - ok
00:00:29.0679 7316 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:00:29.0726 7316 PolicyAgent - ok
00:00:29.0742 7316 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
00:00:29.0773 7316 Power - ok
00:00:29.0820 7316 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:00:29.0851 7316 PptpMiniport - ok
00:00:29.0867 7316 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
00:00:29.0882 7316 Processor - ok
00:00:29.0898 7316 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
00:00:29.0929 7316 ProfSvc - ok
00:00:29.0945 7316 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:00:29.0960 7316 ProtectedStorage - ok
00:00:29.0976 7316 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
00:00:30.0023 7316 Psched - ok
00:00:30.0101 7316 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
00:00:30.0147 7316 ql2300 - ok
00:00:30.0179 7316 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
00:00:30.0194 7316 ql40xx - ok
00:00:30.0225 7316 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
00:00:30.0241 7316 QWAVE - ok
00:00:30.0257 7316 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:00:30.0288 7316 QWAVEdrv - ok
00:00:30.0288 7316 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:00:30.0335 7316 RasAcd - ok
00:00:30.0366 7316 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
00:00:30.0381 7316 RasAgileVpn - ok
00:00:30.0397 7316 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
00:00:30.0444 7316 RasAuto - ok
00:00:30.0459 7316 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:00:30.0491 7316 Rasl2tp - ok
00:00:30.0537 7316 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
00:00:30.0569 7316 RasMan - ok
00:00:30.0662 7316 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:00:30.0709 7316 RasPppoe - ok
00:00:30.0740 7316 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:00:30.0787 7316 RasSstp - ok
00:00:30.0834 7316 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:00:30.0881 7316 rdbss - ok
00:00:30.0896 7316 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
00:00:30.0927 7316 rdpbus - ok
00:00:30.0943 7316 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:00:30.0990 7316 RDPCDD - ok
00:00:31.0130 7316 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:00:31.0177 7316 RDPENCDD - ok
00:00:31.0193 7316 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
00:00:31.0224 7316 RDPREFMP - ok
00:00:31.0286 7316 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
00:00:31.0317 7316 RdpVideoMiniport - ok
00:00:31.0333 7316 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:00:31.0349 7316 RDPWD - ok
00:00:31.0380 7316 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
00:00:31.0395 7316 rdyboost - ok
00:00:31.0442 7316 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
00:00:31.0473 7316 RemoteAccess - ok
00:00:31.0505 7316 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:00:31.0536 7316 RemoteRegistry - ok
00:00:31.0567 7316 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
00:00:31.0583 7316 RFCOMM - ok
00:00:31.0598 7316 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
00:00:31.0629 7316 RpcEptMapper - ok
00:00:31.0676 7316 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
00:00:31.0692 7316 RpcLocator - ok
00:00:31.0707 7316 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
00:00:31.0739 7316 RpcSs - ok
00:00:31.0770 7316 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:00:31.0801 7316 rspndr - ok
00:00:31.0832 7316 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
00:00:31.0848 7316 SamSs - ok
00:00:31.0895 7316 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
00:00:31.0910 7316 SASDIFSV - ok
00:00:31.0910 7316 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
00:00:31.0926 7316 SASKUTIL - ok
00:00:31.0941 7316 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:00:31.0941 7316 sbp2port - ok
00:00:31.0973 7316 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:00:32.0004 7316 SCardSvr - ok
00:00:32.0019 7316 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
00:00:32.0051 7316 scfilter - ok
00:00:32.0082 7316 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
00:00:32.0129 7316 Schedule - ok
00:00:32.0144 7316 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
00:00:32.0175 7316 SCPolicySvc - ok
00:00:32.0191 7316 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:00:32.0222 7316 SDRSVC - ok
00:00:32.0253 7316 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:00:32.0300 7316 secdrv - ok
00:00:32.0316 7316 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
00:00:32.0347 7316 seclogon - ok
00:00:32.0363 7316 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
00:00:32.0409 7316 SENS - ok
00:00:32.0425 7316 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
00:00:32.0441 7316 SensrSvc - ok
00:00:32.0456 7316 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
00:00:32.0472 7316 Serenum - ok
00:00:32.0503 7316 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
00:00:32.0534 7316 Serial - ok
00:00:32.0550 7316 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
00:00:32.0581 7316 sermouse - ok
00:00:32.0612 7316 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
00:00:32.0643 7316 SessionEnv - ok
00:00:32.0690 7316 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
00:00:32.0706 7316 sffdisk - ok
00:00:32.0721 7316 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:00:32.0753 7316 sffp_mmc - ok
00:00:32.0753 7316 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
00:00:32.0784 7316 sffp_sd - ok
00:00:32.0799 7316 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
00:00:32.0815 7316 sfloppy - ok
00:00:32.0862 7316 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:00:32.0893 7316 SharedAccess - ok
00:00:32.0924 7316 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:00:32.0955 7316 ShellHWDetection - ok
00:00:33.0002 7316 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
00:00:33.0002 7316 SiSRaid2 - ok
00:00:33.0018 7316 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
00:00:33.0033 7316 SiSRaid4 - ok
00:00:33.0049 7316 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:00:33.0096 7316 Smb - ok
00:00:33.0143 7316 [ B9EECC2BDA778921C2B49F828B88CDD4 ] SmbDrvIntel C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
00:00:33.0158 7316 SmbDrvIntel - ok
00:00:33.0205 7316 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:00:33.0236 7316 SNMPTRAP - ok
00:00:33.0252 7316 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
00:00:33.0267 7316 spldr - ok
00:00:33.0299 7316 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
00:00:33.0314 7316 Spooler - ok
00:00:33.0392 7316 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
00:00:33.0470 7316 sppsvc - ok
00:00:33.0486 7316 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
00:00:33.0517 7316 sppuinotify - ok
00:00:33.0533 7316 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
00:00:33.0564 7316 srv - ok
00:00:33.0564 7316 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:00:33.0595 7316 srv2 - ok
00:00:33.0611 7316 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:00:33.0626 7316 srvnet - ok
00:00:33.0657 7316 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:00:33.0704 7316 SSDPSRV - ok
00:00:33.0720 7316 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:00:33.0751 7316 SstpSvc - ok
00:00:33.0751 7316 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
00:00:33.0767 7316 stexstor - ok
00:00:33.0813 7316 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
00:00:33.0845 7316 stisvc - ok
00:00:33.0876 7316 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
00:00:33.0876 7316 swenum - ok
00:00:33.0907 7316 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
00:00:33.0954 7316 swprv - ok
00:00:34.0016 7316 [ 50647FA8EFACB6C80FD29669FE9C1666 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
00:00:34.0032 7316 SynTP - ok
00:00:34.0079 7316 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
00:00:34.0125 7316 SysMain - ok
00:00:34.0125 7316 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:00:34.0141 7316 TabletInputService - ok
00:00:34.0157 7316 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
00:00:34.0203 7316 TapiSrv - ok
00:00:34.0219 7316 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
00:00:34.0250 7316 TBS - ok
00:00:34.0328 7316 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:00:34.0391 7316 Tcpip - ok
00:00:34.0484 7316 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
00:00:34.0515 7316 TCPIP6 - ok
00:00:34.0531 7316 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:00:34.0547 7316 tcpipreg - ok
00:00:34.0578 7316 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:00:34.0609 7316 TDPIPE - ok
00:00:34.0625 7316 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:00:34.0640 7316 TDTCP - ok
00:00:34.0656 7316 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:00:34.0687 7316 tdx - ok
00:00:34.0734 7316 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
00:00:34.0749 7316 TermDD - ok
00:00:34.0781 7316 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
00:00:34.0843 7316 TermService - ok
00:00:34.0843 7316 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
00:00:34.0859 7316 Themes - ok
00:00:34.0874 7316 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
00:00:34.0905 7316 THREADORDER - ok
00:00:34.0921 7316 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
00:00:34.0952 7316 TPM - ok
00:00:34.0968 7316 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
00:00:34.0999 7316 TrkWks - ok
00:00:35.0046 7316 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:00:35.0077 7316 TrustedInstaller - ok
00:00:35.0093 7316 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:00:35.0139 7316 tssecsrv - ok
00:00:35.0171 7316 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
00:00:35.0202 7316 TsUsbFlt - ok
00:00:35.0217 7316 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
00:00:35.0233 7316 TsUsbGD - ok
00:00:35.0264 7316 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:00:35.0295 7316 tunnel - ok
00:00:35.0311 7316 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
00:00:35.0327 7316 uagp35 - ok
00:00:35.0358 7316 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:00:35.0405 7316 udfs - ok
00:00:35.0436 7316 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:00:35.0451 7316 UI0Detect - ok
00:00:35.0498 7316 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:00:35.0514 7316 uliagpkx - ok
00:00:35.0545 7316 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:00:35.0561 7316 umbus - ok
00:00:35.0592 7316 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
00:00:35.0639 7316 UmPass - ok
00:00:35.0732 7316 [ B097EBA0E3FEB020BB65FE43AF5ECCFF ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:00:35.0748 7316 UNS - ok
00:00:35.0810 7316 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
00:00:35.0857 7316 upnphost - ok
00:00:35.0919 7316 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
00:00:35.0951 7316 USBAAPL64 - ok
00:00:35.0982 7316 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:00:35.0997 7316 usbccgp - ok
00:00:36.0044 7316 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:00:36.0060 7316 usbcir - ok
00:00:36.0075 7316 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
00:00:36.0107 7316 usbehci - ok
00:00:36.0200 7316 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:00:36.0231 7316 usbhub - ok
00:00:36.0278 7316 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
00:00:36.0309 7316 usbohci - ok
00:00:36.0325 7316 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
00:00:36.0387 7316 usbprint - ok
00:00:36.0403 7316 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:00:36.0434 7316 USBSTOR - ok
00:00:36.0450 7316 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
00:00:36.0465 7316 usbuhci - ok
00:00:36.0497 7316 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
00:00:36.0512 7316 usbvideo - ok
00:00:36.0543 7316 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
00:00:36.0575 7316 UxSms - ok
00:00:36.0606 7316 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
00:00:36.0621 7316 VaultSvc - ok
00:00:36.0668 7316 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
00:00:36.0699 7316 vdrvroot - ok
00:00:36.0840 7316 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
00:00:36.0933 7316 vds - ok
00:00:36.0980 7316 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:00:36.0996 7316 vga - ok
00:00:37.0011 7316 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
00:00:37.0043 7316 VgaSave - ok
00:00:37.0089 7316 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
00:00:37.0105 7316 vhdmp - ok
00:00:37.0121 7316 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
00:00:37.0136 7316 viaide - ok
00:00:37.0230 7316 [ B09C73791977C98455E8E810BD7690FE ] visctap0901 C:\Windows\system32\DRIVERS\visctap0901.sys
00:00:37.0245 7316 visctap0901 - ok
00:00:37.0386 7316 [ 8793B8146F58D54D07245CE5F722DA93 ] vm331avs C:\Windows\system32\Drivers\vm331avs.sys
00:00:37.0401 7316 vm331avs - ok
00:00:37.0479 7316 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
00:00:37.0495 7316 volmgr - ok
00:00:37.0604 7316 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
00:00:37.0651 7316 volmgrx - ok
00:00:37.0729 7316 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
00:00:37.0745 7316 volsnap - ok
00:00:37.0854 7316 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
00:00:37.0869 7316 vsmraid - ok
00:00:38.0213 7316 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
00:00:38.0353 7316 VSS - ok
00:00:38.0369 7316 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
00:00:38.0400 7316 vwifibus - ok
00:00:38.0415 7316 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
00:00:38.0462 7316 vwififlt - ok
00:00:38.0509 7316 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
00:00:38.0525 7316 vwifimp - ok
00:00:38.0618 7316 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
00:00:38.0649 7316 W32Time - ok
00:00:38.0696 7316 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
00:00:38.0743 7316 WacomPen - ok
00:00:38.0821 7316 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
00:00:38.0868 7316 WANARP - ok
00:00:38.0883 7316 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
00:00:38.0915 7316 Wanarpv6 - ok
00:00:39.0055 7316 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
00:00:39.0149 7316 WatAdminSvc - ok
00:00:39.0429 7316 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
00:00:39.0492 7316 wbengine - ok
00:00:39.0523 7316 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
00:00:39.0539 7316 WbioSrvc - ok
00:00:39.0601 7316 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
00:00:39.0632 7316 wcncsvc - ok
00:00:39.0648 7316 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:00:39.0663 7316 WcsPlugInService - ok
00:00:39.0710 7316 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
00:00:39.0726 7316 Wd - ok
00:00:39.0804 7316 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
00:00:39.0882 7316 Wdf01000 - ok
00:00:39.0897 7316 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
00:00:39.0944 7316 WdiServiceHost - ok
00:00:39.0944 7316 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
00:00:39.0960 7316 WdiSystemHost - ok
00:00:40.0069 7316 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
00:00:40.0100 7316 WebClient - ok
00:00:40.0163 7316 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
00:00:40.0209 7316 Wecsvc - ok
00:00:40.0225 7316 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
00:00:40.0272 7316 wercplsupport - ok
00:00:40.0303 7316 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
00:00:40.0350 7316 WerSvc - ok
00:00:40.0412 7316 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
00:00:40.0443 7316 WfpLwf - ok
00:00:40.0475 7316 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
00:00:40.0506 7316 WIMMount - ok
00:00:40.0521 7316 WinDefend - ok
00:00:40.0521 7316 WinHttpAutoProxySvc - ok
00:00:40.0787 7316 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
00:00:40.0818 7316 Winmgmt - ok
00:00:41.0239 7316 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
00:00:41.0317 7316 WinRM - ok
00:00:41.0411 7316 [ 4CEEFBB4D646848A6FCEC512B8C39479 ] WisLMSvc C:\Program Files\Launch Manager\WisLMSvc.exe
00:00:41.0426 7316 WisLMSvc - ok
00:00:41.0567 7316 [ A60C54C889E44D647805FA1E548CE9DE ] WiTopiaService C:\Program Files\WiTopia\WiTopiaService.exe
00:00:41.0582 7316 WiTopiaService - ok
00:00:41.0660 7316 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
00:00:41.0691 7316 Wlansvc - ok
00:00:41.0785 7316 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:00:41.0801 7316 wlcrasvc - ok
00:00:42.0035 7316 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:00:42.0066 7316 wlidsvc - ok
00:00:42.0128 7316 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
00:00:42.0159 7316 WmiAcpi - ok
00:00:42.0206 7316 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
00:00:42.0253 7316 wmiApSrv - ok
00:00:42.0300 7316 WMPNetworkSvc - ok
00:00:42.0347 7316 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
00:00:42.0378 7316 WPCSvc - ok
00:00:42.0393 7316 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:00:42.0425 7316 WPDBusEnum - ok
00:00:42.0456 7316 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:00:42.0487 7316 ws2ifsl - ok
00:00:42.0518 7316 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
00:00:42.0565 7316 wscsvc - ok
00:00:42.0565 7316 WSearch - ok
00:00:42.0612 7316 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\Windows\system32\DRIVERS\wsvd.sys
00:00:42.0627 7316 wsvd - ok
00:00:43.0095 7316 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
00:00:43.0142 7316 wuauserv - ok
00:00:43.0173 7316 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
00:00:43.0220 7316 WudfPf - ok
00:00:43.0283 7316 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:00:43.0329 7316 WUDFRd - ok
00:00:43.0361 7316 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:00:43.0407 7316 wudfsvc - ok
00:00:43.0454 7316 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
00:00:43.0501 7316 WwanSvc - ok
00:00:43.0641 7316 [ 28B051B78471FC290C1790623D5908E1 ] ZAtheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
00:00:43.0657 7316 ZAtheros Bt&Wlan Coex Agent - ok
00:00:43.0719 7316 ================ Scan global ===============================
00:00:43.0766 7316 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:00:43.0829 7316 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
00:00:43.0844 7316 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
00:00:43.0875 7316 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:00:43.0938 7316 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:00:43.0938 7316 [Global] - ok
00:00:43.0938 7316 ================ Scan MBR ==================================
00:00:44.0000 7316 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:00:49.0803 7316 \Device\Harddisk0\DR0 - ok
00:00:49.0803 7316 ================ Scan VBR ==================================
00:00:49.0850 7316 [ 490D5C4CC2B3D237ACB333A05E91DA15 ] \Device\Harddisk0\DR0\Partition1
00:00:49.0850 7316 \Device\Harddisk0\DR0\Partition1 - ok
00:00:49.0881 7316 [ BA0ACB66428D4389A1B1104F1D2D8C87 ] \Device\Harddisk0\DR0\Partition2
00:00:49.0881 7316 \Device\Harddisk0\DR0\Partition2 - ok
00:00:49.0913 7316 [ 4FE9AC1740674E9E69D6452C38E6B1F5 ] \Device\Harddisk0\DR0\Partition3
00:00:49.0913 7316 \Device\Harddisk0\DR0\Partition3 - ok
00:00:49.0913 7316 ================ Scan active images ========================
00:00:49.0928 7316 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
00:00:49.0928 7316 C:\Windows\System32\drivers\crashdmp.sys - ok
00:00:49.0928 7316 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
00:00:49.0928 7316 C:\Windows\System32\drivers\dumpfve.sys - ok
00:00:49.0928 7316 [ C224331A54571C8C9162F7714400BBBD ] C:\Windows\System32\drivers\iaStor.sys
00:00:49.0928 7316 C:\Windows\System32\drivers\iaStor.sys - ok
00:00:49.0928 7316 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
00:00:49.0928 7316 C:\Windows\System32\drivers\cdrom.sys - ok
00:00:49.0928 7316 [ 5EB2FC36BD4639097A2F9BB68C825604 ] C:\Windows\System32\drivers\aswSnx.sys
00:00:49.0928 7316 C:\Windows\System32\drivers\aswSnx.sys - ok
00:00:49.0944 7316 [ 919ACCC22ABDC1C3CA68326C0E5DEAF9 ] C:\Windows\System32\drivers\cmdGuard.sys
00:00:49.0944 7316 C:\Windows\System32\drivers\cmdGuard.sys - ok
00:00:49.0944 7316 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
00:00:49.0944 7316 C:\Windows\System32\drivers\beep.sys - ok
00:00:49.0944 7316 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
00:00:49.0944 7316 C:\Windows\System32\drivers\null.sys - ok
00:00:49.0944 7316 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
00:00:49.0944 7316 C:\Windows\System32\drivers\RDPCDD.sys - ok
00:00:49.0944 7316 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
00:00:49.0944 7316 C:\Windows\System32\drivers\vga.sys - ok
00:00:49.0959 7316 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
00:00:49.0959 7316 C:\Windows\System32\drivers\videoprt.sys - ok
00:00:49.0959 7316 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
00:00:49.0959 7316 C:\Windows\System32\drivers\watchdog.sys - ok
00:00:49.0959 7316 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
00:00:49.0959 7316 C:\Windows\System32\drivers\RDPENCDD.sys - ok
00:00:49.0959 7316 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
00:00:49.0959 7316 C:\Windows\System32\drivers\RDPREFMP.sys - ok
00:00:49.0975 7316 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
00:00:49.0975 7316 C:\Windows\System32\drivers\msfs.sys - ok
00:00:49.0975 7316 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
00:00:49.0975 7316 C:\Windows\System32\drivers\npfs.sys - ok
00:00:49.0975 7316 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
00:00:49.0975 7316 C:\Windows\System32\drivers\tdi.sys - ok
00:00:49.0975 7316 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
00:00:49.0975 7316 C:\Windows\System32\drivers\tdx.sys - ok
00:00:49.0975 7316 [ 6A2D4BB9DDAA7D74839936403BB31F06 ] C:\Windows\System32\drivers\aswTdi.sys
00:00:49.0975 7316 C:\Windows\System32\drivers\aswTdi.sys - ok
00:00:49.0975 7316 [ F8FECE0F1D44C4A58778083B00EEADAC ] C:\Windows\System32\drivers\cmdhlp.sys
00:00:49.0975 7316 C:\Windows\System32\drivers\cmdhlp.sys - ok
00:00:49.0991 7316 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
00:00:49.0991 7316 C:\Windows\System32\drivers\netbt.sys - ok
00:00:49.0991 7316 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
00:00:49.0991 7316 C:\Windows\System32\drivers\afd.sys - ok
00:00:49.0991 7316 [ 24EB5B96B8D215BAC4FC280D39B73049 ] C:\Windows\System32\drivers\aswRdr2.sys
00:00:49.0991 7316 C:\Windows\System32\drivers\aswRdr2.sys - ok
00:00:49.0991 7316 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
00:00:49.0991 7316 C:\Windows\System32\drivers\pacer.sys - ok
00:00:49.0991 7316 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
00:00:49.0991 7316 C:\Windows\System32\drivers\wfplwf.sys - ok
00:00:50.0006 7316 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
00:00:50.0006 7316 C:\Windows\System32\drivers\ws2ifsl.sys - ok
00:00:50.0006 7316 [ C4E67D3037DC79E39D7136581A947F50 ] C:\Windows\System32\drivers\inspect.sys
00:00:50.0006 7316 C:\Windows\System32\drivers\inspect.sys - ok
00:00:50.0006 7316 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
00:00:50.0006 7316 C:\Windows\System32\drivers\vwififlt.sys - ok
00:00:50.0006 7316 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
00:00:50.0006 7316 C:\Windows\System32\drivers\netbios.sys - ok
00:00:50.0006 7316 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
00:00:50.0006 7316 C:\Windows\System32\drivers\wanarp.sys - ok
00:00:50.0022 7316 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
00:00:50.0022 7316 C:\Windows\System32\drivers\termdd.sys - ok
00:00:50.0022 7316 [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
00:00:50.0022 7316 C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
00:00:50.0022 7316 [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
00:00:50.0022 7316 C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
00:00:50.0022 7316 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
00:00:50.0022 7316 C:\Windows\System32\drivers\rdbss.sys - ok
00:00:50.0022 7316 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
00:00:50.0022 7316 C:\Windows\System32\drivers\nsiproxy.sys - ok
00:00:50.0037 7316 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
00:00:50.0037 7316 C:\Windows\System32\drivers\mssmbios.sys - ok
00:00:50.0037 7316 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
00:00:50.0037 7316 C:\Windows\System32\drivers\discache.sys - ok
00:00:50.0037 7316 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
00:00:50.0037 7316 C:\Windows\System32\drivers\dfsc.sys - ok
00:00:50.0037 7316 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
00:00:50.0037 7316 C:\Windows\System32\drivers\blbdrive.sys - ok
00:00:50.0053 7316 [ B1DADC050C697C6371590389EDF89A95 ] C:\Windows\System32\drivers\BootVid.dll
00:00:50.0053 7316 C:\Windows\System32\drivers\BootVid.dll - ok
00:00:50.0053 7316 [ AAA4F992F879977A000FE8B8C730CD2C ] C:\Windows\System32\drivers\BPntDrv.sys
00:00:50.0053 7316 C:\Windows\System32\drivers\BPntDrv.sys - ok
00:00:50.0053 7316 [ AB1403AF5CC781D5148096216DA3A2A3 ] C:\Windows\System32\drivers\aswSP.sys
00:00:50.0053 7316 C:\Windows\System32\drivers\aswSP.sys - ok
00:00:50.0053 7316 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
00:00:50.0053 7316 C:\Windows\System32\drivers\tunnel.sys - ok
00:00:50.0053 7316 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
00:00:50.0053 7316 C:\Windows\System32\ntdll.dll - ok
00:00:50.0069 7316 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
00:00:50.0069 7316 C:\Windows\System32\smss.exe - ok
00:00:50.0069 7316 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
00:00:50.0069 7316 C:\Windows\System32\autochk.exe - ok
00:00:50.0069 7316 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
00:00:50.0069 7316 C:\Windows\System32\lpk.dll - ok
00:00:50.0069 7316 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] C:\Windows\System32\drivers\nvlddmkm.sys
00:00:50.0069 7316 C:\Windows\System32\drivers\nvlddmkm.sys - ok
00:00:50.0069 7316 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
00:00:50.0069 7316 C:\Windows\System32\drivers\dxgkrnl.sys - ok
00:00:50.0084 7316 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
00:00:50.0084 7316 C:\Windows\System32\drivers\dxgmms1.sys - ok
00:00:50.0084 7316 [ 348214F96642FD4FEF630DE021BA3540 ] C:\Windows\System32\drivers\igdkmd64.sys
00:00:50.0084 7316 C:\Windows\System32\drivers\igdkmd64.sys - ok
00:00:50.0084 7316 [ 772A1DEEDFDBC244183B5C805D1B7D85 ] C:\Windows\System32\drivers\HECIx64.sys
00:00:50.0084 7316 C:\Windows\System32\drivers\HECIx64.sys - ok
00:00:50.0084 7316 [ 0F1756D9396740F053221FA6260FCE66 ] C:\Windows\System32\drivers\iusb3xhc.sys
00:00:50.0084 7316 C:\Windows\System32\drivers\iusb3xhc.sys - ok
00:00:50.0084 7316 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
00:00:50.0084 7316 C:\Windows\System32\drivers\usbd.sys - ok
00:00:50.0100 7316 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
00:00:50.0100 7316 C:\Windows\System32\drivers\hdaudbus.sys - ok
00:00:50.0100 7316 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
00:00:50.0100 7316 C:\Windows\System32\drivers\usbehci.sys - ok
00:00:50.0100 7316 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
00:00:50.0100 7316 C:\Windows\System32\drivers\usbport.sys - ok
00:00:50.0100 7316 [ DE9FB3DADE8FD39AE2C587DF22D36B8E ] C:\Windows\System32\drivers\athrx.sys
00:00:50.0100 7316 C:\Windows\System32\drivers\athrx.sys - ok
00:00:50.0100 7316 [ E84DA1A93978B3700EA63414357B9BA3 ] C:\Windows\System32\drivers\L1C62x64.sys
00:00:50.0100 7316 C:\Windows\System32\drivers\L1C62x64.sys - ok
00:00:50.0115 7316 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
00:00:50.0115 7316 C:\Windows\System32\drivers\vwifibus.sys - ok
00:00:50.0115 7316 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
00:00:50.0115 7316 C:\Windows\System32\drivers\CmBatt.sys - ok
00:00:50.0115 7316 [ 5E813B11629007309E4FC0F0FD2B7C30 ] C:\Windows\System32\drivers\AcpiVpc.sys
00:00:50.0115 7316 C:\Windows\System32\drivers\AcpiVpc.sys - ok
00:00:50.0115 7316 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
00:00:50.0115 7316 C:\Windows\System32\drivers\i8042prt.sys - ok
00:00:50.0115 7316 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
00:00:50.0115 7316 C:\Windows\System32\drivers\kbdclass.sys - ok
00:00:50.0131 7316 [ 50647FA8EFACB6C80FD29669FE9C1666 ] C:\Windows\System32\drivers\SynTP.sys
00:00:50.0131 7316 C:\Windows\System32\drivers\SynTP.sys - ok
00:00:50.0131 7316 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
00:00:50.0131 7316 C:\Windows\System32\drivers\mouclass.sys - ok
00:00:50.0131 7316 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
00:00:50.0131 7316 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
00:00:50.0131 7316 [ B9EECC2BDA778921C2B49F828B88CDD4 ] C:\Windows\System32\drivers\Smb_driver_Intel.sys
00:00:50.0131 7316 C:\Windows\System32\drivers\Smb_driver_Intel.sys - ok
00:00:50.0131 7316 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
00:00:50.0131 7316 C:\Windows\System32\drivers\intelppm.sys - ok
00:00:50.0147 7316 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
00:00:50.0147 7316 C:\Windows\System32\drivers\wmiacpi.sys - ok
00:00:50.0147 7316 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
00:00:50.0147 7316 C:\Windows\System32\drivers\CompositeBus.sys - ok
00:00:50.0147 7316 [ 50F92C943F18B070F166D019DFAB3D9A ] C:\Windows\System32\drivers\clwvd.sys
00:00:50.0147 7316 C:\Windows\System32\drivers\clwvd.sys - ok
00:00:50.0147 7316 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
00:00:50.0147 7316 C:\Windows\System32\drivers\ks.sys - ok
00:00:50.0162 7316 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
00:00:50.0162 7316 C:\Windows\System32\drivers\ksthunk.sys - ok
00:00:50.0162 7316 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
00:00:50.0162 7316 C:\Windows\System32\drivers\agilevpn.sys - ok
00:00:50.0162 7316 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
00:00:50.0162 7316 C:\Windows\System32\drivers\rasl2tp.sys - ok
00:00:50.0162 7316 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
00:00:50.0162 7316 C:\Windows\System32\drivers\ndistapi.sys - ok
00:00:50.0162 7316 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
00:00:50.0162 7316 C:\Windows\System32\drivers\ndiswan.sys - ok
00:00:50.0178 7316 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
00:00:50.0178 7316 C:\Windows\System32\drivers\raspppoe.sys - ok
00:00:50.0178 7316 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
00:00:50.0178 7316 C:\Windows\System32\drivers\raspptp.sys - ok
00:00:50.0178 7316 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
00:00:50.0178 7316 C:\Windows\System32\drivers\rassstp.sys - ok
00:00:50.0178 7316 [ E6B734A37ADE36FE1A77035F4E484C8C ] C:\Windows\System32\drivers\btath_bus.sys
00:00:50.0178 7316 C:\Windows\System32\drivers\btath_bus.sys - ok
00:00:50.0178 7316 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
00:00:50.0178 7316 C:\Windows\System32\drivers\swenum.sys - ok
00:00:50.0193 7316 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
00:00:50.0193 7316 C:\Windows\System32\drivers\umbus.sys - ok
00:00:50.0193 7316 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
00:00:50.0193 7316 C:\Windows\System32\drivers\usbhub.sys - ok
00:00:50.0193 7316 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
00:00:50.0193 7316 C:\Windows\System32\Wldap32.dll - ok
00:00:50.0209 7316 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
00:00:50.0209 7316 C:\Windows\System32\drivers\ndproxy.sys - ok
00:00:50.0209 7316 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
00:00:50.0209 7316 C:\Windows\System32\usp10.dll - ok
00:00:50.0209 7316 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
00:00:50.0209 7316 C:\Windows\System32\rpcrt4.dll - ok
00:00:50.0209 7316 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
00:00:50.0209 7316 C:\Windows\System32\gdi32.dll - ok
00:00:50.0209 7316 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
00:00:50.0209 7316 C:\Windows\System32\normaliz.dll - ok
00:00:50.0225 7316 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
00:00:50.0225 7316 C:\Windows\System32\imagehlp.dll - ok
00:00:50.0225 7316 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
00:00:50.0225 7316 C:\Windows\System32\msvcrt.dll - ok
00:00:50.0225 7316 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
00:00:50.0225 7316 C:\Windows\System32\msctf.dll - ok
00:00:50.0225 7316 [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
00:00:50.0225 7316 C:\Windows\System32\iertutil.dll - ok
00:00:50.0225 7316 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
00:00:50.0240 7316 C:\Windows\System32\clbcatq.dll - ok
00:00:50.0240 7316 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
00:00:50.0240 7316 C:\Windows\System32\psapi.dll - ok
00:00:50.0240 7316 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
00:00:50.0240 7316 C:\Windows\System32\ws2_32.dll - ok
00:00:50.0240 7316 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
00:00:50.0240 7316 C:\Windows\System32\setupapi.dll - ok
00:00:50.0240 7316 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
00:00:50.0240 7316 C:\Windows\System32\oleaut32.dll - ok
00:00:50.0256 7316 [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
00:00:50.0256 7316 C:\Windows\System32\wininet.dll - ok
00:00:50.0256 7316 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
00:00:50.0256 7316 C:\Windows\System32\nsi.dll - ok
00:00:50.0256 7316 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
00:00:50.0256 7316 C:\Windows\System32\shell32.dll - ok
00:00:50.0256 7316 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
00:00:50.0256 7316 C:\Windows\System32\shlwapi.dll - ok
00:00:50.0256 7316 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
00:00:50.0256 7316 C:\Windows\System32\kernel32.dll - ok
00:00:50.0271 7316 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
00:00:50.0271 7316 C:\Windows\System32\comdlg32.dll - ok
00:00:50.0271 7316 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
00:00:50.0271 7316 C:\Windows\System32\imm32.dll - ok
00:00:50.0271 7316 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
00:00:50.0271 7316 C:\Windows\System32\user32.dll - ok
00:00:50.0271 7316 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
00:00:50.0271 7316 C:\Windows\System32\difxapi.dll - ok
00:00:50.0271 7316 [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
00:00:50.0271 7316 C:\Windows\System32\urlmon.dll - ok
00:00:50.0287 7316 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
00:00:50.0287 7316 C:\Windows\System32\advapi32.dll - ok
00:00:50.0287 7316 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
00:00:50.0287 7316 C:\Windows\System32\ole32.dll - ok
00:00:50.0287 7316 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
00:00:50.0287 7316 C:\Windows\System32\sechost.dll - ok
00:00:50.0287 7316 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
00:00:50.0287 7316 C:\Windows\System32\crypt32.dll - ok
00:00:50.0287 7316 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
00:00:50.0287 7316 C:\Windows\System32\cfgmgr32.dll - ok
00:00:50.0303 7316 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
00:00:50.0303 7316 C:\Windows\System32\comctl32.dll - ok
00:00:50.0303 7316 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
00:00:50.0303 7316 C:\Windows\System32\devobj.dll - ok
00:00:50.0303 7316 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
00:00:50.0303 7316 C:\Windows\System32\KernelBase.dll - ok
00:00:50.0303 7316 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
00:00:50.0303 7316 C:\Windows\System32\wintrust.dll - ok
00:00:50.0303 7316 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
00:00:50.0303 7316 C:\Windows\System32\msasn1.dll - ok
00:00:50.0318 7316 [ F080EADA8715F811B58BD35BB774F2F9 ] C:\Windows\System32\drivers\iusb3hub.sys
00:00:50.0318 7316 C:\Windows\System32\drivers\iusb3hub.sys - ok
00:00:50.0318 7316 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
00:00:50.0318 7316 C:\Windows\System32\drivers\drmk.sys - ok
00:00:50.0318 7316 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
00:00:50.0318 7316 C:\Windows\System32\drivers\portcls.sys - ok
00:00:50.0318 7316 [ BB0D3D57C25D6C5215077A8FAA7AD4B3 ] C:\Windows\System32\drivers\RTKVHD64.sys
00:00:50.0318 7316 C:\Windows\System32\drivers\RTKVHD64.sys - ok
00:00:50.0334 7316 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] C:\Windows\System32\drivers\IntcDAud.sys
00:00:50.0334 7316 C:\Windows\System32\drivers\IntcDAud.sys - ok
00:00:50.0334 7316 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
00:00:50.0334 7316 C:\Windows\System32\drivers\usbccgp.sys - ok
00:00:50.0334 7316 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
00:00:50.0334 7316 C:\Windows\System32\drivers\hidparse.sys - ok
00:00:50.0334 7316 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] C:\Windows\System32\drivers\dc3d.sys
00:00:50.0334 7316 C:\Windows\System32\drivers\dc3d.sys - ok
00:00:50.0334 7316 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
00:00:50.0334 7316 C:\Windows\System32\drivers\hidclass.sys - ok
00:00:50.0349 7316 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
00:00:50.0349 7316 C:\Windows\System32\drivers\hidusb.sys - ok
00:00:50.0349 7316 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
00:00:50.0349 7316 C:\Windows\System32\drivers\kbdhid.sys - ok
00:00:50.0349 7316 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
00:00:50.0349 7316 C:\Windows\System32\drivers\mouhid.sys - ok
00:00:50.0349 7316 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
00:00:50.0349 7316 C:\Windows\SysWOW64\normaliz.dll - ok
00:00:50.0349 7316 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
00:00:50.0349 7316 C:\Windows\System32\drivers\dxapi.sys - ok
00:00:50.0365 7316 [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
00:00:50.0365 7316 C:\Windows\System32\win32k.sys - ok
00:00:50.0365 7316 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
00:00:50.0365 7316 C:\Windows\System32\csrss.exe - ok
00:00:50.0365 7316 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
00:00:50.0365 7316 C:\Windows\System32\csrsrv.dll - ok
00:00:50.0365 7316 [ DDFF90DE7D2D66D1CE5C32E169B44B23 ] C:\Windows\System32\cmdcsr.dll
00:00:50.0365 7316 C:\Windows\System32\cmdcsr.dll - ok
00:00:50.0365 7316 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
00:00:50.0365 7316 C:\Windows\System32\basesrv.dll - ok
00:00:50.0365 7316 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
00:00:50.0365 7316 C:\Windows\System32\winsrv.dll - ok
00:00:50.0381 7316 [ 0EE0D4ECFE459C5937FEC7639C13E26E ] C:\Windows\System32\drivers\btfilter.sys
00:00:50.0381 7316 C:\Windows\System32\drivers\btfilter.sys - ok
00:00:50.0381 7316 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] C:\Windows\System32\drivers\bthport.sys
00:00:50.0381 7316 C:\Windows\System32\drivers\bthport.sys - ok
00:00:50.0381 7316 [ F188B7394D81010767B6DF3178519A37 ] C:\Windows\System32\drivers\BTHUSB.SYS
00:00:50.0381 7316 C:\Windows\System32\drivers\BTHUSB.SYS - ok
00:00:50.0381 7316 [ 001CC10FA5E71AE1119115E126C8750D ] C:\Windows\System32\drivers\stream.sys
00:00:50.0381 7316 C:\Windows\System32\drivers\stream.sys - ok
00:00:50.0381 7316 [ 8793B8146F58D54D07245CE5F722DA93 ] C:\Windows\System32\drivers\vm331avs.sys
00:00:50.0381 7316 C:\Windows\System32\drivers\vm331avs.sys - ok
00:00:50.0396 7316 [ C5D5B9BAF5A940953FE8393BF937AD60 ] C:\Windows\System32\drivers\AmUStor.sys
00:00:50.0396 7316 C:\Windows\System32\drivers\AmUStor.sys - ok
00:00:50.0396 7316 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
00:00:50.0396 7316 C:\Windows\System32\drivers\monitor.sys - ok
00:00:50.0396 7316 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
00:00:50.0396 7316 C:\Windows\System32\profapi.dll - ok
00:00:50.0396 7316 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
00:00:50.0396 7316 C:\Windows\System32\sxssrv.dll - ok
00:00:50.0412 7316 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
00:00:50.0412 7316 C:\Windows\System32\tsddd.dll - ok
00:00:50.0412 7316 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
00:00:50.0412 7316 C:\Windows\System32\wininit.exe - ok
00:00:50.0412 7316 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
00:00:50.0412 7316 C:\Windows\System32\cdd.dll - ok
00:00:50.0412 7316 [ 6798048153F5CBEA000DD2C86C9BA8F0 ] C:\Windows\System32\guard64.dll
00:00:50.0412 7316 C:\Windows\System32\guard64.dll - ok
00:00:50.0412 7316 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
00:00:50.0412 7316 C:\Windows\System32\fltLib.dll - ok
00:00:50.0427 7316 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
00:00:50.0427 7316 C:\Windows\System32\RpcRtRemote.dll - ok
00:00:50.0427 7316 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
00:00:50.0427 7316 C:\Windows\System32\KBDUS.DLL - ok
00:00:50.0427 7316 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
00:00:50.0427 7316 C:\Windows\System32\WlS0WndH.dll - ok
00:00:50.0427 7316 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
00:00:50.0427 7316 C:\Windows\System32\sxs.dll - ok
00:00:50.0427 7316 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
00:00:50.0427 7316 C:\Windows\System32\cryptbase.dll - ok
00:00:50.0443 7316 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
00:00:50.0443 7316 C:\Windows\System32\apphelp.dll - ok
00:00:50.0443 7316 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
00:00:50.0443 7316 C:\Windows\System32\lsass.exe - ok
00:00:50.0443 7316 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
00:00:50.0443 7316 C:\Windows\System32\services.exe - ok
00:00:50.0443 7316 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
00:00:50.0443 7316 C:\Windows\System32\sspicli.dll - ok
00:00:50.0459 7316 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
00:00:50.0459 7316 C:\Windows\System32\sspisrv.dll - ok
00:00:50.0459 7316 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
00:00:50.0459 7316 C:\Windows\System32\lsm.exe - ok
00:00:50.0459 7316 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
00:00:50.0459 7316 C:\Windows\System32\sysntfy.dll - ok
00:00:50.0459 7316 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
00:00:50.0459 7316 C:\Windows\System32\wmsgapi.dll - ok
00:00:50.0459 7316 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
00:00:50.0459 7316 C:\Windows\System32\dbghelp.dll - ok
00:00:50.0474 7316 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
00:00:50.0474 7316 C:\Windows\System32\lsasrv.dll - ok
00:00:50.0474 7316 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
00:00:50.0474 7316 C:\Windows\System32\scext.dll - ok
00:00:50.0474 7316 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
00:00:50.0474 7316 C:\Windows\System32\secur32.dll - ok
00:00:50.0474 7316 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
00:00:50.0474 7316 C:\Windows\System32\scesrv.dll - ok
00:00:50.0474 7316 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
00:00:50.0474 7316 C:\Windows\System32\srvcli.dll - ok
00:00:50.0474 7316 [ 2D066FBE63F7026C43C662C094B98076 ] C:\Windows\System32\bridgeres.dll
00:00:50.0474 7316 C:\Windows\System32\bridgeres.dll - ok
00:00:50.0490 7316 [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
00:00:50.0490 7316 C:\Windows\System32\drivers\rfcomm.sys - ok
00:00:50.0490 7316 [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
00:00:50.0490 7316 C:\Windows\System32\drivers\bthenum.sys - ok
00:00:50.0490 7316 [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys
00:00:50.0490 7316 C:\Windows\System32\drivers\bthpan.sys - ok
00:00:50.0490 7316 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
00:00:50.0490 7316 C:\Windows\System32\winlogon.exe - ok
00:00:50.0490 7316 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
00:00:50.0490 7316 C:\Windows\System32\samsrv.dll - ok
00:00:50.0505 7316 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
00:00:50.0505 7316 C:\Windows\System32\cryptdll.dll - ok
00:00:50.0505 7316 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
00:00:50.0505 7316 C:\Windows\System32\wevtapi.dll - ok
00:00:50.0505 7316 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
00:00:50.0505 7316 C:\Windows\System32\authz.dll - ok
00:00:50.0505 7316 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
00:00:50.0505 7316 C:\Windows\System32\cngaudit.dll - ok
00:00:50.0505 7316 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
00:00:50.0505 7316 C:\Windows\System32\ncrypt.dll - ok
00:00:50.0521 7316 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
00:00:50.0521 7316 C:\Windows\System32\bcrypt.dll - ok
00:00:50.0521 7316 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
00:00:50.0521 7316 C:\Windows\System32\msprivs.dll - ok
00:00:50.0521 7316 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
00:00:50.0521 7316 C:\Windows\System32\netjoin.dll - ok
00:00:50.0521 7316 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
00:00:50.0521 7316 C:\Windows\System32\negoexts.dll - ok
00:00:50.0521 7316 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
00:00:50.0521 7316 C:\Windows\System32\kerberos.dll - ok
00:00:50.0537 7316 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
00:00:50.0537 7316 C:\Windows\System32\cryptsp.dll - ok
00:00:50.0537 7316 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
00:00:50.0537 7316 C:\Windows\System32\winsta.dll - ok
00:00:50.0537 7316 [ 31D4AC3BE7BD37328D49885C380EC506 ] C:\Windows\System32\drivers\btath_avdt.sys
00:00:50.0537 7316 C:\Windows\System32\drivers\btath_avdt.sys - ok
00:00:50.0537 7316 [ ABCD3C16CA850A7594CEB9AD5D966810 ] C:\Windows\System32\drivers\btath_rcp.sys
00:00:50.0537 7316 C:\Windows\System32\drivers\btath_rcp.sys - ok
00:00:50.0537 7316 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
00:00:50.0537 7316 C:\Windows\System32\mswsock.dll - ok
00:00:50.0552 7316 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
00:00:50.0552 7316 C:\Windows\System32\wship6.dll - ok
00:00:50.0552 7316 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
00:00:50.0552 7316 C:\Windows\System32\msv1_0.dll - ok
00:00:50.0552 7316 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
00:00:50.0552 7316 C:\Windows\System32\netlogon.dll - ok
00:00:50.0552 7316 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
00:00:50.0552 7316 C:\Windows\System32\dnsapi.dll - ok
00:00:50.0552 7316 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
00:00:50.0552 7316 C:\Windows\System32\logoncli.dll - ok
00:00:50.0568 7316 [ 58C4425368625D275BFC412B59363CE9 ] C:\Windows\System32\drivers\btath_a2dp.sys
00:00:50.0568 7316 C:\Windows\System32\drivers\btath_a2dp.sys - ok
00:00:50.0568 7316 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
00:00:50.0568 7316 C:\Windows\System32\schannel.dll - ok
00:00:50.0568 7316 [ FB3833E63FF602B69C2FF085846DCF43 ] C:\Windows\System32\drivers\btath_hcrp.sys
00:00:50.0568 7316 C:\Windows\System32\drivers\btath_hcrp.sys - ok
00:00:50.0568 7316 [ 185F180536188C1A4ED605234721A5B9 ] C:\Windows\System32\drivers\btath_flt.sys
00:00:50.0568 7316 C:\Windows\System32\drivers\btath_flt.sys - ok
00:00:50.0568 7316 [ 371A11C1333BA526263A987A93ACDE3D ] C:\Windows\System32\drivers\btath_lwflt.sys
00:00:50.0568 7316 C:\Windows\System32\drivers\btath_lwflt.sys - ok
00:00:50.0583 7316 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
00:00:50.0583 7316 C:\Windows\System32\wdigest.dll - ok
00:00:50.0583 7316 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
00:00:50.0583 7316 C:\Windows\System32\rsaenh.dll - ok
00:00:50.0583 7316 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
00:00:50.0583 7316 C:\Windows\System32\TSpkg.dll - ok
00:00:50.0583 7316 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
00:00:50.0583 7316 C:\Windows\System32\pku2u.dll - ok
00:00:50.0583 7316 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
00:00:50.0583 7316 C:\Windows\System32\LIVESSP.DLL - ok
00:00:50.0599 7316 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
00:00:50.0599 7316 C:\Windows\System32\bcryptprimitives.dll - ok
00:00:50.0599 7316 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
00:00:50.0599 7316 C:\Windows\System32\credssp.dll - ok
00:00:50.0599 7316 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
00:00:50.0599 7316 C:\Windows\System32\efslsaext.dll - ok
00:00:50.0599 7316 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
00:00:50.0599 7316 C:\Windows\System32\scecli.dll - ok
00:00:50.0599 7316 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
00:00:50.0599 7316 C:\Windows\System32\ubpm.dll - ok
00:00:50.0599 7316 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
00:00:50.0599 7316 C:\Windows\System32\svchost.exe - ok
00:00:50.0615 7316 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
00:00:50.0615 7316 C:\Windows\System32\umpnpmgr.dll - ok
00:00:50.0615 7316 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
00:00:50.0615 7316 C:\Windows\System32\SPInf.dll - ok
00:00:50.0615 7316 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
00:00:50.0615 7316 C:\Windows\System32\devrtl.dll - ok
00:00:50.0615 7316 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
00:00:50.0615 7316 C:\Windows\System32\gpapi.dll - ok
00:00:50.0615 7316 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
00:00:50.0615 7316 C:\Windows\System32\userenv.dll - ok
00:00:50.0630 7316 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
00:00:50.0630 7316 C:\Windows\System32\umpo.dll - ok
00:00:50.0630 7316 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
00:00:50.0630 7316 C:\Windows\System32\pcwum.dll - ok
00:00:50.0630 7316 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
00:00:50.0630 7316 C:\Windows\System32\powrprof.dll - ok
00:00:50.0630 7316 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
00:00:50.0630 7316 C:\Windows\System32\drivers\luafv.sys - ok
00:00:50.0630 7316 [ CF6A24076F978BF9C1FE61EE8595DB66 ] C:\Windows\System32\drivers\aswMonFlt.sys
00:00:50.0630 7316 C:\Windows\System32\drivers\aswMonFlt.sys - ok
00:00:50.0646 7316 [ 4CA8E3A70263C3029935551204586701 ] C:\Windows\System32\drivers\aswFsBlk.sys
00:00:50.0646 7316 C:\Windows\System32\drivers\aswFsBlk.sys - ok
00:00:50.0646 7316 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] C:\Windows\System32\nvvsvc.exe
00:00:50.0646 7316 C:\Windows\System32\nvvsvc.exe - ok
00:00:50.0646 7316 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
00:00:50.0646 7316 C:\Windows\System32\wtsapi32.dll - ok
00:00:50.0646 7316 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
00:00:50.0646 7316 C:\Windows\System32\rpcss.dll - ok
00:00:50.0661 7316 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
00:00:50.0661 7316 C:\Windows\System32\RpcEpMap.dll - ok
00:00:50.0661 7316 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
00:00:50.0661 7316 C:\Windows\System32\wshqos.dll - ok
00:00:50.0661 7316 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
00:00:50.0661 7316 C:\Windows\System32\WSHTCPIP.DLL - ok
00:00:50.0661 7316 [ 65FB5097D9EE7E3A99E932CFA0E4B344 ] C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
00:00:50.0661 7316 C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe - ok
00:00:50.0661 7316 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
00:00:50.0661 7316 C:\Windows\System32\FirewallAPI.dll - ok
00:00:50.0677 7316 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
00:00:50.0677 7316 C:\Windows\System32\version.dll - ok
00:00:50.0677 7316 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
00:00:50.0677 7316 C:\Windows\System32\LogonUI.exe - ok
00:00:50.0677 7316 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
00:00:50.0677 7316 C:\Windows\System32\authui.dll - ok
00:00:50.0677 7316 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
00:00:50.0677 7316 C:\Windows\System32\msi.dll - ok
00:00:50.0677 7316 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
00:00:50.0677 7316 C:\Windows\System32\winmm.dll - ok
00:00:50.0693 7316 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
00:00:50.0693 7316 C:\Windows\System32\netapi32.dll - ok
00:00:50.0693 7316 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
00:00:50.0693 7316 C:\Windows\System32\mpr.dll - ok
00:00:50.0693 7316 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
00:00:50.0693 7316 C:\Windows\System32\netutils.dll - ok
00:00:50.0693 7316 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
00:00:50.0693 7316 C:\Windows\System32\wkscli.dll - ok
00:00:50.0693 7316 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
00:00:50.0693 7316 C:\Windows\System32\oleacc.dll - ok
00:00:50.0708 7316 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
00:00:50.0708 7316 C:\Windows\System32\winspool.drv - ok
00:00:50.0708 7316 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
00:00:50.0708 7316 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
00:00:50.0708 7316 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
00:00:50.0708 7316 C:\Windows\System32\rasapi32.dll - ok
00:00:50.0708 7316 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
00:00:50.0708 7316 C:\Windows\System32\rasman.dll - ok
00:00:50.0708 7316 [ 9DB705936111BB34B11BB3EEB345AAF6 ] C:\Program Files\COMODO\COMODO Internet Security\framework.dll
00:00:50.0708 7316 C:\Program Files\COMODO\COMODO Internet Security\framework.dll - ok
00:00:50.0724 7316 [ DEAFA4336865C8667B8DAC16D62DBEDC ] C:\Program Files\COMODO\COMODO Internet Security\scanners\rkdscan.dll
00:00:50.0724 7316 C:\Program Files\COMODO\COMODO Internet Security\scanners\rkdscan.dll - ok
00:00:50.0724 7316 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
00:00:50.0724 7316 C:\Windows\System32\wbem\wbemprox.dll - ok
00:00:50.0724 7316 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
00:00:50.0724 7316 C:\Windows\System32\cryptnet.dll - ok
00:00:50.0724 7316 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
00:00:50.0724 7316 C:\Windows\System32\cryptsvc.dll - ok
00:00:50.0724 7316 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
00:00:50.0724 7316 C:\Windows\System32\wbemcomn.dll - ok
00:00:50.0739 7316 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
00:00:50.0739 7316 C:\Windows\System32\wevtsvc.dll - ok
00:00:50.0739 7316 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
00:00:50.0739 7316 C:\Windows\System32\audiosrv.dll - ok
00:00:50.0739 7316 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
00:00:50.0739 7316 C:\Windows\System32\MMDevAPI.dll - ok
00:00:50.0739 7316 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
00:00:50.0739 7316 C:\Windows\System32\propsys.dll - ok
00:00:50.0739 7316 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
00:00:50.0739 7316 C:\Windows\System32\avrt.dll - ok
00:00:50.0755 7316 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
00:00:50.0755 7316 C:\Windows\System32\mmcss.dll - ok
00:00:50.0755 7316 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
00:00:50.0755 7316 C:\Windows\System32\audiodg.exe - ok
00:00:50.0755 7316 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
00:00:50.0755 7316 C:\Windows\System32\FntCache.dll - ok
00:00:50.0755 7316 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
00:00:50.0755 7316 C:\Windows\System32\cryptui.dll - ok
00:00:50.0755 7316 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
00:00:50.0755 7316 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
00:00:50.0771 7316 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
00:00:50.0771 7316 C:\Windows\System32\samlib.dll - ok
00:00:50.0771 7316 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
00:00:50.0771 7316 C:\Windows\System32\shacct.dll - ok
00:00:50.0771 7316 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
00:00:50.0771 7316 C:\Windows\System32\uxtheme.dll - ok
00:00:50.0771 7316 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
00:00:50.0771 7316 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
00:00:50.0771 7316 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
00:00:50.0771 7316 C:\Windows\System32\dui70.dll - ok
00:00:50.0786 7316 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
00:00:50.0786 7316 C:\Windows\System32\duser.dll - ok
00:00:50.0786 7316 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
00:00:50.0786 7316 C:\Windows\System32\SndVolSSO.dll - ok
00:00:50.0786 7316 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
00:00:50.0786 7316 C:\Windows\System32\dwmapi.dll - ok
00:00:50.0786 7316 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
00:00:50.0786 7316 C:\Windows\System32\hid.dll - ok
00:00:50.0786 7316 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
00:00:50.0786 7316 C:\Windows\System32\xmllite.dll - ok
00:00:50.0802 7316 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
00:00:50.0802 7316 C:\Windows\System32\ntmarta.dll - ok
00:00:50.0802 7316 [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
00:00:50.0802 7316 C:\Windows\System32\WindowsCodecs.dll - ok
00:00:50.0802 7316 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
00:00:50.0802 7316 C:\Windows\System32\wdmaud.drv - ok
00:00:50.0802 7316 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
00:00:50.0802 7316 C:\Windows\System32\AudioSes.dll - ok
00:00:50.0802 7316 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
00:00:50.0802 7316 C:\Windows\System32\ksuser.dll - ok
00:00:50.0817 7316 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
00:00:50.0817 7316 C:\Windows\System32\winbrand.dll - ok
00:00:50.0817 7316 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
00:00:50.0817 7316 C:\Windows\System32\msacm32.drv - ok
00:00:50.0817 7316 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
00:00:50.0817 7316 C:\Windows\System32\profsvc.dll - ok
00:00:50.0817 7316 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
00:00:50.0817 7316 C:\Windows\System32\atl.dll - ok
00:00:50.0817 7316 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
00:00:50.0817 7316 C:\Windows\System32\gpsvc.dll - ok
00:00:50.0833 7316 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
00:00:50.0833 7316 C:\Windows\System32\themeservice.dll - ok
00:00:50.0833 7316 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
00:00:50.0833 7316 C:\Windows\System32\nlaapi.dll - ok
00:00:50.0833 7316 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
00:00:50.0833 7316 C:\Windows\System32\es.dll - ok
00:00:50.0833 7316 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
00:00:50.0833 7316 C:\Windows\System32\dsrole.dll - ok
00:00:50.0833 7316 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
00:00:50.0833 7316 C:\Windows\System32\slc.dll - ok
00:00:50.0849 7316 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
00:00:50.0849 7316 C:\Windows\System32\comres.dll - ok
00:00:50.0849 7316 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
00:00:50.0849 7316 C:\Windows\System32\drivers\lltdio.sys - ok
00:00:50.0849 7316 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
00:00:50.0849 7316 C:\Windows\System32\Sens.dll - ok
00:00:50.0849 7316 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
00:00:50.0849 7316 C:\Windows\System32\uxsms.dll - ok
00:00:50.0849 7316 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
00:00:50.0849 7316 C:\Windows\System32\drivers\nwifi.sys - ok
00:00:50.0864 7316 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
00:00:50.0864 7316 C:\Windows\System32\drivers\ndisuio.sys - ok
00:00:50.0864 7316 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
00:00:50.0864 7316 C:\Windows\System32\drivers\rspndr.sys - ok
00:00:50.0864 7316 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
00:00:50.0864 7316 C:\Windows\System32\eapsvc.dll - ok
00:00:50.0864 7316 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
00:00:50.0864 7316 C:\Windows\System32\keyiso.dll - ok
00:00:50.0880 7316 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
00:00:50.0880 7316 C:\Windows\System32\lmhsvc.dll - ok
00:00:50.0880 7316 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
00:00:50.0880 7316 C:\Windows\System32\nsisvc.dll - ok
00:00:50.0880 7316 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
00:00:50.0880 7316 C:\Windows\System32\eapphost.dll - ok
00:00:50.0880 7316 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
00:00:50.0880 7316 C:\Windows\System32\IPHLPAPI.DLL - ok
00:00:50.0880 7316 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
00:00:50.0880 7316 C:\Windows\System32\winnsi.dll - ok
00:00:50.0895 7316 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
00:00:50.0895 7316 C:\Windows\System32\dhcpcore.dll - ok
00:00:50.0895 7316 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
00:00:50.0895 7316 C:\Windows\System32\nrpsrv.dll - ok
00:00:50.0895 7316 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
00:00:50.0895 7316 C:\Windows\System32\dhcpcore6.dll - ok
00:00:50.0895 7316 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
00:00:50.0895 7316 C:\Windows\System32\vssapi.dll - ok
00:00:50.0895 7316 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
00:00:50.0895 7316 C:\Windows\System32\wlansvc.dll - ok
00:00:50.0911 7316 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
00:00:50.0911 7316 C:\Windows\System32\dnsrslvr.dll - ok
00:00:50.0911 7316 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
00:00:50.0911 7316 C:\Windows\System32\vsstrace.dll - ok
00:00:50.0911 7316 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
00:00:50.0911 7316 C:\Windows\System32\FWPUCLNT.DLL - ok
00:00:50.0911 7316 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
00:00:50.0911 7316 C:\Windows\System32\netprofm.dll - ok
00:00:50.0911 7316 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
00:00:50.0911 7316 C:\Windows\System32\adtschema.dll - ok
00:00:50.0927 7316 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
00:00:50.0927 7316 C:\Windows\System32\msacm32.dll - ok
00:00:50.0927 7316 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
00:00:50.0927 7316 C:\Windows\System32\midimap.dll - ok
00:00:50.0927 7316 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
00:00:50.0927 7316 C:\Windows\System32\VaultCredProvider.dll - ok
00:00:50.0927 7316 [ ECA3B064F68C4B9A78D27FC172CC1E61 ] C:\Windows\System32\imagereog.dll
00:00:50.0927 7316 C:\Windows\System32\imagereog.dll - ok
00:00:50.0942 7316 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
00:00:50.0942 7316 C:\Windows\System32\dnsext.dll - ok
00:00:50.0942 7316 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
00:00:50.0942 7316 C:\Windows\System32\samcli.dll - ok
00:00:50.0942 7316 [ 6564D34CD16C5CD2381F6184813358C5 ] C:\Windows\System32\Apblend64.dll
00:00:50.0942 7316 C:\Windows\System32\Apblend64.dll - ok
00:00:50.0942 7316 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
00:00:50.0942 7316 C:\Windows\System32\AudioEng.dll - ok
00:00:50.0942 7316 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
00:00:50.0942 7316 C:\Windows\System32\AUDIOKSE.dll - ok
00:00:50.0958 7316 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
00:00:50.0958 7316 C:\Windows\System32\dhcpcsvc.dll - ok
00:00:50.0958 7316 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
00:00:50.0958 7316 C:\Windows\System32\WMALFXGFXDSP.dll - ok
00:00:50.0958 7316 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
00:00:50.0958 7316 C:\Windows\System32\mfplat.dll - ok
00:00:50.0958 7316 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
00:00:50.0958 7316 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
00:00:50.0958 7316 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
00:00:50.0958 7316 C:\Windows\System32\umb.dll - ok
00:00:50.0973 7316 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
00:00:50.0973 7316 C:\Windows\System32\UXInit.dll - ok
00:00:50.0973 7316 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
00:00:50.0973 7316 C:\Windows\System32\MPSSVC.dll - ok
00:00:50.0973 7316 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
00:00:50.0973 7316 C:\Windows\System32\BioCredProv.dll - ok
00:00:50.0973 7316 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
00:00:50.0973 7316 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
00:00:50.0973 7316 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
00:00:50.0973 7316 C:\Windows\System32\winbio.dll - ok
00:00:50.0989 7316 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
00:00:50.0989 7316 C:\Windows\System32\credui.dll - ok
00:00:50.0989 7316 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
00:00:50.0989 7316 C:\Windows\System32\vaultcli.dll - ok
00:00:50.0989 7316 [ A46831C7D816ED867E9E1BAFDD90DBF2 ] C:\Windows\System32\AthCredentialProvider.dll
00:00:50.0989 7316 C:\Windows\System32\AthCredentialProvider.dll - ok
00:00:50.0989 7316 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Windows\System32\msvcr100.dll
00:00:50.0989 7316 C:\Windows\System32\msvcr100.dll - ok
00:00:51.0005 7316 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
00:00:51.0005 7316 C:\Windows\System32\bthprops.cpl - ok
00:00:51.0005 7316 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
00:00:51.0005 7316 C:\Windows\System32\msimg32.dll - ok
00:00:51.0005 7316 [ BA68DEB4C334B2C8A5AE1BC93E08F534 ] C:\Program Files (x86)\Bluetooth Suite\en-US\BtvStack.exe.mui
00:00:51.0005 7316 C:\Program Files (x86)\Bluetooth Suite\en-US\BtvStack.exe.mui - ok
00:00:51.0005 7316 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
00:00:51.0005 7316 C:\Windows\System32\certCredProvider.dll - ok
00:00:51.0005 7316 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
00:00:51.0005 7316 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
00:00:51.0020 7316 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
00:00:51.0020 7316 C:\Windows\System32\rasplap.dll - ok
00:00:51.0020 7316 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
00:00:51.0020 7316 C:\Windows\System32\rtutils.dll - ok
00:00:51.0020 7316 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
00:00:51.0020 7316 C:\Windows\System32\wlanmsm.dll - ok
00:00:51.0020 7316 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
00:00:51.0020 7316 C:\Windows\System32\drivers\fltMgr.sys - ok
00:00:51.0020 7316 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
00:00:51.0020 7316 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
00:00:51.0036 7316 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
00:00:51.0036 7316 C:\Windows\System32\PSHED.DLL - ok
00:00:51.0036 7316 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
00:00:51.0036 7316 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
00:00:51.0036 7316 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
00:00:51.0036 7316 C:\Windows\System32\wlansec.dll - ok
00:00:51.0036 7316 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
00:00:51.0036 7316 C:\Windows\System32\onex.dll - ok
00:00:51.0036 7316 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
00:00:51.0036 7316 C:\Windows\System32\dhcpcsvc6.dll - ok
00:00:51.0036 7316 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
00:00:51.0036 7316 C:\Windows\System32\imageres.dll - ok
00:00:51.0051 7316 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
00:00:51.0051 7316 C:\Windows\System32\eappprxy.dll - ok
00:00:51.0051 7316 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
00:00:51.0051 7316 C:\Windows\System32\eappcfg.dll - ok
00:00:51.0051 7316 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
00:00:51.0051 7316 C:\Windows\System32\l2gpstore.dll - ok
00:00:51.0051 7316 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
00:00:51.0051 7316 C:\Windows\System32\wlanutil.dll - ok
00:00:51.0067 7316 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
00:00:51.0067 7316 C:\Windows\System32\wlgpclnt.dll - ok
00:00:51.0067 7316 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
00:00:51.0067 7316 C:\Windows\System32\WinSCard.dll - ok
00:00:51.0067 7316 [ DF3E3167B03804F32AD274C33F77B308 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
00:00:51.0067 7316 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
00:00:51.0067 7316 [ 4CE5C4F80620D6DBBB054003EAD71F95 ] C:\Windows\System32\nvsvc64.dll
00:00:51.0067 7316 C:\Windows\System32\nvsvc64.dll - ok
00:00:51.0067 7316 [ 11205381BBBF98F0CA1C672056808B8F ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
00:00:51.0067 7316 C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
00:00:51.0083 7316 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
00:00:51.0083 7316 C:\Windows\System32\msxml6.dll - ok
00:00:51.0083 7316 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
00:00:51.0083 7316 C:\Windows\System32\mscms.dll - ok
00:00:51.0083 7316 [ 66E4246FEF8C364611F9782AA0809F42 ] C:\Program Files\Internet Explorer\ieproxy.dll
00:00:51.0083 7316 C:\Program Files\Internet Explorer\ieproxy.dll - ok
00:00:51.0083 7316 [ E6E9DC01812ABA16DBAE5EFA4EF63E57 ] C:\Windows\System32\nvapi64.dll
00:00:51.0083 7316 C:\Windows\System32\nvapi64.dll - ok
00:00:51.0083 7316 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
00:00:51.0083 7316 C:\Windows\System32\netcfgx.dll - ok
00:00:51.0098 7316 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
00:00:51.0098 7316 C:\Windows\System32\drivers\vwifimp.sys - ok
00:00:51.0098 7316 [ D7CA52F89A7F4520610FF3682F0E42EE ] C:\Windows\System32\nvsvcr.dll
00:00:51.0098 7316 C:\Windows\System32\nvsvcr.dll - ok
00:00:51.0098 7316 [ BC2A18841494B3756894627FF279C65E ] C:\Windows\System32\nvcpl.dll
00:00:51.0098 7316 C:\Windows\System32\nvcpl.dll - ok
00:00:51.0098 7316 [ 40965B72A0A33DDB8423B85F93E4C136 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
00:00:51.0098 7316 C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
00:00:51.0098 7316 [ C946428303FDBD85D6F17C9F104938D7 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll
00:00:51.0098 7316 C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok
00:00:51.0114 7316 [ 47B8B745BFE0A0CB70120C8D08E2492F ] C:\Windows\System32\nvumdshimx.dll
00:00:51.0114 7316 C:\Windows\System32\nvumdshimx.dll - ok
00:00:51.0114 7316 [ AEF6E1DE647339C4990586D1DE427BBB ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
00:00:51.0114 7316 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
00:00:51.0114 7316 [ C765A8406048E3094501ED8F17BFA4D6 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
00:00:51.0114 7316 C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
00:00:51.0114 7316 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
00:00:51.0114 7316 C:\Windows\System32\sfc.dll - ok
00:00:51.0114 7316 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
00:00:51.0114 7316 C:\Windows\System32\sfc_os.dll - ok
00:00:51.0129 7316 [ 38614300080CADB55DDCD56DDAF6587B ] C:\Program Files (x86)\Lenovo\VeriFace\VerifyHost.exe
00:00:51.0129 7316 C:\Program Files (x86)\Lenovo\VeriFace\VerifyHost.exe - ok
00:00:51.0129 7316 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
00:00:51.0129 7316 C:\Windows\SysWOW64\ntdll.dll - ok
00:00:51.0129 7316 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
00:00:51.0129 7316 C:\Windows\System32\wow64.dll - ok
00:00:51.0129 7316 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
00:00:51.0129 7316 C:\Windows\System32\wow64win.dll - ok
00:00:51.0145 7316 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
00:00:51.0145 7316 C:\Windows\System32\wow64cpu.dll - ok
00:00:51.0145 7316 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
00:00:51.0145 7316 C:\Windows\SysWOW64\kernel32.dll - ok
00:00:51.0145 7316 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
00:00:51.0145 7316 C:\Windows\SysWOW64\KernelBase.dll - ok
00:00:51.0145 7316 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
00:00:51.0145 7316 C:\Windows\SysWOW64\user32.dll - ok
00:00:51.0145 7316 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
00:00:51.0145 7316 C:\Windows\SysWOW64\ws2_32.dll - ok
00:00:51.0161 7316 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
00:00:51.0161 7316 C:\Windows\SysWOW64\msvcrt.dll - ok
00:00:51.0161 7316 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
00:00:51.0161 7316 C:\Windows\SysWOW64\rpcrt4.dll - ok
00:00:51.0161 7316 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
00:00:51.0161 7316 C:\Windows\SysWOW64\gdi32.dll - ok
00:00:51.0161 7316 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
00:00:51.0161 7316 C:\Windows\SysWOW64\lpk.dll - ok
00:00:51.0161 7316 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
00:00:51.0161 7316 C:\Windows\SysWOW64\usp10.dll - ok
00:00:51.0176 7316 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
00:00:51.0176 7316 C:\Windows\SysWOW64\advapi32.dll - ok
00:00:51.0176 7316 [ 3B3DE5C189F896A7961A12BA74851BCB ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
00:00:51.0176 7316 C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
00:00:51.0176 7316 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
00:00:51.0176 7316 C:\Windows\SysWOW64\cryptbase.dll - ok
00:00:51.0176 7316 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
00:00:51.0176 7316 C:\Windows\SysWOW64\nsi.dll - ok
00:00:51.0192 7316 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
00:00:51.0192 7316 C:\Windows\SysWOW64\sechost.dll - ok
00:00:51.0192 7316 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
00:00:51.0192 7316 C:\Windows\SysWOW64\sspicli.dll - ok
00:00:51.0192 7316 [ 0AEC8B96718CB33A0D9B35DACEDDF1B3 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
00:00:51.0192 7316 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
00:00:51.0192 7316 [ E1E2425F9BD010E02604175A3D7F6EB7 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
00:00:51.0192 7316 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
00:00:51.0192 7316 [ 30CE0E44D6DC87A81D5B27713C2BB61F ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
00:00:51.0192 7316 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
00:00:51.0207 7316 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
00:00:51.0207 7316 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
00:00:51.0207 7316 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
00:00:51.0207 7316 C:\Windows\SysWOW64\comdlg32.dll - ok
00:00:51.0207 7316 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
00:00:51.0207 7316 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
00:00:51.0207 7316 [ 438FC61B8B35682D4A8E82EED3F9DC3A ] C:\Program Files\AVAST Software\Avast\ashBase.dll
00:00:51.0207 7316 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
00:00:51.0207 7316 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
00:00:51.0207 7316 C:\Windows\SysWOW64\shlwapi.dll - ok
00:00:51.0223 7316 [ E493008CD5487F3BF1CA32FFACAA21E4 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
00:00:51.0223 7316 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
00:00:51.0223 7316 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
00:00:51.0223 7316 C:\Windows\SysWOW64\crypt32.dll - ok
00:00:51.0223 7316 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
00:00:51.0223 7316 C:\Windows\SysWOW64\psapi.dll - ok
00:00:51.0223 7316 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
00:00:51.0223 7316 C:\Windows\SysWOW64\version.dll - ok
00:00:51.0223 7316 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
00:00:51.0223 7316 C:\Windows\SysWOW64\wsock32.dll - ok
00:00:51.0239 7316 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
00:00:51.0239 7316 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
00:00:51.0239 7316 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
00:00:51.0239 7316 C:\Windows\SysWOW64\shell32.dll - ok
00:00:51.0239 7316 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
00:00:51.0239 7316 C:\Windows\SysWOW64\ole32.dll - ok
00:00:51.0239 7316 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
00:00:51.0239 7316 C:\Windows\SysWOW64\oledlg.dll - ok
00:00:51.0239 7316 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
00:00:51.0239 7316 C:\Windows\SysWOW64\winspool.drv - ok
00:00:51.0254 7316 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
00:00:51.0254 7316 C:\Windows\SysWOW64\oleaut32.dll - ok
00:00:51.0254 7316 [ 7D99C08D8CA3D14AF033FF3E66B35A66 ] C:\Program Files (x86)\Lenovo\VeriFace\FaceVerify2.dll
00:00:51.0254 7316 C:\Program Files (x86)\Lenovo\VeriFace\FaceVerify2.dll - ok
00:00:51.0254 7316 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
00:00:51.0254 7316 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
00:00:51.0254 7316 [ 413F2787D10E1E9F0543D4528A77F6E1 ] C:\Program Files (x86)\Lenovo\VeriFace\Apblend.dll
00:00:51.0254 7316 C:\Program Files (x86)\Lenovo\VeriFace\Apblend.dll - ok
00:00:51.0254 7316 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
00:00:51.0254 7316 C:\Windows\SysWOW64\netapi32.dll - ok
00:00:51.0270 7316 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
00:00:51.0270 7316 C:\Windows\SysWOW64\netutils.dll - ok
00:00:51.0270 7316 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
00:00:51.0270 7316 C:\Windows\SysWOW64\samcli.dll - ok
00:00:51.0270 7316 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
00:00:51.0270 7316 C:\Windows\SysWOW64\secur32.dll - ok
00:00:51.0270 7316 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
00:00:51.0270 7316 C:\Windows\SysWOW64\srvcli.dll - ok
00:00:51.0270 7316 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
00:00:51.0270 7316 C:\Windows\SysWOW64\wkscli.dll - ok
00:00:51.0285 7316 [ B7C4CD1378B3FB81635688B4FB3572CD ] C:\Program Files (x86)\Lenovo\VeriFace\MainOp.dll
00:00:51.0285 7316 C:\Program Files (x86)\Lenovo\VeriFace\MainOp.dll - ok
00:00:51.0285 7316 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
00:00:51.0285 7316 C:\Windows\SysWOW64\msvfw32.dll - ok
00:00:51.0285 7316 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
00:00:51.0285 7316 C:\Windows\SysWOW64\winmm.dll - ok
00:00:51.0285 7316 [ E012289420A61AE54F21591A54323B74 ] C:\Program Files (x86)\Lenovo\VeriFace\msvcp80d.dll
00:00:51.0285 7316 C:\Program Files (x86)\Lenovo\VeriFace\msvcp80d.dll - ok
00:00:51.0285 7316 [ A200575E5415B2D87691EDB3CA40688F ] C:\Program Files (x86)\Lenovo\VeriFace\msvcr80d.dll
00:00:51.0285 7316 C:\Program Files (x86)\Lenovo\VeriFace\msvcr80d.dll - ok
00:00:51.0301 7316 [ B406FF2D245269704BF160E8CC3116F3 ] C:\Program Files (x86)\Lenovo\VeriFace\Momo.dll
00:00:51.0301 7316 C:\Program Files (x86)\Lenovo\VeriFace\Momo.dll - ok
00:00:51.0301 7316 [ F26E4405F7A76F2C86DC9A23A449A5A3 ] C:\Program Files (x86)\Lenovo\VeriFace\SetDev.dll
00:00:51.0301 7316 C:\Program Files (x86)\Lenovo\VeriFace\SetDev.dll - ok
00:00:51.0301 7316 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
00:00:51.0301 7316 C:\Windows\SysWOW64\avicap32.dll - ok
00:00:51.0301 7316 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
00:00:51.0301 7316 C:\Windows\SysWOW64\dsound.dll - ok
00:00:51.0301 7316 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
00:00:51.0301 7316 C:\Windows\SysWOW64\powrprof.dll - ok
00:00:51.0317 7316 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
00:00:51.0317 7316 C:\Windows\SysWOW64\setupapi.dll - ok
00:00:51.0317 7316 [ 98C46BF7E15C0A3AC6689B17F9BAA709 ] C:\Program Files (x86)\Lenovo\VeriFace\FunFrm.dll
00:00:51.0317 7316 C:\Program Files (x86)\Lenovo\VeriFace\FunFrm.dll - ok
00:00:51.0317 7316 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
00:00:51.0317 7316 C:\Windows\SysWOW64\cfgmgr32.dll - ok
00:00:51.0317 7316 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
00:00:51.0317 7316 C:\Windows\SysWOW64\devobj.dll - ok
00:00:51.0317 7316 [ 096B2B6458DC3FD9C82C4B95F8EF07F8 ] C:\Program Files (x86)\Lenovo\VeriFace\LangHlpr.dll
00:00:51.0317 7316 C:\Program Files (x86)\Lenovo\VeriFace\LangHlpr.dll - ok
00:00:51.0332 7316 [ 1939C3F72AE0AEA96131D7FBEB887C53 ] C:\Program Files (x86)\Lenovo\VeriFace\RICPlayerInterface.dll
00:00:51.0332 7316 C:\Program Files (x86)\Lenovo\VeriFace\RICPlayerInterface.dll - ok
00:00:51.0332 7316 [ 86D1E90D71A9938380B1F678A4FD08FE ] C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
00:00:51.0332 7316 C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll - ok
00:00:51.0332 7316 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
00:00:51.0332 7316 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
00:00:51.0332 7316 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
00:00:51.0332 7316 C:\Windows\SysWOW64\imm32.dll - ok
00:00:51.0332 7316 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
00:00:51.0332 7316 C:\Windows\SysWOW64\msctf.dll - ok
00:00:51.0348 7316 [ 401107CE7913B526FD87CC53F23A102F ] C:\Windows\SysWOW64\guard32.dll
00:00:51.0348 7316 C:\Windows\SysWOW64\guard32.dll - ok
00:00:51.0348 7316 [ C205B0FF13FEBFB34312444DBCECE379 ] C:\Windows\SysWOW64\nvinit.dll
00:00:51.0348 7316 C:\Windows\SysWOW64\nvinit.dll - ok
00:00:51.0348 7316 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
00:00:51.0348 7316 C:\Windows\SysWOW64\fltLib.dll - ok
00:00:51.0348 7316 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
00:00:51.0348 7316 C:\Windows\SysWOW64\uxtheme.dll - ok
00:00:51.0348 7316 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
00:00:51.0348 7316 C:\Windows\SysWOW64\msasn1.dll - ok
00:00:51.0363 7316 [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
00:00:51.0363 7316 C:\Windows\SysWOW64\wininet.dll - ok
00:00:51.0363 7316 [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
00:00:51.0363 7316 C:\Windows\SysWOW64\iertutil.dll - ok
00:00:51.0363 7316 [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
00:00:51.0363 7316 C:\Windows\SysWOW64\urlmon.dll - ok
00:00:51.0363 7316 [ 90CD55941D128AE6ACC518AADE751D48 ] C:\Program Files (x86)\Lenovo\VeriFace\English\Facev.dll
00:00:51.0363 7316 C:\Program Files (x86)\Lenovo\VeriFace\English\Facev.dll - ok
00:00:51.0379 7316 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
00:00:51.0379 7316 C:\Windows\SysWOW64\profapi.dll - ok
00:00:51.0379 7316 [ 914813B6D31474725D65E074C158F15C ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
00:00:51.0379 7316 C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
00:00:51.0379 7316 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
00:00:51.0379 7316 C:\Windows\SysWOW64\apphelp.dll - ok
00:00:51.0379 7316 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
00:00:51.0379 7316 C:\Windows\SysWOW64\dbghelp.dll - ok
00:00:51.0379 7316 [ EE731C31ED1BE10CBBBEB0F10E05F33E ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
00:00:51.0379 7316 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
00:00:51.0395 7316 [ DE97121190279F76BCE38B62AF75DDA2 ] C:\Program Files\AVAST Software\Avast\ashServ.dll
00:00:51.0395 7316 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
00:00:51.0395 7316 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
00:00:51.0395 7316 C:\Windows\System32\shsvcs.dll - ok
00:00:51.0395 7316 [ 1D6B397E58975B4C48611AFD56A656F5 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
00:00:51.0395 7316 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
00:00:51.0395 7316 [ 1CB7505CC589E1BF5AA8C9B2E2D59E5F ] C:\Program Files\AVAST Software\Avast\ashTask.dll
00:00:51.0395 7316 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
00:00:51.0410 7316 [ 743BC2EC6D901E16F43BD3DF3570DFA6 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
00:00:51.0410 7316 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
00:00:51.0410 7316 [ 0D8CC8856293187DDAE2C44FCA9DC32A ] C:\Program Files\AVAST Software\Avast\aswLog.dll
00:00:51.0410 7316 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
00:00:51.0410 7316 [ EE56714070FDB2FF98CF1261EBD91B6D ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
00:00:51.0410 7316 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
00:00:51.0410 7316 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
00:00:51.0410 7316 C:\Windows\System32\fveapi.dll - ok
00:00:51.0410 7316 [ C2E2DCCDA6287C7FDA5EE2ED020B1757 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
00:00:51.0410 7316 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
00:00:51.0426 7316 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
00:00:51.0426 7316 C:\Windows\System32\fvecerts.dll - ok
00:00:51.0426 7316 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
00:00:51.0426 7316 C:\Windows\System32\tbs.dll - ok
00:00:51.0426 7316 [ B64560B64BAA62E46EE816F8A6993100 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
00:00:51.0426 7316 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
00:00:51.0426 7316 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
00:00:51.0426 7316 C:\Windows\System32\wiarpc.dll - ok
00:00:51.0426 7316 [ 5DE0A9BB64C278945F002A79513CA7B5 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
00:00:51.0426 7316 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
00:00:51.0441 7316 [ 27C9A5419D28FFA4E01A74BA69DF3A28 ] C:\Program Files\AVAST Software\Avast\avastIP.dll
00:00:51.0441 7316 C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
00:00:51.0441 7316 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
00:00:51.0441 7316 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
00:00:51.0441 7316 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
00:00:51.0441 7316 C:\Windows\SysWOW64\winnsi.dll - ok
00:00:51.0441 7316 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
00:00:51.0441 7316 C:\Windows\System32\conhost.exe - ok
00:00:51.0441 7316 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
00:00:51.0441 7316 C:\Windows\SysWOW64\winhttp.dll - ok
00:00:51.0441 7316 [ 9797857DA32F4397944834A5D998C6AF ] C:\Program Files\AVAST Software\Avast\aswDld.dll
00:00:51.0457 7316 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
00:00:51.0457 7316 [ 752803208AAF2D95A9E77323DAE0A6BB ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
00:00:51.0457 7316 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
00:00:51.0457 7316 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
00:00:51.0457 7316 C:\Windows\SysWOW64\webio.dll - ok
00:00:51.0457 7316 [ BF82489D75D4A701C8CE2D8EAFF0F5F5 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
00:00:51.0457 7316 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
00:00:51.0457 7316 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
00:00:51.0457 7316 C:\Windows\System32\schedsvc.dll - ok
00:00:51.0473 7316 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
00:00:51.0473 7316 C:\Windows\SysWOW64\cryptsp.dll - ok
00:00:51.0473 7316 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
00:00:51.0473 7316 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
00:00:51.0473 7316 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
00:00:51.0473 7316 C:\Windows\System32\ktmw32.dll - ok
00:00:51.0473 7316 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
00:00:51.0473 7316 C:\Windows\SysWOW64\wscapi.dll - ok
00:00:51.0473 7316 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
00:00:51.0473 7316 C:\Windows\SysWOW64\wscisvif.dll - ok
00:00:51.0473 7316 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
00:00:51.0473 7316 C:\Windows\System32\taskcomp.dll - ok
00:00:51.0488 7316 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
00:00:51.0488 7316 C:\Windows\System32\drivers\http.sys - ok
00:00:51.0488 7316 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
00:00:51.0488 7316 C:\Windows\System32\spoolsv.exe - ok
00:00:51.0488 7316 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
00:00:51.0488 7316 C:\Windows\System32\BFE.DLL - ok
00:00:51.0488 7316 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
00:00:51.0488 7316 C:\Windows\System32\drivers\bowser.sys - ok
00:00:51.0488 7316 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
00:00:51.0488 7316 C:\Windows\System32\drivers\mpsdrv.sys - ok
00:00:51.0504 7316 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
00:00:51.0504 7316 C:\Windows\System32\drivers\mrxsmb.sys - ok
00:00:51.0504 7316 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
00:00:51.0504 7316 C:\Windows\System32\drivers\mrxsmb10.sys - ok
00:00:51.0504 7316 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
00:00:51.0504 7316 C:\Windows\System32\drivers\mrxsmb20.sys - ok
00:00:51.0504 7316 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
00:00:51.0504 7316 C:\Windows\System32\wkssvc.dll - ok
00:00:51.0504 7316 [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCore64.exe
00:00:51.0504 7316 C:\Program Files\SUPERAntiSpyware\SASCore64.exe - ok
00:00:51.0519 7316 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
00:00:51.0519 7316 C:\Windows\System32\wfapigp.dll - ok
00:00:51.0519 7316 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:00:51.0519 7316 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
00:00:51.0519 7316 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
00:00:51.0519 7316 C:\Windows\SysWOW64\wintrust.dll - ok
00:00:51.0519 7316 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:00:51.0519 7316 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
00:00:51.0519 7316 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
00:00:51.0519 7316 C:\Windows\System32\pcasvc.dll - ok
00:00:51.0535 7316 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
00:00:51.0535 7316 C:\Windows\System32\snmptrap.exe - ok
00:00:51.0535 7316 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
00:00:51.0535 7316 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
00:00:51.0535 7316 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
00:00:51.0535 7316 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
00:00:51.0535 7316 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
00:00:51.0535 7316 C:\Windows\System32\sstpsvc.dll - ok
00:00:51.0551 7316 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
00:00:51.0551 7316 C:\Windows\System32\provsvc.dll - ok
00:00:51.0551 7316 [ 399DA98E626257975EC87192838FAB9F ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswEngin.dll
00:00:51.0551 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswEngin.dll - ok
00:00:51.0551 7316 [ E479DDDD960DCCD8B5338B6E0F34AA97 ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswCmnIS.dll
00:00:51.0551 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswCmnIS.dll - ok
00:00:51.0551 7316 [ 3E4604CDB52F5E242C6E7D373160A684 ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswCmnOS.dll
00:00:51.0551 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswCmnOS.dll - ok
00:00:51.0551 7316 [ 14AB2136375A0E7F2B8F69618F749C26 ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswCmnBS.dll
00:00:51.0551 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswCmnBS.dll - ok
00:00:51.0566 7316 [ C3BEA4CDBE9805415372CA9757FD8149 ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswScan.dll
00:00:51.0566 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswScan.dll - ok
00:00:51.0566 7316 [ 8539ED943138AF05A92BD69A4DA092B2 ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswRep.dll
00:00:51.0566 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswRep.dll - ok
00:00:51.0566 7316 [ 0928FFC8BD4391F5878AD08085AE676E ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswFiDb.dll
00:00:51.0566 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswFiDb.dll - ok
00:00:51.0566 7316 [ F80531AFC795A77874FBB6A5EC1BEF0C ] C:\Program Files\AVAST Software\Avast\defs\13030800\algo.dll
00:00:51.0566 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\algo.dll - ok
00:00:51.0566 7316 [ 903FF9BA73E379237C0EDDDA8F17168C ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
00:00:51.0566 7316 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
00:00:51.0582 7316 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
00:00:51.0582 7316 C:\Windows\SysWOW64\winsta.dll - ok
00:00:51.0582 7316 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
00:00:51.0582 7316 C:\Windows\SysWOW64\wtsapi32.dll - ok
00:00:51.0582 7316 [ 1066DE2A2A7193AE28CE7D60C1C72D96 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
00:00:51.0582 7316 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
00:00:51.0582 7316 [ 3F9039D0DE3B2D8F03AD9D6D3A43844E ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
00:00:51.0582 7316 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
00:00:51.0597 7316 [ 44D89848472A7A5D776F2B15C39A9111 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
00:00:51.0597 7316 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
00:00:51.0597 7316 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
00:00:51.0597 7316 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
00:00:51.0597 7316 [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
00:00:51.0597 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
00:00:51.0597 7316 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
00:00:51.0597 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
00:00:51.0597 7316 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
00:00:51.0597 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
00:00:51.0613 7316 [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
00:00:51.0613 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
00:00:51.0613 7316 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
00:00:51.0613 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
00:00:51.0613 7316 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
00:00:51.0613 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
00:00:51.0613 7316 [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
00:00:51.0613 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
00:00:51.0613 7316 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
00:00:51.0613 7316 C:\Windows\System32\dllhost.exe - ok
00:00:51.0629 7316 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
00:00:51.0629 7316 C:\Windows\System32\IDStore.dll - ok
00:00:51.0629 7316 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
00:00:51.0629 7316 C:\Windows\System32\taskhost.exe - ok
00:00:51.0629 7316 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
00:00:51.0629 7316 C:\Windows\System32\drprov.dll - ok
00:00:51.0629 7316 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
00:00:51.0629 7316 C:\Windows\System32\ntlanman.dll - ok
00:00:51.0629 7316 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
00:00:51.0629 7316 C:\Windows\System32\PlaySndSrv.dll - ok
00:00:51.0644 7316 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
00:00:51.0644 7316 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
00:00:51.0644 7316 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
00:00:51.0644 7316 C:\Windows\System32\davclnt.dll - ok
00:00:51.0644 7316 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
00:00:51.0644 7316 C:\Windows\System32\davhlpr.dll - ok
00:00:51.0644 7316 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
00:00:51.0644 7316 C:\Windows\System32\cscapi.dll - ok
00:00:51.0644 7316 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
00:00:51.0660 7316 C:\Windows\System32\NapiNSP.dll - ok
00:00:51.0660 7316 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
00:00:51.0660 7316 C:\Windows\System32\nlasvc.dll - ok
00:00:51.0660 7316 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
00:00:51.0660 7316 C:\Windows\System32\pnrpnsp.dll - ok
00:00:51.0660 7316 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
00:00:51.0660 7316 C:\Windows\System32\MsCtfMonitor.dll - ok
00:00:51.0660 7316 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
00:00:51.0660 7316 C:\Windows\System32\msutb.dll - ok
00:00:51.0675 7316 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
00:00:51.0675 7316 C:\Windows\System32\HotStartUserAgent.dll - ok
00:00:51.0675 7316 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
00:00:51.0675 7316 C:\Windows\SysWOW64\credssp.dll - ok
00:00:51.0675 7316 [ 512524B6988A5DD8EA6F8B4EB11C54B7 ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
00:00:51.0675 7316 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
00:00:51.0675 7316 [ 5E94CCFF20B3FB13B582DF6BB637516C ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
00:00:51.0675 7316 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
00:00:51.0675 7316 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
00:00:51.0675 7316 C:\Program Files\Bonjour\mdnsNSP.dll - ok
00:00:51.0691 7316 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
00:00:51.0691 7316 C:\Windows\System32\localspl.dll - ok
00:00:51.0691 7316 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
00:00:51.0691 7316 C:\Windows\System32\rasadhlp.dll - ok
00:00:51.0691 7316 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
00:00:51.0691 7316 C:\Windows\System32\winrnr.dll - ok
00:00:51.0691 7316 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
00:00:51.0691 7316 C:\Windows\System32\wshbth.dll - ok
00:00:51.0691 7316 [ 857B9C9DBFD9B9B1C0D24B5FBE6FEE8D ] C:\Windows\System32\dopdfmn7.dll
00:00:51.0691 7316 C:\Windows\System32\dopdfmn7.dll - ok
00:00:51.0707 7316 [ C835670705596AE67EE7E0AE92A12071 ] C:\Windows\System32\HPZLLLHN.DLL
00:00:51.0707 7316 C:\Windows\System32\HPZLLLHN.DLL - ok
00:00:51.0707 7316 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
00:00:51.0707 7316 C:\Windows\System32\PrintIsolationProxy.dll - ok
00:00:51.0707 7316 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
00:00:51.0707 7316 C:\Windows\System32\spoolss.dll - ok
00:00:51.0707 7316 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
00:00:51.0707 7316 C:\Windows\System32\FXSMON.dll - ok
00:00:51.0707 7316 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
00:00:51.0707 7316 C:\Windows\SysWOW64\mswsock.dll - ok
00:00:51.0722 7316 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
00:00:51.0722 7316 C:\Windows\SysWOW64\wship6.dll - ok
00:00:51.0722 7316 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
00:00:51.0722 7316 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
00:00:51.0722 7316 [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
00:00:51.0722 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
00:00:51.0722 7316 [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
00:00:51.0722 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
00:00:51.0722 7316 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
00:00:51.0722 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
00:00:51.0738 7316 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
00:00:51.0738 7316 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
00:00:51.0738 7316 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
00:00:51.0738 7316 C:\Windows\SysWOW64\userenv.dll - ok
00:00:51.0738 7316 [ 3576ED1F2E012B4C52C0AC3721F5D800 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
00:00:51.0738 7316 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
00:00:51.0738 7316 [ 291592E7A84FD84CDD5C9E02F8AF9EED ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
00:00:51.0738 7316 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
00:00:51.0738 7316 [ 85E5A16C39986E73CD24C87FD442CBF8 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
00:00:51.0738 7316 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
00:00:51.0753 7316 [ 106B2C1DE615E08AFF9CE2A02E04F7CC ] C:\Program Files\AVAST Software\Avast\defs\13030800\ArPot.dll
00:00:51.0753 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\ArPot.dll - ok
00:00:51.0753 7316 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
00:00:51.0753 7316 C:\Windows\SysWOW64\dnssd.dll - ok
00:00:51.0753 7316 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
00:00:51.0753 7316 C:\Windows\SysWOW64\ntmarta.dll - ok
00:00:51.0753 7316 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
00:00:51.0753 7316 C:\Windows\SysWOW64\Wldap32.dll - ok
00:00:51.0753 7316 [ 846DBF46408C30941E6182E2EF084223 ] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
00:00:51.0753 7316 C:\Program Files (x86)\Bluetooth Suite\AdminService.exe - ok
00:00:51.0769 7316 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
00:00:51.0769 7316 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
00:00:51.0769 7316 [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
00:00:51.0769 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
00:00:51.0769 7316 [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
00:00:51.0769 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
00:00:51.0769 7316 [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
00:00:51.0769 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
00:00:51.0785 7316 [ 557AF6F8F50DB426966184895B6D34E2 ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
00:00:51.0785 7316 C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
00:00:51.0785 7316 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Windows\System32\msvcp100.dll
00:00:51.0785 7316 C:\Windows\System32\msvcp100.dll - ok
00:00:51.0785 7316 [ 76168DD534E0ADF0F30F0CA809525FCE ] C:\Windows\System32\mfc100u.dll
00:00:51.0785 7316 C:\Windows\System32\mfc100u.dll - ok
00:00:51.0785 7316 [ 91D051930E1AC33FBD9014FF3CB9B5BD ] C:\Windows\System32\mfc100enu.dll
00:00:51.0785 7316 C:\Windows\System32\mfc100enu.dll - ok
00:00:51.0785 7316 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
00:00:51.0785 7316 C:\Program Files\Bonjour\mDNSResponder.exe - ok
00:00:51.0800 7316 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
00:00:51.0800 7316 C:\Windows\System32\dps.dll - ok
00:00:51.0800 7316 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
00:00:51.0800 7316 C:\Windows\System32\IKEEXT.DLL - ok
00:00:51.0800 7316 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
00:00:51.0800 7316 C:\Windows\System32\vpnikeapi.dll - ok
00:00:51.0800 7316 [ ACBBD10744D5BD87D7E80C0BA9870F1B ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
00:00:51.0800 7316 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
00:00:51.0800 7316 [ AF718FFE60D958E590AF49C4FC3BD6A6 ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
00:00:51.0800 7316 C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
00:00:51.0816 7316 [ 9C70887708A7C88D20DD215AC5AA757F ] C:\Program Files\AVAST Software\Avast\libeay32.dll
00:00:51.0816 7316 C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
00:00:51.0816 7316 [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13030800\exts.dll
00:00:51.0816 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\exts.dll - ok
00:00:51.0816 7316 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
00:00:51.0816 7316 C:\Windows\System32\tcpmon.dll - ok
00:00:51.0816 7316 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
00:00:51.0816 7316 C:\Windows\System32\taskschd.dll - ok
00:00:51.0816 7316 [ 2D66067C7A8A0112156BCD1C0BAA7042 ] C:\Program Files\Intel\iCLS Client\HeciServer.exe
00:00:51.0816 7316 C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok
00:00:51.0831 7316 [ 18E0A9D44C2F83C751DFBA02EC8FCB6B ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
00:00:51.0831 7316 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
00:00:51.0831 7316 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
00:00:51.0831 7316 C:\Windows\SysWOW64\rsaenh.dll - ok
00:00:51.0831 7316 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
00:00:51.0831 7316 C:\Windows\SysWOW64\NapiNSP.dll - ok
00:00:51.0831 7316 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
00:00:51.0831 7316 C:\Windows\SysWOW64\nlaapi.dll - ok
00:00:51.0831 7316 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
00:00:51.0831 7316 C:\Windows\SysWOW64\pnrpnsp.dll - ok
00:00:51.0847 7316 [ FCE23E27F62989AD0BB88E256E847A41 ] C:\Windows\System32\CertPolEng.dll
00:00:51.0847 7316 C:\Windows\System32\CertPolEng.dll - ok
00:00:51.0847 7316 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
00:00:51.0847 7316 C:\Windows\System32\snmpapi.dll - ok
00:00:51.0847 7316 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
00:00:51.0847 7316 C:\Windows\System32\wsnmp32.dll - ok
00:00:51.0847 7316 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
00:00:51.0847 7316 C:\Windows\System32\taskeng.exe - ok
00:00:51.0847 7316 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
00:00:51.0847 7316 C:\Windows\System32\usbmon.dll - ok
00:00:51.0863 7316 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
00:00:51.0863 7316 C:\Windows\System32\userinit.exe - ok
00:00:51.0863 7316 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
00:00:51.0863 7316 C:\Windows\System32\dwm.exe - ok
00:00:51.0863 7316 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
00:00:51.0863 7316 C:\Windows\System32\dwmredir.dll - ok
00:00:51.0863 7316 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
00:00:51.0863 7316 C:\Windows\System32\dwmcore.dll - ok
00:00:51.0863 7316 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
00:00:51.0863 7316 C:\Windows\System32\d3d10_1.dll - ok
00:00:51.0878 7316 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
00:00:51.0878 7316 C:\Windows\System32\d3d10_1core.dll - ok
00:00:51.0878 7316 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
00:00:51.0878 7316 C:\Windows\System32\dxgi.dll - ok
00:00:51.0878 7316 [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
00:00:51.0878 7316 C:\Windows\System32\d3d11.dll - ok
00:00:51.0878 7316 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
00:00:51.0878 7316 C:\Windows\explorer.exe - ok
00:00:51.0878 7316 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
00:00:51.0878 7316 C:\Windows\System32\WSDMon.dll - ok
00:00:51.0894 7316 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
00:00:51.0894 7316 C:\Windows\System32\WSDApi.dll - ok
00:00:51.0894 7316 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
00:00:51.0894 7316 C:\Windows\System32\webservices.dll - ok
00:00:51.0894 7316 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
00:00:51.0894 7316 C:\Windows\System32\TSChannel.dll - ok
00:00:51.0894 7316 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:00:51.0894 7316 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
00:00:51.0894 7316 [ 9486205F1A6CACB185D64105D95578BA ] C:\Program Files\AVAST Software\Avast\snxhk.dll
00:00:51.0894 7316 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
00:00:51.0909 7316 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
00:00:51.0909 7316 C:\Windows\System32\fundisc.dll - ok
00:00:51.0909 7316 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
00:00:51.0909 7316 C:\Windows\System32\fdPnp.dll - ok
00:00:51.0909 7316 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
00:00:51.0909 7316 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
00:00:51.0909 7316 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
00:00:51.0909 7316 C:\Windows\SysWOW64\dnsapi.dll - ok
00:00:51.0909 7316 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
00:00:51.0909 7316 C:\Windows\SysWOW64\winrnr.dll - ok
00:00:51.0925 7316 [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
00:00:51.0925 7316 C:\Windows\SysWOW64\wshbth.dll - ok
00:00:51.0925 7316 [ C9DCE1CB628AEED3C0C30ABBF4F1E718 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
00:00:51.0925 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe - ok
00:00:51.0925 7316 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
00:00:51.0925 7316 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
00:00:51.0925 7316 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
00:00:51.0925 7316 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
00:00:51.0925 7316 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
00:00:51.0925 7316 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
00:00:51.0941 7316 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
00:00:51.0941 7316 C:\Windows\SysWOW64\rasadhlp.dll - ok
00:00:51.0941 7316 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
00:00:51.0941 7316 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
00:00:51.0941 7316 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
00:00:51.0941 7316 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
00:00:51.0941 7316 [ AF19AABE89FD10D6995B4900BA2B6B45 ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
00:00:51.0941 7316 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
00:00:51.0941 7316 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
00:00:51.0941 7316 C:\Windows\SysWOW64\security.dll - ok
00:00:51.0956 7316 [ 011285619951BC4C92FE322E08ABF050 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
00:00:51.0956 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
00:00:51.0956 7316 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
00:00:51.0956 7316 C:\Windows\System32\ExplorerFrame.dll - ok
00:00:51.0956 7316 [ A7F63C1F5CE020AA24CDCEFB422CF9E3 ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswAR.dll
00:00:51.0956 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswAR.dll - ok
00:00:51.0956 7316 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
00:00:51.0956 7316 C:\Windows\SysWOW64\wlanapi.dll - ok
00:00:51.0956 7316 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
00:00:51.0956 7316 C:\Windows\SysWOW64\wlanutil.dll - ok
00:00:51.0972 7316 [ 83D722F311011FB0E521737F724DEB90 ] C:\Program Files\AVAST Software\Avast\defs\13030800\aswRawFS.dll
00:00:51.0972 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\aswRawFS.dll - ok
00:00:51.0972 7316 [ C30A50449EA4B611484A5F1F1F016774 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
00:00:51.0972 7316 C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL - ok
00:00:51.0972 7316 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
00:00:51.0972 7316 C:\Windows\System32\win32spl.dll - ok
00:00:51.0972 7316 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
00:00:51.0972 7316 C:\Windows\System32\inetpp.dll - ok
00:00:51.0972 7316 [ 4F50FCF9EFFE8F913E3FEFFA010B79F9 ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
00:00:51.0972 7316 C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
00:00:51.0987 7316 [ 9B913CEB84F41DBC20E46EDFFF7818B3 ] C:\Program Files\AVAST Software\Avast\defs\13030800\swhealthex.dll
00:00:51.0987 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\swhealthex.dll - ok
00:00:51.0987 7316 [ A5BD2A901B11C3B0C47E7C7488CBC1D8 ] C:\Windows\System32\igd10umd64.dll
00:00:51.0987 7316 C:\Windows\System32\igd10umd64.dll - ok
00:00:51.0987 7316 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
00:00:51.0987 7316 C:\Windows\System32\uDWM.dll - ok
00:00:51.0987 7316 [ B5845C97AE81FB40094010E8727CF5DB ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
00:00:51.0987 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL - ok
00:00:51.0987 7316 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcr100.dll
00:00:51.0987 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcr100.dll - ok
00:00:52.0003 7316 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcp100.dll
00:00:52.0003 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcp100.dll - ok
00:00:52.0003 7316 [ 5A55E3E6F53592F8170623DEFA2B7954 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\atl100.dll
00:00:52.0003 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\atl100.dll - ok
00:00:52.0003 7316 [ 1821A9197482BDA422DD3FFBFD3AC611 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF
00:00:52.0003 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF - ok
00:00:52.0003 7316 [ FF5E3A95E892CE5235E72FD37A37E082 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
00:00:52.0003 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll - ok
00:00:52.0019 7316 [ 488ED60AC02E46CF3DBBB86AF1765C00 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
00:00:52.0019 7316 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
00:00:52.0019 7316 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
00:00:52.0019 7316 C:\Windows\System32\EhStorShell.dll - ok
00:00:52.0019 7316 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
00:00:52.0019 7316 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
00:00:52.0019 7316 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
00:00:52.0019 7316 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
00:00:52.0019 7316 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
00:00:52.0019 7316 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
00:00:52.0034 7316 [ 18E756E0FE2FFCD5DE35F6B9F91244A6 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll
00:00:52.0034 7316 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll - ok
00:00:52.0034 7316 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
00:00:52.0034 7316 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
00:00:52.0034 7316 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
00:00:52.0034 7316 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
00:00:52.0034 7316 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
00:00:52.0034 7316 C:\Windows\System32\ntshrui.dll - ok
00:00:52.0050 7316 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
00:00:52.0050 7316 C:\Windows\System32\IconCodecService.dll - ok
00:00:52.0050 7316 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
00:00:52.0050 7316 C:\Windows\SysWOW64\clbcatq.dll - ok
00:00:52.0050 7316 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
00:00:52.0050 7316 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
00:00:52.0050 7316 [ 3628933AF5305EAB8173949BFF912F04 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
00:00:52.0050 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe - ok
00:00:52.0050 7316 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Windows\SysWOW64\msvcp100.dll
00:00:52.0050 7316 C:\Windows\SysWOW64\msvcp100.dll - ok
00:00:52.0065 7316 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
00:00:52.0065 7316 C:\Windows\SysWOW64\imagehlp.dll - ok
00:00:52.0065 7316 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Windows\SysWOW64\msvcr100.dll
00:00:52.0065 7316 C:\Windows\SysWOW64\msvcr100.dll - ok
00:00:52.0065 7316 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
00:00:52.0065 7316 C:\Windows\SysWOW64\msi.dll - ok
00:00:52.0065 7316 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
00:00:52.0065 7316 C:\Windows\System32\ncsi.dll - ok
00:00:52.0065 7316 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
00:00:52.0065 7316 C:\Windows\System32\netman.dll - ok
00:00:52.0081 7316 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
00:00:52.0081 7316 C:\Windows\System32\winhttp.dll - ok
00:00:52.0081 7316 [ 3B8C708A9DF59C436C5371C87E6AA864 ] C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
00:00:52.0081 7316 C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe - ok
00:00:52.0081 7316 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Program Files\Microsoft Office 15\ClientX64\msvcr100.dll
00:00:52.0081 7316 C:\Program Files\Microsoft Office 15\ClientX64\msvcr100.dll - ok
00:00:52.0081 7316 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
00:00:52.0081 7316 C:\Windows\System32\webio.dll - ok
00:00:52.0097 7316 [ C7AAC31A910E4BBFDF94D3786ED13E71 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
00:00:52.0097 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe - ok
00:00:52.0097 7316 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
00:00:52.0097 7316 C:\Windows\System32\ssdpapi.dll - ok
00:00:52.0097 7316 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Program Files\Microsoft Office 15\ClientX64\msvcp100.dll
00:00:52.0097 7316 C:\Program Files\Microsoft Office 15\ClientX64\msvcp100.dll - ok
00:00:52.0097 7316 [ 88D89D88D3B5479D5AB52E0B3C2106A4 ] C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll
00:00:52.0097 7316 C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll - ok
00:00:52.0097 7316 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
00:00:52.0097 7316 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
00:00:52.0112 7316 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
00:00:52.0112 7316 C:\Windows\SysWOW64\cscapi.dll - ok
00:00:52.0112 7316 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
00:00:52.0112 7316 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
00:00:52.0112 7316 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
00:00:52.0112 7316 C:\Windows\SysWOW64\mstask.dll - ok
00:00:52.0112 7316 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
00:00:52.0112 7316 C:\Windows\System32\wer.dll - ok
00:00:52.0112 7316 [ 8FE3C29793755400E7876D17FA5811CF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll
00:00:52.0112 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll - ok
00:00:52.0128 7316 [ A7D4E2C269301BEA243676ED56F8B4FF ] C:\Windows\System32\RstrtMgr.dll
00:00:52.0128 7316 C:\Windows\System32\RstrtMgr.dll - ok
00:00:52.0128 7316 [ 32EE27E6AC39863A2C99D29E73ED63A9 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll
00:00:52.0128 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll - ok
00:00:52.0128 7316 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
00:00:52.0128 7316 C:\Windows\System32\cabinet.dll - ok
00:00:52.0128 7316 [ 2A5D98F0F5232E466F2A2EF5E549DF08 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll
00:00:52.0128 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll - ok
00:00:52.0143 7316 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
00:00:52.0143 7316 C:\Windows\System32\aepic.dll - ok
00:00:52.0143 7316 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
00:00:52.0143 7316 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
00:00:52.0143 7316 [ 6C518D405318E21AB6F1987EA056638F ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll
00:00:52.0143 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll - ok
00:00:52.0143 7316 [ E3BFBEE79BF4BBA6CC389C111F7943DD ] C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll
00:00:52.0143 7316 C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll - ok
00:00:52.0143 7316 [ F6252071299496777D1E3EC407A90929 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll
00:00:52.0143 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll - ok
00:00:52.0159 7316 [ F3FB432838012370538078378EB58462 ] C:\Program Files\Microsoft Office 15\ClientX64\streamserver.dll
00:00:52.0159 7316 C:\Program Files\Microsoft Office 15\ClientX64\streamserver.dll - ok
00:00:52.0159 7316 [ 6A35DA5E8324247CA2915D0F40F69A99 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll
00:00:52.0159 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll - ok
00:00:52.0159 7316 [ 20D7EDD027DE6DB15517EAE69FB5F9DC ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll
00:00:52.0159 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll - ok
00:00:52.0159 7316 [ ED6EA226D8C2C1176D8D9A98A135D5E4 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll
00:00:52.0159 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll - ok
00:00:52.0175 7316 [ 275B00B7DC661CCF9146B63659041908 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll
00:00:52.0175 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll - ok
00:00:52.0175 7316 [ C18A36745336FDAA1A8B9EE0604054AD ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvApi.dll
00:00:52.0175 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvApi.dll - ok
00:00:52.0175 7316 [ 0032C5D425B16B0DAF7D0FDD48594E39 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVPolicy.dll
00:00:52.0175 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVPolicy.dll - ok
00:00:52.0175 7316 [ F534B135D19CA8485BF947F87EFC582F ] C:\Program Files\Microsoft Office 15\ClientX64\AppVOrchestration.dll
00:00:52.0175 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVOrchestration.dll - ok
00:00:52.0175 7316 [ D3D9B40A45849394AF7DF2F71F70D52C ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvStreamingManager.dll
00:00:52.0175 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvStreamingManager.dll - ok
00:00:52.0190 7316 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
00:00:52.0190 7316 C:\Windows\System32\aeevts.dll - ok
00:00:52.0190 7316 [ 9375B812FE03ED005A10F8C0EC114E78 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVManifest.dll
00:00:52.0190 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVManifest.dll - ok
00:00:52.0190 7316 [ 49B2F538DCDED1804B5E1F6F231DF837 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVCatalog.dll
00:00:52.0190 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVCatalog.dll - ok
00:00:52.0190 7316 [ ED4C07994B45E17AEFE6E5182FF0F26E ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvVirtualization.dll
00:00:52.0190 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvVirtualization.dll - ok
00:00:52.0190 7316 [ 4A5CF4687030150F73B7E08FF6AFE05C ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIntegration.dll
00:00:52.0190 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVIntegration.dll - ok
00:00:52.0206 7316 [ 6322C5B9FA93BCB3921A23E4209F13E8 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvSubsystemController.dll
00:00:52.0206 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvSubsystemController.dll - ok
00:00:52.0206 7316 [ 4AAB66620DA120F76190F04981676EC9 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVFileSystemMetadata.dll
00:00:52.0206 7316 C:\Program Files\Microsoft Office 15\ClientX64\AppVFileSystemMetadata.dll - ok
00:00:52.0206 7316 [ 97E0EC3D6D99E8CC2B17EF2D3760E8FC ] C:\Windows\System32\schtasks.exe
00:00:52.0206 7316 C:\Windows\System32\schtasks.exe - ok
00:00:52.0206 7316 [ C4BAEC2E8B56B6337E722F8161BAAAAF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll
00:00:52.0206 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll - ok
00:00:52.0221 7316 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
00:00:52.0221 7316 C:\Windows\System32\dssenh.dll - ok
00:00:52.0221 7316 [ 4F096E6DF6D6AA79E0F1F5A8C09345F8 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll
00:00:52.0221 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll - ok
00:00:52.0221 7316 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
00:00:52.0221 7316 C:\Windows\System32\drivers\PEAuth.sys - ok
00:00:52.0221 7316 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
00:00:52.0221 7316 C:\Windows\System32\drivers\secdrv.sys - ok
00:00:52.0221 7316 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
00:00:52.0221 7316 C:\Windows\System32\drivers\srvnet.sys - ok
00:00:52.0237 7316 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
00:00:52.0237 7316 C:\Windows\System32\drivers\tcpipreg.sys - ok
00:00:52.0237 7316 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
00:00:52.0237 7316 C:\Windows\System32\httpapi.dll - ok
00:00:52.0237 7316 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
00:00:52.0237 7316 C:\Windows\System32\seclogon.dll - ok
00:00:52.0237 7316 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
00:00:52.0237 7316 C:\Windows\System32\sysmain.dll - ok
00:00:52.0237 7316 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
00:00:52.0237 7316 C:\Windows\System32\tapisrv.dll - ok
00:00:52.0253 7316 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
00:00:52.0253 7316 C:\Windows\System32\trkwks.dll - ok
00:00:52.0253 7316 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
00:00:52.0253 7316 C:\Program Files\Windows Defender\MpSvc.dll - ok
00:00:52.0253 7316 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
00:00:52.0253 7316 C:\Windows\System32\wbem\WMIsvc.dll - ok
00:00:52.0253 7316 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
00:00:52.0253 7316 C:\Windows\System32\wbem\WinMgmtR.dll - ok
00:00:52.0253 7316 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
00:00:52.0253 7316 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
00:00:52.0268 7316 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
00:00:52.0268 7316 C:\Program Files\Windows Defender\MpClient.dll - ok
00:00:52.0268 7316 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
00:00:52.0268 7316 C:\Windows\System32\esent.dll - ok
00:00:52.0268 7316 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
00:00:52.0268 7316 C:\Program Files\Windows Defender\MpRTP.dll - ok
00:00:52.0268 7316 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
00:00:52.0268 7316 C:\Windows\System32\tdh.dll - ok
00:00:52.0268 7316 [ 70E79E256812A3C0019BE9AFD840C821 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates\mpasdlta.vdm
00:00:52.0268 7316 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates\mpasdlta.vdm - ok
00:00:52.0284 7316 [ A60C54C889E44D647805FA1E548CE9DE ] C:\Program Files\WiTopia\WiTopiaService.exe
00:00:52.0284 7316 C:\Program Files\WiTopia\WiTopiaService.exe - ok
00:00:52.0284 7316 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
00:00:52.0284 7316 C:\Windows\System32\mscoree.dll - ok
00:00:52.0284 7316 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
00:00:52.0284 7316 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
00:00:52.0284 7316 [ 3DBEAEE8645FAF1232CE464C2CAC12EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
00:00:52.0284 7316 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
00:00:52.0284 7316 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
00:00:52.0284 7316 C:\Windows\System32\msvcr100_clr0400.dll - ok
00:00:52.0299 7316 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
00:00:52.0299 7316 C:\Windows\System32\wbem\wbemcore.dll - ok
00:00:52.0299 7316 [ FE4D9C36122778C9C2A84ACA08D54321 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\4f52500ab48877b85e71430f4f46670f\mscorlib.ni.dll
00:00:52.0299 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\4f52500ab48877b85e71430f4f46670f\mscorlib.ni.dll - ok
00:00:52.0299 7316 [ 4374B2528BCBB8F95FB12CC6C8FF0773 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
00:00:52.0299 7316 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok
00:00:52.0299 7316 [ 51621E4B29575A8CF429E6F6DA58A577 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
00:00:52.0299 7316 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
00:00:52.0315 7316 [ 3E9FC80F084589CDA4AE3322EEECFFC0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\a91f32875cb3ba779f1b3ceff1690251\System.ni.dll
00:00:52.0315 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\a91f32875cb3ba779f1b3ceff1690251\System.ni.dll - ok
00:00:52.0315 7316 [ CBD8D2E1CE69904E4371C7D42C086922 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceProce#\cec41d75ec0bc8592dd0ef71d161fa29\System.ServiceProcess.ni.dll
00:00:52.0315 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceProce#\cec41d75ec0bc8592dd0ef71d161fa29\System.ServiceProcess.ni.dll - ok
00:00:52.0315 7316 [ 49575C7A6AB7FD8329AD3D9991114829 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuratio#\c3fa8f10548acdd7ec740b848d5dab5b\System.Configuration.Install.ni.dll
00:00:52.0315 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuratio#\c3fa8f10548acdd7ec740b848d5dab5b\System.Configuration.Install.ni.dll - ok
00:00:52.0315 7316 [ 1C326927D68D0922179EBC71D609E617 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\5ae853f556290da9399b15b3619f7e15\System.Drawing.ni.dll
00:00:52.0315 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\5ae853f556290da9399b15b3619f7e15\System.Drawing.ni.dll - ok
00:00:52.0315 7316 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL
00:00:52.0315 7316 C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok
00:00:52.0331 7316 [ 396A6E9E6371627000A4C8B0D0213EF2 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\967f41fdf2cdbe200699f56d8817caca\System.Windows.Forms.ni.dll
00:00:52.0331 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\967f41fdf2cdbe200699f56d8817caca\System.Windows.Forms.ni.dll - ok
00:00:52.0331 7316 [ 76A11F575782DBAE74F05B8796EF7F9D ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\mpengine.dll
00:00:52.0331 7316 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\mpengine.dll - ok
00:00:52.0346 7316 [ 8481890EB7A25A48DB214FCEDFFACB8F ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\93864146d7ce552dabb2e9d07fa3a926\System.Core.ni.dll
00:00:52.0346 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\93864146d7ce552dabb2e9d07fa3a926\System.Core.ni.dll - ok
00:00:52.0346 7316 [ 436EB2742ED35C1ED9DDCB83C9BCF68A ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\mpasbase.vdm
00:00:52.0346 7316 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\mpasbase.vdm - ok
00:00:52.0346 7316 [ 0B18EA5E9E4806D52A5B37BCEB5B8420 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\mpasdlta.vdm
00:00:52.0346 7316 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A8E2BFE-C6D6-4DDB-BF63-02C0A2B0920F}\mpasdlta.vdm - ok
00:00:52.0346 7316 [ 70E79E256812A3C0019BE9AFD840C821 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{12468261-6657-437F-A7A9-D8304457E6B3}\mpasdlta.vdm
00:00:52.0346 7316 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{12468261-6657-437F-A7A9-D8304457E6B3}\mpasdlta.vdm - ok
00:00:52.0346 7316 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\UniDrvUI.dll
00:00:52.0346 7316 C:\Windows\System32\spool\drivers\x64\3\UniDrvUI.dll - ok
00:00:52.0346 7316 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
00:00:52.0346 7316 C:\Windows\System32\wbem\esscli.dll - ok
00:00:52.0362 7316 [ 28B051B78471FC290C1790623D5908E1 ] C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
00:00:52.0362 7316 C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe - ok
00:00:52.0362 7316 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
00:00:52.0362 7316 C:\Program Files\Windows Defender\MsMpLics.dll - ok
00:00:52.0362 7316 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
00:00:52.0362 7316 C:\Windows\System32\wscapi.dll - ok
00:00:52.0362 7316 [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\SysWOW64\bthprops.cpl
00:00:52.0362 7316 C:\Windows\SysWOW64\bthprops.cpl - ok
00:00:52.0362 7316 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
00:00:52.0362 7316 C:\Windows\System32\drivers\srv2.sys - ok
00:00:52.0377 7316 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
00:00:52.0377 7316 C:\Windows\System32\wscisvif.dll - ok
00:00:52.0377 7316 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
00:00:52.0377 7316 C:\Windows\System32\wscproxystub.dll - ok
00:00:52.0377 7316 [ F9A5AEDEB954D37BE3C13F2CAC02727B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll
00:00:52.0377 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll - ok
00:00:52.0377 7316 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
00:00:52.0377 7316 C:\Windows\System32\ntdsapi.dll - ok
00:00:52.0377 7316 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
00:00:52.0393 7316 C:\Windows\System32\wbem\fastprox.dll - ok
00:00:52.0393 7316 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
00:00:52.0393 7316 C:\Windows\System32\rasmans.dll - ok
00:00:52.0393 7316 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
00:00:52.0393 7316 C:\Windows\System32\wbem\wbemsvc.dll - ok
00:00:52.0393 7316 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
00:00:52.0393 7316 C:\Windows\System32\rastapi.dll - ok
00:00:52.0393 7316 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
00:00:52.0393 7316 C:\Windows\System32\tapi32.dll - ok
00:00:52.0409 7316 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
00:00:52.0409 7316 C:\Windows\System32\wbem\wmiutils.dll - ok
00:00:52.0409 7316 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
00:00:52.0409 7316 C:\Windows\System32\wbem\repdrvfs.dll - ok
00:00:52.0409 7316 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
00:00:52.0409 7316 C:\Windows\System32\unimdm.tsp - ok
00:00:52.0409 7316 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
00:00:52.0409 7316 C:\Windows\System32\uniplat.dll - ok
00:00:52.0424 7316 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
00:00:52.0424 7316 C:\Windows\System32\kmddsp.tsp - ok
00:00:52.0424 7316 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
00:00:52.0424 7316 C:\Windows\System32\hidphone.tsp - ok
00:00:52.0424 7316 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
00:00:52.0424 7316 C:\Windows\System32\ndptsp.tsp - ok
00:00:52.0424 7316 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
00:00:52.0424 7316 C:\Windows\System32\rasppp.dll - ok
00:00:52.0424 7316 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
00:00:52.0424 7316 C:\Windows\System32\vpnike.dll - ok
00:00:52.0440 7316 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
00:00:52.0440 7316 C:\Windows\System32\raschap.dll - ok
00:00:52.0440 7316 [ 4CEEFBB4D646848A6FCEC512B8C39479 ] C:\Program Files\Launch Manager\WisLMSvc.exe
00:00:52.0440 7316 C:\Program Files\Launch Manager\WisLMSvc.exe - ok
00:00:52.0440 7316 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
00:00:52.0440 7316 C:\Windows\System32\ipnathlp.dll - ok
00:00:52.0440 7316 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
00:00:52.0440 7316 C:\Windows\System32\mprapi.dll - ok
00:00:52.0440 7316 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
00:00:52.0440 7316 C:\Windows\System32\drivers\srv.sys - ok
00:00:52.0440 7316 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
00:00:52.0440 7316 C:\Windows\System32\netshell.dll - ok
00:00:52.0455 7316 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
00:00:52.0455 7316 C:\Windows\System32\srvsvc.dll - ok
00:00:52.0455 7316 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
00:00:52.0455 7316 C:\Windows\System32\browser.dll - ok
00:00:52.0455 7316 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
00:00:52.0455 7316 C:\Windows\System32\clusapi.dll - ok
00:00:52.0455 7316 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
00:00:52.0455 7316 C:\Windows\System32\hnetcfg.dll - ok
00:00:52.0455 7316 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
00:00:52.0455 7316 C:\Windows\System32\netmsg.dll - ok
00:00:52.0471 7316 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
00:00:52.0471 7316 C:\Windows\System32\sscore.dll - ok
00:00:52.0471 7316 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
00:00:52.0471 7316 C:\Windows\System32\resutils.dll - ok
00:00:52.0471 7316 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
00:00:52.0471 7316 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
00:00:52.0471 7316 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
00:00:52.0471 7316 C:\Windows\System32\ncobjapi.dll - ok
00:00:52.0471 7316 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
00:00:52.0471 7316 C:\Windows\System32\wbem\wbemess.dll - ok
00:00:52.0487 7316 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
00:00:52.0487 7316 C:\Windows\System32\appinfo.dll - ok
00:00:52.0487 7316 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
00:00:52.0487 7316 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
00:00:52.0487 7316 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
00:00:52.0487 7316 C:\Windows\System32\qmgr.dll - ok
00:00:52.0487 7316 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
00:00:52.0487 7316 C:\Windows\System32\wdi.dll - ok
00:00:52.0487 7316 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
00:00:52.0487 7316 C:\Windows\System32\bthserv.dll - ok
00:00:52.0502 7316 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
00:00:52.0502 7316 C:\Windows\System32\hidserv.dll - ok
00:00:52.0502 7316 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
00:00:52.0502 7316 C:\Windows\System32\diagperf.dll - ok
00:00:52.0502 7316 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
00:00:52.0502 7316 C:\Windows\System32\wpdbusenum.dll - ok
00:00:52.0502 7316 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
00:00:52.0502 7316 C:\Windows\System32\perftrack.dll - ok
00:00:52.0502 7316 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
00:00:52.0502 7316 C:\Windows\System32\PortableDeviceApi.dll - ok
00:00:52.0518 7316 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
00:00:52.0518 7316 C:\Windows\System32\shfolder.dll - ok
00:00:52.0518 7316 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
00:00:52.0518 7316 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
00:00:52.0518 7316 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
00:00:52.0518 7316 C:\Windows\System32\bitsigd.dll - ok
00:00:52.0518 7316 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
00:00:52.0518 7316 C:\Windows\System32\bitsperf.dll - ok
00:00:52.0518 7316 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
00:00:52.0518 7316 C:\Windows\System32\upnp.dll - ok
00:00:52.0533 7316 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
00:00:52.0533 7316 C:\Windows\System32\Apphlpdm.dll - ok
00:00:52.0533 7316 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
00:00:52.0533 7316 C:\Windows\System32\pnpts.dll - ok
00:00:52.0533 7316 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
00:00:52.0533 7316 C:\Windows\System32\radardt.dll - ok
00:00:52.0533 7316 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
00:00:52.0533 7316 C:\Windows\System32\ssdpsrv.dll - ok
00:00:52.0533 7316 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
00:00:52.0533 7316 C:\Windows\System32\wdiasqmmodule.dll - ok
00:00:52.0549 7316 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
00:00:52.0549 7316 C:\Windows\System32\runonce.exe - ok
00:00:52.0549 7316 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
00:00:52.0549 7316 C:\Windows\SysWOW64\runonce.exe - ok
00:00:52.0549 7316 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
00:00:52.0549 7316 C:\Windows\SysWOW64\propsys.dll - ok
00:00:52.0549 7316 [ 86D177F43030F61A8610259A2E8F07FE ] C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
00:00:52.0549 7316 C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL - ok
00:00:52.0549 7316 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
00:00:52.0549 7316 C:\Windows\System32\qmgrprxy.dll - ok
00:00:52.0565 7316 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
00:00:52.0565 7316 C:\Windows\SysWOW64\qmgrprxy.dll - ok
00:00:52.0565 7316 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
00:00:52.0565 7316 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
00:00:52.0565 7316 [ BF2F2717C13A4BD4FD73F2788534E86B ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
00:00:52.0565 7316 C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
00:00:52.0565 7316 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
00:00:52.0565 7316 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
00:00:52.0580 7316 [ 854563425495A29FB4B198A6ABEBE06D ] C:\Program Files (x86)\iTunes\iTunes.exe
00:00:52.0580 7316 C:\Program Files (x86)\iTunes\iTunes.exe - ok
00:00:52.0580 7316 [ C2D2C87649E0315B4356B51498882B37 ] C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
00:00:52.0580 7316 C:\Program Files (x86)\VideoLAN\VLC\vlc.exe - ok
00:00:52.0580 7316 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
00:00:52.0580 7316 C:\Windows\System32\aelupsvc.dll - ok
00:00:52.0580 7316 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
00:00:52.0580 7316 C:\Windows\System32\IPSECSVC.DLL - ok
00:00:52.0580 7316 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
00:00:52.0580 7316 C:\Windows\System32\FwRemoteSvr.dll - ok
00:00:52.0596 7316 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
00:00:52.0596 7316 C:\Windows\System32\dimsjob.dll - ok
00:00:52.0596 7316 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
00:00:52.0596 7316 C:\Windows\System32\npmproxy.dll - ok
00:00:52.0596 7316 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
00:00:52.0596 7316 C:\Windows\System32\wbem\cimwin32.dll - ok
00:00:52.0596 7316 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
00:00:52.0596 7316 C:\Windows\SysWOW64\cmd.exe - ok
00:00:52.0596 7316 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
00:00:52.0596 7316 C:\Windows\SysWOW64\winbrand.dll - ok
00:00:52.0611 7316 [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
00:00:52.0611 7316 C:\Windows\SysWOW64\ieframe.dll - ok
00:00:52.0611 7316 [ 698EB1E5F8C66344D97C00B5699E871D ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
00:00:52.0611 7316 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
00:00:52.0611 7316 [ 12DBA51A6D1126E88F78D79AE0F7600F ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
00:00:52.0611 7316 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
00:00:52.0611 7316 [ 9F2F087B58318D1744101883EF958677 ] C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
00:00:52.0611 7316 C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
00:00:52.0611 7316 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
00:00:52.0611 7316 C:\Windows\SysWOW64\oleacc.dll - ok
00:00:52.0627 7316 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
00:00:52.0627 7316 C:\Windows\SysWOW64\shdocvw.dll - ok
00:00:52.0627 7316 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Sleepyjims Blue\AppData\Local\Temp\4DFB19FD-468E-4937-B2A8-95999CA178C5.exe
00:00:52.0627 7316 C:\Users\Sleepyjims Blue\AppData\Local\Temp\4DFB19FD-468E-4937-B2A8-95999CA178C5.exe - ok
00:00:52.0627 7316 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
00:00:52.0627 7316 C:\Windows\SysWOW64\ncrypt.dll - ok
00:00:52.0627 7316 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
00:00:52.0627 7316 C:\Windows\SysWOW64\bcrypt.dll - ok
00:00:52.0627 7316 [ B3FB360040585245DF0A4E63A8987BDF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll
00:00:52.0627 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll - ok
00:00:52.0643 7316 [ B6A214BACD0C5BE45C4D093032DD884B ] C:\Program Files (x86)\WinRAR\WinRAR.exe
00:00:52.0643 7316 C:\Program Files (x86)\WinRAR\WinRAR.exe - ok
00:00:52.0643 7316 [ 83564FD69621419EABBE1AE03428976D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll
00:00:52.0643 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll - ok
00:00:52.0643 7316 [ DDB8769E14BDF097879B6345394C5889 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll
00:00:52.0643 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll - ok
00:00:52.0643 7316 [ A9539131F6C8EF5068FA16D581285EBB ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll
00:00:52.0643 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll - ok
00:00:52.0643 7316 [ AD18A46DE75479C9B9AEC783FB7F9883 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll
00:00:52.0643 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll - ok
00:00:52.0658 7316 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
00:00:52.0658 7316 C:\Windows\System32\framedynos.dll - ok
00:00:52.0658 7316 [ 06EBB2B3F1588E6182C67F6D95F151EA ] C:\Program Files\COMODO\COMODO Internet Security\platform.dll
00:00:52.0658 7316 C:\Program Files\COMODO\COMODO Internet Security\platform.dll - ok
00:00:52.0658 7316 [ B6663FC132F0262A5EF48DB2D0187DE3 ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll
00:00:52.0658 7316 C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll - ok
00:00:52.0658 7316 [ A77BA10A0D610BBB6101AEA1E633ABE1 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
00:00:52.0658 7316 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
00:00:52.0674 7316 [ AE0A2DE2BB518D204F94DDCF93BBCC4C ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
00:00:52.0674 7316 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok
00:00:52.0674 7316 [ B720B4D1C97FBE02BE32812B580F1849 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll
00:00:52.0674 7316 C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll - ok
00:00:52.0674 7316 [ EC248BC9C9C225FD289F250756503146 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
00:00:52.0674 7316 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok
00:00:52.0674 7316 [ 6D8F59648536E150DC5543E439281AE3 ] C:\Program Files\COMODO\COMODO Internet Security\scanners\common.cav
00:00:52.0674 7316 C:\Program Files\COMODO\COMODO Internet Security\scanners\common.cav - ok
00:00:52.0689 7316 [ 73EC75C38053596DBE594D63E4CD3E79 ] C:\Program Files\COMODO\COMODO Internet Security\signmgr.dll
00:00:52.0689 7316 C:\Program Files\COMODO\COMODO Internet Security\signmgr.dll - ok
00:00:52.0689 7316 [ CD37E8F77BFF71F104BDC941A393F0B5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
00:00:52.0689 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe - ok
00:00:52.0689 7316 [ B00F98FF6FE8682FF941BEB2559BF191 ] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
00:00:52.0689 7316 C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe - ok
00:00:52.0689 7316 [ 858176715EA25C14303FFEC047B98169 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll
00:00:52.0689 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll - ok
00:00:52.0689 7316 [ 35238D8E052C7CFDDE63E6C11CE852FA ] C:\Program Files (x86)\uTorrent\uTorrent.exe
00:00:52.0689 7316 C:\Program Files (x86)\uTorrent\uTorrent.exe - ok
00:00:52.0705 7316 [ 9743899CE8E4C9686DC8D87E3AD2B0D3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll
00:00:52.0705 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll - ok
00:00:52.0705 7316 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
00:00:52.0705 7316 C:\Windows\SysWOW64\devenum.dll - ok
00:00:52.0705 7316 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
00:00:52.0705 7316 C:\Windows\SysWOW64\msdmo.dll - ok
00:00:52.0705 7316 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
00:00:52.0705 7316 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
00:00:52.0705 7316 [ 06A347F37D33D16520768EB3D5EAE9A0 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll
00:00:52.0705 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll - ok
00:00:52.0721 7316 [ 5B9E01A5C9370CA6A686C090C41A075E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll
00:00:52.0721 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll - ok
00:00:52.0721 7316 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
00:00:52.0721 7316 C:\Windows\SysWOW64\vfwwdm32.dll - ok
00:00:52.0721 7316 [ 577F78F9116565D5D634A85BA65D8815 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll
00:00:52.0721 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll - ok
00:00:52.0721 7316 [ E6A55378B998F55CD67BD44245FF4F1F ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll
00:00:52.0721 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll - ok
00:00:52.0736 7316 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
00:00:52.0736 7316 C:\Windows\SysWOW64\dwmapi.dll - ok
00:00:52.0736 7316 [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
00:00:52.0736 7316 C:\Windows\SysWOW64\wpdshext.dll - ok
00:00:52.0736 7316 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
00:00:52.0736 7316 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
00:00:52.0736 7316 [ 77A0AC6A3031FEFCBE2B7A52F4E8C0D3 ] C:\Program Files\COMODO\COMODO Internet Security\scanners\fileid.cav
00:00:52.0736 7316 C:\Program Files\COMODO\COMODO Internet Security\scanners\fileid.cav - ok
00:00:52.0736 7316 [ B598F178B9454BA8700EC7FA16FD4284 ] C:\Program Files\COMODO\COMODO Internet Security\scanners\pkann.dll
00:00:52.0736 7316 C:\Program Files\COMODO\COMODO Internet Security\scanners\pkann.dll - ok
00:00:52.0752 7316 [ 6A9178ADC5A029992399B76AE5E5E96E ] C:\Program Files\COMODO\COMODO Internet Security\scanners\mach32.dll
00:00:52.0752 7316 C:\Program Files\COMODO\COMODO Internet Security\scanners\mach32.dll - ok
00:00:52.0752 7316 [ DDABE79024A488DBBB7DE369FA22A93D ] C:\Program Files\COMODO\COMODO Internet Security\scanners\white.cav
00:00:52.0752 7316 C:\Program Files\COMODO\COMODO Internet Security\scanners\white.cav - ok
00:00:52.0752 7316 [ 3F94DF1E5187AFBE286C995D61A6B6E2 ] C:\Windows\System32\spool\drivers\x64\3\HPZUILHN.DLL
00:00:52.0752 7316 C:\Windows\System32\spool\drivers\x64\3\HPZUILHN.DLL - ok
00:00:52.0752 7316 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
00:00:52.0752 7316 C:\Windows\SysWOW64\gpapi.dll - ok
00:00:52.0752 7316 [ CDA59C183B3DB8CF35380836ADD74AAD ] C:\Windows\System32\compstui.dll
00:00:52.0752 7316 C:\Windows\System32\compstui.dll - ok
00:00:52.0767 7316 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
00:00:52.0767 7316 C:\Windows\SysWOW64\cryptnet.dll - ok
00:00:52.0767 7316 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
00:00:52.0767 7316 C:\Windows\SysWOW64\SensApi.dll - ok
00:00:52.0767 7316 [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
00:00:52.0767 7316 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
00:00:52.0767 7316 [ C38D2750A525A6CA891EE1EE49FACC26 ] C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL
00:00:52.0767 7316 C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL - ok
00:00:52.0767 7316 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll
00:00:52.0767 7316 C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll - ok
00:00:52.0783 7316 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Program Files\Microsoft Office 15\root\office15\msvcp100.dll
00:00:52.0783 7316 C:\Program Files\Microsoft Office 15\root\office15\msvcp100.dll - ok
00:00:52.0783 7316 [ 00D2C06A552F782C1F16ACF77DB765A5 ] C:\Program Files\Microsoft Office 15\root\office15\atl100.dll
00:00:52.0783 7316 C:\Program Files\Microsoft Office 15\root\office15\atl100.dll - ok
00:00:52.0783 7316 [ A15C09D748C7A9710D88BDD0D7740896 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF
00:00:52.0783 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF - ok
00:00:52.0783 7316 [ 23288F12565E93F9D3429B88B0AC19DD ] C:\Program Files\Microsoft Office 15\root\office15\1033\GrooveIntlResource.dll
00:00:52.0783 7316 C:\Program Files\Microsoft Office 15\root\office15\1033\GrooveIntlResource.dll - ok
00:00:52.0799 7316 [ 6B9FF8CBE106F76B8CF4DC8146FBFDC6 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe
00:00:52.0799 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe - ok
00:00:52.0799 7316 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
00:00:52.0799 7316 C:\Windows\SysWOW64\EhStorShell.dll - ok
00:00:52.0799 7316 [ F14823F07336AA84D2F5C26834D851E9 ] C:\PROGRA~2\MICROS~3\Office14\1033\GrooveIntlResource.dll
00:00:52.0799 7316 C:\PROGRA~2\MICROS~3\Office14\1033\GrooveIntlResource.dll - ok
00:00:52.0799 7316 [ 61930F3CFF07F50B503AFA6397BFB40A ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll
00:00:52.0799 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll - ok
00:00:52.0799 7316 [ 064CB6CD2B1B525BF52425A818C1A15E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll
00:00:52.0799 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll - ok
00:00:52.0814 7316 [ AC627A247B23297B50B03856626C19B7 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll
00:00:52.0814 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll - ok
00:00:52.0814 7316 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
00:00:52.0814 7316 C:\Windows\SysWOW64\logoncli.dll - ok
00:00:52.0814 7316 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll
00:00:52.0814 7316 C:\Windows\SysWOW64\dsrole.dll - ok
00:00:52.0814 7316 [ AB113FF5C7FC4571135A1B7E8BA8BB1D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll
00:00:52.0814 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll - ok
00:00:52.0830 7316 [ 52FDF003556C7DC2733F1B0687487B1C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll
00:00:52.0830 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll - ok
00:00:52.0830 7316 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
00:00:52.0830 7316 C:\Windows\SysWOW64\ntshrui.dll - ok
00:00:52.0830 7316 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
00:00:52.0830 7316 C:\Windows\SysWOW64\slc.dll - ok
00:00:52.0830 7316 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
00:00:52.0830 7316 C:\Windows\SysWOW64\imageres.dll - ok
00:00:52.0830 7316 [ 8A28776BC6DA3AA5BE8EA80567ECB2B7 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll
00:00:52.0830 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll - ok
00:00:52.0845 7316 [ E1DDFAE44AC4746207B8704F8D647020 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll
00:00:52.0845 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll - ok
00:00:52.0845 7316 [ 0D4E31F533C7773DF732F1189A55A72C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll
00:00:52.0845 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll - ok
00:00:52.0845 7316 [ 9BA4D8AA5EE052D34EFAF4D6358A90A5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll
00:00:52.0845 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll - ok
00:00:52.0845 7316 [ 7C883AACA6C9A774CA9D7AEE67113D47 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
00:00:52.0845 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll - ok
00:00:52.0845 7316 [ C29BD7974796BF039B15D2BB74E21A8B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll
00:00:52.0845 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll - ok
00:00:52.0861 7316 [ 6575B3174C3C86515916CDC2FDC5EF32 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll
00:00:52.0861 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll - ok
00:00:52.0861 7316 [ 8A327BB9D9C77B48474FAB738AC2F2F3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll
00:00:52.0861 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll - ok
00:00:52.0861 7316 [ 037D78392A17C46EF00129A827A7684E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll
00:00:52.0861 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll - ok
00:00:52.0861 7316 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
00:00:52.0861 7316 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
00:00:52.0877 7316 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
00:00:52.0877 7316 C:\Windows\SysWOW64\wbemcomn.dll - ok
00:00:52.0877 7316 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
00:00:52.0877 7316 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
00:00:52.0877 7316 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
00:00:52.0877 7316 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
00:00:52.0877 7316 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
00:00:52.0877 7316 C:\Windows\SysWOW64\ntdsapi.dll - ok
00:00:52.0877 7316 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
00:00:52.0877 7316 C:\Windows\SysWOW64\mlang.dll - ok
00:00:52.0892 7316 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
00:00:52.0892 7316 C:\Windows\System32\security.dll - ok
00:00:52.0892 7316 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
00:00:52.0892 7316 C:\Windows\System32\browcli.dll - ok
00:00:52.0892 7316 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
00:00:52.0892 7316 C:\Windows\System32\schedcli.dll - ok
00:00:52.0892 7316 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
00:00:52.0892 7316 C:\Windows\System32\wmi.dll - ok
00:00:52.0892 7316 [ F1387F5674697F2D8EB6DE2266477860 ] C:\Windows\System32\dskquota.dll
00:00:52.0892 7316 C:\Windows\System32\dskquota.dll - ok
00:00:52.0908 7316 [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
00:00:52.0908 7316 C:\Windows\System32\perfos.dll - ok
00:00:52.0908 7316 [ B9BED985C148ED68F407A00B39885D4F ] C:\ProgramData\Intel\Intel® ME FW Recovery Agent\device_profile\providers\MEProvider.dll
00:00:52.0908 7316 C:\ProgramData\Intel\Intel® ME FW Recovery Agent\device_profile\providers\MEProvider.dll - ok
00:00:52.0908 7316 [ 83C27AD4040B60B81322ABE7E7B0057A ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\MEFWRDsc.dll
00:00:52.0908 7316 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\MEFWRDsc.dll - ok
00:00:52.0908 7316 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
00:00:52.0908 7316 C:\Windows\SysWOW64\sfc.dll - ok
00:00:52.0908 7316 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
00:00:52.0908 7316 C:\Windows\SysWOW64\sfc_os.dll - ok
00:00:52.0923 7316 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
00:00:52.0923 7316 C:\Windows\SysWOW64\devrtl.dll - ok
00:00:52.0923 7316 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
00:00:52.0923 7316 C:\Windows\SysWOW64\mpr.dll - ok
00:00:52.0923 7316 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
00:00:52.0923 7316 C:\Windows\System32\ie4uinit.exe - ok
00:00:52.0923 7316 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
00:00:52.0923 7316 C:\Windows\System32\iedkcs32.dll - ok
00:00:52.0923 7316 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
00:00:52.0923 7316 C:\Windows\System32\timedate.cpl - ok
00:00:52.0939 7316 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
00:00:52.0939 7316 C:\Windows\System32\actxprxy.dll - ok
00:00:52.0939 7316 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
00:00:52.0939 7316 C:\Windows\System32\shdocvw.dll - ok
00:00:52.0939 7316 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
00:00:52.0939 7316 C:\Windows\System32\linkinfo.dll - ok
00:00:52.0939 7316 [ 33926CCBC46E1760F7AA1521B6A6CA88 ] C:\Program Files\Lenovo\SimpleTap DeskBand\DeskBand64.dll
00:00:52.0939 7316 C:\Program Files\Lenovo\SimpleTap DeskBand\DeskBand64.dll - ok
00:00:52.0939 7316 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
00:00:52.0939 7316 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
00:00:52.0955 7316 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
00:00:52.0955 7316 C:\Windows\System32\msftedit.dll - ok
00:00:52.0955 7316 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
00:00:52.0955 7316 C:\Windows\System32\msls31.dll - ok
00:00:52.0955 7316 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
00:00:52.0955 7316 C:\Windows\System32\gameux.dll - ok
00:00:52.0955 7316 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
00:00:52.0955 7316 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
00:00:52.0955 7316 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
00:00:52.0955 7316 C:\Windows\System32\DeviceCenter.dll - ok
00:00:52.0970 7316 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
00:00:52.0970 7316 C:\Windows\System32\msiltcfg.dll - ok
00:00:52.0970 7316 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
00:00:52.0970 7316 C:\Windows\System32\thumbcache.dll - ok
00:00:52.0970 7316 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
00:00:52.0970 7316 C:\Windows\System32\networkexplorer.dll - ok
00:00:52.0970 7316 [ 02F2FE12B0C924D649F16073D0B011D1 ] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
00:00:52.0970 7316 C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe - ok
00:00:52.0970 7316 [ 4320A7045EC51CCC554E607B1CE0FA26 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
00:00:52.0970 7316 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
00:00:52.0986 7316 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
00:00:52.0986 7316 C:\Windows\System32\dsound.dll - ok
00:00:52.0986 7316 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
00:00:52.0986 7316 C:\Windows\System32\oledlg.dll - ok
00:00:52.0986 7316 [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
00:00:52.0986 7316 C:\Windows\System32\RtkCfg64.dll - ok
00:00:52.0986 7316 [ 249B5EAC4274EFE407186DDA08778107 ] C:\Windows\System32\RtkAPO64.dll
00:00:52.0986 7316 C:\Windows\System32\RtkAPO64.dll - ok
00:00:52.0986 7316 [ 350AE710634AF327DDC90B897BBBA23A ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
00:00:52.0986 7316 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe - ok
00:00:53.0001 7316 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
00:00:53.0001 7316 C:\Windows\System32\stobject.dll - ok
00:00:53.0001 7316 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
00:00:53.0001 7316 C:\Windows\System32\batmeter.dll - ok
00:00:53.0001 7316 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\17800304.sys
00:00:53.0001 7316 C:\Windows\System32\drivers\17800304.sys - ok
00:00:53.0001 7316 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
00:00:53.0001 7316 C:\Windows\System32\prnfldr.dll - ok
00:00:53.0001 7316 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
00:00:53.0001 7316 C:\Windows\System32\fdProxy.dll - ok
00:00:53.0017 7316 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
00:00:53.0017 7316 C:\Windows\System32\DXP.dll - ok
00:00:53.0017 7316 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
00:00:53.0017 7316 C:\Windows\SysWOW64\riched20.dll - ok
00:00:53.0017 7316 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
00:00:53.0017 7316 C:\Windows\System32\Syncreg.dll - ok
00:00:53.0017 7316 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
00:00:53.0017 7316 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
00:00:53.0017 7316 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
00:00:53.0017 7316 C:\Windows\SysWOW64\duser.dll - ok
00:00:53.0033 7316 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
00:00:53.0033 7316 C:\Windows\SysWOW64\dui70.dll - ok
00:00:53.0033 7316 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
00:00:53.0033 7316 C:\Windows\ehome\ehSSO.dll - ok
00:00:53.0033 7316 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
00:00:53.0033 7316 C:\Windows\System32\rundll32.exe - ok
00:00:53.0033 7316 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
00:00:53.0033 7316 C:\Windows\System32\AltTab.dll - ok
00:00:53.0033 7316 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
00:00:53.0033 7316 C:\Windows\System32\WPDShServiceObj.dll - ok
00:00:53.0048 7316 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
00:00:53.0048 7316 C:\Windows\System32\PortableDeviceTypes.dll - ok
00:00:53.0048 7316 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
00:00:53.0048 7316 C:\Windows\System32\SearchIndexer.exe - ok
00:00:53.0048 7316 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
00:00:53.0048 7316 C:\Windows\System32\tquery.dll - ok
00:00:53.0048 7316 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
00:00:53.0048 7316 C:\Windows\System32\pnidui.dll - ok
00:00:53.0048 7316 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
00:00:53.0048 7316 C:\Windows\System32\QUTIL.DLL - ok
00:00:53.0064 7316 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
00:00:53.0064 7316 C:\Windows\System32\mssrch.dll - ok
00:00:53.0064 7316 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
00:00:53.0064 7316 C:\Windows\System32\srchadmin.dll - ok
00:00:53.0064 7316 [ A3287F8EB6182FB060C818524C7D6A63 ] C:\Windows\System32\dxtrans.dll
00:00:53.0064 7316 C:\Windows\System32\dxtrans.dll - ok
00:00:53.0064 7316 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
00:00:53.0064 7316 C:\Windows\System32\ddraw.dll - ok
00:00:53.0064 7316 [ 4938A4350327E1A5DEB0CD134AC1AAA3 ] C:\Windows\System32\ddrawex.dll
00:00:53.0064 7316 C:\Windows\System32\ddrawex.dll - ok
00:00:53.0079 7316 [ FD2031A7D5BBB95DC8A763D20B352A46 ] C:\Windows\System32\imgutil.dll
00:00:53.0079 7316 C:\Windows\System32\imgutil.dll - ok
00:00:53.0079 7316 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
00:00:53.0079 7316 C:\Windows\System32\rasdlg.dll - ok
00:00:53.0079 7316 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
00:00:53.0079 7316 C:\Windows\System32\dciman32.dll - ok
00:00:53.0079 7316 [ 2F31597DA72FE328E1F7FEBF8548759C ] C:\Windows\System32\pngfilt.dll
00:00:53.0079 7316 C:\Windows\System32\pngfilt.dll - ok
00:00:53.0079 7316 [ A891488C2469CDCCFF142BD4C58F124E ] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
00:00:53.0079 7316 C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe - ok
00:00:53.0095 7316 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
00:00:53.0095 7316 C:\Windows\System32\msidle.dll - ok
00:00:53.0095 7316 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
00:00:53.0095 7316 C:\Windows\System32\dot3api.dll - ok
00:00:53.0095 7316 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
00:00:53.0095 7316 C:\Windows\System32\wlanapi.dll - ok
00:00:53.0095 7316 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
00:00:53.0095 7316 C:\Windows\System32\wlanhlp.dll - ok
00:00:53.0095 7316 [ EBF06E5E1780E05249B819C826A628DD ] C:\Program Files (x86)\Bluetooth Suite\athr_debug.dll
00:00:53.0095 7316 C:\Program Files (x86)\Bluetooth Suite\athr_debug.dll - ok
00:00:53.0111 7316 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
00:00:53.0111 7316 C:\Windows\System32\mssprxy.dll - ok
00:00:53.0111 7316 [ 85E89644992783E51BBD7B768575ECC9 ] C:\Program Files (x86)\Bluetooth Suite\Handsfree.dll
00:00:53.0111 7316 C:\Program Files (x86)\Bluetooth Suite\Handsfree.dll - ok
00:00:53.0111 7316 [ 9CCB9986AD1BCA78367F2117D78E1ADC ] C:\Program Files (x86)\Bluetooth Suite\RfcommLib.dll
00:00:53.0111 7316 C:\Program Files (x86)\Bluetooth Suite\RfcommLib.dll - ok
00:00:53.0111 7316 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
00:00:53.0111 7316 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
00:00:53.0111 7316 [ 3550F527B78B2C433A4351A5AD6B9629 ] C:\Program Files (x86)\Bluetooth Suite\BTBIP.dll
00:00:53.0111 7316 C:\Program Files (x86)\Bluetooth Suite\BTBIP.dll - ok
00:00:53.0126 7316 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
00:00:53.0126 7316 C:\Windows\System32\WWanAPI.dll - ok
00:00:53.0126 7316 [ E53E41A3485D3036D5082A493ACD965A ] C:\Program Files (x86)\Bluetooth Suite\SesMgr.dll
00:00:53.0126 7316 C:\Program Files (x86)\Bluetooth Suite\SesMgr.dll - ok
00:00:53.0126 7316 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
00:00:53.0126 7316 C:\Windows\System32\QAGENT.DLL - ok
00:00:53.0126 7316 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
00:00:53.0126 7316 C:\Windows\System32\wwapi.dll - ok
00:00:53.0126 7316 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
00:00:53.0126 7316 C:\Windows\System32\en-US\tquery.dll.mui - ok
00:00:53.0142 7316 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
00:00:53.0142 7316 C:\Windows\System32\ActionCenter.dll - ok
00:00:53.0142 7316 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
00:00:53.0142 7316 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
00:00:53.0142 7316 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
00:00:53.0142 7316 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
00:00:53.0142 7316 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
00:00:53.0142 7316 C:\Windows\System32\wsock32.dll - ok
00:00:53.0142 7316 [ 718ED3C65F91B1204D1416C117E9EC8B ] C:\Program Files (x86)\Bluetooth Suite\Sync.dll
00:00:53.0142 7316 C:\Program Files (x86)\Bluetooth Suite\Sync.dll - ok
00:00:53.0157 7316 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
00:00:53.0157 7316 C:\Windows\System32\drmv2clt.dll - ok
00:00:53.0157 7316 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
00:00:53.0157 7316 C:\Windows\System32\wmdrmdev.dll - ok
00:00:53.0157 7316 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
00:00:53.0157 7316 C:\Windows\System32\blackbox.dll - ok
00:00:53.0157 7316 [ 91EB5B315BD3B6FF57936E6ED76728B9 ] C:\Program Files (x86)\Bluetooth Suite\OutLookLib.dll
00:00:53.0157 7316 C:\Program Files (x86)\Bluetooth Suite\OutLookLib.dll - ok
00:00:53.0157 7316 [ 07AB86FB3E32EE967B86E6FE30B7D6B6 ] C:\Program Files (x86)\Bluetooth Suite\goep.dll
00:00:53.0157 7316 C:\Program Files (x86)\Bluetooth Suite\goep.dll - ok
00:00:53.0173 7316 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
00:00:53.0173 7316 C:\Windows\System32\wmp.dll - ok
00:00:53.0173 7316 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
00:00:53.0173 7316 C:\Windows\System32\UIAnimation.dll - ok
00:00:53.0173 7316 [ A5A217DE2236297B8C0CB2A78FBD49E0 ] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
00:00:53.0173 7316 C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe - ok
00:00:53.0173 7316 [ 0389A31E086786BFF73E2EF1BA4A35FA ] C:\Program Files (x86)\Bluetooth Suite\BPP.dll
00:00:53.0173 7316 C:\Program Files (x86)\Bluetooth Suite\BPP.dll - ok
00:00:53.0173 7316 [ 1EA4A0704197E45D836D0AD5E8DF31CE ] C:\Program Files (x86)\Bluetooth Suite\L2capLib.dll
00:00:53.0173 7316 C:\Program Files (x86)\Bluetooth Suite\L2capLib.dll - ok
00:00:53.0189 7316 [ C2294419CFBFD62B25FB2350F9787192 ] C:\Program Files (x86)\Bluetooth Suite\utils.dll
00:00:53.0189 7316 C:\Program Files (x86)\Bluetooth Suite\utils.dll - ok
00:00:53.0189 7316 [ 927CDFB1154F4560EAEBF019DA18FD9A ] C:\Program Files (x86)\Bluetooth Suite\phonebook.dll
00:00:53.0189 7316 C:\Program Files (x86)\Bluetooth Suite\phonebook.dll - ok
00:00:53.0189 7316 [ 0BEF33870DD6CE5F3F44C29EC2083C25 ] C:\Program Files (x86)\Bluetooth Suite\sim.dll
00:00:53.0189 7316 C:\Program Files (x86)\Bluetooth Suite\sim.dll - ok
00:00:53.0189 7316 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
00:00:53.0189 7316 C:\Windows\System32\riched20.dll - ok
00:00:53.0189 7316 [ CF4EF05975A89948455F60CC6844D8ED ] C:\Program Files (x86)\Bluetooth Suite\gatts.dll
00:00:53.0189 7316 C:\Program Files (x86)\Bluetooth Suite\gatts.dll - ok
00:00:53.0204 7316 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
00:00:53.0204 7316 C:\Windows\System32\wmploc.DLL - ok
00:00:53.0204 7316 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
00:00:53.0204 7316 C:\Windows\System32\FXSST.dll - ok
00:00:53.0204 7316 [ 9555026A008B9424B9A4F5E77332806C ] C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll
00:00:53.0204 7316 C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll - ok
00:00:53.0204 7316 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
00:00:53.0204 7316 C:\Windows\System32\FXSAPI.dll - ok
00:00:53.0204 7316 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
00:00:53.0204 7316 C:\Windows\System32\FXSRESM.dll - ok
00:00:53.0220 7316 [ CBB7A815EC8222CEC08DAD5D4CBB1690 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
00:00:53.0220 7316 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
00:00:53.0220 7316 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
00:00:53.0220 7316 C:\Windows\System32\FXSSVC.exe - ok
00:00:53.0220 7316 [ 8E0A2E4B59B10F635321A9A4CE156685 ] C:\Windows\System32\SynCOM.dll
00:00:53.0220 7316 C:\Windows\System32\SynCOM.dll - ok
00:00:53.0220 7316 [ 1B8AA038A489BBAA5EF1819C4E44885D ] C:\Program Files (x86)\Bluetooth Suite\BtCommonRes.dll
00:00:53.0220 7316 C:\Program Files (x86)\Bluetooth Suite\BtCommonRes.dll - ok
00:00:53.0220 7316 [ F2EDC093CDD8D6852500FD679A965B7F ] C:\Windows\System32\SynTPAPI.dll
00:00:53.0220 7316 C:\Windows\System32\SynTPAPI.dll - ok
00:00:53.0235 7316 [ 2BA77FAEDD933B8355670BB603D99107 ] C:\Program Files (x86)\Bluetooth Suite\FileTransfer.dll
00:00:53.0235 7316 C:\Program Files (x86)\Bluetooth Suite\FileTransfer.dll - ok
00:00:53.0235 7316 [ 5A55E3E6F53592F8170623DEFA2B7954 ] C:\Windows\System32\atl100.dll
00:00:53.0235 7316 C:\Windows\System32\atl100.dll - ok
00:00:53.0235 7316 [ 431D61583E2F87CB6AA63384E656CE52 ] C:\Program Files (x86)\Bluetooth Suite\SkypeAgent.dll
00:00:53.0235 7316 C:\Program Files (x86)\Bluetooth Suite\SkypeAgent.dll - ok
00:00:53.0235 7316 [ 5F4342C36142C4BC8736776283089A58 ] C:\Windows\System32\mfc100.dll
00:00:53.0235 7316 C:\Windows\System32\mfc100.dll - ok
00:00:53.0235 7316 [ BD17EF8B02A16C975B0E1167ABAC2A4B ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
00:00:53.0235 7316 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
00:00:53.0251 7316 [ 175AA182BD2D46829897C8AA0E2926D6 ] C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
00:00:53.0251 7316 C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe - ok
00:00:53.0251 7316 [ 646504819875FB63DEFBC9A797E4A05F ] C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
00:00:53.0251 7316 C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll - ok
00:00:53.0251 7316 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
00:00:53.0251 7316 C:\Windows\System32\wmpps.dll - ok
00:00:53.0251 7316 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
00:00:53.0251 7316 C:\Windows\System32\msxml3.dll - ok
00:00:53.0267 7316 [ AA03E1D5A180FAF44CC907C2B321522F ] C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE
00:00:53.0267 7316 C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE - ok
00:00:53.0267 7316 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
00:00:53.0267 7316 C:\Windows\System32\wmpmde.dll - ok
00:00:53.0267 7316 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
00:00:53.0267 7316 C:\Windows\System32\consent.exe - ok
00:00:53.0267 7316 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
00:00:53.0267 7316 C:\Windows\System32\WinSATAPI.dll - ok
00:00:53.0267 7316 [ BCB6FC6EC7473397D4B5C2FEBFC9A57F ] C:\Program Files (x86)\Bluetooth Suite\ObjPush.dll
00:00:53.0267 7316 C:\Program Files (x86)\Bluetooth Suite\ObjPush.dll - ok
00:00:53.0282 7316 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
00:00:53.0282 7316 C:\Windows\System32\MSMPEG2ENC.DLL - ok
00:00:53.0282 7316 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
00:00:53.0282 7316 C:\Windows\System32\devenum.dll - ok
00:00:53.0282 7316 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
00:00:53.0282 7316 C:\Windows\System32\msdmo.dll - ok
00:00:53.0282 7316 [ 2DCF8AE74898973BC9A3E689D60F4795 ] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
00:00:53.0282 7316 C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe - ok
00:00:53.0282 7316 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
00:00:53.0282 7316 C:\Windows\System32\SensApi.dll - ok
00:00:53.0298 7316 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
00:00:53.0298 7316 C:\Windows\System32\upnphost.dll - ok
00:00:53.0298 7316 [ 0BFA2B0CD3B2D4E6560A87A717059546 ] C:\Program Files (x86)\Lenovo\Energy Management\mfc90ud.dll
00:00:53.0298 7316 C:\Program Files (x86)\Lenovo\Energy Management\mfc90ud.dll - ok
00:00:53.0298 7316 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
00:00:53.0298 7316 C:\Windows\System32\wbem\wmiprov.dll - ok
00:00:53.0298 7316 [ 01D2A1DBA286FB997A886719A27A9AB5 ] C:\Program Files (x86)\Lenovo\Energy Management\msvcr90d.dll
00:00:53.0298 7316 C:\Program Files (x86)\Lenovo\Energy Management\msvcr90d.dll - ok
00:00:53.0298 7316 [ 93817ADB7E4CB357062E103E0819473E ] C:\Program Files\Microsoft Office 15\root\office15\appvisvsubsystems32.dll
00:00:53.0298 7316 C:\Program Files\Microsoft Office 15\root\office15\appvisvsubsystems32.dll - ok
00:00:53.0313 7316 [ B8639E972CA8340F87CB99D28D82120B ] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
00:00:53.0313 7316 C:\Program Files (x86)\Lenovo\Energy Management\utility.exe - ok
00:00:53.0313 7316 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
00:00:53.0313 7316 C:\Windows\System32\pdh.dll - ok
00:00:53.0313 7316 [ EA390E7DC881C52C047EE3C63D883327 ] C:\Program Files (x86)\Lenovo\Energy Management\LenovoEmExpandedAPI.dll
00:00:53.0313 7316 C:\Program Files (x86)\Lenovo\Energy Management\LenovoEmExpandedAPI.dll - ok
00:00:53.0313 7316 [ 706AA831C8C83FC0F7583B109B9CFC7F ] C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
00:00:53.0313 7316 C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll - ok
00:00:53.0313 7316 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
00:00:53.0313 7316 C:\Windows\System32\udhisapi.dll - ok
00:00:53.0329 7316 [ C705053D72EBB0060F79568BC21FD49D ] C:\Program Files\Microsoft Office 15\root\office15\appvisvstream32.dll
00:00:53.0329 7316 C:\Program Files\Microsoft Office 15\root\office15\appvisvstream32.dll - ok
00:00:53.0329 7316 [ 17E03B6C08DE84D8E88F0577A6BC0974 ] C:\Program Files (x86)\Lenovo\Energy Management\KbdHook.dll
00:00:53.0329 7316 C:\Program Files (x86)\Lenovo\Energy Management\KbdHook.dll - ok
00:00:53.0329 7316 [ 116BBA6BD781D53E68BA11AB1295EC2D ] C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll
00:00:53.0329 7316 C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll - ok
00:00:53.0329 7316 [ DB4BC74DC444CC7A5F8F6DF2D38FBD96 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
00:00:53.0329 7316 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll - ok
00:00:53.0329 7316 [ FC70F49F1B15802F5AE7F818AE3ECBC8 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_01c6b44660ce74c3\MFC90ENU.DLL
00:00:53.0329 7316 C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_01c6b44660ce74c3\MFC90ENU.DLL - ok
00:00:53.0345 7316 [ 4715F8F8CDBFFF2728BA38B789A1D7C7 ] C:\Windows\System32\wpdshext.dll
00:00:53.0345 7316 C:\Windows\System32\wpdshext.dll - ok
00:00:53.0345 7316 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
00:00:53.0345 7316 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
00:00:53.0345 7316 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
00:00:53.0345 7316 C:\Windows\System32\webcheck.dll - ok
00:00:53.0345 7316 [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
00:00:53.0345 7316 C:\Windows\System32\ieframe.dll - ok
00:00:53.0345 7316 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
00:00:53.0345 7316 C:\Windows\System32\SearchProtocolHost.exe - ok
00:00:53.0360 7316 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
00:00:53.0360 7316 C:\Windows\System32\msshooks.dll - ok
00:00:53.0360 7316 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
00:00:53.0360 7316 C:\Windows\System32\SearchFilterHost.exe - ok
00:00:53.0360 7316 [ 8BC7F8F0B7AE856D910B3FDD895EC50E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
00:00:53.0360 7316 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
00:00:53.0360 7316 [ D1231393FBB5172B9AD833D18DD31561 ] C:\Program Files\Microsoft Office 15\root\office15\WWLIB.DLL
00:00:53.0360 7316 C:\Program Files\Microsoft Office 15\root\office15\WWLIB.DLL - ok
00:00:53.0376 7316 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
00:00:53.0376 7316 C:\Windows\System32\mlang.dll - ok
00:00:53.0376 7316 [ A36523A51EACBF8BF7E48CAFE4B67E08 ] C:\Program Files (x86)\Lenovo\Energy Management\Open EnergyManagement.exe
00:00:53.0376 7316 C:\Program Files (x86)\Lenovo\Energy Management\Open EnergyManagement.exe - ok
00:00:53.0376 7316 [ 3F35AC7163E403C1FA8D34EB2FF36302 ] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe
00:00:53.0376 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe - ok
00:00:53.0376 7316 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
00:00:53.0376 7316 C:\Windows\System32\SyncCenter.dll - ok
00:00:53.0376 7316 [ FE3747DF34A4E5243EFCA2210DD30B11 ] C:\Program Files (x86)\Lenovo\Boot Optimizer\GuiSysd.dll
00:00:53.0376 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\GuiSysd.dll - ok
00:00:53.0391 7316 [ 85191D8FC4EEBB4CD7E9D2D72DB7CE89 ] C:\Program Files (x86)\Lenovo\Boot Optimizer\SimpRes.dll
00:00:53.0391 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\SimpRes.dll - ok
00:00:53.0391 7316 [ EC2FF50C8AE90F72B74DCAF38BA7706E ] C:\Program Files (x86)\Lenovo\Boot Optimizer\LangHlpr.dll
00:00:53.0391 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\LangHlpr.dll - ok
00:00:53.0391 7316 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
00:00:53.0391 7316 C:\Windows\System32\imapi2.dll - ok
00:00:53.0391 7316 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
00:00:53.0391 7316 C:\Windows\System32\mssph.dll - ok
00:00:53.0391 7316 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
00:00:53.0391 7316 C:\Windows\System32\hgcpl.dll - ok
00:00:53.0407 7316 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
00:00:53.0407 7316 C:\Windows\System32\mapi32.dll - ok
00:00:53.0407 7316 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
00:00:53.0407 7316 C:\Windows\System32\fdPHost.dll - ok
00:00:53.0407 7316 [ 3D22A5BF5A63BF1B3020BB99AD902EA2 ] C:\Program Files (x86)\Lenovo\Boot Optimizer\mfc80ud.dll
00:00:53.0407 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\mfc80ud.dll - ok
00:00:53.0407 7316 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
00:00:53.0407 7316 C:\Windows\System32\FDResPub.dll - ok
00:00:53.0407 7316 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
00:00:53.0407 7316 C:\Windows\System32\fdWSD.dll - ok
00:00:53.0423 7316 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
00:00:53.0423 7316 C:\Windows\System32\fdSSDP.dll - ok
00:00:53.0423 7316 [ A200575E5415B2D87691EDB3CA40688F ] C:\Program Files (x86)\Lenovo\Boot Optimizer\msvcr80d.dll
00:00:53.0423 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\msvcr80d.dll - ok
00:00:53.0423 7316 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
00:00:53.0423 7316 C:\Windows\System32\ListSvc.dll - ok
00:00:53.0423 7316 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
00:00:53.0423 7316 C:\Windows\System32\IdListen.dll - ok
00:00:53.0423 7316 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
00:00:53.0423 7316 C:\Windows\System32\P2P.dll - ok
00:00:53.0423 7316 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
00:00:53.0423 7316 C:\Windows\System32\hgprint.dll - ok
00:00:53.0438 7316 [ E012289420A61AE54F21591A54323B74 ] C:\Program Files (x86)\Lenovo\Boot Optimizer\msvcp80d.dll
00:00:53.0438 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\msvcp80d.dll - ok
00:00:53.0438 7316 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
00:00:53.0438 7316 C:\Windows\System32\p2pcollab.dll - ok
00:00:53.0438 7316 [ 4C7EAC5A2953C24911958269658A2B00 ] C:\Program Files (x86)\Lenovo\Boot Optimizer\fbfmon.dll
00:00:53.0438 7316 C:\Program Files (x86)\Lenovo\Boot Optimizer\fbfmon.dll - ok
00:00:53.0438 7316 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
00:00:53.0438 7316 C:\Windows\System32\pnrpsvc.dll - ok
00:00:53.0438 7316 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
00:00:53.0438 7316 C:\Windows\System32\sqmapi.dll - ok
00:00:53.0454 7316 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
00:00:53.0454 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
00:00:53.0454 7316 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
00:00:53.0454 7316 C:\Windows\System32\wbem\NCProv.dll - ok
00:00:53.0454 7316 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
00:00:53.0454 7316 C:\Windows\System32\QAGENTRT.DLL - ok
00:00:53.0454 7316 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
00:00:53.0454 7316 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
00:00:53.0469 7316 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
00:00:53.0469 7316 C:\Windows\System32\fveui.dll - ok
00:00:53.0469 7316 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
00:00:53.0469 7316 C:\Windows\System32\p2psvc.dll - ok
00:00:53.0469 7316 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
00:00:53.0469 7316 C:\Windows\System32\P2PGraph.dll - ok
00:00:53.0469 7316 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
00:00:53.0469 7316 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
00:00:53.0485 7316 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
00:00:53.0485 7316 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
00:00:53.0485 7316 [ AA6698EC95F726F6931F701047426BC3 ] C:\Program Files (x86)\Lenovo\Energy Management\msvcm90.dll
00:00:53.0485 7316 C:\Program Files (x86)\Lenovo\Energy Management\msvcm90.dll - ok
00:00:53.0485 7316 [ 4F7A4BC2C730D881C48D22A6E7EF547C ] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
00:00:53.0485 7316 C:\Program Files\COMODO\COMODO Internet Security\cfp.exe - ok
00:00:53.0485 7316 [ 18673B7DDECFB675A989EB2B7C51A7F1 ] C:\Program Files\COMODO\COMODO Internet Security\cmdhtml.dll
00:00:53.0485 7316 C:\Program Files\COMODO\COMODO Internet Security\cmdhtml.dll - ok
00:00:53.0485 7316 [ 50925A12AD9A8F45609E914D9F941E68 ] C:\Program Files\COMODO\COMODO Internet Security\themes\black.theme
00:00:53.0485 7316 C:\Program Files\COMODO\COMODO Internet Security\themes\black.theme - ok
00:00:53.0501 7316 [ 25BEF4C3E9417AE09B017CCFB66B4383 ] C:\Program Files\COMODO\COMODO Internet Security\themes\blue.theme
00:00:53.0501 7316 C:\Program Files\COMODO\COMODO Internet Security\themes\blue.theme - ok
00:00:53.0501 7316 [ CC30AA4EF49CA0B3B1C1CBCE325C36AD ] C:\Program Files\COMODO\COMODO Internet Security\themes\default.theme
00:00:53.0501 7316 C:\Program Files\COMODO\COMODO Internet Security\themes\default.theme - ok
00:00:53.0501 7316 [ 5E04C53224E7D946F35DC1208835FD95 ] C:\Program Files\COMODO\COMODO Internet Security\themes\metal.theme
00:00:53.0501 7316 C:\Program Files\COMODO\COMODO Internet Security\themes\metal.theme - ok
00:00:53.0501 7316 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
00:00:53.0501 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
00:00:53.0501 7316 [ 1420586F892A779DB72A4A0762195DE5 ] C:\Program Files\Microsoft Office 15\root\office15\OART.DLL
00:00:53.0501 7316 C:\Program Files\Microsoft Office 15\root\office15\OART.DLL - ok
00:00:53.0516 7316 [ BE49AF92F13030E188DBE8E2841D173A ] C:\Windows\System32\igfxtray.exe
00:00:53.0516 7316 C:\Windows\System32\igfxtray.exe - ok
00:00:53.0516 7316 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
00:00:53.0516 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
00:00:53.0516 7316 [ 78E38D8FBAF394FC0721E4FB95D69576 ] C:\Windows\System32\hccutils.dll
00:00:53.0516 7316 C:\Windows\System32\hccutils.dll - ok
00:00:53.0516 7316 [ 7AC06967981D21A695D15FBEF011730E ] C:\Windows\System32\igfxsrvc.exe
00:00:53.0516 7316 C:\Windows\System32\igfxsrvc.exe - ok
00:00:53.0532 7316 [ 457085667CF2A2071C8D89C728C94A08 ] C:\Windows\System32\igfxsrvc.dll
00:00:53.0532 7316 C:\Windows\System32\igfxsrvc.dll - ok
00:00:53.0532 7316 [ 8940C6BC05AA8A4A05C390975AEF2FF2 ] C:\Windows\System32\igfxdev.dll
00:00:53.0532 7316 C:\Windows\System32\igfxdev.dll - ok
00:00:53.0532 7316 [ 664FF61BE83FCACBF67A8D307011ADF5 ] C:\Windows\System32\hkcmd.exe
00:00:53.0532 7316 C:\Windows\System32\hkcmd.exe - ok
00:00:53.0532 7316 [ 1C178D0AF299D315DB0A84673CDE5598 ] C:\Windows\System32\igfxrenu.lrc
00:00:53.0532 7316 C:\Windows\System32\igfxrenu.lrc - ok
00:00:53.0532 7316 [ 899D435E1C190C204E349CE0E483098B ] C:\Windows\System32\igfxpers.exe
00:00:53.0532 7316 C:\Windows\System32\igfxpers.exe - ok
00:00:53.0547 7316 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
00:00:53.0547 7316 C:\Windows\System32\IccLibDll_x64.dll - ok
00:00:53.0547 7316 [ 03C1AEFCEC08062B426165234F045027 ] C:\Windows\System32\igfxress.dll
00:00:53.0547 7316 C:\Windows\System32\igfxress.dll - ok
00:00:53.0547 7316 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
00:00:53.0547 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
00:00:53.0547 7316 [ 0FB62AA7D376D730823FF9A9D9FCB3B5 ] C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
00:00:53.0547 7316 C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe - ok
00:00:53.0547 7316 [ 2C7B219CD45E962C49B1834083C75183 ] C:\Program Files (x86)\BillP Studios\WinPatrol\sqlite3.dll
00:00:53.0547 7316 C:\Program Files (x86)\BillP Studios\WinPatrol\sqlite3.dll - ok
00:00:53.0563 7316 [ EF3FA00EAFA74A2BB4376763E71C6679 ] C:\Program Files (x86)\BillP Studios\WinPatrol\patrolpro.dll
00:00:53.0563 7316 C:\Program Files (x86)\BillP Studios\WinPatrol\patrolpro.dll - ok
00:00:53.0563 7316 [ F24953813905F3F88219BE5F7C2A246A ] C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrolEx.exe
00:00:53.0563 7316 C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrolEx.exe - ok
00:00:53.0563 7316 [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
00:00:53.0563 7316 C:\Windows\SysWOW64\d2d1.dll - ok
00:00:53.0563 7316 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
00:00:53.0563 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
00:00:53.0563 7316 [ 0D808BA0BD62E15D5F677760409D42CB ] C:\Program Files (x86)\SugarSync\SugarSyncManager.exe
00:00:53.0563 7316 C:\Program Files (x86)\SugarSync\SugarSyncManager.exe - ok
00:00:53.0579 7316 [ 02A7C2CC0D046DC9A333D5E33140CC11 ] C:\Program Files (x86)\SugarSync\QtCore4.dll
00:00:53.0579 7316 C:\Program Files (x86)\SugarSync\QtCore4.dll - ok
00:00:53.0579 7316 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
00:00:53.0579 7316 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
00:00:53.0579 7316 [ B6C19F1358668595026C422EBAEBD3AA ] C:\Program Files\WiTopia\WiTopia.exe
00:00:53.0579 7316 C:\Program Files\WiTopia\WiTopia.exe - ok
00:00:53.0579 7316 [ DCC4DEDC425A15ED104FA54B67FE4C62 ] C:\Program Files (x86)\SugarSync\QtGui4.dll
00:00:53.0579 7316 C:\Program Files (x86)\SugarSync\QtGui4.dll - ok
00:00:53.0579 7316 [ D85E50C36D2AF4B9F69873E4A31FB1F8 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\f4afb233f160b8e55aad4660e45b374c\System.Xml.ni.dll
00:00:53.0579 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\f4afb233f160b8e55aad4660e45b374c\System.Xml.ni.dll - ok
00:00:53.0594 7316 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
00:00:53.0594 7316 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
00:00:53.0594 7316 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
00:00:53.0594 7316 C:\Windows\System32\certcli.dll - ok
00:00:53.0594 7316 [ F023A14FE899F5401935CAC119A723CE ] C:\Users\Sleepyjims Blue\AppData\Local\Akamai\netsession_win.exe
00:00:53.0594 7316 C:\Users\Sleepyjims Blue\AppData\Local\Akamai\netsession_win.exe - ok
00:00:53.0594 7316 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
00:00:53.0594 7316 C:\Windows\SysWOW64\pdh.dll - ok
00:00:53.0594 7316 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
00:00:53.0594 7316 C:\Windows\System32\drttransport.dll - ok
00:00:53.0610 7316 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
00:00:53.0610 7316 C:\Windows\System32\drt.dll - ok
00:00:53.0610 7316 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
00:00:53.0610 7316 C:\Windows\SysWOW64\msv1_0.dll - ok
00:00:53.0610 7316 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
00:00:53.0610 7316 C:\Windows\SysWOW64\cryptdll.dll - ok
00:00:53.0610 7316 [ 85640A1B5D30CF486A0DCBC8CE86DF67 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSO.DLL
00:00:53.0610 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSO.DLL - ok
00:00:53.0610 7316 [ 7DA1662372F23011D8D8A32D3CD16088 ] C:\Program Files (x86)\SugarSync\QtNetwork4.dll
00:00:53.0610 7316 C:\Program Files (x86)\SugarSync\QtNetwork4.dll - ok
00:00:53.0625 7316 [ 807EB11BD87CD9026906FB79015414CE ] C:\Windows\System32\perfdisk.dll
00:00:53.0625 7316 C:\Windows\System32\perfdisk.dll - ok
00:00:53.0625 7316 [ 6C12BD722FFC94584348DD34F4059FC5 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
00:00:53.0625 7316 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe - ok
00:00:53.0625 7316 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
00:00:53.0625 7316 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
00:00:53.0625 7316 [ 766AE515B1749F2141E418CC6C08515B ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
00:00:53.0625 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
00:00:53.0641 7316 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
00:00:53.0641 7316 C:\Windows\SysWOW64\mscoree.dll - ok
00:00:53.0641 7316 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
00:00:53.0641 7316 C:\Windows\System32\d3d9.dll - ok
00:00:53.0641 7316 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
00:00:53.0641 7316 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
00:00:53.0641 7316 [ 4D241A6A8F6BA9FA32FF836551FFDCEA ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
00:00:53.0641 7316 C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe - ok
00:00:53.0641 7316 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
00:00:53.0641 7316 C:\Windows\System32\mstask.dll - ok
00:00:53.0657 7316 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
00:00:53.0657 7316 C:\Windows\System32\d3d8thk.dll - ok
00:00:53.0657 7316 [ ABB1B50F36CCBEF119FBEF8FDF14AD61 ] C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL
00:00:53.0657 7316 C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL - ok
00:00:53.0657 7316 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
00:00:53.0657 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
00:00:53.0657 7316 [ FB355B817AE641BBAE08607E58CB5CE2 ] C:\Windows\System32\hhctrl.ocx
00:00:53.0657 7316 C:\Windows\System32\hhctrl.ocx - ok
00:00:53.0657 7316 [ 4BCB1FFD7FA292557F63DDC1770CEC88 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\a43bf29e6d6c959640c70eded05dad1a\System.Configuration.ni.dll
00:00:53.0657 7316 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\a43bf29e6d6c959640c70eded05dad1a\System.Configuration.ni.dll - ok
00:00:53.0672 7316 [ 56A9452A863E3C07061281E3031CA310 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
00:00:53.0672 7316 C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll - ok
00:00:53.0672 7316 [ 3442D13F144954C0CB3116155B2984D3 ] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
00:00:53.0672 7316 C:\Program Files (x86)\USB Camera\VM331_STI.EXE - ok
00:00:53.0672 7316 [ C140F86932B5B61F54A4D836E2D34AB2 ] C:\Windows\SysWOW64\ksproxy.ax
00:00:53.0672 7316 C:\Windows\SysWOW64\ksproxy.ax - ok
00:00:53.0672 7316 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
00:00:53.0672 7316 C:\Windows\SysWOW64\ksuser.dll - ok
00:00:53.0672 7316 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
00:00:53.0672 7316 C:\Windows\SysWOW64\msimg32.dll - ok
00:00:53.0688 7316 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
00:00:53.0688 7316 C:\Windows\SysWOW64\d3d9.dll - ok
00:00:53.0688 7316 [ C16A5F4C13E954447BFE9876B97E8DE5 ] C:\Program Files (x86)\SugarSync\QtWebKit4.dll
00:00:53.0688 7316 C:\Program Files (x86)\SugarSync\QtWebKit4.dll - ok
00:00:53.0688 7316 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
00:00:53.0688 7316 C:\Windows\SysWOW64\FirewallAPI.dll - ok
00:00:53.0688 7316 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
00:00:53.0688 7316 C:\Windows\SysWOW64\d3d8thk.dll - ok
00:00:53.0688 7316 [ E441484F4344AFEDE90461021AB9E82F ] C:\Windows\System32\igdumd64.dll
00:00:53.0688 7316 C:\Windows\System32\igdumd64.dll - ok
00:00:53.0703 7316 [ 02F00D6A1CEFD3C7CFD9E9F062D1702E ] C:\Program Files (x86)\SugarSync\QtXml4.dll
00:00:53.0703 7316 C:\Program Files (x86)\SugarSync\QtXml4.dll - ok
00:00:53.0703 7316 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\SysWOW64\hnetcfg.dll
00:00:53.0703 7316 C:\Windows\SysWOW64\hnetcfg.dll - ok
00:00:53.0703 7316 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
00:00:53.0703 7316 C:\Windows\SysWOW64\atl.dll - ok
00:00:53.0703 7316 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
00:00:53.0703 7316 C:\Windows\SysWOW64\npmproxy.dll - ok
00:00:53.0719 7316 [ 4E1CA3ADD7338B84DA96E5A5CF99673F ] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe
00:00:53.0719 7316 C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe - ok
00:00:53.0719 7316 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
00:00:53.0719 7316 C:\Windows\SysWOW64\dxgi.dll - ok
00:00:53.0719 7316 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\SysWOW64\tapi32.dll
00:00:53.0719 7316 C:\Windows\SysWOW64\tapi32.dll - ok
00:00:53.0719 7316 [ 7D9F94C51B7CF7DE6C5E73FC485CA8D5 ] C:\Windows\SysWOW64\igdumd32.dll
00:00:53.0719 7316 C:\Windows\SysWOW64\igdumd32.dll - ok
00:00:53.0719 7316 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
00:00:53.0719 7316 C:\Windows\SysWOW64\dciman32.dll - ok
00:00:53.0735 7316 [ 7CD9BF0A5F47F9584E59BDF674FD1C5D ] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe
00:00:53.0735 7316 C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe - ok
00:00:53.0735 7316 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
00:00:53.0735 7316 C:\Windows\SysWOW64\sxs.dll - ok
00:00:53.0735 7316 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
00:00:53.0735 7316 C:\Windows\SysWOW64\taskschd.dll - ok
00:00:53.0735 7316 [ 931ED3A3ACF673AAD329A18CDEE4234F ] C:\Program Files (x86)\SugarSync\imageformats\qgif4.dll
00:00:53.0735 7316 C:\Program Files (x86)\SugarSync\imageformats\qgif4.dll - ok
00:00:53.0735 7316 [ A01FB0B0C58319FB350A53EDAA947D36 ] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe
00:00:53.0735 7316 C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe - ok
00:00:53.0750 7316 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
00:00:53.0750 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
00:00:53.0750 7316 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
00:00:53.0750 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
00:00:53.0750 7316 [ 84BBBD0F971500B7DB613EB85E19932D ] C:\Program Files (x86)\SugarSync\imageformats\qico4.dll
00:00:53.0750 7316 C:\Program Files (x86)\SugarSync\imageformats\qico4.dll - ok
00:00:53.0750 7316 [ 37D7FB75F0DC47A7BFC3BBA0FBE893EE ] C:\Program Files (x86)\SugarSync\imageformats\qjpeg4.dll
00:00:53.0750 7316 C:\Program Files (x86)\SugarSync\imageformats\qjpeg4.dll - ok
00:00:53.0766 7316 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
00:00:53.0766 7316 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
00:00:53.0766 7316 [ BBD351CB2E5455F0E96FE4460EC05F52 ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe
00:00:53.0766 7316 C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe - ok
00:00:53.0766 7316 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
00:00:53.0766 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
00:00:53.0766 7316 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
00:00:53.0766 7316 C:\Windows\SysWOW64\perfos.dll - ok
00:00:53.0766 7316 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
00:00:53.0766 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
00:00:53.0781 7316 [ 7A0380A50F4D11D996BDA159437D2968 ] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
00:00:53.0781 7316 C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe - ok
00:00:53.0781 7316 [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
00:00:53.0781 7316 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
00:00:53.0781 7316 [ 32B80EC0484302CC125CF13A893A1512 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
00:00:53.0781 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
00:00:53.0781 7316 [ 3D22A5BF5A63BF1B3020BB99AD902EA2 ] C:\Program Files (x86)\Lenovo\VeriFace\mfc80ud.dll
00:00:53.0781 7316 C:\Program Files (x86)\Lenovo\VeriFace\mfc80ud.dll - ok
00:00:53.0781 7316 [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
00:00:53.0781 7316 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
00:00:53.0797 7316 [ B9548D338A4B045FB416051391BCC6DA ] C:\Program Files (x86)\Lenovo\VeriFace\English\TimeLockRes.dll
00:00:53.0797 7316 C:\Program Files (x86)\Lenovo\VeriFace\English\TimeLockRes.dll - ok
00:00:53.0797 7316 [ 2809F6A69068C6C56860E6B8B8DB4AFB ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe
00:00:53.0797 7316 C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe - ok
00:00:53.0797 7316 [ 3FB4E7E2069F0FD9E15ABC18D605E427 ] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe
00:00:53.0797 7316 C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe - ok
00:00:53.0797 7316 [ F1C19F0AA151B90A7416FA1D50DDB582 ] C:\Windows\System32\WindowsCodecsExt.dll
00:00:53.0797 7316 C:\Windows\System32\WindowsCodecsExt.dll - ok
00:00:53.0813 7316 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
00:00:53.0813 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
00:00:53.0813 7316 [ A2F608F2BF88A122ABD43648B9B22BDE ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll
00:00:53.0813 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll - ok
00:00:53.0813 7316 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
00:00:53.0813 7316 C:\Windows\System32\icm32.dll - ok
00:00:53.0813 7316 [ 40EEDE4EE98C716827148172ECC898D4 ] C:\Windows\Installer\{0225AD21-F3E2-4916-BFF3-65D3F9052582}\iTunesIco.exe
00:00:53.0813 7316 C:\Windows\Installer\{0225AD21-F3E2-4916-BFF3-65D3F9052582}\iTunesIco.exe - ok
00:00:53.0813 7316 [ 365E96584583C9FAE85953BD1A2D9850 ] C:\Windows\SysWOW64\nvd3dum.dll
00:00:53.0813 7316 C:\Windows\SysWOW64\nvd3dum.dll - ok
00:00:53.0828 7316 [ A6B1DE9BB1A4CA285C0C35D0A0A49CCC ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
00:00:53.0828 7316 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
00:00:53.0828 7316 [ E8BDF9B98ED3BAA89669DE28418231C0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\7ffdaee3a54ffd1a5e3b008a5bde5ecf\IAStorUtil.ni.dll
00:00:53.0828 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\7ffdaee3a54ffd1a5e3b008a5bde5ecf\IAStorUtil.ni.dll - ok
00:00:53.0828 7316 [ 71AB5A0A54ACFF2929C76545322DAC5C ] C:\Program Files\Launch Manager\HotkeyApp.exe
00:00:53.0828 7316 C:\Program Files\Launch Manager\HotkeyApp.exe - ok
00:00:53.0828 7316 [ 06A6FE79BD96C7FEF7322AFE5B45FFFF ] C:\Windows\System32\mycomput.dll
00:00:53.0828 7316 C:\Windows\System32\mycomput.dll - ok
00:00:53.0828 7316 [ 7633F554EEAFDE7F144B41C2FCAF5F63 ] C:\Windows\System32\SnippingTool.exe
00:00:53.0828 7316 C:\Windows\System32\SnippingTool.exe - ok
00:00:53.0844 7316 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
00:00:53.0844 7316 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
00:00:53.0844 7316 [ 2EFE164449F1C62CEA167B10850CD9F1 ] C:\Windows\System32\msctfui.dll
00:00:53.0844 7316 C:\Windows\System32\msctfui.dll - ok
00:00:53.0844 7316 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
00:00:53.0844 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
00:00:53.0844 7316 [ E389EA130C4A9A4DBA0F138222261056 ] C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe
00:00:53.0844 7316 C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe - ok
00:00:53.0844 7316 [ 5FF658BEC3C58C6B9F35B011F0BA870B ] C:\Program Files\Microsoft Office 15\root\office15\1033\WWINTL.DLL
00:00:53.0844 7316 C:\Program Files\Microsoft Office 15\root\office15\1033\WWINTL.DLL - ok
00:00:53.0859 7316 [ 101B1C5512AAF14A999C58F72B9AEC75 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\1033\MSOINTL.DLL
00:00:53.0859 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\1033\MSOINTL.DLL - ok
00:00:53.0859 7316 [ AE96BFE60A23845475156F6C189C9CF3 ] C:\Program Files\Microsoft Office 15\root\vfs\Windows\Installer\{90150000-000F-0000-0000-0000000FF1CE}\xlicons.exe
00:00:53.0859 7316 C:\Program Files\Microsoft Office 15\root\vfs\Windows\Installer\{90150000-000F-0000-0000-0000000FF1CE}\xlicons.exe - ok
00:00:53.0859 7316 [ 00000000000000000000000000000000 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSORES.DLL
00:00:53.0859 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSORES.DLL - ok
00:00:53.0859 7316 [ A041821F04B20FAF4CFA0F1672C285C5 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
00:00:53.0859 7316 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
00:00:53.0875 7316 [ C66E6D61AFC422D43D75A6241FFA009D ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
00:00:53.0875 7316 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
00:00:53.0875 7316 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
00:00:53.0875 7316 C:\Windows\SysWOW64\cryptui.dll - ok
00:00:53.0875 7316 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
00:00:53.0875 7316 C:\Windows\AppPatch\AcGenral.dll - ok
00:00:53.0875 7316 [ 8B1590C627138166C015A5680ABF6BB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
00:00:53.0875 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll - ok
00:00:53.0891 7316 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
00:00:53.0891 7316 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
00:00:53.0891 7316 [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
00:00:53.0891 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
00:00:53.0891 7316 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
00:00:53.0891 7316 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
00:00:53.0891 7316 [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
00:00:53.0891 7316 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
00:00:53.0891 7316 [ 67BD916F01424DEB8AB8CD9E0096F277 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
00:00:53.0891 7316 C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe - ok
00:00:53.0906 7316 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
00:00:53.0906 7316 C:\Windows\SysWOW64\msacm32.dll - ok
00:00:53.0906 7316 [ 5C5E3AFD499E5146FEF1DA5EF8A23205 ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
00:00:53.0906 7316 C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
00:00:53.0906 7316 [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
00:00:53.0906 7316 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
00:00:53.0906 7316 [ 28CE8D9FD97D0EA5B92228F1FD83FAC6 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSPTLS.DLL
00:00:53.0906 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\MSPTLS.DLL - ok
00:00:53.0906 7316 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
00:00:53.0906 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
00:00:53.0922 7316 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
00:00:53.0922 7316 C:\Windows\SysWOW64\rasapi32.dll - ok
00:00:53.0922 7316 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
00:00:53.0922 7316 C:\Windows\SysWOW64\rasman.dll - ok
00:00:53.0922 7316 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
00:00:53.0922 7316 C:\Windows\SysWOW64\rtutils.dll - ok
00:00:53.0922 7316 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
00:00:53.0922 7316 C:\Windows\SysWOW64\netprofm.dll - ok
00:00:53.0922 7316 [ 3C1936A12C62254F914A01BBC6A8DC69 ] C:\Windows\SysWOW64\d3d10_1.dll
00:00:53.0922 7316 C:\Windows\SysWOW64\d3d10_1.dll - ok
00:00:53.0937 7316 [ D4212AB475A3B25EC4DF574536C3EDC5 ] C:\Windows\SysWOW64\d3d10_1core.dll
00:00:53.0937 7316 C:\Windows\SysWOW64\d3d10_1core.dll - ok
00:00:53.0937 7316 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
00:00:53.0937 7316 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
00:00:53.0937 7316 [ B89B1EF68D59EF95EA58205517CDA4A8 ] C:\Program Files\AVAST Software\Avast\aswAra.dll
00:00:53.0937 7316 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
00:00:53.0937 7316 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
00:00:53.0937 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
00:00:53.0953 7316 [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\Windows\SysWOW64\d3d11.dll
00:00:53.0953 7316 C:\Windows\SysWOW64\d3d11.dll - ok
00:00:53.0953 7316 [ 5C4A73B4EA774EAAF1065144E480E8DD ] C:\Program Files\AVAST Software\Avast\aswData.dll
00:00:53.0953 7316 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
00:00:53.0953 7316 [ 81B935CDB9E34AACD03AD6993C39C776 ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
00:00:53.0953 7316 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
00:00:53.0953 7316 [ 74C470D8FA1FB9C025ECBF7964FD1A59 ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
00:00:53.0953 7316 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
00:00:53.0953 7316 [ E0874F75BFA5EFEA83428694B62B8959 ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
00:00:53.0953 7316 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
00:00:53.0969 7316 [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files (x86)\QuickTime\QTTask.exe
00:00:53.0969 7316 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
00:00:53.0969 7316 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
00:00:53.0969 7316 C:\Windows\SysWOW64\xmllite.dll - ok
00:00:53.0969 7316 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\SysWOW64\WinSATAPI.dll
00:00:53.0969 7316 C:\Windows\SysWOW64\WinSATAPI.dll - ok
00:00:53.0969 7316 [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
00:00:53.0969 7316 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
00:00:53.0969 7316 [ 5082BC510FAD849630D09DA626BB7CDA ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
00:00:53.0969 7316 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
00:00:53.0984 7316 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
00:00:53.0984 7316 C:\Windows\SysWOW64\msxml6.dll - ok
00:00:53.0984 7316 [ B3170CCC779B682C3341873EA60CF084 ] C:\Windows\SysWOW64\d3d10warp.dll
00:00:53.0984 7316 C:\Windows\SysWOW64\d3d10warp.dll - ok
00:00:53.0984 7316 [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
00:00:53.0984 7316 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
00:00:53.0984 7316 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
00:00:53.0984 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
00:00:53.0984 7316 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
00:00:53.0984 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
00:00:54.0000 7316 [ BE643CD44DD06DA283634A3E51DC22BC ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
00:00:54.0000 7316 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
00:00:54.0000 7316 [ 3793D92AA22A6A0A4323F8D6E618AE83 ] C:\Program Files\Microsoft Office 15\root\vfs\Windows\Installer\{90150000-000F-0000-0000-0000000FF1CE}\wordicon.exe
00:00:54.0000 7316 C:\Program Files\Microsoft Office 15\root\vfs\Windows\Installer\{90150000-000F-0000-0000-0000000FF1CE}\wordicon.exe - ok
00:00:54.0000 7316 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
00:00:54.0000 7316 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
00:00:54.0000 7316 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
00:00:54.0000 7316 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
00:00:54.0015 7316 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
00:00:54.0015 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
00:00:54.0015 7316 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
00:00:54.0015 7316 C:\Windows\SysWOW64\SPInf.dll - ok
00:00:54.0015 7316 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
00:00:54.0015 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
00:00:54.0015 7316 [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
00:00:54.0015 7316 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
00:00:54.0015 7316 [ 7267D99F3AB9FBF8A9ADCAC9D91089A3 ] C:\Windows\SysWOW64\igd10umd32.dll
00:00:54.0015 7316 C:\Windows\SysWOW64\igd10umd32.dll - ok
00:00:54.0031 7316 [ 4277F5164DE9B7C665BB928B9145BEE0 ] C:\Windows\SysWOW64\DWrite.dll
00:00:54.0031 7316 C:\Windows\SysWOW64\DWrite.dll - ok
00:00:54.0031 7316 [ BD4C1D83353BFB80F6BA019F6D0BA95B ] C:\Windows\ehome\ehshell.exe
00:00:54.0031 7316 C:\Windows\ehome\ehshell.exe - ok
00:00:54.0031 7316 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
00:00:54.0031 7316 C:\Windows\System32\calc.exe - ok
00:00:54.0031 7316 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
00:00:54.0031 7316 C:\Windows\SysWOW64\schannel.dll - ok
00:00:54.0031 7316 [ B87D9F9BA859AAA7B97C23001AB6C78F ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\RICHED20.DLL
00:00:54.0031 7316 C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\RICHED20.DLL - ok
00:00:54.0047 7316 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] C:\Program Files\iPod\bin\iPodService.exe
00:00:54.0047 7316 C:\Program Files\iPod\bin\iPodService.exe - ok
00:00:54.0047 7316 [ B4E69051E313551F894C74B12042485D ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
00:00:54.0047 7316 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
00:00:54.0047 7316 [ 28DDCA0021AC200864248E02EF9727E2 ] C:\Program Files (x86)\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL
00:00:54.0047 7316 C:\Program Files (x86)\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL - ok
00:00:54.0062 7316 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
00:00:54.0062 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
00:00:54.0062 7316 [ 1105A14047A0D99C2770601EB61FBF5C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
00:00:54.0062 7316 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
00:00:54.0062 7316 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
00:00:54.0062 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
00:00:54.0062 7316 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
00:00:54.0062 7316 C:\Windows\SysWOW64\shfolder.dll - ok
00:00:54.0078 7316 [ 523D0A842145F29855AAB2EE814B9754 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
00:00:54.0078 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
00:00:54.0078 7316 [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
00:00:54.0078 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
00:00:54.0078 7316 [ FBD859B1A8F3CC970AB862F185586C54 ] C:\Program Files\Microsoft Office 15\root\office15\GKWord.dll
00:00:54.0078 7316 C:\Program Files\Microsoft Office 15\root\office15\GKWord.dll - ok
00:00:54.0078 7316 [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
00:00:54.0078 7316 C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
00:00:54.0078 7316 [ FF8E7194A014B694CF065760042E5946 ] C:\Program Files\AVAST Software\Avast\defs\13030800\uiext.dll
00:00:54.0078 7316 C:\Program Files\AVAST Software\Avast\defs\13030800\uiext.dll - ok
00:00:54.0093 7316 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
00:00:54.0093 7316 C:\Windows\SysWOW64\linkinfo.dll - ok
00:00:54.0093 7316 [ FE9C0029E1AF26350D9985D00520E5C8 ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:00:54.0093 7316 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE - ok
00:00:54.0093 7316 [ F5B6E7CB061E1CB75359DAA97B436D0A ] C:\Program Files\Microsoft Office 15\root\office15\MSOHEV.DLL
00:00:54.0093 7316 C:\Program Files\Microsoft Office 15\root\office15\MSOHEV.DLL - ok
00:00:54.0093 7316 [ 10ECC3712B8028EDDA60C8D5D449F52D ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPOBJS.DLL
00:00:54.0093 7316 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPOBJS.DLL - ok
00:00:54.0109 7316 [ BB229A3385FE272E6C1C67034E074916 ] C:\Program Files\Microsoft Office 15\root\office15\msproof7.dll
00:00:54.0109 7316 C:\Program Files\Microsoft Office 15\root\office15\msproof7.dll - ok
00:00:54.0109 7316 [ 89288BE030FAD743186E97DF96025547 ] C:\Program Files\Microsoft Office 15\root\office15\PROOF\msspell7.dll
00:00:54.0109 7316 C:\Program Files\Microsoft Office 15\root\office15\PROOF\msspell7.dll - ok
00:00:54.0109 7316 [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
00:00:54.0109 7316 C:\Windows\System32\drivers\asyncmac.sys - ok
00:00:54.0109 7316 [ E1FCB616F05DCAD770DBD9489F540BD0 ] C:\Program Files\Microsoft Office 15\root\office15\PROOF\MSSP7EN.LEX
00:00:54.0109 7316 C:\Program Files\Microsoft Office 15\root\office15\PROOF\MSSP7EN.LEX - ok
00:00:54.0109 7316 [ EC2C678094CB2B5A0728E1BA0A31716B ] C:\Program Files\Microsoft Office 15\root\office15\mscss7en.dll
00:00:54.0109 7316 C:\Program Files\Microsoft Office 15\root\office15\mscss7en.dll - ok
00:00:54.0125 7316 [ C133E8AE9A9E7A1EBB8AC1771DB9C329 ] C:\Program Files\Microsoft Office 15\root\office15\CSS7DATA0009.DLL
00:00:54.0125 7316 C:\Program Files\Microsoft Office 15\root\office15\CSS7DATA0009.DLL - ok
00:00:54.0125 7316 [ 8A7266F2E52EC0BBEDB52BF6DC995381 ] C:\Program Files\Microsoft Office 15\root\office15\NL7MODELS0009.dll
00:00:54.0125 7316 C:\Program Files\Microsoft Office 15\root\office15\NL7MODELS0009.dll - ok
00:00:54.0125 7316 [ E57235A07BB1634E5D1972D4CE9F0DC9 ] C:\Program Files\Microsoft Office 15\root\office15\mscss7cm_en.dub
00:00:54.0125 7316 C:\Program Files\Microsoft Office 15\root\office15\mscss7cm_en.dub - ok
00:00:54.0125 7316 [ E5089069B8E15C259E898BA404D217CF ] C:\Program Files\Microsoft Office 15\root\office15\mscss7wre_en.dub
00:00:54.0125 7316 C:\Program Files\Microsoft Office 15\root\office15\mscss7wre_en.dub - ok
00:00:54.0140 7316 [ 706C83135A75155D03B2045DDFEC9406 ] C:\Program Files\Microsoft Office 15\root\office15\PROOF\1033\MSGR3EN.DLL
00:00:54.0140 7316 C:\Program Files\Microsoft Office 15\root\office15\PROOF\1033\MSGR3EN.DLL - ok
00:00:54.0140 7316 [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\SysWOW64\webservices.dll
00:00:54.0140 7316 C:\Windows\SysWOW64\webservices.dll - ok
00:00:54.0140 7316 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:00:54.0140 7316 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
00:00:54.0140 7316 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
00:00:54.0140 7316 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
00:00:54.0140 7316 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:00:54.0140 7316 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
00:00:54.0156 7316 [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
00:00:54.0156 7316 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll - ok
00:00:54.0156 7316 [ 7D4B9A48430ED57ACA6373B71D5904CA ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:00:54.0156 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
00:00:54.0156 7316 [ 741872AD9F03B7F0EC8BA73B22993884 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
00:00:54.0156 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
00:00:54.0156 7316 [ AC2343BBBBAD690267D47C3F5EB5F3C7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\465376a527351aa35dbdcc95878641fe\IAStorDataMgrSvc.ni.exe
00:00:54.0156 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\465376a527351aa35dbdcc95878641fe\IAStorDataMgrSvc.ni.exe - ok
00:00:54.0156 7316 [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
00:00:54.0156 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
00:00:54.0171 7316 [ 502D419765D2AACC963680E077E19A95 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
00:00:54.0171 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
00:00:54.0171 7316 [ 3B918C35DE2687AA32BF57525C96F689 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\91f7408be3591cfd720f8a9549600285\IAStorDataMgr.ni.dll
00:00:54.0171 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\91f7408be3591cfd720f8a9549600285\IAStorDataMgr.ni.dll - ok
00:00:54.0171 7316 [ 22EBDE75F77676E980E0578C62AD946D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\8b857add6394c98128874eb2579534e5\IsdiInterop.ni.dll
00:00:54.0171 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\8b857add6394c98128874eb2579534e5\IsdiInterop.ni.dll - ok
00:00:54.0171 7316 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
00:00:54.0171 7316 C:\Windows\System32\iphlpsvc.dll - ok
00:00:54.0187 7316 [ 300A0BE0401E783787DD38D4ED408081 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
00:00:54.0187 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
00:00:54.0187 7316 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
00:00:54.0187 7316 C:\Windows\System32\wdscore.dll - ok
00:00:54.0187 7316 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
00:00:54.0187 7316 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
00:00:54.0187 7316 [ BF22ACF4CF3734D61357E67F0521BC03 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:00:54.0187 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
00:00:54.0203 7316 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
00:00:54.0203 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
00:00:54.0203 7316 [ 301F184F7A332FEB679D51C2FF746D98 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\389a1832a3da11e1b409cd6ae60cb9fa\IAStorCommon.ni.dll
00:00:54.0203 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\389a1832a3da11e1b409cd6ae60cb9fa\IAStorCommon.ni.dll - ok
00:00:54.0203 7316 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
00:00:54.0203 7316 C:\Windows\System32\ndiscapCfg.dll - ok
00:00:54.0203 7316 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
00:00:54.0203 7316 C:\Windows\System32\mprmsg.dll - ok
00:00:54.0203 7316 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
00:00:54.0203 7316 C:\Windows\System32\rascfg.dll - ok
00:00:54.0218 7316 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
00:00:54.0218 7316 C:\Windows\System32\tcpipcfg.dll - ok
00:00:54.0218 7316 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
00:00:54.0218 7316 C:\Windows\System32\sppsvc.exe - ok
00:00:54.0218 7316 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
00:00:54.0218 7316 C:\Windows\System32\nci.dll - ok
00:00:54.0218 7316 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
00:00:54.0218 7316 C:\Windows\System32\wlaninst.dll - ok
00:00:54.0218 7316 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
00:00:54.0218 7316 C:\Windows\System32\wwaninst.dll - ok
00:00:54.0234 7316 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
00:00:54.0234 7316 C:\Windows\System32\drivers\spsys.sys - ok
00:00:54.0234 7316 [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
00:00:54.0234 7316 C:\Windows\System32\vaultsvc.dll - ok
00:00:54.0234 7316 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
00:00:54.0234 7316 C:\Windows\System32\sppwinob.dll - ok
00:00:54.0234 7316 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:00:54.0234 7316 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
00:00:54.0249 7316 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
00:00:54.0249 7316 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
00:00:54.0249 7316 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
00:00:54.0249 7316 C:\Windows\System32\sppobjs.dll - ok
00:00:54.0249 7316 [ 20A3E587A21A285CBBE060BC3ABEDFA1 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
00:00:54.0249 7316 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
00:00:54.0249 7316 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
00:00:54.0249 7316 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
00:00:54.0265 7316 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
00:00:54.0265 7316 C:\Windows\System32\spfileq.dll - ok
00:00:54.0265 7316 [ DD80D3894F5E1D36864D9727214605CD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
00:00:54.0265 7316 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll - ok
00:00:54.0265 7316 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
00:00:54.0265 7316 C:\Windows\System32\wscsvc.dll - ok
00:00:54.0265 7316 [ 0B4B3598A1750E115545D67AFA02B90C ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
00:00:54.0265 7316 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
00:00:54.0265 7316 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
00:00:54.0265 7316 C:\Windows\SysWOW64\wscproxystub.dll - ok
00:00:54.0281 7316 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
00:00:54.0281 7316 C:\Windows\System32\wuaueng.dll - ok
00:00:54.0281 7316 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
00:00:54.0281 7316 C:\Windows\System32\mspatcha.dll - ok
00:00:54.0281 7316 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
00:00:54.0281 7316 C:\Windows\System32\wuapi.dll - ok
00:00:54.0281 7316 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
00:00:54.0281 7316 C:\Windows\System32\wups.dll - ok
00:00:54.0281 7316 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
00:00:54.0281 7316 C:\Windows\System32\wups2.dll - ok
00:00:54.0296 7316 [ B097EBA0E3FEB020BB65FE43AF5ECCFF ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:00:54.0296 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
00:00:54.0296 7316 [ 3AE94B2A3EA5A83D791B858949CD0B85 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
00:00:54.0296 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll - ok
00:00:54.0296 7316 [ 13E89F1E8044525B9D972AE9CDED0DD8 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll
00:00:54.0296 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll - ok
00:00:54.0296 7316 [ CFD7F7117DBCCF4A7BFA5DEDEB8D296A ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll
00:00:54.0296 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll - ok
00:00:54.0296 7316 [ 2D7F0154E18C8BC537EFFCFD42326880 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll
00:00:54.0296 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll - ok
00:00:54.0312 7316 [ 02E44DC7D1B6E21A2181DB4EF4E61141 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll
00:00:54.0312 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll - ok
00:00:54.0312 7316 [ D6525D171A111E5CDEC040F7F017B95D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll
00:00:54.0312 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll - ok
00:00:54.0312 7316 [ C2EF5F4328B18C8E69DE06973B5BB975 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll
00:00:54.0312 7316 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll - ok
00:00:54.0312 7316 [ 2D34839A17EF7BDA968332AF195FCC9D ] C:\Program Files (x86)\Common Files\System\ado\msadox.dll
00:00:54.0312 7316 C:\Program Files (x86)\Common Files\System\ado\msadox.dll - ok
00:00:54.0312 7316 ============================================================
00:00:54.0312 7316 Scan finished
00:00:54.0312 7316 ============================================================
00:00:54.0327 7308 Detected object count: 0
00:00:54.0327 7308 Actual detected object count: 0

Next one to follow.....
  • 0

#9
gringo_pr
Posted 08 March 2013 - 02:18 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello sleepyjim

I would like you to run this custom script for me now and when it is complete please give me the report and a status update for the computer.

Run OTL Script

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Posted Image text box.
    :OTL

:Files
ipconfig /flushdns /c

:Commands
[PURITY]
[emptyjava]
[EMPTYFLASH]
[reboot]
  • Then click the Run Fix button at the top.
  • Click Posted Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

    Note** if the report does not popup after the computer reboots you can find it here in this folder - C:\_OTL\MovedFiles

    It will be named - mmddyyyy_hhmmss.log

    Where mmddyyyy_hhmmss - are numbers representing the date and time the fix was run.

Let me know How things are doing

Gringo
  • 0

#10
sleepyjim
Posted 08 March 2013 - 02:21 PM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
MBAR Log: Still got virus....

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.494000 GHz
Memory total: 4134965248, free: 1691406336

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.494000 GHz
Memory total: 4134965248, free: 1715023872

------------ Kernel report ------------
03/09/2013 00:04:43
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\35534362.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\system32\DRIVERS\iusb3hcs.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\compbatt.sys
\SystemRoot\system32\drivers\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\DRIVERS\iaStor.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\system32\DRIVERS\nvpciflt.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\DRIVERS\LhdX64.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\fbfmon.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\aswVmm.sys
\SystemRoot\System32\Drivers\aswRvrt.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\System32\Drivers\aswSnx.SYS
\SystemRoot\System32\DRIVERS\cmdguard.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\cmdhlp.sys
\SystemRoot\System32\Drivers\aswTdi.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\Drivers\aswrdr2.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\inspect.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
\??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\drivers\BPntDrv.sys
\SystemRoot\system32\drivers\BOOTVID.dll
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\System32\Drivers\aswSP.SYS
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\system32\DRIVERS\iusb3xhc.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\HECIx64.sys
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\athrx.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\L1C62x64.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\AcpiVpc.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\clwvd.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\btath_bus.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\iusb3hub.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\DRIVERS\IntcDAud.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\dc3d.sys
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\btfilter.sys
\SystemRoot\System32\Drivers\BTHUSB.sys
\SystemRoot\System32\Drivers\bthport.sys
\SystemRoot\System32\Drivers\vm331avs.sys
\SystemRoot\System32\Drivers\STREAM.SYS
\SystemRoot\system32\drivers\AmUStor.SYS
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\DRIVERS\rfcomm.sys
\SystemRoot\system32\drivers\BthEnum.sys
\SystemRoot\system32\DRIVERS\bthpan.sys
\SystemRoot\system32\DRIVERS\btath_rcp.sys
\SystemRoot\system32\drivers\btath_avdt.sys
\SystemRoot\system32\drivers\btath_a2dp.sys
\SystemRoot\system32\DRIVERS\btath_hcrp.sys
\SystemRoot\system32\DRIVERS\btath_flt.sys
\SystemRoot\system32\DRIVERS\btath_lwflt.sys
\SystemRoot\system32\drivers\luafv.sys
\??\C:\Windows\system32\drivers\aswMonFlt.sys
\SystemRoot\System32\Drivers\aswFsBlk.SYS
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\SystemRoot\system32\drivers\spsys.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\lpk.dll
\Windows\System32\Wldap32.dll
\Windows\System32\usp10.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\normaliz.dll
\Windows\System32\gdi32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\msvcrt.dll
\Windows\System32\msctf.dll
\Windows\System32\iertutil.dll
\Windows\System32\clbcatq.dll
\Windows\System32\psapi.dll
\Windows\System32\ws2_32.dll
\Windows\System32\setupapi.dll
\Windows\System32\oleaut32.dll
\Windows\System32\wininet.dll
\Windows\System32\nsi.dll
\Windows\System32\shell32.dll
\Windows\System32\shlwapi.dll
\Windows\System32\kernel32.dll
\Windows\System32\comdlg32.dll
\Windows\System32\imm32.dll
\Windows\System32\user32.dll
\Windows\System32\difxapi.dll
\Windows\System32\urlmon.dll
\Windows\System32\advapi32.dll
\Windows\System32\ole32.dll
\Windows\System32\sechost.dll
\Windows\System32\crypt32.dll
\Windows\System32\wintrust.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\devobj.dll
\Windows\System32\comctl32.dll
\Windows\System32\msasn1.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa8006c84060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IAAStorageDevice-1\
Lower Device Object: 0xfffffa80047f2050
Lower Device Driver Name: \Driver\iaStor\
Driver name found: iaStor
Initialization returned 0x0
Load Function returned 0x0
Downloaded database version: v2013.03.08.15
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 2
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa8006c84060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8006c84b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8006c85040, DeviceName: Unknown, DriverName: \Driver\LHDmgr\
DevicePointer: 0xfffffa8006c84060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa80047f2050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\
------------ End ----------
Alternate DeviceName: Unknown, DriverName: \Driver\LHDmgr\
Upper DeviceData: 0xfffff8a00c150500, 0xfffffa8006c84060, 0xfffffa800ca94790
Lower DeviceData: 0xfffff8a003e3ca60, 0xfffffa80047f2050, 0xfffffa80046a2930
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 460B3610

Partition information:

Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 409600
Partition file system is NTFS
Partition is bootable

Partition 1 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 411648 Numsec = 881987584

Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 882399232 Numsec = 53411840

Partition 3 type is Other (0x12)
Partition is NOT ACTIVE.
Partition starts at LBA: 935811072 Numsec = 40962096

Disk Size: 500107862016 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
Done!
Performing system, memory and registry scan...
Done!
Scan finished
=======================================
  • 0

Advertisements

#11
sleepyjim
Posted 08 March 2013 - 02:30 PM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
Still got virus.....Also got ghosted desktop.ini (2each) on my desktop now.......Delete these?

========== OTL ==========
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Sleepyjims Blue\Desktop\g2g\cmd.bat deleted successfully.
C:\Users\Sleepyjims Blue\Desktop\g2g\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Public

User: Sleepyjims Blue
->Java cache emptied: 5279 bytes

User: UpdatusUser

Total Java Files Cleaned = 0.00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 57616 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: Sleepyjims Blue
->Flash cache emptied: 67362 bytes

User: UpdatusUser

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 03092013_002417

Edited by sleepyjim, 08 March 2013 - 02:31 PM.

  • 0

#12
gringo_pr
Posted 08 March 2013 - 02:46 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Ok in which browser are we getting them




gringo
  • 0

#13
sleepyjim
Posted 08 March 2013 - 09:11 PM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
Ok it does seem only in firefox.......

I got 2 "desktop.ini" ghosted icons and 1 "thumbs.db" should I delete these?

Jim
  • 0

#14
sleepyjim
Posted 08 March 2013 - 09:25 PM

sleepyjim

    Member

  • Topic Starter
  • Member
  • PipPip
  • 92 posts
I

Edited by sleepyjim, 08 March 2013 - 09:28 PM.

  • 0

#15
gringo_pr
Posted 09 March 2013 - 05:37 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello sleepyjim

I want you to try this for firefox and give me a quick update to how things are.

I want you to reset firefox back to defaults, to do this I need you to do this

  • At the top of the Firefox window, click the "Firefox" button,
  • go over to the "Help" sub-menu
    • (on Windows XP, click the Help menu at the top of the Firefox window) and select "Troubleshooting Information".
  • Click the "Reset Firefox" button in the upper-right corner of the Troubleshooting Information page.
  • click "Reset Firefox" in the confirmation window that opens.
  • Firefox will close and be reset. When it's done. Click "Finish" and Firefox will open.

restart the computer and check firefox for me now

Gringo
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP