Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

winrscmde high CPU usage alert [Solved]


  • This topic is locked This topic is locked

#16
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
still see the p2p service in task manager. dont see the limepro.exe though. computer seems slow still. dont know if that helps. thanks so much for help so far
  • 0

Advertisements


#17
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
ok thanks will start on this now
  • 0

#18
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
we crossed posted so please make sure to see post 15
  • 0

#19
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
here is the log to tdsskiller. I had after the scan and before the reboot norton side note that found or blocked not sure what one a trogan and a backdoor something. This was in red so guessing that is bad. other than using this forum not used computer much so cannot say anything about proformance at this time. going to run the malwarebytes anti rootkit now. There is 3 different logs. only ran program once. typeing is really slow now. have to wait for each word

15:23:14.0292 8468 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:23:16.0357 8468 ============================================================
15:23:16.0357 8468 Current date / time: 2013/03/26 15:23:16.0357
15:23:16.0357 8468 SystemInfo:
15:23:16.0357 8468
15:23:16.0357 8468 OS Version: 6.1.7601 ServicePack: 1.0
15:23:16.0357 8468 Product type: Workstation
15:23:16.0357 8468 ComputerName: EVERYONE
15:23:16.0358 8468 UserName: James
15:23:16.0358 8468 Windows directory: C:\Windows
15:23:16.0358 8468 System windows directory: C:\Windows
15:23:16.0358 8468 Running under WOW64
15:23:16.0358 8468 Processor architecture: Intel x64
15:23:16.0358 8468 Number of processors: 2
15:23:16.0358 8468 Page size: 0x1000
15:23:16.0358 8468 Boot type: Normal boot
15:23:16.0358 8468 ============================================================
15:23:22.0319 8468 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:23:22.0439 8468 ============================================================
15:23:22.0439 8468 \Device\Harddisk0\DR0:
15:23:22.0439 8468 MBR partitions:
15:23:22.0439 8468 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C01A24, BlocksNum 0x32FCD
15:23:22.0439 8468 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C349F1, BlocksNum 0x237F98BF
15:23:22.0439 8468 ============================================================
15:23:22.0479 8468 C: <-> \Device\Harddisk0\DR0\Partition2
15:23:22.0559 8468 ============================================================
15:23:22.0559 8468 Initialize success
15:23:22.0559 8468 ============================================================
15:23:43.0216 4508 Deinitialize success


