Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Google redirect virus/trojan [Solved]


  • This topic is locked This topic is locked

#1
DrCannibal

DrCannibal

    Member

  • Member
  • PipPip
  • 24 posts
Hi,
I have been having an issue with a redirect virus. I have Norton security but that didn't seem to catch it. I ran Malwarebytes Anti-malware and it found and fixed something, but the problem persisted. I searched for a solution and found something called Spyhunter from Enigma software. I downloaded the free version and it detected a trojan and I had to pay $39 to buy the full version to fix it. I did this, but the problem did not go away. When I rebooted the computer the Spyhunter was deleting all these files which really scared me, but it apparently did no harm. However, I decided that I had been had and uninstalled Spyhunter, but I don't think it was completely removed as I see the software referenced when I reboot although it does nothing from what I can see.

The issue I am having is that when I click on a result from a search, I get redirected to another web site. This doesn't happen all of the time, but about 50% of the clicks. I believe this is happening in IE and Chrome but i haven't noticed it in Firefox although I haven't been using it much. Please help me get rid of this. Do you know if Spyhunter is malware itself?

Thanks you in advance for your time and any help you can provide. I have attached OTL.txt and extras.txt.

Cheers, Brian

Attached Files


  • 0

Advertisements


#2
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello DrCannibal

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!


  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
  • 0

#3
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Results of screen317's Security Check version 0.99.63
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Norton Internet Security
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
MVPS Hosts File
Spybot - Search & Destroy
Malwarebytes Anti-Malware version 1.75.0.1300
JavaFX 2.1.1
Java 7 Update 9
Java version out of Date!
Adobe Flash Player 11.6.602.180
Adobe Reader 10.1.6 Adobe Reader out of Date!
Mozilla Firefox 17.0.1 Firefox out of Date!
Google Chrome 26.0.1410.43
Google Chrome 26.0.1410.64
````````Process Check: objlist.exe by Laurent````````
Norton ccSvcHst.exe
Spybot Teatimer.exe is disabled!
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````
  • 0

#4
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
# AdwCleaner v2.300 - Logfile created 05/01/2013 at 09:24:49
# Updated 28/04/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Brian - BRIAN-PC
# Boot Mode : Normal
# Running from : C:\Users\Brian\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Application Updater

***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Program Files (x86)\IObit Apps Toolbar
Folder Deleted : C:\Users\Brian\AppData\LocalLow\Search Settings

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{03EB0E9C-7A91-4381-A220-9B52B641CDB1}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16537

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

File : C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\7kply0ku.default\prefs.js

C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\7kply0ku.default\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v26.0.1410.64

File : C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [2108 octets] - [01/05/2013 09:24:49]

########## EOF - C:\AdwCleaner[S1].txt - [2168 octets] ##########
  • 0

#5
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : http://tigzy.geeksto...roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Brian [Admin rights]
Mode : Scan -- Date : 05/01/2013 09:32:41
| ARK || FAK || MBR |

¤¤¤ Bad processes : 2 ¤¤¤
[DLL] rundll32.exe -- C:\Windows\System32\rundll32.exe : C:\Users\Brian\AppData\Local\IsolatedStorage\Deployment\wbkgf.dll [x] -> KILLED [TermProc]
[DLL] rundll32.exe -- C:\Windows\SysWOW64\rundll32.exe : C:\Users\Brian\AppData\Local\IsolatedStorage\Deployment\wbkgf.dll [x] -> KILLED [TermProc]

¤¤¤ Registry Entries : 5 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : Deployment (rundll32 "C:\Users\Brian\AppData\Local\IsolatedStorage\Deployment\wbkgf.dll",DllCanUnloadNow) [-] -> FOUND
[RUN][SUSP PATH] HKUS\S-1-5-21-3487309089-3101154075-2596736618-1001[...]\Run : Deployment (rundll32 "C:\Users\Brian\AppData\Local\IsolatedStorage\Deployment\wbkgf.dll",DllCanUnloadNow) [-] -> FOUND
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD1001FAES-75W7A0 +++++
--- User ---
[MBR] 4e5bcc9dae1070e5dd69e630f89531be
[BSP] 25b5cf2508a5094444a4f049a57aca6f : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 11142 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 22900736 | Size: 942686 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1]_S_05012013_02d0932.txt >>
RKreport[1]_S_05012013_02d0932.txt
  • 0

#6
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Thanks, Gringo! Please let me know what you see. I just tried hitting a few google links and no redirects yet! Maybe it is fixed already!
  • 0

#7
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello DrCannibal

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
  • 0

#8
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
ComboFix 13-05-01.03 - Brian 05/01/2013 14:45:27.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.8119.6256 [GMT -4:00]
Running from: c:\users\Brian\Downloads\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\DRM\3891.tmp
c:\programdata\Microsoft\Windows\DRM\4495.tmp
c:\users\Brian\Documents\~WRL0093.tmp
c:\users\Brian\Documents\~WRL2835.tmp
c:\users\Public\Documents\~WRL0339.tmp
c:\users\Public\Documents\~WRL1823.tmp
.
.
((((((((((((((((((((((((( Files Created from 2013-04-01 to 2013-05-01 )))))))))))))))))))))))))))))))
.
.
2013-05-01 03:30 . 2013-05-01 03:30 26520 ----a-w- c:\program files (x86)\Mozilla Firefox\updated\plugin-hang-ui.exe
2013-04-28 11:35 . 2013-04-28 11:35 -------- d-----w- c:\users\Brian\AppData\Roaming\com.Shutterfly.ExpressUploader
2013-04-28 11:35 . 2013-04-28 11:35 -------- d-----w- c:\program files (x86)\Shutterfly
2013-04-28 11:22 . 2013-04-28 11:22 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-04-28 11:22 . 2013-04-28 11:22 -------- d-----w- c:\program files\iTunes
2013-04-28 11:22 . 2013-04-28 11:22 -------- d-----w- c:\program files (x86)\iTunes
2013-04-28 11:22 . 2013-04-28 11:22 -------- d-----w- c:\program files\iPod
2013-04-24 15:08 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-20 14:44 . 2013-04-20 14:44 -------- d-----w- c:\users\Brian\AppData\Roaming\Garmin
2013-04-20 14:43 . 2013-04-20 14:43 -------- d-----w- c:\users\Brian\AppData\Local\Garmin
2013-04-20 14:41 . 2013-04-20 14:48 -------- d-----w- c:\programdata\Garmin
2013-04-20 14:41 . 2013-04-20 14:42 -------- d-----w- c:\program files (x86)\Garmin
2013-04-20 14:40 . 2013-04-20 14:40 -------- d-----w- c:\programdata\Package Cache
2013-04-15 01:43 . 2010-08-05 21:01 14680 ----a-w- c:\windows\system32\sh4native.exe
2013-04-14 02:30 . 2013-04-14 02:30 -------- d-----w- c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-04-14 02:30 . 2013-04-14 02:31 -------- d-----w- c:\programdata\IObit
2013-04-14 02:30 . 2013-04-15 12:40 -------- d-----w- c:\users\Brian\AppData\Roaming\IObit
2013-04-14 02:30 . 2013-04-14 02:30 -------- d-----w- c:\program files (x86)\IObit
2013-04-14 01:51 . 2013-04-14 01:51 -------- d-----w- c:\program files\Enigma Software Group
2013-04-14 01:50 . 2013-04-15 12:42 -------- d-----w- c:\windows\6B6C4C461B7E4A419E70ACFBB22B1D81.TMP
2013-04-14 01:50 . 2013-04-14 01:50 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-04-13 02:52 . 2013-04-13 02:52 -------- d-----w- c:\users\Brian\AppData\Local\Programs
2013-04-10 08:07 . 2013-02-15 06:08 44032 ----a-w- c:\windows\system32\tsgqec.dll
2013-04-10 08:07 . 2013-02-15 06:06 3717632 ----a-w- c:\windows\system32\mstscax.dll
2013-04-10 08:07 . 2013-02-15 06:02 158720 ----a-w- c:\windows\system32\aaclient.dll
2013-04-10 08:07 . 2013-02-15 04:37 3217408 ----a-w- c:\windows\SysWow64\mstscax.dll
2013-04-10 08:07 . 2013-02-15 04:34 131584 ----a-w- c:\windows\SysWow64\aaclient.dll
2013-04-10 08:07 . 2013-02-15 03:25 36864 ----a-w- c:\windows\SysWow64\tsgqec.dll
2013-04-10 08:06 . 2013-03-01 03:36 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-04-10 08:06 . 2013-01-24 06:01 223752 ----a-w- c:\windows\system32\drivers\fvevol.sys
2013-04-10 08:06 . 2013-03-19 06:04 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-04-10 08:06 . 2013-03-19 05:46 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-04-10 08:06 . 2013-03-19 05:04 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-04-10 08:06 . 2013-03-19 05:04 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-04-10 08:06 . 2013-03-19 04:47 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-04-10 08:06 . 2013-03-19 03:06 112640 ----a-w- c:\windows\system32\smss.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-11 07:03 . 2012-01-12 22:43 72702784 ----a-w- c:\windows\system32\MRT.exe
2013-04-04 18:50 . 2012-01-13 00:55 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-12 20:04 . 2012-04-23 11:57 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-12 20:04 . 2012-01-12 22:05 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-12 05:45 . 2013-03-13 23:53 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 23:53 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 23:53 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-13 23:53 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-13 23:53 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 23:53 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-12 04:12 . 2013-03-26 01:49 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 6"="c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-01-15 491840]
"GarminExpressTrayApp"="c:\program files (x86)\Garmin\Express Tray\ExpressTray.exe" [2013-03-27 1098072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sh4native Sh4Removal
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-09-28 53760]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2011-02-17 14464]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS [2011-01-27 450680]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS [2011-03-15 912504]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20130412.001\BHDrvx64.sys [2013-04-12 1390680]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130430.002\IDSvia64.sys [2012-09-06 513184]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [2011-01-27 171128]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [2011-04-21 386168]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-01-15 465216]
S2 Garmin Core Update Service;Garmin Core Update Service;c:\program files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2013-03-27 185688]
S2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [2012-08-23 13672]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [2011-04-17 130008]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-08-09 138912]
S3 HCW85BDA;Hauppauge WinTV 885 Video Capture;c:\windows\system32\drivers\HCW85BDA.sys [2009-07-15 1708800]
S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2012-01-12 56344]
S3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2012-01-12 321064]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2013-05-01 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-23 20:04]
.
2013-05-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3487309089-3101154075-2596736618-1001Core.job
- c:\users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-15 13:35]
.
2013-05-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3487309089-3101154075-2596736618-1001UA.job
- c:\users\Brian\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-15 13:35]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-11-02 2710856]
"CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2009-09-04 767312]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
FF - ProfilePath - c:\users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\7kply0ku.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://search.yahoo.com?type=198484&fr=spigot-yhp-ff
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-04-13 22:30; [email protected]; c:\program files (x86)\IObit Apps Toolbar\FF
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\18.7.2.3\diMaster.dll\" /prefetch:1"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3487309089-3101154075-2596736618-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C2A8182B-B5CE-48BC-ACD8-C5F7B33390EB}*ALID*]
"AppName"="Roblox.exe"
"Policy"=dword:00000003
"AppPath"="c:\\Users\\Brian\\AppData\\Local\\Roblox\\Versions\\version-ad555162e16d43e0\\"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
.
**************************************************************************
.
Completion time: 2013-05-01 14:56:15 - machine was rebooted
ComboFix-quarantined-files.txt 2013-05-01 18:56
.
Pre-Run: 852,805,226,496 bytes free
Post-Run: 852,645,036,032 bytes free
.
- - End Of File - - 018A536A0E6F01CF293B86486C8B1965
  • 0

#9
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Thanks, Gringo! Everything seems to working good now.
  • 0

#10
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Hi Gringo, bad news. I think I spoke too soon. The redirect is still happening again. It seemed good yesterday evening but I am getting redirected again now. What is the next step?
  • 0

Advertisements


#11
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello DrCannibal


I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================

and I will see if I want to see the whole report

Malwarebytes Anti-Rootkit

1.Download Malwarebytes Anti-Rootkit
2.Unzip the contents to a folder in a convenient location.
3.Open the folder where the contents were unzipped and run mbar.exe
4.Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
5.Click on the Cleanup button to remove any threats and reboot if prompted to do so.
6.Wait while the system shuts down and the cleanup process is performed.
7.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
8.If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:
•Internet access
•Windows Update
•Windows Firewall9.If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included with Malwarebytes Anti-Rootkit and reboot.
10.Verify that your system is now functioning normally.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and MBAR

Gringo
  • 0

#12
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Hi Gringo, Ihave 3 logs from TDSSKiller:
08:09:16.0163 8836 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:09:16.0619 8836 ============================================================
08:09:16.0619 8836 Current date / time: 2013/05/03 08:09:16.0619
08:09:16.0619 8836 SystemInfo:
08:09:16.0619 8836
08:09:16.0619 8836 OS Version: 6.1.7601 ServicePack: 1.0
08:09:16.0619 8836 Product type: Workstation
08:09:16.0619 8836 ComputerName: BRIAN-PC
08:09:16.0619 8836 UserName: Brian
08:09:16.0619 8836 Windows directory: C:\Windows
08:09:16.0619 8836 System windows directory: C:\Windows
08:09:16.0619 8836 Running under WOW64
08:09:16.0619 8836 Processor architecture: Intel x64
08:09:16.0619 8836 Number of processors: 4
08:09:16.0619 8836 Page size: 0x1000
08:09:16.0619 8836 Boot type: Normal boot
08:09:16.0619 8836 ============================================================
08:09:17.0753 8836 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:09:17.0802 8836 ============================================================
08:09:17.0802 8836 \Device\Harddisk0\DR0:
08:09:17.0802 8836 MBR partitions:
08:09:17.0802 8836 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x15C3000
08:09:17.0802 8836 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x15D7000, BlocksNum 0x7312F000
08:09:17.0802 8836 ============================================================
08:09:17.0832 8836 C: <-> \Device\Harddisk0\DR0\Partition2
08:09:17.0832 8836 ============================================================
08:09:17.0832 8836 Initialize success
08:09:17.0832 8836 ============================================================
08:10:01.0487 8552 Deinitialize success

08:13:02.0653 3792 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:13:03.0215 3792 ============================================================
08:13:03.0215 3792 Current date / time: 2013/05/03 08:13:03.0215
08:13:03.0215 3792 SystemInfo:
08:13:03.0215 3792
08:13:03.0215 3792 OS Version: 6.1.7601 ServicePack: 1.0
08:13:03.0215 3792 Product type: Workstation
08:13:03.0215 3792 ComputerName: BRIAN-PC
08:13:03.0215 3792 UserName: Brian
08:13:03.0215 3792 Windows directory: C:\Windows
08:13:03.0215 3792 System windows directory: C:\Windows
08:13:03.0215 3792 Running under WOW64
08:13:03.0215 3792 Processor architecture: Intel x64
08:13:03.0215 3792 Number of processors: 4
08:13:03.0215 3792 Page size: 0x1000
08:13:03.0215 3792 Boot type: Normal boot
08:13:03.0215 3792 ============================================================
08:13:06.0382 3792 BG loaded
08:13:07.0224 3792 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:13:07.0240 3792 ============================================================
08:13:07.0240 3792 \Device\Harddisk0\DR0:
08:13:07.0240 3792 MBR partitions:
08:13:07.0240 3792 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x15C3000
08:13:07.0240 3792 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x15D7000, BlocksNum 0x7312F000
08:13:07.0240 3792 ============================================================
08:13:07.0333 3792 C: <-> \Device\Harddisk0\DR0\Partition2
08:13:07.0333 3792 ============================================================
08:13:07.0333 3792 Initialize success
08:13:07.0333 3792 ============================================================
08:14:13.0426 5076 ============================================================
08:14:13.0426 5076 Scan started
08:14:13.0426 5076 Mode: Manual; SigCheck; TDLFS;
08:14:13.0426 5076 ============================================================
08:14:14.0955 5076 ================ Scan system memory ========================
08:14:14.0955 5076 System memory - ok
08:14:14.0955 5076 ================ Scan services =============================
08:14:15.0470 5076 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:14:15.0579 5076 1394ohci - ok
08:14:15.0641 5076 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:14:15.0672 5076 ACPI - ok
08:14:15.0704 5076 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:14:15.0782 5076 AcpiPmi - ok
08:14:15.0875 5076 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:14:15.0906 5076 AdobeARMservice - ok
08:14:16.0047 5076 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:14:16.0062 5076 AdobeFlashPlayerUpdateSvc - ok
08:14:16.0109 5076 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
08:14:16.0156 5076 adp94xx - ok
08:14:16.0172 5076 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
08:14:16.0187 5076 adpahci - ok
08:14:16.0203 5076 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
08:14:16.0218 5076 adpu320 - ok
08:14:16.0296 5076 [ CBFAA333EBA2E402A0439A3A0E5413F3 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
08:14:16.0328 5076 AdvancedSystemCareService6 - ok
08:14:16.0343 5076 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:14:16.0484 5076 AeLookupSvc - ok
08:14:16.0530 5076 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
08:14:16.0608 5076 AFD - ok
08:14:16.0624 5076 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:14:16.0640 5076 agp440 - ok
08:14:16.0655 5076 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:14:16.0686 5076 ALG - ok
08:14:16.0702 5076 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:14:16.0718 5076 aliide - ok
08:14:16.0718 5076 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:14:16.0733 5076 amdide - ok
08:14:16.0733 5076 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
08:14:16.0811 5076 AmdK8 - ok
08:14:16.0827 5076 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
08:14:16.0874 5076 AmdPPM - ok
08:14:16.0905 5076 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:14:16.0920 5076 amdsata - ok
08:14:16.0936 5076 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
08:14:16.0952 5076 amdsbs - ok
08:14:16.0967 5076 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:14:16.0983 5076 amdxata - ok
08:14:17.0030 5076 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:14:17.0186 5076 AppID - ok
08:14:17.0201 5076 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:14:17.0248 5076 AppIDSvc - ok
08:14:17.0279 5076 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
08:14:17.0373 5076 Appinfo - ok
08:14:17.0435 5076 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:14:17.0451 5076 Apple Mobile Device - ok
08:14:17.0482 5076 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
08:14:17.0529 5076 AppMgmt - ok
08:14:17.0544 5076 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
08:14:17.0576 5076 arc - ok
08:14:17.0576 5076 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
08:14:17.0607 5076 arcsas - ok
08:14:17.0622 5076 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:14:17.0669 5076 AsyncMac - ok
08:14:17.0685 5076 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:14:17.0685 5076 atapi - ok
08:14:17.0747 5076 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:14:17.0810 5076 AudioEndpointBuilder - ok
08:14:17.0825 5076 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:14:17.0856 5076 AudioSrv - ok
08:14:17.0903 5076 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:14:17.0950 5076 AxInstSV - ok
08:14:17.0981 5076 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
08:14:18.0028 5076 b06bdrv - ok
08:14:18.0044 5076 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:14:18.0075 5076 b57nd60a - ok
08:14:18.0090 5076 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:14:18.0137 5076 BDESVC - ok
08:14:18.0153 5076 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:14:18.0231 5076 Beep - ok
08:14:18.0278 5076 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:14:18.0340 5076 BFE - ok
08:14:18.0574 5076 [ 7B56A40EAAACF1867FF178501D3EA185 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20130412.001\BHDrvx64.sys
08:14:18.0621 5076 BHDrvx64 - ok
08:14:18.0683 5076 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
08:14:18.0777 5076 BITS - ok
08:14:18.0808 5076 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:14:18.0824 5076 blbdrive - ok
08:14:18.0886 5076 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:14:18.0917 5076 Bonjour Service - ok
08:14:18.0948 5076 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:14:18.0995 5076 bowser - ok
08:14:19.0011 5076 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
08:14:19.0089 5076 BrFiltLo - ok
08:14:19.0104 5076 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
08:14:19.0120 5076 BrFiltUp - ok
08:14:19.0136 5076 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
08:14:19.0229 5076 BridgeMP - ok
08:14:19.0260 5076 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:14:19.0276 5076 Browser - ok
08:14:19.0276 5076 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:14:19.0307 5076 Brserid - ok
08:14:19.0323 5076 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:14:19.0338 5076 BrSerWdm - ok
08:14:19.0354 5076 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:14:19.0401 5076 BrUsbMdm - ok
08:14:19.0416 5076 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:14:19.0432 5076 BrUsbSer - ok
08:14:19.0432 5076 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
08:14:19.0448 5076 BTHMODEM - ok
08:14:19.0463 5076 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:14:19.0541 5076 bthserv - ok
08:14:19.0541 5076 catchme - ok
08:14:19.0557 5076 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:14:19.0604 5076 cdfs - ok
08:14:19.0635 5076 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
08:14:19.0682 5076 cdrom - ok
08:14:19.0713 5076 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:14:19.0775 5076 CertPropSvc - ok
08:14:19.0791 5076 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
08:14:19.0806 5076 circlass - ok
08:14:19.0822 5076 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:14:19.0838 5076 CLFS - ok
08:14:19.0900 5076 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:14:20.0009 5076 clr_optimization_v2.0.50727_32 - ok
08:14:20.0040 5076 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:14:20.0087 5076 clr_optimization_v2.0.50727_64 - ok
08:14:20.0150 5076 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:14:20.0212 5076 clr_optimization_v4.0.30319_32 - ok
08:14:20.0243 5076 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:14:20.0259 5076 clr_optimization_v4.0.30319_64 - ok
08:14:20.0274 5076 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
08:14:20.0306 5076 CmBatt - ok
08:14:20.0337 5076 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:14:20.0352 5076 cmdide - ok
08:14:20.0399 5076 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
08:14:20.0446 5076 CNG - ok
08:14:20.0462 5076 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
08:14:20.0477 5076 Compbatt - ok
08:14:20.0493 5076 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
08:14:20.0540 5076 CompositeBus - ok
08:14:20.0555 5076 COMSysApp - ok
08:14:20.0555 5076 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
08:14:20.0571 5076 crcdisk - ok
08:14:20.0602 5076 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:14:20.0618 5076 CryptSvc - ok
08:14:20.0664 5076 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
08:14:20.0758 5076 CSC - ok
08:14:20.0820 5076 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
08:14:20.0867 5076 CscService - ok
08:14:20.0914 5076 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:14:20.0961 5076 DcomLaunch - ok
08:14:20.0976 5076 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:14:21.0008 5076 defragsvc - ok
08:14:21.0039 5076 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:14:21.0101 5076 DfsC - ok
08:14:21.0101 5076 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:14:21.0132 5076 Dhcp - ok
08:14:21.0148 5076 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:14:21.0195 5076 discache - ok
08:14:21.0210 5076 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
08:14:21.0226 5076 Disk - ok
08:14:21.0242 5076 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:14:21.0304 5076 Dnscache - ok
08:14:21.0335 5076 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:14:21.0413 5076 dot3svc - ok
08:14:21.0444 5076 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:14:21.0507 5076 DPS - ok
08:14:21.0538 5076 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:14:21.0569 5076 drmkaud - ok
08:14:21.0585 5076 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:14:21.0616 5076 DXGKrnl - ok
08:14:21.0647 5076 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:14:21.0678 5076 EapHost - ok
08:14:21.0756 5076 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
08:14:21.0866 5076 ebdrv - ok
08:14:21.0959 5076 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
08:14:21.0990 5076 eeCtrl - ok
08:14:22.0022 5076 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
08:14:22.0053 5076 EFS - ok
08:14:22.0240 5076 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:14:22.0302 5076 ehRecvr - ok
08:14:22.0318 5076 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:14:22.0380 5076 ehSched - ok
08:14:22.0412 5076 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
08:14:22.0443 5076 elxstor - ok
08:14:22.0490 5076 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:14:22.0521 5076 EraserUtilRebootDrv - ok
08:14:22.0521 5076 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:14:22.0552 5076 ErrDev - ok
08:14:22.0583 5076 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:14:22.0630 5076 EventSystem - ok
08:14:22.0646 5076 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:14:22.0692 5076 exfat - ok
08:14:22.0692 5076 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:14:22.0724 5076 fastfat - ok
08:14:22.0770 5076 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:14:22.0833 5076 Fax - ok
08:14:22.0848 5076 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
08:14:22.0864 5076 fdc - ok
08:14:22.0895 5076 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:14:22.0942 5076 fdPHost - ok
08:14:22.0958 5076 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:14:23.0020 5076 FDResPub - ok
08:14:23.0020 5076 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:14:23.0036 5076 FileInfo - ok
08:14:23.0067 5076 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:14:23.0098 5076 Filetrace - ok
08:14:23.0114 5076 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
08:14:23.0129 5076 flpydisk - ok
08:14:23.0145 5076 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:14:23.0160 5076 FltMgr - ok
08:14:23.0223 5076 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
08:14:23.0254 5076 FontCache - ok
08:14:23.0301 5076 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:14:23.0316 5076 FontCache3.0.0.0 - ok
08:14:23.0316 5076 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:14:23.0332 5076 FsDepends - ok
08:14:23.0363 5076 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:14:23.0379 5076 Fs_Rec - ok
08:14:23.0410 5076 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:14:23.0441 5076 fvevol - ok
08:14:23.0457 5076 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
08:14:23.0472 5076 gagp30kx - ok
08:14:23.0550 5076 [ 2973B4EB7BE10A0D491B2037DCAAE88F ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
08:14:23.0582 5076 Garmin Core Update Service - ok
08:14:23.0613 5076 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:14:23.0628 5076 GEARAspiWDM - ok
08:14:23.0784 5076 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:14:23.0847 5076 gpsvc - ok
08:14:23.0909 5076 [ 98405343D7DCD330FE1B08C8F4C3900C ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
08:14:23.0987 5076 HCW85BDA - ok
08:14:23.0987 5076 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:14:24.0018 5076 hcw85cir - ok
08:14:24.0065 5076 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:14:24.0096 5076 HdAudAddService - ok
08:14:24.0112 5076 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
08:14:24.0159 5076 HDAudBus - ok
08:14:24.0190 5076 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
08:14:24.0206 5076 HECIx64 - ok
08:14:24.0206 5076 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
08:14:24.0237 5076 HidBatt - ok
08:14:24.0237 5076 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
08:14:24.0252 5076 HidBth - ok
08:14:24.0268 5076 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
08:14:24.0268 5076 HidIr - ok
08:14:24.0299 5076 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
08:14:24.0330 5076 hidserv - ok
08:14:24.0346 5076 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:14:24.0362 5076 HidUsb - ok
08:14:24.0393 5076 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:14:24.0424 5076 hkmsvc - ok
08:14:24.0455 5076 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:14:24.0502 5076 HomeGroupListener - ok
08:14:24.0518 5076 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:14:24.0549 5076 HomeGroupProvider - ok
08:14:24.0564 5076 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:14:24.0580 5076 HpSAMD - ok
08:14:24.0627 5076 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:14:24.0689 5076 HTTP - ok
08:14:24.0720 5076 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:14:24.0736 5076 hwpolicy - ok
08:14:24.0814 5076 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
08:14:24.0845 5076 i8042prt - ok
08:14:24.0876 5076 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:14:24.0892 5076 iaStorV - ok
08:14:25.0407 5076 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:14:25.0438 5076 idsvc - ok
08:14:25.0688 5076 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130502.001\IDSvia64.sys
08:14:25.0719 5076 IDSVia64 - ok
08:14:25.0734 5076 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
08:14:25.0781 5076 iirsp - ok
08:14:25.0937 5076 [ C5B04409186A27409BD069580208A6D3 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
08:14:25.0953 5076 IJPLMSVC - ok
08:14:26.0015 5076 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
08:14:26.0156 5076 IKEEXT - ok
08:14:26.0171 5076 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:14:26.0202 5076 intelide - ok
08:14:26.0312 5076 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:14:26.0343 5076 intelppm - ok
08:14:26.0530 5076 [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
08:14:26.0546 5076 IntuitUpdateServiceV4 - ok
08:14:26.0624 5076 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:14:26.0702 5076 IPBusEnum - ok
08:14:26.0795 5076 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:14:26.0936 5076 IpFilterDriver - ok
08:14:26.0998 5076 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:14:27.0123 5076 iphlpsvc - ok
08:14:27.0310 5076 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:14:27.0950 5076 IPMIDRV - ok
08:14:28.0262 5076 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:14:28.0433 5076 IPNAT - ok
08:14:28.0620 5076 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
08:14:28.0652 5076 iPod Service - ok
08:14:28.0683 5076 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:14:28.0776 5076 IRENUM - ok
08:14:29.0229 5076 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:14:29.0260 5076 isapnp - ok
08:14:29.0525 5076 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:14:29.0541 5076 iScsiPrt - ok
08:14:29.0853 5076 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
08:14:29.0868 5076 k57nd60a - ok
08:14:29.0931 5076 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:14:29.0946 5076 kbdclass - ok
08:14:30.0024 5076 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
08:14:30.0056 5076 kbdhid - ok
08:14:30.0134 5076 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
08:14:30.0149 5076 KeyIso - ok
08:14:30.0227 5076 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:14:30.0305 5076 KSecDD - ok
08:14:30.0508 5076 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:14:30.0524 5076 KSecPkg - ok
08:14:30.0617 5076 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:14:30.0680 5076 ksthunk - ok
08:14:30.0804 5076 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:14:30.0960 5076 KtmRm - ok
08:14:31.0007 5076 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
08:14:31.0070 5076 LanmanServer - ok
08:14:31.0116 5076 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:14:31.0194 5076 LanmanWorkstation - ok
08:14:31.0272 5076 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:14:31.0350 5076 lltdio - ok
08:14:31.0444 5076 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:14:31.0694 5076 lltdsvc - ok
08:14:31.0943 5076 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:14:32.0006 5076 lmhosts - ok
08:14:32.0084 5076 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
08:14:32.0286 5076 LSI_FC - ok
08:14:32.0333 5076 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
08:14:32.0349 5076 LSI_SAS - ok
08:14:32.0411 5076 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
08:14:32.0458 5076 LSI_SAS2 - ok
08:14:32.0614 5076 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
08:14:32.0661 5076 LSI_SCSI - ok
08:14:32.0723 5076 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:14:32.0801 5076 luafv - ok
08:14:32.0973 5076 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:14:33.0004 5076 Mcx2Svc - ok
08:14:33.0316 5076 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
08:14:33.0363 5076 MDM ( UnsignedFile.Multi.Generic ) - warning
08:14:33.0363 5076 MDM - detected UnsignedFile.Multi.Generic (1)
08:14:33.0363 5076 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
08:14:33.0378 5076 megasas - ok
08:14:33.0441 5076 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
08:14:33.0472 5076 MegaSR - ok
08:14:33.0753 5076 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
08:14:33.0831 5076 Microsoft Office Groove Audit Service - ok
08:14:33.0862 5076 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:14:33.0909 5076 MMCSS - ok
08:14:33.0940 5076 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:14:34.0002 5076 Modem - ok
08:14:34.0080 5076 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:14:34.0112 5076 monitor - ok
08:14:34.0174 5076 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:14:34.0190 5076 mouclass - ok
08:14:34.0252 5076 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:14:34.0283 5076 mouhid - ok
08:14:34.0392 5076 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:14:34.0408 5076 mountmgr - ok
08:14:34.0517 5076 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:14:34.0564 5076 MozillaMaintenance - ok
08:14:34.0673 5076 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:14:34.0689 5076 mpio - ok
08:14:34.0751 5076 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:14:34.0782 5076 mpsdrv - ok
08:14:34.0860 5076 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:14:34.0923 5076 MpsSvc - ok
08:14:35.0001 5076 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:14:35.0032 5076 MRxDAV - ok
08:14:35.0126 5076 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:14:35.0235 5076 mrxsmb - ok
08:14:35.0328 5076 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:14:35.0375 5076 mrxsmb10 - ok
08:14:35.0469 5076 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:14:35.0484 5076 mrxsmb20 - ok
08:14:35.0578 5076 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:14:35.0594 5076 msahci - ok
08:14:35.0687 5076 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:14:35.0703 5076 msdsm - ok
08:14:35.0765 5076 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:14:36.0030 5076 MSDTC - ok
08:14:36.0311 5076 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:14:36.0358 5076 Msfs - ok
08:14:36.0389 5076 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:14:36.0452 5076 mshidkmdf - ok
08:14:36.0514 5076 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:14:36.0732 5076 msisadrv - ok
08:14:36.0779 5076 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:14:37.0076 5076 MSiSCSI - ok
08:14:37.0076 5076 msiserver - ok
08:14:37.0138 5076 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:14:37.0232 5076 MSKSSRV - ok
08:14:37.0263 5076 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:14:37.0372 5076 MSPCLOCK - ok
08:14:37.0403 5076 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:14:37.0497 5076 MSPQM - ok
08:14:37.0559 5076 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:14:37.0590 5076 MsRPC - ok
08:14:37.0653 5076 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
08:14:37.0668 5076 mssmbios - ok
08:14:37.0731 5076 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:14:37.0856 5076 MSTEE - ok
08:14:37.0887 5076 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
08:14:37.0934 5076 MTConfig - ok
08:14:37.0965 5076 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:14:37.0980 5076 Mup - ok
08:14:38.0105 5076 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:14:38.0168 5076 napagent - ok
08:14:38.0261 5076 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:14:38.0324 5076 NativeWifiP - ok
08:14:38.0495 5076 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\ENG64.SYS
08:14:38.0526 5076 NAVENG - ok
08:14:38.0604 5076 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\EX64.SYS
08:14:38.0651 5076 NAVEX15 - ok
08:14:38.0760 5076 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:14:38.0807 5076 NDIS - ok
08:14:38.0870 5076 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:14:38.0916 5076 NdisCap - ok
08:14:38.0963 5076 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:14:39.0041 5076 NdisTapi - ok
08:14:39.0135 5076 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:14:39.0228 5076 Ndisuio - ok
08:14:39.0291 5076 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:14:39.0416 5076 NdisWan - ok
08:14:39.0572 5076 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:14:39.0618 5076 NDProxy - ok
08:14:39.0665 5076 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:14:39.0728 5076 NetBIOS - ok
08:14:39.0759 5076 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:14:39.0868 5076 NetBT - ok
08:14:39.0899 5076 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
08:14:39.0915 5076 Netlogon - ok
08:14:40.0071 5076 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:14:40.0164 5076 Netman - ok
08:14:40.0242 5076 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:14:40.0336 5076 netprofm - ok
08:14:40.0430 5076 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:14:40.0492 5076 NetTcpPortSharing - ok
08:14:40.0632 5076 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
08:14:40.0648 5076 nfrd960 - ok
08:14:40.0882 5076 [ E78A365CC3E0FBFC018A33DCE01909F8 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
08:14:40.0913 5076 NIS - ok
08:14:41.0007 5076 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:14:41.0038 5076 NlaSvc - ok
08:14:41.0069 5076 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:14:41.0085 5076 Npfs - ok
08:14:41.0147 5076 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:14:41.0194 5076 nsi - ok
08:14:41.0319 5076 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:14:41.0412 5076 nsiproxy - ok
08:14:41.0600 5076 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:14:41.0678 5076 Ntfs - ok
08:14:41.0693 5076 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:14:41.0756 5076 Null - ok
08:14:42.0239 5076 [ 56ECA691BD4EF5CBF07B6D08B32F12AE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
08:14:42.0395 5076 nvlddmkm - ok
08:14:42.0411 5076 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:14:42.0427 5076 nvraid - ok
08:14:42.0458 5076 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:14:42.0473 5076 nvstor - ok
08:14:42.0489 5076 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:14:42.0505 5076 nv_agp - ok
08:14:42.0661 5076 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:14:42.0707 5076 odserv - ok
08:14:42.0739 5076 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:14:42.0754 5076 ohci1394 - ok
08:14:42.0801 5076 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:14:42.0817 5076 ose - ok
08:14:42.0848 5076 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:14:42.0895 5076 p2pimsvc - ok
08:14:42.0926 5076 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:14:42.0941 5076 p2psvc - ok
08:14:42.0957 5076 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
08:14:42.0973 5076 Parport - ok
08:14:43.0004 5076 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:14:43.0051 5076 partmgr - ok
08:14:43.0066 5076 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:14:43.0082 5076 PcaSvc - ok
08:14:43.0097 5076 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:14:43.0113 5076 pci - ok
08:14:43.0129 5076 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:14:43.0129 5076 pciide - ok
08:14:43.0144 5076 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
08:14:43.0160 5076 pcmcia - ok
08:14:43.0160 5076 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:14:43.0175 5076 pcw - ok
08:14:43.0191 5076 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:14:43.0253 5076 PEAUTH - ok
08:14:43.0285 5076 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
08:14:43.0331 5076 PeerDistSvc - ok
08:14:43.0425 5076 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:14:43.0441 5076 PerfHost - ok
08:14:43.0612 5076 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:14:43.0690 5076 pla - ok
08:14:43.0768 5076 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:14:44.0050 5076 PlugPlay - ok
08:14:44.0066 5076 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:14:44.0081 5076 PNRPAutoReg - ok
08:14:44.0097 5076 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:14:44.0112 5076 PNRPsvc - ok
08:14:44.0159 5076 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:14:44.0206 5076 PolicyAgent - ok
08:14:44.0237 5076 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:14:44.0284 5076 Power - ok
08:14:44.0346 5076 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:14:44.0393 5076 PptpMiniport - ok
08:14:44.0456 5076 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
08:14:44.0502 5076 Processor - ok
08:14:44.0565 5076 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
08:14:44.0612 5076 ProfSvc - ok
08:14:44.0627 5076 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:14:44.0643 5076 ProtectedStorage - ok
08:14:44.0690 5076 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:14:44.0736 5076 Psched - ok
08:14:44.0768 5076 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
08:14:44.0799 5076 ql2300 - ok
08:14:44.0814 5076 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
08:14:44.0830 5076 ql40xx - ok
08:14:44.0830 5076 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:14:44.0861 5076 QWAVE - ok
08:14:44.0861 5076 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:14:44.0892 5076 QWAVEdrv - ok
08:14:44.0908 5076 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:14:44.0939 5076 RasAcd - ok
08:14:44.0955 5076 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:14:44.0986 5076 RasAgileVpn - ok
08:14:45.0017 5076 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:14:45.0048 5076 RasAuto - ok
08:14:45.0080 5076 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:14:45.0126 5076 Rasl2tp - ok
08:14:45.0158 5076 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:14:45.0220 5076 RasMan - ok
08:14:45.0251 5076 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:14:45.0298 5076 RasPppoe - ok
08:14:45.0314 5076 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:14:45.0345 5076 RasSstp - ok
08:14:45.0376 5076 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:14:45.0407 5076 rdbss - ok
08:14:45.0407 5076 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
08:14:45.0423 5076 rdpbus - ok
08:14:45.0438 5076 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:14:45.0470 5076 RDPCDD - ok
08:14:45.0501 5076 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
08:14:45.0516 5076 RDPDR - ok
08:14:45.0548 5076 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:14:45.0594 5076 RDPENCDD - ok
08:14:45.0594 5076 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:14:45.0626 5076 RDPREFMP - ok
08:14:45.0704 5076 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:14:45.0766 5076 RDPWD - ok
08:14:45.0813 5076 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:14:45.0860 5076 rdyboost - ok
08:14:45.0906 5076 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:14:45.0938 5076 RemoteAccess - ok
08:14:46.0000 5076 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:14:46.0094 5076 RemoteRegistry - ok
08:14:46.0094 5076 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:14:46.0140 5076 RpcEptMapper - ok
08:14:46.0156 5076 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:14:46.0172 5076 RpcLocator - ok
08:14:46.0203 5076 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
08:14:46.0234 5076 RpcSs - ok
08:14:46.0234 5076 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:14:46.0265 5076 rspndr - ok
08:14:46.0296 5076 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
08:14:46.0312 5076 s3cap - ok
08:14:46.0328 5076 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
08:14:46.0343 5076 SamSs - ok
08:14:46.0359 5076 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:14:46.0374 5076 sbp2port - ok
08:14:46.0702 5076 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
08:14:46.0718 5076 SBSDWSCService - ok
08:14:46.0764 5076 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:14:46.0842 5076 SCardSvr - ok
08:14:46.0874 5076 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:14:46.0967 5076 scfilter - ok
08:14:47.0092 5076 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:14:47.0186 5076 Schedule - ok
08:14:47.0232 5076 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:14:47.0264 5076 SCPolicySvc - ok
08:14:47.0326 5076 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:14:47.0373 5076 SDRSVC - ok
08:14:47.0404 5076 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:14:47.0466 5076 secdrv - ok
08:14:47.0498 5076 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:14:47.0576 5076 seclogon - ok
08:14:47.0607 5076 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
08:14:47.0638 5076 SENS - ok
08:14:47.0654 5076 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:14:47.0685 5076 SensrSvc - ok
08:14:47.0700 5076 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
08:14:47.0732 5076 Serenum - ok
08:14:47.0747 5076 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
08:14:47.0778 5076 Serial - ok
08:14:47.0794 5076 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
08:14:47.0825 5076 sermouse - ok
08:14:47.0872 5076 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:14:47.0934 5076 SessionEnv - ok
08:14:47.0950 5076 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:14:47.0997 5076 sffdisk - ok
08:14:47.0997 5076 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:14:48.0012 5076 sffp_mmc - ok
08:14:48.0012 5076 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:14:48.0028 5076 sffp_sd - ok
08:14:48.0044 5076 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
08:14:48.0059 5076 sfloppy - ok
08:14:48.0075 5076 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:14:48.0137 5076 SharedAccess - ok
08:14:48.0184 5076 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:14:48.0231 5076 ShellHWDetection - ok
08:14:48.0246 5076 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
08:14:48.0262 5076 SiSRaid2 - ok
08:14:48.0262 5076 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
08:14:48.0278 5076 SiSRaid4 - ok
08:14:48.0278 5076 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:14:48.0309 5076 Smb - ok
08:14:48.0340 5076 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:14:48.0371 5076 SNMPTRAP - ok
08:14:48.0387 5076 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:14:48.0387 5076 spldr - ok
08:14:48.0434 5076 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
08:14:48.0465 5076 Spooler - ok
08:14:48.0761 5076 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:14:48.0839 5076 sppsvc - ok
08:14:48.0855 5076 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:14:48.0886 5076 sppuinotify - ok
08:14:48.0964 5076 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS
08:14:48.0980 5076 SRTSP - ok
08:14:48.0995 5076 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS
08:14:49.0011 5076 SRTSPX - ok
08:14:49.0026 5076 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:14:49.0058 5076 srv - ok
08:14:49.0073 5076 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:14:49.0104 5076 srv2 - ok
08:14:49.0120 5076 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:14:49.0136 5076 srvnet - ok
08:14:49.0167 5076 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:14:49.0214 5076 SSDPSRV - ok
08:14:49.0214 5076 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:14:49.0245 5076 SstpSvc - ok
08:14:49.0276 5076 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
08:14:49.0292 5076 stexstor - ok
08:14:49.0338 5076 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:14:49.0385 5076 stisvc - ok
08:14:49.0416 5076 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
08:14:49.0416 5076 storflt - ok
08:14:49.0432 5076 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
08:14:49.0494 5076 StorSvc - ok
08:14:49.0526 5076 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
08:14:49.0541 5076 storvsc - ok
08:14:49.0557 5076 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
08:14:49.0572 5076 swenum - ok
08:14:49.0588 5076 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:14:49.0650 5076 swprv - ok
08:14:49.0666 5076 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS
08:14:49.0697 5076 SymDS - ok
08:14:49.0728 5076 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS
08:14:49.0775 5076 SymEFA - ok
08:14:49.0822 5076 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
08:14:49.0838 5076 SymEvent - ok
08:14:49.0869 5076 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS
08:14:49.0884 5076 SymIRON - ok
08:14:49.0900 5076 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS
08:14:49.0916 5076 SymNetS - ok
08:14:49.0962 5076 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:14:49.0994 5076 SysMain - ok
08:14:50.0025 5076 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:14:50.0056 5076 TabletInputService - ok
08:14:50.0103 5076 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:14:50.0150 5076 TapiSrv - ok
08:14:50.0150 5076 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:14:50.0181 5076 TBS - ok
08:14:50.0259 5076 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:14:50.0306 5076 Tcpip - ok
08:14:50.0321 5076 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:14:50.0352 5076 TCPIP6 - ok
08:14:50.0368 5076 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:14:50.0415 5076 tcpipreg - ok
08:14:50.0446 5076 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:14:50.0508 5076 TDPIPE - ok
08:14:50.0540 5076 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:14:50.0571 5076 TDTCP - ok
08:14:50.0586 5076 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:14:50.0633 5076 tdx - ok
08:14:50.0649 5076 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
08:14:50.0664 5076 TermDD - ok
08:14:50.0696 5076 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:14:50.0742 5076 TermService - ok
08:14:50.0758 5076 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:14:50.0774 5076 Themes - ok
08:14:50.0789 5076 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:14:50.0836 5076 THREADORDER - ok
08:14:50.0852 5076 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:14:50.0914 5076 TrkWks - ok
08:14:50.0992 5076 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:14:51.0054 5076 TrustedInstaller - ok
08:14:51.0086 5076 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:14:51.0132 5076 tssecsrv - ok
08:14:51.0164 5076 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:14:51.0195 5076 TsUsbFlt - ok
08:14:51.0242 5076 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:14:51.0288 5076 tunnel - ok
08:14:51.0304 5076 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
08:14:51.0320 5076 uagp35 - ok
08:14:51.0351 5076 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:14:51.0398 5076 udfs - ok
08:14:51.0413 5076 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:14:51.0429 5076 UI0Detect - ok
08:14:51.0444 5076 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:14:51.0460 5076 uliagpkx - ok
08:14:51.0491 5076 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
08:14:51.0522 5076 umbus - ok
08:14:51.0569 5076 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
08:14:51.0585 5076 UmPass - ok
08:14:51.0600 5076 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
08:14:51.0632 5076 UmRdpService - ok
08:14:51.0663 5076 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:14:51.0710 5076 upnphost - ok
08:14:51.0772 5076 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
08:14:51.0803 5076 USBAAPL64 - ok
08:14:51.0803 5076 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:14:51.0866 5076 usbccgp - ok
08:14:51.0897 5076 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:14:51.0912 5076 usbcir - ok
08:14:51.0928 5076 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
08:14:51.0975 5076 usbehci - ok
08:14:51.0990 5076 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:14:52.0022 5076 usbhub - ok
08:14:52.0037 5076 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:14:52.0068 5076 usbohci - ok
08:14:52.0084 5076 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
08:14:52.0100 5076 usbprint - ok
08:14:52.0131 5076 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
08:14:52.0162 5076 usbscan - ok
08:14:52.0178 5076 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:14:52.0209 5076 USBSTOR - ok
08:14:52.0209 5076 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:14:52.0240 5076 usbuhci - ok
08:14:52.0256 5076 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:14:52.0318 5076 UxSms - ok
08:14:52.0318 5076 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
08:14:52.0334 5076 VaultSvc - ok
08:14:52.0334 5076 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:14:52.0349 5076 vdrvroot - ok
08:14:52.0396 5076 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:14:52.0427 5076 vds - ok
08:14:52.0443 5076 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:14:52.0458 5076 vga - ok
08:14:52.0474 5076 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:14:52.0505 5076 VgaSave - ok
08:14:52.0536 5076 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
08:14:52.0536 5076 vhdmp - ok
08:14:52.0568 5076 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:14:52.0583 5076 viaide - ok
08:14:52.0583 5076 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
08:14:52.0599 5076 vmbus - ok
08:14:52.0599 5076 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
08:14:52.0614 5076 VMBusHID - ok
08:14:52.0630 5076 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:14:52.0646 5076 volmgr - ok
08:14:52.0677 5076 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:14:52.0692 5076 volmgrx - ok
08:14:52.0708 5076 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:14:52.0724 5076 volsnap - ok
08:14:52.0739 5076 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
08:14:52.0739 5076 vsmraid - ok
08:14:52.0786 5076 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:14:52.0848 5076 VSS - ok
08:14:52.0848 5076 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
08:14:52.0864 5076 vwifibus - ok
08:14:52.0880 5076 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:14:52.0942 5076 W32Time - ok
08:14:52.0958 5076 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
08:14:52.0973 5076 WacomPen - ok
08:14:52.0989 5076 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:14:53.0036 5076 WANARP - ok
08:14:53.0051 5076 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:14:53.0067 5076 Wanarpv6 - ok
08:14:53.0160 5076 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:14:53.0223 5076 wbengine - ok
08:14:53.0238 5076 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:14:53.0301 5076 WbioSrvc - ok
08:14:53.0316 5076 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:14:53.0348 5076 wcncsvc - ok
08:14:53.0363 5076 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:14:53.0379 5076 WcsPlugInService - ok
08:14:53.0379 5076 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
08:14:53.0394 5076 Wd - ok
08:14:53.0426 5076 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
08:14:53.0441 5076 WDC_SAM - ok
08:14:53.0472 5076 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:14:53.0519 5076 Wdf01000 - ok
08:14:53.0535 5076 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:14:53.0628 5076 WdiServiceHost - ok
08:14:53.0628 5076 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:14:53.0660 5076 WdiSystemHost - ok
08:14:53.0691 5076 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:14:53.0738 5076 WebClient - ok
08:14:53.0753 5076 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:14:53.0784 5076 Wecsvc - ok
08:14:53.0800 5076 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:14:53.0847 5076 wercplsupport - ok
08:14:53.0878 5076 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:14:53.0909 5076 WerSvc - ok
08:14:53.0909 5076 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:14:53.0940 5076 WfpLwf - ok
08:14:53.0940 5076 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:14:53.0956 5076 WIMMount - ok
08:14:53.0972 5076 WinDefend - ok
08:14:53.0972 5076 WinHttpAutoProxySvc - ok
08:14:54.0034 5076 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:14:54.0081 5076 Winmgmt - ok
08:14:54.0143 5076 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:14:54.0268 5076 WinRM - ok
08:14:54.0315 5076 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
08:14:54.0362 5076 WinUsb - ok
08:14:54.0549 5076 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:14:54.0627 5076 Wlansvc - ok
08:14:54.0658 5076 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
08:14:54.0705 5076 WmiAcpi - ok
08:14:54.0720 5076 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:14:54.0752 5076 wmiApSrv - ok
08:14:54.0767 5076 WMPNetworkSvc - ok
08:14:54.0783 5076 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:14:54.0814 5076 WPCSvc - ok
08:14:54.0845 5076 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:14:54.0861 5076 WPDBusEnum - ok
08:14:54.0861 5076 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:14:54.0892 5076 ws2ifsl - ok
08:14:54.0923 5076 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
08:14:54.0939 5076 wscsvc - ok
08:14:54.0939 5076 WSearch - ok
08:14:55.0001 5076 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:14:55.0048 5076 wuauserv - ok
08:14:55.0064 5076 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:14:55.0079 5076 WudfPf - ok
08:14:55.0110 5076 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:14:55.0142 5076 WUDFRd - ok
08:14:55.0188 5076 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:14:55.0220 5076 wudfsvc - ok
08:14:55.0251 5076 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
08:14:55.0282 5076 WwanSvc - ok
08:14:55.0298 5076 ================ Scan global ===============================
08:14:55.0313 5076 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:14:55.0344 5076 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:14:55.0344 5076 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:14:55.0360 5076 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:14:55.0376 5076 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:14:55.0391 5076 [Global] - ok
08:14:55.0391 5076 ================ Scan MBR ==================================
08:14:55.0391 5076 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:14:55.0672 5076 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
08:14:55.0672 5076 \Device\Harddisk0\DR0 - detected TDSS File System (1)
08:14:55.0672 5076 ================ Scan VBR ==================================
08:14:55.0672 5076 [ 38AE9BC7A889F172AD05FFE48384D8CA ] \Device\Harddisk0\DR0\Partition1
08:14:55.0672 5076 \Device\Harddisk0\DR0\Partition1 - ok
08:14:55.0672 5076 [ 645AF88657C0C97F0D423CDC0734D6A7 ] \Device\Harddisk0\DR0\Partition2
08:14:55.0672 5076 \Device\Harddisk0\DR0\Partition2 - ok
08:14:55.0672 5076 ================ Scan active images ========================
08:14:55.0688 5076 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
08:14:55.0688 5076 C:\Windows\System32\drivers\crashdmp.sys - ok
08:14:55.0688 5076 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
08:14:55.0688 5076 C:\Windows\System32\drivers\dumpfve.sys - ok
08:14:55.0688 5076 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] C:\Windows\System32\drivers\iaStorV.sys
08:14:55.0688 5076 C:\Windows\System32\drivers\iaStorV.sys - ok
08:14:55.0688 5076 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
08:14:55.0688 5076 C:\Windows\System32\drivers\cdrom.sys - ok
08:14:55.0703 5076 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] C:\Windows\System32\drivers\NISx64\1207020.003\srtsp64.sys
08:14:55.0703 5076 C:\Windows\System32\drivers\NISx64\1207020.003\srtsp64.sys - ok
08:14:55.0703 5076 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] C:\Windows\System32\drivers\NISx64\1207020.003\ironx64.sys
08:14:55.0703 5076 C:\Windows\System32\drivers\NISx64\1207020.003\ironx64.sys - ok
08:14:55.0703 5076 [ C513E8A5E7978DA49077F5484344EE1B ] C:\Windows\System32\drivers\NISx64\1207020.003\srtspx64.sys
08:14:55.0703 5076 C:\Windows\System32\drivers\NISx64\1207020.003\srtspx64.sys - ok
08:14:55.0703 5076 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
08:14:55.0703 5076 C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
08:14:55.0703 5076 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\ex64.sys
08:14:55.0703 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\ex64.sys - ok
08:14:55.0719 5076 [ 88A2F45CE66B904285978D6BB13AFEB2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\eng64.sys
08:14:55.0719 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\eng64.sys - ok
08:14:55.0719 5076 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
08:14:55.0719 5076 C:\Windows\System32\drivers\beep.sys - ok
08:14:55.0719 5076 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
08:14:55.0719 5076 C:\Windows\System32\drivers\null.sys - ok
08:14:55.0719 5076 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
08:14:55.0719 5076 C:\Windows\System32\drivers\vga.sys - ok
08:14:55.0719 5076 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
08:14:55.0719 5076 C:\Windows\System32\drivers\videoprt.sys - ok
08:14:55.0719 5076 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
08:14:55.0719 5076 C:\Windows\System32\drivers\watchdog.sys - ok
08:14:55.0734 5076 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
08:14:55.0734 5076 C:\Windows\System32\drivers\RDPCDD.sys - ok
08:14:55.0734 5076 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
08:14:55.0734 5076 C:\Windows\System32\drivers\RDPENCDD.sys - ok
08:14:55.0734 5076 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
08:14:55.0734 5076 C:\Windows\System32\drivers\RDPREFMP.sys - ok
08:14:55.0734 5076 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
08:14:55.0734 5076 C:\Windows\System32\drivers\msfs.sys - ok
08:14:55.0734 5076 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
08:14:55.0734 5076 C:\Windows\System32\drivers\npfs.sys - ok
08:14:55.0734 5076 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
08:14:55.0734 5076 C:\Windows\System32\drivers\tdi.sys - ok
08:14:55.0750 5076 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
08:14:55.0750 5076 C:\Windows\System32\drivers\tdx.sys - ok
08:14:55.0750 5076 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
08:14:55.0750 5076 C:\Windows\System32\drivers\afd.sys - ok
08:14:55.0750 5076 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
08:14:55.0750 5076 C:\Windows\System32\drivers\netbt.sys - ok
08:14:55.0750 5076 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
08:14:55.0750 5076 C:\Windows\System32\drivers\wfplwf.sys - ok
08:14:55.0750 5076 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
08:14:55.0750 5076 C:\Windows\System32\drivers\ws2ifsl.sys - ok
08:14:55.0766 5076 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
08:14:55.0766 5076 C:\Windows\System32\drivers\pacer.sys - ok
08:14:55.0766 5076 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
08:14:55.0766 5076 C:\Windows\System32\drivers\netbios.sys - ok
08:14:55.0766 5076 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
08:14:55.0766 5076 C:\Windows\System32\drivers\wanarp.sys - ok
08:14:55.0766 5076 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
08:14:55.0766 5076 C:\Windows\System32\drivers\termdd.sys - ok
08:14:55.0766 5076 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] C:\Windows\System32\drivers\NISx64\1207020.003\symnets.sys
08:14:55.0766 5076 C:\Windows\System32\drivers\NISx64\1207020.003\symnets.sys - ok
08:14:55.0766 5076 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
08:14:55.0766 5076 C:\Windows\System32\drivers\nsiproxy.sys - ok
08:14:55.0781 5076 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
08:14:55.0781 5076 C:\Windows\System32\drivers\rdbss.sys - ok
08:14:55.0781 5076 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
08:14:55.0781 5076 C:\Windows\System32\drivers\mssmbios.sys - ok
08:14:55.0781 5076 [ A48928D4CCA6F8B731989DB08CF2C0AB ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130502.001\IDSviA64.sys
08:14:55.0781 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130502.001\IDSviA64.sys - ok
08:14:55.0781 5076 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
08:14:55.0781 5076 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
08:14:55.0781 5076 [ C5BCCB378D0A896304A3E71BE7215983 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:14:55.0781 5076 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok
08:14:55.0781 5076 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
08:14:55.0781 5076 C:\Windows\System32\drivers\discache.sys - ok
08:14:55.0797 5076 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] C:\Windows\System32\drivers\csc.sys
08:14:55.0797 5076 C:\Windows\System32\drivers\csc.sys - ok
08:14:55.0797 5076 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
08:14:55.0797 5076 C:\Windows\System32\drivers\blbdrive.sys - ok
08:14:55.0797 5076 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
08:14:55.0797 5076 C:\Windows\System32\drivers\dfsc.sys - ok
08:14:55.0797 5076 [ 7B56A40EAAACF1867FF178501D3EA185 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20130412.001\BHDrvx64.sys
08:14:55.0797 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20130412.001\BHDrvx64.sys - ok
08:14:55.0797 5076 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
08:14:55.0797 5076 C:\Windows\System32\drivers\tunnel.sys - ok
08:14:55.0812 5076 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
08:14:55.0812 5076 C:\Windows\System32\drivers\intelppm.sys - ok
08:14:55.0812 5076 [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
08:14:55.0812 5076 C:\Windows\System32\smss.exe - ok
08:14:55.0812 5076 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
08:14:55.0812 5076 C:\Windows\System32\ntdll.dll - ok
08:14:55.0812 5076 [ 7260F9DD51C71678745D5E0711B739AB ] C:\Windows\System32\drivers\nvBridge.kmd
08:14:55.0812 5076 C:\Windows\System32\drivers\nvBridge.kmd - ok
08:14:55.0812 5076 [ 56ECA691BD4EF5CBF07B6D08B32F12AE ] C:\Windows\System32\drivers\nvlddmkm.sys
08:14:55.0812 5076 C:\Windows\System32\drivers\nvlddmkm.sys - ok
08:14:55.0812 5076 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
08:14:55.0812 5076 C:\Windows\System32\drivers\dxgkrnl.sys - ok
08:14:55.0828 5076 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
08:14:55.0828 5076 C:\Windows\System32\drivers\dxgmms1.sys - ok
08:14:55.0828 5076 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
08:14:55.0828 5076 C:\Windows\System32\drivers\hdaudbus.sys - ok
08:14:55.0828 5076 [ B6AC71AAA2B10848F57FC49D55A651AF ] C:\Windows\System32\drivers\HECIx64.sys
08:14:55.0828 5076 C:\Windows\System32\drivers\HECIx64.sys - ok
08:14:55.0828 5076 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
08:14:55.0828 5076 C:\Windows\System32\drivers\usbport.sys - ok
08:14:55.0828 5076 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
08:14:55.0828 5076 C:\Windows\System32\drivers\usbehci.sys - ok
08:14:55.0828 5076 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
08:14:55.0828 5076 C:\Windows\System32\drivers\1394ohci.sys - ok
08:14:55.0844 5076 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
08:14:55.0844 5076 C:\Windows\System32\drivers\ks.sys - ok
08:14:55.0844 5076 [ D1CA0BE94F247D05F30F5F98AE29D4E4 ] C:\Windows\System32\drivers\BdaSup.sys
08:14:55.0844 5076 C:\Windows\System32\drivers\BdaSup.sys - ok
08:14:55.0844 5076 [ 98405343D7DCD330FE1B08C8F4C3900C ] C:\Windows\System32\drivers\HCW85BDA.sys
08:14:55.0844 5076 C:\Windows\System32\drivers\HCW85BDA.sys - ok
08:14:55.0844 5076 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
08:14:55.0844 5076 C:\Windows\System32\drivers\ksthunk.sys - ok
08:14:55.0844 5076 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] C:\Windows\System32\drivers\k57nd60a.sys
08:14:55.0844 5076 C:\Windows\System32\drivers\k57nd60a.sys - ok
08:14:55.0844 5076 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
08:14:55.0844 5076 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
08:14:55.0859 5076 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
08:14:55.0859 5076 C:\Windows\System32\drivers\CompositeBus.sys - ok
08:14:55.0859 5076 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
08:14:55.0859 5076 C:\Windows\System32\drivers\agilevpn.sys - ok
08:14:55.0859 5076 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
08:14:55.0859 5076 C:\Windows\System32\drivers\rasl2tp.sys - ok
08:14:55.0859 5076 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
08:14:55.0859 5076 C:\Windows\System32\drivers\ndistapi.sys - ok
08:14:55.0859 5076 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
08:14:55.0859 5076 C:\Windows\System32\drivers\ndiswan.sys - ok
08:14:55.0859 5076 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
08:14:55.0859 5076 C:\Windows\System32\drivers\raspppoe.sys - ok
08:14:55.0875 5076 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
08:14:55.0875 5076 C:\Windows\System32\drivers\raspptp.sys - ok
08:14:55.0875 5076 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
08:14:55.0875 5076 C:\Windows\System32\drivers\rassstp.sys - ok
08:14:55.0875 5076 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys
08:14:55.0875 5076 C:\Windows\System32\drivers\rdpbus.sys - ok
08:14:55.0875 5076 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
08:14:55.0875 5076 C:\Windows\System32\drivers\kbdclass.sys - ok
08:14:55.0875 5076 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
08:14:55.0875 5076 C:\Windows\System32\drivers\mouclass.sys - ok
08:14:55.0890 5076 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
08:14:55.0890 5076 C:\Windows\System32\drivers\swenum.sys - ok
08:14:55.0890 5076 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
08:14:55.0890 5076 C:\Windows\System32\drivers\umbus.sys - ok
08:14:55.0890 5076 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
08:14:55.0890 5076 C:\Windows\System32\drivers\usbhub.sys - ok
08:14:55.0890 5076 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
08:14:55.0890 5076 C:\Windows\System32\drivers\ndproxy.sys - ok
08:14:55.0890 5076 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
08:14:55.0890 5076 C:\Windows\System32\drivers\drmk.sys - ok
08:14:55.0890 5076 [ 975761C778E33CD22498059B91E7373A ] C:\Windows\System32\drivers\HdAudio.sys
08:14:55.0890 5076 C:\Windows\System32\drivers\HdAudio.sys - ok
08:14:55.0890 5076 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
08:14:55.0890 5076 C:\Windows\System32\drivers\portcls.sys - ok
08:14:55.0906 5076 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
08:14:55.0906 5076 C:\Windows\System32\drivers\hidparse.sys - ok
08:14:55.0906 5076 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
08:14:55.0906 5076 C:\Windows\System32\drivers\hidclass.sys - ok
08:14:55.0906 5076 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
08:14:55.0906 5076 C:\Windows\System32\drivers\usbd.sys - ok
08:14:55.0906 5076 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
08:14:55.0906 5076 C:\Windows\System32\drivers\hidusb.sys - ok
08:14:55.0906 5076 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
08:14:55.0906 5076 C:\Windows\System32\drivers\mouhid.sys - ok
08:14:55.0906 5076 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
08:14:55.0906 5076 C:\Windows\System32\drivers\usbccgp.sys - ok
08:14:55.0922 5076 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
08:14:55.0922 5076 C:\Windows\System32\drivers\USBSTOR.SYS - ok
08:14:55.0922 5076 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
08:14:55.0922 5076 C:\Windows\System32\autochk.exe - ok
08:14:55.0922 5076 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
08:14:55.0922 5076 C:\Windows\System32\drivers\kbdhid.sys - ok
08:14:55.0922 5076 [ 5F5BC9FC260F181C0390C09B960BE1F4 ] C:\Windows\System32\sh4native.exe
08:14:55.0922 5076 C:\Windows\System32\sh4native.exe - ok
08:14:55.0922 5076 [ C9E9D59C0099A9FF51697E9306A44240 ] C:\Windows\System32\drivers\usbaapl64.sys
08:14:55.0922 5076 C:\Windows\System32\drivers\usbaapl64.sys - ok
08:14:55.0937 5076 [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
08:14:55.0937 5076 C:\Windows\System32\drivers\cdfs.sys - ok
08:14:55.0937 5076 [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
08:14:55.0937 5076 C:\Windows\System32\drivers\usbprint.sys - ok
08:14:55.0937 5076 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\Windows\System32\drivers\usbscan.sys
08:14:55.0937 5076 C:\Windows\System32\drivers\usbscan.sys - ok
08:14:55.0937 5076 [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
08:14:55.0937 5076 C:\Windows\System32\drivers\udfs.sys - ok
08:14:55.0937 5076 [ 753C0848AE7872A3F59663078A517293 ] C:\Windows\System32\wininet.dll
08:14:55.0937 5076 C:\Windows\System32\wininet.dll - ok
08:14:55.0937 5076 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
08:14:55.0937 5076 C:\Windows\System32\nsi.dll - ok
08:14:55.0953 5076 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
08:14:55.0953 5076 C:\Windows\System32\Wldap32.dll - ok
08:14:55.0953 5076 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
08:14:55.0953 5076 C:\Windows\System32\ws2_32.dll - ok
08:14:55.0953 5076 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
08:14:55.0953 5076 C:\Windows\System32\msctf.dll - ok
08:14:55.0953 5076 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
08:14:55.0953 5076 C:\Windows\System32\comdlg32.dll - ok
08:14:55.0953 5076 [ 29812E9971077BE3F8B9DC225CF9D454 ] C:\Windows\System32\urlmon.dll
08:14:55.0953 5076 C:\Windows\System32\urlmon.dll - ok
08:14:55.0953 5076 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
08:14:55.0953 5076 C:\Windows\System32\ole32.dll - ok
08:14:55.0968 5076 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
08:14:55.0968 5076 C:\Windows\System32\shell32.dll - ok
08:14:55.0968 5076 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
08:14:55.0968 5076 C:\Windows\System32\clbcatq.dll - ok
08:14:55.0968 5076 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
08:14:55.0968 5076 C:\Windows\System32\imagehlp.dll - ok
08:14:55.0968 5076 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
08:14:55.0968 5076 C:\Windows\System32\oleaut32.dll - ok
08:14:55.0968 5076 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
08:14:55.0968 5076 C:\Windows\System32\sechost.dll - ok
08:14:55.0968 5076 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
08:14:55.0968 5076 C:\Windows\System32\shlwapi.dll - ok
08:14:55.0984 5076 [ 85F1FE2D5EDBFD26066F5ABB9504A69C ] C:\Windows\System32\iertutil.dll
08:14:55.0984 5076 C:\Windows\System32\iertutil.dll - ok
08:14:55.0984 5076 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
08:14:55.0984 5076 C:\Windows\System32\normaliz.dll - ok
08:14:55.0984 5076 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
08:14:55.0984 5076 C:\Windows\System32\setupapi.dll - ok
08:14:55.0984 5076 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
08:14:55.0984 5076 C:\Windows\System32\advapi32.dll - ok
08:14:55.0984 5076 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
08:14:55.0984 5076 C:\Windows\System32\psapi.dll - ok
08:14:55.0984 5076 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
08:14:55.0984 5076 C:\Windows\System32\kernel32.dll - ok
08:14:56.0000 5076 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
08:14:56.0000 5076 C:\Windows\System32\lpk.dll - ok
08:14:56.0000 5076 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
08:14:56.0000 5076 C:\Windows\System32\usp10.dll - ok
08:14:56.0000 5076 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
08:14:56.0000 5076 C:\Windows\System32\gdi32.dll - ok
08:14:56.0000 5076 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
08:14:56.0000 5076 C:\Windows\System32\user32.dll - ok
08:14:56.0000 5076 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
08:14:56.0000 5076 C:\Windows\System32\msvcrt.dll - ok
08:14:56.0000 5076 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
08:14:56.0000 5076 C:\Windows\System32\difxapi.dll - ok
08:14:56.0015 5076 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
08:14:56.0015 5076 C:\Windows\System32\rpcrt4.dll - ok
08:14:56.0015 5076 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
08:14:56.0015 5076 C:\Windows\System32\imm32.dll - ok
08:14:56.0015 5076 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
08:14:56.0015 5076 C:\Windows\System32\cfgmgr32.dll - ok
08:14:56.0015 5076 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
08:14:56.0015 5076 C:\Windows\System32\crypt32.dll - ok
08:14:56.0015 5076 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
08:14:56.0015 5076 C:\Windows\System32\comctl32.dll - ok
08:14:56.0015 5076 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
08:14:56.0015 5076 C:\Windows\System32\KernelBase.dll - ok
08:14:56.0031 5076 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
08:14:56.0031 5076 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
08:14:56.0031 5076 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
08:14:56.0031 5076 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
08:14:56.0031 5076 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
08:14:56.0031 5076 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
08:14:56.0031 5076 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
08:14:56.0031 5076 C:\Windows\System32\devobj.dll - ok
08:14:56.0031 5076 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
08:14:56.0031 5076 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
08:14:56.0046 5076 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
08:14:56.0046 5076 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
08:14:56.0046 5076 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
08:14:56.0046 5076 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
08:14:56.0046 5076 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
08:14:56.0046 5076 C:\Windows\System32\msasn1.dll - ok
08:14:56.0046 5076 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
08:14:56.0046 5076 C:\Windows\System32\wintrust.dll - ok
08:14:56.0046 5076 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
08:14:56.0046 5076 C:\Windows\SysWOW64\normaliz.dll - ok
08:14:56.0062 5076 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
08:14:56.0062 5076 C:\Windows\System32\drivers\dxapi.sys - ok
08:14:56.0062 5076 [ 86F96630D28523F1C402C783F046DEF1 ] C:\Windows\System32\win32k.sys
08:14:56.0062 5076 C:\Windows\System32\win32k.sys - ok
08:14:56.0062 5076 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
08:14:56.0062 5076 C:\Windows\System32\csrss.exe - ok
08:14:56.0062 5076 [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
08:14:56.0062 5076 C:\Windows\System32\csrsrv.dll - ok
08:14:56.0062 5076 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
08:14:56.0062 5076 C:\Windows\System32\basesrv.dll - ok
08:14:56.0062 5076 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
08:14:56.0062 5076 C:\Windows\System32\winsrv.dll - ok
08:14:56.0078 5076 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
08:14:56.0078 5076 C:\Windows\System32\drivers\monitor.sys - ok
08:14:56.0078 5076 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
08:14:56.0078 5076 C:\Windows\System32\tsddd.dll - ok
08:14:56.0078 5076 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
08:14:56.0078 5076 C:\Windows\System32\profapi.dll - ok
08:14:56.0078 5076 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
08:14:56.0078 5076 C:\Windows\System32\sxssrv.dll - ok
08:14:56.0078 5076 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
08:14:56.0078 5076 C:\Windows\System32\wininit.exe - ok
08:14:56.0078 5076 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
08:14:56.0078 5076 C:\Windows\System32\KBDUS.DLL - ok
08:14:56.0093 5076 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
08:14:56.0093 5076 C:\Windows\System32\RpcRtRemote.dll - ok
08:14:56.0093 5076 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
08:14:56.0093 5076 C:\Windows\System32\WlS0WndH.dll - ok
08:14:56.0093 5076 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
08:14:56.0093 5076 C:\Windows\System32\sxs.dll - ok
08:14:56.0093 5076 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
08:14:56.0093 5076 C:\Windows\System32\cryptbase.dll - ok
08:14:56.0093 5076 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
08:14:56.0093 5076 C:\Windows\System32\apphelp.dll - ok
08:14:56.0093 5076 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
08:14:56.0093 5076 C:\Windows\System32\lsasrv.dll - ok
08:14:56.0093 5076 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
08:14:56.0093 5076 C:\Windows\System32\lsass.exe - ok
08:14:56.0109 5076 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
08:14:56.0109 5076 C:\Windows\System32\lsm.exe - ok
08:14:56.0109 5076 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
08:14:56.0109 5076 C:\Windows\System32\services.exe - ok
08:14:56.0109 5076 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
08:14:56.0109 5076 C:\Windows\System32\sspicli.dll - ok
08:14:56.0109 5076 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
08:14:56.0109 5076 C:\Windows\System32\sspisrv.dll - ok
08:14:56.0109 5076 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
08:14:56.0109 5076 C:\Windows\System32\samsrv.dll - ok
08:14:56.0124 5076 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
08:14:56.0124 5076 C:\Windows\System32\scesrv.dll - ok
08:14:56.0124 5076 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
08:14:56.0124 5076 C:\Windows\System32\scext.dll - ok
08:14:56.0124 5076 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
08:14:56.0124 5076 C:\Windows\System32\secur32.dll - ok
08:14:56.0124 5076 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
08:14:56.0124 5076 C:\Windows\System32\srvcli.dll - ok
08:14:56.0124 5076 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
08:14:56.0124 5076 C:\Windows\System32\sysntfy.dll - ok
08:14:56.0124 5076 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
08:14:56.0124 5076 C:\Windows\System32\wmsgapi.dll - ok
08:14:56.0140 5076 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
08:14:56.0140 5076 C:\Windows\System32\cryptdll.dll - ok
08:14:56.0140 5076 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
08:14:56.0140 5076 C:\Windows\System32\wevtapi.dll - ok
08:14:56.0140 5076 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
08:14:56.0140 5076 C:\Windows\System32\authz.dll - ok
08:14:56.0140 5076 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
08:14:56.0140 5076 C:\Windows\System32\cngaudit.dll - ok
08:14:56.0140 5076 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
08:14:56.0140 5076 C:\Windows\System32\ncrypt.dll - ok
08:14:56.0140 5076 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
08:14:56.0140 5076 C:\Windows\System32\bcrypt.dll - ok
08:14:56.0156 5076 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
08:14:56.0156 5076 C:\Windows\System32\msprivs.dll - ok
08:14:56.0156 5076 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
08:14:56.0156 5076 C:\Windows\System32\negoexts.dll - ok
08:14:56.0156 5076 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
08:14:56.0156 5076 C:\Windows\System32\netjoin.dll - ok
08:14:56.0156 5076 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
08:14:56.0156 5076 C:\Windows\System32\kerberos.dll - ok
08:14:56.0156 5076 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
08:14:56.0156 5076 C:\Windows\System32\cryptsp.dll - ok
08:14:56.0156 5076 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
08:14:56.0156 5076 C:\Windows\System32\mswsock.dll - ok
08:14:56.0171 5076 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
08:14:56.0171 5076 C:\Windows\System32\wship6.dll - ok
08:14:56.0171 5076 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
08:14:56.0171 5076 C:\Windows\System32\msv1_0.dll - ok
08:14:56.0171 5076 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
08:14:56.0171 5076 C:\Windows\System32\netlogon.dll - ok
08:14:56.0171 5076 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
08:14:56.0171 5076 C:\Windows\System32\cdd.dll - ok
08:14:56.0171 5076 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
08:14:56.0171 5076 C:\Windows\System32\winlogon.exe - ok
08:14:56.0171 5076 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
08:14:56.0171 5076 C:\Windows\System32\winsta.dll - ok
08:14:56.0171 5076 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
08:14:56.0187 5076 C:\Windows\System32\dnsapi.dll - ok
08:14:56.0187 5076 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
08:14:56.0187 5076 C:\Windows\System32\logoncli.dll - ok
08:14:56.0187 5076 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
08:14:56.0187 5076 C:\Windows\System32\schannel.dll - ok
08:14:56.0187 5076 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
08:14:56.0187 5076 C:\Windows\System32\wdigest.dll - ok
08:14:56.0187 5076 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
08:14:56.0187 5076 C:\Windows\System32\rsaenh.dll - ok
08:14:56.0187 5076 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
08:14:56.0187 5076 C:\Windows\System32\TSpkg.dll - ok
08:14:56.0202 5076 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
08:14:56.0202 5076 C:\Windows\System32\pku2u.dll - ok
08:14:56.0202 5076 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
08:14:56.0202 5076 C:\Windows\System32\bcryptprimitives.dll - ok
08:14:56.0202 5076 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
08:14:56.0202 5076 C:\Windows\System32\efslsaext.dll - ok
08:14:56.0202 5076 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
08:14:56.0202 5076 C:\Windows\System32\credssp.dll - ok
08:14:56.0202 5076 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
08:14:56.0202 5076 C:\Windows\System32\scecli.dll - ok
08:14:56.0202 5076 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
08:14:56.0202 5076 C:\Windows\System32\ubpm.dll - ok
08:14:56.0218 5076 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
08:14:56.0218 5076 C:\Windows\System32\svchost.exe - ok
08:14:56.0218 5076 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
08:14:56.0218 5076 C:\Windows\System32\umpnpmgr.dll - ok
08:14:56.0218 5076 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
08:14:56.0218 5076 C:\Windows\System32\devrtl.dll - ok
08:14:56.0218 5076 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
08:14:56.0218 5076 C:\Windows\System32\SPInf.dll - ok
08:14:56.0218 5076 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
08:14:56.0218 5076 C:\Windows\System32\gpapi.dll - ok
08:14:56.0218 5076 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
08:14:56.0218 5076 C:\Windows\System32\umpo.dll - ok
08:14:56.0234 5076 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
08:14:56.0234 5076 C:\Windows\System32\userenv.dll - ok
08:14:56.0234 5076 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
08:14:56.0234 5076 C:\Windows\System32\pcwum.dll - ok
08:14:56.0234 5076 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
08:14:56.0234 5076 C:\Windows\System32\powrprof.dll - ok
08:14:56.0234 5076 [ CBFAA333EBA2E402A0439A3A0E5413F3 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
08:14:56.0234 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe - ok
08:14:56.0234 5076 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
08:14:56.0234 5076 C:\Windows\SysWOW64\ntdll.dll - ok
08:14:56.0234 5076 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
08:14:56.0234 5076 C:\Windows\System32\wow64.dll - ok
08:14:56.0249 5076 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
08:14:56.0249 5076 C:\Windows\System32\wow64win.dll - ok
08:14:56.0249 5076 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
08:14:56.0249 5076 C:\Windows\System32\wow64cpu.dll - ok
08:14:56.0249 5076 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
08:14:56.0249 5076 C:\Windows\SysWOW64\kernel32.dll - ok
08:14:56.0249 5076 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
08:14:56.0249 5076 C:\Windows\SysWOW64\KernelBase.dll - ok
08:14:56.0249 5076 [ DDB9BCFF8CBF73638A15579FEC223229 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\rtl120.bpl
08:14:56.0249 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\rtl120.bpl - ok
08:14:56.0265 5076 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
08:14:56.0265 5076 C:\Windows\SysWOW64\oleaut32.dll - ok
08:14:56.0265 5076 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
08:14:56.0265 5076 C:\Windows\SysWOW64\ole32.dll - ok
08:14:56.0265 5076 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
08:14:56.0265 5076 C:\Windows\SysWOW64\msvcrt.dll - ok
08:14:56.0265 5076 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
08:14:56.0265 5076 C:\Windows\SysWOW64\gdi32.dll - ok
08:14:56.0265 5076 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
08:14:56.0265 5076 C:\Windows\SysWOW64\user32.dll - ok
08:14:56.0280 5076 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
08:14:56.0280 5076 C:\Windows\SysWOW64\advapi32.dll - ok
08:14:56.0280 5076 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
08:14:56.0280 5076 C:\Windows\SysWOW64\rpcrt4.dll - ok
08:14:56.0280 5076 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
08:14:56.0280 5076 C:\Windows\SysWOW64\sechost.dll - ok
08:14:56.0280 5076 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
08:14:56.0280 5076 C:\Windows\SysWOW64\cryptbase.dll - ok
08:14:56.0280 5076 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
08:14:56.0280 5076 C:\Windows\SysWOW64\lpk.dll - ok
08:14:56.0296 5076 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
08:14:56.0296 5076 C:\Windows\SysWOW64\sspicli.dll - ok
08:14:56.0296 5076 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
08:14:56.0296 5076 C:\Windows\SysWOW64\usp10.dll - ok
08:14:56.0296 5076 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
08:14:56.0296 5076 C:\Windows\SysWOW64\imagehlp.dll - ok
08:14:56.0296 5076 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
08:14:56.0296 5076 C:\Windows\SysWOW64\mpr.dll - ok
08:14:56.0296 5076 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
08:14:56.0296 5076 C:\Windows\SysWOW64\version.dll - ok
08:14:56.0296 5076 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
08:14:56.0296 5076 C:\Windows\SysWOW64\nsi.dll - ok
08:14:56.0312 5076 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
08:14:56.0312 5076 C:\Windows\SysWOW64\oleacc.dll - ok
08:14:56.0312 5076 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
08:14:56.0312 5076 C:\Windows\SysWOW64\ws2_32.dll - ok
08:14:56.0312 5076 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
08:14:56.0312 5076 C:\Windows\SysWOW64\wsock32.dll - ok
08:14:56.0312 5076 [ 8290E04F8A4D9594BFB53D520B677B8A ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\vcl120.bpl
08:14:56.0312 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\vcl120.bpl - ok
08:14:56.0312 5076 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
08:14:56.0312 5076 C:\Windows\SysWOW64\msimg32.dll - ok
08:14:56.0312 5076 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
08:14:56.0312 5076 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
08:14:56.0327 5076 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
08:14:56.0327 5076 C:\Windows\SysWOW64\shell32.dll - ok
08:14:56.0327 5076 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
08:14:56.0327 5076 C:\Windows\SysWOW64\shlwapi.dll - ok
08:14:56.0327 5076 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
08:14:56.0327 5076 C:\Windows\SysWOW64\comdlg32.dll - ok
08:14:56.0327 5076 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
08:14:56.0327 5076 C:\Windows\SysWOW64\winspool.drv - ok
08:14:56.0343 5076 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
08:14:56.0343 5076 C:\Windows\SysWOW64\oledlg.dll - ok
08:14:56.0343 5076 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
08:14:56.0343 5076 C:\Windows\SysWOW64\userenv.dll - ok
08:14:56.0343 5076 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
08:14:56.0343 5076 C:\Windows\SysWOW64\winmm.dll - ok
08:14:56.0343 5076 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
08:14:56.0343 5076 C:\Windows\SysWOW64\imm32.dll - ok
08:14:56.0343 5076 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
08:14:56.0343 5076 C:\Windows\SysWOW64\msctf.dll - ok
08:14:56.0343 5076 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
08:14:56.0358 5076 C:\Windows\SysWOW64\profapi.dll - ok
08:14:56.0358 5076 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
08:14:56.0358 5076 C:\Windows\System32\drivers\luafv.sys - ok
08:14:56.0358 5076 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
08:14:56.0358 5076 C:\Windows\System32\rpcss.dll - ok
08:14:56.0358 5076 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
08:14:56.0358 5076 C:\Windows\System32\RpcEpMap.dll - ok
08:14:56.0358 5076 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
08:14:56.0358 5076 C:\Windows\System32\wshqos.dll - ok
08:14:56.0358 5076 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
08:14:56.0358 5076 C:\Windows\System32\WSHTCPIP.DLL - ok
08:14:56.0358 5076 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
08:14:56.0358 5076 C:\Windows\System32\FirewallAPI.dll - ok
08:14:56.0374 5076 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
08:14:56.0374 5076 C:\Windows\System32\authui.dll - ok
08:14:56.0374 5076 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
08:14:56.0374 5076 C:\Windows\System32\LogonUI.exe - ok
08:14:56.0374 5076 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
08:14:56.0374 5076 C:\Windows\System32\version.dll - ok
08:14:56.0374 5076 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
08:14:56.0374 5076 C:\Windows\System32\wevtsvc.dll - ok
08:14:56.0374 5076 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
08:14:56.0374 5076 C:\Windows\System32\cryptui.dll - ok
08:14:56.0390 5076 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
08:14:56.0390 5076 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
08:14:56.0390 5076 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
08:14:56.0390 5076 C:\Windows\System32\audiosrv.dll - ok
08:14:56.0390 5076 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
08:14:56.0390 5076 C:\Windows\System32\netprofm.dll - ok
08:14:56.0390 5076 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
08:14:56.0390 5076 C:\Windows\System32\FntCache.dll - ok
08:14:56.0390 5076 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
08:14:56.0390 5076 C:\Windows\System32\avrt.dll - ok
08:14:56.0390 5076 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
08:14:56.0390 5076 C:\Windows\System32\mmcss.dll - ok
08:14:56.0405 5076 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
08:14:56.0405 5076 C:\Windows\System32\MMDevAPI.dll - ok
08:14:56.0405 5076 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
08:14:56.0405 5076 C:\Windows\System32\adtschema.dll - ok
08:14:56.0405 5076 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
08:14:56.0405 5076 C:\Windows\System32\propsys.dll - ok
08:14:56.0405 5076 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
08:14:56.0405 5076 C:\Windows\System32\samlib.dll - ok
08:14:56.0405 5076 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
08:14:56.0405 5076 C:\Windows\System32\shacct.dll - ok
08:14:56.0405 5076 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
08:14:56.0405 5076 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
08:14:56.0421 5076 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
08:14:56.0421 5076 C:\Windows\System32\MPSSVC.dll - ok
08:14:56.0421 5076 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
08:14:56.0421 5076 C:\Windows\System32\uxtheme.dll - ok
08:14:56.0421 5076 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
08:14:56.0421 5076 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
08:14:56.0421 5076 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
08:14:56.0421 5076 C:\Windows\System32\WUDFPlatform.dll - ok
08:14:56.0421 5076 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
08:14:56.0421 5076 C:\Windows\System32\profsvc.dll - ok
08:14:56.0436 5076 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
08:14:56.0436 5076 C:\Windows\System32\audiodg.exe - ok
08:14:56.0436 5076 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
08:14:56.0436 5076 C:\Windows\System32\drivers\fltMgr.sys - ok
08:14:56.0436 5076 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
08:14:56.0436 5076 C:\Windows\System32\ntmarta.dll - ok
08:14:56.0436 5076 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
08:14:56.0436 5076 C:\Windows\System32\PSHED.DLL - ok
08:14:56.0436 5076 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
08:14:56.0436 5076 C:\Windows\System32\gpsvc.dll - ok
08:14:56.0436 5076 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
08:14:56.0436 5076 C:\Windows\System32\dui70.dll - ok
08:14:56.0452 5076 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
08:14:56.0452 5076 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
08:14:56.0452 5076 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
08:14:56.0452 5076 C:\Windows\System32\nlaapi.dll - ok
08:14:56.0452 5076 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
08:14:56.0452 5076 C:\Windows\System32\themeservice.dll - ok
08:14:56.0452 5076 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
08:14:56.0452 5076 C:\Windows\System32\atl.dll - ok
08:14:56.0452 5076 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
08:14:56.0452 5076 C:\Windows\System32\dsrole.dll - ok
08:14:56.0452 5076 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
08:14:56.0452 5076 C:\Windows\System32\es.dll - ok
08:14:56.0468 5076 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
08:14:56.0468 5076 C:\Windows\System32\slc.dll - ok
08:14:56.0468 5076 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
08:14:56.0468 5076 C:\Windows\System32\comres.dll - ok
08:14:56.0468 5076 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
08:14:56.0468 5076 C:\Windows\System32\drivers\lltdio.sys - ok
08:14:56.0468 5076 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
08:14:56.0468 5076 C:\Windows\System32\drivers\rspndr.sys - ok
08:14:56.0468 5076 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
08:14:56.0468 5076 C:\Windows\System32\duser.dll - ok
08:14:56.0468 5076 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
08:14:56.0468 5076 C:\Windows\System32\Sens.dll - ok
08:14:56.0483 5076 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
08:14:56.0483 5076 C:\Windows\System32\uxsms.dll - ok
08:14:56.0483 5076 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
08:14:56.0483 5076 C:\Windows\System32\wtsapi32.dll - ok
08:14:56.0483 5076 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
08:14:56.0483 5076 C:\Windows\System32\SndVolSSO.dll - ok
08:14:56.0483 5076 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
08:14:56.0483 5076 C:\Windows\System32\hid.dll - ok
08:14:56.0483 5076 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
08:14:56.0483 5076 C:\Windows\System32\IPHLPAPI.DLL - ok
08:14:56.0499 5076 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
08:14:56.0499 5076 C:\Windows\System32\lmhsvc.dll - ok
08:14:56.0499 5076 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
08:14:56.0499 5076 C:\Windows\System32\nrpsrv.dll - ok
08:14:56.0499 5076 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
08:14:56.0499 5076 C:\Windows\System32\nsisvc.dll - ok
08:14:56.0499 5076 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
08:14:56.0499 5076 C:\Windows\System32\winnsi.dll - ok
08:14:56.0499 5076 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
08:14:56.0499 5076 C:\Windows\System32\dhcpcore.dll - ok
08:14:56.0499 5076 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
08:14:56.0499 5076 C:\Windows\System32\dnsrslvr.dll - ok
08:14:56.0499 5076 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
08:14:56.0499 5076 C:\Windows\System32\dwmapi.dll - ok
08:14:56.0514 5076 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
08:14:56.0514 5076 C:\Windows\System32\xmllite.dll - ok
08:14:56.0514 5076 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
08:14:56.0514 5076 C:\Windows\System32\dhcpcore6.dll - ok
08:14:56.0514 5076 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
08:14:56.0514 5076 C:\Windows\System32\FWPUCLNT.DLL - ok
08:14:56.0514 5076 [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
08:14:56.0514 5076 C:\Windows\System32\WindowsCodecs.dll - ok
08:14:56.0514 5076 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
08:14:56.0514 5076 C:\Windows\System32\dhcpcsvc.dll - ok
08:14:56.0514 5076 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
08:14:56.0514 5076 C:\Windows\System32\dhcpcsvc6.dll - ok
08:14:56.0530 5076 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
08:14:56.0530 5076 C:\Windows\System32\dnsext.dll - ok
08:14:56.0530 5076 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
08:14:56.0530 5076 C:\Windows\System32\shsvcs.dll - ok
08:14:56.0530 5076 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
08:14:56.0530 5076 C:\Windows\System32\schedsvc.dll - ok
08:14:56.0530 5076 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
08:14:56.0530 5076 C:\Windows\System32\netapi32.dll - ok
08:14:56.0530 5076 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
08:14:56.0530 5076 C:\Windows\System32\netutils.dll - ok
08:14:56.0546 5076 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
08:14:56.0546 5076 C:\Windows\System32\ktmw32.dll - ok
08:14:56.0546 5076 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
08:14:56.0546 5076 C:\Windows\System32\wkscli.dll - ok
08:14:56.0546 5076 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
08:14:56.0546 5076 C:\Windows\System32\winbrand.dll - ok
08:14:56.0546 5076 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
08:14:56.0546 5076 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
08:14:56.0546 5076 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
08:14:56.0546 5076 C:\Windows\System32\VaultCredProvider.dll - ok
08:14:56.0546 5076 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
08:14:56.0546 5076 C:\Windows\System32\BioCredProv.dll - ok
08:14:56.0546 5076 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
08:14:56.0546 5076 C:\Windows\System32\fveapi.dll - ok
08:14:56.0561 5076 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
08:14:56.0561 5076 C:\Windows\System32\winbio.dll - ok
08:14:56.0561 5076 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
08:14:56.0561 5076 C:\Windows\System32\credui.dll - ok
08:14:56.0561 5076 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
08:14:56.0561 5076 C:\Windows\System32\certCredProvider.dll - ok
08:14:56.0561 5076 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
08:14:56.0561 5076 C:\Windows\System32\fvecerts.dll - ok
08:14:56.0561 5076 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
08:14:56.0561 5076 C:\Windows\System32\samcli.dll - ok
08:14:56.0577 5076 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
08:14:56.0577 5076 C:\Windows\System32\tbs.dll - ok
08:14:56.0577 5076 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
08:14:56.0577 5076 C:\Windows\System32\vaultcli.dll - ok
08:14:56.0577 5076 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
08:14:56.0577 5076 C:\Windows\System32\rasplap.dll - ok
08:14:56.0577 5076 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
08:14:56.0577 5076 C:\Windows\System32\taskcomp.dll - ok
08:14:56.0577 5076 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
08:14:56.0577 5076 C:\Windows\System32\rasapi32.dll - ok
08:14:56.0624 5076 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
08:14:56.0624 5076 C:\Windows\System32\drivers\http.sys - ok
08:14:56.0624 5076 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
08:14:56.0624 5076 C:\Windows\System32\rasman.dll - ok
08:14:56.0624 5076 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
08:14:56.0624 5076 C:\Windows\System32\rtutils.dll - ok
08:14:56.0624 5076 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
08:14:56.0624 5076 C:\Windows\System32\UXInit.dll - ok
08:14:56.0624 5076 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
08:14:56.0624 5076 C:\Windows\System32\spoolsv.exe - ok
08:14:56.0624 5076 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
08:14:56.0624 5076 C:\Windows\System32\oleacc.dll - ok
08:14:56.0639 5076 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
08:14:56.0639 5076 C:\Windows\System32\UIAutomationCore.dll - ok
08:14:56.0639 5076 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
08:14:56.0639 5076 C:\Windows\System32\BFE.DLL - ok
08:14:56.0639 5076 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
08:14:56.0639 5076 C:\Windows\System32\wiarpc.dll - ok
08:14:56.0639 5076 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
08:14:56.0639 5076 C:\Windows\System32\imageres.dll - ok
08:14:56.0639 5076 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
08:14:56.0639 5076 C:\Windows\System32\drivers\bowser.sys - ok
08:14:56.0639 5076 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
08:14:56.0639 5076 C:\Windows\System32\drivers\mpsdrv.sys - ok
08:14:56.0655 5076 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
08:14:56.0655 5076 C:\Windows\System32\drivers\mrxsmb.sys - ok
08:14:56.0655 5076 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
08:14:56.0655 5076 C:\Windows\System32\drivers\mrxsmb10.sys - ok
08:14:56.0655 5076 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
08:14:56.0655 5076 C:\Windows\System32\drivers\mrxsmb20.sys - ok
08:14:56.0655 5076 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
08:14:56.0655 5076 C:\Windows\System32\wkssvc.dll - ok
08:14:56.0655 5076 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
08:14:56.0655 5076 C:\Windows\System32\wfapigp.dll - ok
08:14:56.0670 5076 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:14:56.0670 5076 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
08:14:56.0670 5076 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
08:14:56.0670 5076 C:\Windows\SysWOW64\crypt32.dll - ok
08:14:56.0670 5076 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
08:14:56.0670 5076 C:\Windows\SysWOW64\msasn1.dll - ok
08:14:56.0670 5076 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
08:14:56.0670 5076 C:\Windows\SysWOW64\wintrust.dll - ok
08:14:56.0670 5076 [ B3892E6DA8E2C8CE4B0A9D3EB9A185E5 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll
08:14:56.0670 5076 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll - ok
08:14:56.0686 5076 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
08:14:56.0686 5076 C:\Windows\System32\mscms.dll - ok
08:14:56.0686 5076 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:14:56.0686 5076 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
08:14:56.0686 5076 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
08:14:56.0686 5076 C:\Windows\System32\pcasvc.dll - ok
08:14:56.0686 5076 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
08:14:56.0686 5076 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
08:14:56.0686 5076 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
08:14:56.0686 5076 C:\Windows\System32\snmptrap.exe - ok
08:14:56.0686 5076 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
08:14:56.0686 5076 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
08:14:56.0702 5076 [ 91A8E32B00BF7899EDAB6783287DDDA6 ] C:\Windows\System32\PeerDistSh.dll
08:14:56.0702 5076 C:\Windows\System32\PeerDistSh.dll - ok
08:14:56.0702 5076 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
08:14:56.0702 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
08:14:56.0702 5076 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
08:14:56.0702 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
08:14:56.0702 5076 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
08:14:56.0702 5076 C:\Windows\System32\provsvc.dll - ok
08:14:56.0702 5076 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
08:14:56.0702 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
08:14:56.0717 5076 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
08:14:56.0717 5076 C:\Windows\System32\sstpsvc.dll - ok
08:14:56.0717 5076 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
08:14:56.0717 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
08:14:56.0717 5076 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
08:14:56.0717 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
08:14:56.0717 5076 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
08:14:56.0717 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
08:14:56.0717 5076 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
08:14:56.0717 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
08:14:56.0717 5076 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
08:14:56.0717 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
08:14:56.0733 5076 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
08:14:56.0733 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
08:14:56.0733 5076 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
08:14:56.0733 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
08:14:56.0733 5076 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
08:14:56.0733 5076 C:\Windows\System32\dllhost.exe - ok
08:14:56.0733 5076 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
08:14:56.0733 5076 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
08:14:56.0733 5076 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
08:14:56.0733 5076 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
08:14:56.0748 5076 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
08:14:56.0748 5076 C:\Windows\SysWOW64\setupapi.dll - ok
08:14:56.0748 5076 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
08:14:56.0748 5076 C:\Windows\System32\IDStore.dll - ok
08:14:56.0748 5076 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
08:14:56.0748 5076 C:\Windows\System32\taskhost.exe - ok
08:14:56.0748 5076 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
08:14:56.0748 5076 C:\Windows\SysWOW64\cfgmgr32.dll - ok
08:14:56.0748 5076 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
08:14:56.0748 5076 C:\Windows\SysWOW64\devobj.dll - ok
08:14:56.0748 5076 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
08:14:56.0748 5076 C:\Windows\SysWOW64\dnssd.dll - ok
08:14:56.0764 5076 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
08:14:56.0764 5076 C:\Windows\SysWOW64\wtsapi32.dll - ok
08:14:56.0764 5076 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
08:14:56.0764 5076 C:\Windows\System32\mpr.dll - ok
08:14:56.0764 5076 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
08:14:56.0764 5076 C:\Windows\SysWOW64\ntmarta.dll - ok
08:14:56.0764 5076 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
08:14:56.0764 5076 C:\Windows\SysWOW64\Wldap32.dll - ok
08:14:56.0764 5076 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
08:14:56.0764 5076 C:\Program Files\Bonjour\mdnsNSP.dll - ok
08:14:56.0764 5076 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
08:14:56.0764 5076 C:\Program Files\Bonjour\mDNSResponder.exe - ok
08:14:56.0780 5076 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
08:14:56.0780 5076 C:\Windows\System32\taskeng.exe - ok
08:14:56.0780 5076 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
08:14:56.0780 5076 C:\Windows\System32\userinit.exe - ok
08:14:56.0780 5076 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
08:14:56.0780 5076 C:\Windows\SysWOW64\mswsock.dll - ok
08:14:56.0780 5076 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
08:14:56.0780 5076 C:\Windows\System32\cryptsvc.dll - ok
08:14:56.0780 5076 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
08:14:56.0780 5076 C:\Windows\System32\dwm.exe - ok
08:14:56.0780 5076 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
08:14:56.0780 5076 C:\Windows\System32\dwmredir.dll - ok
08:14:56.0795 5076 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
08:14:56.0795 5076 C:\Windows\System32\efssvc.dll - ok
08:14:56.0795 5076 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
08:14:56.0795 5076 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
08:14:56.0795 5076 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
08:14:56.0795 5076 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
08:14:56.0795 5076 [ 2973B4EB7BE10A0D491B2037DCAAE88F ] C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
08:14:56.0795 5076 C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe - ok
08:14:56.0795 5076 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
08:14:56.0795 5076 C:\Windows\System32\dps.dll - ok
08:14:56.0811 5076 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
08:14:56.0811 5076 C:\Windows\System32\dwmcore.dll - ok
08:14:56.0811 5076 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
08:14:56.0811 5076 C:\Windows\System32\efscore.dll - ok
08:14:56.0811 5076 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
08:14:56.0811 5076 C:\Windows\System32\rasadhlp.dll - ok
08:14:56.0811 5076 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
08:14:56.0811 5076 C:\Windows\System32\umb.dll - ok
08:14:56.0811 5076 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
08:14:56.0811 5076 C:\Windows\System32\cryptnet.dll - ok
08:14:56.0811 5076 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
08:14:56.0811 5076 C:\Windows\System32\efsutil.dll - ok
08:14:56.0826 5076 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
08:14:56.0826 5076 C:\Windows\System32\localspl.dll - ok
08:14:56.0826 5076 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
08:14:56.0826 5076 C:\Windows\System32\vssapi.dll - ok
08:14:56.0826 5076 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
08:14:56.0826 5076 C:\Windows\SysWOW64\mscoree.dll - ok
08:14:56.0826 5076 [ CFE0CEE587F9CEA4C29DEEC6D85FC91C ] C:\Windows\SysWOW64\wininet.dll
08:14:56.0826 5076 C:\Windows\SysWOW64\wininet.dll - ok
08:14:56.0826 5076 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
08:14:56.0826 5076 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
08:14:56.0842 5076 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
08:14:56.0842 5076 C:\Windows\System32\d3d10_1.dll - ok
08:14:56.0842 5076 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
08:14:56.0842 5076 C:\Windows\System32\PlaySndSrv.dll - ok
08:14:56.0842 5076 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
08:14:56.0842 5076 C:\Windows\System32\spoolss.dll - ok
08:14:56.0842 5076 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
08:14:56.0842 5076 C:\Windows\System32\taskschd.dll - ok
08:14:56.0842 5076 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
08:14:56.0842 5076 C:\Windows\System32\TSChannel.dll - ok
08:14:56.0842 5076 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
08:14:56.0842 5076 C:\Windows\System32\d3d10_1core.dll - ok
08:14:56.0858 5076 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
08:14:56.0858 5076 C:\Windows\System32\dxgi.dll - ok
08:14:56.0858 5076 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
08:14:56.0858 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
08:14:56.0858 5076 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
08:14:56.0858 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
08:14:56.0858 5076 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
08:14:56.0858 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
08:14:56.0858 5076 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
08:14:56.0858 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
08:14:56.0858 5076 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
08:14:56.0858 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
08:14:56.0873 5076 [ B5DEC0D4CBBC333CA99FE10B06D4747E ] C:\Windows\SysWOW64\iertutil.dll
08:14:56.0873 5076 C:\Windows\SysWOW64\iertutil.dll - ok
08:14:56.0873 5076 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
08:14:56.0873 5076 C:\Windows\System32\winspool.drv - ok
08:14:56.0873 5076 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
08:14:56.0873 5076 C:\Windows\System32\MsCtfMonitor.dll - ok
08:14:56.0873 5076 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
08:14:56.0873 5076 C:\Windows\System32\msutb.dll - ok
08:14:56.0873 5076 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
08:14:56.0873 5076 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
08:14:56.0873 5076 [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
08:14:56.0873 5076 C:\Windows\System32\d3d11.dll - ok
08:14:56.0889 5076 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
08:14:56.0889 5076 C:\Windows\System32\HotStartUserAgent.dll - ok
08:14:56.0889 5076 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
08:14:56.0889 5076 C:\Windows\System32\vsstrace.dll - ok
08:14:56.0889 5076 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
08:14:56.0889 5076 C:\Windows\System32\esent.dll - ok
08:14:56.0889 5076 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
08:14:56.0889 5076 C:\Windows\explorer.exe - ok
08:14:56.0889 5076 [ 8CE9DA018A219B5E59209AFDFE6D698A ] C:\Windows\System32\CNMLMA7.DLL
08:14:56.0889 5076 C:\Windows\System32\CNMLMA7.DLL - ok
08:14:56.0904 5076 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
08:14:56.0904 5076 C:\Windows\System32\PrintIsolationProxy.dll - ok
08:14:56.0904 5076 [ 82A98D0EB83505529AD81E4C1FADC37D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
08:14:56.0904 5076 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
08:14:56.0904 5076 [ 7F725B746447B05B9154F57EFBF4F67E ] C:\Windows\System32\CNMN6PPM.DLL
08:14:56.0904 5076 C:\Windows\System32\CNMN6PPM.DLL - ok
08:14:56.0904 5076 [ 0AFFF58CC116399FADCDB76B3E5EEA35 ] C:\Windows\System32\CNCF2Lm.DLL
08:14:56.0904 5076 C:\Windows\System32\CNCF2Lm.DLL - ok
08:14:56.0904 5076 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
08:14:56.0904 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
08:14:56.0904 5076 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
08:14:56.0904 5076 C:\Windows\System32\FXSMON.dll - ok
08:14:56.0904 5076 [ 42EFBA31AB9F5021025CD626659E8FCF ] C:\Windows\System32\nvwgf2umx.dll
08:14:56.0904 5076 C:\Windows\System32\nvwgf2umx.dll - ok
08:14:56.0920 5076 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
08:14:56.0920 5076 C:\Windows\System32\tcpmon.dll - ok
08:14:56.0920 5076 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
08:14:56.0920 5076 C:\Windows\System32\snmpapi.dll - ok
08:14:56.0920 5076 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
08:14:56.0920 5076 C:\Windows\System32\wsnmp32.dll - ok
08:14:56.0920 5076 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
08:14:56.0920 5076 C:\Windows\System32\winmm.dll - ok
08:14:56.0920 5076 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
08:14:56.0920 5076 C:\Windows\System32\msxml6.dll - ok
08:14:56.0936 5076 [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
08:14:56.0936 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
08:14:56.0936 5076 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
08:14:56.0936 5076 C:\Windows\System32\ExplorerFrame.dll - ok
08:14:56.0936 5076 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
08:14:56.0936 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
08:14:56.0936 5076 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
08:14:56.0936 5076 C:\Windows\System32\usbmon.dll - ok
08:14:56.0936 5076 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
08:14:56.0936 5076 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
08:14:56.0936 5076 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
08:14:56.0936 5076 C:\Windows\SysWOW64\winnsi.dll - ok
08:14:56.0951 5076 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
08:14:56.0951 5076 C:\Windows\System32\WSDMon.dll - ok
08:14:56.0951 5076 [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
08:14:56.0951 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
08:14:56.0951 5076 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
08:14:56.0951 5076 C:\Windows\System32\webservices.dll - ok
08:14:56.0951 5076 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
08:14:56.0951 5076 C:\Windows\System32\WSDApi.dll - ok
08:14:56.0951 5076 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
08:14:56.0951 5076 C:\Windows\System32\EhStorShell.dll - ok
08:14:56.0951 5076 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
08:14:56.0951 5076 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
08:14:56.0967 5076 [ 32802C0F6FC7C8F561B9D91F52A46421 ] C:\Windows\System32\cscui.dll
08:14:56.0967 5076 C:\Windows\System32\cscui.dll - ok
08:14:56.0967 5076 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
08:14:56.0967 5076 C:\Windows\System32\fundisc.dll - ok
08:14:56.0967 5076 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
08:14:56.0967 5076 C:\Windows\System32\uDWM.dll - ok
08:14:56.0967 5076 [ FDA1BA7B2179F29D6DEB3DEC9C9037D0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll
08:14:56.0967 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\3f95a6d480ed1ebe45cf27b770ba94ed\mscorlib.ni.dll - ok
08:14:56.0967 5076 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
08:14:56.0967 5076 C:\Windows\System32\cscapi.dll - ok
08:14:56.0967 5076 [ 7EE5F17A21D9A9101207DF4BC37B085D ] C:\Windows\System32\cscdll.dll
08:14:56.0967 5076 C:\Windows\System32\cscdll.dll - ok
08:14:56.0982 5076 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
08:14:56.0982 5076 C:\Windows\System32\fdPnp.dll - ok
08:14:56.0982 5076 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
08:14:56.0982 5076 C:\Windows\System32\ntshrui.dll - ok
08:14:56.0982 5076 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
08:14:56.0982 5076 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
08:14:56.0982 5076 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
08:14:56.0982 5076 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
08:14:56.0982 5076 [ 2344AA330F5522D4687B0CB666865113 ] C:\Windows\System32\spool\prtprocs\x64\CNMPDA7.DLL
08:14:56.0982 5076 C:\Windows\System32\spool\prtprocs\x64\CNMPDA7.DLL - ok
08:14:56.0982 5076 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
08:14:56.0982 5076 C:\Windows\System32\win32spl.dll - ok
08:14:56.0998 5076 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
08:14:56.0998 5076 C:\Windows\System32\inetpp.dll - ok
08:14:56.0998 5076 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
08:14:56.0998 5076 C:\Windows\System32\IconCodecService.dll - ok
08:14:56.0998 5076 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
08:14:56.0998 5076 C:\Windows\SysWOW64\clbcatq.dll - ok
08:14:56.0998 5076 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
08:14:56.0998 5076 C:\Windows\SysWOW64\propsys.dll - ok
08:14:56.0998 5076 [ A57750E129AAE76E933417C8CD63B256 ] C:\Windows\System32\spool\drivers\x64\3\CNCFIMm.DLL
08:14:56.0998 5076 C:\Windows\System32\spool\drivers\x64\3\CNCFIMm.DLL - ok
08:14:57.0014 5076 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
08:14:57.0014 5076 C:\Windows\System32\ntprint.dll - ok
08:14:57.0014 5076 [ 5A78D672EAE975D40DE35CE6B650282B ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
08:14:57.0014 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe - ok
08:14:57.0014 5076 [ F58732600FC92413A8B2451FEC5B2FC9 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl
08:14:57.0014 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl - ok
08:14:57.0014 5076 [ 114CF6C8F5897162DFC00A7C920DDF16 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl
08:14:57.0014 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl - ok
08:14:57.0014 5076 [ E5BC8D93CDCB957146D971647849A154 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
08:14:57.0014 5076 C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
08:14:57.0029 5076 [ 8838B1D35DA190061890A8FED8596EAE ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl
08:14:57.0029 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl - ok
08:14:57.0029 5076 [ 7AFACEB3478DABF686122C3A74FC5C11 ] C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreLibrary.dll
08:14:57.0029 5076 C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreLibrary.dll - ok
08:14:57.0029 5076 [ F22344A88B6C55AEF9C23FB7A6589384 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\taskmgr.dll
08:14:57.0029 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\taskmgr.dll - ok
08:14:57.0029 5076 [ D7999068E94589045BB8C5380AC79937 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\15872842e3e63ddf0f720f406706198e\System.ni.dll
08:14:57.0029 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\15872842e3e63ddf0f720f406706198e\System.ni.dll - ok
08:14:57.0029 5076 [ 31C364E11F4F37160AF8716861BB5039 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\datastate.dll
08:14:57.0029 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\datastate.dll - ok
08:14:57.0045 5076 [ 0DE5BA4CEFB5BC123C45B974A182557D ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\webres.dll
08:14:57.0045 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\webres.dll - ok
08:14:57.0045 5076 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
08:14:57.0045 5076 C:\Windows\SysWOW64\uxtheme.dll - ok
08:14:57.0045 5076 [ CA618958889A8BA0E37E6E5E59B73BD5 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\27dcf04ed7a3506045597c02a5a1fc31\System.Core.ni.dll
08:14:57.0045 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\27dcf04ed7a3506045597c02a5a1fc31\System.Core.ni.dll - ok
08:14:57.0045 5076 [ 13445ABDCFBACDC4DDBCDB84AB750469 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d01a925ecd339eae8ea1da8488eb2283\System.Xml.Linq.ni.dll
08:14:57.0045 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d01a925ecd339eae8ea1da8488eb2283\System.Xml.Linq.ni.dll - ok
08:14:57.0045 5076 [ 07BBB3CBB86D2626B46BC1D210C4781B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
08:14:57.0045 5076 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
08:14:57.0045 5076 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
08:14:57.0045 5076 C:\Windows\SysWOW64\bcrypt.dll - ok
08:14:57.0060 5076 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
08:14:57.0060 5076 C:\Windows\SysWOW64\cryptsp.dll - ok
08:14:57.0060 5076 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
08:14:57.0060 5076 C:\Windows\SysWOW64\rsaenh.dll - ok
08:14:57.0060 5076 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
08:14:57.0060 5076 C:\Windows\SysWOW64\dwmapi.dll - ok
08:14:57.0060 5076 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
08:14:57.0060 5076 C:\Windows\SysWOW64\shfolder.dll - ok
08:14:57.0060 5076 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
08:14:57.0060 5076 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
08:14:57.0060 5076 [ EC6F7F18D3CE55E3BE7AA25D7724EC22 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\766ccafdc4a09b964aa9286a15bca48a\System.ServiceProcess.ni.dll
08:14:57.0060 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\766ccafdc4a09b964aa9286a15bca48a\System.ServiceProcess.ni.dll - ok
08:14:57.0076 5076 [ 5CA2A1DBE29AEA7F0B5D2848A8D03F58 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43cd41484df96d15df949eb17dd88152\System.Xml.ni.dll
08:14:57.0076 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\43cd41484df96d15df949eb17dd88152\System.Xml.ni.dll - ok
08:14:57.0076 5076 [ B485C6C423D725748E6577C23FC5D9F9 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\581e9ba9c81e2840a917fbd3d9661f85\System.Security.ni.dll
08:14:57.0076 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\581e9ba9c81e2840a917fbd3d9661f85\System.Security.ni.dll - ok
08:14:57.0076 5076 [ C5B04409186A27409BD069580208A6D3 ] C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
08:14:57.0076 5076 C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe - ok
08:14:57.0076 5076 [ D206AB16CF82C078D00FDAE9130A4B44 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\5de5d8c1c02e33789e3cf7e3f54c0ec9\System.Configuration.ni.dll
08:14:57.0076 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\5de5d8c1c02e33789e3cf7e3f54c0ec9\System.Configuration.ni.dll - ok
08:14:57.0076 5076 [ 7CF1B716372B89568AE4C0FE769F5869 ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
08:14:57.0076 5076 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe - ok
08:14:57.0092 5076 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
08:14:57.0092 5076 C:\Windows\System32\IKEEXT.DLL - ok
08:14:57.0092 5076 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
08:14:57.0092 5076 C:\Windows\SysWOW64\psapi.dll - ok
08:14:57.0092 5076 [ 69CB1A65B835EE6ADF9E16ED6D443072 ] C:\Windows\SysWOW64\urlmon.dll
08:14:57.0092 5076 C:\Windows\SysWOW64\urlmon.dll - ok
08:14:57.0092 5076 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
08:14:57.0092 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
08:14:57.0092 5076 [ 238A8DCD5F77A71283B09DC28C9EE51F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\a0445401f2473a1aa4b66c9c0791c7f6\System.ServiceModel.ni.dll
08:14:57.0092 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\a0445401f2473a1aa4b66c9c0791c7f6\System.ServiceModel.ni.dll - ok
08:14:57.0107 5076 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
08:14:57.0107 5076 C:\Windows\System32\vpnikeapi.dll - ok
08:14:57.0107 5076 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
08:14:57.0107 5076 C:\Windows\SysWOW64\apphelp.dll - ok
08:14:57.0107 5076 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
08:14:57.0107 5076 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
08:14:57.0107 5076 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
08:14:57.0107 5076 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
08:14:57.0107 5076 [ BEC27CF5564827EAB7F08C98EE55B1CC ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\pdm.dll
08:14:57.0107 5076 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\pdm.dll - ok
08:14:57.0107 5076 [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll
08:14:57.0107 5076 C:\Windows\AppPatch\acwow64.dll - ok
08:14:57.0123 5076 [ A190DA6546501CB4146BBCC0B6A3F48B ] C:\Windows\System32\msiexec.exe
08:14:57.0123 5076 C:\Windows\System32\msiexec.exe - ok
08:14:57.0123 5076 [ 94A0142B6AE74333BCCF6502D567CBB6 ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\msdbg2.dll
08:14:57.0123 5076 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\msdbg2.dll - ok
08:14:57.0123 5076 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
08:14:57.0123 5076 C:\Windows\System32\msi.dll - ok
08:14:57.0123 5076 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
08:14:57.0123 5076 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
08:14:57.0123 5076 [ 647C11534C7AF0C5FF599D930476511F ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\csm.dll
08:14:57.0123 5076 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\csm.dll - ok
08:14:57.0123 5076 [ 86987386B3A25F956760C6F43F982E47 ] C:\Windows\AppPatch\AppPatch64\AcLayers.dll
08:14:57.0123 5076 C:\Windows\AppPatch\AppPatch64\AcLayers.dll - ok
08:14:57.0138 5076 [ 8CFBCCDD3DF24D6194FC4B6DBDFA6383 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
08:14:57.0138 5076 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
08:14:57.0138 5076 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
08:14:57.0138 5076 C:\Windows\System32\sfc.dll - ok
08:14:57.0138 5076 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
08:14:57.0138 5076 C:\Windows\System32\sfc_os.dll - ok
08:14:57.0138 5076 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
08:14:57.0138 5076 C:\Windows\System32\netman.dll - ok
08:14:57.0138 5076 [ E78A365CC3E0FBFC018A33DCE01909F8 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvchst.exe
08:14:57.0138 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvchst.exe - ok
08:14:57.0138 5076 [ DB001FAEA818AE2E14A74E0ADC530FC0 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcp90.dll
08:14:57.0138 5076 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcp90.dll - ok
08:14:57.0154 5076 [ 7A03683FDEC05543A5CF7AA968129A1F ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccl100u.dll
08:14:57.0154 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccl100u.dll - ok
08:14:57.0154 5076 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
08:14:57.0154 5076 C:\Windows\SysWOW64\dbghelp.dll - ok
08:14:57.0154 5076 [ ABFF5F1E970DBC68E2CAE682378DC717 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccvrtrst.dll
08:14:57.0154 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccvrtrst.dll - ok
08:14:57.0154 5076 [ 177364F26F682529220AF4906131DC2A ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\efacli.dll
08:14:57.0154 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\efacli.dll - ok
08:14:57.0154 5076 [ 1286F9939CC963D379F87A0FB05F6184 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\symneti.dll
08:14:57.0154 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\symneti.dll - ok
08:14:57.0170 5076 [ 2CA0B0C4460898ED5371E4988954F466 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvc.dll
08:14:57.0170 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsvc.dll - ok
08:14:57.0170 5076 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
08:14:57.0170 5076 C:\Windows\System32\aepic.dll - ok
08:14:57.0170 5076 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
08:14:57.0170 5076 C:\Windows\System32\drivers\PEAuth.sys - ok
08:14:57.0170 5076 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
08:14:57.0170 5076 C:\Windows\System32\nlasvc.dll - ok
08:14:57.0170 5076 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
08:14:57.0170 5076 C:\Windows\System32\ncsi.dll - ok
08:14:57.0170 5076 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
08:14:57.0170 5076 C:\Windows\System32\drivers\secdrv.sys - ok
08:14:57.0185 5076 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
08:14:57.0185 5076 C:\Windows\System32\winhttp.dll - ok
08:14:57.0185 5076 [ 39D6403ADF3E02248C42F8AB6D940AF5 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\srtsp32.dll
08:14:57.0185 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\srtsp32.dll - ok
08:14:57.0185 5076 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
08:14:57.0185 5076 C:\Windows\System32\drivers\srvnet.sys - ok
08:14:57.0185 5076 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
08:14:57.0185 5076 C:\Windows\System32\httpapi.dll - ok
08:14:57.0185 5076 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
08:14:57.0185 5076 C:\Windows\System32\seclogon.dll - ok
08:14:57.0201 5076 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
08:14:57.0201 5076 C:\Windows\System32\sysmain.dll - ok
08:14:57.0201 5076 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
08:14:57.0201 5076 C:\Windows\System32\webio.dll - ok
08:14:57.0201 5076 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
08:14:57.0201 5076 C:\Windows\System32\wiaservc.dll - ok
08:14:57.0201 5076 [ DB7951146CA1E218E1D3BCFF115848A3 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccipc.dll
08:14:57.0201 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccipc.dll - ok
08:14:57.0201 5076 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
08:14:57.0201 5076 C:\Windows\System32\wiatrace.dll - ok
08:14:57.0201 5076 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
08:14:57.0201 5076 C:\Windows\System32\drivers\tcpipreg.sys - ok
08:14:57.0216 5076 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
08:14:57.0216 5076 C:\Windows\System32\tapisrv.dll - ok
08:14:57.0216 5076 [ 972E0F9D74FA23C0F5B0044A77C6C37E ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\dimaster.dll
08:14:57.0216 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\dimaster.dll - ok
08:14:57.0216 5076 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
08:14:57.0216 5076 C:\Windows\System32\ssdpapi.dll - ok
08:14:57.0216 5076 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
08:14:57.0216 5076 C:\Windows\System32\wsdchngr.dll - ok
08:14:57.0216 5076 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
08:14:57.0216 5076 C:\Windows\System32\wbem\WMIsvc.dll - ok
08:14:57.0216 5076 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
08:14:57.0216 5076 C:\Windows\System32\drivers\srv2.sys - ok
08:14:57.0232 5076 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
08:14:57.0232 5076 C:\Windows\System32\trkwks.dll - ok
08:14:57.0232 5076 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
08:14:57.0232 5076 C:\Windows\System32\wbemcomn.dll - ok
08:14:57.0232 5076 [ 7472FDF25CEBBFC65E45AD1C55431C9B ] C:\Windows\System32\CNC870C.dll
08:14:57.0232 5076 C:\Windows\System32\CNC870C.dll - ok
08:14:57.0232 5076 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
08:14:57.0232 5076 C:\Windows\SysWOW64\secur32.dll - ok
08:14:57.0232 5076 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
08:14:57.0232 5076 C:\Windows\SysWOW64\winsta.dll - ok
08:14:57.0248 5076 [ 6FEE15B53D624E06D86759258E1F6A9C ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccset.dll
08:14:57.0248 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccset.dll - ok
08:14:57.0248 5076 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
08:14:57.0248 5076 C:\Windows\System32\drivers\srv.sys - ok
08:14:57.0248 5076 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
08:14:57.0248 5076 C:\Windows\System32\rasmans.dll - ok
08:14:57.0248 5076 [ 2E5A72F5CF986088081B84ADD6AD458C ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cosvcplg.dll
08:14:57.0248 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cosvcplg.dll - ok
08:14:57.0248 5076 [ F04FE79A6DBE9FD9702FC2BB1C819311 ] C:\Windows\System32\CNC870L.dll
08:14:57.0248 5076 C:\Windows\System32\CNC870L.dll - ok
08:14:57.0248 5076 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
08:14:57.0248 5076 C:\Windows\System32\eappprxy.dll - ok
08:14:57.0263 5076 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
08:14:57.0263 5076 C:\Windows\System32\wscsvc.dll - ok
08:14:57.0263 5076 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
08:14:57.0263 5076 C:\Windows\System32\dbghelp.dll - ok
08:14:57.0263 5076 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
08:14:57.0263 5076 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
08:14:57.0263 5076 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
08:14:57.0263 5076 C:\Windows\SysWOW64\winhttp.dll - ok
08:14:57.0263 5076 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
08:14:57.0263 5076 C:\Windows\System32\wbem\fastprox.dll - ok
08:14:57.0279 5076 [ 493574E218AA18161D14EECFD572A0E8 ] C:\Windows\System32\CNHMCA6.dll
08:14:57.0279 5076 C:\Windows\System32\CNHMCA6.dll - ok
08:14:57.0279 5076 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
08:14:57.0279 5076 C:\Windows\SysWOW64\webio.dll - ok
08:14:57.0279 5076 [ 6B8E01AC17E3464CD6FD92E21F3C1A72 ] C:\Windows\twain_32\MX870 series\SG_ENU.dll
08:14:57.0279 5076 C:\Windows\twain_32\MX870 series\SG_ENU.dll - ok
08:14:57.0279 5076 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
08:14:57.0279 5076 C:\Windows\System32\ntdsapi.dll - ok
08:14:57.0279 5076 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
08:14:57.0279 5076 C:\Windows\System32\wbem\wbemprox.dll - ok
08:14:57.0294 5076 [ 794D4B48DFB6E999537C7C3947863463 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
08:14:57.0294 5076 C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe - ok
08:14:57.0294 5076 [ EF4E4231057F9887CDA435A0697A8334 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccgevt.dll
08:14:57.0294 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccgevt.dll - ok
08:14:57.0294 5076 [ F9AC3D7E84F7A996E921D9B2DA084F7D ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccglog.dll
08:14:57.0294 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccglog.dll - ok
08:14:57.0294 5076 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
08:14:57.0294 5076 C:\Windows\System32\rastapi.dll - ok
08:14:57.0294 5076 [ 2F33AF526667313ECC13D85DA103CC2E ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccjobmgr.dll
08:14:57.0294 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccjobmgr.dll - ok
08:14:57.0310 5076 [ C59F4FC0C28C236BDDE2FD35167DE054 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsubeng.dll
08:14:57.0310 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccsubeng.dll - ok
08:14:57.0310 5076 [ E2D85B3583965C725DBAAC3080858E51 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\e7b4706dfe18f29486dbaf5d35e01765\System.Runtime.DurableInstancing.ni.dll
08:14:57.0310 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\e7b4706dfe18f29486dbaf5d35e01765\System.Runtime.DurableInstancing.ni.dll - ok
08:14:57.0310 5076 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
08:14:57.0310 5076 C:\Windows\SysWOW64\wer.dll - ok
08:14:57.0310 5076 [ 939F327171B94A14D43A54D4BBF2129B ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccemlpxy.dll
08:14:57.0310 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccemlpxy.dll - ok
08:14:57.0310 5076 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
08:14:57.0310 5076 C:\Windows\System32\tapi32.dll - ok
08:14:57.0326 5076 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
08:14:57.0326 5076 C:\Windows\SysWOW64\Faultrep.dll - ok
08:14:57.0326 5076 [ 291FF480EE525B23575FE9D4DED60FAE ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\iron.dll
08:14:57.0326 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\iron.dll - ok
08:14:57.0326 5076 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
08:14:57.0326 5076 C:\Windows\System32\iphlpsvc.dll - ok
08:14:57.0326 5076 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
08:14:57.0326 5076 C:\Windows\System32\sqmapi.dll - ok
08:14:57.0326 5076 [ A4A6CC47F54E193D3610D422669FF995 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\sndsvc.dll
08:14:57.0326 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\sndsvc.dll - ok
08:14:57.0341 5076 [ FFEAB093FDFF1D8FCDE89A812ED2CEE8 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\ef7642a4f2724135d445e2ea36582e78\SMDiagnostics.ni.dll
08:14:57.0341 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\ef7642a4f2724135d445e2ea36582e78\SMDiagnostics.ni.dll - ok
08:14:57.0341 5076 [ 6B44700917F45B19B96B46B345B6F0E7 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe
08:14:57.0341 5076 C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe - ok
08:14:57.0341 5076 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
08:14:57.0341 5076 C:\Windows\System32\wdscore.dll - ok
08:14:57.0341 5076 [ 4BECDBD3B091FD49106362952EBF4C6A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\910fe53ec2122cf3a2ad11c2b2f5cbfd\System.Runtime.Serialization.ni.dll
08:14:57.0341 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\910fe53ec2122cf3a2ad11c2b2f5cbfd\System.Runtime.Serialization.ni.dll - ok
08:14:57.0341 5076 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
08:14:57.0341 5076 C:\Windows\SysWOW64\powrprof.dll - ok
08:14:57.0357 5076 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
08:14:57.0357 5076 C:\Windows\SysWOW64\sxs.dll - ok
08:14:57.0357 5076 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
08:14:57.0357 5076 C:\Windows\System32\browser.dll - ok
08:14:57.0357 5076 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
08:14:57.0357 5076 C:\Windows\System32\netmsg.dll - ok
08:14:57.0357 5076 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
08:14:57.0357 5076 C:\Windows\System32\srvsvc.dll - ok
08:14:57.0357 5076 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
08:14:57.0357 5076 C:\Windows\System32\wbem\WinMgmtR.dll - ok
08:14:57.0357 5076 [ 721487B5FE3D97D54D36122DB2FE8E1B ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\symrdrsv.dll
08:14:57.0357 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\symrdrsv.dll - ok
08:14:57.0372 5076 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
08:14:57.0372 5076 C:\Windows\System32\netcfgx.dll - ok
08:14:57.0372 5076 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
08:14:57.0372 5076 C:\Windows\SysWOW64\rasapi32.dll - ok
08:14:57.0372 5076 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
08:14:57.0372 5076 C:\Windows\System32\hnetcfg.dll - ok
08:14:57.0372 5076 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
08:14:57.0372 5076 C:\Windows\System32\sscore.dll - ok
08:14:57.0372 5076 [ 266AA534FDB2224395B4C9BE6F5BD7F0 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\symredir.dll
08:14:57.0372 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\symredir.dll - ok
08:14:57.0372 5076 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
08:14:57.0388 5076 C:\Windows\SysWOW64\rasman.dll - ok
08:14:57.0388 5076 [ 436B0D62726D579B409F5C5AF4BC747A ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\hncore.dll
08:14:57.0388 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\hncore.dll - ok
08:14:57.0388 5076 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
08:14:57.0388 5076 C:\Windows\SysWOW64\wbemcomn.dll - ok
08:14:57.0388 5076 [ 244C6722289F4869068992FD7D8A8832 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
08:14:57.0388 5076 C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
08:14:57.0388 5076 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
08:14:57.0388 5076 C:\Windows\System32\clusapi.dll - ok
08:14:57.0388 5076 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
08:14:57.0388 5076 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
08:14:57.0388 5076 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
08:14:57.0388 5076 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
08:14:57.0404 5076 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
08:14:57.0404 5076 C:\Windows\System32\resutils.dll - ok
08:14:57.0404 5076 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
08:14:57.0404 5076 C:\Windows\System32\aeevts.dll - ok
08:14:57.0404 5076 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
08:14:57.0404 5076 C:\Windows\System32\nci.dll - ok
08:14:57.0404 5076 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
08:14:57.0404 5076 C:\Windows\System32\wbem\wbemcore.dll - ok
08:14:57.0404 5076 [ 782CB63CA75FFEF178B0BBD7F8BAC17B ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\appmgr32.dll
08:14:57.0404 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\appmgr32.dll - ok
08:14:57.0404 5076 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
08:14:57.0404 5076 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
08:14:57.0419 5076 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
08:14:57.0419 5076 C:\Windows\System32\unimdm.tsp - ok
08:14:57.0419 5076 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
08:14:57.0419 5076 C:\Windows\System32\wbem\esscli.dll - ok
08:14:57.0419 5076 [ 935F3CB0C17C661D103570BA361B5DD9 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\isdatapr.dll
08:14:57.0419 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\isdatapr.dll - ok
08:14:57.0419 5076 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
08:14:57.0419 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
08:14:57.0419 5076 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
08:14:57.0419 5076 C:\Windows\System32\wbem\wbemsvc.dll - ok
08:14:57.0435 5076 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
08:14:57.0435 5076 C:\Windows\SysWOW64\rtutils.dll - ok
08:14:57.0435 5076 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
08:14:57.0435 5076 C:\Windows\System32\wbem\wmiutils.dll - ok
08:14:57.0435 5076 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
08:14:57.0435 5076 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
08:14:57.0435 5076 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
08:14:57.0435 5076 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
08:14:57.0450 5076 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
08:14:57.0450 5076 C:\Windows\SysWOW64\wship6.dll - ok
08:14:57.0450 5076 [ 8AA98F07E442A9D9293CFF3CB3DC8F88 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coFFPlgn.dll
08:14:57.0450 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coFFPlgn.dll - ok
08:14:57.0450 5076 [ 0367402897DD6927BD48B85F7B44A65C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\ebf949aee7febad1902974b1a2bd77a2\System.ServiceModel.Discovery.ni.dll
08:14:57.0450 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\ebf949aee7febad1902974b1a2bd77a2\System.ServiceModel.Discovery.ni.dll - ok
08:14:57.0450 5076 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
08:14:57.0450 5076 C:\Windows\SysWOW64\credssp.dll - ok
08:14:57.0450 5076 [ 451A47AC3AF27DAC986B3C18267E2C2F ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avmodule.dll
08:14:57.0450 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avmodule.dll - ok
08:14:57.0466 5076 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
08:14:57.0466 5076 C:\Windows\System32\wbem\repdrvfs.dll - ok
08:14:57.0466 5076 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
08:14:57.0466 5076 C:\Windows\SysWOW64\ntdsapi.dll - ok
08:14:57.0466 5076 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
08:14:57.0466 5076 C:\Windows\SysWOW64\wshqos.dll - ok
08:14:57.0466 5076 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
08:14:57.0466 5076 C:\Windows\SysWOW64\dnsapi.dll - ok
08:14:57.0466 5076 [ 2F5D445AB96764D0A9EB26DFA0D0F5A3 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\defutdcd.dll
08:14:57.0466 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\defutdcd.dll - ok
08:14:57.0466 5076 [ 175F791BDEA64F7A301B96107947DE2D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\b15622741724e17f1335c4771c3700a0\System.ServiceModel.Activities.ni.dll
08:14:57.0466 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\b15622741724e17f1335c4771c3700a0\System.ServiceModel.Activities.ni.dll - ok
08:14:57.0482 5076 [ 20429EBE00CD72682860F7F00CD50354 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ducclib.dll
08:14:57.0482 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ducclib.dll - ok
08:14:57.0482 5076 [ 44C71034567D1D98C49281F28B8D2BA4 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avpsvc32.dll
08:14:57.0482 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avpsvc32.dll - ok
08:14:57.0482 5076 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
08:14:57.0482 5076 C:\Windows\System32\uniplat.dll - ok
08:14:57.0482 5076 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
08:14:57.0482 5076 C:\Windows\SysWOW64\actxprxy.dll - ok
08:14:57.0497 5076 [ 757DD68F6010AA31FA87C93C942FDC37 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\asengine.dll
08:14:57.0497 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\asengine.dll - ok
08:14:57.0497 5076 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
08:14:57.0497 5076 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
08:14:57.0497 5076 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
08:14:57.0497 5076 C:\Windows\System32\ncobjapi.dll - ok
08:14:57.0497 5076 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
08:14:57.0497 5076 C:\Windows\System32\wbem\wbemess.dll - ok
08:14:57.0497 5076 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
08:14:57.0497 5076 C:\Windows\System32\kmddsp.tsp - ok
08:14:57.0497 5076 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
08:14:57.0497 5076 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
08:14:57.0513 5076 [ 9E7A07E4F4C2F6EBFC0DE39D9F781DDA ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\b26c0ed378c4b15c60cef0baada4e0dc\System.ServiceModel.Routing.ni.dll
08:14:57.0513 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\b26c0ed378c4b15c60cef0baada4e0dc\System.ServiceModel.Routing.ni.dll - ok
08:14:57.0513 5076 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
08:14:57.0513 5076 C:\Windows\System32\p2pcollab.dll - ok
08:14:57.0513 5076 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
08:14:57.0513 5076 C:\Windows\System32\wbem\NCProv.dll - ok
08:14:57.0513 5076 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
08:14:57.0513 5076 C:\Windows\System32\ndptsp.tsp - ok
08:14:57.0513 5076 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
08:14:57.0513 5076 C:\Windows\SysWOW64\rasadhlp.dll - ok
08:14:57.0513 5076 [ B4466BA28A527AA3C076DF1A782D3442 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\800370766976fd4ec232b4e29781717d\System.ServiceModel.Channels.ni.dll
08:14:57.0513 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\800370766976fd4ec232b4e29781717d\System.ServiceModel.Channels.ni.dll - ok
08:14:57.0528 5076 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
08:14:57.0528 5076 C:\Windows\System32\hidphone.tsp - ok
08:14:57.0528 5076 [ D0E20F0EF7D5ACCE19E6B4C400BEFE32 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\c1b67737c13c99776cde5989ec2885c8\System.IdentityModel.ni.dll
08:14:57.0528 5076 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\c1b67737c13c99776cde5989ec2885c8\System.IdentityModel.ni.dll - ok
08:14:57.0528 5076 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
08:14:57.0528 5076 C:\Windows\System32\QAGENTRT.DLL - ok
08:14:57.0528 5076 [ 45DC42B29A62D2C5E1658E9C0ADAFD64 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\NCW.dll
08:14:57.0528 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\NCW.dll - ok
08:14:57.0528 5076 [ FB83E56708103345BFDB8A2B7FF7BBA7 ] C:\Program Files (x86)\Garmin\Core Update Service\Ionic.Zip.dll
08:14:57.0528 5076 C:\Program Files (x86)\Garmin\Core Update Service\Ionic.Zip.dll - ok
08:14:57.0528 5076 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
08:14:57.0528 5076 C:\Windows\System32\fveui.dll - ok
08:14:57.0544 5076 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
08:14:57.0544 5076 C:\Windows\System32\rasppp.dll - ok
08:14:57.0544 5076 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
08:14:57.0544 5076 C:\Windows\System32\wuapi.dll - ok
08:14:57.0544 5076 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\SysWOW64\pcwum.dll
08:14:57.0544 5076 C:\Windows\SysWOW64\pcwum.dll - ok
08:14:57.0544 5076 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
08:14:57.0544 5076 C:\Windows\System32\cabinet.dll - ok
08:14:57.0544 5076 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
08:14:57.0544 5076 C:\Windows\System32\eappcfg.dll - ok
08:14:57.0560 5076 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
08:14:57.0560 5076 C:\Windows\System32\wups.dll - ok
08:14:57.0560 5076 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
08:14:57.0560 5076 C:\Windows\System32\vpnike.dll - ok
08:14:57.0560 5076 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
08:14:57.0560 5076 C:\Windows\System32\raschap.dll - ok
08:14:57.0560 5076 [ 3AB96E38084CAFC4C113BC3FD085B3DC ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avmail.dll
08:14:57.0560 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avmail.dll - ok
08:14:57.0560 5076 [ 73EC60501FE247C811B640F69E0FAE6B ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltlmc.dll
08:14:57.0560 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltlmc.dll - ok
08:14:57.0575 5076 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
08:14:57.0575 5076 C:\Windows\SysWOW64\ntshrui.dll - ok
08:14:57.0575 5076 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
08:14:57.0575 5076 C:\Windows\System32\ipnathlp.dll - ok
08:14:57.0575 5076 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
08:14:57.0575 5076 C:\Windows\System32\mprapi.dll - ok
08:14:57.0575 5076 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
08:14:57.0575 5076 C:\Windows\SysWOW64\ncrypt.dll - ok
08:14:57.0575 5076 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
08:14:57.0575 5076 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
08:14:57.0575 5076 [ 37F1F5CCD06334EE9D9C1E8FC986DD72 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\iserror.dll
08:14:57.0575 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\iserror.dll - ok
08:14:57.0575 5076 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
08:14:57.0575 5076 C:\Windows\System32\netshell.dll - ok
08:14:57.0591 5076 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
08:14:57.0591 5076 C:\Windows\SysWOW64\srvcli.dll - ok
08:14:57.0591 5076 [ FCB82479AE5DC880AD85B9DFCA4C2D45 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltlms.dll
08:14:57.0591 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltlms.dll - ok
08:14:57.0591 5076 [ BB03B27C614DAEC3FC9BD788B1F83309 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\CLT\cltLMSx.dll
08:14:57.0591 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\CLT\cltLMSx.dll - ok
08:14:57.0591 5076 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
08:14:57.0591 5076 C:\Windows\SysWOW64\cscapi.dll - ok
08:14:57.0591 5076 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
08:14:57.0591 5076 C:\Windows\SysWOW64\slc.dll - ok
08:14:57.0591 5076 [ BECAE02803277EFEC3FFB6C31FECA370 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\bhsvcplg.dll
08:14:57.0591 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\bhsvcplg.dll - ok
08:14:57.0606 5076 [ EDBDE5BE736E77A64D8D47069B536299 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ipsplug.dll
08:14:57.0606 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ipsplug.dll - ok
08:14:57.0606 5076 [ D724A1367B79F9BDD150BA0DC11DEDF1 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\isdatasv.dll
08:14:57.0606 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\isdatasv.dll - ok
08:14:57.0606 5076 [ 4F44EE5DCC36A26E02A9235D69CDE359 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwcore.dll
08:14:57.0606 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwcore.dll - ok
08:14:57.0606 5076 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
08:14:57.0606 5076 C:\Windows\System32\perftrack.dll - ok
08:14:57.0606 5076 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
08:14:57.0606 5076 C:\Windows\System32\SearchIndexer.exe - ok
08:14:57.0606 5076 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
08:14:57.0606 5076 C:\Windows\System32\wdi.dll - ok
08:14:57.0622 5076 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
08:14:57.0622 5076 C:\Windows\SysWOW64\netapi32.dll - ok
08:14:57.0622 5076 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
08:14:57.0622 5076 C:\Windows\SysWOW64\netutils.dll - ok
08:14:57.0622 5076 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
08:14:57.0622 5076 C:\Windows\SysWOW64\wkscli.dll - ok
08:14:57.0622 5076 [ 0137C7150F01DB5C2C36C3D98841BE07 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\dscli.dll
08:14:57.0622 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\dscli.dll - ok
08:14:57.0622 5076 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
08:14:57.0622 5076 C:\Windows\System32\appinfo.dll - ok
08:14:57.0622 5076 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
08:14:57.0622 5076 C:\Windows\System32\wer.dll - ok
08:14:57.0638 5076 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
08:14:57.0638 5076 C:\Windows\System32\tquery.dll - ok
08:14:57.0638 5076 [ 14D289F63D9538306CB560C4CD12172F ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130502.001\IDSxpx86.dll
08:14:57.0638 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130502.001\IDSxpx86.dll - ok
08:14:57.0638 5076 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
08:14:57.0638 5076 C:\Windows\System32\npmproxy.dll - ok
08:14:57.0638 5076 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
08:14:57.0638 5076 C:\Windows\System32\runonce.exe - ok
08:14:57.0638 5076 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
08:14:57.0638 5076 C:\Windows\System32\mssrch.dll - ok
08:14:57.0638 5076 [ A4ADF68950E010EDD6A643C2F4EC436B ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwgenplg.dll
08:14:57.0638 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwgenplg.dll - ok
08:14:57.0653 5076 [ 82C519ED383B337CFC8F998A06C57AC5 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\idsaux.dll
08:14:57.0653 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\idsaux.dll - ok
08:14:57.0653 5076 [ 9046CB953A6F4FBEDD399C87E31D1A0E ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwsetup.dll
08:14:57.0653 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwsetup.dll - ok
08:14:57.0653 5076 [ 0A828405EDC5A4FB8558BB685356B1E8 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\npctray.dll
08:14:57.0653 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\npctray.dll - ok
08:14:57.0653 5076 [ 33DBBF33E684C3876145A26196A50620 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwhelper.dll
08:14:57.0653 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwhelper.dll - ok
08:14:57.0653 5076 [ 0881FAF791DB7CE3182B13F967D54104 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ashelper.dll
08:14:57.0653 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ashelper.dll - ok
08:14:57.0669 5076 [ 6ACE34A451E8C5BB5379790D9FB1B60A ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\asoehook.dll
08:14:57.0669 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\asoehook.dll - ok
08:14:57.0669 5076 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
08:14:57.0669 5076 C:\Windows\SysWOW64\FirewallAPI.dll - ok
08:14:57.0669 5076 [ 1E3E02A9F1457E8084199CACCFDB0CC2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20130412.001\BHEngine.dll
08:14:57.0669 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20130412.001\BHEngine.dll - ok
08:14:57.0669 5076 [ BF2AD535B7BC7CCC0CF96CD422286E60 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avpapp32.dll
08:14:57.0669 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avpapp32.dll - ok
08:14:57.0669 5076 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
08:14:57.0669 5076 C:\Windows\System32\diagperf.dll - ok
08:14:57.0684 5076 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
08:14:57.0684 5076 C:\Windows\System32\hidserv.dll - ok
08:14:57.0684 5076 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
08:14:57.0684 5076 C:\Windows\System32\msidle.dll - ok
08:14:57.0684 5076 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
08:14:57.0684 5076 C:\Windows\System32\Apphlpdm.dll - ok
08:14:57.0684 5076 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
08:14:57.0684 5076 C:\Windows\System32\wpdbusenum.dll - ok
08:14:57.0684 5076 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
08:14:57.0684 5076 C:\Windows\System32\aelupsvc.dll - ok
08:14:57.0700 5076 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
08:14:57.0700 5076 C:\Windows\System32\IPSECSVC.DLL - ok
08:14:57.0700 5076 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
08:14:57.0700 5076 C:\Windows\System32\mssprxy.dll - ok
08:14:57.0700 5076 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
08:14:57.0700 5076 C:\Windows\System32\PortableDeviceApi.dll - ok
08:14:57.0700 5076 [ F5879CC8C94CB87E0B9E3A7EAD4E5DC8 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltaldis.dll
08:14:57.0700 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltaldis.dll - ok
08:14:57.0700 5076 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
08:14:57.0700 5076 C:\Windows\System32\drivers\WUDFRd.sys - ok
08:14:57.0716 5076 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
08:14:57.0716 5076 C:\Windows\System32\FwRemoteSvr.dll - ok
08:14:57.0716 5076 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
08:14:57.0716 5076 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
08:14:57.0716 5076 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
08:14:57.0716 5076 C:\Windows\SysWOW64\mssprxy.dll - ok
08:14:57.0716 5076 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
08:14:57.0716 5076 C:\Windows\System32\pnpts.dll - ok
08:14:57.0716 5076 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
08:14:57.0716 5076 C:\Windows\System32\radardt.dll - ok
08:14:57.0731 5076 [ 169EFEBE66BD1041A9D5B518E8D71687 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avifc.dll
08:14:57.0731 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\avifc.dll - ok
08:14:57.0731 5076 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
08:14:57.0731 5076 C:\Windows\System32\wdiasqmmodule.dll - ok
08:14:57.0731 5076 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
08:14:57.0731 5076 C:\Windows\System32\NapiNSP.dll - ok
08:14:57.0731 5076 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
08:14:57.0731 5076 C:\Windows\System32\pnrpnsp.dll - ok
08:14:57.0731 5076 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
08:14:57.0731 5076 C:\Windows\System32\winrnr.dll - ok
08:14:57.0747 5076 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
08:14:57.0747 5076 C:\Windows\System32\en-US\tquery.dll.mui - ok
08:14:57.0747 5076 [ DA40159AB82A2E9AF64F4E30B1BF05F0 ] C:\Program Files (x86)\Norton Internet Security\MUI\18.7.2.3\09\01\cltres.loc
08:14:57.0747 5076 C:\Program Files (x86)\Norton Internet Security\MUI\18.7.2.3\09\01\cltres.loc - ok
08:14:57.0747 5076 [ 2F26EF0396AE2D2B43A174A4BF3D28BC ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccscanw.dll
08:14:57.0747 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccscanw.dll - ok
08:14:57.0747 5076 [ AE60B9A32E648E65CB2C831D9E38C230 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ecmldr32.dll
08:14:57.0747 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ecmldr32.dll - ok
08:14:57.0747 5076 [ 876AFFC7ED37A39109E85E32947ABBF7 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\NAVENG32.DLL
08:14:57.0747 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\NAVENG32.DLL - ok
08:14:57.0762 5076 [ 9A7EAFFBC2BFDB27608BE7E417764FE3 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwsesal.dll
08:14:57.0762 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\fwsesal.dll - ok
08:14:57.0762 5076 [ 5815E0AFC8C671C26D1516C30E0887C6 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltelprv.dll
08:14:57.0762 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\cltelprv.dll - ok
08:14:57.0762 5076 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
08:14:57.0762 5076 C:\Windows\SysWOW64\samcli.dll - ok
08:14:57.0762 5076 [ 1C3764AF8EC3B328EBD5BC25A0CD8D18 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\uigadctl.dll
08:14:57.0762 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\uigadctl.dll - ok
08:14:57.0762 5076 [ D66D82989DCF0D0C269DC21E413E2208 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\ECMSVR32.DLL
08:14:57.0762 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\ECMSVR32.DLL - ok
08:14:57.0778 5076 [ C003991FCE02E03FAC432378F28084DC ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\codatapr.dll
08:14:57.0778 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\codatapr.dll - ok
08:14:57.0778 5076 [ 169193C626E22A1C215E9C370CDF8E3C ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\acctmgr.dll
08:14:57.0778 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\acctmgr.dll - ok
08:14:57.0778 5076 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
08:14:57.0778 5076 C:\Windows\SysWOW64\samlib.dll - ok
08:14:57.0778 5076 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130502.001\IPSFFPl.dll
08:14:57.0778 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130502.001\IPSFFPl.dll - ok
08:14:57.0778 5076 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
08:14:57.0778 5076 C:\Windows\System32\drivers\WUDFPf.sys - ok
08:14:57.0794 5076 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
08:14:57.0794 5076 C:\Windows\System32\WUDFSvc.dll - ok
08:14:57.0794 5076 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
08:14:57.0794 5076 C:\Windows\System32\WUDFHost.exe - ok
08:14:57.0794 5076 [ 0B2400E8CF909D044F618A3635DF8824 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\dec_abi.dll
08:14:57.0794 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\dec_abi.dll - ok
08:14:57.0794 5076 [ D2BBC72E0CDF8639C8274EDB395C9103 ] C:\Windows\SysWOW64\dinput.dll
08:14:57.0794 5076 C:\Windows\SysWOW64\dinput.dll - ok
08:14:57.0794 5076 [ 70512B221F1A69DD768C8555B0967F70 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\sdkcmn.dll
08:14:57.0794 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\sdkcmn.dll - ok
08:14:57.0794 5076 [ 42A1455259C73A84903FE7D1574920F4 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\uialert.dll
08:14:57.0794 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\uialert.dll - ok
08:14:57.0809 5076 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
08:14:57.0809 5076 C:\Windows\System32\WUDFx.dll - ok
08:14:57.0809 5076 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
08:14:57.0809 5076 C:\Windows\SysWOW64\netprofm.dll - ok
08:14:57.0809 5076 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
08:14:57.0809 5076 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
08:14:57.0809 5076 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
08:14:57.0809 5076 C:\Windows\SysWOW64\nlaapi.dll - ok
08:14:57.0809 5076 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFFPlgn\components\IPSFFPl.dll
08:14:57.0809 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFFPlgn\components\IPSFFPl.dll - ok
08:14:57.0825 5076 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
08:14:57.0825 5076 C:\Windows\SysWOW64\npmproxy.dll - ok
08:14:57.0825 5076 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
08:14:57.0825 5076 C:\Windows\System32\WMVCORE.DLL - ok
08:14:57.0825 5076 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\SysWOW64\prnfldr.dll
08:14:57.0825 5076 C:\Windows\SysWOW64\prnfldr.dll - ok
08:14:57.0825 5076 [ 956019F9950947A06389BAA6BE8438CA ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\NAVEX32A.DLL
08:14:57.0825 5076 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130502.021\NAVEX32A.DLL - ok
08:14:57.0825 5076 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
08:14:57.0825 5076 C:\Windows\System32\dimsjob.dll - ok
08:14:57.0825 5076 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
08:14:57.0825 5076 C:\Windows\System32\certcli.dll - ok
08:14:57.0840 5076 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
08:14:57.0840 5076 C:\Windows\System32\pautoenr.dll - ok
08:14:57.0840 5076 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
08:14:57.0840 5076 C:\Windows\System32\WMASF.DLL - ok
08:14:57.0840 5076 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
08:14:57.0840 5076 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
08:14:57.0840 5076 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
08:14:57.0840 5076 C:\Windows\System32\CertEnroll.dll - ok
08:14:57.0840 5076 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
08:14:57.0840 5076 C:\Windows\System32\PortableDeviceTypes.dll - ok
08:14:57.0840 5076 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
08:14:57.0840 5076 C:\Windows\SysWOW64\runonce.exe - ok
08:14:57.0856 5076 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
08:14:57.0856 5076 C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
08:14:57.0856 5076 [ 33C3A5CD1D4F95AED46D6C6081EDD3F3 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\bhclient.dll
08:14:57.0856 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\bhclient.dll - ok
08:14:57.0856 5076 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
08:14:57.0856 5076 C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
08:14:57.0856 5076 [ E9F81031963175D9270923C7350F2A8C ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ispwd.dll
08:14:57.0856 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ispwd.dll - ok
08:14:57.0872 5076 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
08:14:57.0872 5076 C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
08:14:57.0872 5076 [ 3C7DEF3CBBCA6284867AA4621D5D8A54 ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.dll
08:14:57.0872 5076 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.dll - ok
08:14:57.0872 5076 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
08:14:57.0872 5076 C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
08:14:57.0872 5076 [ 6A4A362F58D1403E42547EF2C5FAEA81 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\wscstub.exe
08:14:57.0872 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\wscstub.exe - ok
08:14:57.0872 5076 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
08:14:57.0872 5076 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
08:14:57.0887 5076 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
08:14:57.0887 5076 C:\Windows\SysWOW64\wscapi.dll - ok
08:14:57.0887 5076 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
08:14:57.0887 5076 C:\Windows\SysWOW64\wscisvif.dll - ok
08:14:57.0887 5076 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
08:14:57.0887 5076 C:\Windows\SysWOW64\wscproxystub.dll - ok
08:14:57.0887 5076 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
08:14:57.0887 5076 C:\Windows\SysWOW64\linkinfo.dll - ok
08:14:57.0887 5076 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
08:14:57.0887 5076 C:\Windows\SysWOW64\msxml3.dll - ok
08:14:57.0887 5076 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
08:14:57.0887 5076 C:\Windows\SysWOW64\cmd.exe - ok
08:14:57.0903 5076 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
08:14:57.0903 5076 C:\Windows\System32\conhost.exe - ok
08:14:57.0903 5076 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
08:14:57.0903 5076 C:\Windows\SysWOW64\winbrand.dll - ok
08:14:57.0903 5076 [ 0B6118058942961D504AAEA04FECB116 ] C:\Windows\SysWOW64\ieframe.dll
08:14:57.0903 5076 C:\Windows\SysWOW64\ieframe.dll - ok
08:14:57.0903 5076 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
08:14:57.0903 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
08:14:57.0903 5076 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
08:14:57.0903 5076 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
08:14:57.0918 5076 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
08:14:57.0918 5076 C:\Windows\SysWOW64\shdocvw.dll - ok
08:14:57.0918 5076 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Brian\AppData\Local\Temp\4799B928-1F16-4DF8-BF02-EAE74D3FFC04.exe
08:14:57.0918 5076 C:\Users\Brian\AppData\Local\Temp\4799B928-1F16-4DF8-BF02-EAE74D3FFC04.exe - ok
08:14:57.0918 5076 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
08:14:57.0918 5076 C:\Windows\SysWOW64\gpapi.dll - ok
08:14:57.0918 5076 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
08:14:57.0918 5076 C:\Windows\SysWOW64\cryptnet.dll - ok
08:14:57.0918 5076 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
08:14:57.0918 5076 C:\Windows\SysWOW64\SensApi.dll - ok
08:14:57.0934 5076 [ 3656CEB53172661E261C95EC71944FB4 ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coieplg.dll
08:14:57.0934 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coieplg.dll - ok
08:14:57.0934 5076 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
08:14:57.0934 5076 C:\Windows\SysWOW64\riched20.dll - ok
08:14:57.0934 5076 [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
08:14:57.0934 5076 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
08:14:57.0934 5076 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
08:14:57.0934 5076 C:\Windows\SysWOW64\EhStorShell.dll - ok
08:14:57.0934 5076 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
08:14:57.0934 5076 C:\Windows\SysWOW64\imageres.dll - ok
08:14:57.0934 5076 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
08:14:57.0934 5076 C:\Windows\SysWOW64\sfc.dll - ok
08:14:57.0950 5076 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
08:14:57.0950 5076 C:\Windows\SysWOW64\sfc_os.dll - ok
08:14:57.0950 5076 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
08:14:57.0950 5076 C:\Windows\SysWOW64\devrtl.dll - ok
08:14:57.0950 5076 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
08:14:57.0950 5076 C:\Windows\System32\timedate.cpl - ok
08:14:57.0950 5076 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
08:14:57.0950 5076 C:\Windows\System32\actxprxy.dll - ok
08:14:57.0950 5076 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
08:14:57.0950 5076 C:\Windows\System32\shdocvw.dll - ok
08:14:57.0950 5076 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
08:14:57.0950 5076 C:\Windows\System32\msiltcfg.dll - ok
08:14:57.0965 5076 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
08:14:57.0965 5076 C:\Windows\System32\linkinfo.dll - ok
08:14:57.0965 5076 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
08:14:57.0965 5076 C:\Windows\System32\msftedit.dll - ok
08:14:57.0965 5076 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
08:14:57.0965 5076 C:\Windows\System32\msls31.dll - ok
08:14:57.0965 5076 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
08:14:57.0965 5076 C:\Windows\System32\gameux.dll - ok
08:14:57.0965 5076 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
08:14:57.0965 5076 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
08:14:57.0965 5076 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
08:14:57.0981 5076 C:\Windows\System32\DeviceCenter.dll - ok
08:14:57.0981 5076 [ D744D5B8145C2303B19A288AF695E9AD ] C:\Windows\System32\ieframe.dll
08:14:57.0981 5076 C:\Windows\System32\ieframe.dll - ok
08:14:57.0981 5076 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
08:14:57.0981 5076 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
08:14:57.0981 5076 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
08:14:57.0981 5076 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
08:14:57.0981 5076 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
08:14:57.0981 5076 C:\Windows\System32\networkexplorer.dll - ok
08:14:57.0981 5076 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
08:14:57.0981 5076 C:\Windows\System32\drprov.dll - ok
08:14:57.0996 5076 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
08:14:57.0996 5076 C:\Windows\System32\ntlanman.dll - ok
08:14:57.0996 5076 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
08:14:57.0996 5076 C:\Windows\System32\davclnt.dll - ok
08:14:57.0996 5076 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
08:14:57.0996 5076 C:\Windows\System32\davhlpr.dll - ok
08:14:57.0996 5076 [ E9D228970356F01DB68E531A0F173FB8 ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
08:14:57.0996 5076 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
08:14:57.0996 5076 [ 605BB2B2A2171D3F5748F4919E80E6C7 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE
08:14:57.0996 5076 C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.EXE - ok
08:14:58.0012 5076 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
08:14:58.0012 5076 C:\Windows\System32\thumbcache.dll - ok
08:14:58.0012 5076 [ 63456112E68FD60CD291D5B3D0B02EE8 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLRES.DLL
08:14:58.0012 5076 C:\Program Files (x86)\Canon\SolutionMenu\CNSLRES.DLL - ok
08:14:58.0012 5076 [ 53A672E0E1285585428445442DFEEFDD ] C:\Windows\System32\Macromed\Flash\FlashUtil64_11_6_602_180_ActiveX.exe
08:14:58.0012 5076 C:\Windows\System32\Macromed\Flash\FlashUtil64_11_6_602_180_ActiveX.exe - ok
08:14:58.0012 5076 [ 37F04C533F3D8BA106B9F52FCE76616A ] C:\Program Files\Canon\MyPrinter\CNMPU.DLL
08:14:58.0012 5076 C:\Program Files\Canon\MyPrinter\CNMPU.DLL - ok
08:14:58.0012 5076 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
08:14:58.0012 5076 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
08:14:58.0012 5076 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
08:14:58.0012 5076 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
08:14:58.0028 5076 [ 3F333FFF31E5C2112E3F28FD598BFE47 ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
08:14:58.0028 5076 C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
08:14:58.0028 5076 [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
08:14:58.0028 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
08:14:58.0028 5076 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
08:14:58.0028 5076 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
08:14:58.0028 5076 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
08:14:58.0028 5076 C:\Windows\System32\drivers\fastfat.sys - ok
08:14:58.0028 5076 [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files (x86)\QuickTime\QTTask.exe
08:14:58.0028 5076 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
08:14:58.0028 5076 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\48696901.sys
08:14:58.0028 5076 C:\Windows\System32\drivers\48696901.sys - ok
08:14:58.0028 5076 [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
08:14:58.0028 5076 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
08:14:58.0043 5076 [ 5082BC510FAD849630D09DA626BB7CDA ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
08:14:58.0043 5076 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
08:14:58.0043 5076 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
08:14:58.0043 5076 C:\Windows\SysWOW64\msi.dll - ok
08:14:58.0043 5076 [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
08:14:58.0043 5076 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
08:14:58.0043 5076 [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
08:14:58.0043 5076 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
08:14:58.0043 5076 [ BE643CD44DD06DA283634A3E51DC22BC ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
08:14:58.0043 5076 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
08:14:58.0059 5076 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
08:14:58.0059 5076 C:\Windows\System32\dsound.dll - ok
08:14:58.0059 5076 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
08:14:58.0059 5076 C:\Windows\System32\d3d9.dll - ok
08:14:58.0059 5076 [ A2ECE669E99A861019F758D2CC2C518F ] C:\Program Files (x86)\Canon\MP Navigator EX 3.1\mpnex31.exe
08:14:58.0059 5076 C:\Program Files (x86)\Canon\MP Navigator EX 3.1\mpnex31.exe - ok
08:14:58.0059 5076 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
08:14:58.0059 5076 C:\Windows\System32\wdmaud.drv - ok
08:14:58.0059 5076 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
08:14:58.0059 5076 C:\Windows\System32\d3d8thk.dll - ok
08:14:58.0059 5076 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
08:14:58.0059 5076 C:\Windows\System32\ksuser.dll - ok
08:14:58.0074 5076 [ C621FB6BF9741AA18E55377FDD2CE96F ] C:\Windows\System32\oleaccrc.dll
08:14:58.0074 5076 C:\Windows\System32\oleaccrc.dll - ok
08:14:58.0074 5076 [ B96F045D571747F8700CB43E8C458FF0 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
08:14:58.0074 5076 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
08:14:58.0074 5076 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
08:14:58.0074 5076 C:\Windows\System32\AudioSes.dll - ok
08:14:58.0074 5076 [ 182B77D1FC2DE86F15AAAFCC250280FF ] C:\Windows\System32\Macromed\Flash\FlashUtil64_11_6_602_180_ActiveX.dll
08:14:58.0074 5076 C:\Windows\System32\Macromed\Flash\FlashUtil64_11_6_602_180_ActiveX.dll - ok
08:14:58.0074 5076 [ FE46A75556E66B8CC472FA75EFF0C347 ] C:\PROGRA~1\MICROS~1\Office12\MSOHEVI.DLL
08:14:58.0074 5076 C:\PROGRA~1\MICROS~1\Office12\MSOHEVI.DLL - ok
08:14:58.0090 5076 [ 8BC7F8F0B7AE856D910B3FDD895EC50E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
08:14:58.0090 5076 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
08:14:58.0090 5076 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
08:14:58.0090 5076 C:\Windows\System32\msimg32.dll - ok
08:14:58.0090 5076 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
08:14:58.0090 5076 C:\Windows\System32\mlang.dll - ok
08:14:58.0090 5076 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
08:14:58.0090 5076 C:\Windows\System32\msacm32.drv - ok
08:14:58.0090 5076 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
08:14:58.0090 5076 C:\Windows\System32\midimap.dll - ok
08:14:58.0090 5076 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
08:14:58.0090 5076 C:\Windows\System32\msacm32.dll - ok
08:14:58.0106 5076 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
08:14:58.0106 5076 C:\Windows\System32\AudioEng.dll - ok
08:14:58.0106 5076 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
08:14:58.0106 5076 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
08:14:58.0106 5076 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
08:14:58.0106 5076 C:\Windows\System32\AUDIOKSE.dll - ok
08:14:58.0106 5076 [ 33975A7AF1AF19E24E773948A7257407 ] C:\Program Files\Internet Explorer\sqmapi.dll
08:14:58.0106 5076 C:\Program Files\Internet Explorer\sqmapi.dll - ok
08:14:58.0106 5076 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
08:14:58.0106 5076 C:\Windows\System32\WMALFXGFXDSP.dll - ok
08:14:58.0106 5076 [ E0F60D18EE64F5A87F8ACAD0F6EFC4E6 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMAIN.EXE
08:14:58.0106 5076 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMAIN.EXE - ok
08:14:58.0106 5076 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
08:14:58.0106 5076 C:\Windows\SysWOW64\duser.dll - ok
08:14:58.0121 5076 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
08:14:58.0121 5076 C:\Windows\SysWOW64\dui70.dll - ok
08:14:58.0121 5076 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
08:14:58.0121 5076 C:\Windows\System32\mfplat.dll - ok
08:14:58.0121 5076 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
08:14:58.0121 5076 C:\Windows\System32\stobject.dll - ok
08:14:58.0121 5076 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
08:14:58.0121 5076 C:\Windows\System32\batmeter.dll - ok
08:14:58.0121 5076 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
08:14:58.0121 5076 C:\Windows\System32\prnfldr.dll - ok
08:14:58.0121 5076 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
08:14:58.0121 5076 C:\Windows\System32\fdProxy.dll - ok
08:14:58.0137 5076 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
08:14:58.0137 5076 C:\Windows\System32\DXP.dll - ok
08:14:58.0137 5076 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
08:14:58.0137 5076 C:\Windows\System32\Syncreg.dll - ok
08:14:58.0137 5076 [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
08:14:58.0137 5076 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
08:14:58.0137 5076 [ 2DC142B741BA39EAB24FB43D25127453 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLUWRP.DLL
08:14:58.0137 5076 C:\Program Files (x86)\Canon\SolutionMenu\CNSLUWRP.DLL - ok
08:14:58.0137 5076 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
08:14:58.0137 5076 C:\Windows\ehome\ehSSO.dll - ok
08:14:58.0137 5076 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] C:\Program Files\iPod\bin\iPodService.exe
08:14:58.0137 5076 C:\Program Files\iPod\bin\iPodService.exe - ok
08:14:58.0152 5076 [ C917F57183502F90733C57207D237729 ] C:\Program Files (x86)\Canon\SolutionMenu\CURALDLL.DLL
08:14:58.0152 5076 C:\Program Files (x86)\Canon\SolutionMenu\CURALDLL.DLL - ok
08:14:58.0152 5076 [ B4E69051E313551F894C74B12042485D ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
08:14:58.0152 5076 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
08:14:58.0152 5076 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
08:14:58.0152 5076 C:\Windows\System32\AltTab.dll - ok
08:14:58.0152 5076 [ 1105A14047A0D99C2770601EB61FBF5C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
08:14:58.0152 5076 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
08:14:58.0152 5076 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
08:14:58.0152 5076 C:\Windows\System32\WPDShServiceObj.dll - ok
08:14:58.0152 5076 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
08:14:58.0152 5076 C:\Windows\System32\pnidui.dll - ok
08:14:58.0168 5076 [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
08:14:58.0168 5076 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
08:14:58.0168 5076 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
08:14:58.0168 5076 C:\Windows\System32\QUTIL.DLL - ok
08:14:58.0168 5076 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
08:14:58.0168 5076 C:\Windows\System32\srchadmin.dll - ok
08:14:58.0168 5076 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
08:14:58.0168 5076 C:\Windows\System32\ActionCenter.dll - ok
08:14:58.0168 5076 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
08:14:58.0168 5076 C:\Windows\System32\bthprops.cpl - ok
08:14:58.0168 5076 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
08:14:58.0168 5076 C:\Windows\System32\qmgr.dll - ok
08:14:58.0168 5076 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
08:14:58.0168 5076 C:\Windows\System32\bitsperf.dll - ok
08:14:58.0184 5076 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
08:14:58.0184 5076 C:\Windows\System32\webcheck.dll - ok
08:14:58.0184 5076 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
08:14:58.0184 5076 C:\Windows\System32\bitsigd.dll - ok
08:14:58.0184 5076 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
08:14:58.0184 5076 C:\Windows\System32\upnp.dll - ok
08:14:58.0184 5076 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
08:14:58.0184 5076 C:\Windows\System32\SyncCenter.dll - ok
08:14:58.0184 5076 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
08:14:58.0184 5076 C:\Windows\System32\imapi2.dll - ok
08:14:58.0199 5076 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
08:14:58.0199 5076 C:\Windows\System32\rasdlg.dll - ok
08:14:58.0199 5076 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
08:14:58.0199 5076 C:\Windows\System32\ssdpsrv.dll - ok
08:14:58.0199 5076 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
08:14:58.0199 5076 C:\Windows\System32\dot3api.dll - ok
08:14:58.0199 5076 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
08:14:58.0199 5076 C:\Windows\System32\wlanhlp.dll - ok
08:14:58.0199 5076 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
08:14:58.0199 5076 C:\Windows\System32\onex.dll - ok
08:14:58.0199 5076 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
08:14:58.0199 5076 C:\Windows\System32\wlanapi.dll - ok
08:14:58.0215 5076 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
08:14:58.0215 5076 C:\Windows\System32\wlanutil.dll - ok
08:14:58.0215 5076 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
08:14:58.0215 5076 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
08:14:58.0215 5076 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
08:14:58.0215 5076 C:\Windows\System32\hgcpl.dll - ok
08:14:58.0215 5076 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
08:14:58.0215 5076 C:\Windows\System32\WWanAPI.dll - ok
08:14:58.0215 5076 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
08:14:58.0215 5076 C:\Windows\System32\fdPHost.dll - ok
08:14:58.0230 5076 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
08:14:58.0230 5076 C:\Windows\System32\FDResPub.dll - ok
08:14:58.0230 5076 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
08:14:58.0230 5076 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
08:14:58.0230 5076 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
08:14:58.0230 5076 C:\Windows\System32\fdWSD.dll - ok
08:14:58.0230 5076 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
08:14:58.0230 5076 C:\Windows\System32\wwapi.dll - ok
08:14:58.0230 5076 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
08:14:58.0230 5076 C:\Windows\System32\QAGENT.DLL - ok
08:14:58.0230 5076 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
08:14:58.0230 5076 C:\Windows\System32\fdSSDP.dll - ok
08:14:58.0246 5076 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
08:14:58.0246 5076 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
08:14:58.0246 5076 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
08:14:58.0246 5076 C:\Windows\System32\qmgrprxy.dll - ok
08:14:58.0246 5076 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
08:14:58.0246 5076 C:\Windows\SysWOW64\qmgrprxy.dll - ok
08:14:58.0246 5076 [ 41446E7545BB7B4167DE8A274CC924E3 ] C:\Program Files\Internet Explorer\ieproxy.dll
08:14:58.0246 5076 C:\Program Files\Internet Explorer\ieproxy.dll - ok
08:14:58.0246 5076 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
08:14:58.0246 5076 C:\Windows\System32\wsock32.dll - ok
08:14:58.0246 5076 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
08:14:58.0246 5076 C:\Windows\System32\dssenh.dll - ok
08:14:58.0262 5076 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
08:14:58.0262 5076 C:\Windows\System32\FXSST.dll - ok
08:14:58.0262 5076 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
08:14:