15:35:33.0831 6592 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:35:35.0217 6592 ============================================================
15:35:35.0217 6592 Current date / time: 2013/03/26 15:35:35.0217
15:35:35.0217 6592 SystemInfo:
15:35:35.0217 6592
15:35:35.0217 6592 OS Version: 6.1.7601 ServicePack: 1.0
15:35:35.0217 6592 Product type: Workstation
15:35:35.0217 6592 ComputerName: EVERYONE
15:35:35.0217 6592 UserName: James
15:35:35.0217 6592 Windows directory: C:\Windows
15:35:35.0217 6592 System windows directory: C:\Windows
15:35:35.0217 6592 Running under WOW64
15:35:35.0217 6592 Processor architecture: Intel x64
15:35:35.0217 6592 Number of processors: 2
15:35:35.0217 6592 Page size: 0x1000
15:35:35.0217 6592 Boot type: Normal boot
15:35:35.0217 6592 ============================================================
15:35:37.0942 6592 BG loaded
15:35:38.0714 6592 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:35:38.0724 6592 ============================================================
15:35:38.0724 6592 \Device\Harddisk0\DR0:
15:35:38.0724 6592 MBR partitions:
15:35:38.0724 6592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C01A24, BlocksNum 0x32FCD
15:35:38.0724 6592 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C349F1, BlocksNum 0x237F98BF
15:35:38.0724 6592 ============================================================
15:35:38.0784 6592 C: <-> \Device\Harddisk0\DR0\Partition2
15:35:38.0784 6592 ============================================================
15:35:38.0784 6592 Initialize success
15:35:38.0784 6592 ============================================================
15:40:50.0109 6484 ============================================================
15:40:50.0109 6484 Scan started
15:40:50.0109 6484 Mode: Manual; SigCheck; TDLFS;
15:40:50.0109 6484 ============================================================
15:40:53.0220 6484 ================ Scan system memory ========================
15:40:53.0220 6484 System memory - ok
15:40:53.0224 6484 ================ Scan services =============================
15:40:53.0715 6484 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:40:54.0001 6484 1394ohci - ok
15:40:54.0149 6484 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:40:54.0179 6484 ACPI - ok
15:40:54.0299 6484 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:40:54.0479 6484 AcpiPmi - ok
15:40:55.0081 6484 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:40:55.0138 6484 AdobeFlashPlayerUpdateSvc - ok
15:40:55.0363 6484 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:40:55.0473 6484 adp94xx - ok
15:40:55.0833 6484 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:40:55.0947 6484 adpahci - ok
15:40:56.0035 6484 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:40:56.0085 6484 adpu320 - ok
15:40:56.0197 6484 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:40:56.0833 6484 AeLookupSvc - ok
15:40:56.0959 6484 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:40:57.0049 6484 AFD - ok
15:40:57.0111 6484 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:40:57.0171 6484 agp440 - ok
15:40:57.0263 6484 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:40:57.0503 6484 ALG - ok
15:40:57.0553 6484 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:40:57.0583 6484 aliide - ok
15:40:57.0693 6484 [ DCEEE24E57E8176115207312F827C130 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:40:57.0903 6484 AMD External Events Utility - ok
15:40:57.0973 6484 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:40:58.0013 6484 amdide - ok
15:40:58.0145 6484 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:40:58.0285 6484 AmdK8 - ok
15:40:59.0330 6484 [ F6640D83AF0FD74C50E23E68548EA9A0 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:40:59.0601 6484 amdkmdag - ok
15:40:59.0703 6484 [ 20B63276A1920B41E1C56720B395049B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:40:59.0773 6484 amdkmdap - ok
15:40:59.0903 6484 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:41:00.0013 6484 AmdPPM - ok
15:41:00.0105 6484 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:41:00.0145 6484 amdsata - ok
15:41:00.0295 6484 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:41:00.0315 6484 amdsbs - ok
15:41:00.0405 6484 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:41:00.0455 6484 amdxata - ok
15:41:00.0547 6484 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:41:00.0789 6484 AppID - ok
15:41:00.0911 6484 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:41:01.0087 6484 AppIDSvc - ok
15:41:01.0153 6484 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:41:01.0272 6484 Appinfo - ok
15:41:01.0395 6484 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:41:01.0425 6484 Apple Mobile Device - ok
15:41:01.0547 6484 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:41:01.0574 6484 arc - ok
15:41:01.0608 6484 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:41:01.0639 6484 arcsas - ok
15:41:01.0701 6484 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:41:01.0851 6484 AsyncMac - ok
15:41:01.0893 6484 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:41:01.0933 6484 atapi - ok
15:41:02.0055 6484 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\Windows\system32\DRIVERS\athrx.sys
15:41:02.0298 6484 athr - ok
15:41:02.0379 6484 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
15:41:02.0409 6484 AtiPcie - ok
15:41:02.0529 6484 [ 1FD0FA6618B31FAD14385740D0F6C333 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
15:41:02.0569 6484 atksgt - ok
15:41:02.0639 6484 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:41:02.0784 6484 AudioEndpointBuilder - ok
15:41:02.0802 6484 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:41:02.0925 6484 AudioSrv - ok
15:41:02.0973 6484 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:41:03.0103 6484 AxInstSV - ok
15:41:03.0175 6484 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:41:03.0265 6484 b06bdrv - ok
15:41:03.0345 6484 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:41:03.0415 6484 b57nd60a - ok
15:41:03.0535 6484 BCMH43XX - ok
15:41:03.0585 6484 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:41:03.0655 6484 BDESVC - ok
15:41:03.0689 6484 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:41:03.0809 6484 Beep - ok
15:41:04.0221 6484 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:41:04.0372 6484 BFE - ok
15:41:05.0169 6484 [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
15:41:05.0244 6484 BHDrvx64 - ok
15:41:05.0341 6484 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
15:41:05.0504 6484 BITS - ok
15:41:05.0553 6484 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:41:05.0623 6484 blbdrive - ok
15:41:05.0903 6484 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:41:05.0923 6484 Bonjour Service - ok
15:41:05.0995 6484 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:41:06.0085 6484 bowser - ok
15:41:06.0155 6484 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:41:06.0475 6484 BrFiltLo - ok
15:41:06.0535 6484 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:41:06.0595 6484 BrFiltUp - ok
15:41:06.0655 6484 [ 5C2F352A4E961D72518261257AAE204B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
15:41:06.0804 6484 Bridge - ok
15:41:06.0907 6484 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
15:41:07.0000 6484 BridgeMP - ok
15:41:07.0059 6484 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:41:07.0179 6484 Browser - ok
15:41:07.0349 6484 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:41:07.0629 6484 Brserid - ok
15:41:07.0654 6484 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:41:07.0701 6484 BrSerWdm - ok
15:41:07.0741 6484 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:41:07.0841 6484 BrUsbMdm - ok
15:41:07.0861 6484 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:41:07.0921 6484 BrUsbSer - ok
15:41:07.0941 6484 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:41:07.0993 6484 BTHMODEM - ok
15:41:08.0065 6484 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:41:08.0195 6484 bthserv - ok
15:41:08.0373 6484 catchme - ok
15:41:08.0593 6484 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\1403000.024\ccSetx64.sys
15:41:08.0613 6484 ccSet_N360 - ok
15:41:08.0755 6484 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:41:08.0893 6484 cdfs - ok
15:41:08.0972 6484 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:41:09.0002 6484 cdrom - ok
15:41:09.0092 6484 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:41:09.0224 6484 CertPropSvc - ok
15:41:09.0324 6484 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:41:09.0384 6484 circlass - ok
15:41:09.0436 6484 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:41:09.0476 6484 CLFS - ok
15:41:09.0658 6484 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:41:09.0678 6484 clr_optimization_v2.0.50727_32 - ok
15:41:09.0748 6484 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:41:09.0768 6484 clr_optimization_v2.0.50727_64 - ok
15:41:09.0968 6484 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:41:10.0008 6484 clr_optimization_v4.0.30319_32 - ok
15:41:10.0158 6484 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:41:10.0178 6484 clr_optimization_v4.0.30319_64 - ok
15:41:10.0248 6484 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:41:10.0298 6484 CmBatt - ok
15:41:10.0318 6484 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:41:10.0338 6484 cmdide - ok
15:41:10.0458 6484 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
15:41:10.0532 6484 CNG - ok
15:41:10.0630 6484 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:41:10.0650 6484 Compbatt - ok
15:41:10.0710 6484 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:41:10.0770 6484 CompositeBus - ok
15:41:10.0800 6484 COMSysApp - ok
15:41:10.0910 6484 connctfy - ok
15:41:10.0990 6484 connctfyMP - ok
15:41:11.0090 6484 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:41:11.0120 6484 crcdisk - ok
15:41:11.0260 6484 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:41:11.0380 6484 CryptSvc - ok
15:41:11.0534 6484 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:41:11.0682 6484 DcomLaunch - ok
15:41:11.0828 6484 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:41:11.0908 6484 defragsvc - ok
15:41:11.0980 6484 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:41:12.0070 6484 DfsC - ok
15:41:12.0172 6484 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:41:12.0232 6484 Dhcp - ok
15:41:12.0282 6484 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:41:12.0406 6484 discache - ok
15:41:12.0524 6484 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:41:12.0564 6484 Disk - ok
15:41:12.0624 6484 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:41:12.0899 6484 Dnscache - ok
15:41:12.0972 6484 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:41:13.0087 6484 dot3svc - ok
15:41:13.0137 6484 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:41:13.0211 6484 DPS - ok
15:41:13.0258 6484 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:41:13.0372 6484 drmkaud - ok
15:41:13.0446 6484 [ 61E894FE1E9CC720C909E6E343351794 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
15:41:13.0491 6484 DsiWMIService - ok
15:41:13.0571 6484 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:41:13.0647 6484 DXGKrnl - ok
15:41:13.0714 6484 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:41:13.0808 6484 EapHost - ok
15:41:13.0968 6484 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:41:14.0099 6484 ebdrv - ok
15:41:14.0172 6484 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:41:14.0196 6484 eeCtrl - ok
15:41:14.0236 6484 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:41:14.0304 6484 EFS - ok
15:41:14.0404 6484 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:41:14.0484 6484 ehRecvr - ok
15:41:14.0518 6484 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:41:14.0576 6484 ehSched - ok
15:41:14.0636 6484 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:41:14.0666 6484 elxstor - ok
15:41:14.0778 6484 [ 91C2E6234F6884C6FEEF9658D8EDE6B6 ] ePowerSvc C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
15:41:14.0808 6484 ePowerSvc - ok
15:41:14.0870 6484 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
15:41:14.0890 6484 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
15:41:14.0890 6484 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
15:41:14.0990 6484 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:41:15.0000 6484 EraserUtilRebootDrv - ok
15:41:15.0020 6484 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:41:15.0062 6484 ErrDev - ok
15:41:15.0242 6484 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:41:15.0392 6484 EventSystem - ok
15:41:15.0419 6484 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:41:15.0565 6484 exfat - ok
15:41:15.0588 6484 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:41:15.0707 6484 fastfat - ok
15:41:15.0800 6484 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:41:15.0882 6484 Fax - ok
15:41:15.0962 6484 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:41:16.0012 6484 fdc - ok
15:41:16.0042 6484 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:41:16.0154 6484 fdPHost - ok
15:41:16.0174 6484 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:41:16.0304 6484 FDResPub - ok
15:41:16.0327 6484 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:41:16.0367 6484 FileInfo - ok
15:41:16.0429 6484 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:41:16.0624 6484 Filetrace - ok
15:41:16.0677 6484 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:41:16.0693 6484 flpydisk - ok
15:41:16.0793 6484 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:41:16.0813 6484 FltMgr - ok
15:41:16.0935 6484 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:41:17.0037 6484 FontCache - ok
15:41:17.0107 6484 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:41:17.0137 6484 FontCache3.0.0.0 - ok
15:41:17.0174 6484 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:41:17.0209 6484 FsDepends - ok
15:41:17.0261 6484 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
15:41:17.0291 6484 fssfltr - ok
15:41:17.0393 6484 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:41:17.0506 6484 fsssvc - ok
15:41:17.0555 6484 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:41:17.0585 6484 Fs_Rec - ok
15:41:17.0647 6484 [ 7442BCA60ED46CC31C2F39728BBDD9AD ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
15:41:17.0687 6484 FTDIBUS - ok
15:41:17.0721 6484 [ 121AF3148CDDA212CFFBC4F6240699C2 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
15:41:17.0729 6484 FTSER2K - ok
15:41:17.0802 6484 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:41:17.0858 6484 fvevol - ok
15:41:17.0873 6484 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:41:17.0903 6484 gagp30kx - ok
15:41:17.0963 6484 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:41:17.0983 6484 GEARAspiWDM - ok
15:41:18.0053 6484 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:41:18.0203 6484 gpsvc - ok
15:41:18.0277 6484 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe
15:41:18.0297 6484 GREGService - ok
15:41:18.0357 6484 [ B9893A68032A6D9ADDB5B98287C630F7 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
15:41:18.0387 6484 grmnusb - ok
15:41:18.0487 6484 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:41:18.0517 6484 gupdate - ok
15:41:18.0549 6484 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:41:18.0569 6484 gupdatem - ok
15:41:18.0669 6484 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
15:41:18.0709 6484 gusvc - ok
15:41:18.0741 6484 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:41:18.0801 6484 hcw85cir - ok
15:41:18.0881 6484 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:41:18.0941 6484 HdAudAddService - ok
15:41:18.0981 6484 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:41:19.0061 6484 HDAudBus - ok
15:41:19.0091 6484 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:41:19.0123 6484 HidBatt - ok
15:41:19.0148 6484 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:41:19.0175 6484 HidBth - ok
15:41:19.0195 6484 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:41:19.0255 6484 HidIr - ok
15:41:19.0288 6484 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
15:41:19.0414 6484 hidserv - ok
15:41:19.0469 6484 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:41:19.0499 6484 HidUsb - ok
15:41:19.0561 6484 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:41:19.0685 6484 hkmsvc - ok
15:41:19.0743 6484 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:41:19.0823 6484 HomeGroupListener - ok
15:41:19.0873 6484 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:41:19.0913 6484 HomeGroupProvider - ok
15:41:19.0953 6484 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:41:20.0006 6484 HpSAMD - ok
15:41:20.0085 6484 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:41:20.0225 6484 HTTP - ok
15:41:20.0259 6484 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:41:20.0299 6484 hwpolicy - ok
15:41:20.0361 6484 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:41:20.0391 6484 i8042prt - ok
15:41:20.0461 6484 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:41:20.0522 6484 iaStorV - ok
15:41:20.0643 6484 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
15:41:20.0673 6484 IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:41:20.0673 6484 IDriverT - detected UnsignedFile.Multi.Generic (1)
15:41:20.0753 6484 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:41:20.0824 6484 idsvc - ok
15:41:20.0955 6484 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSvia64.sys
15:41:21.0007 6484 IDSVia64 - ok
15:41:21.0077 6484 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:41:21.0107 6484 iirsp - ok
15:41:21.0179 6484 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:41:21.0316 6484 IKEEXT - ok
15:41:21.0433 6484 [ FEADC18677A85A123E95A9B976101120 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:41:21.0574 6484 IntcAzAudAddService - ok
15:41:21.0685 6484 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:41:21.0715 6484 intelide - ok
15:41:21.0777 6484 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:41:21.0817 6484 intelppm - ok
15:41:21.0927 6484 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
15:41:21.0957 6484 IntuitUpdateService - ok
15:41:21.0980 6484 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:41:22.0117 6484 IPBusEnum - ok
15:41:22.0151 6484 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:41:22.0285 6484 IpFilterDriver - ok
15:41:22.0333 6484 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:41:22.0435 6484 iphlpsvc - ok
15:41:22.0475 6484 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:41:22.0535 6484 IPMIDRV - ok
15:41:22.0565 6484 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:41:22.0688 6484 IPNAT - ok
15:41:22.0727 6484 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:41:22.0827 6484 IRENUM - ok
15:41:22.0869 6484 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:41:22.0889 6484 isapnp - ok
15:41:22.0919 6484 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:41:22.0971 6484 iScsiPrt - ok
15:41:23.0031 6484 [ C9B4ECC187581E5BF3F76648884B7829 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
15:41:23.0071 6484 k57nd60a - ok
15:41:23.0123 6484 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
15:41:23.0163 6484 kbdclass - ok
15:41:23.0225 6484 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:41:23.0275 6484 kbdhid - ok
15:41:23.0295 6484 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:41:23.0325 6484 KeyIso - ok
15:41:23.0385 6484 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:41:23.0425 6484 KSecDD - ok
15:41:23.0487 6484 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:41:23.0537 6484 KSecPkg - ok
15:41:23.0589 6484 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:41:23.0713 6484 ksthunk - ok
15:41:23.0751 6484 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:41:23.0873 6484 KtmRm - ok
15:41:23.0923 6484 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
15:41:24.0056 6484 LanmanServer - ok
15:41:24.0107 6484 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:41:24.0218 6484 LanmanWorkstation - ok
15:41:24.0572 6484 [ 4CCC8AABE7880C56BA10043B8FBCA3EB ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
15:41:24.0879 6484 LeapFrog Connect Device Service - ok
15:41:24.0951 6484 [ 5EA407821BB3104C31A705175AB4F309 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
15:41:24.0971 6484 lirsgt - ok
15:41:25.0011 6484 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:41:25.0123 6484 lltdio - ok
15:41:25.0163 6484 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:41:25.0303 6484 lltdsvc - ok
15:41:25.0325 6484 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:41:25.0448 6484 lmhosts - ok
15:41:25.0517 6484 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:41:25.0557 6484 LSI_FC - ok
15:41:25.0639 6484 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:41:25.0679 6484 LSI_SAS - ok
15:41:25.0711 6484 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:41:25.0751 6484 LSI_SAS2 - ok
15:41:25.0783 6484 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:41:25.0833 6484 LSI_SCSI - ok
15:41:25.0875 6484 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:41:26.0026 6484 luafv - ok
15:41:26.0077 6484 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:41:26.0107 6484 Mcx2Svc - ok
15:41:26.0137 6484 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:41:26.0177 6484 megasas - ok
15:41:26.0205 6484 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:41:26.0249 6484 MegaSR - ok
15:41:26.0301 6484 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:41:26.0434 6484 MMCSS - ok
15:41:26.0456 6484 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:41:26.0584 6484 Modem - ok
15:41:26.0614 6484 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:41:26.0674 6484 monitor - ok
15:41:26.0736 6484 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
15:41:26.0776 6484 mouclass - ok
15:41:26.0838 6484 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:41:26.0868 6484 mouhid - ok
15:41:26.0918 6484 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:41:26.0948 6484 mountmgr - ok
15:41:26.0974 6484 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:41:27.0022 6484 mpio - ok
15:41:27.0050 6484 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:41:27.0138 6484 mpsdrv - ok
15:41:27.0262 6484 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:41:27.0413 6484 MpsSvc - ok
15:41:27.0446 6484 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:41:27.0496 6484 MRxDAV - ok
15:41:27.0546 6484 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:41:27.0626 6484 mrxsmb - ok
15:41:27.0688 6484 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:41:27.0738 6484 mrxsmb10 - ok
15:41:27.0758 6484 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:41:27.0798 6484 mrxsmb20 - ok
15:41:27.0840 6484 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:41:27.0870 6484 msahci - ok
15:41:27.0922 6484 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:41:27.0972 6484 msdsm - ok
15:41:27.0990 6484 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:41:28.0044 6484 MSDTC - ok
15:41:28.0087 6484 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:41:28.0174 6484 Msfs - ok
15:41:28.0232 6484 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:41:28.0344 6484 mshidkmdf - ok
15:41:28.0364 6484 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:41:28.0394 6484 msisadrv - ok
15:41:28.0426 6484 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:41:28.0531 6484 MSiSCSI - ok
15:41:28.0540 6484 msiserver - ok
15:41:28.0588 6484 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:41:28.0702 6484 MSKSSRV - ok
15:41:28.0734 6484 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:41:28.0838 6484 MSPCLOCK - ok
15:41:28.0867 6484 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:41:28.0985 6484 MSPQM - ok
15:41:29.0034 6484 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:41:29.0086 6484 MsRPC - ok
15:41:29.0136 6484 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:41:29.0176 6484 mssmbios - ok
15:41:29.0198 6484 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:41:29.0319 6484 MSTEE - ok
15:41:29.0331 6484 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:41:29.0361 6484 MTConfig - ok
15:41:29.0411 6484 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:41:29.0451 6484 Mup - ok
15:41:29.0673 6484 [ 241BD3019FB31E812A51B31B06906335 ] N360 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe
15:41:29.0713 6484 N360 - ok
15:41:29.0775 6484 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:41:29.0925 6484 napagent - ok
15:41:29.0989 6484 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:41:30.0059 6484 NativeWifiP - ok
15:41:30.0191 6484 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ENG64.SYS
15:41:30.0231 6484 NAVENG - ok
15:41:30.0333 6484 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\EX64.SYS
15:41:30.0453 6484 NAVEX15 - ok
15:41:30.0595 6484 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:41:30.0683 6484 NDIS - ok
15:41:30.0747 6484 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:41:30.0881 6484 NdisCap - ok
15:41:30.0929 6484 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:41:31.0032 6484 NdisTapi - ok
15:41:31.0081 6484 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:41:31.0181 6484 Ndisuio - ok
15:41:31.0257 6484 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:41:31.0323 6484 NdisWan - ok
15:41:31.0365 6484 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:41:31.0419 6484 NDProxy - ok
15:41:31.0523 6484 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
15:41:31.0563 6484 Nero BackItUp Scheduler 4.0 - ok
15:41:31.0615 6484 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:41:31.0733 6484 NetBIOS - ok
15:41:31.0777 6484 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:41:31.0907 6484 NetBT - ok
15:41:31.0948 6484 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:41:31.0979 6484 Netlogon - ok
15:41:32.0039 6484 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:41:32.0129 6484 Netman - ok
15:41:32.0169 6484 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:41:32.0288 6484 netprofm - ok
15:41:32.0325 6484 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:41:32.0345 6484 NetTcpPortSharing - ok
15:41:32.0385 6484 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:41:32.0415 6484 nfrd960 - ok
15:41:32.0477 6484 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:41:32.0527 6484 NlaSvc - ok
15:41:32.0557 6484 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:41:32.0649 6484 Npfs - ok
15:41:32.0669 6484 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:41:32.0797 6484 nsi - ok
15:41:32.0837 6484 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:41:32.0956 6484 nsiproxy - ok
15:41:33.0043 6484 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:41:33.0164 6484 Ntfs - ok
15:41:33.0215 6484 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
15:41:33.0255 6484 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - warning
15:41:33.0255 6484 NTI IScheduleSvc - detected UnsignedFile.Multi.Generic (1)
15:41:33.0295 6484 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
15:41:33.0305 6484 NTIDrvr - ok
15:41:33.0355 6484 NTPASp50a64 - ok
15:41:33.0375 6484 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:41:33.0516 6484 Null - ok
15:41:33.0557 6484 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:41:33.0597 6484 nvraid - ok
15:41:33.0622 6484 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:41:33.0659 6484 nvstor - ok
15:41:33.0711 6484 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:41:33.0751 6484 nv_agp - ok
15:41:33.0813 6484 [ 952AB3BDEF38A7391AA05BC8C6028F15 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
15:41:33.0893 6484 NWADI - ok
15:41:33.0903 6484 [ DE3ABD010D9734CD4AD4E0BA81F50B63 ] NWUSBCDFIL64 C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
15:41:33.0963 6484 NWUSBCDFIL64 - ok
15:41:34.0014 6484 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBModem C:\Windows\system32\DRIVERS\nwusbmdm.sys
15:41:34.0095 6484 NWUSBModem - ok
15:41:34.0145 6484 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort C:\Windows\system32\DRIVERS\nwusbser.sys
15:41:34.0175 6484 NWUSBPort - ok
15:41:34.0195 6484 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort2 C:\Windows\system32\DRIVERS\nwusbser2.sys
15:41:34.0225 6484 NWUSBPort2 - ok
15:41:34.0347 6484 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:41:34.0397 6484 odserv - ok
15:41:34.0449 6484 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:41:34.0469 6484 ohci1394 - ok
15:41:34.0499 6484 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:41:34.0549 6484 ose - ok
15:41:34.0591 6484 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:41:34.0673 6484 p2pimsvc - ok
15:41:34.0708 6484 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:41:34.0760 6484 p2psvc - ok
15:41:34.0785 6484 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:41:34.0815 6484 Parport - ok
15:41:34.0860 6484 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:41:34.0897 6484 partmgr - ok
15:41:34.0928 6484 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:41:34.0999 6484 PcaSvc - ok
15:41:35.0041 6484 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:41:35.0081 6484 pci - ok
15:41:35.0110 6484 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:41:35.0143 6484 pciide - ok
15:41:35.0179 6484 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:41:35.0215 6484 pcmcia - ok
15:41:35.0246 6484 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:41:35.0277 6484 pcw - ok
15:41:35.0329 6484 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:41:35.0481 6484 PEAUTH - ok
15:41:35.0555 6484 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:41:35.0605 6484 PerfHost - ok
15:41:35.0717 6484 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:41:35.0892 6484 pla - ok
15:41:35.0931 6484 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:41:36.0021 6484 PlugPlay - ok
15:41:36.0045 6484 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:41:36.0083 6484 PNRPAutoReg - ok
15:41:36.0113 6484 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:41:36.0157 6484 PNRPsvc - ok
15:41:36.0215 6484 [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
15:41:36.0245 6484 Point64 - ok
15:41:36.0307 6484 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:41:36.0447 6484 PolicyAgent - ok
15:41:36.0481 6484 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:41:36.0597 6484 Power - ok
15:41:36.0653 6484 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:41:36.0774 6484 PptpMiniport - ok
15:41:36.0807 6484 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:41:36.0837 6484 Processor - ok
15:41:36.0897 6484 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:41:36.0977 6484 ProfSvc - ok
15:41:36.0997 6484 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:41:37.0025 6484 ProtectedStorage - ok
15:41:37.0079 6484 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:41:37.0199 6484 Psched - ok
15:41:37.0218 6484 PTUMLBUS - ok
15:41:37.0242 6484 PTUMLCVsp - ok
15:41:37.0242 6484 PTUMLMdm - ok
15:41:37.0252 6484 PTUMLNET61 - ok
15:41:37.0265 6484 PTUMLNVsp - ok
15:41:37.0271 6484 PTUMLRMNET - ok
15:41:37.0286 6484 PTUMLVsp - ok
15:41:37.0364 6484 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:41:37.0491 6484 ql2300 - ok
15:41:37.0536 6484 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:41:37.0576 6484 ql40xx - ok
15:41:37.0618 6484 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:41:37.0678 6484 QWAVE - ok
15:41:37.0720 6484 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:41:37.0770 6484 QWAVEdrv - ok
15:41:37.0788 6484 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:41:37.0884 6484 RasAcd - ok
15:41:37.0932 6484 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:41:38.0014 6484 RasAgileVpn - ok
15:41:38.0030 6484 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:41:38.0162 6484 RasAuto - ok
15:41:38.0196 6484 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:41:38.0307 6484 Rasl2tp - ok
15:41:38.0378 6484 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:41:38.0488 6484 RasMan - ok
15:41:38.0541 6484 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:41:38.0668 6484 RasPppoe - ok
15:41:38.0701 6484 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:41:38.0826 6484 RasSstp - ok
15:41:38.0873 6484 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:41:38.0973 6484 rdbss - ok
15:41:39.0006 6484 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:41:39.0055 6484 rdpbus - ok
15:41:39.0085 6484 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:41:39.0196 6484 RDPCDD - ok
15:41:39.0247 6484 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:41:39.0351 6484 RDPENCDD - ok
15:41:39.0389 6484 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:41:39.0495 6484 RDPREFMP - ok
15:41:39.0573 6484 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:41:39.0653 6484 RdpVideoMiniport - ok
15:41:39.0723 6484 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:41:39.0803 6484 RDPWD - ok
15:41:39.0843 6484 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:41:39.0893 6484 rdyboost - ok
15:41:39.0995 6484 [ A0FF419B61AE47E26ADF3BB15DB4F2FE ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
15:41:40.0035 6484 RealNetworks Downloader Resolver Service - ok
15:41:40.0077 6484 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:41:40.0221 6484 RemoteAccess - ok
15:41:40.0254 6484 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:41:40.0438 6484 RemoteRegistry - ok
15:41:40.0587 6484 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:41:40.0731 6484 RpcEptMapper - ok
15:41:40.0759 6484 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:41:40.0799 6484 RpcLocator - ok
15:41:40.0849 6484 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
15:41:40.0950 6484 RpcSs - ok
15:41:40.0972 6484 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:41:41.0086 6484 rspndr - ok
15:41:41.0163 6484 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
15:41:41.0203 6484 RSUSBSTOR - ok
15:41:41.0265 6484 [ 4E821C740A675F6D040BE41D59A62B1D ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
15:41:41.0305 6484 RTHDMIAzAudService - ok
15:41:41.0367 6484 [ 4A06585C8673F4458E9FBBC9DDDB4D28 ] RTL8187B C:\Windows\system32\DRIVERS\wg111v3.sys
15:41:41.0447 6484 RTL8187B - ok
15:41:41.0482 6484 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:41:41.0499 6484 SamSs - ok
15:41:41.0549 6484 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:41:41.0599 6484 sbp2port - ok
15:41:41.0661 6484 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:41:41.0790 6484 SCardSvr - ok
15:41:41.0833 6484 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:41:41.0957 6484 scfilter - ok
15:41:42.0025 6484 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:41:42.0192 6484 Schedule - ok
15:41:42.0239 6484 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:41:42.0335 6484 SCPolicySvc - ok
15:41:42.0352 6484 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:41:42.0401 6484 SDRSVC - ok
15:41:42.0453 6484 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:41:42.0583 6484 secdrv - ok
15:41:42.0632 6484 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:41:42.0745 6484 seclogon - ok
15:41:42.0787 6484 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
15:41:42.0913 6484 SENS - ok
15:41:42.0949 6484 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:41:43.0009 6484 SensrSvc - ok
15:41:43.0029 6484 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:41:43.0079 6484 Serenum - ok
15:41:43.0109 6484 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:41:43.0139 6484 Serial - ok
15:41:43.0179 6484 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:41:43.0199 6484 sermouse - ok
15:41:43.0271 6484 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:41:43.0406 6484 SessionEnv - ok
15:41:43.0453 6484 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:41:43.0493 6484 sffdisk - ok
15:41:43.0523 6484 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:41:43.0593 6484 sffp_mmc - ok
15:41:43.0613 6484 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:41:43.0655 6484 sffp_sd - ok
15:41:43.0685 6484 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:41:43.0705 6484 sfloppy - ok
15:41:43.0757 6484 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:41:43.0901 6484 SharedAccess - ok
15:41:43.0939 6484 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:41:44.0064 6484 ShellHWDetection - ok
15:41:44.0089 6484 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:41:44.0123 6484 SiSRaid2 - ok
15:41:44.0145 6484 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:41:44.0192 6484 SiSRaid4 - ok
15:41:44.0245 6484 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:41:44.0367 6484 Smb - ok
15:41:44.0407 6484 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:41:44.0457 6484 SNMPTRAP - ok
15:41:44.0487 6484 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:41:44.0517 6484 spldr - ok
15:41:44.0589 6484 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:41:44.0681 6484 Spooler - ok
15:41:44.0838 6484 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:41:45.0146 6484 sppsvc - ok
15:41:45.0188 6484 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:41:45.0305 6484 sppuinotify - ok
15:41:45.0431 6484 [ 378A0748DE5ADF90BF9DB897DA8564E6 ] SRTSP C:\Windows\system32\drivers\N360x64\1403000.024\SRTSP64.SYS
15:41:45.0506 6484 SRTSP - ok
15:41:45.0553 6484 [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX C:\Windows\system32\drivers\N360x64\1403000.024\SRTSPX64.SYS
15:41:45.0573 6484 SRTSPX - ok
15:41:45.0633 6484 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:41:45.0745 6484 srv - ok
15:41:45.0925 6484 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:41:46.0005 6484 srv2 - ok
15:41:46.0065 6484 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:41:46.0105 6484 srvnet - ok
15:41:46.0155 6484 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:41:46.0306 6484 SSDPSRV - ok
15:41:46.0331 6484 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:41:46.0435 6484 SstpSvc - ok
15:41:46.0521 6484 [ 773940B8D50439391FFA619B3EEF01A3 ] StatusAgent4 C:\Windows\SysWOW64\SAgent4.exe
15:41:46.0531 6484 StatusAgent4 ( UnsignedFile.Multi.Generic ) - warning
15:41:46.0531 6484 StatusAgent4 - detected UnsignedFile.Multi.Generic (1)
15:41:46.0561 6484 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:41:46.0581 6484 stexstor - ok
15:41:46.0661 6484 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:41:46.0744 6484 stisvc - ok
15:41:46.0784 6484 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:41:46.0794 6484 swenum - ok
15:41:46.0874 6484 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:41:47.0019 6484 swprv - ok
15:41:47.0086 6484 [ E174C8BC572E93AEEE1036DEDAC5F225 ] SymDS C:\Windows\system32\drivers\N360x64\1403000.024\SYMDS64.SYS
15:41:47.0126 6484 SymDS - ok
15:41:47.0168 6484 [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA C:\Windows\system32\drivers\N360x64\1403000.024\SYMEFA64.SYS
15:41:47.0262 6484 SymEFA - ok
15:41:47.0320 6484 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
15:41:47.0350 6484 SymEvent - ok
15:41:47.0388 6484 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\N360x64\1403000.024\Ironx64.SYS
15:41:47.0412 6484 SymIRON - ok
15:41:47.0454 6484 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\Windows\system32\drivers\N360x64\1403000.024\SYMNETS.SYS
15:41:47.0502 6484 SymNetS - ok
15:41:47.0566 6484 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:41:47.0611 6484 SynTP - ok
15:41:47.0708 6484 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:41:47.0800 6484 SysMain - ok
15:41:47.0850 6484 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:41:47.0911 6484 TabletInputService - ok
15:41:47.0933 6484 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:41:48.0061 6484 TapiSrv - ok
15:41:48.0094 6484 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:41:48.0214 6484 TBS - ok
15:41:48.0306 6484 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:41:48.0448 6484 Tcpip - ok
15:41:48.0548 6484 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:41:48.0676 6484 TCPIP6 - ok
15:41:48.0730 6484 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:41:48.0750 6484 tcpipreg - ok
15:41:48.0810 6484 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:41:48.0890 6484 TDPIPE - ok
15:41:48.0940 6484 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:41:48.0960 6484 TDTCP - ok
15:41:49.0030 6484 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:41:49.0135 6484 tdx - ok
15:41:49.0182 6484 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:41:49.0212 6484 TermDD - ok
15:41:49.0254 6484 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:41:49.0383 6484 TermService - ok
15:41:49.0415 6484 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:41:49.0536 6484 Themes - ok
15:41:49.0666 6484 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:41:49.0759 6484 THREADORDER - ok
15:41:49.0798 6484 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:41:49.0936 6484 TrkWks - ok
15:41:50.0020 6484 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:41:50.0123 6484 TrustedInstaller - ok
15:41:50.0173 6484 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:41:50.0231 6484 tssecsrv - ok
15:41:50.0274 6484 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:41:50.0324 6484 TsUsbFlt - ok
15:41:50.0464 6484 [ C3D76D373359E45475CF5457F1DBEF7A ] TS_AR5416 C:\Windows\system32\DRIVERS\ts_athwx.sys
15:41:50.0588 6484 TS_AR5416 - ok
15:41:50.0606 6484 ts_arusb - ok
15:41:50.0676 6484 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:41:50.0777 6484 tunnel - ok
15:41:50.0815 6484 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:41:50.0848 6484 uagp35 - ok
15:41:50.0873 6484 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
15:41:50.0897 6484 UBHelper - ok
15:41:50.0950 6484 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:41:51.0020 6484 udfs - ok
15:41:51.0091 6484 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:41:51.0152 6484 UI0Detect - ok
15:41:51.0252 6484 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:41:51.0372 6484 uliagpkx - ok
15:41:51.0400 6484 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
15:41:51.0444 6484 umbus - ok
15:41:51.0694 6484 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:41:51.0784 6484 UmPass - ok
15:41:51.0844 6484 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:41:51.0959 6484 upnphost - ok
15:41:52.0006 6484 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:41:52.0066 6484 USBAAPL64 - ok
15:41:52.0136 6484 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:41:52.0196 6484 usbaudio - ok
15:41:52.0246 6484 [ 5FCC71487888589A9244AF54CFEFAB29 ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
15:41:52.0306 6484 usbbus - ok
15:41:52.0356 6484 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:41:52.0436 6484 usbccgp - ok
15:41:52.0478 6484 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:41:52.0528 6484 usbcir - ok
15:41:52.0570 6484 [ 3FB6E423F7567C92C32EA786F5FD0C69 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
15:41:52.0610 6484 UsbDiag - ok
15:41:52.0653 6484 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:41:52.0702 6484 usbehci - ok
15:41:52.0774 6484 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:41:52.0804 6484 usbhub - ok
15:41:52.0854 6484 [ 78D551F5B93488B4666F5FC8DD4815F3 ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
15:41:52.0874 6484 USBModem - ok
15:41:52.0904 6484 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:41:52.0944 6484 usbohci - ok
15:41:52.0994 6484 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:41:53.0044 6484 usbprint - ok
15:41:53.0096 6484 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:41:53.0126 6484 usbscan - ok
15:41:53.0166 6484 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:41:53.0226 6484 USBSTOR - ok
15:41:53.0256 6484 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:41:53.0308 6484 usbuhci - ok
15:41:53.0360 6484 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
15:41:53.0400 6484 usbvideo - ok
15:41:53.0440 6484 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:41:53.0614 6484 UxSms - ok
15:41:53.0647 6484 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:41:53.0667 6484 VaultSvc - ok
15:41:53.0724 6484 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:41:53.0744 6484 vdrvroot - ok
15:41:53.0874 6484 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:41:54.0012 6484 vds - ok
15:41:54.0046 6484 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:41:54.0086 6484 vga - ok
15:41:54.0096 6484 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:41:54.0219 6484 VgaSave - ok
15:41:54.0259 6484 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:41:54.0309 6484 vhdmp - ok
15:41:54.0336 6484 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:41:54.0374 6484 viaide - ok
15:41:54.0402 6484 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:41:54.0431 6484 volmgr - ok
15:41:54.0503 6484 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:41:54.0556 6484 volmgrx - ok
15:41:54.0582 6484 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:41:54.0637 6484 volsnap - ok
15:41:54.0675 6484 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:41:54.0717 6484 vsmraid - ok
15:41:54.0799 6484 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:41:54.0921 6484 VSS - ok
15:41:54.0951 6484 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:41:55.0003 6484 vwifibus - ok
15:41:55.0043 6484 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:41:55.0093 6484 vwififlt - ok
15:41:55.0133 6484 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
15:41:55.0193 6484 vwifimp - ok
15:41:55.0235 6484 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:41:55.0384 6484 W32Time - ok
15:41:55.0417 6484 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:41:55.0457 6484 WacomPen - ok
15:41:55.0539 6484 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:41:55.0673 6484 WANARP - ok
15:41:55.0680 6484 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:41:55.0778 6484 Wanarpv6 - ok
15:41:55.0843 6484 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:41:55.0957 6484 WatAdminSvc - ok
15:41:56.0055 6484 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:41:56.0187 6484 wbengine - ok
15:41:56.0224 6484 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:41:56.0259 6484 WbioSrvc - ok
15:41:56.0321 6484 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:41:56.0391 6484 wcncsvc - ok
15:41:56.0421 6484 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:41:56.0481 6484 WcsPlugInService - ok
15:41:56.0521 6484 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:41:56.0551 6484 Wd - ok
15:41:56.0623 6484 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:41:56.0714 6484 Wdf01000 - ok
15:41:56.0738 6484 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:41:56.0855 6484 WdiServiceHost - ok
15:41:56.0875 6484 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:41:56.0925 6484 WdiSystemHost - ok
15:41:56.0977 6484 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:41:57.0047 6484 WebClient - ok
15:41:57.0099 6484 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:41:57.0245 6484 Wecsvc - ok
15:41:57.0271 6484 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:41:57.0382 6484 wercplsupport - ok
15:41:57.0413 6484 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:41:57.0526 6484 WerSvc - ok
15:41:57.0565 6484 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:41:57.0664 6484 WfpLwf - ok
15:41:57.0687 6484 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:41:57.0717 6484 WIMMount - ok
15:41:57.0737 6484 WinDefend - ok
15:41:57.0746 6484 WinHttpAutoProxySvc - ok
15:41:57.0799 6484 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:41:57.0914 6484 Winmgmt - ok
15:41:58.0021 6484 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:41:58.0224 6484 WinRM - ok
15:41:58.0305 6484 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:41:58.0355 6484 WinUsb - ok
15:41:58.0415 6484 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:41:58.0487 6484 Wlansvc - ok
15:41:58.0557 6484 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:41:58.0567 6484 wlcrasvc - ok
15:41:58.0737 6484 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:41:58.0870 6484 wlidsvc - ok
15:41:59.0009 6484 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:41:59.0059 6484 WmiAcpi - ok
15:41:59.0109 6484 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:41:59.0149 6484 wmiApSrv - ok
15:41:59.0199 6484 WMPNetworkSvc - ok
15:41:59.0229 6484 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:41:59.0269 6484 WPCSvc - ok
15:41:59.0316 6484 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:41:59.0361 6484 WPDBusEnum - ok
15:41:59.0393 6484 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:41:59.0513 6484 ws2ifsl - ok
15:41:59.0555 6484 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
15:41:59.0625 6484 wscsvc - ok
15:41:59.0625 6484 WSearch - ok
15:41:59.0757 6484 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:41:59.0906 6484 wuauserv - ok
15:41:59.0969 6484 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:42:00.0039 6484 WudfPf - ok
15:42:00.0069 6484 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:42:00.0211 6484 wudfsvc - ok
15:42:00.0269 6484 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:42:00.0304 6484 WwanSvc - ok
15:42:00.0435 6484 ================ Scan global ===============================
15:42:00.0461 6484 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:42:00.0510 6484 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:42:00.0536 6484 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:42:00.0562 6484 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:42:00.0593 6484 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:42:00.0597 6484 [Global] - ok
15:42:00.0600 6484 ================ Scan MBR ==================================
15:42:00.0615 6484 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:42:00.0616 6484 Suspicious mbr (Forged): \Device\Harddisk0\DR0
15:42:00.0683 6484 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
15:42:00.0683 6484 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
15:42:00.0733 6484 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:42:00.0733 6484 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:42:00.0733 6484 ================ Scan VBR ==================================
15:42:00.0733 6484 [ 9AA61CF49612DFFC901FDEB4ED81FA45 ] \Device\Harddisk0\DR0\Partition1
15:42:00.0733 6484 \Device\Harddisk0\DR0\Partition1 - ok
15:42:00.0773 6484 [ 85B71757D61F7929F53BFA23AD8336F4 ] \Device\Harddisk0\DR0\Partition2
15:42:00.0773 6484 \Device\Harddisk0\DR0\Partition2 - ok
15:42:00.0783 6484 ================ Scan active images ========================
15:42:00.0783 6484 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
15:42:00.0783 6484 C:\Windows\System32\drivers\crashdmp.sys - ok
15:42:00.0793 6484 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
15:42:00.0793 6484 C:\Windows\System32\drivers\Dumpata.sys - ok
15:42:00.0803 6484 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] C:\Windows\System32\drivers\msahci.sys
15:42:00.0803 6484 C:\Windows\System32\drivers\msahci.sys - ok
15:42:00.0803 6484 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
15:42:00.0803 6484 C:\Windows\System32\drivers\dumpfve.sys - ok
15:42:00.0813 6484 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
15:42:00.0813 6484 C:\Windows\System32\drivers\cdrom.sys - ok
15:42:00.0823 6484 [ 248C952C82DF1E23775432774CBB20F1 ] C:\Windows\System32\drivers\N360x64\1403000.024\ccSetx64.sys
15:42:00.0823 6484 C:\Windows\System32\drivers\N360x64\1403000.024\ccSetx64.sys - ok
15:42:00.0833 6484 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] C:\Windows\System32\drivers\N360x64\1403000.024\Ironx64.sys
15:42:00.0833 6484 C:\Windows\System32\drivers\N360x64\1403000.024\Ironx64.sys - ok
15:42:00.0843 6484 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
15:42:00.0843 6484 C:\Windows\System32\drivers\beep.sys - ok
15:42:00.0853 6484 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
15:42:00.0853 6484 C:\Windows\System32\drivers\null.sys - ok
15:42:00.0863 6484 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
15:42:00.0863 6484 C:\Windows\System32\drivers\RDPCDD.sys - ok
15:42:00.0873 6484 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
15:42:00.0873 6484 C:\Windows\System32\drivers\RDPENCDD.sys - ok
15:42:00.0883 6484 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
15:42:00.0883 6484 C:\Windows\System32\drivers\vga.sys - ok
15:42:00.0903 6484 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
15:42:00.0903 6484 C:\Windows\System32\drivers\videoprt.sys - ok
15:42:00.0913 6484 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
15:42:00.0913 6484 C:\Windows\System32\drivers\watchdog.sys - ok
15:42:00.0923 6484 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
15:42:00.0923 6484 C:\Windows\System32\drivers\msfs.sys - ok
15:42:00.0941 6484 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
15:42:00.0941 6484 C:\Windows\System32\drivers\RDPREFMP.sys - ok
15:42:00.0952 6484 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
15:42:00.0952 6484 C:\Windows\System32\drivers\npfs.sys - ok
15:42:00.0966 6484 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
15:42:00.0966 6484 C:\Windows\System32\drivers\tdi.sys - ok
15:42:00.0978 6484 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
15:42:00.0978 6484 C:\Windows\System32\drivers\tdx.sys - ok
15:42:00.0987 6484 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
15:42:00.0987 6484 C:\Windows\System32\drivers\afd.sys - ok
15:42:00.0999 6484 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
15:42:00.0999 6484 C:\Windows\System32\drivers\netbt.sys - ok
15:42:01.0014 6484 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
15:42:01.0015 6484 C:\Windows\System32\drivers\ws2ifsl.sys - ok
15:42:01.0023 6484 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
15:42:01.0023 6484 C:\Windows\System32\drivers\wfplwf.sys - ok
15:42:01.0027 6484 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
15:42:01.0027 6484 C:\Windows\System32\drivers\pacer.sys - ok
15:42:01.0038 6484 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
15:42:01.0038 6484 C:\Windows\System32\drivers\netbios.sys - ok
15:42:01.0045 6484 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
15:42:01.0045 6484 C:\Windows\System32\drivers\vwififlt.sys - ok
15:42:01.0055 6484 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
15:42:01.0055 6484 C:\Windows\System32\drivers\termdd.sys - ok
15:42:01.0075 6484 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
15:42:01.0075 6484 C:\Windows\System32\drivers\wanarp.sys - ok
15:42:01.0085 6484 [ 1605EBD8CB86AFC4430116065995279A ] C:\Windows\System32\drivers\N360x64\1403000.024\symnets.sys
15:42:01.0085 6484 C:\Windows\System32\drivers\N360x64\1403000.024\symnets.sys - ok
15:42:01.0085 6484 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
15:42:01.0095 6484 C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
15:42:01.0095 6484 [ 0E76CEF892C45734F7AED09FDDF35D4D ] C:\Windows\System32\drivers\N360x64\1403000.024\srtspx64.sys
15:42:01.0095 6484 C:\Windows\System32\drivers\N360x64\1403000.024\srtspx64.sys - ok
15:42:01.0115 6484 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
15:42:01.0115 6484 C:\Windows\System32\drivers\nsiproxy.sys - ok
15:42:01.0125 6484 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
15:42:01.0125 6484 C:\Windows\System32\drivers\rdbss.sys - ok
15:42:01.0135 6484 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
15:42:01.0135 6484 C:\Windows\System32\drivers\mssmbios.sys - ok
15:42:01.0145 6484 [ A48928D4CCA6F8B731989DB08CF2C0AB ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSviA64.sys
15:42:01.0145 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSviA64.sys - ok
15:42:01.0165 6484 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:42:01.0165 6484 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
15:42:01.0183 6484 [ C5BCCB378D0A896304A3E71BE7215983 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:42:01.0183 6484 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok
15:42:01.0197 6484 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
15:42:01.0197 6484 C:\Windows\System32\drivers\blbdrive.sys - ok
15:42:01.0207 6484 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
15:42:01.0207 6484 C:\Windows\System32\drivers\dfsc.sys - ok
15:42:01.0217 6484 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
15:42:01.0217 6484 C:\Windows\System32\drivers\discache.sys - ok
15:42:01.0237 6484 [ 866335C9C0E6733C753FB472C539A6B9 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
15:42:01.0237 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys - ok
15:42:01.0247 6484 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
15:42:01.0247 6484 C:\Windows\System32\drivers\tunnel.sys - ok
15:42:01.0257 6484 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
15:42:01.0257 6484 C:\Windows\System32\drivers\amdppm.sys - ok
15:42:01.0267 6484 [ 20B63276A1920B41E1C56720B395049B ] C:\Windows\System32\drivers\atikmpag.sys
15:42:01.0267 6484 C:\Windows\System32\drivers\atikmpag.sys - ok
15:42:01.0277 6484 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
15:42:01.0277 6484 C:\Windows\System32\ntdll.dll - ok
15:42:01.0297 6484 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
15:42:01.0297 6484 C:\Windows\System32\smss.exe - ok
15:42:01.0307 6484 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
15:42:01.0307 6484 C:\Windows\System32\autochk.exe - ok
15:42:01.0317 6484 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
15:42:01.0317 6484 C:\Windows\System32\psapi.dll - ok
15:42:01.0327 6484 [ F6640D83AF0FD74C50E23E68548EA9A0 ] C:\Windows\System32\drivers\atikmdag.sys
15:42:01.0327 6484 C:\Windows\System32\drivers\atikmdag.sys - ok
15:42:01.0337 6484 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
15:42:01.0337 6484 C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:42:01.0347 6484 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
15:42:01.0347 6484 C:\Windows\System32\drivers\dxgmms1.sys - ok
15:42:01.0357 6484 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
15:42:01.0357 6484 C:\Windows\System32\user32.dll - ok
15:42:01.0367 6484 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
15:42:01.0367 6484 C:\Windows\System32\drivers\hdaudbus.sys - ok
15:42:01.0387 6484 [ C9B4ECC187581E5BF3F76648884B7829 ] C:\Windows\System32\drivers\k57nd60a.sys
15:42:01.0387 6484 C:\Windows\System32\drivers\k57nd60a.sys - ok
15:42:01.0397 6484 [ 70260C7C98CC0101316F5B2650C3BB44 ] C:\Windows\System32\drivers\athrx.sys
15:42:01.0397 6484 C:\Windows\System32\drivers\athrx.sys - ok
15:42:01.0407 6484 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
15:42:01.0407 6484 C:\Windows\System32\drivers\vwifibus.sys - ok
15:42:01.0417 6484 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] C:\Windows\System32\drivers\NTIDrvr.sys
15:42:01.0417 6484 C:\Windows\System32\drivers\NTIDrvr.sys - ok
15:42:01.0437 6484 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] C:\Windows\System32\drivers\UBHelper.sys
15:42:01.0437 6484 C:\Windows\System32\drivers\UBHelper.sys - ok
15:42:01.0447 6484 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
15:42:01.0447 6484 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
15:42:01.0467 6484 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
15:42:01.0467 6484 C:\Windows\System32\drivers\usbport.sys - ok
15:42:01.0477 6484 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
15:42:01.0477 6484 C:\Windows\System32\drivers\usbohci.sys - ok
15:42:01.0487 6484 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
15:42:01.0487 6484 C:\Windows\System32\drivers\usbehci.sys - ok
15:42:01.0507 6484 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
15:42:01.0507 6484 C:\Windows\System32\drivers\i8042prt.sys - ok
15:42:01.0517 6484 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
15:42:01.0517 6484 C:\Windows\System32\drivers\kbdclass.sys - ok
15:42:01.0537 6484 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] C:\Windows\System32\drivers\SynTP.sys
15:42:01.0537 6484 C:\Windows\System32\drivers\SynTP.sys - ok
15:42:01.0547 6484 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
15:42:01.0547 6484 C:\Windows\System32\drivers\usbd.sys - ok
15:42:01.0568 6484 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
15:42:01.0568 6484 C:\Windows\System32\kernel32.dll - ok
15:42:01.0581 6484 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
15:42:01.0581 6484 C:\Windows\System32\drivers\mouclass.sys - ok
15:42:01.0589 6484 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
15:42:01.0589 6484 C:\Windows\System32\drivers\wmiacpi.sys - ok
15:42:01.0599 6484 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
15:42:01.0609 6484 C:\Windows\System32\drivers\CmBatt.sys - ok
15:42:01.0609 6484 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
15:42:01.0609 6484 C:\Windows\System32\drivers\CompositeBus.sys - ok
15:42:01.0629 6484 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
15:42:01.0629 6484 C:\Windows\System32\drivers\agilevpn.sys - ok
15:42:01.0629 6484 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
15:42:01.0629 6484 C:\Windows\System32\drivers\ndistapi.sys - ok
15:42:01.0639 6484 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
15:42:01.0639 6484 C:\Windows\System32\drivers\rasl2tp.sys - ok
15:42:01.0649 6484 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
15:42:01.0649 6484 C:\Windows\System32\drivers\ndiswan.sys - ok
15:42:01.0659 6484 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
15:42:01.0659 6484 C:\Windows\System32\drivers\raspppoe.sys - ok
15:42:01.0669 6484 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
15:42:01.0669 6484 C:\Windows\System32\drivers\raspptp.sys - ok
15:42:01.0679 6484 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
15:42:01.0679 6484 C:\Windows\System32\drivers\rassstp.sys - ok
15:42:01.0679 6484 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
15:42:01.0679 6484 C:\Windows\System32\drivers\ks.sys - ok
15:42:01.0689 6484 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
15:42:01.0689 6484 C:\Windows\System32\drivers\swenum.sys - ok
15:42:01.0699 6484 [ 952AB3BDEF38A7391AA05BC8C6028F15 ] C:\Windows\System32\drivers\NWADIenum.sys
15:42:01.0699 6484 C:\Windows\System32\drivers\NWADIenum.sys - ok
15:42:01.0709 6484 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
15:42:01.0709 6484 C:\Windows\System32\drivers\umbus.sys - ok
15:42:01.0719 6484 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
15:42:01.0719 6484 C:\Windows\System32\msctf.dll - ok
15:42:01.0729 6484 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
15:42:01.0729 6484 C:\Windows\System32\rpcrt4.dll - ok
15:42:01.0729 6484 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
15:42:01.0729 6484 C:\Windows\System32\imm32.dll - ok
15:42:01.0739 6484 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
15:42:01.0739 6484 C:\Windows\System32\shlwapi.dll - ok
15:42:01.0749 6484 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
15:42:01.0749 6484 C:\Windows\System32\usp10.dll - ok
15:42:01.0759 6484 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
15:42:01.0759 6484 C:\Windows\System32\Wldap32.dll - ok
15:42:01.0769 6484 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
15:42:01.0769 6484 C:\Windows\System32\clbcatq.dll - ok
15:42:01.0779 6484 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
15:42:01.0779 6484 C:\Windows\System32\lpk.dll - ok
15:42:01.0779 6484 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
15:42:01.0779 6484 C:\Windows\System32\gdi32.dll - ok
15:42:01.0789 6484 [ A54A16DAE7497CDCB8C5A021C0F6FEB8 ] C:\Windows\System32\iertutil.dll
15:42:01.0789 6484 C:\Windows\System32\iertutil.dll - ok
15:42:01.0799 6484 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
15:42:01.0799 6484 C:\Windows\System32\msvcrt.dll - ok
15:42:01.0809 6484 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
15:42:01.0809 6484 C:\Windows\System32\ole32.dll - ok
15:42:01.0819 6484 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
15:42:01.0819 6484 C:\Windows\System32\imagehlp.dll - ok
15:42:01.0829 6484 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
15:42:01.0829 6484 C:\Windows\System32\oleaut32.dll - ok
15:42:01.0829 6484 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
15:42:01.0829 6484 C:\Windows\System32\advapi32.dll - ok
15:42:01.0839 6484 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
15:42:01.0839 6484 C:\Windows\System32\ws2_32.dll - ok
15:42:01.0849 6484 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
15:42:01.0849 6484 C:\Windows\System32\nsi.dll - ok
15:42:01.0859 6484 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
15:42:01.0859 6484 C:\Windows\System32\setupapi.dll - ok
15:42:01.0869 6484 [ FA274190682AA41A46B285208ED46A74 ] C:\Windows\System32\wininet.dll
15:42:01.0869 6484 C:\Windows\System32\wininet.dll - ok
15:42:01.0869 6484 [ FF1AAEDD4A1A0FC3C5ED66B4EE0B254A ] C:\Windows\System32\urlmon.dll
15:42:01.0869 6484 C:\Windows\System32\urlmon.dll - ok
15:42:01.0879 6484 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
15:42:01.0879 6484 C:\Windows\System32\comdlg32.dll - ok
15:42:01.0889 6484 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
15:42:01.0889 6484 C:\Windows\System32\sechost.dll - ok
15:42:01.0899 6484 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
15:42:01.0899 6484 C:\Windows\System32\normaliz.dll - ok
15:42:01.0909 6484 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
15:42:01.0909 6484 C:\Windows\System32\shell32.dll - ok
15:42:01.0909 6484 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
15:42:01.0909 6484 C:\Windows\System32\difxapi.dll - ok
15:42:01.0919 6484 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
15:42:01.0919 6484 C:\Windows\System32\cfgmgr32.dll - ok
15:42:01.0929 6484 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
15:42:01.0929 6484 C:\Windows\System32\crypt32.dll - ok
15:42:01.0939 6484 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
15:42:01.0939 6484 C:\Windows\System32\comctl32.dll - ok
15:42:01.0952 6484 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
15:42:01.0952 6484 C:\Windows\System32\devobj.dll - ok
15:42:01.0960 6484 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
15:42:01.0960 6484 C:\Windows\System32\KernelBase.dll - ok
15:42:01.0968 6484 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
15:42:01.0968 6484 C:\Windows\System32\wintrust.dll - ok
15:42:01.0977 6484 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
15:42:01.0977 6484 C:\Windows\System32\msasn1.dll - ok
15:42:01.0983 6484 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
15:42:01.0983 6484 C:\Windows\System32\drivers\usbhub.sys - ok
15:42:01.0991 6484 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
15:42:01.0991 6484 C:\Windows\System32\drivers\ndproxy.sys - ok
15:42:01.0999 6484 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
15:42:01.0999 6484 C:\Windows\System32\drivers\drmk.sys - ok
15:42:02.0007 6484 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
15:42:02.0008 6484 C:\Windows\System32\drivers\ksthunk.sys - ok
15:42:02.0015 6484 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
15:42:02.0015 6484 C:\Windows\System32\drivers\portcls.sys - ok
15:42:02.0021 6484 [ 4E821C740A675F6D040BE41D59A62B1D ] C:\Windows\System32\drivers\RtHDMIVX.sys
15:42:02.0021 6484 C:\Windows\System32\drivers\RtHDMIVX.sys - ok
15:42:02.0031 6484 [ FEADC18677A85A123E95A9B976101120 ] C:\Windows\System32\drivers\RTKVHD64.sys
15:42:02.0031 6484 C:\Windows\System32\drivers\RTKVHD64.sys - ok
15:42:02.0041 6484 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
15:42:02.0041 6484 C:\Windows\SysWOW64\normaliz.dll - ok
15:42:02.0041 6484 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
15:42:02.0041 6484 C:\Windows\System32\drivers\dxapi.sys - ok
15:42:02.0051 6484 [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
15:42:02.0051 6484 C:\Windows\System32\win32k.sys - ok
15:42:02.0061 6484 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
15:42:02.0061 6484 C:\Windows\System32\drivers\usbccgp.sys - ok
15:42:02.0071 6484 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
15:42:02.0071 6484 C:\Windows\System32\csrss.exe - ok
15:42:02.0081 6484 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
15:42:02.0081 6484 C:\Windows\System32\drivers\hidparse.sys - ok
15:42:02.0091 6484 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
15:42:02.0091 6484 C:\Windows\System32\drivers\hidclass.sys - ok
15:42:02.0091 6484 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
15:42:02.0091 6484 C:\Windows\System32\drivers\hidusb.sys - ok
15:42:02.0101 6484 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
15:42:02.0101 6484 C:\Windows\System32\drivers\kbdhid.sys - ok
15:42:02.0111 6484 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
15:42:02.0111 6484 C:\Windows\System32\drivers\mouhid.sys - ok
15:42:02.0121 6484 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
15:42:02.0121 6484 C:\Windows\System32\drivers\usbvideo.sys - ok
15:42:02.0131 6484 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
15:42:02.0131 6484 C:\Windows\System32\csrsrv.dll - ok
15:42:02.0141 6484 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
15:42:02.0141 6484 C:\Windows\System32\basesrv.dll - ok
15:42:02.0141 6484 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
15:42:02.0141 6484 C:\Windows\System32\winsrv.dll - ok
15:42:02.0151 6484 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
15:42:02.0151 6484 C:\Windows\System32\drivers\monitor.sys - ok
15:42:02.0161 6484 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
15:42:02.0161 6484 C:\Windows\System32\tsddd.dll - ok
15:42:02.0171 6484 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
15:42:02.0171 6484 C:\Windows\System32\sxssrv.dll - ok
15:42:02.0181 6484 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
15:42:02.0181 6484 C:\Windows\System32\wininit.exe - ok
15:42:02.0195 6484 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
15:42:02.0195 6484 C:\Windows\System32\cdd.dll - ok
15:42:02.0199 6484 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
15:42:02.0199 6484 C:\Windows\System32\profapi.dll - ok
15:42:02.0208 6484 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
15:42:02.0208 6484 C:\Windows\System32\KBDUS.DLL - ok
15:42:02.0213 6484 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
15:42:02.0213 6484 C:\Windows\System32\RpcRtRemote.dll - ok
15:42:02.0223 6484 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
15:42:02.0223 6484 C:\Windows\System32\WlS0WndH.dll - ok
15:42:02.0233 6484 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
15:42:02.0233 6484 C:\Windows\System32\sxs.dll - ok
15:42:02.0233 6484 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
15:42:02.0233 6484 C:\Windows\System32\cryptbase.dll - ok
15:42:02.0243 6484 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
15:42:02.0243 6484 C:\Windows\System32\apphelp.dll - ok
15:42:02.0253 6484 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
15:42:02.0253 6484 C:\Windows\System32\services.exe - ok
15:42:02.0253 6484 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
15:42:02.0253 6484 C:\Windows\System32\lsass.exe - ok
15:42:02.0263 6484 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
15:42:02.0263 6484 C:\Windows\System32\lsm.exe - ok
15:42:02.0263 6484 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
15:42:02.0273 6484 C:\Windows\System32\sspisrv.dll - ok
15:42:02.0279 6484 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
15:42:02.0279 6484 C:\Windows\System32\lsasrv.dll - ok
15:42:02.0286 6484 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
15:42:02.0286 6484 C:\Windows\System32\sspicli.dll - ok
15:42:02.0293 6484 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
15:42:02.0293 6484 C:\Windows\System32\scesrv.dll - ok
15:42:02.0295 6484 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
15:42:02.0295 6484 C:\Windows\System32\scext.dll - ok
15:42:02.0305 6484 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
15:42:02.0305 6484 C:\Windows\System32\secur32.dll - ok
15:42:02.0305 6484 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
15:42:02.0305 6484 C:\Windows\System32\sysntfy.dll - ok
15:42:02.0315 6484 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
15:42:02.0315 6484 C:\Windows\System32\srvcli.dll - ok
15:42:02.0325 6484 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
15:42:02.0325 6484 C:\Windows\System32\wmsgapi.dll - ok
15:42:02.0325 6484 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
15:42:02.0325 6484 C:\Windows\System32\samsrv.dll - ok
15:42:02.0335 6484 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
15:42:02.0335 6484 C:\Windows\System32\cryptdll.dll - ok
15:42:02.0345 6484 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
15:42:02.0345 6484 C:\Windows\System32\wevtapi.dll - ok
15:42:02.0345 6484 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
15:42:02.0345 6484 C:\Windows\System32\authz.dll - ok
15:42:02.0355 6484 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
15:42:02.0355 6484 C:\Windows\System32\cngaudit.dll - ok
15:42:02.0365 6484 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
15:42:02.0365 6484 C:\Windows\System32\ncrypt.dll - ok
15:42:02.0365 6484 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
15:42:02.0365 6484 C:\Windows\System32\bcrypt.dll - ok
15:42:02.0375 6484 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
15:42:02.0375 6484 C:\Windows\System32\msprivs.dll - ok
15:42:02.0385 6484 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
15:42:02.0385 6484 C:\Windows\System32\atmfd.dll - ok
15:42:02.0385 6484 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
15:42:02.0385 6484 C:\Windows\System32\netjoin.dll - ok
15:42:02.0395 6484 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
15:42:02.0395 6484 C:\Windows\System32\negoexts.dll - ok
15:42:02.0405 6484 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
15:42:02.0405 6484 C:\Windows\System32\kerberos.dll - ok
15:42:02.0405 6484 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
15:42:02.0405 6484 C:\Windows\System32\version.dll - ok
15:42:02.0415 6484 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
15:42:02.0415 6484 C:\Windows\System32\cryptsp.dll - ok
15:42:02.0425 6484 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
15:42:02.0425 6484 C:\Windows\System32\mswsock.dll - ok
15:42:02.0435 6484 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
15:42:02.0435 6484 C:\Windows\System32\wship6.dll - ok
15:42:02.0435 6484 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
15:42:02.0435 6484 C:\Windows\System32\msv1_0.dll - ok
15:42:02.0445 6484 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
15:42:02.0445 6484 C:\Windows\System32\netlogon.dll - ok
15:42:02.0455 6484 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
15:42:02.0455 6484 C:\Windows\System32\dnsapi.dll - ok
15:42:02.0455 6484 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
15:42:02.0455 6484 C:\Windows\System32\logoncli.dll - ok
15:42:02.0465 6484 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
15:42:02.0465 6484 C:\Windows\System32\schannel.dll - ok
15:42:02.0475 6484 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
15:42:02.0475 6484 C:\Windows\System32\wdigest.dll - ok
15:42:02.0475 6484 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
15:42:02.0475 6484 C:\Windows\System32\rsaenh.dll - ok
15:42:02.0485 6484 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
15:42:02.0485 6484 C:\Windows\System32\TSpkg.dll - ok
15:42:02.0495 6484 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
15:42:02.0495 6484 C:\Windows\System32\pku2u.dll - ok
15:42:02.0495 6484 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
15:42:02.0495 6484 C:\Windows\System32\LIVESSP.DLL - ok
15:42:02.0505 6484 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
15:42:02.0505 6484 C:\Windows\System32\bcryptprimitives.dll - ok
15:42:02.0515 6484 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
15:42:02.0515 6484 C:\Windows\System32\credssp.dll - ok
15:42:02.0515 6484 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
15:42:02.0515 6484 C:\Windows\System32\efslsaext.dll - ok
15:42:02.0525 6484 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
15:42:02.0525 6484 C:\Windows\System32\scecli.dll - ok
15:42:02.0535 6484 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
15:42:02.0535 6484 C:\Windows\System32\winlogon.exe - ok
15:42:02.0535 6484 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
15:42:02.0535 6484 C:\Windows\System32\ubpm.dll - ok
15:42:02.0545 6484 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
15:42:02.0545 6484 C:\Windows\System32\winsta.dll - ok
15:42:02.0555 6484 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
15:42:02.0555 6484 C:\Windows\System32\svchost.exe - ok
15:42:02.0555 6484 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
15:42:02.0555 6484 C:\Windows\System32\umpnpmgr.dll - ok
15:42:02.0565 6484 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
15:42:02.0565 6484 C:\Windows\System32\devrtl.dll - ok
15:42:02.0577 6484 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
15:42:02.0577 6484 C:\Windows\System32\SPInf.dll - ok
15:42:02.0584 6484 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
15:42:02.0584 6484 C:\Windows\System32\gpapi.dll - ok
15:42:02.0592 6484 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
15:42:02.0592 6484 C:\Windows\System32\userenv.dll - ok
15:42:02.0598 6484 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
15:42:02.0598 6484 C:\Windows\System32\pcwum.dll - ok
15:42:02.0606 6484 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
15:42:02.0606 6484 C:\Windows\System32\umpo.dll - ok
15:42:02.0613 6484 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
15:42:02.0613 6484 C:\Windows\System32\powrprof.dll - ok
15:42:02.0619 6484 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
15:42:02.0619 6484 C:\Windows\System32\drivers\luafv.sys - ok
15:42:02.0626 6484 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
15:42:02.0626 6484 C:\Windows\System32\rpcss.dll - ok
15:42:02.0633 6484 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
15:42:02.0633 6484 C:\Windows\System32\RpcEpMap.dll - ok
15:42:02.0639 6484 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
15:42:02.0639 6484 C:\Windows\System32\wshqos.dll - ok
15:42:02.0647 6484 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
15:42:02.0647 6484 C:\Windows\System32\WSHTCPIP.DLL - ok
15:42:02.0647 6484 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
15:42:02.0647 6484 C:\Windows\System32\FirewallAPI.dll - ok
15:42:02.0657 6484 [ DCEEE24E57E8176115207312F827C130 ] C:\Windows\System32\atiesrxx.exe
15:42:02.0657 6484 C:\Windows\System32\atiesrxx.exe - ok
15:42:02.0657 6484 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
15:42:02.0657 6484 C:\Windows\System32\LogonUI.exe - ok
15:42:02.0667 6484 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
15:42:02.0667 6484 C:\Windows\System32\authui.dll - ok
15:42:02.0677 6484 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
15:42:02.0677 6484 C:\Windows\System32\wtsapi32.dll - ok
15:42:02.0687 6484 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
15:42:02.0687 6484 C:\Windows\System32\cryptui.dll - ok
15:42:02.0687 6484 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
15:42:02.0687 6484 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
15:42:02.0697 6484 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
15:42:02.0697 6484 C:\Windows\System32\shacct.dll - ok
15:42:02.0707 6484 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
15:42:02.0707 6484 C:\Windows\System32\propsys.dll - ok
15:42:02.0707 6484 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
15:42:02.0707 6484 C:\Windows\System32\samlib.dll - ok
15:42:02.0718 6484 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
15:42:02.0718 6484 C:\Windows\System32\uxtheme.dll - ok
15:42:02.0734 6484 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
15:42:02.0734 6484 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
15:42:02.0737 6484 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
15:42:02.0738 6484 C:\Windows\System32\dui70.dll - ok
15:42:02.0747 6484 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
15:42:02.0748 6484 C:\Windows\System32\duser.dll - ok
15:42:02.0753 6484 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
15:42:02.0753 6484 C:\Windows\System32\SndVolSSO.dll - ok
15:42:02.0759 6484 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
15:42:02.0759 6484 C:\Windows\System32\hid.dll - ok
15:42:02.0759 6484 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
15:42:02.0759 6484 C:\Windows\System32\MMDevAPI.dll - ok
15:42:02.0769 6484 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
15:42:02.0769 6484 C:\Windows\System32\dwmapi.dll - ok
15:42:02.0769 6484 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
15:42:02.0779 6484 C:\Windows\System32\xmllite.dll - ok
15:42:02.0779 6484 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
15:42:02.0779 6484 C:\Windows\System32\wevtsvc.dll - ok
15:42:02.0789 6484 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
15:42:02.0789 6484 C:\Windows\System32\WindowsCodecs.dll - ok
15:42:02.0799 6484 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
15:42:02.0799 6484 C:\Windows\System32\adtschema.dll - ok
15:42:02.0799 6484 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
15:42:02.0799 6484 C:\Windows\System32\audiosrv.dll - ok
15:42:02.0809 6484 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
15:42:02.0809 6484 C:\Windows\System32\avrt.dll - ok
15:42:02.0819 6484 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
15:42:02.0819 6484 C:\Windows\System32\VaultCredProvider.dll - ok
15:42:02.0819 6484 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
15:42:02.0819 6484 C:\Windows\System32\winbrand.dll - ok
15:42:02.0829 6484 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:42:02.0829 6484 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:42:02.0839 6484 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
15:42:02.0839 6484 C:\Windows\System32\BioCredProv.dll - ok
15:42:02.0839 6484 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
15:42:02.0839 6484 C:\Windows\System32\winbio.dll - ok
15:42:02.0849 6484 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
15:42:02.0849 6484 C:\Windows\System32\credui.dll - ok
15:42:02.0859 6484 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
15:42:02.0859 6484 C:\Windows\System32\vaultcli.dll - ok
15:42:02.0859 6484 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
15:42:02.0859 6484 C:\Windows\System32\netapi32.dll - ok
15:42:02.0869 6484 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
15:42:02.0869 6484 C:\Windows\System32\netutils.dll - ok
15:42:02.0879 6484 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
15:42:02.0879 6484 C:\Windows\System32\wkscli.dll - ok
15:42:02.0889 6484 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
15:42:02.0889 6484 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
15:42:02.0889 6484 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
15:42:02.0889 6484 C:\Windows\System32\certCredProvider.dll - ok
15:42:02.0899 6484 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
15:42:02.0899 6484 C:\Windows\System32\samcli.dll - ok
15:42:02.0909 6484 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
15:42:02.0909 6484 C:\Windows\System32\rasplap.dll - ok
15:42:02.0909 6484 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
15:42:02.0909 6484 C:\Windows\System32\rasapi32.dll - ok
15:42:02.0925 6484 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
15:42:02.0925 6484 C:\Windows\System32\rasman.dll - ok
15:42:02.0930 6484 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
15:42:02.0930 6484 C:\Windows\System32\rtutils.dll - ok
15:42:02.0937 6484 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
15:42:02.0937 6484 C:\Windows\System32\mmcss.dll - ok
15:42:02.0941 6484 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
15:42:02.0941 6484 C:\Windows\System32\profsvc.dll - ok
15:42:02.0951 6484 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
15:42:02.0951 6484 C:\Windows\System32\audiodg.exe - ok
15:42:02.0951 6484 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
15:42:02.0951 6484 C:\Windows\System32\ntmarta.dll - ok
15:42:02.0961 6484 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
15:42:02.0961 6484 C:\Windows\System32\atl.dll - ok
15:42:02.0971 6484 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
15:42:02.0971 6484 C:\Windows\System32\themeservice.dll - ok
15:42:02.0971 6484 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
15:42:02.0971 6484 C:\Windows\System32\gpsvc.dll - ok
15:42:02.0981 6484 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
15:42:02.0981 6484 C:\Windows\System32\es.dll - ok
15:42:02.0991 6484 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
15:42:02.0991 6484 C:\Windows\System32\comres.dll - ok
15:42:02.0991 6484 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
15:42:02.0991 6484 C:\Windows\System32\dsrole.dll - ok
15:42:03.0001 6484 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
15:42:03.0001 6484 C:\Windows\System32\nlaapi.dll - ok
15:42:03.0011 6484 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
15:42:03.0011 6484 C:\Windows\System32\slc.dll - ok
15:42:03.0011 6484 [ 3080E59431AE0F5F386F05A421CE7559 ] C:\Windows\System32\atieclxx.exe
15:42:03.0011 6484 C:\Windows\System32\atieclxx.exe - ok
15:42:03.0021 6484 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
15:42:03.0021 6484 C:\Windows\System32\drivers\fltMgr.sys - ok
15:42:03.0031 6484 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
15:42:03.0031 6484 C:\Windows\System32\Sens.dll - ok
15:42:03.0031 6484 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
15:42:03.0031 6484 C:\Windows\System32\uxsms.dll - ok
15:42:03.0041 6484 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
15:42:03.0041 6484 C:\Windows\System32\PSHED.DLL - ok
15:42:03.0051 6484 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
15:42:03.0051 6484 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
15:42:03.0051 6484 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
15:42:03.0051 6484 C:\Windows\System32\drivers\lltdio.sys - ok
15:42:03.0061 6484 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
15:42:03.0061 6484 C:\Windows\System32\drivers\nwifi.sys - ok
15:42:03.0071 6484 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
15:42:03.0071 6484 C:\Windows\System32\drivers\ndisuio.sys - ok
15:42:03.0081 6484 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
15:42:03.0081 6484 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
15:42:03.0081 6484 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
15:42:03.0081 6484 C:\Windows\System32\drivers\rspndr.sys - ok
15:42:03.0091 6484 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
15:42:03.0091 6484 C:\Windows\System32\UXInit.dll - ok
15:42:03.0101 6484 [ 15B8C80B021BB978253996640EA5D5B7 ] C:\Windows\System32\atiadlxx.dll
15:42:03.0101 6484 C:\Windows\System32\atiadlxx.dll - ok
15:42:03.0101 6484 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
15:42:03.0101 6484 C:\Windows\System32\nsisvc.dll - ok
15:42:03.0111 6484 [ 00A2F06579753733A2600775C0AC1725 ] C:\Windows\System32\atimuixx.dll
15:42:03.0111 6484 C:\Windows\System32\atimuixx.dll - ok
15:42:03.0121 6484 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
15:42:03.0121 6484 C:\Windows\System32\IPHLPAPI.DLL - ok
15:42:03.0121 6484 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
15:42:03.0121 6484 C:\Windows\System32\lmhsvc.dll - ok
15:42:03.0131 6484 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
15:42:03.0131 6484 C:\Windows\System32\nrpsrv.dll - ok
15:42:03.0141 6484 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
15:42:03.0141 6484 C:\Windows\System32\winnsi.dll - ok
15:42:03.0141 6484 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
15:42:03.0141 6484 C:\Windows\System32\imageres.dll - ok
15:42:03.0151 6484 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
15:42:03.0151 6484 C:\Windows\System32\eapsvc.dll - ok
15:42:03.0161 6484 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
15:42:03.0161 6484 C:\Windows\System32\keyiso.dll - ok
15:42:03.0161 6484 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
15:42:03.0161 6484 C:\Windows\System32\dhcpcore.dll - ok
15:42:03.0171 6484 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
15:42:03.0171 6484 C:\Windows\System32\dhcpcore6.dll - ok
15:42:03.0181 6484 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
15:42:03.0181 6484 C:\Windows\System32\dnsrslvr.dll - ok
15:42:03.0181 6484 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
15:42:03.0181 6484 C:\Windows\System32\eapphost.dll - ok
15:42:03.0191 6484 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
15:42:03.0191 6484 C:\Windows\System32\wlansvc.dll - ok
15:42:03.0201 6484 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
15:42:03.0201 6484 C:\Windows\System32\wlanmsm.dll - ok
15:42:03.0201 6484 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
15:42:03.0201 6484 C:\Windows\System32\wlansec.dll - ok
15:42:03.0211 6484 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
15:42:03.0211 6484 C:\Windows\System32\onex.dll - ok
15:42:03.0221 6484 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
15:42:03.0221 6484 C:\Windows\System32\dhcpcsvc.dll - ok
15:42:03.0221 6484 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
15:42:03.0221 6484 C:\Windows\System32\eappprxy.dll - ok
15:42:03.0231 6484 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
15:42:03.0231 6484 C:\Windows\System32\FWPUCLNT.DLL - ok
15:42:03.0241 6484 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
15:42:03.0241 6484 C:\Windows\System32\dnsext.dll - ok
15:42:03.0251 6484 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
15:42:03.0251 6484 C:\Windows\System32\dhcpcsvc6.dll - ok
15:42:03.0251 6484 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
15:42:03.0251 6484 C:\Windows\System32\umb.dll - ok
15:42:03.0261 6484 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
15:42:03.0261 6484 C:\Windows\System32\eappcfg.dll - ok
15:42:03.0273 6484 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
15:42:03.0273 6484 C:\Windows\System32\l2gpstore.dll - ok
15:42:03.0278 6484 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
15:42:03.0278 6484 C:\Windows\System32\WinSCard.dll - ok
15:42:03.0285 6484 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
15:42:03.0286 6484 C:\Windows\System32\wlanutil.dll - ok
15:42:03.0292 6484 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
15:42:03.0292 6484 C:\Windows\System32\wlgpclnt.dll - ok
15:42:03.0299 6484 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
15:42:03.0299 6484 C:\Windows\System32\msxml6.dll - ok
15:42:03.0306 6484 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
15:42:03.0306 6484 C:\Windows\System32\shsvcs.dll - ok
15:42:03.0313 6484 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
15:42:03.0313 6484 C:\Windows\System32\schedsvc.dll - ok
15:42:03.0320 6484 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
15:42:03.0320 6484 C:\Windows\System32\wlanext.exe - ok
15:42:03.0327 6484 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
15:42:03.0327 6484 C:\Windows\System32\ktmw32.dll - ok
15:42:03.0333 6484 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
15:42:03.0333 6484 C:\Windows\System32\fveapi.dll - ok
15:42:03.0340 6484 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
15:42:03.0340 6484 C:\Windows\System32\fvecerts.dll - ok
15:42:03.0348 6484 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
15:42:03.0348 6484 C:\Windows\System32\tbs.dll - ok
15:42:03.0353 6484 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
15:42:03.0354 6484 C:\Windows\System32\conhost.exe - ok
15:42:03.0361 6484 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
15:42:03.0361 6484 C:\Windows\System32\taskcomp.dll - ok
15:42:03.0363 6484 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
15:42:03.0363 6484 C:\Windows\System32\wiarpc.dll - ok
15:42:03.0373 6484 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
15:42:03.0373 6484 C:\Windows\System32\netcfgx.dll - ok
15:42:03.0373 6484 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
15:42:03.0373 6484 C:\Windows\System32\dllhost.exe - ok
15:42:03.0383 6484 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
15:42:03.0383 6484 C:\Windows\System32\drivers\http.sys - ok
15:42:03.0393 6484 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
15:42:03.0393 6484 C:\Windows\System32\drivers\vwifimp.sys - ok
15:42:03.0393 6484 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
15:42:03.0393 6484 C:\Windows\System32\spoolsv.exe - ok
15:42:03.0403 6484 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
15:42:03.0403 6484 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
15:42:03.0413 6484 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
15:42:03.0413 6484 C:\Windows\System32\IDStore.dll - ok
15:42:03.0423 6484 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
15:42:03.0423 6484 C:\Windows\System32\AtBroker.exe - ok
15:42:03.0433 6484 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
15:42:03.0433 6484 C:\Windows\System32\mpr.dll - ok
15:42:03.0433 6484 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
15:42:03.0433 6484 C:\Windows\System32\userinit.exe - ok
15:42:03.0449 6484 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
15:42:03.0449 6484 C:\Windows\System32\dwm.exe - ok
15:42:03.0456 6484 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
15:42:03.0456 6484 C:\Windows\System32\taskhost.exe - ok
15:42:03.0463 6484 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
15:42:03.0463 6484 C:\Windows\System32\PlaySndSrv.dll - ok
15:42:03.0465 6484 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
15:42:03.0465 6484 C:\Windows\System32\MsCtfMonitor.dll - ok
15:42:03.0475 6484 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
15:42:03.0475 6484 C:\Windows\System32\msutb.dll - ok
15:42:03.0485 6484 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
15:42:03.0485 6484 C:\Windows\System32\BFE.DLL - ok
15:42:03.0485 6484 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
15:42:03.0485 6484 C:\Windows\System32\dwmredir.dll - ok
15:42:03.0495 6484 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
15:42:03.0495 6484 C:\Windows\System32\HotStartUserAgent.dll - ok
15:42:03.0505 6484 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
15:42:03.0505 6484 C:\Windows\System32\drivers\bowser.sys - ok
15:42:03.0515 6484 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
15:42:03.0515 6484 C:\Windows\System32\drivers\mpsdrv.sys - ok
15:42:03.0525 6484 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
15:42:03.0525 6484 C:\Windows\System32\drivers\mrxsmb.sys - ok
15:42:03.0525 6484 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
15:42:03.0525 6484 C:\Windows\System32\MPSSVC.dll - ok
15:42:03.0535 6484 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
15:42:03.0535 6484 C:\Windows\System32\wfapigp.dll - ok
15:42:03.0545 6484 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
15:42:03.0545 6484 C:\Windows\System32\dwmcore.dll - ok
15:42:03.0545 6484 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
15:42:03.0545 6484 C:\Windows\System32\d3d10_1.dll - ok
15:42:03.0555 6484 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
15:42:03.0555 6484 C:\Windows\System32\d3d10_1core.dll - ok
15:42:03.0565 6484 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
15:42:03.0565 6484 C:\Windows\System32\dxgi.dll - ok
15:42:03.0575 6484 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
15:42:03.0575 6484 C:\Windows\System32\winmm.dll - ok
15:42:03.0575 6484 [ 01DBD898ACCE9B9B695CAC53DA009EF3 ] C:\Windows\System32\aticfx64.dll
15:42:03.0575 6484 C:\Windows\System32\aticfx64.dll - ok
15:42:03.0585 6484 [ 976807DAEE652F29EE2DDB8C59A4C3AB ] C:\Windows\System32\atiuxp64.dll
15:42:03.0585 6484 C:\Windows\System32\atiuxp64.dll - ok
15:42:03.0595 6484 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
15:42:03.0595 6484 C:\Windows\System32\drivers\mrxsmb10.sys - ok
15:42:03.0595 6484 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
15:42:03.0595 6484 C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:42:03.0605 6484 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
15:42:03.0605 6484 C:\Windows\System32\wkssvc.dll - ok
15:42:03.0615 6484 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
15:42:03.0615 6484 C:\Windows\System32\taskeng.exe - ok
15:42:03.0615 6484 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
15:42:03.0615 6484 C:\Windows\System32\mscms.dll - ok
15:42:03.0635 6484 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
15:42:03.0635 6484 C:\Windows\System32\pcasvc.dll - ok
15:42:03.0635 6484 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
15:42:03.0635 6484 C:\Windows\System32\snmptrap.exe - ok
15:42:03.0645 6484 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
15:42:03.0645 6484 C:\Windows\System32\TSChannel.dll - ok
15:42:03.0645 6484 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
15:42:03.0645 6484 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
15:42:03.0655 6484 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
15:42:03.0655 6484 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
15:42:03.0665 6484 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
15:42:03.0665 6484 C:\Windows\System32\hnetcfg.dll - ok
15:42:03.0665 6484 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
15:42:03.0665 6484 C:\Windows\System32\provsvc.dll - ok
15:42:03.0675 6484 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
15:42:03.0675 6484 C:\Windows\explorer.exe - ok
15:42:03.0685 6484 [ 5A1786161A09275611C91D007DD77EC7 ] C:\Windows\System32\atidxx64.dll
15:42:03.0685 6484 C:\Windows\System32\atidxx64.dll - ok
15:42:03.0685 6484 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
15:42:03.0695 6484 C:\Windows\System32\sstpsvc.dll - ok
15:42:03.0695 6484 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
15:42:03.0695 6484 C:\Windows\System32\uDWM.dll - ok
15:42:03.0705 6484 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
15:42:03.0705 6484 C:\Windows\System32\ExplorerFrame.dll - ok
15:42:03.0715 6484 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
15:42:03.0715 6484 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe - ok
15:42:03.0715 6484 [ 9A7F1691F76E019C11481B6355125072 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
15:42:03.0715 6484 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
15:42:03.0725 6484 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:42:03.0725 6484 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
15:42:03.0736 6484 [ C3D90887181F94A0F469AF60C06CBAA5 ] C:\Users\James\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe
15:42:03.0736 6484 C:\Users\James\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe - ok
15:42:03.0736 6484 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
15:42:03.0736 6484 C:\Windows\System32\EhStorShell.dll - ok
15:42:03.0746 6484 [ FE2422F6078A32A4536E752697657880 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\bushell.dll
15:42:03.0746 6484 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\bushell.dll - ok
15:42:03.0756 6484 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcp100.dll
15:42:03.0756 6484 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcp100.dll - ok
15:42:03.0766 6484 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcr100.dll
15:42:03.0766 6484 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcr100.dll - ok
15:42:03.0766 6484 [ 8888EB78B322F6FE1F2623485CAD43FF ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccL120U.dll
15:42:03.0766 6484 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccL120U.dll - ok
15:42:03.0776 6484 [ A64FD422D01E71057B65B448C835D4E7 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\efacli64.dll
15:42:03.0776 6484 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\efacli64.dll - ok
15:42:03.0786 6484 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
15:42:03.0786 6484 C:\Windows\System32\ntshrui.dll - ok
15:42:03.0796 6484 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
15:42:03.0796 6484 C:\Windows\System32\cscapi.dll - ok
15:42:03.0796 6484 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
15:42:03.0796 6484 C:\Windows\System32\IconCodecService.dll - ok
15:42:03.0806 6484 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
15:42:03.0806 6484 C:\Windows\SysWOW64\ntdll.dll - ok
15:42:03.0806 6484 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
15:42:03.0806 6484 C:\Windows\System32\wow64.dll - ok
15:42:03.0816 6484 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
15:42:03.0816 6484 C:\Windows\System32\wow64win.dll - ok
15:42:03.0826 6484 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
15:42:03.0826 6484 C:\Windows\System32\wow64cpu.dll - ok
15:42:03.0826 6484 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
15:42:03.0826 6484 C:\Windows\SysWOW64\kernel32.dll - ok
15:42:03.0836 6484 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
15:42:03.0836 6484 C:\Windows\SysWOW64\KernelBase.dll - ok
15:42:03.0846 6484 [ 7601305A158367EBFCB8F01DC2E12E28 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\UMEngx86.dll
15:42:03.0846 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\UMEngx86.dll - ok
15:42:03.0846 6484 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
15:42:03.0846 6484 C:\Windows\SysWOW64\advapi32.dll - ok
15:42:03.0856 6484 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
15:42:03.0856 6484 C:\Windows\SysWOW64\msvcrt.dll - ok
15:42:03.0866 6484 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
15:42:03.0866 6484 C:\Windows\SysWOW64\rpcrt4.dll - ok
15:42:03.0866 6484 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
15:42:03.0866 6484 C:\Windows\SysWOW64\sechost.dll - ok
15:42:03.0876 6484 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
15:42:03.0876 6484 C:\Windows\SysWOW64\cryptbase.dll - ok
15:42:03.0886 6484 [ 78E3A1BE942B6CA69C01BAD7263D888C ] C:\Windows\SysWOW64\EEBUtil.dll
15:42:03.0886 6484 C:\Windows\SysWOW64\EEBUtil.dll - ok
15:42:03.0886 6484 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
15:42:03.0886 6484 C:\Windows\SysWOW64\sspicli.dll - ok
15:42:03.0896 6484 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
15:42:03.0896 6484 C:\Windows\SysWOW64\user32.dll - ok
15:42:03.0906 6484 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
15:42:03.0906 6484 C:\Windows\SysWOW64\gdi32.dll - ok
15:42:03.0906 6484 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
15:42:03.0906 6484 C:\Windows\SysWOW64\lpk.dll - ok
15:42:03.0916 6484 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
15:42:03.0916 6484 C:\Windows\SysWOW64\usp10.dll - ok
15:42:03.0926 6484 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
15:42:03.0926 6484 C:\Windows\SysWOW64\imm32.dll - ok
15:42:03.0926 6484 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
15:42:03.0926 6484 C:\Windows\SysWOW64\msctf.dll - ok
15:42:03.0942 6484 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
15:42:03.0942 6484 C:\Windows\SysWOW64\shlwapi.dll - ok
15:42:03.0948 6484 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
15:42:03.0948 6484 C:\Windows\SysWOW64\nsi.dll - ok
15:42:03.0958 6484 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
15:42:03.0958 6484 C:\Windows\SysWOW64\ws2_32.dll - ok
15:42:03.0958 6484 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
15:42:03.0958 6484 C:\Windows\SysWOW64\atl.dll - ok
15:42:03.0968 6484 [ 03728C624D05C2F157BBD46F6B7F6EA0 ] C:\Windows\SysWOW64\wininet.dll
15:42:03.0968 6484 C:\Windows\SysWOW64\wininet.dll - ok
15:42:03.0968 6484 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
15:42:03.0968 6484 C:\Windows\SysWOW64\ole32.dll - ok
15:42:03.0978 6484 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
15:42:03.0978 6484 C:\Windows\SysWOW64\shell32.dll - ok
15:42:03.0988 6484 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
15:42:03.0988 6484 C:\Windows\SysWOW64\msvcr100.dll - ok
15:42:03.0988 6484 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
15:42:03.0988 6484 C:\Windows\SysWOW64\msvcp100.dll - ok
15:42:03.0998 6484 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
15:42:03.0998 6484 C:\Windows\SysWOW64\version.dll - ok
15:42:04.0008 6484 [ 73BDB1C0801D44BEA5F6749FD340CC0F ] C:\Windows\SysWOW64\iertutil.dll
15:42:04.0008 6484 C:\Windows\SysWOW64\iertutil.dll - ok
15:42:04.0008 6484 [ 180D098704551DE37C6299AA888D6821 ] C:\Windows\SysWOW64\urlmon.dll
15:42:04.0008 6484 C:\Windows\SysWOW64\urlmon.dll - ok
15:42:04.0018 6484 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
15:42:04.0018 6484 C:\Windows\SysWOW64\oleaut32.dll - ok
15:42:04.0028 6484 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
15:42:04.0028 6484 C:\Windows\SysWOW64\crypt32.dll - ok
15:42:04.0038 6484 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
15:42:04.0038 6484 C:\Windows\SysWOW64\msimg32.dll - ok
15:42:04.0038 6484 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
15:42:04.0038 6484 C:\Windows\SysWOW64\winmm.dll - ok
15:42:04.0048 6484 [ 8D6D80315A238D049AE8A33C1EE632F8 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBRsvc.dll
15:42:04.0048 6484 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBRsvc.dll - ok
15:42:04.0058 6484 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
15:42:04.0058 6484 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
15:42:04.0058 6484 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
15:42:04.0058 6484 C:\Windows\SysWOW64\profapi.dll - ok
15:42:04.0068 6484 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
15:42:04.0068 6484 C:\Windows\SysWOW64\uxtheme.dll - ok
15:42:04.0078 6484 [ 7E70D0B6A85502C5D3A1DB062B72E78C ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBLPBidiDev.DLL
15:42:04.0078 6484 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBLPBidiDev.DLL - ok
15:42:04.0088 6484 [ 65BB5D319081E4EC2880A78A0091A84B ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBIPDev.DLL
15:42:04.0088 6484 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBIPDev.DLL - ok
15:42:04.0088 6484 [ 8F9D6B4AB86A39319078814ABBDD40BC ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
15:42:04.0088 6484 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
15:42:04.0098 6484 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:42:04.0098 6484 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:42:04.0108 6484 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
15:42:04.0108 6484 C:\Windows\SysWOW64\netapi32.dll - ok
15:42:04.0108 6484 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
15:42:04.0108 6484 C:\Windows\SysWOW64\netutils.dll - ok
15:42:04.0118 6484 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
15:42:04.0118 6484 C:\Windows\SysWOW64\srvcli.dll - ok
15:42:04.0128 6484 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
15:42:04.0128 6484 C:\Windows\SysWOW64\winnsi.dll - ok
15:42:04.0128 6484 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
15:42:04.0128 6484 C:\Windows\SysWOW64\wkscli.dll - ok
15:42:04.0138 6484 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
15:42:04.0138 6484 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
15:42:04.0148 6484 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
15:42:04.0148 6484 C:\Windows\SysWOW64\winspool.drv - ok
15:42:04.0148 6484 [ 59CDF93DFA24264E6D75E1E3C00CD27F ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBNWDev.dll
15:42:04.0148 6484 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBNWDev.dll - ok
15:42:04.0158 6484 [ 2510150D2BB54115141E83F3205B6013 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBMSDev.dll
15:42:04.0158 6484 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBMSDev.dll - ok
15:42:04.0168 6484 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
15:42:04.0168 6484 C:\Windows\SysWOW64\wsock32.dll - ok
15:42:04.0168 6484 [ 93DEB6C3A52996F1D76731BBA856983A ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\epLocalBidi.DLL
15:42:04.0178 6484 C:\Program Files (x86)\Common Files\EPSON\EBAPI\epLocalBidi.DLL - ok
15:42:04.0178 6484 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
15:42:04.0178 6484 C:\Windows\SysWOW64\mpr.dll - ok
15:42:04.0188 6484 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
15:42:04.0188 6484 C:\Windows\SysWOW64\mswsock.dll - ok
15:42:04.0198 6484 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
15:42:04.0198 6484 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
15:42:04.0198 6484 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:42:04.0198 6484 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
15:42:04.0208 6484 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
15:42:04.0208 6484 C:\Windows\SysWOW64\msasn1.dll - ok
15:42:04.0218 6484 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
15:42:04.0218 6484 C:\Windows\SysWOW64\secur32.dll - ok
15:42:04.0218 6484 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
15:42:04.0218 6484 C:\Windows\SysWOW64\imagehlp.dll - ok
15:42:04.0228 6484 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
15:42:04.0228 6484 C:\Windows\SysWOW64\setupapi.dll - ok
15:42:04.0238 6484 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
15:42:04.0238 6484 C:\Windows\SysWOW64\msi.dll - ok
15:42:04.0248 6484 [ 47188B0092466FD476E23DEA70CC1D4F ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
15:42:04.0248 6484 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
15:42:04.0248 6484 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:42:04.0248 6484 C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:42:04.0258 6484 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
15:42:04.0258 6484 C:\Windows\SysWOW64\devobj.dll - ok
15:42:04.0268 6484 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
15:42:04.0268 6484 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
15:42:04.0268 6484 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
15:42:04.0268 6484 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
15:42:04.0278 6484 [ 5937E46ECDCD514C7A74D64E4EF5E21D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
15:42:04.0278 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
15:42:04.0288 6484 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
15:42:04.0288 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
15:42:04.0298 6484 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
15:42:04.0298 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
15:42:04.0298 6484 [ 1F942930893ED98204AE67260E03EE26 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
15:42:04.0298 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
15:42:04.0308 6484 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
15:42:04.0308 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
15:42:04.0318 6484 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
15:42:04.0318 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
15:42:04.0328 6484 [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
15:42:04.0328 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
15:42:04.0328 6484 [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
15:42:04.0328 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
15:42:04.0338 6484 [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
15:42:04.0338 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
15:42:04.0348 6484 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
15:42:04.0348 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
15:42:04.0358 6484 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
15:42:04.0358 6484 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
15:42:04.0358 6484 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
15:42:04.0358 6484 C:\Windows\SysWOW64\dnssd.dll - ok
15:42:04.0368 6484 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
15:42:04.0368 6484 C:\Windows\SysWOW64\ntmarta.dll - ok
15:42:04.0378 6484 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
15:42:04.0378 6484 C:\Windows\SysWOW64\userenv.dll - ok
15:42:04.0378 6484 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
15:42:04.0378 6484 C:\Windows\SysWOW64\wtsapi32.dll - ok
15:42:04.0388 6484 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
15:42:04.0388 6484 C:\Windows\SysWOW64\Wldap32.dll - ok
15:42:04.0398 6484 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
15:42:04.0398 6484 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
15:42:04.0398 6484 [ 8195B745A9C3235E4715F0A1B59206CF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
15:42:04.0398 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
15:42:04.0408 6484 [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
15:42:04.0408 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
15:42:04.0418 6484 [ 240D42CBD1691C6B7D54AF4E3365BAAC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
15:42:04.0418 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
15:42:04.0428 6484 [ 282F84E0096499C42102D7234A4D14EF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
15:42:04.0428 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
15:42:04.0428 6484 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
15:42:04.0428 6484 C:\Windows\SysWOW64\wintrust.dll - ok
15:42:04.0438 6484 [ 1FD0FA6618B31FAD14385740D0F6C333 ] C:\Windows\System32\drivers\atksgt.sys
15:42:04.0438 6484 C:\Windows\System32\drivers\atksgt.sys - ok
15:42:04.0448 6484 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
15:42:04.0448 6484 C:\Program Files\Bonjour\mDNSResponder.exe - ok
15:42:04.0458 6484 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
15:42:04.0458 6484 C:\Windows\System32\rundll32.exe - ok
15:42:04.0468 6484 [ 674B9AD48FB33A39D2550B2874BB768F ] C:\Windows\System32\hotplug.dll
15:42:04.0468 6484 C:\Windows\System32\hotplug.dll - ok
15:42:04.0468 6484 [ 2110CE8CB4C6937200A973AD0B70F33D ] C:\Windows\AppPatch\AcRes.dll
15:42:04.0468 6484 C:\Windows\AppPatch\AcRes.dll - ok
15:42:04.0478 6484 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
15:42:04.0478 6484 C:\Windows\System32\cryptsvc.dll - ok
15:42:04.0478 6484 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
15:42:04.0478 6484 C:\Windows\System32\dps.dll - ok
15:42:04.0488 6484 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
15:42:04.0488 6484 C:\Windows\System32\taskschd.dll - ok
15:42:04.0498 6484 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
15:42:04.0498 6484 C:\Windows\System32\cryptnet.dll - ok
15:42:04.0498 6484 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
15:42:04.0498 6484 C:\Windows\System32\vssapi.dll - ok
15:42:04.0508 6484 [ 61E894FE1E9CC720C909E6E343351794 ] C:\Program Files (x86)\Launch Manager\dsiwmis.exe
15:42:04.0508 6484 C:\Program Files (x86)\Launch Manager\dsiwmis.exe - ok
15:42:04.0518 6484 [ 91C2E6234F6884C6FEEF9658D8EDE6B6 ] C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
15:42:04.0518 6484 C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe - ok
15:42:04.0518 6484 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
15:42:04.0518 6484 C:\Windows\System32\dbghelp.dll - ok
15:42:04.0528 6484 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
15:42:04.0528 6484 C:\Windows\SysWOW64\cscapi.dll - ok
15:42:04.0538 6484 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
15:42:04.0538 6484 C:\Windows\SysWOW64\dbghelp.dll - ok
15:42:04.0538 6484 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
15:42:04.0538 6484 C:\Windows\SysWOW64\apphelp.dll - ok
15:42:04.0548 6484 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
15:42:04.0548 6484 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
15:42:04.0558 6484 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
15:42:04.0558 6484 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
15:42:04.0568 6484 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
15:42:04.0568 6484 C:\Windows\SysWOW64\clbcatq.dll - ok
15:42:04.0568 6484 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
15:42:04.0568 6484 C:\Windows\SysWOW64\mstask.dll - ok
15:42:04.0578 6484 [ D89FA63C67D8BB342214BFC35FC76735 ] C:\Program Files\Gateway\Gateway Power Management\PowerSettingControl.dll
15:42:04.0578 6484 C:\Program Files\Gateway\Gateway Power Management\PowerSettingControl.dll - ok
15:42:04.0588 6484 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
15:42:04.0588 6484 C:\Windows\System32\vsstrace.dll - ok
15:42:04.0588 6484 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
15:42:04.0588 6484 C:\Windows\System32\oleacc.dll - ok
15:42:04.0598 6484 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
15:42:04.0598 6484 C:\Windows\System32\winspool.drv - ok
15:42:04.0608 6484 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
15:42:04.0608 6484 C:\Windows\System32\IKEEXT.DLL - ok
15:42:04.0608 6484 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
15:42:04.0608 6484 C:\Windows\System32\vpnikeapi.dll - ok
15:42:04.0618 6484 [ 4CCC8AABE7880C56BA10043B8FBCA3EB ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
15:42:04.0618 6484 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe - ok
15:42:04.0628 6484 [ 5EA407821BB3104C31A705175AB4F309 ] C:\Windows\System32\drivers\lirsgt.sys
15:42:04.0628 6484 C:\Windows\System32\drivers\lirsgt.sys - ok
15:42:04.0628 6484 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
15:42:04.0628 6484 C:\Windows\SysWOW64\dnsapi.dll - ok
15:42:04.0638 6484 [ 241BD3019FB31E812A51B31B06906335 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe
15:42:04.0638 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe - ok
15:42:04.0648 6484 [ 01243FA89FBEC041E873DE8386138440 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
15:42:04.0648 6484 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
15:42:04.0648 6484 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
15:42:04.0658 6484 C:\Windows\SysWOW64\propsys.dll - ok
15:42:04.0658 6484 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
15:42:04.0658 6484 C:\Windows\SysWOW64\netprofm.dll - ok
15:42:04.0668 6484 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
15:42:04.0668 6484 C:\Windows\SysWOW64\nlaapi.dll - ok
15:42:04.0678 6484 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
15:42:04.0678 6484 C:\Windows\SysWOW64\cryptsp.dll - ok
15:42:04.0678 6484 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
15:42:04.0678 6484 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
15:42:04.0688 6484 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
15:42:04.0688 6484 C:\Windows\SysWOW64\rsaenh.dll - ok
15:42:04.0698 6484 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcp100.dll
15:42:04.0698 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcp100.dll - ok
15:42:04.0708 6484 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcr100.dll
15:42:04.0708 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcr100.dll - ok
15:42:04.0708 6484 [ 0739819B2653DBD8D71EC5784BE6D9FC ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccL120U.dll
15:42:04.0708 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccL120U.dll - ok
15:42:04.0718 6484 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
15:42:04.0718 6484 C:\Windows\SysWOW64\psapi.dll - ok
15:42:04.0718 6484 [ 35AC6003760ED3C65942F6D89C28CFA7 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccVrTrst.dll
15:42:04.0718 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccVrTrst.dll - ok
15:42:04.0728 6484 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
15:42:04.0728 6484 C:\Windows\System32\netman.dll - ok
15:42:04.0738 6484 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
15:42:04.0738 6484 C:\Windows\System32\nlasvc.dll - ok
15:42:04.0748 6484 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
15:42:04.0748 6484 C:\Windows\System32\ncsi.dll - ok
15:42:04.0748 6484 [ 3ECC194DFEA426A3F3B4ECFDB8454F14 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\efacli.dll
15:42:04.0748 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\efacli.dll - ok
15:42:04.0758 6484 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
15:42:04.0758 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe - ok
15:42:04.0768 6484 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
15:42:04.0768 6484 C:\Windows\System32\winhttp.dll - ok
15:42:04.0778 6484 [ B9CF40ABF316A863DB9760727D882C6A ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvc.dll
15:42:04.0778 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvc.dll - ok
15:42:04.0778 6484 [ BDBC187D16A423F5E10CEA4F85E335FB ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\srtsp32.dll
15:42:04.0778 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\srtsp32.dll - ok
15:42:04.0788 6484 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
15:42:04.0788 6484 C:\Windows\System32\webio.dll - ok
15:42:04.0798 6484 [ 57D1527A7EB0D6F6BBA04796AA4839EE ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccIPC.dll
15:42:04.0798 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccIPC.dll - ok
15:42:04.0808 6484 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
15:42:04.0808 6484 C:\Windows\System32\ssdpapi.dll - ok
15:42:04.0808 6484 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
15:42:04.0808 6484 C:\Windows\SysWOW64\oleacc.dll - ok
15:42:04.0818 6484 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
15:42:04.0818 6484 C:\Windows\System32\aepic.dll - ok
15:42:04.0818 6484 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
15:42:04.0818 6484 C:\Windows\System32\drivers\PEAuth.sys - ok
15:42:04.0828 6484 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
15:42:04.0828 6484 C:\Windows\System32\sfc.dll - ok
15:42:04.0838 6484 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
15:42:04.0838 6484 C:\Windows\System32\sfc_os.dll - ok
15:42:04.0838 6484 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
15:42:04.0838 6484 C:\Windows\System32\drivers\secdrv.sys - ok
15:42:04.0848 6484 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
15:42:04.0848 6484 C:\Windows\System32\drivers\srvnet.sys - ok
15:42:04.0858 6484 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
15:42:04.0858 6484 C:\Windows\System32\httpapi.dll - ok
15:42:04.0868 6484 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
15:42:04.0868 6484 C:\Windows\System32\seclogon.dll - ok
15:42:04.0868 6484 [ C3C89ADB418317A548AA4C0B0170EA33 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\Pehook.dll
15:42:04.0868 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\Pehook.dll - ok
15:42:04.0878 6484 [ 93AC8012D1BCD9E20A090803F0D7DAF6 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ISchedule.dll
15:42:04.0878 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ISchedule.dll - ok
15:42:04.0888 6484 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
15:42:04.0888 6484 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
15:42:04.0888 6484 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
15:42:04.0888 6484 C:\Windows\System32\aeevts.dll - ok
15:42:04.0898 6484 [ 773940B8D50439391FFA619B3EEF01A3 ] C:\Windows\SysWOW64\SAgent4.exe
15:42:04.0898 6484 C:\Windows\SysWOW64\SAgent4.exe - ok
15:42:04.0908 6484 [ 8DB5F7821B06062EA254992AF2802C84 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diMaster.dll
15:42:04.0908 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diMaster.dll - ok
15:42:04.0918 6484 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
15:42:04.0918 6484 C:\Windows\SysWOW64\NapiNSP.dll - ok
15:42:04.0918 6484 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
15:42:04.0918 6484 C:\Windows\SysWOW64\pnrpnsp.dll - ok
15:42:04.0928 6484 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
15:42:04.0928 6484 C:\Windows\SysWOW64\winrnr.dll - ok
15:42:04.0938 6484 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
15:42:04.0938 6484 C:\Windows\SysWOW64\winhttp.dll - ok
15:42:04.0938 6484 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
15:42:04.0938 6484 C:\Windows\SysWOW64\webio.dll - ok
15:42:04.0948 6484 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
15:42:04.0948 6484 C:\Windows\SysWOW64\winsta.dll - ok
15:42:04.0958 6484 [ 64453CC9A9C6F9ECC7F0461365A47356 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\SyncDll.dll
15:42:04.0958 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\SyncDll.dll - ok
15:42:04.0958 6484 [ 01761D2CA25DBC78B7D9AF18AC1389E4 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\sqlite3.dll
15:42:04.0958 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\sqlite3.dll - ok
15:42:04.0968 6484 [ 78393E71EEF3D77E7BFB6449A4728B94 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\agent_stub.dll
15:42:04.0968 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\agent_stub.dll - ok
15:42:04.0978 6484 [ 3A10BE1693E89D0667437A4E8698A341 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ACE.dll
15:42:04.0978 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ACE.dll - ok
15:42:04.0988 6484 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
15:42:04.0988 6484 C:\Windows\System32\drivers\tcpipreg.sys - ok
15:42:04.0988 6484 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
15:42:04.0988 6484 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
15:42:04.0998 6484 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
15:42:04.0998 6484 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
15:42:05.0008 6484 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:42:05.0008 6484 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:42:05.0018 6484 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
15:42:05.0018 6484 C:\Windows\SysWOW64\rasadhlp.dll - ok
15:42:05.0018 6484 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
15:42:05.0018 6484 C:\Windows\System32\tapisrv.dll - ok
15:42:05.0028 6484 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
15:42:05.0028 6484 C:\Windows\System32\wiaservc.dll - ok
15:42:05.0038 6484 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
15:42:05.0038 6484 C:\Windows\System32\wiatrace.dll - ok
15:42:05.0048 6484 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
15:42:05.0048 6484 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
15:42:05.0048 6484 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
15:42:05.0048 6484 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
15:42:05.0058 6484 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
15:42:05.0058 6484 C:\Windows\System32\sysmain.dll - ok
15:42:05.0068 6484 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
15:42:05.0068 6484 C:\Windows\System32\trkwks.dll - ok
15:42:05.0068 6484 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
15:42:05.0068 6484 C:\Windows\System32\wbem\WMIsvc.dll - ok
15:42:05.0078 6484 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:42:05.0078 6484 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
15:42:05.0088 6484 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
15:42:05.0088 6484 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
15:42:05.0088 6484 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
15:42:05.0088 6484 C:\Windows\System32\wbemcomn.dll - ok
15:42:05.0098 6484 [ 3B2DF621CADA482C06AF0006EC18BF2E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSet.dll
15:42:05.0098 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSet.dll - ok
15:42:05.0108 6484 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
15:42:05.0108 6484 C:\Windows\System32\wbem\fastprox.dll - ok
15:42:05.0108 6484 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
15:42:05.0108 6484 C:\Windows\System32\wbem\WinMgmtR.dll - ok
15:42:05.0118 6484 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
15:42:05.0118 6484 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
15:42:05.0128 6484 [ D2BB82DF91F4D8495235F954D346C4F5 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\VssAgent.dll
15:42:05.0128 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\VssAgent.dll - ok
15:42:05.0138 6484 [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\SysWOW64\vssapi.dll
15:42:05.0138 6484 C:\Windows\SysWOW64\vssapi.dll - ok
15:42:05.0138 6484 [ 9B2CA1E7A69CD722E933FB327D3301FD ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IShadowS3.dll
15:42:05.0138 6484 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IShadowS3.dll - ok
15:42:05.0148 6484 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\SysWOW64\vsstrace.dll
15:42:05.0148 6484 C:\Windows\SysWOW64\vsstrace.dll - ok
15:42:05.0158 6484 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
15:42:05.0158 6484 C:\Windows\SysWOW64\dwmapi.dll - ok
15:42:05.0168 6484 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
15:42:05.0168 6484 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
15:42:05.0168 6484 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
15:42:05.0168 6484 C:\Windows\System32\ntdsapi.dll - ok
15:42:05.0178 6484 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
15:42:05.0178 6484 C:\Windows\System32\wbem\wbemprox.dll - ok
15:42:05.0178 6484 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
15:42:05.0178 6484 C:\Windows\System32\wbem\wbemcore.dll - ok
15:42:05.0188 6484 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
15:42:05.0188 6484 C:\Windows\System32\wbem\esscli.dll - ok
15:42:05.0198 6484 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
15:42:05.0198 6484 C:\Windows\System32\wbem\wbemsvc.dll - ok
15:42:05.0198 6484 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
15:42:05.0198 6484 C:\Windows\System32\wbem\wmiutils.dll - ok
15:42:05.0208 6484 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
15:42:05.0208 6484 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
15:42:05.0218 6484 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
15:42:05.0218 6484 C:\Windows\System32\SensApi.dll - ok
15:42:05.0228 6484 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
15:42:05.0228 6484 C:\Windows\System32\wer.dll - ok
15:42:05.0228 6484 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
15:42:05.0228 6484 C:\Windows\System32\FXSSVC.exe - ok
15:42:05.0238 6484 [ 43FA401CF9F3343F5B0CB800909506B5 ] C:\Windows\System32\FXSTIFF.dll
15:42:05.0238 6484 C:\Windows\System32\FXSTIFF.dll - ok
15:42:05.0248 6484 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
15:42:05.0248 6484 C:\Windows\System32\tapi32.dll - ok
15:42:05.0248 6484 [ 079FD1D59EAD19270C979AF174D881A3 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
15:42:05.0248 6484 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
15:42:05.0258 6484 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
15:42:05.0258 6484 C:\Windows\System32\FXSRESM.dll - ok
15:42:05.0268 6484 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
15:42:05.0268 6484 C:\Windows\System32\msxml3.dll - ok
15:42:05.0268 6484 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
15:42:05.0268 6484 C:\Program Files\Bonjour\mdnsNSP.dll - ok
15:42:05.0278 6484 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
15:42:05.0278 6484 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
15:42:05.0292 6484 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
15:42:05.0292 6484 C:\Windows\System32\localspl.dll - ok
15:42:05.0301 6484 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
15:42:05.0301 6484 C:\Windows\System32\rasadhlp.dll - ok
15:42:05.0306 6484 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
15:42:05.0306 6484 C:\Windows\System32\spoolss.dll - ok
15:42:05.0313 6484 [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMGBA.DLL
15:42:05.0313 6484 C:\Windows\System32\E_ILMGBA.DLL - ok
15:42:05.0321 6484 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
15:42:05.0321 6484 C:\Windows\System32\PrintIsolationProxy.dll - ok
15:42:05.0328 6484 [ 9C9FC1683DCE4F3FE24FDE04518E138D ] C:\Windows\System32\enppmon.dll
15:42:05.0328 6484 C:\Windows\System32\enppmon.dll - ok
15:42:05.0334 6484 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
15:42:05.0335 6484 C:\Windows\System32\msvcp60.dll - ok
15:42:05.0341 6484 [ 544482D396F1A0C0337879847032FBB3 ] C:\Windows\System32\enpres.dll
15:42:05.0341 6484 C:\Windows\System32\enpres.dll - ok
15:42:05.0347 6484 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
15:42:05.0348 6484 C:\Windows\System32\FXSMON.dll - ok
15:42:05.0355 6484 [ C835670705596AE67EE7E0AE92A12071 ] C:\Windows\System32\HPZLLLHN.DLL
15:42:05.0355 6484 C:\Windows\System32\HPZLLLHN.DLL - ok
15:42:05.0360 6484 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
15:42:05.0360 6484 C:\Windows\System32\tcpmon.dll - ok
15:42:05.0360 6484 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
15:42:05.0360 6484 C:\Windows\System32\snmpapi.dll - ok
15:42:05.0370 6484 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
15:42:05.0370 6484 C:\Windows\System32\wsnmp32.dll - ok
15:42:05.0380 6484 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
15:42:05.0380 6484 C:\Windows\System32\usbmon.dll - ok
15:42:05.0380 6484 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
15:42:05.0380 6484 C:\Windows\System32\WSDMon.dll - ok
15:42:05.0390 6484 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
15:42:05.0390 6484 C:\Windows\System32\WSDApi.dll - ok
15:42:05.0400 6484 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
15:42:05.0400 6484 C:\Windows\System32\dssenh.dll - ok
15:42:05.0400 6484 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
15:42:05.0400 6484 C:\Windows\System32\webservices.dll - ok
15:42:05.0410 6484 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
15:42:05.0410 6484 C:\Windows\System32\fundisc.dll - ok
15:42:05.0420 6484 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
15:42:05.0420 6484 C:\Windows\System32\fdPnp.dll - ok
15:42:05.0420 6484 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:42:05.0420 6484 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:42:05.0430 6484 [ C30A50449EA4B611484A5F1F1F016774 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
15:42:05.0430 6484 C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL - ok
15:42:05.0440 6484 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
15:42:05.0440 6484 C:\Windows\System32\win32spl.dll - ok
15:42:05.0440 6484 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
15:42:05.0440 6484 C:\Windows\System32\inetpp.dll - ok
15:42:05.0450 6484 [ B7B6472D86A96D04BC08B1A54AA11320 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSetup.dll
15:42:05.0450 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSetup.dll - ok
15:42:05.0460 6484 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
15:42:05.0460 6484 C:\Windows\SysWOW64\shfolder.dll - ok
15:42:05.0460 6484 [ A2A729F6925252E3DB9ADF3E4FA39A48 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymNeti.dll
15:42:05.0460 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymNeti.dll - ok
15:42:05.0470 6484 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
15:42:05.0470 6484 C:\Windows\SysWOW64\powrprof.dll - ok
15:42:05.0480 6484 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
15:42:05.0480 6484 C:\Windows\System32\drivers\srv2.sys - ok
15:42:05.0490 6484 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
15:42:05.0490 6484 C:\Windows\System32\drivers\srv.sys - ok
15:42:05.0490 6484 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
15:42:05.0490 6484 C:\Windows\SysWOW64\FirewallAPI.dll - ok
15:42:05.0500 6484 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
15:42:05.0500 6484 C:\Windows\System32\wbem\repdrvfs.dll - ok
15:42:05.0510 6484 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
15:42:05.0510 6484 C:\Windows\System32\ntprint.dll - ok
15:42:05.0510 6484 [ F99580A13760F607DE4795D18CCC2C1A ] C:\Windows\System32\FXST30.dll
15:42:05.0510 6484 C:\Windows\System32\FXST30.dll - ok
15:42:05.0520 6484 [ D5217D9C99DECB25E128EEA18BB8CE05 ] C:\Windows\System32\FXSROUTE.dll
15:42:05.0520 6484 C:\Windows\System32\FXSROUTE.dll - ok
15:42:05.0530 6484 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
15:42:05.0530 6484 C:\Windows\System32\unimdm.tsp - ok
15:42:05.0530 6484 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
15:42:05.0530 6484 C:\Windows\System32\uniplat.dll - ok
15:42:05.0540 6484 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
15:42:05.0540 6484 C:\Windows\System32\kmddsp.tsp - ok
15:42:05.0550 6484 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
15:42:05.0550 6484 C:\Windows\System32\ndptsp.tsp - ok
15:42:05.0550 6484 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
15:42:05.0550 6484 C:\Windows\System32\hidphone.tsp - ok
15:42:05.0560 6484 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
15:42:05.0560 6484 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
15:42:05.0570 6484 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
15:42:05.0570 6484 C:\Windows\System32\p2pcollab.dll - ok
15:42:05.0570 6484 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
15:42:05.0570 6484 C:\Windows\System32\QAGENTRT.DLL - ok
15:42:05.0580 6484 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
15:42:05.0580 6484 C:\Windows\System32\fveui.dll - ok
15:42:05.0590 6484 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
15:42:05.0590 6484 C:\Windows\System32\iphlpsvc.dll - ok
15:42:05.0590 6484 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
15:42:05.0590 6484 C:\Windows\System32\sqmapi.dll - ok
15:42:05.0600 6484 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
15:42:05.0600 6484 C:\Windows\System32\wdscore.dll - ok
15:42:05.0610 6484 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
15:42:05.0610 6484 C:\Windows\System32\rasmans.dll - ok
15:42:05.0610 6484 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
15:42:05.0610 6484 C:\Windows\System32\srvsvc.dll - ok
15:42:05.0620 6484 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
15:42:05.0620 6484 C:\Windows\System32\browser.dll - ok
15:42:05.0630 6484 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
15:42:05.0630 6484 C:\Windows\System32\netmsg.dll - ok
15:42:05.0630 6484 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
15:42:05.0630 6484 C:\Windows\System32\sscore.dll - ok
15:42:05.0640 6484 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
15:42:05.0640 6484 C:\Windows\System32\clusapi.dll - ok
15:42:05.0650 6484 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
15:42:05.0650 6484 C:\Windows\System32\rastapi.dll - ok
15:42:05.0650 6484 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
15:42:05.0650 6484 C:\Windows\System32\resutils.dll - ok
15:42:05.0660 6484 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
15:42:05.0660 6484 C:\Windows\System32\nci.dll - ok
15:42:05.0670 6484 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
15:42:05.0670 6484 C:\Windows\System32\netprofm.dll - ok
15:42:05.0670 6484 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
15:42:05.0670 6484 C:\Windows\System32\rasppp.dll - ok
15:42:05.0680 6484 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
15:42:05.0680 6484 C:\Windows\System32\vpnike.dll - ok
15:42:05.0690 6484 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
15:42:05.0690 6484 C:\Windows\System32\raschap.dll - ok
15:42:05.0690 6484 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
15:42:05.0690 6484 C:\Windows\System32\ipnathlp.dll - ok
15:42:05.0700 6484 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
15:42:05.0700 6484 C:\Windows\System32\mprapi.dll - ok
15:42:05.0710 6484 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
15:42:05.0710 6484 C:\Windows\System32\netshell.dll - ok
15:42:05.0720 6484 [ CC19133AB94723A75727D632C24D1B13 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGEvt.dll
15:42:05.0720 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGEvt.dll - ok
15:42:05.0720 6484 [ 595B527E1961AFE8EC33A22516853C57 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NPCTray.dll
15:42:05.0720 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NPCTray.dll - ok
15:42:05.0730 6484 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:42:05.0730 6484 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:42:05.0740 6484 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
15:42:05.0740 6484 C:\Windows\System32\ncobjapi.dll - ok
15:42:05.0740 6484 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
15:42:05.0740 6484 C:\Windows\System32\wbem\wbemess.dll - ok
15:42:05.0750 6484 [ 3F478F7DCBB7E031E609C9A28382EEA6 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiMain.dll
15:42:05.0750 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiMain.dll - ok
15:42:05.0760 6484 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
15:42:05.0760 6484 C:\Windows\SysWOW64\d3d9.dll - ok
15:42:05.0760 6484 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
15:42:05.0760 6484 C:\Windows\SysWOW64\d3d8thk.dll - ok
15:42:05.0771 6484 [ 7BAD1E584DBE290C06B8AE0FABF7BEDE ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymHTMDX.dll
15:42:05.0771 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymHTMDX.dll - ok
15:42:05.0781 6484 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
15:42:05.0781 6484 C:\Windows\SysWOW64\DWrite.dll - ok
15:42:05.0791 6484 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
15:42:05.0791 6484 C:\Windows\SysWOW64\d3d10_1.dll - ok
15:42:05.0791 6484 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
15:42:05.0791 6484 C:\Windows\SysWOW64\d3d10_1core.dll - ok
15:42:05.0801 6484 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
15:42:05.0801 6484 C:\Windows\SysWOW64\dxgi.dll - ok
15:42:05.0811 6484 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
15:42:05.0811 6484 C:\Windows\SysWOW64\comdlg32.dll - ok
15:42:05.0811 6484 [ 93084B33E85CA77DAD9648AA1191D0F6 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diStRptr.dll
15:42:05.0811 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diStRptr.dll - ok
15:42:05.0821 6484 [ A379F28D79B5F24DA1B27BE82F382ADA ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\MClnTask.dll
15:42:05.0821 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\MClnTask.dll - ok
15:42:05.0831 6484 [ DF9DA836F30C17CD05307641A6531664 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isDataPr.dll
15:42:05.0831 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isDataPr.dll - ok
15:42:05.0831 6484 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
15:42:05.0831 6484 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
15:42:05.0841 6484 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:42:05.0841 6484 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:42:05.0851 6484 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
15:42:05.0851 6484 C:\Windows\SysWOW64\duser.dll - ok
15:42:05.0851 6484 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
15:42:05.0851 6484 C:\Windows\SysWOW64\dui70.dll - ok
15:42:05.0861 6484 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
15:42:05.0861 6484 C:\Windows\System32\dot3api.dll - ok
15:42:05.0871 6484 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
15:42:05.0871 6484 C:\Windows\System32\wlanapi.dll - ok
15:42:05.0871 6484 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
15:42:05.0871 6484 C:\Windows\System32\wlanhlp.dll - ok
15:42:05.0881 6484 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] C:\Windows\System32\drivers\ipnat.sys
15:42:05.0881 6484 C:\Windows\System32\drivers\ipnat.sys - ok
15:42:05.0891 6484 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
15:42:05.0891 6484 C:\Windows\System32\wdi.dll - ok
15:42:05.0901 6484 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
15:42:05.0901 6484 C:\Windows\System32\alg.exe - ok
15:42:05.0901 6484 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
15:42:05.0901 6484 C:\Windows\System32\appinfo.dll - ok
15:42:05.0911 6484 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
15:42:05.0911 6484 C:\Windows\System32\hidserv.dll - ok
15:42:05.0921 6484 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
15:42:05.0921 6484 C:\Windows\System32\wsock32.dll - ok
15:42:05.0921 6484 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
15:42:05.0921 6484 C:\Windows\System32\runonce.exe - ok
15:42:05.0931 6484 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
15:42:05.0931 6484 C:\Windows\SysWOW64\runonce.exe - ok
15:42:05.0941 6484 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
15:42:05.0941 6484 C:\Windows\SysWOW64\cmd.exe - ok
15:42:05.0941 6484 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
15:42:05.0941 6484 C:\Windows\System32\PortableDeviceApi.dll - ok
15:42:05.0951 6484 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
15:42:05.0951 6484 C:\Windows\System32\wpdbusenum.dll - ok
15:42:05.0961 6484 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
15:42:05.0961 6484 C:\Windows\System32\Apphlpdm.dll - ok
15:42:05.0961 6484 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:42:05.0961 6484 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:42:05.0971 6484 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
15:42:05.0971 6484 C:\Windows\SysWOW64\winbrand.dll - ok
15:42:05.0981 6484 [ D3EAB9BCB2B92EFCA615781C215644C0 ] C:\Windows\SysWOW64\ieframe.dll
15:42:05.0981 6484 C:\Windows\SysWOW64\ieframe.dll - ok
15:42:05.0981 6484 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
15:42:05.0981 6484 C:\Windows\System32\aelupsvc.dll - ok
15:42:05.0991 6484 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
15:42:05.0991 6484 C:\Windows\System32\perftrack.dll - ok
15:42:06.0001 6484 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
15:42:06.0001 6484 C:\Windows\SysWOW64\shdocvw.dll - ok
15:42:06.0011 6484 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\James\AppData\Local\Temp\103AE388-EE5D-4B25-A29D-EA37B6B532F1.exe
15:42:06.0011 6484 C:\Users\James\AppData\Local\Temp\103AE388-EE5D-4B25-A29D-EA37B6B532F1.exe - ok
15:42:06.0011 6484 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
15:42:06.0011 6484 C:\Windows\System32\diagperf.dll - ok
15:42:06.0021 6484 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
15:42:06.0021 6484 C:\Windows\SysWOW64\ncrypt.dll - ok
15:42:06.0031 6484 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
15:42:06.0031 6484 C:\Windows\SysWOW64\bcrypt.dll - ok
15:42:06.0031 6484 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:42:06.0031 6484 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:42:06.0041 6484 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
15:42:06.0041 6484 C:\Windows\SysWOW64\gpapi.dll - ok
15:42:06.0051 6484 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
15:42:06.0051 6484 C:\Windows\SysWOW64\cryptnet.dll - ok
15:42:06.0061 6484 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
15:42:06.0061 6484 C:\Windows\SysWOW64\SensApi.dll - ok
15:42:06.0061 6484 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
15:42:06.0061 6484 C:\Windows\SysWOW64\EhStorShell.dll - ok
15:42:06.0071 6484 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
15:42:06.0071 6484 C:\Windows\SysWOW64\ntshrui.dll - ok
15:42:06.0081 6484 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
15:42:06.0081 6484 C:\Windows\SysWOW64\slc.dll - ok
15:42:06.0081 6484 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
15:42:06.0081 6484 C:\Windows\SysWOW64\imageres.dll - ok
15:42:06.0091 6484 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
15:42:06.0091 6484 C:\Windows\System32\NapiNSP.dll - ok
15:42:06.0101 6484 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
15:42:06.0101 6484 C:\Windows\System32\npmproxy.dll - ok
15:42:06.0101 6484 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
15:42:06.0101 6484 C:\Windows\System32\pnrpnsp.dll - ok
15:42:06.0111 6484 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
15:42:06.0111 6484 C:\Windows\System32\winrnr.dll - ok
15:42:06.0121 6484 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
15:42:06.0121 6484 C:\Windows\SysWOW64\npmproxy.dll - ok
15:42:06.0121 6484 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
15:42:06.0121 6484 C:\Windows\System32\IPSECSVC.DLL - ok
15:42:06.0131 6484 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
15:42:06.0131 6484 C:\Windows\System32\FwRemoteSvr.dll - ok
15:42:06.0141 6484 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
15:42:06.0141 6484 C:\Windows\System32\pnpts.dll - ok
15:42:06.0151 6484 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
15:42:06.0151 6484 C:\Windows\System32\radardt.dll - ok
15:42:06.0151 6484 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
15:42:06.0151 6484 C:\Windows\System32\wdiasqmmodule.dll - ok
15:42:06.0161 6484 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
15:42:06.0161 6484 C:\Windows\System32\dimsjob.dll - ok
15:42:06.0171 6484 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
15:42:06.0171 6484 C:\Windows\System32\pautoenr.dll - ok
15:42:06.0178 6484 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
15:42:06.0178 6484 C:\Windows\System32\certcli.dll - ok
15:42:06.0185 6484 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
15:42:06.0185 6484 C:\Windows\System32\CertEnroll.dll - ok
15:42:06.0193 6484 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
15:42:06.0193 6484 C:\Windows\System32\mprmsg.dll - ok
15:42:06.0193 6484 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
15:42:06.0193 6484 C:\Windows\System32\ndiscapCfg.dll - ok
15:42:06.0203 6484 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
15:42:06.0203 6484 C:\Windows\System32\rascfg.dll - ok
15:42:06.0203 6484 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
15:42:06.0203 6484 C:\Windows\System32\tcpipcfg.dll - ok
15:42:06.0213 6484 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
15:42:06.0213 6484 C:\Windows\System32\wlaninst.dll - ok
15:42:06.0223 6484 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
15:42:06.0223 6484 C:\Windows\System32\wwaninst.dll - ok
15:42:06.0233 6484 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
15:42:06.0233 6484 C:\Windows\System32\spfileq.dll - ok
15:42:06.0233 6484 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\svchost.exe
15:42:06.0233 6484 C:\Windows\svchost.exe - ok
15:42:06.0243 6484 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
15:42:06.0243 6484 C:\Windows\SysWOW64\dsound.dll - ok
15:42:06.0253 6484 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
15:42:06.0253 6484 C:\Windows\SysWOW64\sxs.dll - ok
15:42:06.0253 6484 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
15:42:06.0253 6484 C:\Windows\SysWOW64\rasapi32.dll - ok
15:42:06.0263 6484 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
15:42:06.0263 6484 C:\Windows\SysWOW64\rasman.dll - ok
15:42:06.0273 6484 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
15:42:06.0273 6484 C:\Windows\SysWOW64\rtutils.dll - ok
15:42:06.0273 6484 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
15:42:06.0273 6484 C:\Windows\SysWOW64\wship6.dll - ok
15:42:06.0283 6484 [ 8509093B68014B21E2692ADFDD233BD3 ] C:\PROGRA~2\DAP\dapie.dll
15:42:06.0283 6484 C:\PROGRA~2\DAP\dapie.dll - ok
15:42:06.0283 6484 [ 6807B4DD2CCF60745C1333D6C17DE173 ] C:\PROGRA~2\DAP\mfc42.dll
15:42:06.0283 6484 C:\PROGRA~2\DAP\mfc42.dll - ok
15:42:06.0293 6484 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
15:42:06.0293 6484 C:\Windows\SysWOW64\msvcp60.dll - ok
15:42:06.0303 6484 [ 263963D93A3CA8F685EFA5966F1E6581 ] C:\Windows\SysWOW64\mshtml.dll
15:42:06.0303 6484 C:\Windows\SysWOW64\mshtml.dll - ok
15:42:06.0303 6484 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
15:42:06.0303 6484 C:\Windows\SysWOW64\mlang.dll - ok
15:42:06.0313 6484 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
15:42:06.0313 6484 C:\Windows\SysWOW64\msimtf.dll - ok
15:42:06.0323 6484 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
15:42:06.0323 6484 C:\Windows\SysWOW64\msls31.dll - ok
15:42:06.0323 6484 [ 69F42E40A0C4344939437D86A8893DA6 ] C:\Windows\SysWOW64\jscript9.dll
15:42:06.0323 6484 C:\Windows\SysWOW64\jscript9.dll - ok
15:42:06.0333 6484 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
15:42:06.0333 6484 C:\Windows\SysWOW64\d2d1.dll - ok
15:42:06.0343 6484 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
15:42:06.0343 6484 C:\Windows\System32\FntCache.dll - ok
15:42:06.0343 6484 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
15:42:06.0343 6484 C:\Windows\SysWOW64\d3d10warp.dll - ok
15:42:06.0353 6484 [ FD8493A7B479077A92DD71056E8467DA ] C:\Windows\SysWOW64\aticfx32.dll
15:42:06.0353 6484 C:\Windows\SysWOW64\aticfx32.dll - ok
15:42:06.0363 6484 [ 38A0BE38EB53510AB425E33EA0847AD6 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx
15:42:06.0363 6484 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx - ok
15:42:06.0363 6484 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
15:42:06.0363 6484 C:\Windows\SysWOW64\mscms.dll - ok
15:42:06.0373 6484 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
15:42:06.0373 6484 C:\Windows\SysWOW64\msxml3.dll - ok
15:42:06.0383 6484 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
15:42:06.0383 6484 C:\Windows\System32\esent.dll - ok
15:42:06.0383 6484 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
15:42:06.0383 6484 C:\Windows\System32\wbem\NCProv.dll - ok
15:42:06.0393 6484 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
15:42:06.0393 6484 C:\Windows\SysWOW64\credssp.dll - ok
15:42:06.0403 6484 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
15:42:06.0403 6484 C:\Windows\SysWOW64\schannel.dll - ok
15:42:06.0413 6484 [ E74C018279BB3FB2596AA4CEEA97EC0C ] C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll
15:42:06.0413 6484 C:\Program Files (x86)\Common Files\microsoft shared\VGX\VGX.dll - ok
15:42:06.0413 6484 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
15:42:06.0413 6484 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
15:42:06.0423 6484 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
15:42:06.0423 6484 C:\Windows\SysWOW64\dxtrans.dll - ok
15:42:06.0433 6484 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
15:42:06.0433 6484 C:\Windows\SysWOW64\ddrawex.dll - ok
15:42:06.0433 6484 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
15:42:06.0433 6484 C:\Windows\SysWOW64\ddraw.dll - ok
15:42:06.0443 6484 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
15:42:06.0443 6484 C:\Windows\SysWOW64\dciman32.dll - ok
15:42:06.0458 6484 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
15:42:06.0458 6484 C:\Windows\SysWOW64\dxtmsft.dll - ok
15:42:06.0463 6484 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
15:42:06.0463 6484 C:\Windows\SysWOW64\MMDevAPI.dll - ok
15:42:06.0468 6484 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
15:42:06.0468 6484 C:\Windows\SysWOW64\wdmaud.drv - ok
15:42:06.0475 6484 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
15:42:06.0475 6484 C:\Windows\SysWOW64\ksuser.dll - ok
15:42:06.0475 6484 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
15:42:06.0475 6484 C:\Windows\SysWOW64\avrt.dll - ok
15:42:06.0485 6484 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
15:42:06.0485 6484 C:\Windows\SysWOW64\AudioSes.dll - ok
15:42:06.0495 6484 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
15:42:06.0495 6484 C:\Windows\SysWOW64\msacm32.drv - ok
15:42:06.0495 6484 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
15:42:06.0495 6484 C:\Windows\SysWOW64\msacm32.dll - ok
15:42:06.0505 6484 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
15:42:06.0505 6484 C:\Windows\SysWOW64\midimap.dll - ok
15:42:06.0515 6484 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
15:42:06.0515 6484 C:\Windows\SysWOW64\d3d10.dll - ok
15:42:06.0515 6484 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:42:06.0515 6484 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
15:42:06.0525 6484 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
15:42:06.0525 6484 C:\Windows\SysWOW64\d3d10core.dll - ok
15:42:06.0525 6484 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
15:42:06.0525 6484 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
15:42:06.0535 6484 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
15:42:06.0535 6484 C:\Windows\SysWOW64\mscoree.dll - ok
15:42:06.0545 6484 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:42:06.0545 6484 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
15:42:06.0555 6484 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
15:42:06.0555 6484 C:\Windows\System32\msvcr100_clr0400.dll - ok
15:42:06.0555 6484 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
15:42:06.0555 6484 C:\Windows\System32\mscoree.dll - ok
15:42:06.0565 6484 [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
15:42:06.0565 6484 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll - ok
15:42:06.0575 6484 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
15:42:06.0575 6484 C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe - ok
15:42:06.0585 6484 [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
15:42:06.0585 6484 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
15:42:06.0595 6484 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:42:06.0595 6484 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:42:06.0605 6484 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
15:42:06.0605 6484 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
15:42:06.0618 6484 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
15:42:06.0618 6484 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
15:42:06.0624 6484 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
15:42:06.0624 6484 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
15:42:06.0636 6484 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
15:42:06.0636 6484 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
15:42:06.0644 6484 [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
15:42:06.0644 6484 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
15:42:06.0652 6484 [ 515D0E89532FA76488BE97427DE4207F ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.dll
15:42:06.0652 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.dll - ok
15:42:06.0661 6484 [ 54B21273AAF8A0BA1C06494FFB21BB29 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract.dll
15:42:06.0661 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract.dll - ok
15:42:06.0670 6484 [ E5210EB71E2017951050550067C30093 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll
15:42:06.0670 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll - ok
15:42:06.0678 6484 [ 26D2B399E87F2DF5DBCE2DAC24D94CFF ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.Common.dll
15:42:06.0678 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.Common.dll - ok
15:42:06.0687 6484 [ FE88E72F1B01EF8334E47EC44117559F ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\3.1.26.0__540d4816ead86321\Intuit.Spc.Esd.Core.dll
15:42:06.0687 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\3.1.26.0__540d4816ead86321\Intuit.Spc.Esd.Core.dll - ok
15:42:06.0691 6484 [ B37A7C2B855FA1523A6840246C250FB2 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll
15:42:06.0691 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll - ok
15:42:06.0699 6484 [ B89CB7F3F1A1E2807E708F5435DEB13D ] C:\Windows\assembly\GAC_MSIL\log4net\1.2.10.0__1b44e1d426115821\log4net.dll
15:42:06.0699 6484 C:\Windows\assembly\GAC_MSIL\log4net\1.2.10.0__1b44e1d426115821\log4net.dll - ok
15:42:06.0734 6484 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
15:42:06.0734 6484 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
15:42:06.0742 6484 [ 20F53F9DA0336C73616D124E48CC3387 ] C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
15:42:06.0742 6484 C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
15:42:06.0752 6484 [ 5A7A33F7F9DFC0C0A8B8E000F4D9D898 ] C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
15:42:06.0752 6484 C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - ok
15:42:06.0762 6484 [ 5B3FA17E1CD6FBBDF41AC34DAEECC256 ] C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
15:42:06.0762 6484 C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll - ok
15:42:06.0771 6484 [ F71A731E236FB55E3585DC5391D286D3 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Api.Net.dll
15:42:06.0771 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Api.Net.dll - ok
15:42:06.0776 6484 [ C0770E006D0556D359F586ED86EAD004 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.DataAccess.dll
15:42:06.0776 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.DataAccess.dll - ok
15:42:06.0786 6484 [ 12500E86FAFEB5CB22C0ABA370CFFFBD ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.BusinessLogic.dll
15:42:06.0786 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.BusinessLogic.dll - ok
15:42:06.0796 6484 [ 937FBD23997A91AF923D5E89286126BD ] C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.61.0__db937bc2d44ff139\System.Data.SQLite.DLL
15:42:06.0796 6484 C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.61.0__db937bc2d44ff139\System.Data.SQLite.DLL - ok
15:42:06.0804 6484 [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
15:42:06.0804 6484 C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
15:42:06.0812 6484 [ 5F3F1BF5F5B43293953FC915845910C4 ] C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
15:42:06.0812 6484 C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
15:42:06.0819 6484 [ 1D114E646E5CC8B6D18238EBA210F9AE ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll
15:42:06.0819 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll - ok
15:42:06.0826 6484 [ 6DB969DF540BC71722848940D180AC08 ] C:\Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
15:42:06.0826 6484 C:\Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll - ok
15:42:06.0834 6484 [ 68563AC389F92EE79F1C714288BA1DCE ] C:\Windows\SysWOW64\imgutil.dll
15:42:06.0834 6484 C:\Windows\SysWOW64\imgutil.dll - ok
15:42:06.0841 6484 [ 1D4DA021B0AD837B35AFB772CC7C636D ] C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
15:42:06.0841 6484 C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll - ok
15:42:06.0849 6484 [ BE210318FA6DA2A862BD41EA87E8CBE6 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
15:42:06.0849 6484 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
15:42:06.0881 6484 [ 676B3D8716B19DADBAA84E99785E71EC ] C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
15:42:06.0881 6484 C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
15:42:06.0888 6484 [ BC204CE4CD9D08D6B178DFC77095B850 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.WindowsFirewallUtilities\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.WindowsFirewallUtilities.dll
15:42:06.0888 6484 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.WindowsFirewallUtilities\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.WindowsFirewallUtilities.dll - ok
15:42:06.0896 6484 [ F68CAFF425A9F37E498193BDDC5CC652 ] C:\Windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
15:42:06.0896 6484 C:\Windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - ok
15:42:06.0903 6484 [ F5EA99BD43A762945547DBCBC119E9D4 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5baea82888a13fa558004b24e3b107cf\CustomMarshalers.ni.dll
15:42:06.0903 6484 C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5baea82888a13fa558004b24e3b107cf\CustomMarshalers.ni.dll - ok
15:42:06.0909 6484 [ C80DA476BFBAD97D874A0EFE037D7113 ] C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
15:42:06.0909 6484 C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
15:42:06.0917 6484 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
15:42:06.0917 6484 C:\Windows\System32\sppsvc.exe - ok
15:42:06.0924 6484 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
15:42:06.0924 6484 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
15:42:06.0932 6484 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
15:42:06.0932 6484 C:\Windows\System32\drivers\spsys.sys - ok
15:42:06.0939 6484 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
15:42:06.0939 6484 C:\Windows\System32\sppwinob.dll - ok
15:42:06.0946 6484 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
15:42:06.0946 6484 C:\Windows\System32\wmdrmdev.dll - ok
15:42:06.0957 6484 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
15:42:06.0957 6484 C:\Windows\System32\drmv2clt.dll - ok
15:42:06.0957 6484 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
15:42:06.0957 6484 C:\Windows\System32\mfplat.dll - ok
15:42:06.0967 6484 [ 8342F1887A221F28E0047F5748BAAC72 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
15:42:06.0967 6484 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
15:42:06.0977 6484 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
15:42:06.0977 6484 C:\Windows\System32\upnp.dll - ok
15:42:06.0977 6484 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
15:42:06.0977 6484 C:\Windows\System32\wscsvc.dll - ok
15:42:06.0987 6484 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
15:42:06.0987 6484 C:\Windows\System32\ssdpsrv.dll - ok
15:42:06.0987 6484 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
15:42:06.0987 6484 C:\Windows\System32\SearchIndexer.exe - ok
15:42:06.0997 6484 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
15:42:06.0997 6484 C:\Windows\System32\wmp.dll - ok
15:42:07.0007 6484 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
15:42:07.0007 6484 C:\Windows\System32\tquery.dll - ok
15:42:07.0017 6484 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
15:42:07.0017 6484 C:\Windows\System32\wuapi.dll - ok
15:42:07.0027 6484 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
15:42:07.0027 6484 C:\Windows\System32\cabinet.dll - ok
15:42:07.0037 6484 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
15:42:07.0037 6484 C:\Windows\System32\wups.dll - ok
15:42:07.0037 6484 [ 1A8FAA5D7FBEB599FCC8C1021FA72987 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\WSCStub.exe
15:42:07.0037 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\WSCStub.exe - ok
15:42:07.0073 6484 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
15:42:07.0073 6484 C:\Windows\System32\mssrch.dll - ok
15:42:07.0080 6484 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
15:42:07.0080 6484 C:\Windows\System32\sppobjs.dll - ok
15:42:07.0087 6484 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
15:42:07.0087 6484 C:\Windows\System32\msidle.dll - ok
15:42:07.0097 6484 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
15:42:07.0097 6484 C:\Windows\System32\wmploc.DLL - ok
15:42:07.0104 6484 [ F7220A36464885AC591C21544B47D443 ] C:\Program Files\Internet Explorer\ieproxy.dll
15:42:07.0104 6484 C:\Program Files\Internet Explorer\ieproxy.dll - ok
15:42:07.0109 6484 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
15:42:07.0109 6484 C:\Windows\System32\wmpps.dll - ok
15:42:07.0109 6484 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
15:42:07.0109 6484 C:\Windows\System32\wmpmde.dll - ok
15:42:07.0119 6484 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
15:42:07.0119 6484 C:\Windows\System32\WinSATAPI.dll - ok
15:42:07.0129 6484 [ B79515AFF098E5A56DFBD316152534DE ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
15:42:07.0129 6484 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
15:42:07.0139 6484 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
15:42:07.0139 6484 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
15:42:07.0139 6484 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
15:42:07.0139 6484 C:\Windows\System32\MSMPEG2ENC.DLL - ok
15:42:07.0149 6484 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
15:42:07.0149 6484 C:\Windows\System32\devenum.dll - ok
15:42:07.0159 6484 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
15:42:07.0159 6484 C:\Windows\System32\msdmo.dll - ok
15:42:07.0159 6484 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
15:42:07.0159 6484 C:\Windows\System32\upnphost.dll - ok
15:42:07.0169 6484 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:42:07.0169 6484 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:42:07.0179 6484 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
15:42:07.0179 6484 C:\Windows\System32\wbem\wmiprov.dll - ok
15:42:07.0179 6484 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
15:42:07.0179 6484 C:\Windows\SysWOW64\wscisvif.dll - ok
15:42:07.0189 6484 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
15:42:07.0189 6484 C:\Windows\System32\udhisapi.dll - ok
15:42:07.0199 6484 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
15:42:07.0199 6484 C:\Windows\SysWOW64\wscapi.dll - ok
15:42:07.0209 6484 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
15:42:07.0209 6484 C:\Windows\SysWOW64\wscproxystub.dll - ok
15:42:07.0209 6484 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
15:42:07.0209 6484 C:\Windows\System32\linkinfo.dll - ok
15:42:07.0219 6484 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
15:42:07.0219 6484 C:\Windows\System32\networkexplorer.dll - ok
15:42:07.0229 6484 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
15:42:07.0229 6484 C:\Windows\System32\drprov.dll - ok
15:42:07.0239 6484 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
15:42:07.0239 6484 C:\Windows\System32\ntlanman.dll - ok
15:42:07.0239 6484 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
15:42:07.0239 6484 C:\Windows\System32\davclnt.dll - ok
15:42:07.0249 6484 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
15:42:07.0249 6484 C:\Windows\System32\davhlpr.dll - ok
15:42:07.0249 6484 [ F76E31CD451E83142C311279F8247EF1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coSvcPlg.dll
15:42:07.0249 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coSvcPlg.dll - ok
15:42:07.0259 6484 [ 1A6F7C832BE552F67C3A034486A07FED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGLog.dll
15:42:07.0259 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGLog.dll - ok
15:42:07.0269 6484 [ 8ED53A57C7406E214666CCA031D9DCB6 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coFFPlgn.dll
15:42:07.0269 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coFFPlgn.dll - ok
15:42:07.0279 6484 [ 8ED53A57C7406E214666CCA031D9DCB6 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\coFFPlgn\components\coFFPlgn.dll
15:42:07.0279 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\coFFPlgn\components\coFFPlgn.dll - ok
15:42:07.0279 6484 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
15:42:07.0279 6484 C:\Windows\SysWOW64\actxprxy.dll - ok
15:42:07.0289 6484 [ 95F84EDCE6FC2DC3E2DF82126D4C9CB3 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccJobMgr.dll
15:42:07.0289 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccJobMgr.dll - ok
15:42:07.0299 6484 [ 66872F61C1BBC99B530B9D37B7A61025 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSubEng.dll
15:42:07.0299 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSubEng.dll - ok
15:42:07.0309 6484 [ 1314E60A6339CD88BCBEACF702A8C8C7 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccEmlPxy.dll
15:42:07.0309 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccEmlPxy.dll - ok
15:42:07.0309 6484 [ 5A79B1723A1128E57239B5A713377E8E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Iron.dll
15:42:07.0309 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Iron.dll - ok
15:42:07.0319 6484 [ C3C852983195ECC7CFF639F2244BC3ED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buSvc.dll
15:42:07.0319 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buSvc.dll - ok
15:42:07.0329 6484 [ 2146C133412A3E09E60D7D08CDD387DF ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRedir.dll
15:42:07.0329 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRedir.dll - ok
15:42:07.0329 6484 [ 15D3A8832309A367002168A982158D60 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buComm.dll
15:42:07.0329 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buComm.dll - ok
15:42:07.0339 6484 [ 065878E29EBCC5B2C901AC92229D3167 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BuEng.dll
15:42:07.0339 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BuEng.dll - ok
15:42:07.0349 6484 [ 6A9A804175AC6015F8843838D1FB9970 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SNDSvc.dll
15:42:07.0349 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SNDSvc.dll - ok
15:42:07.0359 6484 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
15:42:07.0359 6484 C:\Windows\System32\mssprxy.dll - ok
15:42:07.0359 6484 [ A10F446963B39EEAB50868944A3D8E99 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRdrSv.dll
15:42:07.0359 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRdrSv.dll - ok
15:42:07.0369 6484 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:42:07.0369 6484 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:42:07.0379 6484 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
15:42:07.0379 6484 C:\Windows\SysWOW64\mssprxy.dll - ok
15:42:07.0379 6484 [ CF1D48D820FADE9BC1A0E1C1D7FA53B3 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\hncore.dll
15:42:07.0379 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\hncore.dll - ok
15:42:07.0389 6484 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:42:07.0389 6484 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:42:07.0399 6484 [ 26E049064069ADAAE40468E4B144873D ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AppMgr32.dll
15:42:07.0399 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AppMgr32.dll - ok
15:42:07.0399 6484 [ 04615EAAA929586096AE7A4D348915F1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NCW.dll
15:42:07.0399 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NCW.dll - ok
15:42:07.0409 6484 [ 006F4A78D6C0014F18D638E77974E36B ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVModule.dll
15:42:07.0409 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVModule.dll - ok
15:42:07.0419 6484 [ CD55F6DA8474D136E95C5B38848518C9 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DataStor.dll
15:42:07.0419 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DataStor.dll - ok
15:42:07.0429 6484 [ A329EE5A003E92538DF55D72CAF17A80 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DefUtDCD.dll
15:42:07.0429 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DefUtDCD.dll - ok
15:42:07.0439 6484 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\SysWOW64\ktmw32.dll
15:42:07.0439 6484 C:\Windows\SysWOW64\ktmw32.dll - ok
15:42:07.0439 6484 [ FFC9128367BA19F175562CAFE23BAF8F ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ducclib.dll
15:42:07.0439 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ducclib.dll - ok
15:42:07.0455 6484 [ CFC429263ED9F389D7A80D9D66904E4C ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltPE.dll
15:42:07.0455 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltPE.dll - ok
15:42:07.0464 6484 [ 85CF4109D0142C38F0F22DA6A1941D31 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPSVC32.dll
15:42:07.0464 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPSVC32.dll - ok
15:42:07.0471 6484 [ FFBE713990C5CA6A444A94B055A173EF ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVifc.dll
15:42:07.0472 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVifc.dll - ok
15:42:07.0478 6484 [ 5E20B3E042A42EFEC419C3E74817FFE4 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\sqsvc.dll
15:42:07.0478 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\sqsvc.dll - ok
15:42:07.0487 6484 [ 14D289F63D9538306CB560C4CD12172F ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSxpx86.dll
15:42:07.0487 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSxpx86.dll - ok
15:42:07.0494 6484 [ CABD19355BB8A1E55B25F4941386CEFD ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coDataPr.dll
15:42:07.0495 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coDataPr.dll - ok
15:42:07.0502 6484 [ EF2415D4AFB1488FE6FAECB781E5B927 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coShdObj.dll
15:42:07.0502 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coShdObj.dll - ok
15:42:07.0510 6484 [ 876AFFC7ED37A39109E85E32947ABBF7 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVENG32.DLL
15:42:07.0510 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVENG32.DLL - ok
15:42:07.0518 6484 [ 35CDEEF8027CA2B8CB3414D3E27C383E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isPwd.dll
15:42:07.0518 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isPwd.dll - ok
15:42:07.0526 6484 [ C5A469C70BEDDB361BD3F2084552C835 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buDataCl.dll
15:42:07.0526 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buDataCl.dll - ok
15:42:07.0533 6484 [ F4ADADBB0A2B560D4F2AAB5DA623E5BE ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\tuDataPr.dll
15:42:07.0533 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\tuDataPr.dll - ok
15:42:07.0537 6484 [ A96A8FDD7D35F55DF08A8CEC067334ED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVMail.dll
15:42:07.0537 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVMail.dll - ok
15:42:07.0541 6484 [ 28F02728FF78C7503E3579F595DF9897 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buProv.dll
15:42:07.0541 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buProv.dll - ok
15:42:07.0551 6484 [ 378A0748DE5ADF90BF9DB897DA8564E6 ] C:\Windows\System32\drivers\N360x64\1403000.024\srtsp64.sys
15:42:07.0551 6484 C:\Windows\System32\drivers\N360x64\1403000.024\srtsp64.sys - ok
15:42:07.0551 6484 [ 4FC36B1BA8C8642EDD310A93D36008B1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gwrks32.dll
15:42:07.0551 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gwrks32.dll - ok
15:42:07.0561 6484 [ 00120204D347C4FECE76F18E2A2EE295 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gearaw32.dll
15:42:07.0561 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gearaw32.dll - ok
15:42:07.0571 6484 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ex64.sys
15:42:07.0571 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ex64.sys - ok
15:42:07.0581 6484 [ 88A2F45CE66B904285978D6BB13AFEB2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\eng64.sys
15:42:07.0581 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\eng64.sys - ok
15:42:07.0581 6484 [ 176E34260B7BC6DDD3440EE0E4605E20 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asEngine.dll
15:42:07.0581 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asEngine.dll - ok
15:42:07.0591 6484 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
15:42:07.0591 6484 C:\Windows\System32\en-US\tquery.dll.mui - ok
15:42:07.0601 6484 [ 34172E5FCBFA3AADB3DA7A93777D46EB ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QSPlugin.dll
15:42:07.0601 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QSPlugin.dll - ok
15:42:07.0601 6484 [ 7748C469C411D4AFAEA94EF8410C8044 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMS.dll
15:42:07.0601 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMS.dll - ok
15:42:07.0611 6484 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
15:42:07.0611 6484 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
15:42:07.0621 6484 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
15:42:07.0621 6484 C:\Windows\SysWOW64\wbemcomn.dll - ok
15:42:07.0631 6484 [ 1FD37C00535502429DD964EC53D66FB8 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHSvcPlg.dll
15:42:07.0631 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHSvcPlg.dll - ok
15:42:07.0631 6484 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
15:42:07.0631 6484 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
15:42:07.0641 6484 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
15:42:07.0641 6484 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
15:42:07.0651 6484 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
15:42:07.0651 6484 C:\Windows\SysWOW64\ntdsapi.dll - ok
15:42:07.0651 6484 [ 3008E92ACE0A5BFF69532AD78F2AB894 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SpocClnt.dll
15:42:07.0651 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SpocClnt.dll - ok
15:42:07.0661 6484 [ 09362D91CF5631EBB1C99276E1DCDAF2 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DSCli.dll
15:42:07.0661 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DSCli.dll - ok
15:42:07.0671 6484 [ E3B15688F26049B981F19517EF46D57B ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SQLite.dll
15:42:07.0671 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SQLite.dll - ok
15:42:07.0681 6484 [ 5764150E8FD9B86F797EF2BF4C1ECBDC ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Comm.dll
15:42:07.0681 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Comm.dll - ok
15:42:07.0681 6484 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
15:42:07.0681 6484 C:\Windows\SysWOW64\samcli.dll - ok
15:42:07.0691 6484 [ 0B4A811CC972F37F0ED607345B74F317 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMJ.dll
15:42:07.0691 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMJ.dll - ok
15:42:07.0701 6484 [ DBEC1C7A74D22B09D4BADEB37909486D ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\naHelper.dll
15:42:07.0701 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\naHelper.dll - ok
15:42:07.0701 6484 [ 04B12B3456589866291571AC74CE63F2 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ProxyClt.dll
15:42:07.0701 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ProxyClt.dll - ok
15:42:07.0711 6484 [ C5D664FCEFE3B7E1541B38529A9E994A ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IPSPlug.dll
15:42:07.0711 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IPSPlug.dll - ok
15:42:07.0721 6484 [ CEEE7412086DC9ED25BCFA60B055A140 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ISDataSv.dll
15:42:07.0721 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ISDataSv.dll - ok
15:42:07.0731 6484 [ BF1BE2625743A3B02D829572FA810C79 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHEngine.dll
15:42:07.0731 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHEngine.dll - ok
15:42:07.0731 6484 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
15:42:07.0731 6484 C:\Windows\SysWOW64\wshqos.dll - ok
15:42:07.0741 6484 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
15:42:07.0741 6484 C:\Windows\System32\wbem\WMIADAP.exe - ok
15:42:07.0751 6484 [ 3193932027850726C0CA2E06F401D629 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWCore.dll
15:42:07.0751 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWCore.dll - ok
15:42:07.0751 6484 [ 18F2D656D28363939DEE16ADE2F7F127 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHClient.dll
15:42:07.0751 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHClient.dll - ok
15:42:07.0761 6484 [ 34E1BA63F0F73893FEAAFB67B7D027D8 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWGenPlg.dll
15:42:07.0761 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWGenPlg.dll - ok
15:42:07.0775 6484 [ 15D19A4FEABA2DA7109F0111C6F4C461 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asHelper.dll
15:42:07.0775 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asHelper.dll - ok
15:42:07.0783 6484 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
15:42:07.0783 6484 C:\Windows\System32\loadperf.dll - ok
15:42:07.0790 6484 [ D3B5CF62C53FCBFAEF12404A8CCF27C1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asoehook.dll
15:42:07.0790 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asoehook.dll - ok
15:42:07.0793 6484 [ 15542082693D7BE4C7F44C7BE3CB3194 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPAPP32.dll
15:42:07.0793 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPAPP32.dll - ok
15:42:07.0803 6484 [ 9255022EAB2F58881109F63EC293F423 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buUIPlg.dll
15:42:07.0803 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buUIPlg.dll - ok
15:42:07.0803 6484 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
15:42:07.0803 6484 C:\Windows\SysWOW64\taskschd.dll - ok
15:42:07.0813 6484 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
15:42:07.0813 6484 C:\Windows\SysWOW64\wlanapi.dll - ok
15:42:07.0823 6484 [ 69C7E5950B4BDC2141521DC9105EE565 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltAlDis.dll
15:42:07.0823 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltAlDis.dll - ok
15:42:07.0833 6484 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
15:42:07.0833 6484 C:\Windows\SysWOW64\wlanutil.dll - ok
15:42:07.0943 6484 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
15:42:07.0943 6484 C:\Windows\SysWOW64\xmllite.dll - ok
15:42:07.0953 6484 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
15:42:07.0953 6484 C:\Windows\System32\wbem\cimwin32.dll - ok
15:42:07.0963 6484 [ 34F34566FF42855D45A33F904C3074ED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSesAl.dll
15:42:07.0963 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSesAl.dll - ok
15:42:07.0963 6484 [ 3184278B3FC0CA30F51ACE0E1B8B4302 ] C:\Program Files (x86)\Norton 360\MUI\20.3.0.36\09\01\cltRes.loc
15:42:07.0963 6484 C:\Program Files (x86)\Norton 360\MUI\20.3.0.36\09\01\cltRes.loc - ok
15:42:07.0973 6484 [ 45A93316C3C40C75FC82F7BD302966A8 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWHelper.dll
15:42:07.0973 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWHelper.dll - ok
15:42:07.0983 6484 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
15:42:07.0983 6484 C:\Windows\System32\framedynos.dll - ok
15:42:07.0993 6484 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
15:42:07.0993 6484 C:\Windows\SysWOW64\samlib.dll - ok
15:42:07.0993 6484 [ 43A64651D79385F30923B86251BA9206 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coActMgr.dll
15:42:07.0993 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coActMgr.dll - ok
15:42:08.0003 6484 [ 45D5610E63EA3EAFCE94B12EC3F3EF7E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\wincfi39.dll
15:42:08.0003 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\wincfi39.dll - ok
15:42:08.0013 6484 [ 1087649B78D941BFF585E079D8B4D39A ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SDKCmn.dll
15:42:08.0013 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SDKCmn.dll - ok
15:42:08.0013 6484 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\SysWOW64\prnfldr.dll
15:42:08.0013 6484 C:\Windows\SysWOW64\prnfldr.dll - ok
15:42:08.0023 6484 [ 5B244432E3F54E9D9B74B4BC8361B3DF ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiAlert.dll
15:42:08.0023 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiAlert.dll - ok
15:42:08.0033 6484 [ 996C6E958FD4981C2C44F3C754A23F44 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IDSaux.dll
15:42:08.0033 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IDSaux.dll - ok
15:42:08.0043 6484 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
15:42:08.0043 6484 C:\Windows\SysWOW64\linkinfo.dll - ok
15:42:08.0053 6484 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IPSFFPl.dll
15:42:08.0053 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IPSFFPl.dll - ok
15:42:08.0073 6484 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
15:42:08.0073 6484 C:\Windows\System32\AudioSes.dll - ok
15:42:08.0096 6484 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\IPSFFPlgn\components\ipsffpl.dll
15:42:08.0096 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\IPSFFPlgn\components\ipsffpl.dll - ok
15:42:08.0116 6484 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
15:42:08.0116 6484 C:\Windows\System32\AudioEng.dll - ok
15:42:08.0135 6484 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
15:42:08.0136 6484 C:\Windows\System32\AUDIOKSE.dll - ok
15:42:08.0145 6484 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
15:42:08.0145 6484 C:\Windows\System32\ksuser.dll - ok
15:42:08.0156 6484 [ B4AD112D9D4626923650218C9BF88250 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\UserCtxt.dll
15:42:08.0156 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\UserCtxt.dll - ok
15:42:08.0176 6484 [ 8EBC5E8EF4230DA59FE10F21F11DE93B ] C:\Windows\System32\RtkAPO64.dll
15:42:08.0176 6484 C:\Windows\System32\RtkAPO64.dll - ok
15:42:08.0186 6484 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
15:42:08.0186 6484 C:\Windows\System32\WMALFXGFXDSP.dll - ok
15:42:08.0214 6484 [ C9A2D460FD5E409C9320B4CE68A81549 ] C:\Windows\SysWOW64\vbscript.dll
15:42:08.0214 6484 C:\Windows\SysWOW64\vbscript.dll - ok
15:42:08.0226 6484 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
15:42:08.0226 6484 C:\Windows\System32\wuaueng.dll - ok
15:42:08.0244 6484 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
15:42:08.0244 6484 C:\Windows\System32\mspatcha.dll - ok
15:42:08.0253 6484 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
15:42:08.0253 6484 C:\Windows\System32\SearchProtocolHost.exe - ok
15:42:08.0268 6484 [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\SysWOW64\wmp.dll
15:42:08.0268 6484 C:\Windows\SysWOW64\wmp.dll - ok
15:42:08.0286 6484 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
15:42:08.0287 6484 C:\Windows\System32\msshooks.dll - ok
15:42:08.0297 6484 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
15:42:08.0297 6484 C:\Windows\System32\SearchFilterHost.exe - ok
15:42:08.0312 6484 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
15:42:08.0313 6484 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
15:42:08.0326 6484 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
15:42:08.0326 6484 C:\Windows\System32\mssph.dll - ok
15:42:08.0342 6484 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
15:42:08.0342 6484 C:\Windows\System32\mapi32.dll - ok
15:42:08.0354 6484 [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\SysWOW64\wmploc.DLL
15:42:08.0354 6484 C:\Windows\SysWOW64\wmploc.DLL - ok
15:42:08.0367 6484 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
15:42:08.0367 6484 C:\Windows\System32\wups2.dll - ok
15:42:08.0382 6484 [ CDEBD55FFBDA3889AA2A8CE52B9DC097 ] C:\Windows\System32\sdclt.exe
15:42:08.0382 6484 C:\Windows\System32\sdclt.exe - ok
15:42:08.0393 6484 [ 8CE1C165396F2453012B3E23ADD9DF76 ] C:\Windows\System32\ReAgent.dll
15:42:08.0393 6484 C:\Windows\System32\ReAgent.dll - ok
15:42:08.0404 6484 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
15:42:08.0404 6484 C:\Windows\System32\spp.dll - ok
15:42:08.0419 6484 [ 11C405A2DCF38E098316FD904A4FB662 ] C:\Windows\System32\sdengin2.dll
15:42:08.0419 6484 C:\Windows\System32\sdengin2.dll - ok
15:42:08.0431 6484 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
15:42:08.0431 6484 C:\Windows\System32\msi.dll - ok
15:42:08.0440 6484 [ 6EA4234DC55346E0709560FE7C2C1972 ] C:\Windows\System32\sdrsvc.dll
15:42:08.0440 6484 C:\Windows\System32\sdrsvc.dll - ok
15:42:08.0450 6484 [ E7FBBF3193E248EE05CBC9562810C44A ] C:\Windows\System32\sxshared.dll
15:42:08.0450 6484 C:\Windows\System32\sxshared.dll - ok
15:42:08.0460 6484 [ 55BA6C87FFB2C478E1C9351FA631CC1A ] C:\Windows\System32\sxproxy.dll
15:42:08.0460 6484 C:\Windows\System32\sxproxy.dll - ok
15:42:08.0470 6484 [ F8E4E9839D4278A5F3F77E8101D899C4 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QBackup.dll
15:42:08.0470 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QBackup.dll - ok
15:42:08.0490 6484 [ EC6F5E416749AC9CC17DBE4EB5687625 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccScanW.dll
15:42:08.0490 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccScanW.dll - ok
15:42:08.0500 6484 [ F890C197ADF21D08DBA4643C9AA54B9F ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ecmldr32.DLL
15:42:08.0500 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ecmldr32.DLL - ok
15:42:08.0510 6484 [ D66D82989DCF0D0C269DC21E413E2208 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ECMSVR32.DLL
15:42:08.0510 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ECMSVR32.DLL - ok
15:42:08.0520 6484 [ 956019F9950947A06389BAA6BE8438CA ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVEX32A.DLL
15:42:08.0520 6484 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVEX32A.DLL - ok
15:42:08.0530 6484 [ 1824AB2AE5C135014741802CAD008EF0 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IMCfg.dll
15:42:08.0530 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IMCfg.dll - ok
15:42:08.0550 6484 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
15:42:08.0550 6484 C:\Windows\SysWOW64\pdh.dll - ok
15:42:08.0560 6484 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
15:42:08.0560 6484 C:\Windows\System32\security.dll - ok
15:42:08.0570 6484 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
15:42:08.0570 6484 C:\Windows\System32\browcli.dll - ok
15:42:08.0590 6484 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
15:42:08.0590 6484 C:\Windows\System32\schedcli.dll - ok
15:42:08.0600 6484 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
15:42:08.0600 6484 C:\Windows\System32\wbem\wmipcima.dll - ok
15:42:08.0610 6484 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
15:42:08.0610 6484 C:\Windows\System32\wmi.dll - ok
15:42:08.0627 6484 [ A5C14075B571AF1C9592595BE724D9D2 ] C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
15:42:08.0627 6484 C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll - ok
15:42:08.0635 6484 [ 7C986D3EAD437EAB009303C69D5EB883 ] C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\agcore.dll
15:42:08.0635 6484 C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\agcore.dll - ok
15:42:08.0642 6484 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
15:42:08.0642 6484 C:\Windows\System32\wuauclt.exe - ok
15:42:08.0652 6484 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
15:42:08.0652 6484 C:\Windows\System32\wucltux.dll - ok
15:42:08.0672 6484 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
15:42:08.0672 6484 C:\Windows\System32\msimg32.dll - ok
15:42:08.0682 6484 [ D25002C745D2638A7FA46A5CE552DB50 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\avScnTsk.dll
15:42:08.0682 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\avScnTsk.dll - ok
15:42:08.0692 6484 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
15:42:08.0692 6484 C:\Windows\SysWOW64\sfc.dll - ok
15:42:08.0702 6484 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
15:42:08.0702 6484 C:\Windows\SysWOW64\sfc_os.dll - ok
15:42:08.0722 6484 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
15:42:08.0722 6484 C:\Windows\SysWOW64\devrtl.dll - ok
15:42:08.0732 6484 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
15:42:08.0732 6484 C:\Windows\System32\ie4uinit.exe - ok
15:42:08.0742 6484 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
15:42:08.0742 6484 C:\Windows\System32\iedkcs32.dll - ok
15:42:08.0752 6484 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
15:42:08.0752 6484 C:\Windows\System32\timedate.cpl - ok
15:42:08.0762 6484 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
15:42:08.0762 6484 C:\Windows\System32\actxprxy.dll - ok
15:42:08.0782 6484 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
15:42:08.0782 6484 C:\Windows\System32\shdocvw.dll - ok
15:42:08.0792 6484 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
15:42:08.0792 6484 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
15:42:08.0802 6484 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
15:42:08.0802 6484 C:\Windows\System32\msftedit.dll - ok
15:42:08.0821 6484 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
15:42:08.0821 6484 C:\Windows\System32\msls31.dll - ok
15:42:08.0835 6484 [ E5DC4D49C90A70D7F848416915D39E49 ] C:\PROGRA~2\SOCIAL~1\MUITRA~1\PCMENV~1.DLL
15:42:08.0835 6484 C:\PROGRA~2\SOCIAL~1\MUITRA~1\PCMENV~1.DLL - ok
15:42:08.0847 6484 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
15:42:08.0847 6484 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
15:42:08.0862 6484 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
15:42:08.0862 6484 C:\Windows\System32\gameux.dll - ok
15:42:08.0873 6484 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
15:42:08.0873 6484 C:\Windows\System32\DeviceCenter.dll - ok
15:42:08.0881 6484 [ D5B34B65BC9FE32BE3C15E215507D22E ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:42:08.0881 6484 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
15:42:08.0884 6484 [ 1A493ED42BA0FA488518A79C3A96B46A ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
15:42:08.0884 6484 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
15:42:08.0894 6484 [ DC2755EB981280C312E7BE5EE8CF5D62 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
15:42:08.0894 6484 C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
15:42:08.0914 6484 [ E829C45F0D77852C43BE99C4B1BD215D ] C:\Windows\System32\ieframe.dll
15:42:08.0914 6484 C:\Windows\System32\ieframe.dll - ok
15:42:08.0924 6484 [ 0DC4F0282238AAF4F044626B1BFBB1D4 ] C:\Windows\System32\SynCOM.dll
15:42:08.0924 6484 C:\Windows\System32\SynCOM.dll - ok
15:42:08.0934 6484 [ 10D333207797686BBAEF0E4879CB0EFC ] C:\Windows\System32\SynTPAPI.dll
15:42:08.0934 6484 C:\Windows\System32\SynTPAPI.dll - ok
15:42:08.0954 6484 [ BE9320CEB453839E3C85615937C1D4F5 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
15:42:08.0954 6484 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
15:42:08.0967 6484 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
15:42:08.0967 6484 C:\Windows\System32\consent.exe - ok
15:42:08.0977 6484 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
15:42:08.0977 6484 C:\Windows\System32\msiltcfg.dll - ok
15:42:08.0987 6484 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
15:42:08.0987 6484 C:\Windows\SysWOW64\mfplat.dll - ok
15:42:08.0997 6484 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
15:42:08.0997 6484 C:\Windows\System32\stobject.dll - ok
15:42:09.0007 6484 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
15:42:09.0007 6484 C:\Windows\System32\batmeter.dll - ok
15:42:09.0017 6484 [ 1C46FC1AB600766B8554580204806E84 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
15:42:09.0027 6484 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe - ok
15:42:09.0037 6484 [ 9AA7C9E9CCB96F99C1D5349534253FE6 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccVrTrst.dll
15:42:09.0037 6484 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccVrTrst.dll - ok
15:42:09.0047 6484 [ 675E21013EA33011C5DD609BCA59D887 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccSet.dll
15:42:09.0057 6484 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccSet.dll - ok
15:42:09.0057 6484 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
15:42:09.0057 6484 C:\Windows\System32\wdmaud.drv - ok
15:42:09.0067 6484 [ 75EB974222F293159427F9A77A5F3C6A ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll
15:42:09.0067 6484 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll - ok
15:42:09.0085 6484 [ A8C05DD686FD7521914AAE742DECB0DA ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll
15:42:09.0085 6484 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll - ok
15:42:09.0101 6484 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
15:42:09.0101 6484 C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
15:42:09.0118 6484 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
15:42:09.0118 6484 C:\Windows\System32\prnfldr.dll - ok
15:42:09.0126 6484 [ E37A7354D3E135E61203BE0CFB90E978 ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
15:42:09.0126 6484 C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
15:42:09.0142 6484 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
15:42:09.0142 6484 C:\Windows\System32\msacm32.drv - ok
15:42:09.0155 6484 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
15:42:09.0155 6484 C:\Windows\System32\msacm32.dll - ok
15:42:09.0170 6484 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
15:42:09.0171 6484 C:\Windows\System32\midimap.dll - ok
15:42:09.0181 6484 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
15:42:09.0181 6484 C:\Windows\System32\DXP.dll - ok
15:42:09.0190 6484 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
15:42:09.0190 6484 C:\Windows\System32\Syncreg.dll - ok
15:42:09.0203 6484 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
15:42:09.0203 6484 C:\Windows\ehome\ehSSO.dll - ok
15:42:09.0216 6484 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
15:42:09.0216 6484 C:\Windows\System32\WPDShServiceObj.dll - ok
15:42:09.0228 6484 [ A1A6509F6D12AB2B435EF08CD4FD675E ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
15:42:09.0229 6484 C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
15:42:09.0237 6484 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
15:42:09.0237 6484 C:\Windows\System32\PortableDeviceTypes.dll - ok
15:42:09.0246 6484 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
15:42:09.0246 6484 C:\Windows\System32\ActionCenter.dll - ok
15:42:09.0260 6484 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
15:42:09.0260 6484 C:\Windows\System32\srchadmin.dll - ok
15:42:09.0265 6484 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
15:42:09.0265 6484 C:\Windows\System32\AltTab.dll - ok
15:42:09.0274 6484 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
15:42:09.0274 6484 C:\Windows\System32\FXSST.dll - ok
15:42:09.0283 6484 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
15:42:09.0283 6484 C:\Windows\System32\dsound.dll - ok
15:42:09.0291 6484 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
15:42:09.0292 6484 C:\Windows\System32\FXSAPI.dll - ok
15:42:09.0300 6484 [ EC40544DB5B5E096729A10792E8E7C71 ] C:\Windows\AppPatch\AcSpecfc.dll
15:42:09.0300 6484 C:\Windows\AppPatch\AcSpecfc.dll - ok
15:42:09.0312 6484 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
15:42:09.0312 6484 C:\Windows\System32\pnidui.dll - ok
15:42:09.0319 6484 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
15:42:09.0319 6484 C:\Windows\System32\opengl32.dll - ok
15:42:09.0326 6484 [ 522EEC6D2CAF10ADF7D9B6868A5BDEA9 ] C:\Program Files (x86)\Launch Manager\LManager.exe
15:42:09.0326 6484 C:\Program Files (x86)\Launch Manager\LManager.exe - ok
15:42:09.0340 6484 [ D20E62B845685D616E7DF720ABEB41A5 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
15:42:09.0340 6484 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
15:42:09.0348 6484 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
15:42:09.0348 6484 C:\Windows\AppPatch\AcLayers.dll - ok
15:42:09.0354 6484 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
15:42:09.0355 6484 C:\Windows\System32\glu32.dll - ok
15:42:09.0364 6484 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:42:09.0365 6484 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:42:09.0373 6484 [ 07DD9DCD1CC2840751A1F8772F3C0195 ] C:\Program Files\Microsoft Games\Chess\Chess.exe
15:42:09.0373 6484 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
15:42:09.0383 6484 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
15:42:09.0383 6484 C:\Windows\System32\ddraw.dll - ok
15:42:09.0391 6484 [ 1568FF282E268082C67CF0C3EBCC9179 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
15:42:09.0391 6484 C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe - ok
15:42:09.0400 6484 [ 95A3911AF69625A07D16B9EABDCFF212 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\_ispmres.dll
15:42:09.0400 6484 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\_ispmres.dll - ok
15:42:09.0409 6484 [ E66532FD491AD5604C36916715FBA092 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
15:42:09.0409 6484 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
15:42:09.0418 6484 [ C228AF86E86300E495AC1E0B4A326D22 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
15:42:09.0418 6484 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe - ok
15:42:09.0424 6484 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
15:42:09.0424 6484 C:\Windows\System32\QUTIL.DLL - ok
15:42:09.0433 6484 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:42:09.0433 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
15:42:09.0443 6484 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
15:42:09.0443 6484 C:\Windows\System32\dciman32.dll - ok
15:42:09.0452 6484 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
15:42:09.0452 6484 C:\Windows\System32\webcheck.dll - ok
15:42:09.0460 6484 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
15:42:09.0460 6484 C:\Windows\System32\oledlg.dll - ok
15:42:09.0470 6484 [ 7D58C9BDF9C0A3955BDCDE7387AD12AC ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
15:42:09.0470 6484 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe - ok
15:42:09.0478 6484 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
15:42:09.0478 6484 C:\Windows\System32\mlang.dll - ok
15:42:09.0479 6484 [ AB0A8849029B4CE1109BA4E86481AB4F ] C:\Program Files\Microsoft Games\Multiplayer\Checkers\chkrzm.exe
15:42:09.0479 6484 C:\Program Files\Microsoft Games\Multiplayer\Checkers\chkrzm.exe - ok
15:42:09.0489 6484 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
15:42:09.0489 6484 C:\Windows\System32\SyncCenter.dll - ok
15:42:09.0499 6484 [ 1266ABE8BE1A5CA57B2869FEED00C1E2 ] C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe
15:42:09.0499 6484 C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe - ok
15:42:09.0509 6484 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
15:42:09.0509 6484 C:\Windows\System32\SearchFolder.dll - ok
15:42:09.0519 6484 [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
15:42:09.0519 6484 C:\Windows\System32\StructuredQuery.dll - ok
15:42:09.0529 6484 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
15:42:09.0529 6484 C:\Windows\System32\imapi2.dll - ok
15:42:09.0529 6484 [ A07F12FA297F3F074D496B333C259AFA ] C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL
15:42:09.0529 6484 C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL - ok
15:42:09.0539 6484 [ D16903B9431F799877AD6DF13D16BDA0 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll
15:42:09.0539 6484 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\atl.dll - ok
15:42:09.0549 6484 [ 97A37A9A63D1E7C4F02D4C498DD08B68 ] C:\Windows\System32\RtkCfg64.dll
15:42:09.0549 6484 C:\Windows\System32\RtkCfg64.dll - ok
15:42:09.0563 6484 [ 031C370AFDFB87B92B1BEF6D6EBAD0F4 ] C:\Windows\SysWOW64\atiadlxy.dll
15:42:09.0563 6484 C:\Windows\SysWOW64\atiadlxy.dll - ok
15:42:09.0573 6484 [ 632A6D75FEEABC846EE9AEC33345EF34 ] C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL
15:42:09.0573 6484 C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL - ok
15:42:09.0581 6484 [ BEF8BE93965EC65C51D70030B9B6B058 ] C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe
15:42:09.0581 6484 C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - ok
15:42:09.0591 6484 [ 69259DD752862F5665413AFCFB4C0B0E ] C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL
15:42:09.0591 6484 C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL - ok
15:42:09.0591 6484 [ 9FBFE0DA99E0590AB50388018B531572 ] C:\Windows\System32\RtkHDM64.dll
15:42:09.0591 6484 C:\Windows\System32\RtkHDM64.dll - ok
15:42:09.0601 6484 [ A53F59BC46766CE79E407AB6F451100D ] C:\Program Files (x86)\Launch Manager\WND2FILE.DLL
15:42:09.0601 6484 C:\Program Files (x86)\Launch Manager\WND2FILE.DLL - ok
15:42:09.0611 6484 [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
15:42:09.0611 6484 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
15:42:09.0621 6484 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
15:42:09.0621 6484 C:\Windows\System32\bthprops.cpl - ok
15:42:09.0631 6484 [ 71FC112959B07D686E71541BD9D4F237 ] C:\Program Files (x86)\Launch Manager\PowerUtl.dll
15:42:09.0631 6484 C:\Program Files (x86)\Launch Manager\PowerUtl.dll - ok
15:42:09.0641 6484 [ A325C1DDE8913D168905408E89C0BE08 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe
15:42:09.0641 6484 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe - ok
15:42:09.0651 6484 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
15:42:09.0651 6484 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
15:42:09.0651 6484 [ 20D30D8717E9DFF90224B5AB37410D9D ] C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL
15:42:09.0651 6484 C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL - ok
15:42:09.0661 6484 [ A8524F6C3AFF774911BCA26AB8322602 ] C:\Program Files\Microsoft Games\Hearts\Hearts.exe
15:42:09.0661 6484 C:\Program Files\Microsoft Games\Hearts\Hearts.exe - ok
15:42:09.0671 6484 [ E503E15C88B4BBDA3F6345E34FED3E92 ] C:\Windows\System32\mssvp.dll
15:42:09.0671 6484 C:\Windows\System32\mssvp.dll - ok
15:42:09.0681 6484 [ FD5A0A28AAEA0421039242A9D592212B ] C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL
15:42:09.0681 6484 C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL - ok
15:42:09.0691 6484 [ 3B4C08A5C45492402761452A624F91F1 ] C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll
15:42:09.0691 6484 C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll - ok
15:42:09.0701 6484 [ C19AAD30985941B6B7E8D3A7BEFF715B ] C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
15:42:09.0701 6484 C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe - ok
15:42:09.0711 6484 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
15:42:09.0711 6484 C:\Windows\System32\hgcpl.dll - ok
15:42:09.0711 6484 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
15:42:09.0711 6484 C:\Windows\System32\rasdlg.dll - ok
15:42:09.0721 6484 [ F7F2F299DD5019C67D9FDDB18E5D3916 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
15:42:09.0721 6484 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
15:42:09.0731 6484 [ 2031DCC0083A134AF9451CD1402FFCE3 ] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
15:42:09.0731 6484 C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll - ok
15:42:09.0741 6484 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
15:42:09.0741 6484 C:\Windows\SysWOW64\oledlg.dll - ok
15:42:09.0751 6484 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
15:42:09.0751 6484 C:\Windows\System32\fdPHost.dll - ok
15:42:09.0761 6484 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
15:42:09.0761 6484 C:\Windows\System32\FDResPub.dll - ok
15:42:09.0761 6484 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
15:42:09.0761 6484 C:\Windows\System32\fdWSD.dll - ok
15:42:09.0771 6484 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
15:42:09.0771 6484 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
15:42:09.0781 6484 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
15:42:09.0781 6484 C:\Windows\System32\fdSSDP.dll - ok
15:42:09.0791 6484 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
15:42:09.0791 6484 C:\Windows\System32\WWanAPI.dll - ok
15:42:09.0801 6484 [ 063F592B4C0AE7F786BC1A1460FB380E ] C:\Program Files (x86)\Launch Manager\VistaVol.dll
15:42:09.0801 6484 C:\Program Files (x86)\Launch Manager\VistaVol.dll - ok
15:42:09.0811 6484 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
15:42:09.0811 6484 C:\Windows\System32\wwapi.dll - ok
15:42:09.0811 6484 [ 9AAADE86A4659A69CF5AA298C8AEEC22 ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe
15:42:09.0811 6484 C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok
15:42:09.0821 6484 [ 4860790FA0F039A2C094BE4BF0CC5858 ] C:\Program Files (x86)\Launch Manager\CdDirIo.dll
15:42:09.0821 6484 C:\Program Files (x86)\Launch Manager\CdDirIo.dll - ok
15:42:09.0841 6484 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
15:42:09.0841 6484 C:\Windows\SysWOW64\sti.dll - ok
15:42:09.0841 6484 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
15:42:09.0841 6484 C:\Windows\System32\QAGENT.DLL - ok
15:42:09.0851 6484 [ 4879B16C91F56DCA20DDC598A96D476D ] C:\Program Files (x86)\Launch Manager\LmSmbKel.dll
15:42:09.0851 6484 C:\Program Files (x86)\Launch Manager\LmSmbKel.dll - ok
15:42:09.0861 6484 [ 4956C57498AD08724AE41920A81B6963 ] C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll
15:42:09.0861 6484 C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll - ok
15:42:09.0871 6484 [ 429839485D438C24E3434F191A234312 ] C:\Program Files (x86)\Launch Manager\aipflib.dll
15:42:09.0871 6484 C:\Program Files (x86)\Launch Manager\aipflib.dll - ok
15:42:09.0881 6484 [ 17386C6E17A26BB0C9765577E446E7D9 ] C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll
15:42:09.0881 6484 C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll - ok
15:42:09.0891 6484 [ 3E4E76D2AD42B4D9C868A381F51B683A ] C:\Program Files (x86)\Launch Manager\LMworker.exe
15:42:09.0891 6484 C:\Program Files (x86)\Launch Manager\LMworker.exe - ok
15:42:09.0901 6484 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
15:42:09.0901 6484 C:\Windows\System32\wbem\unsecapp.exe - ok
15:42:09.0901 6484 [ 163A95975E1D8819E653AA3E961371CA ] C:\Windows\twain_32.dll
15:42:09.0901 6484 C:\Windows\twain_32.dll - ok
15:42:09.0911 6484 [ EB596E72F63B7C31BE8DF75FA8829B3F ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe
15:42:09.0911 6484 C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok
15:42:09.0921 6484 [ 90A1A4F98D14B8C447B81190627530A3 ] C:\Program Files (x86)\VideoWebCamera\Image.dll
15:42:09.0921 6484 C:\Program Files (x86)\VideoWebCamera\Image.dll - ok
15:42:09.0931 6484 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
15:42:09.0931 6484 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
15:42:09.0941 6484 [ 07BDE9690FDC796705E8BB811F61237B ] C:\Program Files (x86)\Launch Manager\NTKCUtl.dll
15:42:09.0941 6484 C:\Program Files (x86)\Launch Manager\NTKCUtl.dll - ok
15:42:09.0951 6484 [ D17A7AD48BE4C91BBE7ECE419486A335 ] C:\Program Files (x86)\Launch Manager\MMDUtl.dll
15:42:09.0951 6484 C:\Program Files (x86)\Launch Manager\MMDUtl.dll - ok
15:42:09.0961 6484 [ 735623AAED32285D47FE6716D92ABC40 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll
15:42:09.0961 6484 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll - ok
15:42:09.0971 6484 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
15:42:09.0971 6484 C:\Windows\SysWOW64\WMVCORE.DLL - ok
15:42:09.0971 6484 [ 5BACFD51D926774C8DD8028BEC9B4374 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe
15:42:09.0971 6484 C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok
15:42:09.0981 6484 [ 7AE299BC0A183A37A5A2F7FC7AFF083C ] C:\Program Files\Windows Mail\wab.exe
15:42:09.0981 6484 C:\Program Files\Windows Mail\wab.exe - ok
15:42:09.0991 6484 [ 83E29D3D8C043B53AD4C7389EA4A1D15 ] C:\Program Files\WinRAR\WinRAR.exe
15:42:09.0991 6484 C:\Program Files\WinRAR\WinRAR.exe - ok
15:42:10.0001 6484 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
15:42:10.0001 6484 C:\Windows\SysWOW64\WMASF.DLL - ok
15:42:10.0011 6484 [ 964B05EE97D3E71F585F97FD93C2CD6B ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll
15:42:10.0011 6484 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll - ok
15:42:10.0021 6484 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
15:42:10.0021 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
15:42:10.0031 6484 [ 47424995FD8C8B254F74AECFDE8F2A1F ] C:\Program Files (x86)\VideoWebCamera\sy_Utility.dll
15:42:10.0031 6484 C:\Program Files (x86)\VideoWebCamera\sy_Utility.dll - ok
15:42:10.0041 6484 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
15:42:10.0041 6484 C:\Windows\SysWOW64\mfc42.dll - ok
15:42:10.0049 6484 [ 535010EEE51B6F8D029167F5C0A8589E ] C:\Windows\twain_32\escndv\wor630.ds
15:42:10.0049 6484 C:\Windows\twain_32\escndv\wor630.ds - ok
15:42:10.0058 6484 [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\Windows\twain_32\wiatwain.ds
15:42:10.0058 6484 C:\Windows\twain_32\wiatwain.ds - ok
15:42:10.0063 6484 [ 80279007CAB3549A5999348BD0C23732 ] C:\Windows\SysWOW64\wiadss.dll
15:42:10.0063 6484 C:\Windows\SysWOW64\wiadss.dll - ok
15:42:10.0073 6484 [ 322A96BFB36CEAA506F74D5F98CDA723 ] C:\Program Files\Windows Media Player\wmplayer.exe
15:42:10.0073 6484 C:\Program Files\Windows Media Player\wmplayer.exe - ok
15:42:10.0073 6484 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
15:42:10.0073 6484 C:\Windows\SysWOW64\odbc32.dll - ok
15:42:10.0083 6484 [ 715BFF236158F61C042928A53C0D5AA8 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
15:42:10.0083 6484 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
15:42:10.0093 6484 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
15:42:10.0093 6484 C:\Windows\SysWOW64\olepro32.dll - ok
15:42:10.0103 6484 [ 126B75D50756FE204283D418AE1A66DF ] C:\Windows\SysWOW64\msvcirt.dll
15:42:10.0103 6484 C:\Windows\SysWOW64\msvcirt.dll - ok
15:42:10.0113 6484 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
15:42:10.0113 6484 C:\Windows\SysWOW64\odbcint.dll - ok
15:42:10.0123 6484 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
15:42:10.0123 6484 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
15:42:10.0133 6484 [ 43B303A9C95C8C72E41A158460CBC880 ] C:\Program Files (x86)\VideoWebCamera\VWC_ENG.dll
15:42:10.0133 6484 C:\Program Files (x86)\VideoWebCamera\VWC_ENG.dll - ok
15:42:10.0133 6484 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
15:42:10.0133 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
15:42:10.0143 6484 [ 0F082AA29D17B61EE9B4D62D2300CD82 ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
15:42:10.0143 6484 C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
15:42:10.0153 6484 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
15:42:10.0153 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
15:42:10.0163 6484 [ 464822A1F51A2340FE8BE020A1EA3052 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
15:42:10.0163 6484 C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
15:42:10.0173 6484 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
15:42:10.0173 6484 C:\Windows\System32\fdProxy.dll - ok
15:42:10.0183 6484 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
15:42:10.0183 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
15:42:10.0197 6484 [ 2B574E990BE149402119FF0F020AB21F ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeaptopDeviceHook.dll
15:42:10.0198 6484 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeaptopDeviceHook.dll - ok
15:42:10.0203 6484 [ 137E0F3272D7CCCBEC96C394F768BB1F ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\ScoutPlushDeviceHook.dll
15:42:10.0203 6484 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\ScoutPlushDeviceHook.dll - ok
15:42:10.0214 6484 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
15:42:10.0214 6484 C:\Windows\System32\ListSvc.dll - ok
15:42:10.0229 6484 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
15:42:10.0229 6484 C:\Windows\System32\P2P.dll - ok
15:42:10.0233 6484 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
15:42:10.0233 6484 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
15:42:10.0245 6484 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
15:42:10.0245 6484 C:\Windows\System32\sti.dll - ok
15:42:10.0252 6484 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
15:42:10.0252 6484 C:\Windows\SysWOW64\wiatrace.dll - ok
15:42:10.0256 6484 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
15:42:10.0256 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
15:42:10.0264 6484 [ FB8B3E6BF6445C22F30DFC26B200E569 ] C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll
15:42:10.0264 6484 C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll - ok
15:42:10.0272 6484 [ 637124CDBFF5819CB8A8478838A33048 ] C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll
15:42:10.0272 6484 C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll - ok
15:42:10.0275 6484 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
15:42:10.0275 6484 C:\Windows\System32\shfolder.dll - ok
15:42:10.0285 6484 [ CCE5D71F19AB70D969F9819B5C88438D ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
15:42:10.0285 6484 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
15:42:10.0285 6484 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
15:42:10.0285 6484 C:\Windows\System32\IdListen.dll - ok
15:42:10.0295 6484 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
15:42:10.0295 6484 C:\Windows\System32\hgprint.dll - ok
15:42:10.0305 6484 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
15:42:10.0305 6484 C:\Windows\System32\pnrpsvc.dll - ok
15:42:10.0305 6484 [ 050E000D89D4FB750B124380020674E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll
15:42:10.0305 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll - ok
15:42:10.0315 6484 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
15:42:10.0315 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
15:42:10.0325 6484 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
15:42:10.0325 6484 C:\Windows\System32\p2psvc.dll - ok
15:42:10.0335 6484 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
15:42:10.0335 6484 C:\Windows\System32\P2PGraph.dll - ok
15:42:10.0335 6484 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
15:42:10.0335 6484 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
15:42:10.0345 6484 [ 27493CEB357FDC4126EAD5993662920E ] C:\Windows\System32\atipdl64.dll
15:42:10.0345 6484 C:\Windows\System32\atipdl64.dll - ok
15:42:10.0355 6484 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
15:42:10.0355 6484 C:\Windows\System32\drttransport.dll - ok
15:42:10.0365 6484 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
15:42:10.0365 6484 C:\Windows\System32\drt.dll - ok
15:42:10.0365 6484 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
15:42:10.0365 6484 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
15:42:10.0375 6484 [ 0BF4362E18DFC52382F418278DCC52C4 ] C:\Windows\System32\rdpdd.dll
15:42:10.0375 6484 C:\Windows\System32\rdpdd.dll - ok
15:42:10.0385 6484 [ FF6148B1C150DA05D35C68D143AD6DEA ] C:\Windows\System32\RDPENCDD.dll
15:42:10.0385 6484 C:\Windows\System32\RDPENCDD.dll - ok
15:42:10.0385 6484 [ A23A9301EE7152FB6776052E52BDE9D9 ] C:\Windows\System32\RDPREFDD.dll
15:42:10.0385 6484 C:\Windows\System32\RDPREFDD.dll - ok
15:42:10.0395 6484 [ 3C06536A9AA332E9E0CEBDE5A596822A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
15:42:10.0395 6484 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
15:42:10.0405 6484 [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
15:42:10.0405 6484 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
15:42:10.0405 6484 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\80869714.sys
15:42:10.0405 6484 C:\Windows\System32\drivers\80869714.sys - ok
15:42:10.0415 6484 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
15:42:10.0415 6484 C:\Windows\SysWOW64\riched20.dll - ok
15:42:10.0425 6484 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
15:42:10.0425 6484 C:\Windows\System32\wscinterop.dll - ok
15:42:10.0435 6484 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
15:42:10.0435 6484 C:\Windows\System32\wscapi.dll - ok
15:42:10.0435 6484 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
15:42:10.0435 6484 C:\Windows\System32\wscui.cpl - ok
15:42:10.0445 6484 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
15:42:10.0445 6484 C:\Windows\System32\werconcpl.dll - ok
15:42:10.0455 6484 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
15:42:10.0455 6484 C:\Windows\System32\wercplsupport.dll - ok
15:42:10.0455 6484 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
15:42:10.0455 6484 C:\Windows\System32\hcproviders.dll - ok
15:42:10.0465 6484 [ 3832D44C0811EED1338B34328EB493EB ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\symerr.exe
15:42:10.0465 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\symerr.exe - ok
15:42:10.0475 6484 [ 8E8C92DD50F6B34907813AFDC0C8F7DD ] C:\Windows\SysWOW64\dbgeng.dll
15:42:10.0475 6484 C:\Windows\SysWOW64\dbgeng.dll - ok
15:42:10.0475 6484 [ 152C31433FB198C23B1BB50DAE38ACB8 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMH.exe
15:42:10.0475 6484 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMH.exe - ok
15:42:10.0485 6484 [ B92E9318F7E4AEF633B8EC3A873565AF ] C:\Windows\SysWOW64\perfdisk.dll
15:42:10.0485 6484 C:\Windows\SysWOW64\perfdisk.dll - ok
15:42:10.0495 6484 [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe
15:42:10.0495 6484 C:\Windows\System32\wermgr.exe - ok
15:42:10.0495 6484 ============================================================
15:42:10.0495 6484 Scan finished
15:42:10.0495 6484 ============================================================
15:42:10.0515 6016 Detected object count: 6
15:42:10.0515 6016 Actual detected object count: 6
15:43:21.0551 6016 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
15:43:21.0551 6016 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:43:21.0551 6016 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
15:43:21.0551 6016 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:43:21.0561 6016 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - skipped by user
15:43:21.0561 6016 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:43:21.0561 6016 StatusAgent4 ( UnsignedFile.Multi.Generic ) - skipped by user
15:43:21.0561 6016 StatusAgent4 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:43:22.0671 6016 \Device\Harddisk0\DR0\# - copied to quarantine
15:43:22.0671 6016 \Device\Harddisk0\DR0 - copied to quarantine
15:43:22.0721 6016 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
15:43:22.0721 6016 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
15:43:22.0731 6016 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
15:43:22.0741 6016 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
15:43:22.0751 6016 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
15:43:22.0751 6016 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
15:43:22.0751 6016 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
15:43:22.0761 6016 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
15:43:22.0761 6016 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
15:43:22.0771 6016 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
15:43:22.0771 6016 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
15:43:22.0771 6016 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
15:43:22.0811 6016 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
15:43:22.0811 6016 \Device\Harddisk0\DR0 - ok
15:43:23.0111 6016 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
15:43:23.0111 6016 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:43:23.0111 6016 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
15:45:39.0671 2232 Deinitialize success


15:47:49.0668 3340 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:47:49.0824 3340 ============================================================
15:47:49.0824 3340 Current date / time: 2013/03/26 15:47:49.0824
15:47:49.0824 3340 SystemInfo:
15:47:49.0824 3340
15:47:49.0824 3340 OS Version: 6.1.7601 ServicePack: 1.0
15:47:49.0824 3340 Product type: Workstation
15:47:49.0824 3340 ComputerName: EVERYONE
15:47:49.0824 3340 UserName: James
15:47:49.0824 3340 Windows directory: C:\Windows
15:47:49.0824 3340 System windows directory: C:\Windows
15:47:49.0824 3340 Running under WOW64
15:47:49.0824 3340 Processor architecture: Intel x64
15:47:49.0824 3340 Number of processors: 2
15:47:49.0824 3340 Page size: 0x1000
15:47:49.0824 3340 Boot type: Normal boot
15:47:49.0824 3340 ============================================================
15:48:39.0269 3340 BG loaded
15:48:40.0424 3340 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:48:40.0502 3340 ============================================================
15:48:40.0502 3340 \Device\Harddisk0\DR0:
15:48:40.0517 3340 MBR partitions:
15:48:40.0517 3340 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C01A24, BlocksNum 0x32FCD
15:48:40.0517 3340 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C349F1, BlocksNum 0x237F98BF
15:48:40.0517 3340 ============================================================
15:48:40.0564 3340 C: <-> \Device\Harddisk0\DR0\Partition2
15:48:40.0580 3340 ============================================================
15:48:40.0580 3340 Initialize success
15:48:40.0580 3340 ============================================================
  • 0

#20
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello



I would like you to rerun TDSSKiller and this time when it gets to this part

\Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
\Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

I want you to select Delete this time instead of skip.


Gringo
  • 0

#21
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
ran malwarebytes and the log is below. have not check proformance of computer yet but typing is much better, internet was slow geting to this forum. going to run a second time and will post that log as well. will then check window updates, firewall and internet access as you noted before.

as a side note not sure if you can help with this but i have programs that have been trying to get rid of and unsucessful like winrar, and two old games that came with the computer and some other too... saids missing files or unable too at all... any suggestions.. thanks for alll the help.


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.094000 GHz
Memory total: 4021182464, free: 2723758080

------------ Kernel report ------------
03/26/2013 16:07:48
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\97006481.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMDS64.SYS
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMEFA64.SYS
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\DRIVERS\disk.sys
\SystemRoot\system32\DRIVERS\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\AtiPcie.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\ccSetx64.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\Ironx64.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\drivers\termdd.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMNETS.SYS
\??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
\SystemRoot\system32\drivers\N360x64\1403000.024\SRTSPX64.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\drivers\mssmbios.sys
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSvia64.sys
\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\amdppm.sys
\SystemRoot\system32\DRIVERS\atikmpag.sys
\SystemRoot\system32\DRIVERS\atikmdag.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\drivers\HDAudBus.sys
\SystemRoot\system32\DRIVERS\k57nd60a.sys
\SystemRoot\system32\DRIVERS\athrx.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\??\C:\Windows\system32\drivers\UBHelper.sys
\??\C:\Windows\system32\drivers\NTIDrvr.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\drivers\i8042prt.sys
\SystemRoot\system32\drivers\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\drivers\mouclass.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\drivers\swenum.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\NWADIenum.sys
\SystemRoot\system32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\RtHDMIVX.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_msahci.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\drivers\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\DRIVERS\lirsgt.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\drivers\ipnat.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SRTSP64.SYS
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\EX64.SYS
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ENG64.SYS
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\Wldap32.dll
\Windows\System32\gdi32.dll
\Windows\System32\psapi.dll
\Windows\System32\wininet.dll
\Windows\System32\shell32.dll
\Windows\System32\advapi32.dll
\Windows\System32\msvcrt.dll
\Windows\System32\setupapi.dll
\Windows\System32\normaliz.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\difxapi.dll
\Windows\System32\user32.dll
\Windows\System32\nsi.dll
\Windows\System32\imm32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\lpk.dll
\Windows\System32\oleaut32.dll
\Windows\System32\usp10.dll
\Windows\System32\ole32.dll
\Windows\System32\clbcatq.dll
\Windows\System32\comdlg32.dll
\Windows\System32\urlmon.dll
\Windows\System32\ws2_32.dll
\Windows\System32\sechost.dll
\Windows\System32\shlwapi.dll
\Windows\System32\kernel32.dll
\Windows\System32\msctf.dll
\Windows\System32\iertutil.dll
\Windows\System32\devobj.dll
\Windows\System32\KernelBase.dll
\Windows\System32\wintrust.dll
\Windows\System32\crypt32.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\comctl32.dll
\Windows\System32\msasn1.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa8004310060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\
Lower Device Object: 0xfffffa800429f680
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\ataport.sys (0x0)
Load Function returned 0x0
Downloaded database version: v2013.03.26.13
Downloaded database version: v2013.03.25.01
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 3
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa8004310060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8004310b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8004310060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800429f680, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a01238f3c0, 0xfffffa8004310060, 0xfffffa8006013090
Lower DeviceData: 0xfffff8a001654810, 0xfffffa800429f680, 0xfffffa8003683d10
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 4A838FF8

Partition information:

Partition 0 type is Other (0x27)
Partition is NOT ACTIVE.
Partition starts at LBA: 63 Numsec = 29366757

Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 29366820 Numsec = 208845
Partition file system is NTFS
Partition is bootable

Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 29575665 Numsec = 595564735

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 320072933376 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-625122448-625142448)...
Done!
Performing system, memory and registry scan...
Infected: c:\Windows\svchost.exe --> [Trojan.Agent]
Infected: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|bak_Application --> [Hijacker.Application]
Infected: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|Application --> [Hijacker.Application]
Done!
Scan finished
Creating System Restore point...
Scheduling clean up...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Removal scheduling successful. System shutdown needed.
System shutdown occurred
=======================================


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.094000 GHz
Memory total: 4021182464, free: 2944057344

Removal queue found; removal started
Removing c:\Windows\svchost.exe...
Removal finished
=======================================
  • 0

#22
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

Soon I will have you download a program called Revo and you can use that to uninstall the programs you want removed


I would like you to rerun TDSSKiller and this time when it gets to this part

\Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
\Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

I want you to select Delete this time instead of skip.


Gringo
  • 0

#23
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
ok thanks, i will run that program now. I have not seen that high usage error in a while so it might gone. The second run of malwarebytes didnt come up with anything so no cleaning was done. so i guess the trojan and rootkits are gone. there is the report of the second run of malwarebytes just in case.


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.094000 GHz
Memory total: 4021182464, free: 2723758080

------------ Kernel report ------------
03/26/2013 16:07:48
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\97006481.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMDS64.SYS
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMEFA64.SYS
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\DRIVERS\disk.sys
\SystemRoot\system32\DRIVERS\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\AtiPcie.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\ccSetx64.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\Ironx64.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\drivers\termdd.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMNETS.SYS
\??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
\SystemRoot\system32\drivers\N360x64\1403000.024\SRTSPX64.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\drivers\mssmbios.sys
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSvia64.sys
\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\amdppm.sys
\SystemRoot\system32\DRIVERS\atikmpag.sys
\SystemRoot\system32\DRIVERS\atikmdag.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\drivers\HDAudBus.sys
\SystemRoot\system32\DRIVERS\k57nd60a.sys
\SystemRoot\system32\DRIVERS\athrx.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\??\C:\Windows\system32\drivers\UBHelper.sys
\??\C:\Windows\system32\drivers\NTIDrvr.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\drivers\i8042prt.sys
\SystemRoot\system32\drivers\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\drivers\mouclass.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\drivers\swenum.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\NWADIenum.sys
\SystemRoot\system32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\RtHDMIVX.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_msahci.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\drivers\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\DRIVERS\lirsgt.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\drivers\ipnat.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SRTSP64.SYS
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\EX64.SYS
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ENG64.SYS
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\Wldap32.dll
\Windows\System32\gdi32.dll
\Windows\System32\psapi.dll
\Windows\System32\wininet.dll
\Windows\System32\shell32.dll
\Windows\System32\advapi32.dll
\Windows\System32\msvcrt.dll
\Windows\System32\setupapi.dll
\Windows\System32\normaliz.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\difxapi.dll
\Windows\System32\user32.dll
\Windows\System32\nsi.dll
\Windows\System32\imm32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\lpk.dll
\Windows\System32\oleaut32.dll
\Windows\System32\usp10.dll
\Windows\System32\ole32.dll
\Windows\System32\clbcatq.dll
\Windows\System32\comdlg32.dll
\Windows\System32\urlmon.dll
\Windows\System32\ws2_32.dll
\Windows\System32\sechost.dll
\Windows\System32\shlwapi.dll
\Windows\System32\kernel32.dll
\Windows\System32\msctf.dll
\Windows\System32\iertutil.dll
\Windows\System32\devobj.dll
\Windows\System32\KernelBase.dll
\Windows\System32\wintrust.dll
\Windows\System32\crypt32.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\comctl32.dll
\Windows\System32\msasn1.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa8004310060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\
Lower Device Object: 0xfffffa800429f680
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\ataport.sys (0x0)
Load Function returned 0x0
Downloaded database version: v2013.03.26.13
Downloaded database version: v2013.03.25.01
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 3
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa8004310060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8004310b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8004310060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800429f680, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a01238f3c0, 0xfffffa8004310060, 0xfffffa8006013090
Lower DeviceData: 0xfffff8a001654810, 0xfffffa800429f680, 0xfffffa8003683d10
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 4A838FF8

Partition information:

Partition 0 type is Other (0x27)
Partition is NOT ACTIVE.
Partition starts at LBA: 63 Numsec = 29366757

Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 29366820 Numsec = 208845
Partition file system is NTFS
Partition is bootable

Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 29575665 Numsec = 595564735

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 320072933376 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-625122448-625142448)...
Done!
Performing system, memory and registry scan...
Infected: c:\Windows\svchost.exe --> [Trojan.Agent]
Infected: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|bak_Application --> [Hijacker.Application]
Infected: HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ASSOCIATIONS|Application --> [Hijacker.Application]
Done!
Scan finished
Creating System Restore point...
Scheduling clean up...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Removal scheduling successful. System shutdown needed.
System shutdown occurred
=======================================


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.094000 GHz
Memory total: 4021182464, free: 2944057344

Removal queue found; removal started
Removing c:\Windows\svchost.exe...
Removal finished
=======================================
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 9.0.8112.16421

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 2.094000 GHz
Memory total: 4021182464, free: 2499477504

------------ Kernel report ------------
03/26/2013 16:41:43
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\DRIVERS\compbatt.sys
\SystemRoot\system32\DRIVERS\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMDS64.SYS
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMEFA64.SYS
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\DRIVERS\disk.sys
\SystemRoot\system32\DRIVERS\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\AtiPcie.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\ccSetx64.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\Ironx64.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\drivers\termdd.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SYMNETS.SYS
\??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
\SystemRoot\system32\drivers\N360x64\1403000.024\SRTSPX64.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\drivers\mssmbios.sys
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSvia64.sys
\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
\??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\amdppm.sys
\SystemRoot\system32\DRIVERS\atikmpag.sys
\SystemRoot\system32\DRIVERS\atikmdag.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\drivers\HDAudBus.sys
\SystemRoot\system32\DRIVERS\k57nd60a.sys
\SystemRoot\system32\DRIVERS\athrx.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\??\C:\Windows\system32\drivers\UBHelper.sys
\??\C:\Windows\system32\drivers\NTIDrvr.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\drivers\i8042prt.sys
\SystemRoot\system32\drivers\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\drivers\mouclass.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\drivers\swenum.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\NWADIenum.sys
\SystemRoot\system32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\RtHDMIVX.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_msahci.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\drivers\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\DRIVERS\lirsgt.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\drivers\ipnat.sys
\SystemRoot\system32\drivers\N360x64\1403000.024\SRTSP64.SYS
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\EX64.SYS
\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ENG64.SYS
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\advapi32.dll
\Windows\System32\psapi.dll
\Windows\System32\comdlg32.dll
\Windows\System32\user32.dll
\Windows\System32\Wldap32.dll
\Windows\System32\wininet.dll
\Windows\System32\kernel32.dll
\Windows\System32\lpk.dll
\Windows\System32\difxapi.dll
\Windows\System32\shell32.dll
\Windows\System32\ws2_32.dll
\Windows\System32\gdi32.dll
\Windows\System32\imagehlp.dll
\Windows\System32\normaliz.dll
\Windows\System32\msctf.dll
\Windows\System32\sechost.dll
\Windows\System32\imm32.dll
\Windows\System32\setupapi.dll
\Windows\System32\clbcatq.dll
\Windows\System32\shlwapi.dll
\Windows\System32\nsi.dll
\Windows\System32\iertutil.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\ole32.dll
\Windows\System32\oleaut32.dll
\Windows\System32\urlmon.dll
\Windows\System32\usp10.dll
\Windows\System32\msvcrt.dll
\Windows\System32\devobj.dll
\Windows\System32\wintrust.dll
\Windows\System32\comctl32.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\crypt32.dll
\Windows\System32\msasn1.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa80042eb060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\
Lower Device Object: 0xfffffa800427a680
Lower Device Driver Name: \Driver\atapi\
Driver name found: atapi
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\ataport.sys (0x0)
Load Function returned 0x0
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 3
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa80042eb060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa80042ea5c0, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa80042eb060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa800427a680, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a0055fd310, 0xfffffa80042eb060, 0xfffffa8003b3e090
Lower DeviceData: 0xfffff8a0155821e0, 0xfffffa800427a680, 0xfffffa8005262e40
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 3
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 4A838FF8

Partition information:

Partition 0 type is Other (0x27)
Partition is NOT ACTIVE.
Partition starts at LBA: 63 Numsec = 29366757

Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 29366820 Numsec = 208845
Partition file system is NTFS
Partition is bootable

Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 29575665 Numsec = 595564735

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 320072933376 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-625122448-625142448)...
Done!
Performing system, memory and registry scan...
Done!
Scan finished
=======================================
  • 0

#24
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
I ran the tdsskiller a second time and selected delete on device\harddick0\dr0 line. It didnt give the option to reboot just back to the main user screen and gave scan resolts 5 threats, 1 neutralized and 12 quarantined. it had two reports which will post below. another side note can you tell me how to delete the quarantined stuff (or are you going to ask to do that when done)and should i delete this programs when we are done as well.

17:03:27.0997 6000 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:03:28.0684 6000 ============================================================
17:03:28.0684 6000 Current date / time: 2013/03/26 17:03:28.0684
17:03:28.0684 6000 SystemInfo:
17:03:28.0684 6000
17:03:28.0684 6000 OS Version: 6.1.7601 ServicePack: 1.0
17:03:28.0684 6000 Product type: Workstation
17:03:28.0684 6000 ComputerName: EVERYONE
17:03:28.0684 6000 UserName: James
17:03:28.0684 6000 Windows directory: C:\Windows
17:03:28.0684 6000 System windows directory: C:\Windows
17:03:28.0684 6000 Running under WOW64
17:03:28.0684 6000 Processor architecture: Intel x64
17:03:28.0684 6000 Number of processors: 2
17:03:28.0684 6000 Page size: 0x1000
17:03:28.0684 6000 Boot type: Normal boot
17:03:28.0684 6000 ============================================================
17:03:30.0744 6000 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:03:30.0760 6000 ============================================================
17:03:30.0760 6000 \Device\Harddisk0\DR0:
17:03:30.0760 6000 MBR partitions:
17:03:30.0760 6000 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C01A24, BlocksNum 0x32FCD
17:03:30.0760 6000 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C349F1, BlocksNum 0x237F98BF
17:03:30.0760 6000 ============================================================
17:03:30.0806 6000 C: <-> \Device\Harddisk0\DR0\Partition2
17:03:30.0806 6000 ============================================================
17:03:30.0806 6000 Initialize success
17:03:30.0806 6000 ============================================================
17:03:46.0812 5652 Deinitialize success

17:05:45.0444 3424 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:05:45.0553 3424 ============================================================
17:05:45.0553 3424 Current date / time: 2013/03/26 17:05:45.0553
17:05:45.0553 3424 SystemInfo:
17:05:45.0553 3424
17:05:45.0553 3424 OS Version: 6.1.7601 ServicePack: 1.0
17:05:45.0553 3424 Product type: Workstation
17:05:45.0553 3424 ComputerName: EVERYONE
17:05:45.0553 3424 UserName: James
17:05:45.0553 3424 Windows directory: C:\Windows
17:05:45.0553 3424 System windows directory: C:\Windows
17:05:45.0553 3424 Running under WOW64
17:05:45.0553 3424 Processor architecture: Intel x64
17:05:45.0553 3424 Number of processors: 2
17:05:45.0553 3424 Page size: 0x1000
17:05:45.0553 3424 Boot type: Normal boot
17:05:45.0553 3424 ============================================================
17:05:57.0838 3424 BG loaded
17:05:58.0928 3424 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:05:58.0948 3424 ============================================================
17:05:58.0948 3424 \Device\Harddisk0\DR0:
17:05:58.0988 3424 MBR partitions:
17:05:58.0988 3424 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C01A24, BlocksNum 0x32FCD
17:05:58.0988 3424 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C349F1, BlocksNum 0x237F98BF
17:05:58.0988 3424 ============================================================
17:05:59.0128 3424 C: <-> \Device\Harddisk0\DR0\Partition2
17:05:59.0128 3424 ============================================================
17:05:59.0128 3424 Initialize success
17:05:59.0128 3424 ============================================================
17:10:00.0584 5656 ============================================================
17:10:00.0584 5656 Scan started
17:10:00.0584 5656 Mode: Manual; SigCheck; TDLFS;
17:10:00.0584 5656 ============================================================
17:10:06.0840 5656 ================ Scan system memory ========================
17:10:06.0840 5656 System memory - ok
17:10:06.0840 5656 ================ Scan services =============================
17:10:07.0043 5656 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:10:07.0261 5656 1394ohci - ok
17:10:07.0308 5656 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:10:07.0355 5656 ACPI - ok
17:10:07.0417 5656 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:10:07.0542 5656 AcpiPmi - ok
17:10:07.0745 5656 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:10:07.0791 5656 AdobeFlashPlayerUpdateSvc - ok
17:10:07.0869 5656 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:10:07.0916 5656 adp94xx - ok
17:10:07.0994 5656 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:10:08.0041 5656 adpahci - ok
17:10:08.0072 5656 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:10:08.0103 5656 adpu320 - ok
17:10:08.0166 5656 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:10:08.0353 5656 AeLookupSvc - ok
17:10:08.0462 5656 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:10:08.0587 5656 AFD - ok
17:10:08.0634 5656 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:10:08.0665 5656 agp440 - ok
17:10:08.0759 5656 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:10:08.0868 5656 ALG - ok
17:10:08.0899 5656 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:10:08.0930 5656 aliide - ok
17:10:08.0977 5656 [ DCEEE24E57E8176115207312F827C130 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:10:09.0164 5656 AMD External Events Utility - ok
17:10:09.0195 5656 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:10:09.0242 5656 amdide - ok
17:10:09.0320 5656 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:10:09.0383 5656 AmdK8 - ok
17:10:09.0773 5656 [ F6640D83AF0FD74C50E23E68548EA9A0 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:10:10.0053 5656 amdkmdag - ok
17:10:10.0116 5656 [ 20B63276A1920B41E1C56720B395049B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:10:10.0178 5656 amdkmdap - ok
17:10:10.0225 5656 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:10:10.0287 5656 AmdPPM - ok
17:10:10.0334 5656 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:10:10.0381 5656 amdsata - ok
17:10:10.0428 5656 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:10:10.0475 5656 amdsbs - ok
17:10:10.0506 5656 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:10:10.0553 5656 amdxata - ok
17:10:10.0615 5656 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:10:11.0301 5656 AppID - ok
17:10:11.0333 5656 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:10:11.0457 5656 AppIDSvc - ok
17:10:11.0520 5656 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:10:11.0613 5656 Appinfo - ok
17:10:11.0754 5656 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:10:11.0785 5656 Apple Mobile Device - ok
17:10:11.0879 5656 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:10:11.0925 5656 arc - ok
17:10:11.0941 5656 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:10:11.0972 5656 arcsas - ok
17:10:12.0003 5656 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:10:12.0128 5656 AsyncMac - ok
17:10:12.0159 5656 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:10:12.0191 5656 atapi - ok
17:10:12.0315 5656 [ 70260C7C98CC0101316F5B2650C3BB44 ] athr C:\Windows\system32\DRIVERS\athrx.sys
17:10:12.0456 5656 athr - ok
17:10:12.0518 5656 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
17:10:12.0565 5656 AtiPcie - ok
17:10:12.0627 5656 [ 1FD0FA6618B31FAD14385740D0F6C333 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
17:10:12.0674 5656 atksgt - ok
17:10:12.0737 5656 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:10:12.0877 5656 AudioEndpointBuilder - ok
17:10:12.0893 5656 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:10:13.0002 5656 AudioSrv - ok
17:10:13.0064 5656 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:10:13.0205 5656 AxInstSV - ok
17:10:13.0298 5656 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:10:13.0392 5656 b06bdrv - ok
17:10:13.0454 5656 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:10:13.0517 5656 b57nd60a - ok
17:10:13.0548 5656 BCMH43XX - ok
17:10:13.0595 5656 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:10:13.0657 5656 BDESVC - ok
17:10:13.0704 5656 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:10:13.0829 5656 Beep - ok
17:10:13.0907 5656 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:10:14.0047 5656 BFE - ok
17:10:14.0375 5656 [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
17:10:14.0468 5656 BHDrvx64 - ok
17:10:14.0593 5656 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
17:10:14.0733 5656 BITS - ok
17:10:14.0765 5656 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:10:14.0827 5656 blbdrive - ok
17:10:14.0967 5656 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:10:15.0014 5656 Bonjour Service - ok
17:10:15.0077 5656 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:10:15.0123 5656 bowser - ok
17:10:15.0155 5656 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:10:15.0279 5656 BrFiltLo - ok
17:10:15.0295 5656 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:10:15.0342 5656 BrFiltUp - ok
17:10:15.0389 5656 [ 5C2F352A4E961D72518261257AAE204B ] Bridge C:\Windows\system32\DRIVERS\bridge.sys
17:10:15.0513 5656 Bridge - ok
17:10:15.0529 5656 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:10:15.0623 5656 BridgeMP - ok
17:10:15.0669 5656 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:10:15.0716 5656 Browser - ok
17:10:15.0794 5656 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:10:15.0903 5656 Brserid - ok
17:10:15.0919 5656 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:10:15.0966 5656 BrSerWdm - ok
17:10:16.0013 5656 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:10:16.0075 5656 BrUsbMdm - ok
17:10:16.0106 5656 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:10:16.0169 5656 BrUsbSer - ok
17:10:16.0184 5656 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:10:16.0247 5656 BTHMODEM - ok
17:10:16.0293 5656 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:10:16.0387 5656 bthserv - ok
17:10:16.0449 5656 catchme - ok
17:10:16.0543 5656 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\1403000.024\ccSetx64.sys
17:10:16.0574 5656 ccSet_N360 - ok
17:10:16.0637 5656 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:10:16.0746 5656 cdfs - ok
17:10:16.0793 5656 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:10:16.0839 5656 cdrom - ok
17:10:16.0886 5656 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:10:17.0011 5656 CertPropSvc - ok
17:10:17.0073 5656 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:10:17.0120 5656 circlass - ok
17:10:17.0167 5656 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:10:17.0214 5656 CLFS - ok
17:10:17.0276 5656 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:10:17.0307 5656 clr_optimization_v2.0.50727_32 - ok
17:10:17.0354 5656 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:10:17.0370 5656 clr_optimization_v2.0.50727_64 - ok
17:10:17.0463 5656 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:10:17.0573 5656 clr_optimization_v4.0.30319_32 - ok
17:10:17.0635 5656 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:10:17.0666 5656 clr_optimization_v4.0.30319_64 - ok
17:10:17.0713 5656 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:10:17.0775 5656 CmBatt - ok
17:10:17.0807 5656 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:10:17.0838 5656 cmdide - ok
17:10:17.0900 5656 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
17:10:17.0978 5656 CNG - ok
17:10:18.0025 5656 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:10:18.0056 5656 Compbatt - ok
17:10:18.0119 5656 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:10:18.0165 5656 CompositeBus - ok
17:10:18.0181 5656 COMSysApp - ok
17:10:18.0212 5656 connctfy - ok
17:10:18.0212 5656 connctfyMP - ok
17:10:18.0259 5656 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:10:18.0290 5656 crcdisk - ok
17:10:18.0353 5656 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:10:18.0431 5656 CryptSvc - ok
17:10:18.0477 5656 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:10:18.0602 5656 DcomLaunch - ok
17:10:18.0649 5656 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:10:18.0758 5656 defragsvc - ok
17:10:18.0789 5656 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:10:18.0899 5656 DfsC - ok
17:10:18.0961 5656 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:10:19.0039 5656 Dhcp - ok
17:10:19.0070 5656 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:10:19.0179 5656 discache - ok
17:10:19.0242 5656 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:10:19.0273 5656 Disk - ok
17:10:19.0320 5656 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:10:19.0382 5656 Dnscache - ok
17:10:19.0429 5656 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:10:19.0538 5656 dot3svc - ok
17:10:19.0585 5656 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:10:19.0694 5656 DPS - ok
17:10:19.0772 5656 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:10:19.0803 5656 drmkaud - ok
17:10:19.0975 5656 [ 61E894FE1E9CC720C909E6E343351794 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
17:10:20.0006 5656 DsiWMIService - ok
17:10:20.0100 5656 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:10:20.0162 5656 DXGKrnl - ok
17:10:20.0225 5656 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:10:20.0334 5656 EapHost - ok
17:10:20.0521 5656 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:10:20.0724 5656 ebdrv - ok
17:10:20.0833 5656 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:10:20.0880 5656 eeCtrl - ok
17:10:20.0927 5656 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:10:21.0005 5656 EFS - ok
17:10:21.0098 5656 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:10:21.0192 5656 ehRecvr - ok
17:10:21.0223 5656 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:10:21.0301 5656 ehSched - ok
17:10:21.0379 5656 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:10:21.0426 5656 elxstor - ok
17:10:21.0551 5656 [ 91C2E6234F6884C6FEEF9658D8EDE6B6 ] ePowerSvc C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
17:10:21.0613 5656 ePowerSvc - ok
17:10:21.0676 5656 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
17:10:21.0707 5656 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
17:10:21.0707 5656 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
17:10:21.0769 5656 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:10:21.0800 5656 EraserUtilRebootDrv - ok
17:10:21.0816 5656 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:10:21.0878 5656 ErrDev - ok
17:10:21.0972 5656 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:10:22.0097 5656 EventSystem - ok
17:10:22.0112 5656 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:10:22.0237 5656 exfat - ok
17:10:22.0268 5656 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:10:22.0393 5656 fastfat - ok
17:10:22.0456 5656 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:10:22.0534 5656 Fax - ok
17:10:22.0565 5656 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:10:22.0612 5656 fdc - ok
17:10:22.0658 5656 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:10:22.0752 5656 fdPHost - ok
17:10:22.0768 5656 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:10:22.0877 5656 FDResPub - ok
17:10:22.0908 5656 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:10:22.0939 5656 FileInfo - ok
17:10:22.0970 5656 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:10:23.0095 5656 Filetrace - ok
17:10:23.0111 5656 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:10:23.0158 5656 flpydisk - ok
17:10:23.0204 5656 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:10:23.0251 5656 FltMgr - ok
17:10:23.0314 5656 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:10:23.0407 5656 FontCache - ok
17:10:23.0470 5656 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:10:23.0501 5656 FontCache3.0.0.0 - ok
17:10:23.0532 5656 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:10:23.0563 5656 FsDepends - ok
17:10:23.0626 5656 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
17:10:23.0657 5656 fssfltr - ok
17:10:23.0766 5656 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
17:10:23.0860 5656 fsssvc - ok
17:10:23.0891 5656 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:10:23.0922 5656 Fs_Rec - ok
17:10:23.0984 5656 [ 7442BCA60ED46CC31C2F39728BBDD9AD ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
17:10:24.0016 5656 FTDIBUS - ok
17:10:24.0047 5656 [ 121AF3148CDDA212CFFBC4F6240699C2 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
17:10:24.0078 5656 FTSER2K - ok
17:10:24.0125 5656 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:10:24.0172 5656 fvevol - ok
17:10:24.0218 5656 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:10:24.0250 5656 gagp30kx - ok
17:10:24.0312 5656 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:10:24.0343 5656 GEARAspiWDM - ok
17:10:24.0406 5656 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:10:24.0546 5656 gpsvc - ok
17:10:24.0608 5656 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe
17:10:24.0640 5656 GREGService - ok
17:10:24.0702 5656 [ B9893A68032A6D9ADDB5B98287C630F7 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
17:10:24.0718 5656 grmnusb - ok
17:10:24.0780 5656 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:10:24.0811 5656 gupdate - ok
17:10:24.0858 5656 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:10:24.0874 5656 gupdatem - ok
17:10:24.0983 5656 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:10:25.0014 5656 gusvc - ok
17:10:25.0045 5656 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:10:25.0108 5656 hcw85cir - ok
17:10:25.0170 5656 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:10:25.0232 5656 HdAudAddService - ok
17:10:25.0279 5656 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:10:25.0342 5656 HDAudBus - ok
17:10:25.0373 5656 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:10:25.0404 5656 HidBatt - ok
17:10:25.0435 5656 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:10:25.0482 5656 HidBth - ok
17:10:25.0498 5656 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:10:25.0560 5656 HidIr - ok
17:10:25.0591 5656 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
17:10:25.0716 5656 hidserv - ok
17:10:25.0763 5656 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:10:25.0810 5656 HidUsb - ok
17:10:25.0841 5656 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:10:25.0966 5656 hkmsvc - ok
17:10:25.0997 5656 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:10:26.0059 5656 HomeGroupListener - ok
17:10:26.0106 5656 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:10:26.0168 5656 HomeGroupProvider - ok
17:10:26.0215 5656 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:10:26.0246 5656 HpSAMD - ok
17:10:26.0309 5656 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:10:26.0434 5656 HTTP - ok
17:10:26.0480 5656 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:10:26.0512 5656 hwpolicy - ok
17:10:26.0590 5656 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:10:26.0621 5656 i8042prt - ok
17:10:26.0668 5656 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:10:26.0714 5656 iaStorV - ok
17:10:26.0839 5656 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:10:26.0870 5656 IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:10:26.0870 5656 IDriverT - detected UnsignedFile.Multi.Generic (1)
17:10:26.0933 5656 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:10:26.0995 5656 idsvc - ok
17:10:27.0136 5656 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSvia64.sys
17:10:27.0182 5656 IDSVia64 - ok
17:10:27.0245 5656 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:10:27.0276 5656 iirsp - ok
17:10:27.0354 5656 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:10:27.0479 5656 IKEEXT - ok
17:10:27.0604 5656 [ FEADC18677A85A123E95A9B976101120 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:10:27.0713 5656 IntcAzAudAddService - ok
17:10:27.0806 5656 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:10:27.0853 5656 intelide - ok
17:10:27.0884 5656 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:10:27.0947 5656 intelppm - ok
17:10:28.0009 5656 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
17:10:28.0040 5656 IntuitUpdateService - ok
17:10:28.0072 5656 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:10:28.0212 5656 IPBusEnum - ok
17:10:28.0259 5656 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:10:28.0368 5656 IpFilterDriver - ok
17:10:28.0415 5656 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:10:28.0493 5656 iphlpsvc - ok
17:10:28.0540 5656 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:10:28.0586 5656 IPMIDRV - ok
17:10:28.0633 5656 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:10:28.0742 5656 IPNAT - ok
17:10:28.0789 5656 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:10:28.0883 5656 IRENUM - ok
17:10:28.0930 5656 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:10:28.0961 5656 isapnp - ok
17:10:28.0992 5656 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:10:29.0023 5656 iScsiPrt - ok
17:10:29.0086 5656 [ C9B4ECC187581E5BF3F76648884B7829 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
17:10:29.0132 5656 k57nd60a - ok
17:10:29.0148 5656 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:10:29.0179 5656 kbdclass - ok
17:10:29.0226 5656 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:10:29.0273 5656 kbdhid - ok
17:10:29.0304 5656 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:10:29.0335 5656 KeyIso - ok
17:10:29.0366 5656 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:10:29.0413 5656 KSecDD - ok
17:10:29.0460 5656 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:10:29.0491 5656 KSecPkg - ok
17:10:29.0522 5656 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:10:29.0632 5656 ksthunk - ok
17:10:29.0678 5656 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:10:29.0803 5656 KtmRm - ok
17:10:29.0850 5656 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
17:10:29.0975 5656 LanmanServer - ok
17:10:30.0006 5656 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:10:30.0115 5656 LanmanWorkstation - ok
17:10:30.0443 5656 [ 4CCC8AABE7880C56BA10043B8FBCA3EB ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
17:10:30.0724 5656 LeapFrog Connect Device Service - ok
17:10:31.0894 5656 [ 5EA407821BB3104C31A705175AB4F309 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
17:10:31.0925 5656 lirsgt - ok
17:10:32.0159 5656 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:10:32.0330 5656 lltdio - ok
17:10:32.0362 5656 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:10:32.0486 5656 lltdsvc - ok
17:10:32.0518 5656 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:10:32.0611 5656 lmhosts - ok
17:10:32.0674 5656 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:10:32.0705 5656 LSI_FC - ok
17:10:32.0752 5656 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:10:32.0783 5656 LSI_SAS - ok
17:10:32.0814 5656 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:10:32.0845 5656 LSI_SAS2 - ok
17:10:32.0876 5656 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:10:32.0908 5656 LSI_SCSI - ok
17:10:32.0954 5656 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:10:33.0064 5656 luafv - ok
17:10:33.0110 5656 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:10:33.0142 5656 Mcx2Svc - ok
17:10:33.0173 5656 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:10:33.0204 5656 megasas - ok
17:10:33.0235 5656 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:10:33.0282 5656 MegaSR - ok
17:10:33.0313 5656 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:10:33.0422 5656 MMCSS - ok
17:10:33.0438 5656 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:10:33.0547 5656 Modem - ok
17:10:33.0578 5656 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:10:33.0641 5656 monitor - ok
17:10:33.0688 5656 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:10:33.0719 5656 mouclass - ok
17:10:33.0766 5656 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:10:33.0797 5656 mouhid - ok
17:10:33.0844 5656 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:10:33.0875 5656 mountmgr - ok
17:10:33.0890 5656 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:10:33.0937 5656 mpio - ok
17:10:33.0984 5656 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:10:34.0078 5656 mpsdrv - ok
17:10:34.0124 5656 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:10:34.0265 5656 MpsSvc - ok
17:10:34.0296 5656 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:10:34.0358 5656 MRxDAV - ok
17:10:34.0405 5656 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:10:34.0468 5656 mrxsmb - ok
17:10:34.0514 5656 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:10:34.0577 5656 mrxsmb10 - ok
17:10:34.0608 5656 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:10:34.0639 5656 mrxsmb20 - ok
17:10:34.0686 5656 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:10:34.0717 5656 msahci - ok
17:10:34.0764 5656 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:10:34.0795 5656 msdsm - ok
17:10:34.0826 5656 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:10:34.0873 5656 MSDTC - ok
17:10:34.0920 5656 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:10:35.0029 5656 Msfs - ok
17:10:35.0045 5656 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:10:35.0154 5656 mshidkmdf - ok
17:10:35.0185 5656 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:10:35.0216 5656 msisadrv - ok
17:10:35.0263 5656 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:10:35.0372 5656 MSiSCSI - ok
17:10:35.0388 5656 msiserver - ok
17:10:35.0435 5656 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:10:35.0528 5656 MSKSSRV - ok
17:10:35.0544 5656 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:10:35.0653 5656 MSPCLOCK - ok
17:10:35.0669 5656 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:10:35.0778 5656 MSPQM - ok
17:10:35.0825 5656 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:10:35.0872 5656 MsRPC - ok
17:10:35.0918 5656 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:10:35.0950 5656 mssmbios - ok
17:10:36.0012 5656 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:10:36.0121 5656 MSTEE - ok
17:10:36.0137 5656 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:10:36.0199 5656 MTConfig - ok
17:10:36.0230 5656 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:10:36.0262 5656 Mup - ok
17:10:36.0480 5656 [ 241BD3019FB31E812A51B31B06906335 ] N360 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe
17:10:36.0511 5656 N360 - ok
17:10:36.0574 5656 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:10:36.0683 5656 napagent - ok
17:10:36.0745 5656 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:10:36.0808 5656 NativeWifiP - ok
17:10:36.0964 5656 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ENG64.SYS
17:10:36.0995 5656 NAVENG - ok
17:10:37.0073 5656 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\EX64.SYS
17:10:37.0182 5656 NAVEX15 - ok
17:10:37.0244 5656 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:10:37.0322 5656 NDIS - ok
17:10:37.0369 5656 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:10:37.0478 5656 NdisCap - ok
17:10:37.0525 5656 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:10:37.0619 5656 NdisTapi - ok
17:10:37.0666 5656 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:10:37.0744 5656 Ndisuio - ok
17:10:37.0790 5656 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:10:37.0915 5656 NdisWan - ok
17:10:37.0946 5656 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:10:38.0056 5656 NDProxy - ok
17:10:38.0180 5656 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
17:10:38.0243 5656 Nero BackItUp Scheduler 4.0 - ok
17:10:38.0336 5656 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:10:38.0477 5656 NetBIOS - ok
17:10:38.0602 5656 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:10:38.0711 5656 NetBT - ok
17:10:38.0789 5656 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:10:38.0820 5656 Netlogon - ok
17:10:38.0992 5656 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:10:39.0132 5656 Netman - ok
17:10:39.0210 5656 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:10:39.0350 5656 netprofm - ok
17:10:39.0397 5656 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:10:39.0428 5656 NetTcpPortSharing - ok
17:10:39.0522 5656 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:10:39.0600 5656 nfrd960 - ok
17:10:39.0740 5656 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:10:39.0803 5656 NlaSvc - ok
17:10:39.0912 5656 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:10:40.0006 5656 Npfs - ok
17:10:40.0037 5656 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:10:40.0146 5656 nsi - ok
17:10:40.0193 5656 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:10:40.0318 5656 nsiproxy - ok
17:10:40.0536 5656 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:10:40.0676 5656 Ntfs - ok
17:10:40.0786 5656 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
17:10:40.0832 5656 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - warning
17:10:40.0832 5656 NTI IScheduleSvc - detected UnsignedFile.Multi.Generic (1)
17:10:40.0864 5656 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
17:10:40.0895 5656 NTIDrvr - ok
17:10:41.0020 5656 NTPASp50a64 - ok
17:10:41.0051 5656 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:10:41.0176 5656 Null - ok
17:10:41.0269 5656 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:10:41.0316 5656 nvraid - ok
17:10:41.0363 5656 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:10:41.0394 5656 nvstor - ok
17:10:41.0441 5656 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:10:41.0488 5656 nv_agp - ok
17:10:41.0550 5656 [ 952AB3BDEF38A7391AA05BC8C6028F15 ] NWADI C:\Windows\system32\DRIVERS\NWADIenum.sys
17:10:41.0706 5656 NWADI - ok
17:10:41.0768 5656 [ DE3ABD010D9734CD4AD4E0BA81F50B63 ] NWUSBCDFIL64 C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
17:10:41.0846 5656 NWUSBCDFIL64 - ok
17:10:41.0878 5656 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBModem C:\Windows\system32\DRIVERS\nwusbmdm.sys
17:10:41.0940 5656 NWUSBModem - ok
17:10:42.0018 5656 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort C:\Windows\system32\DRIVERS\nwusbser.sys
17:10:42.0065 5656 NWUSBPort - ok
17:10:42.0143 5656 [ 6AE72C04633788C3C3B71B5BEB17183C ] NWUSBPort2 C:\Windows\system32\DRIVERS\nwusbser2.sys
17:10:42.0205 5656 NWUSBPort2 - ok
17:10:42.0502 5656 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:10:42.0580 5656 odserv - ok
17:10:42.0658 5656 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:10:42.0736 5656 ohci1394 - ok
17:10:42.0814 5656 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:10:42.0845 5656 ose - ok
17:10:42.0985 5656 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:10:43.0094 5656 p2pimsvc - ok
17:10:43.0360 5656 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:10:43.0406 5656 p2psvc - ok
17:10:43.0469 5656 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:10:43.0531 5656 Parport - ok
17:10:43.0718 5656 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:10:43.0765 5656 partmgr - ok
17:10:43.0921 5656 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:10:43.0999 5656 PcaSvc - ok
17:10:44.0093 5656 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:10:44.0140 5656 pci - ok
17:10:44.0249 5656 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:10:44.0327 5656 pciide - ok
17:10:44.0405 5656 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:10:44.0436 5656 pcmcia - ok
17:10:44.0483 5656 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:10:44.0514 5656 pcw - ok
17:10:44.0654 5656 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:10:44.0779 5656 PEAUTH - ok
17:10:45.0325 5656 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:10:45.0388 5656 PerfHost - ok
17:10:45.0622 5656 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:10:45.0809 5656 pla - ok
17:10:45.0965 5656 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:10:46.0074 5656 PlugPlay - ok
17:10:46.0090 5656 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:10:46.0136 5656 PNRPAutoReg - ok
17:10:46.0246 5656 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:10:46.0292 5656 PNRPsvc - ok
17:10:46.0386 5656 [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
17:10:46.0448 5656 Point64 - ok
17:10:46.0558 5656 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:10:46.0667 5656 PolicyAgent - ok
17:10:46.0729 5656 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:10:46.0870 5656 Power - ok
17:10:46.0963 5656 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:10:47.0088 5656 PptpMiniport - ok
17:10:47.0166 5656 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:10:47.0260 5656 Processor - ok
17:10:47.0338 5656 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:10:47.0416 5656 ProfSvc - ok
17:10:47.0416 5656 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:10:47.0462 5656 ProtectedStorage - ok
17:10:47.0509 5656 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:10:47.0618 5656 Psched - ok
17:10:47.0650 5656 PTUMLBUS - ok
17:10:47.0665 5656 PTUMLCVsp - ok
17:10:47.0681 5656 PTUMLMdm - ok
17:10:47.0696 5656 PTUMLNET61 - ok
17:10:47.0712 5656 PTUMLNVsp - ok
17:10:47.0728 5656 PTUMLRMNET - ok
17:10:47.0743 5656 PTUMLVsp - ok
17:10:47.0821 5656 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:10:47.0915 5656 ql2300 - ok
17:10:47.0946 5656 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:10:47.0993 5656 ql40xx - ok
17:10:48.0024 5656 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:10:48.0071 5656 QWAVE - ok
17:10:48.0118 5656 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:10:48.0164 5656 QWAVEdrv - ok
17:10:48.0180 5656 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:10:48.0289 5656 RasAcd - ok
17:10:48.0336 5656 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:10:48.0430 5656 RasAgileVpn - ok
17:10:48.0461 5656 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:10:48.0570 5656 RasAuto - ok
17:10:48.0617 5656 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:10:48.0726 5656 Rasl2tp - ok
17:10:48.0773 5656 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:10:48.0882 5656 RasMan - ok
17:10:48.0929 5656 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:10:49.0038 5656 RasPppoe - ok
17:10:49.0069 5656 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:10:49.0178 5656 RasSstp - ok
17:10:49.0225 5656 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:10:49.0334 5656 rdbss - ok
17:10:49.0366 5656 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:10:49.0412 5656 rdpbus - ok
17:10:49.0444 5656 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:10:49.0537 5656 RDPCDD - ok
17:10:49.0584 5656 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:10:49.0709 5656 RDPENCDD - ok
17:10:49.0740 5656 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:10:49.0834 5656 RDPREFMP - ok
17:10:49.0912 5656 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:10:49.0943 5656 RdpVideoMiniport - ok
17:10:49.0974 5656 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:10:50.0036 5656 RDPWD - ok
17:10:50.0099 5656 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:10:50.0130 5656 rdyboost - ok
17:10:50.0224 5656 [ A0FF419B61AE47E26ADF3BB15DB4F2FE ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
17:10:50.0255 5656 RealNetworks Downloader Resolver Service - ok
17:10:50.0286 5656 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:10:50.0395 5656 RemoteAccess - ok
17:10:50.0442 5656 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:10:50.0551 5656 RemoteRegistry - ok
17:10:50.0582 5656 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:10:50.0707 5656 RpcEptMapper - ok
17:10:50.0738 5656 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:10:50.0785 5656 RpcLocator - ok
17:10:50.0848 5656 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
17:10:50.0941 5656 RpcSs - ok
17:10:50.0988 5656 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:10:51.0082 5656 rspndr - ok
17:10:51.0160 5656 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:10:51.0191 5656 RSUSBSTOR - ok
17:10:51.0269 5656 [ 4E821C740A675F6D040BE41D59A62B1D ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
17:10:51.0300 5656 RTHDMIAzAudService - ok
17:10:51.0362 5656 [ 4A06585C8673F4458E9FBBC9DDDB4D28 ] RTL8187B C:\Windows\system32\DRIVERS\wg111v3.sys
17:10:51.0425 5656 RTL8187B - ok
17:10:51.0440 5656 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:10:51.0472 5656 SamSs - ok
17:10:51.0518 5656 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:10:51.0565 5656 sbp2port - ok
17:10:51.0596 5656 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:10:51.0721 5656 SCardSvr - ok
17:10:51.0752 5656 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:10:51.0877 5656 scfilter - ok
17:10:51.0955 5656 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:10:52.0096 5656 Schedule - ok
17:10:52.0142 5656 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:10:52.0236 5656 SCPolicySvc - ok
17:10:52.0252 5656 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:10:52.0298 5656 SDRSVC - ok
17:10:52.0345 5656 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:10:52.0454 5656 secdrv - ok
17:10:52.0501 5656 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:10:52.0610 5656 seclogon - ok
17:10:52.0642 5656 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
17:10:52.0766 5656 SENS - ok
17:10:52.0798 5656 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:10:52.0876 5656 SensrSvc - ok
17:10:52.0891 5656 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:10:52.0938 5656 Serenum - ok
17:10:52.0969 5656 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:10:53.0000 5656 Serial - ok
17:10:53.0032 5656 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:10:53.0063 5656 sermouse - ok
17:10:53.0125 5656 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:10:53.0234 5656 SessionEnv - ok
17:10:53.0281 5656 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:10:53.0344 5656 sffdisk - ok
17:10:53.0359 5656 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:10:53.0422 5656 sffp_mmc - ok
17:10:53.0437 5656 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:10:53.0500 5656 sffp_sd - ok
17:10:53.0515 5656 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:10:53.0562 5656 sfloppy - ok
17:10:53.0609 5656 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:10:53.0749 5656 SharedAccess - ok
17:10:53.0796 5656 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:10:53.0905 5656 ShellHWDetection - ok
17:10:53.0968 5656 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:10:53.0999 5656 SiSRaid2 - ok
17:10:54.0014 5656 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:10:54.0061 5656 SiSRaid4 - ok
17:10:54.0092 5656 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:10:54.0202 5656 Smb - ok
17:10:54.0264 5656 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:10:54.0326 5656 SNMPTRAP - ok
17:10:54.0342 5656 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:10:54.0373 5656 spldr - ok
17:10:54.0420 5656 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:10:54.0514 5656 Spooler - ok
17:10:54.0654 5656 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:10:54.0857 5656 sppsvc - ok
17:10:54.0904 5656 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:10:54.0997 5656 sppuinotify - ok
17:10:55.0122 5656 [ 378A0748DE5ADF90BF9DB897DA8564E6 ] SRTSP C:\Windows\system32\drivers\N360x64\1403000.024\SRTSP64.SYS
17:10:55.0184 5656 SRTSP - ok
17:10:55.0231 5656 [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX C:\Windows\system32\drivers\N360x64\1403000.024\SRTSPX64.SYS
17:10:55.0262 5656 SRTSPX - ok
17:10:55.0309 5656 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:10:55.0403 5656 srv - ok
17:10:55.0450 5656 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:10:55.0512 5656 srv2 - ok
17:10:55.0543 5656 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:10:55.0590 5656 srvnet - ok
17:10:55.0637 5656 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:10:55.0762 5656 SSDPSRV - ok
17:10:55.0793 5656 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:10:55.0886 5656 SstpSvc - ok
17:10:55.0996 5656 [ 773940B8D50439391FFA619B3EEF01A3 ] StatusAgent4 C:\Windows\SysWOW64\SAgent4.exe
17:10:56.0027 5656 StatusAgent4 ( UnsignedFile.Multi.Generic ) - warning
17:10:56.0027 5656 StatusAgent4 - detected UnsignedFile.Multi.Generic (1)
17:10:56.0058 5656 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:10:56.0089 5656 stexstor - ok
17:10:56.0167 5656 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:10:56.0245 5656 stisvc - ok
17:10:56.0292 5656 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:10:56.0323 5656 swenum - ok
17:10:56.0354 5656 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:10:56.0479 5656 swprv - ok
17:10:56.0542 5656 [ E174C8BC572E93AEEE1036DEDAC5F225 ] SymDS C:\Windows\system32\drivers\N360x64\1403000.024\SYMDS64.SYS
17:10:56.0604 5656 SymDS - ok
17:10:56.0932 5656 [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA C:\Windows\system32\drivers\N360x64\1403000.024\SYMEFA64.SYS
17:10:57.0010 5656 SymEFA - ok
17:10:57.0072 5656 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
17:10:57.0103 5656 SymEvent - ok
17:10:57.0134 5656 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\N360x64\1403000.024\Ironx64.SYS
17:10:57.0166 5656 SymIRON - ok
17:10:57.0212 5656 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\Windows\system32\drivers\N360x64\1403000.024\SYMNETS.SYS
17:10:57.0259 5656 SymNetS - ok
17:10:57.0322 5656 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:10:57.0353 5656 SynTP - ok
17:10:57.0431 5656 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:10:57.0540 5656 SysMain - ok
17:10:57.0587 5656 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:10:57.0634 5656 TabletInputService - ok
17:10:57.0680 5656 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:10:57.0805 5656 TapiSrv - ok
17:10:57.0836 5656 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:10:57.0946 5656 TBS - ok
17:10:58.0039 5656 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:10:58.0164 5656 Tcpip - ok
17:10:58.0242 5656 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:10:58.0304 5656 TCPIP6 - ok
17:10:58.0367 5656 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:10:58.0382 5656 tcpipreg - ok
17:10:58.0445 5656 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:10:58.0507 5656 TDPIPE - ok
17:10:58.0538 5656 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:10:58.0570 5656 TDTCP - ok
17:10:58.0601 5656 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:10:58.0694 5656 tdx - ok
17:10:58.0741 5656 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:10:58.0772 5656 TermDD - ok
17:10:58.0804 5656 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:10:58.0928 5656 TermService - ok
17:10:58.0960 5656 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:10:59.0022 5656 Themes - ok
17:10:59.0069 5656 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:10:59.0162 5656 THREADORDER - ok
17:10:59.0178 5656 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:10:59.0303 5656 TrkWks - ok
17:10:59.0381 5656 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:10:59.0474 5656 TrustedInstaller - ok
17:10:59.0506 5656 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:10:59.0630 5656 tssecsrv - ok
17:10:59.0708 5656 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:10:59.0864 5656 TsUsbFlt - ok
17:11:00.0083 5656 [ C3D76D373359E45475CF5457F1DBEF7A ] TS_AR5416 C:\Windows\system32\DRIVERS\ts_athwx.sys
17:11:00.0239 5656 TS_AR5416 - ok
17:11:00.0254 5656 ts_arusb - ok
17:11:00.0332 5656 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:11:00.0379 5656 tunnel - ok
17:11:00.0410 5656 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:11:00.0442 5656 uagp35 - ok
17:11:00.0473 5656 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
17:11:00.0504 5656 UBHelper - ok
17:11:00.0535 5656 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:11:00.0660 5656 udfs - ok
17:11:00.0707 5656 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:11:00.0754 5656 UI0Detect - ok
17:11:00.0800 5656 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:11:00.0832 5656 uliagpkx - ok
17:11:00.0878 5656 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:11:00.0925 5656 umbus - ok
17:11:00.0956 5656 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:11:01.0003 5656 UmPass - ok
17:11:01.0034 5656 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:11:01.0144 5656 upnphost - ok
17:11:01.0190 5656 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:11:01.0253 5656 USBAAPL64 - ok
17:11:01.0315 5656 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:11:01.0378 5656 usbaudio - ok
17:11:01.0440 5656 [ 5FCC71487888589A9244AF54CFEFAB29 ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
17:11:01.0549 5656 usbbus - ok
17:11:01.0580 5656 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:11:01.0643 5656 usbccgp - ok
17:11:01.0674 5656 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:11:01.0721 5656 usbcir - ok
17:11:01.0768 5656 [ 3FB6E423F7567C92C32EA786F5FD0C69 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
17:11:01.0814 5656 UsbDiag - ok
17:11:01.0846 5656 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:11:01.0908 5656 usbehci - ok
17:11:01.0955 5656 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:11:01.0986 5656 usbhub - ok
17:11:02.0033 5656 [ 78D551F5B93488B4666F5FC8DD4815F3 ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
17:11:02.0064 5656 USBModem - ok
17:11:02.0095 5656 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:11:02.0142 5656 usbohci - ok
17:11:02.0173 5656 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:11:02.0236 5656 usbprint - ok
17:11:02.0267 5656 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:11:02.0329 5656 usbscan - ok
17:11:02.0376 5656 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:11:02.0438 5656 USBSTOR - ok
17:11:02.0470 5656 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:11:02.0532 5656 usbuhci - ok
17:11:02.0579 5656 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:11:02.0641 5656 usbvideo - ok
17:11:02.0688 5656 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:11:02.0797 5656 UxSms - ok
17:11:02.0828 5656 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:11:02.0844 5656 VaultSvc - ok
17:11:02.0875 5656 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:11:02.0906 5656 vdrvroot - ok
17:11:02.0953 5656 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:11:03.0062 5656 vds - ok
17:11:03.0094 5656 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:11:03.0140 5656 vga - ok
17:11:03.0156 5656 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:11:03.0265 5656 VgaSave - ok
17:11:03.0296 5656 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:11:03.0343 5656 vhdmp - ok
17:11:03.0359 5656 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:11:03.0406 5656 viaide - ok
17:11:03.0421 5656 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:11:03.0452 5656 volmgr - ok
17:11:03.0515 5656 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:11:03.0562 5656 volmgrx - ok
17:11:03.0577 5656 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:11:03.0624 5656 volsnap - ok
17:11:03.0686 5656 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:11:03.0718 5656 vsmraid - ok
17:11:03.0811 5656 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:11:03.0967 5656 VSS - ok
17:11:04.0014 5656 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:11:04.0061 5656 vwifibus - ok
17:11:04.0108 5656 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:11:04.0170 5656 vwififlt - ok
17:11:04.0217 5656 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:11:04.0279 5656 vwifimp - ok
17:11:04.0326 5656 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:11:04.0451 5656 W32Time - ok
17:11:04.0482 5656 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:11:04.0513 5656 WacomPen - ok
17:11:04.0591 5656 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:11:04.0685 5656 WANARP - ok
17:11:04.0700 5656 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:11:04.0794 5656 Wanarpv6 - ok
17:11:04.0872 5656 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:11:04.0919 5656 WatAdminSvc - ok
17:11:04.0981 5656 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:11:05.0090 5656 wbengine - ok
17:11:05.0137 5656 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:11:05.0200 5656 WbioSrvc - ok
17:11:05.0246 5656 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:11:05.0324 5656 wcncsvc - ok
17:11:05.0356 5656 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:11:05.0402 5656 WcsPlugInService - ok
17:11:05.0434 5656 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:11:05.0465 5656 Wd - ok
17:11:05.0512 5656 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:11:05.0590 5656 Wdf01000 - ok
17:11:05.0605 5656 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:11:05.0730 5656 WdiServiceHost - ok
17:11:05.0730 5656 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:11:05.0777 5656 WdiSystemHost - ok
17:11:05.0824 5656 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:11:05.0902 5656 WebClient - ok
17:11:05.0948 5656 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:11:06.0058 5656 Wecsvc - ok
17:11:06.0089 5656 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:11:06.0214 5656 wercplsupport - ok
17:11:06.0245 5656 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:11:06.0354 5656 WerSvc - ok
17:11:06.0401 5656 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:11:06.0510 5656 WfpLwf - ok
17:11:06.0604 5656 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:11:06.0635 5656 WIMMount - ok
17:11:06.0650 5656 WinDefend - ok
17:11:06.0666 5656 WinHttpAutoProxySvc - ok
17:11:06.0728 5656 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:11:06.0838 5656 Winmgmt - ok
17:11:06.0931 5656 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:11:07.0118 5656 WinRM - ok
17:11:07.0196 5656 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:11:07.0259 5656 WinUsb - ok
17:11:07.0321 5656 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:11:07.0399 5656 Wlansvc - ok
17:11:07.0477 5656 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:11:07.0508 5656 wlcrasvc - ok
17:11:07.0649 5656 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:11:07.0758 5656 wlidsvc - ok
17:11:07.0820 5656 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:11:07.0867 5656 WmiAcpi - ok
17:11:07.0914 5656 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:11:07.0961 5656 wmiApSrv - ok
17:11:08.0008 5656 WMPNetworkSvc - ok
17:11:08.0039 5656 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:11:08.0086 5656 WPCSvc - ok
17:11:08.0117 5656 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:11:08.0164 5656 WPDBusEnum - ok
17:11:08.0195 5656 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:11:08.0320 5656 ws2ifsl - ok
17:11:08.0351 5656 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
17:11:08.0413 5656 wscsvc - ok
17:11:08.0429 5656 WSearch - ok
17:11:08.0554 5656 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:11:08.0678 5656 wuauserv - ok
17:11:08.0725 5656 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:11:08.0803 5656 WudfPf - ok
17:11:08.0819 5656 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:11:08.0866 5656 wudfsvc - ok
17:11:08.0912 5656 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:11:08.0959 5656 WwanSvc - ok
17:11:09.0100 5656 ================ Scan global ===============================
17:11:09.0131 5656 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:11:09.0162 5656 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:11:09.0178 5656 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:11:09.0209 5656 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:11:09.0240 5656 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:11:09.0256 5656 [Global] - ok
17:11:09.0256 5656 ================ Scan MBR ==================================
17:11:09.0271 5656 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:11:09.0599 5656 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:11:09.0599 5656 \Device\Harddisk0\DR0 - detected TDSS File System (1)
17:11:09.0599 5656 ================ Scan VBR ==================================
17:11:09.0614 5656 [ 9AA61CF49612DFFC901FDEB4ED81FA45 ] \Device\Harddisk0\DR0\Partition1
17:11:09.0614 5656 \Device\Harddisk0\DR0\Partition1 - ok
17:11:09.0646 5656 [ 85B71757D61F7929F53BFA23AD8336F4 ] \Device\Harddisk0\DR0\Partition2
17:11:09.0646 5656 \Device\Harddisk0\DR0\Partition2 - ok
17:11:09.0646 5656 ================ Scan active images ========================
17:11:09.0646 5656 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:11:09.0646 5656 C:\Windows\System32\drivers\crashdmp.sys - ok
17:11:09.0661 5656 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
17:11:09.0661 5656 C:\Windows\System32\drivers\Dumpata.sys - ok
17:11:09.0677 5656 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] C:\Windows\System32\drivers\msahci.sys
17:11:09.0677 5656 C:\Windows\System32\drivers\msahci.sys - ok
17:11:09.0692 5656 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:11:09.0692 5656 C:\Windows\System32\drivers\dumpfve.sys - ok
17:11:09.0708 5656 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
17:11:09.0708 5656 C:\Windows\System32\drivers\cdrom.sys - ok
17:11:09.0708 5656 [ 248C952C82DF1E23775432774CBB20F1 ] C:\Windows\System32\drivers\N360x64\1403000.024\ccSetx64.sys
17:11:09.0708 5656 C:\Windows\System32\drivers\N360x64\1403000.024\ccSetx64.sys - ok
17:11:09.0724 5656 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] C:\Windows\System32\drivers\N360x64\1403000.024\Ironx64.sys
17:11:09.0724 5656 C:\Windows\System32\drivers\N360x64\1403000.024\Ironx64.sys - ok
17:11:09.0739 5656 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:11:09.0739 5656 C:\Windows\System32\drivers\null.sys - ok
17:11:09.0755 5656 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:11:09.0755 5656 C:\Windows\System32\drivers\beep.sys - ok
17:11:09.0770 5656 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:11:09.0770 5656 C:\Windows\System32\drivers\vga.sys - ok
17:11:09.0770 5656 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:11:09.0770 5656 C:\Windows\System32\drivers\videoprt.sys - ok
17:11:09.0786 5656 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:11:09.0786 5656 C:\Windows\System32\drivers\watchdog.sys - ok
17:11:09.0802 5656 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
17:11:09.0802 5656 C:\Windows\System32\drivers\RDPCDD.sys - ok
17:11:09.0817 5656 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:11:09.0817 5656 C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:11:09.0817 5656 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:11:09.0817 5656 C:\Windows\System32\drivers\msfs.sys - ok
17:11:09.0833 5656 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
17:11:09.0833 5656 C:\Windows\System32\drivers\RDPREFMP.sys - ok
17:11:09.0848 5656 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:11:09.0848 5656 C:\Windows\System32\drivers\npfs.sys - ok
17:11:09.0864 5656 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
17:11:09.0864 5656 C:\Windows\System32\drivers\tdi.sys - ok
17:11:09.0880 5656 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
17:11:09.0880 5656 C:\Windows\System32\drivers\tdx.sys - ok
17:11:09.0880 5656 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
17:11:09.0880 5656 C:\Windows\System32\drivers\afd.sys - ok
17:11:09.0895 5656 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
17:11:09.0895 5656 C:\Windows\System32\drivers\netbt.sys - ok
17:11:09.0911 5656 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:11:09.0911 5656 C:\Windows\System32\drivers\wfplwf.sys - ok
17:11:09.0926 5656 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
17:11:09.0926 5656 C:\Windows\System32\drivers\ws2ifsl.sys - ok
17:11:09.0942 5656 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
17:11:09.0942 5656 C:\Windows\System32\drivers\pacer.sys - ok
17:11:09.0942 5656 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
17:11:09.0942 5656 C:\Windows\System32\drivers\vwififlt.sys - ok
17:11:09.0958 5656 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:11:09.0958 5656 C:\Windows\System32\drivers\netbios.sys - ok
17:11:09.0973 5656 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
17:11:09.0973 5656 C:\Windows\System32\drivers\wanarp.sys - ok
17:11:09.0989 5656 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
17:11:09.0989 5656 C:\Windows\System32\drivers\termdd.sys - ok
17:11:10.0004 5656 [ 1605EBD8CB86AFC4430116065995279A ] C:\Windows\System32\drivers\N360x64\1403000.024\symnets.sys
17:11:10.0004 5656 C:\Windows\System32\drivers\N360x64\1403000.024\symnets.sys - ok
17:11:10.0004 5656 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
17:11:10.0004 5656 C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
17:11:10.0020 5656 [ 0E76CEF892C45734F7AED09FDDF35D4D ] C:\Windows\System32\drivers\N360x64\1403000.024\srtspx64.sys
17:11:10.0020 5656 C:\Windows\System32\drivers\N360x64\1403000.024\srtspx64.sys - ok
17:11:10.0036 5656 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
17:11:10.0036 5656 C:\Windows\System32\drivers\rdbss.sys - ok
17:11:10.0051 5656 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:11:10.0051 5656 C:\Windows\System32\drivers\nsiproxy.sys - ok
17:11:10.0067 5656 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:11:10.0067 5656 C:\Windows\System32\drivers\mssmbios.sys - ok
17:11:10.0067 5656 [ A48928D4CCA6F8B731989DB08CF2C0AB ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSviA64.sys
17:11:10.0067 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSviA64.sys - ok
17:11:10.0082 5656 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:11:10.0082 5656 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
17:11:10.0098 5656 [ C5BCCB378D0A896304A3E71BE7215983 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:11:10.0098 5656 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok
17:11:10.0114 5656 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
17:11:10.0114 5656 C:\Windows\System32\drivers\discache.sys - ok
17:11:10.0129 5656 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
17:11:10.0129 5656 C:\Windows\System32\drivers\dfsc.sys - ok
17:11:10.0129 5656 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:11:10.0129 5656 C:\Windows\System32\drivers\blbdrive.sys - ok
17:11:10.0145 5656 [ 866335C9C0E6733C753FB472C539A6B9 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys
17:11:10.0145 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHDrvx64.sys - ok
17:11:10.0160 5656 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
17:11:10.0160 5656 C:\Windows\System32\drivers\tunnel.sys - ok
17:11:10.0176 5656 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
17:11:10.0176 5656 C:\Windows\System32\drivers\amdppm.sys - ok
17:11:10.0192 5656 [ 20B63276A1920B41E1C56720B395049B ] C:\Windows\System32\drivers\atikmpag.sys
17:11:10.0192 5656 C:\Windows\System32\drivers\atikmpag.sys - ok
17:11:10.0207 5656 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
17:11:10.0207 5656 C:\Windows\System32\ntdll.dll - ok
17:11:10.0207 5656 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
17:11:10.0207 5656 C:\Windows\System32\smss.exe - ok
17:11:10.0223 5656 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
17:11:10.0223 5656 C:\Windows\System32\autochk.exe - ok
17:11:10.0238 5656 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
17:11:10.0238 5656 C:\Windows\System32\shell32.dll - ok
17:11:10.0254 5656 [ F6640D83AF0FD74C50E23E68548EA9A0 ] C:\Windows\System32\drivers\atikmdag.sys
17:11:10.0254 5656 C:\Windows\System32\drivers\atikmdag.sys - ok
17:11:10.0254 5656 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
17:11:10.0254 5656 C:\Windows\System32\drivers\dxgkrnl.sys - ok
17:11:10.0270 5656 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
17:11:10.0270 5656 C:\Windows\System32\drivers\dxgmms1.sys - ok
17:11:10.0285 5656 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
17:11:10.0285 5656 C:\Windows\System32\drivers\hdaudbus.sys - ok
17:11:10.0301 5656 [ C9B4ECC187581E5BF3F76648884B7829 ] C:\Windows\System32\drivers\k57nd60a.sys
17:11:10.0301 5656 C:\Windows\System32\drivers\k57nd60a.sys - ok
17:11:10.0316 5656 [ 70260C7C98CC0101316F5B2650C3BB44 ] C:\Windows\System32\drivers\athrx.sys
17:11:10.0316 5656 C:\Windows\System32\drivers\athrx.sys - ok
17:11:10.0316 5656 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] C:\Windows\System32\drivers\NTIDrvr.sys
17:11:10.0316 5656 C:\Windows\System32\drivers\NTIDrvr.sys - ok
17:11:10.0332 5656 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] C:\Windows\System32\drivers\UBHelper.sys
17:11:10.0332 5656 C:\Windows\System32\drivers\UBHelper.sys - ok
17:11:10.0348 5656 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
17:11:10.0348 5656 C:\Windows\System32\drivers\vwifibus.sys - ok
17:11:10.0363 5656 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
17:11:10.0363 5656 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
17:11:10.0363 5656 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
17:11:10.0363 5656 C:\Windows\System32\drivers\usbohci.sys - ok
17:11:10.0379 5656 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
17:11:10.0379 5656 C:\Windows\System32\drivers\usbport.sys - ok
17:11:10.0394 5656 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
17:11:10.0394 5656 C:\Windows\System32\drivers\i8042prt.sys - ok
17:11:10.0410 5656 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
17:11:10.0410 5656 C:\Windows\System32\drivers\usbehci.sys - ok
17:11:10.0426 5656 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:11:10.0426 5656 C:\Windows\System32\drivers\kbdclass.sys - ok
17:11:10.0426 5656 [ 064A2530A4A7C7CEC1BE6A1945645BE4 ] C:\Windows\System32\drivers\SynTP.sys
17:11:10.0426 5656 C:\Windows\System32\drivers\SynTP.sys - ok
17:11:10.0441 5656 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
17:11:10.0441 5656 C:\Windows\System32\drivers\usbd.sys - ok
17:11:10.0457 5656 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
17:11:10.0457 5656 C:\Windows\System32\drivers\CmBatt.sys - ok
17:11:10.0472 5656 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:11:10.0472 5656 C:\Windows\System32\drivers\mouclass.sys - ok
17:11:10.0488 5656 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
17:11:10.0488 5656 C:\Windows\System32\drivers\wmiacpi.sys - ok
17:11:10.0488 5656 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
17:11:10.0488 5656 C:\Windows\System32\drivers\CompositeBus.sys - ok
17:11:10.0504 5656 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:11:10.0504 5656 C:\Windows\System32\drivers\agilevpn.sys - ok
17:11:10.0519 5656 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:11:10.0519 5656 C:\Windows\System32\drivers\ndistapi.sys - ok
17:11:10.0535 5656 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
17:11:10.0535 5656 C:\Windows\System32\drivers\rasl2tp.sys - ok
17:11:10.0550 5656 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
17:11:10.0550 5656 C:\Windows\System32\drivers\ndiswan.sys - ok
17:11:10.0550 5656 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:11:10.0550 5656 C:\Windows\System32\drivers\raspppoe.sys - ok
17:11:10.0566 5656 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
17:11:10.0566 5656 C:\Windows\System32\drivers\raspptp.sys - ok
17:11:10.0582 5656 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:11:10.0582 5656 C:\Windows\System32\drivers\rassstp.sys - ok
17:11:10.0597 5656 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
17:11:10.0597 5656 C:\Windows\System32\drivers\ks.sys - ok
17:11:10.0597 5656 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:11:10.0597 5656 C:\Windows\System32\drivers\swenum.sys - ok
17:11:10.0613 5656 [ 952AB3BDEF38A7391AA05BC8C6028F15 ] C:\Windows\System32\drivers\NWADIenum.sys
17:11:10.0613 5656 C:\Windows\System32\drivers\NWADIenum.sys - ok
17:11:10.0628 5656 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
17:11:10.0628 5656 C:\Windows\System32\drivers\umbus.sys - ok
17:11:10.0644 5656 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
17:11:10.0644 5656 C:\Windows\System32\advapi32.dll - ok
17:11:10.0644 5656 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
17:11:10.0644 5656 C:\Windows\System32\shlwapi.dll - ok
17:11:10.0660 5656 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
17:11:10.0660 5656 C:\Windows\System32\ws2_32.dll - ok
17:11:10.0675 5656 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:11:10.0675 5656 C:\Windows\System32\clbcatq.dll - ok
17:11:10.0691 5656 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
17:11:10.0691 5656 C:\Windows\System32\comdlg32.dll - ok
17:11:10.0706 5656 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:11:10.0706 5656 C:\Windows\System32\sechost.dll - ok
17:11:10.0706 5656 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:11:10.0706 5656 C:\Windows\System32\msctf.dll - ok
17:11:10.0722 5656 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:11:10.0722 5656 C:\Windows\System32\nsi.dll - ok
17:11:10.0738 5656 [ FF1AAEDD4A1A0FC3C5ED66B4EE0B254A ] C:\Windows\System32\urlmon.dll
17:11:10.0738 5656 C:\Windows\System32\urlmon.dll - ok
17:11:10.0753 5656 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
17:11:10.0753 5656 C:\Windows\System32\usp10.dll - ok
17:11:10.0753 5656 [ FA274190682AA41A46B285208ED46A74 ] C:\Windows\System32\wininet.dll
17:11:10.0753 5656 C:\Windows\System32\wininet.dll - ok
17:11:10.0769 5656 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
17:11:10.0769 5656 C:\Windows\System32\drivers\usbhub.sys - ok
17:11:10.0784 5656 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
17:11:10.0784 5656 C:\Windows\System32\drivers\ndproxy.sys - ok
17:11:10.0784 5656 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
17:11:10.0784 5656 C:\Windows\System32\drivers\drmk.sys - ok
17:11:10.0800 5656 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
17:11:10.0800 5656 C:\Windows\System32\drivers\ksthunk.sys - ok
17:11:10.0816 5656 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
17:11:10.0816 5656 C:\Windows\System32\drivers\portcls.sys - ok
17:11:10.0831 5656 [ 4E821C740A675F6D040BE41D59A62B1D ] C:\Windows\System32\drivers\RtHDMIVX.sys
17:11:10.0831 5656 C:\Windows\System32\drivers\RtHDMIVX.sys - ok
17:11:10.0847 5656 [ FEADC18677A85A123E95A9B976101120 ] C:\Windows\System32\drivers\RTKVHD64.sys
17:11:10.0847 5656 C:\Windows\System32\drivers\RTKVHD64.sys - ok
17:11:10.0847 5656 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
17:11:10.0847 5656 C:\Windows\System32\oleaut32.dll - ok
17:11:10.0862 5656 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
17:11:10.0862 5656 C:\Windows\System32\drivers\usbccgp.sys - ok
17:11:10.0878 5656 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
17:11:10.0878 5656 C:\Windows\System32\drivers\hidclass.sys - ok
17:11:10.0894 5656 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
17:11:10.0894 5656 C:\Windows\System32\drivers\hidparse.sys - ok
17:11:10.0894 5656 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
17:11:10.0894 5656 C:\Windows\System32\drivers\hidusb.sys - ok
17:11:10.0909 5656 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
17:11:10.0909 5656 C:\Windows\System32\drivers\kbdhid.sys - ok
17:11:10.0925 5656 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
17:11:10.0925 5656 C:\Windows\System32\drivers\mouhid.sys - ok
17:11:10.0940 5656 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
17:11:10.0940 5656 C:\Windows\System32\drivers\usbvideo.sys - ok
17:11:10.0956 5656 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:11:10.0956 5656 C:\Windows\System32\difxapi.dll - ok
17:11:10.0956 5656 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
17:11:10.0956 5656 C:\Windows\System32\Wldap32.dll - ok
17:11:10.0972 5656 [ A54A16DAE7497CDCB8C5A021C0F6FEB8 ] C:\Windows\System32\iertutil.dll
17:11:10.0972 5656 C:\Windows\System32\iertutil.dll - ok
17:11:10.0987 5656 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:11:10.0987 5656 C:\Windows\System32\normaliz.dll - ok
17:11:11.0003 5656 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
17:11:11.0003 5656 C:\Windows\System32\ole32.dll - ok
17:11:11.0003 5656 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:11:11.0003 5656 C:\Windows\System32\psapi.dll - ok
17:11:11.0018 5656 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
17:11:11.0018 5656 C:\Windows\System32\msvcrt.dll - ok
17:11:11.0034 5656 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
17:11:11.0034 5656 C:\Windows\System32\user32.dll - ok
17:11:11.0050 5656 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
17:11:11.0050 5656 C:\Windows\System32\gdi32.dll - ok
17:11:11.0050 5656 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
17:11:11.0050 5656 C:\Windows\System32\imagehlp.dll - ok
17:11:11.0065 5656 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:11:11.0065 5656 C:\Windows\System32\imm32.dll - ok
17:11:11.0081 5656 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
17:11:11.0081 5656 C:\Windows\System32\lpk.dll - ok
17:11:11.0096 5656 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
17:11:11.0096 5656 C:\Windows\System32\rpcrt4.dll - ok
17:11:11.0096 5656 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
17:11:11.0096 5656 C:\Windows\System32\kernel32.dll - ok
17:11:11.0112 5656 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
17:11:11.0112 5656 C:\Windows\System32\setupapi.dll - ok
17:11:11.0128 5656 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
17:11:11.0128 5656 C:\Windows\System32\cfgmgr32.dll - ok
17:11:11.0128 5656 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
17:11:11.0128 5656 C:\Windows\System32\KernelBase.dll - ok
17:11:11.0143 5656 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
17:11:11.0143 5656 C:\Windows\System32\comctl32.dll - ok
17:11:11.0159 5656 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:11:11.0159 5656 C:\Windows\System32\devobj.dll - ok
17:11:11.0174 5656 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
17:11:11.0174 5656 C:\Windows\System32\wintrust.dll - ok
17:11:11.0190 5656 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
17:11:11.0190 5656 C:\Windows\System32\crypt32.dll - ok
17:11:11.0190 5656 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
17:11:11.0190 5656 C:\Windows\System32\msasn1.dll - ok
17:11:11.0206 5656 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:11:11.0206 5656 C:\Windows\SysWOW64\normaliz.dll - ok
17:11:11.0221 5656 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:11:11.0221 5656 C:\Windows\System32\drivers\dxapi.sys - ok
17:11:11.0237 5656 [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
17:11:11.0237 5656 C:\Windows\System32\win32k.sys - ok
17:11:11.0252 5656 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:11:11.0252 5656 C:\Windows\System32\csrss.exe - ok
17:11:11.0252 5656 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
17:11:11.0252 5656 C:\Windows\System32\csrsrv.dll - ok
17:11:11.0268 5656 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:11:11.0268 5656 C:\Windows\System32\basesrv.dll - ok
17:11:11.0284 5656 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
17:11:11.0284 5656 C:\Windows\System32\winsrv.dll - ok
17:11:11.0299 5656 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
17:11:11.0299 5656 C:\Windows\System32\drivers\monitor.sys - ok
17:11:11.0299 5656 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:11:11.0315 5656 C:\Windows\System32\tsddd.dll - ok
17:11:11.0315 5656 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:11:11.0315 5656 C:\Windows\System32\sxssrv.dll - ok
17:11:11.0330 5656 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:11:11.0330 5656 C:\Windows\System32\wininit.exe - ok
17:11:11.0346 5656 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
17:11:11.0346 5656 C:\Windows\System32\cdd.dll - ok
17:11:11.0362 5656 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
17:11:11.0362 5656 C:\Windows\System32\KBDUS.DLL - ok
17:11:11.0362 5656 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:11:11.0362 5656 C:\Windows\System32\profapi.dll - ok
17:11:11.0377 5656 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
17:11:11.0377 5656 C:\Windows\System32\RpcRtRemote.dll - ok
17:11:11.0393 5656 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:11:11.0393 5656 C:\Windows\System32\WlS0WndH.dll - ok
17:11:11.0393 5656 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
17:11:11.0393 5656 C:\Windows\System32\sxs.dll - ok
17:11:11.0408 5656 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:11:11.0408 5656 C:\Windows\System32\cryptbase.dll - ok
17:11:11.0424 5656 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
17:11:11.0424 5656 C:\Windows\System32\apphelp.dll - ok
17:11:11.0424 5656 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
17:11:11.0424 5656 C:\Windows\System32\lsass.exe - ok
17:11:11.0440 5656 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
17:11:11.0440 5656 C:\Windows\System32\lsm.exe - ok
17:11:11.0455 5656 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:11:11.0455 5656 C:\Windows\System32\services.exe - ok
17:11:11.0471 5656 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
17:11:11.0471 5656 C:\Windows\System32\winlogon.exe - ok
17:11:11.0486 5656 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
17:11:11.0486 5656 C:\Windows\System32\lsasrv.dll - ok
17:11:11.0486 5656 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
17:11:11.0486 5656 C:\Windows\System32\sspicli.dll - ok
17:11:11.0502 5656 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
17:11:11.0502 5656 C:\Windows\System32\sspisrv.dll - ok
17:11:11.0518 5656 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:11:11.0518 5656 C:\Windows\System32\sysntfy.dll - ok
17:11:11.0533 5656 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:11:11.0533 5656 C:\Windows\System32\wmsgapi.dll - ok
17:11:11.0533 5656 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
17:11:11.0533 5656 C:\Windows\System32\scesrv.dll - ok
17:11:11.0549 5656 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:11:11.0549 5656 C:\Windows\System32\scext.dll - ok
17:11:11.0564 5656 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
17:11:11.0564 5656 C:\Windows\System32\secur32.dll - ok
17:11:11.0580 5656 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
17:11:11.0580 5656 C:\Windows\System32\samsrv.dll - ok
17:11:11.0596 5656 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
17:11:11.0596 5656 C:\Windows\System32\srvcli.dll - ok
17:11:11.0596 5656 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:11:11.0596 5656 C:\Windows\System32\cryptdll.dll - ok
17:11:11.0611 5656 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:11:11.0611 5656 C:\Windows\System32\wevtapi.dll - ok
17:11:11.0627 5656 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:11:11.0627 5656 C:\Windows\System32\authz.dll - ok
17:11:11.0642 5656 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:11:11.0642 5656 C:\Windows\System32\cngaudit.dll - ok
17:11:11.0642 5656 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
17:11:11.0642 5656 C:\Windows\System32\ncrypt.dll - ok
17:11:11.0658 5656 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:11:11.0658 5656 C:\Windows\System32\bcrypt.dll - ok
17:11:11.0674 5656 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:11:11.0674 5656 C:\Windows\System32\msprivs.dll - ok
17:11:11.0689 5656 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
17:11:11.0689 5656 C:\Windows\System32\netjoin.dll - ok
17:11:11.0689 5656 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
17:11:11.0689 5656 C:\Windows\System32\atmfd.dll - ok
17:11:11.0705 5656 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:11:11.0705 5656 C:\Windows\System32\negoexts.dll - ok
17:11:11.0720 5656 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
17:11:11.0720 5656 C:\Windows\System32\kerberos.dll - ok
17:11:11.0736 5656 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:11:11.0736 5656 C:\Windows\System32\cryptsp.dll - ok
17:11:11.0736 5656 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:11:11.0736 5656 C:\Windows\System32\version.dll - ok
17:11:11.0752 5656 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
17:11:11.0752 5656 C:\Windows\System32\msv1_0.dll - ok
17:11:11.0767 5656 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
17:11:11.0767 5656 C:\Windows\System32\mswsock.dll - ok
17:11:11.0783 5656 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:11:11.0783 5656 C:\Windows\System32\wship6.dll - ok
17:11:11.0798 5656 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
17:11:11.0798 5656 C:\Windows\System32\netlogon.dll - ok
17:11:11.0798 5656 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
17:11:11.0798 5656 C:\Windows\System32\dnsapi.dll - ok
17:11:11.0814 5656 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
17:11:11.0814 5656 C:\Windows\System32\logoncli.dll - ok
17:11:11.0830 5656 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
17:11:11.0830 5656 C:\Windows\System32\schannel.dll - ok
17:11:11.0845 5656 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:11:11.0845 5656 C:\Windows\System32\wdigest.dll - ok
17:11:11.0861 5656 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:11:11.0861 5656 C:\Windows\System32\pku2u.dll - ok
17:11:11.0861 5656 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:11:11.0861 5656 C:\Windows\System32\rsaenh.dll - ok
17:11:11.0876 5656 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
17:11:11.0876 5656 C:\Windows\System32\TSpkg.dll - ok
17:11:11.0892 5656 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
17:11:11.0892 5656 C:\Windows\System32\LIVESSP.DLL - ok
17:11:11.0908 5656 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
17:11:11.0908 5656 C:\Windows\System32\bcryptprimitives.dll - ok
17:11:11.0908 5656 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
17:11:11.0908 5656 C:\Windows\System32\credssp.dll - ok
17:11:11.0923 5656 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:11:11.0923 5656 C:\Windows\System32\efslsaext.dll - ok
17:11:11.0939 5656 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
17:11:11.0939 5656 C:\Windows\System32\scecli.dll - ok
17:11:11.0939 5656 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:11:11.0939 5656 C:\Windows\System32\ubpm.dll - ok
17:11:11.0954 5656 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
17:11:11.0954 5656 C:\Windows\System32\winsta.dll - ok
17:11:11.0970 5656 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:11:11.0970 5656 C:\Windows\System32\svchost.exe - ok
17:11:11.0986 5656 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:11:11.0986 5656 C:\Windows\System32\devrtl.dll - ok
17:11:12.0001 5656 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:11:12.0001 5656 C:\Windows\System32\SPInf.dll - ok
17:11:12.0001 5656 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
17:11:12.0001 5656 C:\Windows\System32\umpnpmgr.dll - ok
17:11:12.0017 5656 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
17:11:12.0017 5656 C:\Windows\System32\userenv.dll - ok
17:11:12.0032 5656 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:11:12.0032 5656 C:\Windows\System32\gpapi.dll - ok
17:11:12.0048 5656 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:11:12.0048 5656 C:\Windows\System32\umpo.dll - ok
17:11:12.0048 5656 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:11:12.0048 5656 C:\Windows\System32\pcwum.dll - ok
17:11:12.0064 5656 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:11:12.0064 5656 C:\Windows\System32\powrprof.dll - ok
17:11:12.0079 5656 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
17:11:12.0079 5656 C:\Windows\System32\drivers\luafv.sys - ok
17:11:12.0095 5656 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
17:11:12.0095 5656 C:\Windows\System32\rpcss.dll - ok
17:11:12.0110 5656 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:11:12.0110 5656 C:\Windows\System32\RpcEpMap.dll - ok
17:11:12.0110 5656 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:11:12.0110 5656 C:\Windows\System32\WSHTCPIP.DLL - ok
17:11:12.0126 5656 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:11:12.0126 5656 C:\Windows\System32\wshqos.dll - ok
17:11:12.0142 5656 [ DCEEE24E57E8176115207312F827C130 ] C:\Windows\System32\atiesrxx.exe
17:11:12.0142 5656 C:\Windows\System32\atiesrxx.exe - ok
17:11:12.0157 5656 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:11:12.0157 5656 C:\Windows\System32\FirewallAPI.dll - ok
17:11:12.0157 5656 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:11:12.0157 5656 C:\Windows\System32\wtsapi32.dll - ok
17:11:12.0173 5656 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
17:11:12.0173 5656 C:\Windows\System32\LogonUI.exe - ok
17:11:12.0188 5656 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
17:11:12.0188 5656 C:\Windows\System32\authui.dll - ok
17:11:12.0188 5656 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
17:11:12.0188 5656 C:\Windows\System32\wevtsvc.dll - ok
17:11:12.0204 5656 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
17:11:12.0204 5656 C:\Windows\System32\cryptui.dll - ok
17:11:12.0220 5656 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
17:11:12.0220 5656 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
17:11:12.0235 5656 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:11:12.0235 5656 C:\Windows\System32\samlib.dll - ok
17:11:12.0251 5656 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
17:11:12.0251 5656 C:\Windows\System32\shacct.dll - ok
17:11:12.0251 5656 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
17:11:12.0251 5656 C:\Windows\System32\propsys.dll - ok
17:11:12.0266 5656 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:11:12.0266 5656 C:\Windows\System32\uxtheme.dll - ok
17:11:12.0282 5656 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
17:11:12.0282 5656 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
17:11:12.0298 5656 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:11:12.0298 5656 C:\Windows\System32\dui70.dll - ok
17:11:12.0298 5656 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:11:12.0298 5656 C:\Windows\System32\duser.dll - ok
17:11:12.0313 5656 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
17:11:12.0313 5656 C:\Windows\System32\SndVolSSO.dll - ok
17:11:12.0329 5656 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:11:12.0329 5656 C:\Windows\System32\hid.dll - ok
17:11:12.0344 5656 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:11:12.0344 5656 C:\Windows\System32\MMDevAPI.dll - ok
17:11:12.0344 5656 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:11:12.0344 5656 C:\Windows\System32\dwmapi.dll - ok
17:11:12.0360 5656 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
17:11:12.0360 5656 C:\Windows\System32\xmllite.dll - ok
17:11:12.0376 5656 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
17:11:12.0376 5656 C:\Windows\System32\audiosrv.dll - ok
17:11:12.0391 5656 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:11:12.0391 5656 C:\Windows\System32\avrt.dll - ok
17:11:12.0391 5656 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
17:11:12.0391 5656 C:\Windows\System32\mmcss.dll - ok
17:11:12.0407 5656 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
17:11:12.0407 5656 C:\Windows\System32\WindowsCodecs.dll - ok
17:11:12.0422 5656 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:11:12.0422 5656 C:\Windows\System32\netprofm.dll - ok
17:11:12.0438 5656 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:11:12.0438 5656 C:\Windows\System32\winbrand.dll - ok
17:11:12.0454 5656 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:11:12.0454 5656 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:11:12.0454 5656 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:11:12.0454 5656 C:\Windows\System32\VaultCredProvider.dll - ok
17:11:12.0469 5656 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
17:11:12.0469 5656 C:\Windows\System32\BioCredProv.dll - ok
17:11:12.0485 5656 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
17:11:12.0485 5656 C:\Windows\System32\winbio.dll - ok
17:11:12.0500 5656 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
17:11:12.0500 5656 C:\Windows\System32\credui.dll - ok
17:11:12.0500 5656 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
17:11:12.0500 5656 C:\Windows\System32\netapi32.dll - ok
17:11:12.0516 5656 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
17:11:12.0516 5656 C:\Windows\System32\netutils.dll - ok
17:11:12.0532 5656 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
17:11:12.0532 5656 C:\Windows\System32\vaultcli.dll - ok
17:11:12.0547 5656 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
17:11:12.0547 5656 C:\Windows\System32\wkscli.dll - ok
17:11:12.0547 5656 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
17:11:12.0547 5656 C:\Windows\System32\certCredProvider.dll - ok
17:11:12.0563 5656 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
17:11:12.0563 5656 C:\Windows\System32\samcli.dll - ok
17:11:12.0578 5656 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
17:11:12.0578 5656 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
17:11:12.0594 5656 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
17:11:12.0594 5656 C:\Windows\System32\rasplap.dll - ok
17:11:12.0610 5656 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:11:12.0610 5656 C:\Windows\System32\rasapi32.dll - ok
17:11:12.0610 5656 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:11:12.0610 5656 C:\Windows\System32\rasman.dll - ok
17:11:12.0625 5656 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
17:11:12.0625 5656 C:\Windows\System32\rtutils.dll - ok
17:11:12.0641 5656 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:11:12.0641 5656 C:\Windows\System32\adtschema.dll - ok
17:11:12.0656 5656 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
17:11:12.0656 5656 C:\Windows\System32\MPSSVC.dll - ok
17:11:12.0672 5656 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
17:11:12.0672 5656 C:\Windows\System32\audiodg.exe - ok
17:11:12.0672 5656 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:11:12.0672 5656 C:\Windows\System32\ntmarta.dll - ok
17:11:12.0688 5656 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
17:11:12.0688 5656 C:\Windows\System32\gpsvc.dll - ok
17:11:12.0703 5656 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
17:11:12.0703 5656 C:\Windows\System32\profsvc.dll - ok
17:11:12.0719 5656 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:11:12.0719 5656 C:\Windows\System32\dsrole.dll - ok
17:11:12.0719 5656 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
17:11:12.0719 5656 C:\Windows\System32\nlaapi.dll - ok
17:11:12.0734 5656 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:11:12.0734 5656 C:\Windows\System32\slc.dll - ok
17:11:12.0750 5656 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:11:12.0750 5656 C:\Windows\System32\wlansvc.dll - ok
17:11:12.0766 5656 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:11:12.0766 5656 C:\Windows\System32\es.dll - ok
17:11:12.0766 5656 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:11:12.0766 5656 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:11:12.0781 5656 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
17:11:12.0781 5656 C:\Windows\System32\drivers\fltMgr.sys - ok
17:11:12.0797 5656 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
17:11:12.0797 5656 C:\Windows\System32\comres.dll - ok
17:11:12.0812 5656 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:11:12.0812 5656 C:\Windows\System32\PSHED.DLL - ok
17:11:12.0828 5656 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:11:12.0828 5656 C:\Windows\System32\atl.dll - ok
17:11:12.0828 5656 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
17:11:12.0828 5656 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
17:11:12.0844 5656 [ 3080E59431AE0F5F386F05A421CE7559 ] C:\Windows\System32\atieclxx.exe
17:11:12.0844 5656 C:\Windows\System32\atieclxx.exe - ok
17:11:12.0859 5656 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
17:11:12.0859 5656 C:\Windows\System32\themeservice.dll - ok
17:11:12.0875 5656 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:11:12.0875 5656 C:\Windows\System32\UXInit.dll - ok
17:11:12.0875 5656 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
17:11:12.0875 5656 C:\Windows\System32\Sens.dll - ok
17:11:12.0890 5656 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
17:11:12.0890 5656 C:\Windows\System32\drivers\lltdio.sys - ok
17:11:12.0906 5656 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
17:11:12.0906 5656 C:\Windows\System32\uxsms.dll - ok
17:11:12.0922 5656 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:11:12.0922 5656 C:\Windows\System32\drivers\nwifi.sys - ok
17:11:12.0937 5656 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
17:11:12.0937 5656 C:\Windows\System32\drivers\ndisuio.sys - ok
17:11:12.0953 5656 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
17:11:12.0953 5656 C:\Windows\System32\drivers\rspndr.sys - ok
17:11:12.0953 5656 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
17:11:12.0953 5656 C:\Windows\System32\IPHLPAPI.DLL - ok
17:11:12.0968 5656 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:11:12.0968 5656 C:\Windows\System32\lmhsvc.dll - ok
17:11:12.0984 5656 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
17:11:12.0984 5656 C:\Windows\System32\nrpsrv.dll - ok
17:11:12.0984 5656 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:11:12.0984 5656 C:\Windows\System32\nsisvc.dll - ok
17:11:13.0000 5656 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:11:13.0000 5656 C:\Windows\System32\winnsi.dll - ok
17:11:13.0015 5656 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:11:13.0015 5656 C:\Windows\System32\eapsvc.dll - ok
17:11:13.0031 5656 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:11:13.0031 5656 C:\Windows\System32\keyiso.dll - ok
17:11:13.0031 5656 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
17:11:13.0031 5656 C:\Windows\System32\dnsrslvr.dll - ok
17:11:13.0046 5656 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
17:11:13.0046 5656 C:\Windows\System32\eapphost.dll - ok
17:11:13.0062 5656 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
17:11:13.0062 5656 C:\Windows\System32\dhcpcore.dll - ok
17:11:13.0078 5656 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
17:11:13.0078 5656 C:\Windows\System32\dhcpcore6.dll - ok
17:11:13.0093 5656 [ 15B8C80B021BB978253996640EA5D5B7 ] C:\Windows\System32\atiadlxx.dll
17:11:13.0093 5656 C:\Windows\System32\atiadlxx.dll - ok
17:11:13.0093 5656 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
17:11:13.0093 5656 C:\Windows\System32\FWPUCLNT.DLL - ok
17:11:13.0109 5656 [ 00A2F06579753733A2600775C0AC1725 ] C:\Windows\System32\atimuixx.dll
17:11:13.0109 5656 C:\Windows\System32\atimuixx.dll - ok
17:11:13.0124 5656 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:11:13.0124 5656 C:\Windows\System32\dnsext.dll - ok
17:11:13.0140 5656 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:11:13.0140 5656 C:\Windows\System32\dhcpcsvc.dll - ok
17:11:13.0156 5656 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
17:11:13.0156 5656 C:\Windows\System32\dhcpcsvc6.dll - ok
17:11:13.0156 5656 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
17:11:13.0156 5656 C:\Windows\System32\umb.dll - ok
17:11:13.0171 5656 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
17:11:13.0171 5656 C:\Windows\System32\wlanmsm.dll - ok
17:11:13.0187 5656 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:11:13.0187 5656 C:\Windows\System32\wlansec.dll - ok
17:11:13.0202 5656 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:11:13.0202 5656 C:\Windows\System32\eappprxy.dll - ok
17:11:13.0202 5656 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
17:11:13.0202 5656 C:\Windows\System32\onex.dll - ok
17:11:13.0218 5656 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:11:13.0218 5656 C:\Windows\System32\eappcfg.dll - ok
17:11:13.0234 5656 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:11:13.0234 5656 C:\Windows\System32\wlgpclnt.dll - ok
17:11:13.0249 5656 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:11:13.0249 5656 C:\Windows\System32\l2gpstore.dll - ok
17:11:13.0249 5656 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
17:11:13.0249 5656 C:\Windows\System32\WinSCard.dll - ok
17:11:13.0265 5656 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:11:13.0265 5656 C:\Windows\System32\wlanutil.dll - ok
17:11:13.0280 5656 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
17:11:13.0280 5656 C:\Windows\System32\msxml6.dll - ok
17:11:13.0296 5656 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
17:11:13.0296 5656 C:\Windows\System32\shsvcs.dll - ok
17:11:13.0296 5656 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
17:11:13.0296 5656 C:\Windows\System32\wlanext.exe - ok
17:11:13.0312 5656 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
17:11:13.0312 5656 C:\Windows\System32\conhost.exe - ok
17:11:13.0327 5656 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
17:11:13.0327 5656 C:\Windows\System32\schedsvc.dll - ok
17:11:13.0343 5656 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
17:11:13.0343 5656 C:\Windows\System32\ktmw32.dll - ok
17:11:13.0343 5656 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
17:11:13.0343 5656 C:\Windows\System32\fveapi.dll - ok
17:11:13.0358 5656 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
17:11:13.0358 5656 C:\Windows\System32\fvecerts.dll - ok
17:11:13.0374 5656 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
17:11:13.0374 5656 C:\Windows\System32\tbs.dll - ok
17:11:13.0390 5656 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
17:11:13.0390 5656 C:\Windows\System32\wiarpc.dll - ok
17:11:13.0405 5656 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
17:11:13.0405 5656 C:\Windows\System32\taskcomp.dll - ok
17:11:13.0405 5656 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
17:11:13.0405 5656 C:\Windows\System32\netcfgx.dll - ok
17:11:13.0421 5656 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:11:13.0421 5656 C:\Windows\System32\imageres.dll - ok
17:11:13.0436 5656 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
17:11:13.0436 5656 C:\Windows\System32\drivers\http.sys - ok
17:11:13.0452 5656 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
17:11:13.0452 5656 C:\Windows\System32\drivers\vwifimp.sys - ok
17:11:13.0468 5656 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
17:11:13.0468 5656 C:\Windows\System32\spoolsv.exe - ok
17:11:13.0468 5656 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:11:13.0468 5656 C:\Windows\System32\dllhost.exe - ok
17:11:13.0483 5656 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
17:11:13.0483 5656 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
17:11:13.0499 5656 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:11:13.0499 5656 C:\Windows\System32\IDStore.dll - ok
17:11:13.0514 5656 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
17:11:13.0514 5656 C:\Windows\System32\taskhost.exe - ok
17:11:13.0514 5656 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
17:11:13.0514 5656 C:\Windows\System32\AtBroker.exe - ok
17:11:13.0530 5656 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:11:13.0530 5656 C:\Windows\System32\mpr.dll - ok
17:11:13.0546 5656 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
17:11:13.0546 5656 C:\Windows\System32\userinit.exe - ok
17:11:13.0561 5656 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
17:11:13.0561 5656 C:\Program Files\Bonjour\mdnsNSP.dll - ok
17:11:13.0577 5656 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
17:11:13.0577 5656 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
17:11:13.0592 5656 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
17:11:13.0592 5656 C:\Windows\System32\dwm.exe - ok
17:11:13.0592 5656 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:11:13.0592 5656 C:\Windows\System32\rasadhlp.dll - ok
17:11:13.0608 5656 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
17:11:13.0608 5656 C:\Windows\System32\dwmredir.dll - ok
17:11:13.0624 5656 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
17:11:13.0624 5656 C:\Windows\System32\PlaySndSrv.dll - ok
17:11:13.0639 5656 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
17:11:13.0639 5656 C:\Windows\System32\localspl.dll - ok
17:11:13.0655 5656 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:11:13.0655 5656 C:\Windows\System32\MsCtfMonitor.dll - ok
17:11:13.0655 5656 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
17:11:13.0655 5656 C:\Windows\System32\spoolss.dll - ok
17:11:13.0670 5656 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
17:11:13.0670 5656 C:\Windows\System32\winspool.drv - ok
17:11:13.0686 5656 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
17:11:13.0686 5656 C:\Windows\System32\PrintIsolationProxy.dll - ok
17:11:13.0702 5656 [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMGBA.DLL
17:11:13.0702 5656 C:\Windows\System32\E_ILMGBA.DLL - ok
17:11:13.0702 5656 [ 9C9FC1683DCE4F3FE24FDE04518E138D ] C:\Windows\System32\enppmon.dll
17:11:13.0702 5656 C:\Windows\System32\enppmon.dll - ok
17:11:13.0717 5656 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
17:11:13.0717 5656 C:\Windows\System32\msvcp60.dll - ok
17:11:13.0733 5656 [ 544482D396F1A0C0337879847032FBB3 ] C:\Windows\System32\enpres.dll
17:11:13.0733 5656 C:\Windows\System32\enpres.dll - ok
17:11:13.0748 5656 [ C835670705596AE67EE7E0AE92A12071 ] C:\Windows\System32\HPZLLLHN.DLL
17:11:13.0748 5656 C:\Windows\System32\HPZLLLHN.DLL - ok
17:11:13.0764 5656 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
17:11:13.0764 5656 C:\Windows\explorer.exe - ok
17:11:13.0764 5656 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
17:11:13.0764 5656 C:\Windows\System32\FXSMON.dll - ok
17:11:13.0780 5656 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
17:11:13.0780 5656 C:\Windows\System32\snmpapi.dll - ok
17:11:13.0795 5656 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
17:11:13.0795 5656 C:\Windows\System32\tcpmon.dll - ok
17:11:13.0811 5656 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
17:11:13.0811 5656 C:\Windows\System32\wsnmp32.dll - ok
17:11:13.0826 5656 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
17:11:13.0826 5656 C:\Windows\System32\usbmon.dll - ok
17:11:13.0826 5656 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
17:11:13.0826 5656 C:\Windows\System32\WSDMon.dll - ok
17:11:13.0842 5656 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
17:11:13.0842 5656 C:\Windows\System32\WSDApi.dll - ok
17:11:13.0842 5656 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
17:11:13.0842 5656 C:\Windows\System32\webservices.dll - ok
17:11:13.0858 5656 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
17:11:13.0858 5656 C:\Windows\System32\fundisc.dll - ok
17:11:13.0858 5656 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
17:11:13.0858 5656 C:\Windows\System32\fdPnp.dll - ok
17:11:13.0873 5656 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:11:13.0873 5656 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:11:13.0873 5656 [ C30A50449EA4B611484A5F1F1F016774 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
17:11:13.0873 5656 C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL - ok
17:11:13.0889 5656 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
17:11:13.0889 5656 C:\Windows\System32\win32spl.dll - ok
17:11:13.0889 5656 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
17:11:13.0889 5656 C:\Windows\System32\inetpp.dll - ok
17:11:13.0904 5656 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:11:13.0904 5656 C:\Windows\System32\msutb.dll - ok
17:11:13.0904 5656 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
17:11:13.0904 5656 C:\Windows\System32\HotStartUserAgent.dll - ok
17:11:13.0920 5656 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
17:11:13.0920 5656 C:\Windows\System32\cscapi.dll - ok
17:11:13.0920 5656 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
17:11:13.0920 5656 C:\Windows\System32\dwmcore.dll - ok
17:11:13.0936 5656 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
17:11:13.0936 5656 C:\Windows\System32\d3d10_1.dll - ok
17:11:13.0936 5656 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
17:11:13.0936 5656 C:\Windows\System32\d3d10_1core.dll - ok
17:11:13.0951 5656 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
17:11:13.0951 5656 C:\Windows\System32\dxgi.dll - ok
17:11:13.0951 5656 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:11:13.0951 5656 C:\Windows\System32\winmm.dll - ok
17:11:13.0967 5656 [ 01DBD898ACCE9B9B695CAC53DA009EF3 ] C:\Windows\System32\aticfx64.dll
17:11:13.0967 5656 C:\Windows\System32\aticfx64.dll - ok
17:11:13.0967 5656 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
17:11:13.0967 5656 C:\Windows\System32\BFE.DLL - ok
17:11:13.0982 5656 [ 976807DAEE652F29EE2DDB8C59A4C3AB ] C:\Windows\System32\atiuxp64.dll
17:11:13.0982 5656 C:\Windows\System32\atiuxp64.dll - ok
17:11:13.0982 5656 [ 5A1786161A09275611C91D007DD77EC7 ] C:\Windows\System32\atidxx64.dll
17:11:13.0982 5656 C:\Windows\System32\atidxx64.dll - ok
17:11:13.0998 5656 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
17:11:13.0998 5656 C:\Windows\System32\drivers\bowser.sys - ok
17:11:13.0998 5656 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
17:11:13.0998 5656 C:\Windows\System32\drivers\mpsdrv.sys - ok
17:11:14.0014 5656 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
17:11:14.0014 5656 C:\Windows\System32\wfapigp.dll - ok
17:11:14.0014 5656 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
17:11:14.0014 5656 C:\Windows\System32\drivers\mrxsmb.sys - ok
17:11:14.0029 5656 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
17:11:14.0029 5656 C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:11:14.0029 5656 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
17:11:14.0029 5656 C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:11:14.0045 5656 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
17:11:14.0045 5656 C:\Windows\System32\wkssvc.dll - ok
17:11:14.0045 5656 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
17:11:14.0045 5656 C:\Windows\System32\mscms.dll - ok
17:11:14.0060 5656 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
17:11:14.0060 5656 C:\Windows\System32\uDWM.dll - ok
17:11:14.0060 5656 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
17:11:14.0060 5656 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe - ok
17:11:14.0076 5656 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
17:11:14.0076 5656 C:\Windows\System32\ExplorerFrame.dll - ok
17:11:14.0076 5656 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
17:11:14.0076 5656 C:\Windows\System32\pcasvc.dll - ok
17:11:14.0092 5656 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
17:11:14.0092 5656 C:\Windows\System32\snmptrap.exe - ok
17:11:14.0092 5656 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
17:11:14.0092 5656 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
17:11:14.0107 5656 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
17:11:14.0107 5656 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
17:11:14.0107 5656 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:11:14.0107 5656 C:\Windows\System32\hnetcfg.dll - ok
17:11:14.0123 5656 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:11:14.0123 5656 C:\Windows\System32\EhStorShell.dll - ok
17:11:14.0138 5656 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
17:11:14.0138 5656 C:\Windows\System32\provsvc.dll - ok
17:11:14.0138 5656 [ FE2422F6078A32A4536E752697657880 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\bushell.dll
17:11:14.0138 5656 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\bushell.dll - ok
17:11:14.0154 5656 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
17:11:14.0154 5656 C:\Windows\System32\sstpsvc.dll - ok
17:11:14.0154 5656 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcp100.dll
17:11:14.0154 5656 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcp100.dll - ok
17:11:14.0170 5656 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcr100.dll
17:11:14.0170 5656 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\msvcr100.dll - ok
17:11:14.0170 5656 [ 8888EB78B322F6FE1F2623485CAD43FF ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccL120U.dll
17:11:14.0170 5656 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccL120U.dll - ok
17:11:14.0185 5656 [ A64FD422D01E71057B65B448C835D4E7 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\efacli64.dll
17:11:14.0185 5656 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\efacli64.dll - ok
17:11:14.0185 5656 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
17:11:14.0185 5656 C:\Windows\System32\ntshrui.dll - ok
17:11:14.0201 5656 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:11:14.0201 5656 C:\Windows\System32\IconCodecService.dll - ok
17:11:14.0201 5656 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
17:11:14.0201 5656 C:\Windows\System32\ntprint.dll - ok
17:11:14.0216 5656 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
17:11:14.0216 5656 C:\Windows\System32\taskeng.exe - ok
17:11:14.0216 5656 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
17:11:14.0216 5656 C:\Windows\System32\TSChannel.dll - ok
17:11:14.0232 5656 [ C3D90887181F94A0F469AF60C06CBAA5 ] C:\Users\James\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe
17:11:14.0232 5656 C:\Users\James\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe - ok
17:11:14.0232 5656 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:11:14.0232 5656 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
17:11:14.0248 5656 [ 9A7F1691F76E019C11481B6355125072 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
17:11:14.0248 5656 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
17:11:14.0248 5656 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
17:11:14.0248 5656 C:\Windows\SysWOW64\ntdll.dll - ok
17:11:14.0248 5656 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
17:11:14.0248 5656 C:\Windows\System32\wow64.dll - ok
17:11:14.0263 5656 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
17:11:14.0263 5656 C:\Windows\System32\wow64win.dll - ok
17:11:14.0263 5656 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
17:11:14.0263 5656 C:\Windows\System32\wow64cpu.dll - ok
17:11:14.0279 5656 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
17:11:14.0279 5656 C:\Windows\SysWOW64\kernel32.dll - ok
17:11:14.0279 5656 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
17:11:14.0279 5656 C:\Windows\SysWOW64\KernelBase.dll - ok
17:11:14.0294 5656 [ 7601305A158367EBFCB8F01DC2E12E28 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\UMEngx86.dll
17:11:14.0294 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\UMEngx86.dll - ok
17:11:14.0294 5656 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
17:11:14.0294 5656 C:\Windows\SysWOW64\advapi32.dll - ok
17:11:14.0294 5656 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
17:11:14.0294 5656 C:\Windows\SysWOW64\ole32.dll - ok
17:11:14.0310 5656 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
17:11:14.0310 5656 C:\Windows\SysWOW64\msvcrt.dll - ok
17:11:14.0310 5656 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
17:11:14.0310 5656 C:\Windows\SysWOW64\rpcrt4.dll - ok
17:11:14.0326 5656 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:11:14.0326 5656 C:\Windows\SysWOW64\sechost.dll - ok
17:11:14.0326 5656 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:11:14.0326 5656 C:\Windows\SysWOW64\cryptbase.dll - ok
17:11:14.0326 5656 [ 78E3A1BE942B6CA69C01BAD7263D888C ] C:\Windows\SysWOW64\EEBUtil.dll
17:11:14.0326 5656 C:\Windows\SysWOW64\EEBUtil.dll - ok
17:11:14.0341 5656 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
17:11:14.0341 5656 C:\Windows\SysWOW64\sspicli.dll - ok
17:11:14.0341 5656 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
17:11:14.0341 5656 C:\Windows\SysWOW64\user32.dll - ok
17:11:14.0357 5656 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
17:11:14.0357 5656 C:\Windows\SysWOW64\gdi32.dll - ok
17:11:14.0357 5656 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
17:11:14.0357 5656 C:\Windows\SysWOW64\lpk.dll - ok
17:11:14.0357 5656 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
17:11:14.0357 5656 C:\Windows\SysWOW64\usp10.dll - ok
17:11:14.0372 5656 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
17:11:14.0372 5656 C:\Windows\SysWOW64\imm32.dll - ok
17:11:14.0372 5656 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:11:14.0372 5656 C:\Windows\SysWOW64\msctf.dll - ok
17:11:14.0388 5656 [ 65BB5D319081E4EC2880A78A0091A84B ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBIPDev.DLL
17:11:14.0388 5656 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBIPDev.DLL - ok
17:11:14.0388 5656 [ 7E70D0B6A85502C5D3A1DB062B72E78C ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBLPBidiDev.DLL
17:11:14.0388 5656 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBLPBidiDev.DLL - ok
17:11:14.0404 5656 [ 8D6D80315A238D049AE8A33C1EE632F8 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBRsvc.dll
17:11:14.0404 5656 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBRsvc.dll - ok
17:11:14.0404 5656 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
17:11:14.0404 5656 C:\Windows\SysWOW64\ws2_32.dll - ok
17:11:14.0419 5656 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:11:14.0419 5656 C:\Windows\SysWOW64\nsi.dll - ok
17:11:14.0419 5656 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
17:11:14.0419 5656 C:\Windows\SysWOW64\winspool.drv - ok
17:11:14.0419 5656 [ 2510150D2BB54115141E83F3205B6013 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBMSDev.dll
17:11:14.0419 5656 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBMSDev.dll - ok
17:11:14.0435 5656 [ 59CDF93DFA24264E6D75E1E3C00CD27F ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBNWDev.dll
17:11:14.0435 5656 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBNWDev.dll - ok
17:11:14.0435 5656 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
17:11:14.0435 5656 C:\Windows\SysWOW64\wsock32.dll - ok
17:11:14.0450 5656 [ 93DEB6C3A52996F1D76731BBA856983A ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\epLocalBidi.DLL
17:11:14.0450 5656 C:\Program Files (x86)\Common Files\EPSON\EBAPI\epLocalBidi.DLL - ok
17:11:14.0450 5656 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
17:11:14.0450 5656 C:\Windows\SysWOW64\mpr.dll - ok
17:11:14.0466 5656 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
17:11:14.0466 5656 C:\Windows\SysWOW64\mswsock.dll - ok
17:11:14.0482 5656 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
17:11:14.0482 5656 C:\Windows\SysWOW64\shell32.dll - ok
17:11:14.0482 5656 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
17:11:14.0482 5656 C:\Windows\SysWOW64\shlwapi.dll - ok
17:11:14.0497 5656 [ 03728C624D05C2F157BBD46F6B7F6EA0 ] C:\Windows\SysWOW64\wininet.dll
17:11:14.0497 5656 C:\Windows\SysWOW64\wininet.dll - ok
17:11:14.0497 5656 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:11:14.0497 5656 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:11:14.0513 5656 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:11:14.0513 5656 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
17:11:14.0513 5656 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
17:11:14.0513 5656 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
17:11:14.0528 5656 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
17:11:14.0528 5656 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
17:11:14.0528 5656 [ 5937E46ECDCD514C7A74D64E4EF5E21D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
17:11:14.0528 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
17:11:14.0544 5656 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
17:11:14.0544 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
17:11:14.0560 5656 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:11:14.0560 5656 C:\Windows\SysWOW64\version.dll - ok
17:11:14.0560 5656 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
17:11:14.0560 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
17:11:14.0575 5656 [ 73BDB1C0801D44BEA5F6749FD340CC0F ] C:\Windows\SysWOW64\iertutil.dll
17:11:14.0575 5656 C:\Windows\SysWOW64\iertutil.dll - ok
17:11:14.0575 5656 [ 180D098704551DE37C6299AA888D6821 ] C:\Windows\SysWOW64\urlmon.dll
17:11:14.0575 5656 C:\Windows\SysWOW64\urlmon.dll - ok
17:11:14.0591 5656 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
17:11:14.0591 5656 C:\Windows\SysWOW64\oleaut32.dll - ok
17:11:14.0591 5656 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:11:14.0591 5656 C:\Windows\SysWOW64\msimg32.dll - ok
17:11:14.0606 5656 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
17:11:14.0606 5656 C:\Windows\SysWOW64\msvcr100.dll - ok
17:11:14.0606 5656 [ 1F942930893ED98204AE67260E03EE26 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
17:11:14.0606 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
17:11:14.0622 5656 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
17:11:14.0622 5656 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
17:11:14.0622 5656 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
17:11:14.0622 5656 C:\Windows\SysWOW64\crypt32.dll - ok
17:11:14.0638 5656 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
17:11:14.0638 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
17:11:14.0653 5656 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
17:11:14.0653 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
17:11:14.0653 5656 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:11:14.0653 5656 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:11:14.0669 5656 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
17:11:14.0669 5656 C:\Windows\SysWOW64\netapi32.dll - ok
17:11:14.0669 5656 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
17:11:14.0669 5656 C:\Windows\SysWOW64\netutils.dll - ok
17:11:14.0669 5656 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
17:11:14.0669 5656 C:\Windows\SysWOW64\srvcli.dll - ok
17:11:14.0684 5656 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
17:11:14.0684 5656 C:\Windows\SysWOW64\winmm.dll - ok
17:11:14.0684 5656 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:11:14.0684 5656 C:\Windows\SysWOW64\winnsi.dll - ok
17:11:14.0700 5656 [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
17:11:14.0700 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
17:11:14.0700 5656 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
17:11:14.0700 5656 C:\Windows\SysWOW64\wkscli.dll - ok
17:11:14.0716 5656 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
17:11:14.0716 5656 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
17:11:14.0716 5656 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
17:11:14.0716 5656 C:\Windows\SysWOW64\msvcp100.dll - ok
17:11:14.0731 5656 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:11:14.0731 5656 C:\Windows\SysWOW64\profapi.dll - ok
17:11:14.0731 5656 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:11:14.0731 5656 C:\Windows\SysWOW64\uxtheme.dll - ok
17:11:14.0747 5656 [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
17:11:14.0747 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
17:11:14.0747 5656 [ 8F9D6B4AB86A39319078814ABBDD40BC ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
17:11:14.0747 5656 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
17:11:14.0762 5656 [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
17:11:14.0762 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
17:11:14.0762 5656 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
17:11:14.0762 5656 C:\Windows\SysWOW64\setupapi.dll - ok
17:11:14.0778 5656 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:11:14.0778 5656 C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:11:14.0778 5656 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
17:11:14.0778 5656 C:\Windows\SysWOW64\devobj.dll - ok
17:11:14.0794 5656 [ 47188B0092466FD476E23DEA70CC1D4F ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
17:11:14.0794 5656 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
17:11:14.0794 5656 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
17:11:14.0794 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
17:11:14.0809 5656 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
17:11:14.0809 5656 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
17:11:14.0809 5656 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
17:11:14.0809 5656 C:\Windows\SysWOW64\dnssd.dll - ok
17:11:14.0809 5656 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
17:11:14.0809 5656 C:\Windows\SysWOW64\userenv.dll - ok
17:11:14.0825 5656 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
17:11:14.0825 5656 C:\Windows\SysWOW64\wtsapi32.dll - ok
17:11:14.0825 5656 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:11:14.0825 5656 C:\Windows\SysWOW64\ntmarta.dll - ok
17:11:14.0840 5656 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
17:11:14.0840 5656 C:\Windows\SysWOW64\Wldap32.dll - ok
17:11:14.0840 5656 [ 1FD0FA6618B31FAD14385740D0F6C333 ] C:\Windows\System32\drivers\atksgt.sys
17:11:14.0840 5656 C:\Windows\System32\drivers\atksgt.sys - ok
17:11:14.0856 5656 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
17:11:14.0856 5656 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
17:11:14.0856 5656 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
17:11:14.0856 5656 C:\Program Files\Bonjour\mDNSResponder.exe - ok
17:11:14.0872 5656 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
17:11:14.0872 5656 C:\Windows\System32\rundll32.exe - ok
17:11:14.0872 5656 [ 674B9AD48FB33A39D2550B2874BB768F ] C:\Windows\System32\hotplug.dll
17:11:14.0872 5656 C:\Windows\System32\hotplug.dll - ok
17:11:14.0887 5656 [ 8195B745A9C3235E4715F0A1B59206CF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
17:11:14.0887 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
17:11:14.0887 5656 [ 2110CE8CB4C6937200A973AD0B70F33D ] C:\Windows\AppPatch\AcRes.dll
17:11:14.0887 5656 C:\Windows\AppPatch\AcRes.dll - ok
17:11:14.0903 5656 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
17:11:14.0903 5656 C:\Windows\System32\cryptsvc.dll - ok
17:11:14.0918 5656 [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
17:11:14.0918 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
17:11:14.0918 5656 [ 61E894FE1E9CC720C909E6E343351794 ] C:\Program Files (x86)\Launch Manager\dsiwmis.exe
17:11:14.0918 5656 C:\Program Files (x86)\Launch Manager\dsiwmis.exe - ok
17:11:14.0934 5656 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
17:11:14.0934 5656 C:\Windows\System32\cryptnet.dll - ok
17:11:14.0934 5656 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
17:11:14.0934 5656 C:\Windows\System32\dps.dll - ok
17:11:14.0950 5656 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
17:11:14.0950 5656 C:\Windows\System32\vssapi.dll - ok
17:11:14.0950 5656 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
17:11:14.0950 5656 C:\Windows\System32\taskschd.dll - ok
17:11:14.0950 5656 [ 91C2E6234F6884C6FEEF9658D8EDE6B6 ] C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
17:11:14.0950 5656 C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe - ok
17:11:14.0965 5656 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
17:11:14.0965 5656 C:\Windows\System32\dbghelp.dll - ok
17:11:14.0965 5656 [ D89FA63C67D8BB342214BFC35FC76735 ] C:\Program Files\Gateway\Gateway Power Management\PowerSettingControl.dll
17:11:14.0965 5656 C:\Program Files\Gateway\Gateway Power Management\PowerSettingControl.dll - ok
17:11:14.0981 5656 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:11:14.0981 5656 C:\Windows\System32\vsstrace.dll - ok
17:11:14.0981 5656 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
17:11:14.0981 5656 C:\Windows\System32\oleacc.dll - ok
17:11:14.0996 5656 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
17:11:14.0996 5656 C:\Windows\System32\IKEEXT.DLL - ok
17:11:14.0996 5656 [ 240D42CBD1691C6B7D54AF4E3365BAAC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
17:11:14.0996 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
17:11:15.0012 5656 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
17:11:15.0012 5656 C:\Windows\SysWOW64\imagehlp.dll - ok
17:11:15.0028 5656 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
17:11:15.0028 5656 C:\Windows\SysWOW64\msasn1.dll - ok
17:11:15.0028 5656 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
17:11:15.0028 5656 C:\Windows\SysWOW64\secur32.dll - ok
17:11:15.0028 5656 [ 282F84E0096499C42102D7234A4D14EF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
17:11:15.0028 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
17:11:15.0043 5656 [ 4CCC8AABE7880C56BA10043B8FBCA3EB ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
17:11:15.0043 5656 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe - ok
17:11:15.0059 5656 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
17:11:15.0059 5656 C:\Windows\SysWOW64\dnsapi.dll - ok
17:11:15.0059 5656 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
17:11:15.0059 5656 C:\Windows\SysWOW64\wintrust.dll - ok
17:11:15.0074 5656 [ 5EA407821BB3104C31A705175AB4F309 ] C:\Windows\System32\drivers\lirsgt.sys
17:11:15.0074 5656 C:\Windows\System32\drivers\lirsgt.sys - ok
17:11:15.0074 5656 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
17:11:15.0074 5656 C:\Windows\System32\vpnikeapi.dll - ok
17:11:15.0090 5656 [ 241BD3019FB31E812A51B31B06906335 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe
17:11:15.0090 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe - ok
17:11:15.0090 5656 [ 01243FA89FBEC041E873DE8386138440 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
17:11:15.0090 5656 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
17:11:15.0106 5656 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcp100.dll
17:11:15.0106 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcp100.dll - ok
17:11:15.0106 5656 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcr100.dll
17:11:15.0106 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\msvcr100.dll - ok
17:11:15.0121 5656 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:11:15.0121 5656 C:\Windows\SysWOW64\clbcatq.dll - ok
17:11:15.0121 5656 [ 0739819B2653DBD8D71EC5784BE6D9FC ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccL120U.dll
17:11:15.0121 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccL120U.dll - ok
17:11:15.0137 5656 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
17:11:15.0137 5656 C:\Windows\SysWOW64\propsys.dll - ok
17:11:15.0137 5656 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
17:11:15.0137 5656 C:\Windows\SysWOW64\dbghelp.dll - ok
17:11:15.0152 5656 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
17:11:15.0152 5656 C:\Windows\SysWOW64\netprofm.dll - ok
17:11:15.0152 5656 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:11:15.0152 5656 C:\Windows\SysWOW64\psapi.dll - ok
17:11:15.0168 5656 [ 35AC6003760ED3C65942F6D89C28CFA7 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccVrTrst.dll
17:11:15.0168 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccVrTrst.dll - ok
17:11:15.0168 5656 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:11:15.0168 5656 C:\Windows\System32\netman.dll - ok
17:11:15.0184 5656 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
17:11:15.0184 5656 C:\Windows\System32\nlasvc.dll - ok
17:11:15.0184 5656 [ 5B3CE960C62DBE864BE9A0BD043A3E30 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
17:11:15.0184 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe - ok
17:11:15.0199 5656 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:11:15.0199 5656 C:\Windows\SysWOW64\cryptsp.dll - ok
17:11:15.0199 5656 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
17:11:15.0199 5656 C:\Windows\SysWOW64\nlaapi.dll - ok
17:11:15.0215 5656 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
17:11:15.0215 5656 C:\Windows\SysWOW64\oleacc.dll - ok
17:11:15.0230 5656 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:11:15.0230 5656 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:11:15.0230 5656 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:11:15.0230 5656 C:\Windows\SysWOW64\rsaenh.dll - ok
17:11:15.0246 5656 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
17:11:15.0246 5656 C:\Windows\System32\aepic.dll - ok
17:11:15.0246 5656 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:11:15.0246 5656 C:\Windows\System32\sfc.dll - ok
17:11:15.0246 5656 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:11:15.0246 5656 C:\Windows\System32\sfc_os.dll - ok
17:11:15.0262 5656 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
17:11:15.0262 5656 C:\Windows\System32\ncsi.dll - ok
17:11:15.0262 5656 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
17:11:15.0262 5656 C:\Windows\System32\winhttp.dll - ok
17:11:15.0277 5656 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
17:11:15.0277 5656 C:\Windows\System32\webio.dll - ok
17:11:15.0277 5656 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:11:15.0277 5656 C:\Windows\System32\ssdpapi.dll - ok
17:11:15.0293 5656 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
17:11:15.0293 5656 C:\Windows\System32\aeevts.dll - ok
17:11:15.0293 5656 [ C3C89ADB418317A548AA4C0B0170EA33 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\Pehook.dll
17:11:15.0293 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\Pehook.dll - ok
17:11:15.0308 5656 [ 93AC8012D1BCD9E20A090803F0D7DAF6 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ISchedule.dll
17:11:15.0308 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ISchedule.dll - ok
17:11:15.0308 5656 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
17:11:15.0308 5656 C:\Windows\System32\drivers\PEAuth.sys - ok
17:11:15.0324 5656 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
17:11:15.0324 5656 C:\Windows\System32\drivers\secdrv.sys - ok
17:11:15.0324 5656 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
17:11:15.0324 5656 C:\Windows\System32\drivers\srvnet.sys - ok
17:11:15.0340 5656 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
17:11:15.0340 5656 C:\Windows\System32\seclogon.dll - ok
17:11:15.0340 5656 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
17:11:15.0340 5656 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
17:11:15.0355 5656 [ 64453CC9A9C6F9ECC7F0461365A47356 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\SyncDll.dll
17:11:15.0355 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\SyncDll.dll - ok
17:11:15.0355 5656 [ 01761D2CA25DBC78B7D9AF18AC1389E4 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\sqlite3.dll
17:11:15.0355 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\sqlite3.dll - ok
17:11:15.0371 5656 [ 78393E71EEF3D77E7BFB6449A4728B94 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\agent_stub.dll
17:11:15.0371 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\agent_stub.dll - ok
17:11:15.0371 5656 [ 3A10BE1693E89D0667437A4E8698A341 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ACE.dll
17:11:15.0371 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\ACE.dll - ok
17:11:15.0386 5656 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
17:11:15.0386 5656 C:\Windows\System32\httpapi.dll - ok
17:11:15.0386 5656 [ 3ECC194DFEA426A3F3B4ECFDB8454F14 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\efacli.dll
17:11:15.0386 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\efacli.dll - ok
17:11:15.0402 5656 [ B9CF40ABF316A863DB9760727D882C6A ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvc.dll
17:11:15.0402 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvc.dll - ok
17:11:15.0402 5656 [ BDBC187D16A423F5E10CEA4F85E335FB ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\srtsp32.dll
17:11:15.0402 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\srtsp32.dll - ok
17:11:15.0418 5656 [ 57D1527A7EB0D6F6BBA04796AA4839EE ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccIPC.dll
17:11:15.0418 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccIPC.dll - ok
17:11:15.0418 5656 [ 8DB5F7821B06062EA254992AF2802C84 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diMaster.dll
17:11:15.0418 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diMaster.dll - ok
17:11:15.0433 5656 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
17:11:15.0433 5656 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
17:11:15.0433 5656 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:11:15.0433 5656 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:11:15.0449 5656 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
17:11:15.0449 5656 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
17:11:15.0449 5656 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
17:11:15.0449 5656 C:\Windows\SysWOW64\msi.dll - ok
17:11:15.0464 5656 [ 773940B8D50439391FFA619B3EEF01A3 ] C:\Windows\SysWOW64\SAgent4.exe
17:11:15.0464 5656 C:\Windows\SysWOW64\SAgent4.exe - ok
17:11:15.0464 5656 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
17:11:15.0464 5656 C:\Windows\SysWOW64\NapiNSP.dll - ok
17:11:15.0480 5656 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
17:11:15.0480 5656 C:\Windows\SysWOW64\pnrpnsp.dll - ok
17:11:15.0480 5656 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
17:11:15.0480 5656 C:\Windows\SysWOW64\winrnr.dll - ok
17:11:15.0496 5656 [ D2BB82DF91F4D8495235F954D346C4F5 ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\VssAgent.dll
17:11:15.0496 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\VssAgent.dll - ok
17:11:15.0496 5656 [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\SysWOW64\vssapi.dll
17:11:15.0496 5656 C:\Windows\SysWOW64\vssapi.dll - ok
17:11:15.0496 5656 [ 9B2CA1E7A69CD722E933FB327D3301FD ] C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IShadowS3.dll
17:11:15.0496 5656 C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IShadowS3.dll - ok
17:11:15.0511 5656 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
17:11:15.0511 5656 C:\Windows\SysWOW64\atl.dll - ok
17:11:15.0527 5656 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\SysWOW64\vsstrace.dll
17:11:15.0527 5656 C:\Windows\SysWOW64\vsstrace.dll - ok
17:11:15.0527 5656 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:11:15.0527 5656 C:\Windows\SysWOW64\dwmapi.dll - ok
17:11:15.0542 5656 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
17:11:15.0542 5656 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
17:11:15.0558 5656 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
17:11:15.0558 5656 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
17:11:15.0574 5656 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
17:11:15.0574 5656 C:\Windows\System32\drivers\tcpipreg.sys - ok
17:11:15.0589 5656 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
17:11:15.0589 5656 C:\Windows\SysWOW64\winhttp.dll - ok
17:11:15.0589 5656 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
17:11:15.0589 5656 C:\Windows\SysWOW64\webio.dll - ok
17:11:15.0605 5656 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
17:11:15.0605 5656 C:\Windows\System32\sysmain.dll - ok
17:11:15.0620 5656 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
17:11:15.0620 5656 C:\Windows\System32\wiaservc.dll - ok
17:11:15.0636 5656 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
17:11:15.0636 5656 C:\Windows\System32\wiatrace.dll - ok
17:11:15.0636 5656 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:11:15.0636 5656 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
17:11:15.0652 5656 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
17:11:15.0652 5656 C:\Windows\SysWOW64\winsta.dll - ok
17:11:15.0667 5656 [ 3B2DF621CADA482C06AF0006EC18BF2E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSet.dll
17:11:15.0667 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSet.dll - ok
17:11:15.0667 5656 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
17:11:15.0667 5656 C:\Windows\System32\tapisrv.dll - ok
17:11:15.0683 5656 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
17:11:15.0683 5656 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
17:11:15.0683 5656 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
17:11:15.0683 5656 C:\Windows\SysWOW64\cscapi.dll - ok
17:11:15.0698 5656 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
17:11:15.0698 5656 C:\Windows\SysWOW64\apphelp.dll - ok
17:11:15.0698 5656 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
17:11:15.0698 5656 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
17:11:15.0714 5656 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
17:11:15.0714 5656 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
17:11:15.0714 5656 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
17:11:15.0714 5656 C:\Windows\SysWOW64\mstask.dll - ok
17:11:15.0730 5656 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:11:15.0730 5656 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:11:15.0730 5656 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
17:11:15.0730 5656 C:\Windows\System32\trkwks.dll - ok
17:11:15.0745 5656 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
17:11:15.0745 5656 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
17:11:15.0745 5656 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
17:11:15.0745 5656 C:\Windows\System32\SensApi.dll - ok
17:11:15.0761 5656 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:11:15.0761 5656 C:\Windows\System32\wer.dll - ok
17:11:15.0761 5656 [ 079FD1D59EAD19270C979AF174D881A3 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
17:11:15.0761 5656 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
17:11:15.0776 5656 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
17:11:15.0776 5656 C:\Windows\System32\msxml3.dll - ok
17:11:15.0776 5656 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:11:15.0776 5656 C:\Windows\System32\wbem\wbemprox.dll - ok
17:11:15.0792 5656 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:11:15.0792 5656 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:11:15.0792 5656 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:11:15.0792 5656 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:11:15.0808 5656 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
17:11:15.0808 5656 C:\Windows\System32\wbemcomn.dll - ok
17:11:15.0808 5656 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
17:11:15.0808 5656 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
17:11:15.0808 5656 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:11:15.0808 5656 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:11:15.0823 5656 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
17:11:15.0823 5656 C:\Windows\System32\dssenh.dll - ok
17:11:15.0823 5656 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:11:15.0823 5656 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:11:15.0839 5656 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:11:15.0839 5656 C:\Windows\System32\wbem\fastprox.dll - ok
17:11:15.0839 5656 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:11:15.0839 5656 C:\Windows\System32\ntdsapi.dll - ok
17:11:15.0839 5656 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
17:11:15.0839 5656 C:\Windows\System32\wbem\wbemcore.dll - ok
17:11:15.0854 5656 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:11:15.0854 5656 C:\Windows\System32\wbem\esscli.dll - ok
17:11:15.0854 5656 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:11:15.0854 5656 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:11:15.0870 5656 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:11:15.0870 5656 C:\Windows\System32\wbem\wmiutils.dll - ok
17:11:15.0870 5656 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:11:15.0870 5656 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:11:15.0870 5656 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
17:11:15.0870 5656 C:\Windows\System32\FXSSVC.exe - ok
17:11:15.0886 5656 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
17:11:15.0886 5656 C:\Windows\System32\tapi32.dll - ok
17:11:15.0886 5656 [ 43FA401CF9F3343F5B0CB800909506B5 ] C:\Windows\System32\FXSTIFF.dll
17:11:15.0886 5656 C:\Windows\System32\FXSTIFF.dll - ok
17:11:15.0901 5656 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
17:11:15.0901 5656 C:\Windows\System32\drivers\srv2.sys - ok
17:11:15.0901 5656 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:11:15.0901 5656 C:\Windows\System32\FXSRESM.dll - ok
17:11:15.0901 5656 [ F99580A13760F607DE4795D18CCC2C1A ] C:\Windows\System32\FXST30.dll
17:11:15.0901 5656 C:\Windows\System32\FXST30.dll - ok
17:11:15.0917 5656 [ D5217D9C99DECB25E128EEA18BB8CE05 ] C:\Windows\System32\FXSROUTE.dll
17:11:15.0917 5656 C:\Windows\System32\FXSROUTE.dll - ok
17:11:15.0917 5656 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
17:11:15.0917 5656 C:\Windows\System32\drivers\srv.sys - ok
17:11:15.0932 5656 [ B7B6472D86A96D04BC08B1A54AA11320 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSetup.dll
17:11:15.0932 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSetup.dll - ok
17:11:15.0932 5656 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
17:11:15.0932 5656 C:\Windows\SysWOW64\shfolder.dll - ok
17:11:15.0948 5656 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
17:11:15.0948 5656 C:\Windows\System32\iphlpsvc.dll - ok
17:11:15.0948 5656 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
17:11:15.0948 5656 C:\Windows\System32\sqmapi.dll - ok
17:11:15.0948 5656 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
17:11:15.0948 5656 C:\Windows\System32\wdscore.dll - ok
17:11:15.0964 5656 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
17:11:15.0964 5656 C:\Windows\System32\rasmans.dll - ok
17:11:15.0964 5656 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
17:11:15.0964 5656 C:\Windows\System32\srvsvc.dll - ok
17:11:15.0979 5656 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
17:11:15.0979 5656 C:\Windows\System32\browser.dll - ok
17:11:15.0979 5656 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
17:11:15.0979 5656 C:\Windows\System32\netmsg.dll - ok
17:11:15.0979 5656 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
17:11:15.0979 5656 C:\Windows\System32\rastapi.dll - ok
17:11:15.0995 5656 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
17:11:15.0995 5656 C:\Windows\System32\sscore.dll - ok
17:11:15.0995 5656 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
17:11:15.0995 5656 C:\Windows\System32\clusapi.dll - ok
17:11:16.0010 5656 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
17:11:16.0010 5656 C:\Windows\System32\resutils.dll - ok
17:11:16.0010 5656 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
17:11:16.0010 5656 C:\Windows\System32\unimdm.tsp - ok
17:11:16.0026 5656 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
17:11:16.0026 5656 C:\Windows\System32\uniplat.dll - ok
17:11:16.0026 5656 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
17:11:16.0026 5656 C:\Windows\System32\kmddsp.tsp - ok
17:11:16.0026 5656 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
17:11:16.0026 5656 C:\Windows\System32\ndptsp.tsp - ok
17:11:16.0042 5656 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
17:11:16.0042 5656 C:\Windows\System32\hidphone.tsp - ok
17:11:16.0042 5656 [ A2A729F6925252E3DB9ADF3E4FA39A48 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymNeti.dll
17:11:16.0042 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymNeti.dll - ok
17:11:16.0057 5656 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
17:11:16.0057 5656 C:\Windows\System32\p2pcollab.dll - ok
17:11:16.0057 5656 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
17:11:16.0057 5656 C:\Windows\System32\QAGENTRT.DLL - ok
17:11:16.0073 5656 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
17:11:16.0073 5656 C:\Windows\System32\fveui.dll - ok
17:11:16.0073 5656 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
17:11:16.0073 5656 C:\Windows\System32\rasppp.dll - ok
17:11:16.0088 5656 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
17:11:16.0088 5656 C:\Windows\SysWOW64\FirewallAPI.dll - ok
17:11:16.0088 5656 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
17:11:16.0088 5656 C:\Windows\SysWOW64\powrprof.dll - ok
17:11:16.0088 5656 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
17:11:16.0088 5656 C:\Windows\System32\vpnike.dll - ok
17:11:16.0104 5656 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
17:11:16.0104 5656 C:\Windows\System32\raschap.dll - ok
17:11:16.0120 5656 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
17:11:16.0120 5656 C:\Windows\System32\ipnathlp.dll - ok
17:11:16.0120 5656 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
17:11:16.0120 5656 C:\Windows\System32\mprapi.dll - ok
17:11:16.0135 5656 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
17:11:16.0135 5656 C:\Windows\System32\netshell.dll - ok
17:11:16.0135 5656 [ CC19133AB94723A75727D632C24D1B13 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGEvt.dll
17:11:16.0135 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGEvt.dll - ok
17:11:16.0151 5656 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:11:16.0151 5656 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:11:16.0151 5656 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:11:16.0151 5656 C:\Windows\System32\ncobjapi.dll - ok
17:11:16.0166 5656 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:11:16.0166 5656 C:\Windows\System32\wbem\wbemess.dll - ok
17:11:16.0166 5656 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
17:11:16.0166 5656 C:\Windows\System32\dot3api.dll - ok
17:11:16.0182 5656 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:11:16.0182 5656 C:\Windows\System32\wlanapi.dll - ok
17:11:16.0182 5656 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:11:16.0182 5656 C:\Windows\System32\wlanhlp.dll - ok
17:11:16.0198 5656 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] C:\Windows\System32\drivers\ipnat.sys
17:11:16.0198 5656 C:\Windows\System32\drivers\ipnat.sys - ok
17:11:16.0198 5656 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
17:11:16.0198 5656 C:\Windows\System32\appinfo.dll - ok
17:11:16.0213 5656 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
17:11:16.0213 5656 C:\Windows\System32\hidserv.dll - ok
17:11:16.0213 5656 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
17:11:16.0213 5656 C:\Windows\System32\wdi.dll - ok
17:11:16.0229 5656 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
17:11:16.0229 5656 C:\Windows\System32\alg.exe - ok
17:11:16.0229 5656 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
17:11:16.0229 5656 C:\Windows\System32\diagperf.dll - ok
17:11:16.0244 5656 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
17:11:16.0244 5656 C:\Windows\System32\perftrack.dll - ok
17:11:16.0244 5656 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
17:11:16.0244 5656 C:\Windows\System32\wpdbusenum.dll - ok
17:11:16.0260 5656 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
17:11:16.0260 5656 C:\Windows\System32\wsock32.dll - ok
17:11:16.0276 5656 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
17:11:16.0276 5656 C:\Windows\System32\PortableDeviceApi.dll - ok
17:11:16.0276 5656 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:11:16.0276 5656 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:11:16.0291 5656 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
17:11:16.0291 5656 C:\Windows\System32\Apphlpdm.dll - ok
17:11:16.0291 5656 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:11:16.0291 5656 C:\Windows\System32\npmproxy.dll - ok
17:11:16.0307 5656 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
17:11:16.0307 5656 C:\Windows\System32\pnpts.dll - ok
17:11:16.0307 5656 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
17:11:16.0307 5656 C:\Windows\System32\radardt.dll - ok
17:11:16.0322 5656 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
17:11:16.0322 5656 C:\Windows\SysWOW64\npmproxy.dll - ok
17:11:16.0322 5656 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:11:16.0322 5656 C:\Windows\System32\NapiNSP.dll - ok
17:11:16.0338 5656 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:11:16.0338 5656 C:\Windows\System32\pnrpnsp.dll - ok
17:11:16.0338 5656 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:11:16.0338 5656 C:\Windows\System32\winrnr.dll - ok
17:11:16.0354 5656 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
17:11:16.0354 5656 C:\Windows\System32\wdiasqmmodule.dll - ok
17:11:16.0354 5656 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
17:11:16.0354 5656 C:\Windows\System32\IPSECSVC.DLL - ok
17:11:16.0354 5656 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
17:11:16.0354 5656 C:\Windows\System32\runonce.exe - ok
17:11:16.0369 5656 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
17:11:16.0369 5656 C:\Windows\System32\FwRemoteSvr.dll - ok
17:11:16.0369 5656 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
17:11:16.0369 5656 C:\Windows\SysWOW64\runonce.exe - ok
17:11:16.0385 5656 [ 595B527E1961AFE8EC33A22516853C57 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NPCTray.dll
17:11:16.0385 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NPCTray.dll - ok
17:11:16.0385 5656 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
17:11:16.0385 5656 C:\Windows\System32\dimsjob.dll - ok
17:11:16.0400 5656 [ 3F478F7DCBB7E031E609C9A28382EEA6 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiMain.dll
17:11:16.0400 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiMain.dll - ok
17:11:16.0400 5656 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
17:11:16.0400 5656 C:\Windows\System32\pautoenr.dll - ok
17:11:16.0416 5656 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
17:11:16.0416 5656 C:\Windows\System32\certcli.dll - ok
17:11:16.0432 5656 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
17:11:16.0432 5656 C:\Windows\SysWOW64\cmd.exe - ok
17:11:16.0432 5656 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
17:11:16.0432 5656 C:\Windows\System32\CertEnroll.dll - ok
17:11:16.0432 5656 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
17:11:16.0432 5656 C:\Windows\SysWOW64\d3d9.dll - ok
17:11:16.0447 5656 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:11:16.0447 5656 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:11:16.0447 5656 [ 7BAD1E584DBE290C06B8AE0FABF7BEDE ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymHTMDX.dll
17:11:16.0447 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymHTMDX.dll - ok
17:11:16.0463 5656 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
17:11:16.0463 5656 C:\Windows\SysWOW64\winbrand.dll - ok
17:11:16.0463 5656 [ 9C7983C288CA39A6790AE93DA85FA447 ] C:\Users\James\Desktop\mbar\mbar.exe
17:11:16.0463 5656 C:\Users\James\Desktop\mbar\mbar.exe - ok
17:11:16.0478 5656 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
17:11:16.0478 5656 C:\Windows\System32\mprmsg.dll - ok
17:11:16.0478 5656 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
17:11:16.0478 5656 C:\Windows\System32\ndiscapCfg.dll - ok
17:11:16.0494 5656 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
17:11:16.0494 5656 C:\Windows\System32\rascfg.dll - ok
17:11:16.0494 5656 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
17:11:16.0494 5656 C:\Windows\System32\tcpipcfg.dll - ok
17:11:16.0510 5656 [ 5394031EC2A00A1C862398CFE944E086 ] C:\Users\James\Desktop\mbar\QtGui4.dll
17:11:16.0510 5656 C:\Users\James\Desktop\mbar\QtGui4.dll - ok
17:11:16.0510 5656 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
17:11:16.0510 5656 C:\Windows\System32\aelupsvc.dll - ok
17:11:16.0525 5656 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
17:11:16.0525 5656 C:\Windows\System32\nci.dll - ok
17:11:16.0525 5656 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
17:11:16.0525 5656 C:\Windows\System32\wlaninst.dll - ok
17:11:16.0525 5656 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
17:11:16.0525 5656 C:\Windows\System32\wwaninst.dll - ok
17:11:16.0541 5656 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
17:11:16.0541 5656 C:\Windows\System32\actxprxy.dll - ok
17:11:16.0541 5656 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
17:11:16.0541 5656 C:\Windows\SysWOW64\comdlg32.dll - ok
17:11:16.0556 5656 [ 13DB2A8AAF9CE36F21DC0CCB2C88E1B3 ] C:\Users\James\Desktop\mbar\QtCore4.dll
17:11:16.0556 5656 C:\Users\James\Desktop\mbar\QtCore4.dll - ok
17:11:16.0556 5656 [ 991C91E61C6989781E94841213770D68 ] C:\Users\James\Desktop\mbar\msvcp100.dll
17:11:16.0556 5656 C:\Users\James\Desktop\mbar\msvcp100.dll - ok
17:11:16.0572 5656 [ D90DD6C64D775386DEAA169839AED619 ] C:\Users\James\Desktop\mbar\msvcr100.dll
17:11:16.0572 5656 C:\Users\James\Desktop\mbar\msvcr100.dll - ok
17:11:16.0572 5656 [ DB2A67D1C8525990187C7994B3C3C6FA ] C:\Users\James\Desktop\mbar\mbamcore.dll
17:11:16.0572 5656 C:\Users\James\Desktop\mbar\mbamcore.dll - ok
17:11:16.0588 5656 [ D3EAB9BCB2B92EFCA615781C215644C0 ] C:\Windows\SysWOW64\ieframe.dll
17:11:16.0588 5656 C:\Windows\SysWOW64\ieframe.dll - ok
17:11:16.0588 5656 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
17:11:16.0588 5656 C:\Windows\SysWOW64\shdocvw.dll - ok
17:11:16.0603 5656 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\James\AppData\Local\Temp\AF82A62D-C8D8-4C13-B308-0BDD538F849B.exe
17:11:16.0603 5656 C:\Users\James\AppData\Local\Temp\AF82A62D-C8D8-4C13-B308-0BDD538F849B.exe - ok
17:11:16.0603 5656 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
17:11:16.0603 5656 C:\Windows\SysWOW64\ncrypt.dll - ok
17:11:16.0619 5656 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:11:16.0619 5656 C:\Windows\SysWOW64\bcrypt.dll - ok
17:11:16.0619 5656 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:11:16.0619 5656 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:11:16.0634 5656 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
17:11:16.0634 5656 C:\Windows\SysWOW64\DWrite.dll - ok
17:11:16.0634 5656 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:11:16.0634 5656 C:\Windows\SysWOW64\gpapi.dll - ok
17:11:16.0634 5656 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
17:11:16.0634 5656 C:\Windows\SysWOW64\cryptnet.dll - ok
17:11:16.0650 5656 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:11:16.0650 5656 C:\Windows\SysWOW64\SensApi.dll - ok
17:11:16.0650 5656 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
17:11:16.0650 5656 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:11:16.0666 5656 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:11:16.0666 5656 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:11:16.0681 5656 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
17:11:16.0681 5656 C:\Windows\SysWOW64\dxgi.dll - ok
17:11:16.0681 5656 [ 93084B33E85CA77DAD9648AA1191D0F6 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diStRptr.dll
17:11:16.0681 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\diStRptr.dll - ok
17:11:16.0697 5656 [ A379F28D79B5F24DA1B27BE82F382ADA ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\MClnTask.dll
17:11:16.0697 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\MClnTask.dll - ok
17:11:16.0697 5656 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:11:16.0697 5656 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:11:16.0712 5656 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
17:11:16.0712 5656 C:\Windows\SysWOW64\EhStorShell.dll - ok
17:11:16.0712 5656 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
17:11:16.0712 5656 C:\Windows\SysWOW64\ntshrui.dll - ok
17:11:16.0712 5656 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
17:11:16.0712 5656 C:\Windows\SysWOW64\slc.dll - ok
17:11:16.0728 5656 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
17:11:16.0728 5656 C:\Windows\SysWOW64\imageres.dll - ok
17:11:16.0744 5656 [ DF9DA836F30C17CD05307641A6531664 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isDataPr.dll
17:11:16.0744 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isDataPr.dll - ok
17:11:16.0744 5656 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:11:16.0744 5656 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:11:16.0744 5656 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:11:16.0744 5656 C:\Windows\SysWOW64\duser.dll - ok
17:11:16.0759 5656 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:11:16.0759 5656 C:\Windows\SysWOW64\dui70.dll - ok
17:11:16.0775 5656 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
17:11:16.0775 5656 C:\Windows\SysWOW64\sfc.dll - ok
17:11:16.0775 5656 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
17:11:16.0775 5656 C:\Windows\SysWOW64\sfc_os.dll - ok
17:11:16.0790 5656 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
17:11:16.0790 5656 C:\Windows\SysWOW64\devrtl.dll - ok
17:11:16.0790 5656 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
17:11:16.0790 5656 C:\Windows\System32\ie4uinit.exe - ok
17:11:16.0806 5656 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
17:11:16.0806 5656 C:\Windows\System32\iedkcs32.dll - ok
17:11:16.0806 5656 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
17:11:16.0806 5656 C:\Windows\System32\timedate.cpl - ok
17:11:16.0822 5656 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
17:11:16.0822 5656 C:\Windows\System32\shdocvw.dll - ok
17:11:16.0822 5656 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:11:16.0822 5656 C:\Windows\System32\linkinfo.dll - ok
17:11:16.0837 5656 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
17:11:16.0837 5656 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
17:11:16.0837 5656 [ E5DC4D49C90A70D7F848416915D39E49 ] C:\PROGRA~2\SOCIAL~1\MUITRA~1\PCMENV~1.DLL
17:11:16.0837 5656 C:\PROGRA~2\SOCIAL~1\MUITRA~1\PCMENV~1.DLL - ok
17:11:16.0853 5656 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
17:11:16.0853 5656 C:\Windows\System32\gameux.dll - ok
17:11:16.0853 5656 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
17:11:16.0853 5656 C:\Windows\SysWOW64\credssp.dll - ok
17:11:16.0868 5656 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:11:16.0868 5656 C:\Windows\SysWOW64\wship6.dll - ok
17:11:16.0868 5656 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
17:11:16.0884 5656 C:\Windows\System32\msftedit.dll - ok
17:11:16.0884 5656 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
17:11:16.0884 5656 C:\Windows\System32\msls31.dll - ok
17:11:16.0884 5656 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
17:11:16.0884 5656 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
17:11:16.0900 5656 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:11:16.0900 5656 C:\Windows\System32\msiltcfg.dll - ok
17:11:16.0915 5656 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
17:11:16.0915 5656 C:\Windows\System32\msi.dll - ok
17:11:16.0915 5656 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
17:11:16.0915 5656 C:\Windows\System32\spfileq.dll - ok
17:11:16.0931 5656 [ D5B34B65BC9FE32BE3C15E215507D22E ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
17:11:16.0931 5656 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
17:11:16.0931 5656 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
17:11:16.0931 5656 C:\Windows\System32\DeviceCenter.dll - ok
17:11:16.0946 5656 [ 1A493ED42BA0FA488518A79C3A96B46A ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
17:11:16.0946 5656 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
17:11:16.0962 5656 [ DC2755EB981280C312E7BE5EE8CF5D62 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
17:11:16.0962 5656 C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
17:11:16.0962 5656 [ E829C45F0D77852C43BE99C4B1BD215D ] C:\Windows\System32\ieframe.dll
17:11:16.0962 5656 C:\Windows\System32\ieframe.dll - ok
17:11:16.0978 5656 [ 0DC4F0282238AAF4F044626B1BFBB1D4 ] C:\Windows\System32\SynCOM.dll
17:11:16.0978 5656 C:\Windows\System32\SynCOM.dll - ok
17:11:16.0978 5656 [ BE9320CEB453839E3C85615937C1D4F5 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
17:11:16.0978 5656 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
17:11:16.0993 5656 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
17:11:16.0993 5656 C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
17:11:16.0993 5656 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
17:11:16.0993 5656 C:\Windows\System32\consent.exe - ok
17:11:17.0009 5656 [ E37A7354D3E135E61203BE0CFB90E978 ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
17:11:17.0009 5656 C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
17:11:17.0009 5656 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
17:11:17.0009 5656 C:\Windows\System32\msimg32.dll - ok
17:11:17.0009 5656 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
17:11:17.0009 5656 C:\Windows\System32\AudioSes.dll - ok
17:11:17.0024 5656 [ 10D333207797686BBAEF0E4879CB0EFC ] C:\Windows\System32\SynTPAPI.dll
17:11:17.0024 5656 C:\Windows\System32\SynTPAPI.dll - ok
17:11:17.0024 5656 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
17:11:17.0024 5656 C:\Windows\System32\dsound.dll - ok
17:11:17.0040 5656 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
17:11:17.0040 5656 C:\Windows\System32\opengl32.dll - ok
17:11:17.0040 5656 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
17:11:17.0040 5656 C:\Windows\System32\glu32.dll - ok
17:11:17.0056 5656 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
17:11:17.0056 5656 C:\Windows\System32\ddraw.dll - ok
17:11:17.0056 5656 [ 1C46FC1AB600766B8554580204806E84 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
17:11:17.0056 5656 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe - ok
17:11:17.0071 5656 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
17:11:17.0071 5656 C:\Windows\System32\SyncCenter.dll - ok
17:11:17.0071 5656 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
17:11:17.0071 5656 C:\Windows\System32\dciman32.dll - ok
17:11:17.0087 5656 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
17:11:17.0087 5656 C:\Windows\System32\oledlg.dll - ok
17:11:17.0087 5656 [ A1A6509F6D12AB2B435EF08CD4FD675E ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
17:11:17.0087 5656 C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
17:11:17.0102 5656 [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
17:11:17.0102 5656 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
17:11:17.0102 5656 [ EC40544DB5B5E096729A10792E8E7C71 ] C:\Windows\AppPatch\AcSpecfc.dll
17:11:17.0102 5656 C:\Windows\AppPatch\AcSpecfc.dll - ok
17:11:17.0118 5656 [ 97A37A9A63D1E7C4F02D4C498DD08B68 ] C:\Windows\System32\RtkCfg64.dll
17:11:17.0118 5656 C:\Windows\System32\RtkCfg64.dll - ok
17:11:17.0134 5656 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
17:11:17.0134 5656 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
17:11:17.0134 5656 [ 522EEC6D2CAF10ADF7D9B6868A5BDEA9 ] C:\Program Files (x86)\Launch Manager\LManager.exe
17:11:17.0134 5656 C:\Program Files (x86)\Launch Manager\LManager.exe - ok
17:11:17.0149 5656 [ 9FBFE0DA99E0590AB50388018B531572 ] C:\Windows\System32\RtkHDM64.dll
17:11:17.0149 5656 C:\Windows\System32\RtkHDM64.dll - ok
17:11:17.0149 5656 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
17:11:17.0149 5656 C:\Windows\SysWOW64\mscms.dll - ok
17:11:17.0165 5656 [ D20E62B845685D616E7DF720ABEB41A5 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:11:17.0165 5656 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
17:11:17.0180 5656 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:11:17.0180 5656 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
17:11:17.0180 5656 [ 1568FF282E268082C67CF0C3EBCC9179 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
17:11:17.0180 5656 C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe - ok
17:11:17.0180 5656 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
17:11:17.0180 5656 C:\Windows\SysWOW64\ddraw.dll - ok
17:11:17.0196 5656 [ E66532FD491AD5604C36916715FBA092 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
17:11:17.0196 5656 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
17:11:17.0196 5656 [ C228AF86E86300E495AC1E0B4A326D22 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
17:11:17.0196 5656 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe - ok
17:11:17.0212 5656 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
17:11:17.0212 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
17:11:17.0212 5656 [ 031C370AFDFB87B92B1BEF6D6EBAD0F4 ] C:\Windows\SysWOW64\atiadlxy.dll
17:11:17.0212 5656 C:\Windows\SysWOW64\atiadlxy.dll - ok
17:11:17.0212 5656 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
17:11:17.0227 5656 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
17:11:17.0227 5656 [ 7D58C9BDF9C0A3955BDCDE7387AD12AC ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
17:11:17.0227 5656 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe - ok
17:11:17.0227 5656 [ 735623AAED32285D47FE6716D92ABC40 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll
17:11:17.0227 5656 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll - ok
17:11:17.0243 5656 [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
17:11:17.0243 5656 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
17:11:17.0258 5656 [ 1266ABE8BE1A5CA57B2869FEED00C1E2 ] C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe
17:11:17.0258 5656 C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe - ok
17:11:17.0258 5656 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
17:11:17.0258 5656 C:\Windows\SysWOW64\dciman32.dll - ok
17:11:17.0258 5656 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
17:11:17.0258 5656 C:\Windows\AppPatch\AcLayers.dll - ok
17:11:17.0274 5656 [ A07F12FA297F3F074D496B333C259AFA ] C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL
17:11:17.0274 5656 C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL - ok
17:11:17.0274 5656 [ 07DD9DCD1CC2840751A1F8772F3C0195 ] C:\Program Files\Microsoft Games\Chess\Chess.exe
17:11:17.0274 5656 C:\Program Files\Microsoft Games\Chess\Chess.exe - ok
17:11:17.0290 5656 [ 8EBC5E8EF4230DA59FE10F21F11DE93B ] C:\Windows\System32\RtkAPO64.dll
17:11:17.0290 5656 C:\Windows\System32\RtkAPO64.dll - ok
17:11:17.0290 5656 [ F7F2F299DD5019C67D9FDDB18E5D3916 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
17:11:17.0290 5656 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
17:11:17.0305 5656 [ 632A6D75FEEABC846EE9AEC33345EF34 ] C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL
17:11:17.0305 5656 C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL - ok
17:11:17.0305 5656 [ 69259DD752862F5665413AFCFB4C0B0E ] C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL
17:11:17.0305 5656 C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL - ok
17:11:17.0321 5656 [ 2031DCC0083A134AF9451CD1402FFCE3 ] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
17:11:17.0321 5656 C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll - ok
17:11:17.0321 5656 [ A53F59BC46766CE79E407AB6F451100D ] C:\Program Files (x86)\Launch Manager\WND2FILE.DLL
17:11:17.0321 5656 C:\Program Files (x86)\Launch Manager\WND2FILE.DLL - ok
17:11:17.0321 5656 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
17:11:17.0321 5656 C:\Windows\SysWOW64\oledlg.dll - ok
17:11:17.0336 5656 [ 71FC112959B07D686E71541BD9D4F237 ] C:\Program Files (x86)\Launch Manager\PowerUtl.dll
17:11:17.0336 5656 C:\Program Files (x86)\Launch Manager\PowerUtl.dll - ok
17:11:17.0336 5656 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
17:11:17.0336 5656 C:\Windows\SysWOW64\sti.dll - ok
17:11:17.0352 5656 [ 4956C57498AD08724AE41920A81B6963 ] C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll
17:11:17.0352 5656 C:\Program Files (x86)\Epson Software\Event Manager\ScanEngine30.dll - ok
17:11:17.0352 5656 [ 20D30D8717E9DFF90224B5AB37410D9D ] C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL
17:11:17.0352 5656 C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL - ok
17:11:17.0368 5656 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
17:11:17.0368 5656 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
17:11:17.0368 5656 [ 17386C6E17A26BB0C9765577E446E7D9 ] C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll
17:11:17.0368 5656 C:\Program Files (x86)\Epson Software\Event Manager\ScnMgr10.dll - ok
17:11:17.0383 5656 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
17:11:17.0383 5656 C:\Windows\System32\stobject.dll - ok
17:11:17.0383 5656 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
17:11:17.0383 5656 C:\Windows\System32\batmeter.dll - ok
17:11:17.0399 5656 [ 163A95975E1D8819E653AA3E961371CA ] C:\Windows\twain_32.dll
17:11:17.0399 5656 C:\Windows\twain_32.dll - ok
17:11:17.0399 5656 [ 964B05EE97D3E71F585F97FD93C2CD6B ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll
17:11:17.0399 5656 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll - ok
17:11:17.0414 5656 [ 95A3911AF69625A07D16B9EABDCFF212 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\_ispmres.dll
17:11:17.0414 5656 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\_ispmres.dll - ok
17:11:17.0430 5656 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
17:11:17.0430 5656 C:\Windows\System32\wdmaud.drv - ok
17:11:17.0430 5656 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:11:17.0430 5656 C:\Windows\System32\ksuser.dll - ok
17:11:17.0430 5656 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
17:11:17.0430 5656 C:\Windows\System32\msacm32.drv - ok
17:11:17.0446 5656 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
17:11:17.0446 5656 C:\Windows\System32\msacm32.dll - ok
17:11:17.0446 5656 [ FD5A0A28AAEA0421039242A9D592212B ] C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL
17:11:17.0446 5656 C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL - ok
17:11:17.0461 5656 [ 3B4C08A5C45492402761452A624F91F1 ] C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll
17:11:17.0461 5656 C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll - ok
17:11:17.0461 5656 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
17:11:17.0461 5656 C:\Windows\System32\prnfldr.dll - ok
17:11:17.0477 5656 [ A325C1DDE8913D168905408E89C0BE08 ] C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe
17:11:17.0477 5656 C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe - ok
17:11:17.0477 5656 [ 9AA7C9E9CCB96F99C1D5349534253FE6 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccVrTrst.dll
17:11:17.0477 5656 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccVrTrst.dll - ok
17:11:17.0492 5656 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
17:11:17.0492 5656 C:\Windows\System32\midimap.dll - ok
17:11:17.0492 5656 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
17:11:17.0492 5656 C:\Windows\System32\AudioEng.dll - ok
17:11:17.0492 5656 [ 90A1A4F98D14B8C447B81190627530A3 ] C:\Program Files (x86)\VideoWebCamera\Image.dll
17:11:17.0492 5656 C:\Program Files (x86)\VideoWebCamera\Image.dll - ok
17:11:17.0508 5656 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
17:11:17.0508 5656 C:\Windows\SysWOW64\sxs.dll - ok
17:11:17.0508 5656 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
17:11:17.0508 5656 C:\Windows\System32\AUDIOKSE.dll - ok
17:11:17.0524 5656 [ C19AAD30985941B6B7E8D3A7BEFF715B ] C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
17:11:17.0524 5656 C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe - ok
17:11:17.0524 5656 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
17:11:17.0524 5656 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
17:11:17.0539 5656 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
17:11:17.0539 5656 C:\Windows\System32\WMALFXGFXDSP.dll - ok
17:11:17.0539 5656 [ 063F592B4C0AE7F786BC1A1460FB380E ] C:\Program Files (x86)\Launch Manager\VistaVol.dll
17:11:17.0539 5656 C:\Program Files (x86)\Launch Manager\VistaVol.dll - ok
17:11:17.0555 5656 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
17:11:17.0555 5656 C:\Windows\SysWOW64\MMDevAPI.dll - ok
17:11:17.0555 5656 [ D17A7AD48BE4C91BBE7ECE419486A335 ] C:\Program Files (x86)\Launch Manager\MMDUtl.dll
17:11:17.0555 5656 C:\Program Files (x86)\Launch Manager\MMDUtl.dll - ok
17:11:17.0570 5656 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
17:11:17.0570 5656 C:\Windows\SysWOW64\WMVCORE.DLL - ok
17:11:17.0570 5656 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
17:11:17.0570 5656 C:\Windows\SysWOW64\AudioSes.dll - ok
17:11:17.0586 5656 [ 4860790FA0F039A2C094BE4BF0CC5858 ] C:\Program Files (x86)\Launch Manager\CdDirIo.dll
17:11:17.0586 5656 C:\Program Files (x86)\Launch Manager\CdDirIo.dll - ok
17:11:17.0586 5656 [ 4879B16C91F56DCA20DDC598A96D476D ] C:\Program Files (x86)\Launch Manager\LmSmbKel.dll
17:11:17.0586 5656 C:\Program Files (x86)\Launch Manager\LmSmbKel.dll - ok
17:11:17.0602 5656 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
17:11:17.0602 5656 C:\Windows\System32\mfplat.dll - ok
17:11:17.0602 5656 [ AB0A8849029B4CE1109BA4E86481AB4F ] C:\Program Files\Microsoft Games\Multiplayer\Checkers\chkrzm.exe
17:11:17.0602 5656 C:\Program Files\Microsoft Games\Multiplayer\Checkers\chkrzm.exe - ok
17:11:17.0617 5656 [ BEF8BE93965EC65C51D70030B9B6B058 ] C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe
17:11:17.0617 5656 C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - ok
17:11:17.0617 5656 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
17:11:17.0617 5656 C:\Windows\SysWOW64\WMASF.DLL - ok
17:11:17.0633 5656 [ 47424995FD8C8B254F74AECFDE8F2A1F ] C:\Program Files (x86)\VideoWebCamera\sy_Utility.dll
17:11:17.0633 5656 C:\Program Files (x86)\VideoWebCamera\sy_Utility.dll - ok
17:11:17.0633 5656 [ A8524F6C3AFF774911BCA26AB8322602 ] C:\Program Files\Microsoft Games\Hearts\Hearts.exe
17:11:17.0633 5656 C:\Program Files\Microsoft Games\Hearts\Hearts.exe - ok
17:11:17.0648 5656 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
17:11:17.0648 5656 C:\Windows\SysWOW64\mfc42.dll - ok
17:11:17.0648 5656 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\59495206.sys
17:11:17.0648 5656 C:\Windows\System32\drivers\59495206.sys - ok
17:11:17.0664 5656 [ 9AAADE86A4659A69CF5AA298C8AEEC22 ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe
17:11:17.0664 5656 C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok
17:11:17.0680 5656 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
17:11:17.0680 5656 C:\Windows\SysWOW64\odbc32.dll - ok
17:11:17.0680 5656 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
17:11:17.0680 5656 C:\Windows\SysWOW64\olepro32.dll - ok
17:11:17.0695 5656 [ 126B75D50756FE204283D418AE1A66DF ] C:\Windows\SysWOW64\msvcirt.dll
17:11:17.0695 5656 C:\Windows\SysWOW64\msvcirt.dll - ok
17:11:17.0695 5656 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
17:11:17.0695 5656 C:\Windows\SysWOW64\msvcp60.dll - ok
17:11:17.0711 5656 [ EB596E72F63B7C31BE8DF75FA8829B3F ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe
17:11:17.0711 5656 C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok
17:11:17.0711 5656 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
17:11:17.0711 5656 C:\Windows\SysWOW64\odbcint.dll - ok
17:11:17.0726 5656 [ 43B303A9C95C8C72E41A158460CBC880 ] C:\Program Files (x86)\VideoWebCamera\VWC_ENG.dll
17:11:17.0726 5656 C:\Program Files (x86)\VideoWebCamera\VWC_ENG.dll - ok
17:11:17.0726 5656 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
17:11:17.0726 5656 C:\Windows\System32\mscoree.dll - ok
17:11:17.0742 5656 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
17:11:17.0742 5656 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
17:11:17.0742 5656 [ 5BACFD51D926774C8DD8028BEC9B4374 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe
17:11:17.0742 5656 C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok
17:11:17.0758 5656 [ 2B574E990BE149402119FF0F020AB21F ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeaptopDeviceHook.dll
17:11:17.0758 5656 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\LeaptopDeviceHook.dll - ok
17:11:17.0758 5656 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
17:11:17.0758 5656 C:\Windows\SysWOW64\riched20.dll - ok
17:11:17.0773 5656 [ 137E0F3272D7CCCBEC96C394F768BB1F ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\ScoutPlushDeviceHook.dll
17:11:17.0773 5656 C:\Program Files (x86)\LeapFrog\LeapFrog Connect\DeviceHooks\ScoutPlushDeviceHook.dll - ok
17:11:17.0773 5656 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
17:11:17.0773 5656 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
17:11:17.0789 5656 [ 7AE299BC0A183A37A5A2F7FC7AFF083C ] C:\Program Files\Windows Mail\wab.exe
17:11:17.0789 5656 C:\Program Files\Windows Mail\wab.exe - ok
17:11:17.0789 5656 [ 83E29D3D8C043B53AD4C7389EA4A1D15 ] C:\Program Files\WinRAR\WinRAR.exe
17:11:17.0789 5656 C:\Program Files\WinRAR\WinRAR.exe - ok
17:11:17.0804 5656 [ 322A96BFB36CEAA506F74D5F98CDA723 ] C:\Program Files\Windows Media Player\wmplayer.exe
17:11:17.0804 5656 C:\Program Files\Windows Media Player\wmplayer.exe - ok
17:11:17.0804 5656 [ 715BFF236158F61C042928A53C0D5AA8 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
17:11:17.0804 5656 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
17:11:17.0820 5656 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
17:11:17.0820 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
17:11:17.0820 5656 [ 0F082AA29D17B61EE9B4D62D2300CD82 ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
17:11:17.0820 5656 C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
17:11:17.0836 5656 [ 429839485D438C24E3434F191A234312 ] C:\Program Files (x86)\Launch Manager\aipflib.dll
17:11:17.0836 5656 C:\Program Files (x86)\Launch Manager\aipflib.dll - ok
17:11:17.0851 5656 [ 464822A1F51A2340FE8BE020A1EA3052 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
17:11:17.0851 5656 C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
17:11:17.0851 5656 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
17:11:17.0851 5656 C:\Windows\System32\bthprops.cpl - ok
17:11:17.0867 5656 [ 3E4E76D2AD42B4D9C868A381F51B683A ] C:\Program Files (x86)\Launch Manager\LMworker.exe
17:11:17.0867 5656 C:\Program Files (x86)\Launch Manager\LMworker.exe - ok
17:11:17.0867 5656 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
17:11:17.0867 5656 C:\Windows\SysWOW64\wbemcomn.dll - ok
17:11:17.0867 5656 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
17:11:17.0867 5656 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
17:11:17.0882 5656 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
17:11:17.0882 5656 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
17:11:17.0882 5656 [ 07BDE9690FDC796705E8BB811F61237B ] C:\Program Files (x86)\Launch Manager\NTKCUtl.dll
17:11:17.0882 5656 C:\Program Files (x86)\Launch Manager\NTKCUtl.dll - ok
17:11:17.0898 5656 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
17:11:17.0898 5656 C:\Windows\System32\wersvc.dll - ok
17:11:17.0898 5656 [ 535010EEE51B6F8D029167F5C0A8589E ] C:\Windows\twain_32\escndv\wor630.ds
17:11:17.0898 5656 C:\Windows\twain_32\escndv\wor630.ds - ok
17:11:17.0914 5656 [ 675E21013EA33011C5DD609BCA59D887 ] C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccSet.dll
17:11:17.0914 5656 C:\Program Files (x86)\Norton 360\Engine64\20.3.0.36\ccSet.dll - ok
17:11:17.0914 5656 [ 80279007CAB3549A5999348BD0C23732 ] C:\Windows\SysWOW64\wiadss.dll
17:11:17.0914 5656 C:\Windows\SysWOW64\wiadss.dll - ok
17:11:17.0914 5656 [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\Windows\twain_32\wiatwain.ds
17:11:17.0914 5656 C:\Windows\twain_32\wiatwain.ds - ok
17:11:17.0929 5656 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
17:11:17.0929 5656 C:\Windows\System32\DXP.dll - ok
17:11:17.0929 5656 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:11:17.0929 5656 C:\Windows\System32\Syncreg.dll - ok
17:11:17.0945 5656 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:11:17.0945 5656 C:\Windows\ehome\ehSSO.dll - ok
17:11:17.0945 5656 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:11:17.0945 5656 C:\Windows\System32\AltTab.dll - ok
17:11:17.0960 5656 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
17:11:17.0960 5656 C:\Windows\System32\sti.dll - ok
17:11:17.0960 5656 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:11:17.0960 5656 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:11:17.0976 5656 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
17:11:17.0976 5656 C:\Windows\System32\WPDShServiceObj.dll - ok
17:11:17.0992 5656 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
17:11:17.0992 5656 C:\Windows\SysWOW64\wiatrace.dll - ok
17:11:17.0992 5656 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
17:11:17.0992 5656 C:\Windows\System32\SearchIndexer.exe - ok
17:11:18.0007 5656 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
17:11:18.0007 5656 C:\Windows\System32\pnidui.dll - ok
17:11:18.0007 5656 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
17:11:18.0007 5656 C:\Windows\System32\tquery.dll - ok
17:11:18.0007 5656 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
17:11:18.0007 5656 C:\Windows\System32\QUTIL.DLL - ok
17:11:18.0023 5656 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
17:11:18.0023 5656 C:\Windows\System32\srchadmin.dll - ok
17:11:18.0023 5656 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
17:11:18.0023 5656 C:\Windows\System32\mssrch.dll - ok
17:11:18.0038 5656 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:11:18.0038 5656 C:\Windows\System32\rasdlg.dll - ok
17:11:18.0038 5656 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:11:18.0038 5656 C:\Windows\System32\WWanAPI.dll - ok
17:11:18.0054 5656 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:11:18.0054 5656 C:\Windows\System32\wwapi.dll - ok
17:11:18.0054 5656 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
17:11:18.0054 5656 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
17:11:18.0070 5656 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
17:11:18.0070 5656 C:\Windows\SysWOW64\ntdsapi.dll - ok
17:11:18.0070 5656 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
17:11:18.0070 5656 C:\Windows\System32\wbem\unsecapp.exe - ok
17:11:18.0070 5656 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
17:11:18.0070 5656 C:\Windows\System32\QAGENT.DLL - ok
17:11:18.0085 5656 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
17:11:18.0085 5656 C:\Windows\System32\ActionCenter.dll - ok
17:11:18.0101 5656 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:11:18.0101 5656 C:\Windows\System32\wbem\NCProv.dll - ok
17:11:18.0101 5656 [ FB8B3E6BF6445C22F30DFC26B200E569 ] C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll
17:11:18.0101 5656 C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll - ok
17:11:18.0116 5656 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:11:18.0116 5656 C:\Windows\System32\FXSST.dll - ok
17:11:18.0116 5656 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
17:11:18.0116 5656 C:\Windows\System32\FXSAPI.dll - ok
17:11:18.0132 5656 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
17:11:18.0132 5656 C:\Windows\System32\SearchFolder.dll - ok
17:11:18.0132 5656 [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
17:11:18.0132 5656 C:\Windows\System32\StructuredQuery.dll - ok
17:11:18.0148 5656 [ E503E15C88B4BBDA3F6345E34FED3E92 ] C:\Windows\System32\mssvp.dll
17:11:18.0148 5656 C:\Windows\System32\mssvp.dll - ok
17:11:18.0148 5656 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
17:11:18.0148 5656 C:\Windows\System32\mapi32.dll - ok
17:11:18.0163 5656 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:11:18.0163 5656 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:11:18.0179 5656 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
17:11:18.0179 5656 C:\Windows\System32\wbem\wmiprov.dll - ok
17:11:18.0179 5656 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
17:11:18.0179 5656 C:\Windows\System32\esent.dll - ok
17:11:18.0179 5656 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
17:11:18.0179 5656 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
17:11:18.0194 5656 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
17:11:18.0194 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
17:11:18.0194 5656 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
17:11:18.0194 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
17:11:18.0210 5656 [ 637124CDBFF5819CB8A8478838A33048 ] C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll
17:11:18.0210 5656 C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll - ok
17:11:18.0226 5656 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
17:11:18.0226 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
17:11:18.0226 5656 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
17:11:18.0226 5656 C:\Windows\System32\msidle.dll - ok
17:11:18.0241 5656 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
17:11:18.0241 5656 C:\Windows\System32\mssprxy.dll - ok
17:11:18.0241 5656 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
17:11:18.0241 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
17:11:18.0257 5656 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
17:11:18.0257 5656 C:\Windows\System32\shfolder.dll - ok
17:11:18.0257 5656 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
17:11:18.0257 5656 C:\Windows\System32\en-US\tquery.dll.mui - ok
17:11:18.0272 5656 [ CCE5D71F19AB70D969F9819B5C88438D ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
17:11:18.0272 5656 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
17:11:18.0272 5656 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:11:18.0272 5656 C:\Windows\System32\webcheck.dll - ok
17:11:18.0288 5656 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:11:18.0288 5656 C:\Windows\System32\mlang.dll - ok
17:11:18.0288 5656 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
17:11:18.0288 5656 C:\Windows\System32\imapi2.dll - ok
17:11:18.0288 5656 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
17:11:18.0288 5656 C:\Windows\System32\SearchProtocolHost.exe - ok
17:11:18.0304 5656 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
17:11:18.0304 5656 C:\Windows\System32\hgcpl.dll - ok
17:11:18.0304 5656 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
17:11:18.0304 5656 C:\Windows\System32\msshooks.dll - ok
17:11:18.0319 5656 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
17:11:18.0319 5656 C:\Windows\System32\fdPHost.dll - ok
17:11:18.0319 5656 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
17:11:18.0319 5656 C:\Windows\System32\FDResPub.dll - ok
17:11:18.0335 5656 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
17:11:18.0335 5656 C:\Windows\System32\fdWSD.dll - ok
17:11:18.0335 5656 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
17:11:18.0335 5656 C:\Windows\System32\SearchFilterHost.exe - ok
17:11:18.0350 5656 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
17:11:18.0350 5656 C:\Windows\System32\fdSSDP.dll - ok
17:11:18.0366 5656 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
17:11:18.0366 5656 C:\Windows\System32\mssph.dll - ok
17:11:18.0366 5656 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
17:11:18.0366 5656 C:\Windows\System32\fdProxy.dll - ok
17:11:18.0382 5656 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
17:11:18.0382 5656 C:\Windows\System32\Query.dll - ok
17:11:18.0382 5656 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
17:11:18.0382 5656 C:\Windows\System32\ListSvc.dll - ok
17:11:18.0382 5656 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
17:11:18.0382 5656 C:\Windows\System32\P2P.dll - ok
17:11:18.0397 5656 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
17:11:18.0397 5656 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
17:11:18.0397 5656 [ F7220A36464885AC591C21544B47D443 ] C:\Program Files\Internet Explorer\ieproxy.dll
17:11:18.0397 5656 C:\Program Files\Internet Explorer\ieproxy.dll - ok
17:11:18.0413 5656 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
17:11:18.0413 5656 C:\Windows\System32\pnrpsvc.dll - ok
17:11:18.0413 5656 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
17:11:18.0413 5656 C:\Windows\System32\IdListen.dll - ok
17:11:18.0428 5656 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
17:11:18.0428 5656 C:\Windows\System32\hgprint.dll - ok
17:11:18.0428 5656 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
17:11:18.0428 5656 C:\Windows\System32\p2psvc.dll - ok
17:11:18.0444 5656 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
17:11:18.0444 5656 C:\Windows\System32\P2PGraph.dll - ok
17:11:18.0444 5656 [ 050E000D89D4FB750B124380020674E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll
17:11:18.0444 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll - ok
17:11:18.0460 5656 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
17:11:18.0460 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
17:11:18.0475 5656 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
17:11:18.0475 5656 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
17:11:18.0475 5656 [ 27493CEB357FDC4126EAD5993662920E ] C:\Windows\System32\atipdl64.dll
17:11:18.0475 5656 C:\Windows\System32\atipdl64.dll - ok
17:11:18.0491 5656 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
17:11:18.0491 5656 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
17:11:18.0491 5656 [ 0BF4362E18DFC52382F418278DCC52C4 ] C:\Windows\System32\rdpdd.dll
17:11:18.0491 5656 C:\Windows\System32\rdpdd.dll - ok
17:11:18.0506 5656 [ FF6148B1C150DA05D35C68D143AD6DEA ] C:\Windows\System32\RDPENCDD.dll
17:11:18.0506 5656 C:\Windows\System32\RDPENCDD.dll - ok
17:11:18.0506 5656 [ A23A9301EE7152FB6776052E52BDE9D9 ] C:\Windows\System32\RDPREFDD.dll
17:11:18.0506 5656 C:\Windows\System32\RDPREFDD.dll - ok
17:11:18.0522 5656 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
17:11:18.0522 5656 C:\Windows\System32\ssdpsrv.dll - ok
17:11:18.0522 5656 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
17:11:18.0522 5656 C:\Windows\System32\drttransport.dll - ok
17:11:18.0538 5656 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
17:11:18.0538 5656 C:\Windows\System32\drt.dll - ok
17:11:18.0538 5656 [ 3C06536A9AA332E9E0CEBDE5A596822A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
17:11:18.0538 5656 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
17:11:18.0553 5656 [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
17:11:18.0553 5656 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
17:11:18.0553 5656 [ DDE5A0DFAF7C6370FB36402D7A746ED3 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
17:11:18.0553 5656 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
17:11:18.0569 5656 [ 2C105439AA27DC150511D90F3B6B1EC5 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
17:11:18.0569 5656 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
17:11:18.0569 5656 [ B9497C5ACAEA521663BFFBB321DD3AFA ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
17:11:18.0569 5656 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll - ok
17:11:18.0569 5656 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
17:11:18.0569 5656 C:\Windows\SysWOW64\rasapi32.dll - ok
17:11:18.0584 5656 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
17:11:18.0584 5656 C:\Windows\SysWOW64\rasman.dll - ok
17:11:18.0584 5656 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
17:11:18.0584 5656 C:\Windows\SysWOW64\rtutils.dll - ok
17:11:18.0600 5656 [ 15CF0E37F2B406BDE06CBA4F507B25DE ] C:\Windows\SysWOW64\ieui.dll
17:11:18.0600 5656 C:\Windows\SysWOW64\ieui.dll - ok
17:11:18.0600 5656 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
17:11:18.0600 5656 C:\Windows\SysWOW64\mssprxy.dll - ok
17:11:18.0616 5656 [ C827070FA5F88704C15B08D406EE6FFF ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
17:11:18.0616 5656 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
17:11:18.0616 5656 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
17:11:18.0616 5656 C:\Windows\SysWOW64\xmllite.dll - ok
17:11:18.0616 5656 [ 263963D93A3CA8F685EFA5966F1E6581 ] C:\Windows\SysWOW64\mshtml.dll
17:11:18.0616 5656 C:\Windows\SysWOW64\mshtml.dll - ok
17:11:18.0631 5656 [ A4E9EC8826373DF8D551BE6F39BB6E55 ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
17:11:18.0631 5656 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
17:11:18.0631 5656 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
17:11:18.0631 5656 C:\Windows\SysWOW64\d2d1.dll - ok
17:11:18.0647 5656 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
17:11:18.0647 5656 C:\Windows\System32\FntCache.dll - ok
17:11:18.0647 5656 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
17:11:18.0647 5656 C:\Windows\SysWOW64\mlang.dll - ok
17:11:18.0647 5656 [ B6D248F0361EEC8748FE204EEDEDD789 ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
17:11:18.0647 5656 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
17:11:18.0662 5656 [ 3A132F8CB56EF897EE205E69D07FC034 ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
17:11:18.0662 5656 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll - ok
17:11:18.0678 5656 [ EB47E405A9222CA595E5E763B4156529 ] C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
17:11:18.0678 5656 C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll - ok
17:11:18.0678 5656 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
17:11:18.0678 5656 C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll - ok
17:11:18.0694 5656 [ D2D31D7A394A70040FCAC5F54A130FBA ] C:\Program Files (x86)\Java\jre7\bin\deploy.dll
17:11:18.0694 5656 C:\Program Files (x86)\Java\jre7\bin\deploy.dll - ok
17:11:18.0694 5656 [ 8509093B68014B21E2692ADFDD233BD3 ] C:\PROGRA~2\DAP\dapie.dll
17:11:18.0694 5656 C:\PROGRA~2\DAP\dapie.dll - ok
17:11:18.0709 5656 [ 6807B4DD2CCF60745C1333D6C17DE173 ] C:\PROGRA~2\DAP\mfc42.dll
17:11:18.0709 5656 C:\PROGRA~2\DAP\mfc42.dll - ok
17:11:18.0709 5656 [ FD8493A7B479077A92DD71056E8467DA ] C:\Windows\SysWOW64\aticfx32.dll
17:11:18.0709 5656 C:\Windows\SysWOW64\aticfx32.dll - ok
17:11:18.0725 5656 [ D92A280815A3421532FEB69B99DA2342 ] C:\Windows\SysWOW64\atiuxpag.dll
17:11:18.0725 5656 C:\Windows\SysWOW64\atiuxpag.dll - ok
17:11:18.0740 5656 [ 7C8991F7BA9DF1636BAA52B2115BA69C ] C:\Windows\SysWOW64\atidxx32.dll
17:11:18.0740 5656 C:\Windows\SysWOW64\atidxx32.dll - ok
17:11:18.0756 5656 [ 69F42E40A0C4344939437D86A8893DA6 ] C:\Windows\SysWOW64\jscript9.dll
17:11:18.0756 5656 C:\Windows\SysWOW64\jscript9.dll - ok
17:11:18.0756 5656 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
17:11:18.0756 5656 C:\Windows\SysWOW64\msimtf.dll - ok
17:11:18.0756 5656 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
17:11:18.0756 5656 C:\Windows\SysWOW64\msls31.dll - ok
17:11:18.0772 5656 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
17:11:18.0772 5656 C:\Windows\SysWOW64\d3d10.dll - ok
17:11:18.0787 5656 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
17:11:18.0787 5656 C:\Windows\SysWOW64\d3d10core.dll - ok
17:11:18.0787 5656 [ 38A0BE38EB53510AB425E33EA0847AD6 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx
17:11:18.0787 5656 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx - ok
17:11:18.0787 5656 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
17:11:18.0787 5656 C:\Windows\SysWOW64\dsound.dll - ok
17:11:18.0803 5656 [ A854BC2D2AD9856F6B84C7870FF246D9 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe
17:11:18.0803 5656 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe - ok
17:11:18.0803 5656 [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\SysWOW64\oleaccrc.dll
17:11:18.0803 5656 C:\Windows\SysWOW64\oleaccrc.dll - ok
17:11:18.0818 5656 [ 9394191C81A041311D8047D053390566 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.dll
17:11:18.0818 5656 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.dll - ok
17:11:18.0834 5656 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
17:11:18.0834 5656 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
17:11:18.0834 5656 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
17:11:18.0834 5656 C:\Windows\SysWOW64\msxml6.dll - ok
17:11:18.0850 5656 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
17:11:18.0850 5656 C:\Windows\SysWOW64\schannel.dll - ok
17:11:18.0850 5656 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
17:11:18.0850 5656 C:\Windows\SysWOW64\p2pcollab.dll - ok
17:11:18.0850 5656 [ 9FF2F588F61AF156562690443054C756 ] C:\Windows\SysWOW64\atiu9pag.dll
17:11:18.0850 5656 C:\Windows\SysWOW64\atiu9pag.dll - ok
17:11:18.0865 5656 [ CE890DBCEDB05B0F32B189B383347086 ] C:\Windows\SysWOW64\atiumdag.dll
17:11:18.0865 5656 C:\Windows\SysWOW64\atiumdag.dll - ok
17:11:18.0865 5656 [ 1079C539E6D122BF78A19A6660700E49 ] C:\Windows\SysWOW64\atiumdva.dll
17:11:18.0865 5656 C:\Windows\SysWOW64\atiumdva.dll - ok
17:11:18.0881 5656 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
17:11:18.0881 5656 C:\Windows\SysWOW64\icm32.dll - ok
17:11:18.0881 5656 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
17:11:18.0881 5656 C:\Windows\SysWOW64\msxml3.dll - ok
17:11:18.0896 5656 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
17:11:18.0896 5656 C:\Windows\SysWOW64\dxtrans.dll - ok
17:11:18.0896 5656 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
17:11:18.0896 5656 C:\Windows\SysWOW64\ddrawex.dll - ok
17:11:18.0912 5656 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
17:11:18.0912 5656 C:\Windows\SysWOW64\dxtmsft.dll - ok
17:11:18.0912 5656 [ 8B57A1AD493653BB57F281FE75DD175B ] C:\Windows\SysWOW64\NaturalLanguage6.dll
17:11:18.0912 5656 C:\Windows\SysWOW64\NaturalLanguage6.dll - ok
17:11:18.0928 5656 [ 2992932C1AB1D29A1A4A9E8CB8530CBF ] C:\Windows\SysWOW64\NlsData0009.dll
17:11:18.0928 5656 C:\Windows\SysWOW64\NlsData0009.dll - ok
17:11:18.0928 5656 [ C8CB301BF896C7C556BBE963FADF5BB6 ] C:\Windows\SysWOW64\NlsLexicons0009.dll
17:11:18.0928 5656 C:\Windows\SysWOW64\NlsLexicons0009.dll - ok
17:11:18.0943 5656 [ 68563AC389F92EE79F1C714288BA1DCE ] C:\Windows\SysWOW64\imgutil.dll
17:11:18.0943 5656 C:\Windows\SysWOW64\imgutil.dll - ok
17:11:18.0943 5656 [ C9A2D460FD5E409C9320B4CE68A81549 ] C:\Windows\SysWOW64\vbscript.dll
17:11:18.0943 5656 C:\Windows\SysWOW64\vbscript.dll - ok
17:11:18.0959 5656 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
17:11:18.0959 5656 C:\Windows\SysWOW64\mfplat.dll - ok
17:11:18.0959 5656 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
17:11:18.0959 5656 C:\Windows\SysWOW64\avrt.dll - ok
17:11:18.0974 5656 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
17:11:18.0974 5656 C:\Windows\SysWOW64\dxva2.dll - ok
17:11:18.0974 5656 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:11:18.0974 5656 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
17:11:18.0990 5656 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
17:11:18.0990 5656 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
17:11:18.0990 5656 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
17:11:18.0990 5656 C:\Windows\SysWOW64\mscoree.dll - ok
17:11:19.0006 5656 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:11:19.0006 5656 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
17:11:19.0006 5656 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
17:11:19.0006 5656 C:\Windows\System32\msvcr100_clr0400.dll - ok
17:11:19.0021 5656 [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
17:11:19.0021 5656 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll - ok
17:11:19.0021 5656 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
17:11:19.0021 5656 C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe - ok
17:11:19.0037 5656 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
17:11:19.0037 5656 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
17:11:19.0037 5656 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
17:11:19.0037 5656 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
17:11:19.0052 5656 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
17:11:19.0052 5656 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
17:11:19.0068 5656 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
17:11:19.0068 5656 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
17:11:19.0068 5656 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
17:11:19.0068 5656 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
17:11:19.0084 5656 [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
17:11:19.0084 5656 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
17:11:19.0084 5656 [ 515D0E89532FA76488BE97427DE4207F ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.dll
17:11:19.0084 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.dll - ok
17:11:19.0099 5656 [ 54B21273AAF8A0BA1C06494FFB21BB29 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract.dll
17:11:19.0099 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract\1.0.0.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract.dll - ok
17:11:19.0115 5656 [ E5210EB71E2017951050550067C30093 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll
17:11:19.0115 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll - ok
17:11:19.0115 5656 [ 26D2B399E87F2DF5DBCE2DAC24D94CFF ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.Common.dll
17:11:19.0115 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.Common.dll - ok
17:11:19.0115 5656 [ FE88E72F1B01EF8334E47EC44117559F ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\3.1.26.0__540d4816ead86321\Intuit.Spc.Esd.Core.dll
17:11:19.0115 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\3.1.26.0__540d4816ead86321\Intuit.Spc.Esd.Core.dll - ok
17:11:19.0130 5656 [ B37A7C2B855FA1523A6840246C250FB2 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll
17:11:19.0130 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll - ok
17:11:19.0130 5656 [ B89CB7F3F1A1E2807E708F5435DEB13D ] C:\Windows\assembly\GAC_MSIL\log4net\1.2.10.0__1b44e1d426115821\log4net.dll
17:11:19.0130 5656 C:\Windows\assembly\GAC_MSIL\log4net\1.2.10.0__1b44e1d426115821\log4net.dll - ok
17:11:19.0146 5656 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
17:11:19.0146 5656 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
17:11:19.0162 5656 [ 20F53F9DA0336C73616D124E48CC3387 ] C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
17:11:19.0162 5656 C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
17:11:19.0162 5656 [ 5A7A33F7F9DFC0C0A8B8E000F4D9D898 ] C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
17:11:19.0162 5656 C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - ok
17:11:19.0177 5656 [ 5B3FA17E1CD6FBBDF41AC34DAEECC256 ] C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
17:11:19.0177 5656 C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll - ok
17:11:19.0177 5656 [ F71A731E236FB55E3585DC5391D286D3 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Api.Net.dll
17:11:19.0177 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.WinClient.Api.Net.dll - ok
17:11:19.0193 5656 [ C0770E006D0556D359F586ED86EAD004 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.DataAccess.dll
17:11:19.0193 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.DataAccess.dll - ok
17:11:19.0208 5656 [ 12500E86FAFEB5CB22C0ABA370CFFFBD ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.BusinessLogic.dll
17:11:19.0208 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\3.1.31.0__540d4816ead86321\Intuit.Spc.Esd.Client.BusinessLogic.dll - ok
17:11:19.0208 5656 [ 937FBD23997A91AF923D5E89286126BD ] C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.61.0__db937bc2d44ff139\System.Data.SQLite.DLL
17:11:19.0208 5656 C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.61.0__db937bc2d44ff139\System.Data.SQLite.DLL - ok
17:11:19.0224 5656 [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
17:11:19.0224 5656 C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
17:11:19.0240 5656 [ 5F3F1BF5F5B43293953FC915845910C4 ] C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
17:11:19.0240 5656 C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
17:11:19.0240 5656 [ 1D114E646E5CC8B6D18238EBA210F9AE ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll
17:11:19.0240 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll - ok
17:11:19.0255 5656 [ 6DB969DF540BC71722848940D180AC08 ] C:\Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
17:11:19.0255 5656 C:\Windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll - ok
17:11:19.0255 5656 [ 1D4DA021B0AD837B35AFB772CC7C636D ] C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
17:11:19.0255 5656 C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll - ok
17:11:19.0271 5656 [ BE210318FA6DA2A862BD41EA87E8CBE6 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
17:11:19.0271 5656 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
17:11:19.0271 5656 [ 676B3D8716B19DADBAA84E99785E71EC ] C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
17:11:19.0271 5656 C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
17:11:19.0271 5656 [ BC204CE4CD9D08D6B178DFC77095B850 ] C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.WindowsFirewallUtilities\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.WindowsFirewallUtilities.dll
17:11:19.0271 5656 C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.WindowsFirewallUtilities\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.WindowsFirewallUtilities.dll - ok
17:11:19.0286 5656 [ F68CAFF425A9F37E498193BDDC5CC652 ] C:\Windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
17:11:19.0286 5656 C:\Windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - ok
17:11:19.0286 5656 [ F5EA99BD43A762945547DBCBC119E9D4 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5baea82888a13fa558004b24e3b107cf\CustomMarshalers.ni.dll
17:11:19.0286 5656 C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\5baea82888a13fa558004b24e3b107cf\CustomMarshalers.ni.dll - ok
17:11:19.0302 5656 [ C80DA476BFBAD97D874A0EFE037D7113 ] C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
17:11:19.0302 5656 C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
17:11:19.0302 5656 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
17:11:19.0302 5656 C:\Windows\System32\sppsvc.exe - ok
17:11:19.0318 5656 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
17:11:19.0318 5656 C:\Windows\System32\drivers\spsys.sys - ok
17:11:19.0333 5656 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
17:11:19.0333 5656 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
17:11:19.0333 5656 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
17:11:19.0333 5656 C:\Windows\System32\wmdrmdev.dll - ok
17:11:19.0333 5656 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
17:11:19.0333 5656 C:\Windows\System32\drmv2clt.dll - ok
17:11:19.0349 5656 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
17:11:19.0349 5656 C:\Windows\System32\sppwinob.dll - ok
17:11:19.0349 5656 [ 8342F1887A221F28E0047F5748BAAC72 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
17:11:19.0349 5656 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
17:11:19.0349 5656 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
17:11:19.0349 5656 C:\Windows\System32\wscsvc.dll - ok
17:11:19.0364 5656 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
17:11:19.0364 5656 C:\Windows\System32\upnp.dll - ok
17:11:19.0380 5656 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
17:11:19.0380 5656 C:\Windows\System32\wmp.dll - ok
17:11:19.0380 5656 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
17:11:19.0380 5656 C:\Windows\System32\wmploc.DLL - ok
17:11:19.0396 5656 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
17:11:19.0396 5656 C:\Windows\System32\wmpps.dll - ok
17:11:19.0396 5656 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
17:11:19.0396 5656 C:\Windows\System32\wuaueng.dll - ok
17:11:19.0411 5656 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
17:11:19.0411 5656 C:\Windows\System32\wmpmde.dll - ok
17:11:19.0411 5656 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
17:11:19.0411 5656 C:\Windows\System32\WinSATAPI.dll - ok
17:11:19.0427 5656 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
17:11:19.0427 5656 C:\Windows\System32\MSMPEG2ENC.DLL - ok
17:11:19.0427 5656 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
17:11:19.0427 5656 C:\Windows\System32\devenum.dll - ok
17:11:19.0442 5656 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
17:11:19.0442 5656 C:\Windows\System32\msdmo.dll - ok
17:11:19.0442 5656 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
17:11:19.0442 5656 C:\Windows\System32\cabinet.dll - ok
17:11:19.0458 5656 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
17:11:19.0458 5656 C:\Windows\System32\sppobjs.dll - ok
17:11:19.0458 5656 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
17:11:19.0458 5656 C:\Windows\System32\mspatcha.dll - ok
17:11:19.0474 5656 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
17:11:19.0474 5656 C:\Windows\System32\upnphost.dll - ok
17:11:19.0474 5656 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
17:11:19.0474 5656 C:\Windows\System32\wuapi.dll - ok
17:11:19.0474 5656 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
17:11:19.0474 5656 C:\Windows\System32\wups.dll - ok
17:11:19.0489 5656 [ 1A8FAA5D7FBEB599FCC8C1021FA72987 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\WSCStub.exe
17:11:19.0489 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\WSCStub.exe - ok
17:11:19.0489 5656 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
17:11:19.0489 5656 C:\Windows\System32\wups2.dll - ok
17:11:19.0505 5656 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
17:11:19.0505 5656 C:\Windows\SysWOW64\wscisvif.dll - ok
17:11:19.0505 5656 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
17:11:19.0505 5656 C:\Windows\SysWOW64\wscapi.dll - ok
17:11:19.0520 5656 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
17:11:19.0520 5656 C:\Windows\SysWOW64\wscproxystub.dll - ok
17:11:19.0520 5656 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
17:11:19.0520 5656 C:\Windows\System32\udhisapi.dll - ok
17:11:19.0520 5656 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
17:11:19.0520 5656 C:\Windows\System32\networkexplorer.dll - ok
17:11:19.0536 5656 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
17:11:19.0536 5656 C:\Windows\System32\drprov.dll - ok
17:11:19.0536 5656 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
17:11:19.0536 5656 C:\Windows\System32\ntlanman.dll - ok
17:11:19.0552 5656 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
17:11:19.0552 5656 C:\Windows\System32\davclnt.dll - ok
17:11:19.0567 5656 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
17:11:19.0567 5656 C:\Windows\System32\davhlpr.dll - ok
17:11:19.0567 5656 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
17:11:19.0583 5656 C:\Windows\System32\wscinterop.dll - ok
17:11:19.0583 5656 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
17:11:19.0583 5656 C:\Windows\System32\wscapi.dll - ok
17:11:19.0583 5656 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
17:11:19.0583 5656 C:\Windows\System32\wscui.cpl - ok
17:11:19.0598 5656 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
17:11:19.0598 5656 C:\Windows\System32\werconcpl.dll - ok
17:11:19.0614 5656 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
17:11:19.0614 5656 C:\Windows\System32\framedynos.dll - ok
17:11:19.0614 5656 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
17:11:19.0614 5656 C:\Windows\System32\wercplsupport.dll - ok
17:11:19.0630 5656 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
17:11:19.0630 5656 C:\Windows\System32\hcproviders.dll - ok
17:11:19.0630 5656 [ F76E31CD451E83142C311279F8247EF1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coSvcPlg.dll
17:11:19.0630 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coSvcPlg.dll - ok
17:11:19.0645 5656 [ 1A6F7C832BE552F67C3A034486A07FED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGLog.dll
17:11:19.0645 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccGLog.dll - ok
17:11:19.0645 5656 [ 8ED53A57C7406E214666CCA031D9DCB6 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coFFPlgn.dll
17:11:19.0645 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coFFPlgn.dll - ok
17:11:19.0661 5656 [ 8ED53A57C7406E214666CCA031D9DCB6 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\coFFPlgn\components\coFFPlgn.dll
17:11:19.0661 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\coFFPlgn\components\coFFPlgn.dll - ok
17:11:19.0661 5656 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
17:11:19.0661 5656 C:\Windows\SysWOW64\actxprxy.dll - ok
17:11:19.0676 5656 [ 95F84EDCE6FC2DC3E2DF82126D4C9CB3 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccJobMgr.dll
17:11:19.0676 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccJobMgr.dll - ok
17:11:19.0676 5656 [ 66872F61C1BBC99B530B9D37B7A61025 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSubEng.dll
17:11:19.0676 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSubEng.dll - ok
17:11:19.0692 5656 [ 1314E60A6339CD88BCBEACF702A8C8C7 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccEmlPxy.dll
17:11:19.0692 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccEmlPxy.dll - ok
17:11:19.0692 5656 [ 5A79B1723A1128E57239B5A713377E8E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Iron.dll
17:11:19.0692 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Iron.dll - ok
17:11:19.0708 5656 [ C3C852983195ECC7CFF639F2244BC3ED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buSvc.dll
17:11:19.0708 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buSvc.dll - ok
17:11:19.0708 5656 [ 2146C133412A3E09E60D7D08CDD387DF ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRedir.dll
17:11:19.0708 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRedir.dll - ok
17:11:19.0723 5656 [ 15D3A8832309A367002168A982158D60 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buComm.dll
17:11:19.0723 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buComm.dll - ok
17:11:19.0723 5656 [ 065878E29EBCC5B2C901AC92229D3167 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BuEng.dll
17:11:19.0723 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BuEng.dll - ok
17:11:19.0739 5656 [ 6A9A804175AC6015F8843838D1FB9970 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SNDSvc.dll
17:11:19.0739 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SNDSvc.dll - ok
17:11:19.0754 5656 [ A10F446963B39EEAB50868944A3D8E99 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRdrSv.dll
17:11:19.0754 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SymRdrSv.dll - ok
17:11:19.0754 5656 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
17:11:19.0754 5656 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
17:11:19.0754 5656 [ CF1D48D820FADE9BC1A0E1C1D7FA53B3 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\hncore.dll
17:11:19.0754 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\hncore.dll - ok
17:11:19.0770 5656 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
17:11:19.0770 5656 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
17:11:19.0770 5656 [ 26E049064069ADAAE40468E4B144873D ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AppMgr32.dll
17:11:19.0770 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AppMgr32.dll - ok
17:11:19.0786 5656 [ 006F4A78D6C0014F18D638E77974E36B ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVModule.dll
17:11:19.0786 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVModule.dll - ok
17:11:19.0786 5656 [ 04615EAAA929586096AE7A4D348915F1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NCW.dll
17:11:19.0786 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\NCW.dll - ok
17:11:19.0801 5656 [ A329EE5A003E92538DF55D72CAF17A80 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DefUtDCD.dll
17:11:19.0801 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DefUtDCD.dll - ok
17:11:19.0801 5656 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\SysWOW64\ktmw32.dll
17:11:19.0801 5656 C:\Windows\SysWOW64\ktmw32.dll - ok
17:11:19.0817 5656 [ FFC9128367BA19F175562CAFE23BAF8F ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ducclib.dll
17:11:19.0817 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ducclib.dll - ok
17:11:19.0832 5656 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
17:11:19.0832 5656 C:\Windows\System32\wbem\cimwin32.dll - ok
17:11:19.0832 5656 [ CD55F6DA8474D136E95C5B38848518C9 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DataStor.dll
17:11:19.0832 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DataStor.dll - ok
17:11:19.0848 5656 [ CFC429263ED9F389D7A80D9D66904E4C ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltPE.dll
17:11:19.0848 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltPE.dll - ok
17:11:19.0848 5656 [ 85CF4109D0142C38F0F22DA6A1941D31 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPSVC32.dll
17:11:19.0848 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPSVC32.dll - ok
17:11:19.0864 5656 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
17:11:19.0864 5656 C:\Windows\System32\security.dll - ok
17:11:19.0864 5656 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
17:11:19.0864 5656 C:\Windows\System32\browcli.dll - ok
17:11:19.0864 5656 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
17:11:19.0864 5656 C:\Windows\System32\schedcli.dll - ok
17:11:19.0879 5656 [ 5E20B3E042A42EFEC419C3E74817FFE4 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\sqsvc.dll
17:11:19.0879 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\sqsvc.dll - ok
17:11:19.0879 5656 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
17:11:19.0879 5656 C:\Windows\System32\wbem\wmipcima.dll - ok
17:11:19.0895 5656 [ 876AFFC7ED37A39109E85E32947ABBF7 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVENG32.DLL
17:11:19.0895 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVENG32.DLL - ok
17:11:19.0895 5656 [ FFBE713990C5CA6A444A94B055A173EF ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVifc.dll
17:11:19.0895 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVifc.dll - ok
17:11:19.0910 5656 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
17:11:19.0910 5656 C:\Windows\System32\wmi.dll - ok
17:11:19.0926 5656 [ 14D289F63D9538306CB560C4CD12172F ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSxpx86.dll
17:11:19.0926 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IDSxpx86.dll - ok
17:11:19.0926 5656 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
17:11:19.0926 5656 C:\Windows\System32\slwga.dll - ok
17:11:19.0942 5656 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
17:11:19.0942 5656 C:\Windows\System32\sppc.dll - ok
17:11:19.0942 5656 [ CABD19355BB8A1E55B25F4941386CEFD ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coDataPr.dll
17:11:19.0942 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coDataPr.dll - ok
17:11:19.0942 5656 [ 378A0748DE5ADF90BF9DB897DA8564E6 ] C:\Windows\System32\drivers\N360x64\1403000.024\srtsp64.sys
17:11:19.0942 5656 C:\Windows\System32\drivers\N360x64\1403000.024\srtsp64.sys - ok
17:11:19.0957 5656 [ EF2415D4AFB1488FE6FAECB781E5B927 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coShdObj.dll
17:11:19.0957 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coShdObj.dll - ok
17:11:19.0973 5656 [ C5A469C70BEDDB361BD3F2084552C835 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buDataCl.dll
17:11:19.0973 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buDataCl.dll - ok
17:11:19.0973 5656 [ F4ADADBB0A2B560D4F2AAB5DA623E5BE ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\tuDataPr.dll
17:11:19.0973 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\tuDataPr.dll - ok
17:11:19.0973 5656 [ 28F02728FF78C7503E3579F595DF9897 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buProv.dll
17:11:19.0973 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buProv.dll - ok
17:11:19.0988 5656 [ 4FC36B1BA8C8642EDD310A93D36008B1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gwrks32.dll
17:11:19.0988 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gwrks32.dll - ok
17:11:19.0988 5656 [ 00120204D347C4FECE76F18E2A2EE295 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gearaw32.dll
17:11:19.0988 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\gearaw32.dll - ok
17:11:20.0004 5656 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ex64.sys
17:11:20.0004 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ex64.sys - ok
17:11:20.0004 5656 [ 34172E5FCBFA3AADB3DA7A93777D46EB ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QSPlugin.dll
17:11:20.0004 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QSPlugin.dll - ok
17:11:20.0020 5656 [ 88A2F45CE66B904285978D6BB13AFEB2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\eng64.sys
17:11:20.0020 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\eng64.sys - ok
17:11:20.0020 5656 [ 7748C469C411D4AFAEA94EF8410C8044 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMS.dll
17:11:20.0020 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMS.dll - ok
17:11:20.0035 5656 [ 1FD37C00535502429DD964EC53D66FB8 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHSvcPlg.dll
17:11:20.0035 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHSvcPlg.dll - ok
17:11:20.0035 5656 [ 3008E92ACE0A5BFF69532AD78F2AB894 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SpocClnt.dll
17:11:20.0035 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SpocClnt.dll - ok
17:11:20.0051 5656 [ 09362D91CF5631EBB1C99276E1DCDAF2 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DSCli.dll
17:11:20.0051 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\DSCli.dll - ok
17:11:20.0051 5656 [ E3B15688F26049B981F19517EF46D57B ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SQLite.dll
17:11:20.0051 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SQLite.dll - ok
17:11:20.0066 5656 [ 5764150E8FD9B86F797EF2BF4C1ECBDC ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Comm.dll
17:11:20.0066 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\Comm.dll - ok
17:11:20.0066 5656 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
17:11:20.0066 5656 C:\Windows\SysWOW64\samcli.dll - ok
17:11:20.0082 5656 [ 35CDEEF8027CA2B8CB3414D3E27C383E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isPwd.dll
17:11:20.0082 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\isPwd.dll - ok
17:11:20.0082 5656 [ 0B4A811CC972F37F0ED607345B74F317 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMJ.dll
17:11:20.0082 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltLMJ.dll - ok
17:11:20.0098 5656 [ A96A8FDD7D35F55DF08A8CEC067334ED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVMail.dll
17:11:20.0098 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVMail.dll - ok
17:11:20.0113 5656 [ DBEC1C7A74D22B09D4BADEB37909486D ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\naHelper.dll
17:11:20.0113 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\naHelper.dll - ok
17:11:20.0113 5656 [ 04B12B3456589866291571AC74CE63F2 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ProxyClt.dll
17:11:20.0113 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ProxyClt.dll - ok
17:11:20.0129 5656 [ 176E34260B7BC6DDD3440EE0E4605E20 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asEngine.dll
17:11:20.0129 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asEngine.dll - ok
17:11:20.0129 5656 [ BF1BE2625743A3B02D829572FA810C79 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHEngine.dll
17:11:20.0129 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130301.001\BHEngine.dll - ok
17:11:20.0144 5656 [ C5D664FCEFE3B7E1541B38529A9E994A ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IPSPlug.dll
17:11:20.0144 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IPSPlug.dll - ok
17:11:20.0144 5656 [ CEEE7412086DC9ED25BCFA60B055A140 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ISDataSv.dll
17:11:20.0144 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ISDataSv.dll - ok
17:11:20.0144 5656 [ 3193932027850726C0CA2E06F401D629 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWCore.dll
17:11:20.0144 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWCore.dll - ok
17:11:20.0160 5656 [ 34E1BA63F0F73893FEAAFB67B7D027D8 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWGenPlg.dll
17:11:20.0160 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWGenPlg.dll - ok
17:11:20.0176 5656 [ 15D19A4FEABA2DA7109F0111C6F4C461 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asHelper.dll
17:11:20.0176 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asHelper.dll - ok
17:11:20.0176 5656 [ 45A93316C3C40C75FC82F7BD302966A8 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWHelper.dll
17:11:20.0176 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWHelper.dll - ok
17:11:20.0191 5656 [ D3B5CF62C53FCBFAEF12404A8CCF27C1 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asoehook.dll
17:11:20.0191 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\asoehook.dll - ok
17:11:20.0191 5656 [ EC6F5E416749AC9CC17DBE4EB5687625 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccScanW.dll
17:11:20.0191 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccScanW.dll - ok
17:11:20.0207 5656 [ 15542082693D7BE4C7F44C7BE3CB3194 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPAPP32.dll
17:11:20.0207 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\AVPAPP32.dll - ok
17:11:20.0207 5656 [ 9255022EAB2F58881109F63EC293F423 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buUIPlg.dll
17:11:20.0207 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\buUIPlg.dll - ok
17:11:20.0222 5656 [ F890C197ADF21D08DBA4643C9AA54B9F ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ecmldr32.DLL
17:11:20.0222 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ecmldr32.DLL - ok
17:11:20.0222 5656 [ D66D82989DCF0D0C269DC21E413E2208 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ECMSVR32.DLL
17:11:20.0222 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\ECMSVR32.DLL - ok
17:11:20.0238 5656 [ 69C7E5950B4BDC2141521DC9105EE565 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltAlDis.dll
17:11:20.0238 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\cltAlDis.dll - ok
17:11:20.0238 5656 [ 996C6E958FD4981C2C44F3C754A23F44 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IDSaux.dll
17:11:20.0238 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\IDSaux.dll - ok
17:11:20.0254 5656 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IPSFFPl.dll
17:11:20.0254 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130323.001\IPSFFPl.dll - ok
17:11:20.0254 5656 [ 956019F9950947A06389BAA6BE8438CA ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVEX32A.DLL
17:11:20.0254 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\VirusDefs\20130325.024\NAVEX32A.DLL - ok
17:11:20.0269 5656 [ 3184278B3FC0CA30F51ACE0E1B8B4302 ] C:\Program Files (x86)\Norton 360\MUI\20.3.0.36\09\01\cltRes.loc
17:11:20.0269 5656 C:\Program Files (x86)\Norton 360\MUI\20.3.0.36\09\01\cltRes.loc - ok
17:11:20.0269 5656 [ 34F34566FF42855D45A33F904C3074ED ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSesAl.dll
17:11:20.0269 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\FWSesAl.dll - ok
17:11:20.0285 5656 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\IPSFFPlgn\components\ipsffpl.dll
17:11:20.0285 5656 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\IPSFFPlgn\components\ipsffpl.dll - ok
17:11:20.0285 5656 [ 18F2D656D28363939DEE16ADE2F7F127 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHClient.dll
17:11:20.0285 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\BHClient.dll - ok
17:11:20.0300 5656 [ 43A64651D79385F30923B86251BA9206 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coActMgr.dll
17:11:20.0300 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\coActMgr.dll - ok
17:11:20.0300 5656 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
17:11:20.0300 5656 C:\Windows\SysWOW64\wshqos.dll - ok
17:11:20.0316 5656 [ 45D5610E63EA3EAFCE94B12EC3F3EF7E ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\wincfi39.dll
17:11:20.0316 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\wincfi39.dll - ok
17:11:20.0316 5656 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
17:11:20.0316 5656 C:\Windows\SysWOW64\taskschd.dll - ok
17:11:20.0332 5656 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
17:11:20.0332 5656 C:\Windows\SysWOW64\wlanapi.dll - ok
17:11:20.0347 5656 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
17:11:20.0347 5656 C:\Windows\SysWOW64\samlib.dll - ok
17:11:20.0347 5656 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
17:11:20.0347 5656 C:\Windows\SysWOW64\wlanutil.dll - ok
17:11:20.0363 5656 [ 1087649B78D941BFF585E079D8B4D39A ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SDKCmn.dll
17:11:20.0363 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\SDKCmn.dll - ok
17:11:20.0363 5656 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
17:11:20.0363 5656 C:\Windows\System32\wuauclt.exe - ok
17:11:20.0378 5656 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
17:11:20.0378 5656 C:\Windows\System32\notepad.exe - ok
17:11:20.0378 5656 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
17:11:20.0378 5656 C:\Windows\System32\wucltux.dll - ok
17:11:20.0394 5656 [ 5B244432E3F54E9D9B74B4BC8361B3DF ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiAlert.dll
17:11:20.0394 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\uiAlert.dll - ok
17:11:20.0394 5656 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:11:20.0394 5656 C:\Windows\SysWOW64\linkinfo.dll - ok
17:11:20.0410 5656 [ B4AD112D9D4626923650218C9BF88250 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\UserCtxt.dll
17:11:20.0410 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\UserCtxt.dll - ok
17:11:20.0410 5656 [ 5FBD7BEC6CD3DCAA6A87A7F70CE8AF44 ] C:\Windows\System32\advpack.dll
17:11:20.0410 5656 C:\Windows\System32\advpack.dll - ok
17:11:20.0410 5656 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
17:11:20.0410 5656 C:\Windows\servicing\TrustedInstaller.exe - ok
17:11:20.0425 5656 [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
17:11:20.0425 5656 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
17:11:20.0425 5656 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
17:11:20.0425 5656 C:\Windows\System32\dpx.dll - ok
17:11:20.0441 5656 [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
17:11:20.0441 5656 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
17:11:20.0456 5656 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
17:11:20.0456 5656 C:\Windows\System32\NaturalLanguage6.dll - ok
17:11:20.0456 5656 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
17:11:20.0456 5656 C:\Windows\System32\NlsData0009.dll - ok
17:11:20.0472 5656 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
17:11:20.0472 5656 C:\Windows\System32\NlsLexicons0009.dll - ok
17:11:20.0472 5656 [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
17:11:20.0472 5656 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
17:11:20.0488 5656 [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
17:11:20.0488 5656 C:\Windows\System32\srclient.dll - ok
17:11:20.0488 5656 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
17:11:20.0488 5656 C:\Windows\System32\spp.dll - ok
17:11:20.0503 5656 [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
17:11:20.0503 5656 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
17:11:20.0503 5656 [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
17:11:20.0503 5656 C:\Windows\System32\sxsstore.dll - ok
17:11:20.0519 5656 [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
17:11:20.0519 5656 C:\Windows\servicing\CbsApi.dll - ok
17:11:20.0519 5656 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
17:11:20.0519 5656 C:\Windows\System32\ELSCore.dll - ok
17:11:20.0534 5656 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
17:11:20.0534 5656 C:\Windows\System32\elsTrans.dll - ok
17:11:20.0534 5656 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
17:11:20.0534 5656 C:\Windows\System32\elslad.dll - ok
17:11:20.0534 5656 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
17:11:20.0534 5656 C:\Windows\System32\NlsData0000.dll - ok
17:11:20.0550 5656 [ 133653C5A8A256A2928B7DE7F3DCA610 ] C:\Windows\System32\spool\drivers\x64\3\E_IMAIGBA.DLL
17:11:20.0550 5656 C:\Windows\System32\spool\drivers\x64\3\E_IMAIGBA.DLL - ok
17:11:20.0550 5656 [ 2702E04FE5655B12A3E83103A6660AA1 ] C:\Windows\System32\spool\drivers\x64\3\E_IUICGBA.DLL
17:11:20.0550 5656 C:\Windows\System32\spool\drivers\x64\3\E_IUICGBA.DLL - ok
17:11:20.0566 5656 [ 7C1FF41A568F144FB9ACCDC24D3CBC6B ] C:\Windows\System32\spool\drivers\x64\3\E_IAUDGBA.DLL
17:11:20.0566 5656 C:\Windows\System32\spool\drivers\x64\3\E_IAUDGBA.DLL - ok
17:11:20.0566 5656 [ C259EF2AD7D254BED18B0A9FCE3417A3 ] C:\Windows\System32\spool\drivers\x64\3\E_ILMWGBA.DLL
17:11:20.0566 5656 C:\Windows\System32\spool\drivers\x64\3\E_ILMWGBA.DLL - ok
17:11:20.0582 5656 [ 7F2E16251303BA1B839376ACA063280A ] C:\Windows\System32\spool\drivers\x64\3\E_IEPEGBA.DLL
17:11:20.0582 5656 C:\Windows\System32\spool\drivers\x64\3\E_IEPEGBA.DLL - ok
17:11:20.0582 5656 [ A1CDE92DDC170D307DB3C5BAA348811B ] C:\Windows\System32\prncache.dll
17:11:20.0582 5656 C:\Windows\System32\prncache.dll - ok
17:11:20.0598 5656 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
17:11:20.0598 5656 C:\Windows\System32\thumbcache.dll - ok
17:11:20.0598 5656 [ 8800187DE29D6E88914E417E1D4AD30A ] C:\Windows\System32\prnntfy.dll
17:11:20.0598 5656 C:\Windows\System32\prnntfy.dll - ok
17:11:20.0613 5656 [ 927E0723FF793440B001289C4296FA98 ] C:\Windows\System32\puiapi.dll
17:11:20.0613 5656 C:\Windows\System32\puiapi.dll - ok
17:11:20.0613 5656 [ BA0F80C7878558C28B1B298E94D259FF ] C:\Windows\System32\printui.dll
17:11:20.0613 5656 C:\Windows\System32\printui.dll - ok
17:11:20.0629 5656 [ E2A770F7B1D877F51D05B8AEA68EC240 ] C:\Windows\System32\spool\drivers\x64\3\E_IASKGBA.DLL
17:11:20.0629 5656 C:\Windows\System32\spool\drivers\x64\3\E_IASKGBA.DLL - ok
17:11:20.0629 5656 [ DE418798DA91AAA067A2EF41D8A7B886 ] C:\Windows\System32\puiobj.dll
17:11:20.0629 5656 C:\Windows\System32\puiobj.dll - ok
17:11:20.0645 5656 [ E370C53736DA6D38F073155DD8D9F094 ] C:\Windows\System32\spool\drivers\x64\3\E_IARNGBA.EXE
17:11:20.0645 5656 C:\Windows\System32\spool\drivers\x64\3\E_IARNGBA.EXE - ok
17:11:20.0660 5656 [ 2832624A0BF2130685A89C0D30B065D3 ] C:\Windows\System32\spool\drivers\x64\3\E_IASRGBA.DLL
17:11:20.0660 5656 C:\Windows\System32\spool\drivers\x64\3\E_IASRGBA.DLL - ok
17:11:20.0660 5656 [ 1F9DECB4922F8EB278ABD5918DDBABD1 ] C:\Windows\System32\spool\drivers\x64\3\E_IAPRGBA.DLL
17:11:20.0660 5656 C:\Windows\System32\spool\drivers\x64\3\E_IAPRGBA.DLL - ok
17:11:20.0676 5656 [ 8718D3882B9ED8F57798D4C1A23E31D0 ] C:\Windows\System32\spool\drivers\x64\3\E_IDSPGBA.DLL
17:11:20.0676 5656 C:\Windows\System32\spool\drivers\x64\3\E_IDSPGBA.DLL - ok
17:11:20.0676 5656 [ 34C4401D34634502DD054360C73C39CB ] C:\Windows\System32\spool\drivers\x64\3\E_FBA6GBA.DLL
17:11:20.0676 5656 C:\Windows\System32\spool\drivers\x64\3\E_FBA6GBA.DLL - ok
17:11:20.0691 5656 [ 62701BC53FD58CDB5CF8CBA895E12874 ] C:\Windows\System32\spool\drivers\x64\3\E_IABRGBA.DLL
17:11:20.0691 5656 C:\Windows\System32\spool\drivers\x64\3\E_IABRGBA.DLL - ok
17:11:20.0691 5656 [ ED08E35BED2FAC45DD9AA35FF9A376C2 ] C:\Windows\System32\spool\drivers\x64\3\E_FBL6GBA.DLL
17:11:20.0691 5656 C:\Windows\System32\spool\drivers\x64\3\E_FBL6GBA.DLL - ok
17:11:20.0691 5656 [ 9FA56171C452530E2F51E3238B52140B ] C:\Windows\System32\bidispl.dll
17:11:20.0691 5656 C:\Windows\System32\bidispl.dll - ok
17:11:20.0707 5656 [ BD1F0BF6E2748830664ABF8BF13440DA ] C:\Windows\System32\spool\drivers\x64\3\EBAPIX64.DLL
17:11:20.0707 5656 C:\Windows\System32\spool\drivers\x64\3\EBAPIX64.DLL - ok
17:11:20.0707 5656 [ A21B8BBFFF10C319AC63958EB562C230 ] C:\Windows\System32\spool\drivers\x64\3\EBAPIX32.EXE
17:11:20.0707 5656 C:\Windows\System32\spool\drivers\x64\3\EBAPIX32.EXE - ok
17:11:20.0723 5656 [ 82A789201A03C751D1346400AF13D11B ] C:\Windows\System32\spool\drivers\x64\3\EBAPI4.DLL
17:11:20.0723 5656 C:\Windows\System32\spool\drivers\x64\3\EBAPI4.DLL - ok
17:11:20.0723 5656 [ 50529C8A3DAB308F6837A4CA1B910D9C ] C:\Windows\System32\spool\drivers\x64\3\EBPBIDI.DLL
17:11:20.0723 5656 C:\Windows\System32\spool\drivers\x64\3\EBPBIDI.DLL - ok
17:11:20.0738 5656 [ 8A6BAD65E88589663A50C2EAEFE7F4CB ] C:\Windows\System32\spool\drivers\x64\3\E_IGRCGBA.DLL
17:11:20.0738 5656 C:\Windows\System32\spool\drivers\x64\3\E_IGRCGBA.DLL - ok
17:11:20.0738 5656 [ DAB9CDEA19A11865601CBC06A637F5D6 ] C:\Windows\System32\spool\drivers\x64\3\EBPSHRE4.DLL
17:11:20.0738 5656 C:\Windows\System32\spool\drivers\x64\3\EBPSHRE4.DLL - ok
17:11:20.0738 5656 [ EC069B49013FC82F6368234F661FCE37 ] C:\Windows\SysWOW64\EBAPI.dll
17:11:20.0738 5656 C:\Windows\SysWOW64\EBAPI.dll - ok
17:11:20.0754 5656 [ CAAE40BACCA02376198513BCCFABC12A ] C:\Windows\System32\spool\drivers\x64\3\E_IGEPGBA.DLL
17:11:20.0754 5656 C:\Windows\System32\spool\drivers\x64\3\E_IGEPGBA.DLL - ok
17:11:20.0769 5656 [ 6B62CE038EA379D59A94C35618102AB0 ] C:\Windows\SysWOW64\EEBAPI.dll
17:11:20.0769 5656 C:\Windows\SysWOW64\EEBAPI.dll - ok
17:11:20.0769 5656 [ A7934B26A096F39B15960E0A56C1C8C4 ] C:\Windows\SysWOW64\bidispl.dll
17:11:20.0769 5656 C:\Windows\SysWOW64\bidispl.dll - ok
17:11:20.0785 5656 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
17:11:20.0785 5656 C:\Windows\System32\wbem\WMIADAP.exe - ok
17:11:20.0785 5656 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
17:11:20.0785 5656 C:\Windows\System32\loadperf.dll - ok
17:11:20.0801 5656 [ 5629E16C6C15A138F9E0FABF42E2AE78 ] C:\Windows\System32\netbios.dll
17:11:20.0801 5656 C:\Windows\System32\netbios.dll - ok
17:11:20.0801 5656 [ 7025E0E0A49AC150967EC7B9A01A7DE3 ] C:\Windows\System32\spool\drivers\x64\3\E_IJBCGBA.DLL
17:11:20.0801 5656 C:\Windows\System32\spool\drivers\x64\3\E_IJBCGBA.DLL - ok
17:11:20.0816 5656 [ FD3513F706F0FAAFF99F5EAA7D9DB324 ] C:\Windows\System32\spool\drivers\x64\3\E_ICONGBA.DLL
17:11:20.0816 5656 C:\Windows\System32\spool\drivers\x64\3\E_ICONGBA.DLL - ok
17:11:20.0816 5656 [ 9F597DF10B4D02E6FE60DF1C0F58A405 ] C:\Windows\System32\spool\drivers\x64\3\E_IHM0GBA.DLL
17:11:20.0816 5656 C:\Windows\System32\spool\drivers\x64\3\E_IHM0GBA.DLL - ok
17:11:20.0832 5656 [ E5750EEF374D2EAB009646B87C59ECE9 ] C:\Windows\System32\spool\drivers\x64\3\E_IHT0GBA.DLL
17:11:20.0832 5656 C:\Windows\System32\spool\drivers\x64\3\E_IHT0GBA.DLL - ok
17:11:20.0832 5656 [ 8AD7027DC420011BDF1659F4D99B568B ] C:\Windows\System32\spool\drivers\x64\3\E_IMW0GBA.DLL
17:11:20.0832 5656 C:\Windows\System32\spool\drivers\x64\3\E_IMW0GBA.DLL - ok
17:11:20.0847 5656 [ 6DAF2FCEA2E04B2B403A5A27DABAFD1B ] C:\Windows\System32\spool\drivers\x64\3\E_ISR0GBA.DLL
17:11:20.0847 5656 C:\Windows\System32\spool\drivers\x64\3\E_ISR0GBA.DLL - ok
17:11:20.0847 5656 [ 026F75FC9BD5908341765829FC641168 ] C:\Windows\System32\spool\drivers\x64\3\EPSET64.DLL
17:11:20.0847 5656 C:\Windows\System32\spool\drivers\x64\3\EPSET64.DLL - ok
17:11:20.0863 5656 [ 785231F4355C2490B9EDA8A82B5A66D6 ] C:\Windows\System32\spool\drivers\x64\3\E_IASOGBA.DLL
17:11:20.0863 5656 C:\Windows\System32\spool\drivers\x64\3\E_IASOGBA.DLL - ok
17:11:20.0863 5656 [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\SysWOW64\tquery.dll
17:11:20.0863 5656 C:\Windows\SysWOW64\tquery.dll - ok
17:11:20.0879 5656 [ 6A1E8DEB746912DF47CF651E138401D7 ] C:\Windows\SysWOW64\StructuredQuery.dll
17:11:20.0879 5656 C:\Windows\SysWOW64\StructuredQuery.dll - ok
17:11:20.0879 5656 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
17:11:20.0879 5656 C:\Windows\SysWOW64\dllhost.exe - ok
17:11:20.0894 5656 [ ADF8242335F5DB82CBB3559CC15B543A ] C:\Program Files (x86)\Windows Live\Family Safety\fsapi.dll
17:11:20.0894 5656 C:\Program Files (x86)\Windows Live\Family Safety\fsapi.dll - ok
17:11:20.0894 5656 [ 43C9CF6825CEA58F1815B7C3DBBB385C ] C:\Windows\SysWOW64\Wpc.dll
17:11:20.0894 5656 C:\Windows\SysWOW64\Wpc.dll - ok
17:11:20.0910 5656 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
17:11:20.0910 5656 C:\Windows\SysWOW64\wevtapi.dll - ok
17:11:20.0910 5656 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
17:11:20.0910 5656 C:\Windows\SysWOW64\rundll32.exe - ok
17:11:20.0925 5656 [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll
17:11:20.0925 5656 C:\Windows\AppPatch\acwow64.dll - ok
17:11:20.0925 5656 [ 2A324C44A1B2352EF5F2E1C8984935C0 ] C:\Windows\SysWOW64\inetcpl.cpl
17:11:20.0925 5656 C:\Windows\SysWOW64\inetcpl.cpl - ok
17:11:20.0925 5656 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
17:11:20.0925 5656 C:\Windows\SysWOW64\cryptui.dll - ok
17:11:20.0941 5656 [ ED6F6FBBCDEC95483B7351E23F4FCDF6 ] C:\Windows\SysWOW64\IEAdvpack.dll
17:11:20.0941 5656 C:\Windows\SysWOW64\IEAdvpack.dll - ok
17:11:20.0941 5656 [ C798EB903A4FA90D2961E164518090C5 ] C:\Windows\SysWOW64\msfeeds.dll
17:11:20.0941 5656 C:\Windows\SysWOW64\msfeeds.dll - ok
17:11:20.0957 5656 [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\SysWOW64\ieapfltr.dll
17:11:20.0957 5656 C:\Windows\SysWOW64\ieapfltr.dll - ok
17:11:20.0957 5656 [ B9ADA43CB3FFAF6669D34F432AA44A0F ] C:\Windows\SysWOW64\pstorec.dll
17:11:20.0957 5656 C:\Windows\SysWOW64\pstorec.dll - ok
17:11:20.0957 5656 [ 35BA5AA671887FE8A62B88A9A6229FD5 ] C:\Windows\System32\pstorsvc.dll
17:11:20.0957 5656 C:\Windows\System32\pstorsvc.dll - ok
17:11:20.0972 5656 [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll
17:11:20.0972 5656 C:\Windows\System32\psbase.dll - ok
17:11:20.0972 5656 [ F8E4E9839D4278A5F3F77E8101D899C4 ] C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QBackup.dll
17:11:20.0972 5656 C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\QBackup.dll - ok
17:11:20.0988 5656 ============================================================
17:11:20.0988 5656 Scan finished
17:11:20.0988 5656 ============================================================
17:11:21.0003 5648 Detected object count: 5
17:11:21.0003 5648 Actual detected object count: 5
17:11:39.0022 5648 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
17:11:39.0022 5648 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:11:39.0022 5648 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:11:39.0022 5648 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:11:39.0022 5648 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:11:39.0022 5648 NTI IScheduleSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:11:39.0022 5648 StatusAgent4 ( UnsignedFile.Multi.Generic ) - skipped by user
17:11:39.0022 5648 StatusAgent4 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:11:40.0224 5648 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
17:11:40.0255 5648 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
17:11:40.0504 5648 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
17:11:40.0520 5648 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
17:11:40.0520 5648 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
17:11:40.0520 5648 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
17:11:40.0520 5648 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
17:11:40.0536 5648 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
17:11:40.0536 5648 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
17:11:40.0536 5648 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
17:11:40.0551 5648 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
17:11:40.0551 5648 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
17:11:40.0551 5648 \Device\Harddisk0\DR0\TDLFS - deleted
17:11:40.0551 5648 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
  • 0

#25
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Another note, so after all this is it wise not to use norton clean up tools because that what i been using and thinking that i was ok. what programs can i run on a daily or weekly base that would work better? I do apprietate all the help.
  • 0

Advertisements


#26
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
i am able to open norton main user interface now. memory usage low 949 mb and cpu usage low. internet a little sluggest at times. window update is working. internet access ok. windows firewall disabled because of nortons 360.
  • 0

#27
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
have notice that I cannot use any of the file edit view favorites tools or help tabs on window explorer
  • 0

#28
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
I rebooted and now there are back
  • 0

#29
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello blatz101

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::

Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

  • 0

#30
blatz101

blatz101

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
ran combofix with new clearjavacache scropt. error on antivirus still on, so like last time just clicked ok (it was disabled already). computer seems to be running a lot better, even before running combo fix. I have had no problems yet have not had a blue box, no high usage errors, and I am able to use Norton main window interface. Still have the question of what to do with all these programs, quarantined files, and what programs cold I run on a weekly basis together with nortons(because just Norton alone not doing the job).


this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::

Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"


In your next post I need the following


1.report from Combofix

2.let me know of any problems you may have had

3.How is the computer doing now after running the script?


Gringo ComboFix 13-03-26.01 - James 03/27/2013 17:17:28.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3835.1902 [GMT -4:00]
Running from: c:\users\James\Downloads\ComboFix.exe
Command switches used :: c:\users\James\Desktop\CFScript.txt
AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2013-02-27 to 2013-03-27 )))))))))))))))))))))))))))))))
.
.
2013-03-27 21:30 . 2013-03-27 21:30 -------- d-----w- c:\users\Holly\AppData\Local\temp
2013-03-27 21:30 . 2013-03-27 21:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-26 22:38 . 2013-01-13 19:53 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2013-03-26 19:43 . 2013-03-26 21:11 -------- d-----w- C:\TDSSKiller_Quarantine
2013-03-25 23:19 . 2013-03-25 23:28 -------- d-----w- c:\program files (x86)\RegUtility
2013-03-25 23:14 . 2012-07-26 05:32 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2013-03-25 23:13 . 2013-03-25 23:13 -------- d-----w- c:\windows\system32\drivers\NBRTWizardx64
2013-03-25 23:13 . 2013-03-25 23:13 -------- d-----w- c:\program files (x86)\Norton Bootable Recovery Tool Wizard
2013-03-24 15:41 . 2013-03-24 15:41 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-03-24 15:41 . 2012-12-14 20:49 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-24 15:38 . 2013-03-24 15:38 -------- d-----w- c:\users\James\AppData\Local\Programs
2013-03-24 03:56 . 2013-03-24 03:56 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared
2013-03-24 03:33 . 2013-03-24 03:33 177312 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS
2013-03-24 03:33 . 2013-03-24 03:33 -------- d-----w- c:\program files\Symantec
2013-03-24 03:31 . 2013-03-24 03:31 -------- d-----w- c:\program files (x86)\Norton 360
2013-03-24 03:31 . 2013-03-25 23:13 -------- d-----w- c:\program files (x86)\NortonInstaller
2013-03-24 03:03 . 2013-03-24 03:03 96376 ----a-w- c:\windows\system32\drivers\SMR300.SYS
2013-03-24 01:25 . 2013-03-24 01:25 -------- d-----w- c:\windows\system32\drivers\N360x64
2013-03-23 04:26 . 2013-03-19 09:50 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{866A9EA1-00BF-4341-ABA6-4A6FB7F64257}\mpengine.dll
2013-03-23 04:22 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-23 01:30 . 2013-03-23 03:11 -------- d-----w- c:\programdata\NortonRnR
2013-03-18 02:27 . 2013-03-24 03:56 -------- d-----w- c:\program files\Microsoft Silverlight
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-24 04:05 . 2010-07-15 03:32 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-03-24 01:27 . 2012-06-16 19:03 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-24 01:27 . 2011-09-25 22:05 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-12 05:45 . 2013-03-23 04:22 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-23 04:22 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-23 04:22 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-23 04:22 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-23 04:22 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-23 04:22 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-01-17 05:28 . 2010-10-08 20:01 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-05 05:53 . 2013-02-13 13:55 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-05 05:00 . 2013-02-13 13:55 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00 . 2013-02-13 13:55 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46 . 2013-02-13 13:54 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-01-04 04:51 . 2013-02-13 13:54 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-01-04 04:43 . 2013-02-13 13:54 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 03:26 . 2013-02-13 13:54 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 02:47 . 2013-02-13 13:54 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-01-04 02:47 . 2013-02-13 13:54 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-01-04 02:47 . 2013-02-13 13:54 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-01-04 02:47 . 2013-02-13 13:54 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-01-03 06:00 . 2013-02-13 13:54 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-01-03 06:00 . 2013-02-13 13:54 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{FF6C3CF0-4B15-11D1-ABED-709549C10000}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\program files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2012-12-27 249856]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-03-03 1300560]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-26 98304]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-12-19 41208]
"Monitor"="c:\program files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe" [2012-07-05 295304]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2012-12-27 81920]
"VideoWebCamera"="c:\program files (x86)\VideoWebCamera\VideoWebCamera.exe" [2010-03-11 1541472]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Z1"="c:\users\James\Desktop\mbar\mbar.exe" [2013-02-16 1363016]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;c:\windows\system32\DRIVERS\bcmwlhigh664.sys [x]
R3 connctfy;Connectify Service;c:\windows\system32\DRIVERS\connctfy.sys [x]
R3 connctfyMP;connctfyMP;c:\windows\system32\DRIVERS\connctfy.sys [x]
R3 NTPASp50a64;NTPASp50a64 NDIS Protocol Driver;c:\windows\system32\Drivers\NTPASp50a64.sys [x]
R3 NWUSBCDFIL64;Novatel Wireless Installation CD;c:\windows\system32\DRIVERS\NwUsbCdFil64.sys [2008-07-07 25600]
R3 NWUSBPort2;Novatel Wireless USB Status2 Port Driver;c:\windows\system32\DRIVERS\nwusbser2.sys [2008-05-09 213120]
R3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2010-07-21 45456]
R3 PTUMLBUS;PTUML USB Composite Device Driver;c:\windows\system32\DRIVERS\PTUMLBUS.sys [x]
R3 PTUMLCVsp;PANTECH UML290 Connection Manager Port;c:\windows\system32\DRIVERS\PTUMLCVsp.sys [x]
R3 PTUMLMdm;PANTECH UML290;c:\windows\system32\DRIVERS\PTUMLMdm.sys [x]
R3 PTUMLNET61;PANTECH UML290 WWAN (NDIS6.1);c:\windows\system32\DRIVERS\PTUMLNET61.sys [x]
R3 PTUMLNVsp;PANTECH UML290 NMEA Port;c:\windows\system32\DRIVERS\PTUMLNVsp.sys [x]
R3 PTUMLRMNET;PANTECH UML290 RMNET Service;c:\windows\system32\DRIVERS\PTUMLRMNET.sys [x]
R3 PTUMLVsp;PANTECH UML290 Diagnostic Port;c:\windows\system32\DRIVERS\PTUMLVsp.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-02-08 239136]
R3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver;c:\windows\system32\DRIVERS\wg111v3.sys [2009-11-18 446976]
R3 TS_AR5416;[CommView] Atheros AR5008 Wireless Network Adapter Service 7.7;c:\windows\system32\DRIVERS\ts_athwx.sys [2010-07-31 15:32 2155720]
R3 ts_arusb;[CommView] Atheros Wireless Network Adapter Service;c:\windows\system32\DRIVERS\ts_arusbx.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-09-28 53760]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-07-15 1255736]
R4 GREGService;GREGService;c:\program files (x86)\Gateway\Registration\GREGsvc.exe [2010-01-08 23584]
R4 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2012-11-30 38608]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\1403000.024\SYMDS64.SYS [2013-01-22 493656]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\1403000.024\SYMEFA64.SYS [2013-01-31 1139800]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\BASHDefs\20130322.001\BHDrvx64.sys [2013-03-22 1387608]
S1 ccSet_N360;Norton 360 Settings Manager;c:\windows\system32\drivers\N360x64\1403000.024\ccSetx64.sys [2012-11-16 168096]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.3.0.36\Definitions\IPSDefs\20130326.001\IDSvia64.sys [2013-03-22 513184]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\1403000.024\Ironx64.SYS [2012-11-16 224416]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\N360x64\1403000.024\SYMNETS.SYS [2013-01-31 432800]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-11-26 203776]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 325200]
S2 ePowerSvc;Acer ePower Service;c:\program files\Gateway\Gateway Power Management\ePowerSvc.exe [2010-03-17 866336]
S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe [2012-12-24 144520]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe [2010-03-08 250368]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-03-22 138912]
S3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2010-03-20 321064]
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-03-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-16 01:27]
.
2013-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-07-15 00:25]
.
2013-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-07-15 00:25]
.
2013-03-26 c:\windows\Tasks\ReclaimerUpdateFiles_James.job
- c:\users\James\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe [2013-03-25 22:20]
.
2013-03-26 c:\windows\Tasks\ReclaimerUpdateXML_James.job
- c:\users\James\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe [2013-03-25 22:20]
.
2013-03-27 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_James.job
- c:\users\James\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe [2013-03-25 22:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-15 9644576]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2010-07-21 2327952]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uStart Page = hxxp://xfinity.comcast.net/?cid=insDate10102012
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: &Clean Traces - c:\program files (x86)\DAP\Privacy Package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files (x86)\DAP\dapextie.htm
IE: Download &all with DAP - c:\program files (x86)\DAP\dapextie2.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
Trusted Zone: intuit.com\ttlc
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
Name-Space Handler: ftp\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~2\DAP\dapie.dll
Name-Space Handler: http\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~2\DAP\dapie.dll
FF - ProfilePath - c:\users\James\AppData\Roaming\Mozilla\Firefox\Profiles\cvbymjwo.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://xfinity.comcast.net/?cid=insDate10102012|http://www.comcast.net/xfinity/?cid=insdate10102012&cid=ffpintab|http://xfinitytv.comcast.net/?cid=xfactiv_tv&cid=ffpintab|http://www.comcast.net/qry/goto?app=mail&cid=xfactiv_email&cid=ffpin
FF - prefs.js: network.proxy.type - 4
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
SafeBoot-29687608.sys
SafeBoot-68689199.sys
SafeBoot-75759883.sys
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\N360]
"ImagePath"="\"c:\program files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\20.3.0.36\diMaster.dll\" /prefetch:1"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"=hex:51,66,7a,6c,4c,1d,38,12,df,c1,0b,
27,57,07,ba,54,e4,0e,43,d0,22,fb,89,5b
"{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}"=hex:51,66,7a,6c,4c,1d,38,12,8d,ec,f8,
7b,2b,25,27,06,e7,c4,bc,f0,98,15,0d,de
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{3049C3E9-B461-4BC5-8870-4C09146192CA}"=hex:51,66,7a,6c,4c,1d,38,12,87,c0,5a,
34,53,fa,ab,0e,f7,66,0f,49,11,3f,d6,de
"{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}"=hex:51,66,7a,6c,4c,1d,38,12,60,d8,39,
64,cd,04,79,07,f5,b7,d6,9a,c1,81,e0,1c
"{6D53EC84-6AAE-4787-AEEE-F4628F01010C}"=hex:51,66,7a,6c,4c,1d,38,12,ea,ef,40,
69,9c,24,e9,02,d1,f8,b7,22,8a,5f,45,18
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{9FDDE16B-836F-4806-AB1F-1455CBEFF289}"=hex:51,66,7a,6c,4c,1d,38,12,05,e2,ce,
9b,5d,cd,68,0d,d4,09,57,15,ce,b1,b6,9d
"{AA58ED58-01DD-4D91-8333-CF10577473F7}"=hex:51,66,7a,6c,4c,1d,38,12,36,ee,4b,
ae,ef,4f,ff,08,fc,25,8c,50,52,2a,37,e3
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{FF6C3CF0-4B15-11D1-ABED-709549C10000}"=hex:51,66,7a,6c,4c,1d,38,12,9e,3f,7f,
fb,27,05,bf,54,d4,fb,33,d5,4c,9f,44,14
"{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16,
fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17
"{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9,
b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:4d,b1,a3,4e,31,2a,ce,01
.
[HKEY_USERS\S-1-5-21-926125116-709802362-3702300215-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-926125116-709802362-3702300215-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-03-27 17:35:32
ComboFix-quarantined-files.txt 2013-03-27 21:35
ComboFix2.txt 2013-03-26 17:52
.
Pre-Run: 222,491,684,864 bytes free
Post-Run: 221,956,739,072 bytes free
.
- - End Of File - - 47CF81A5F4117C12BC1612D52418D901
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP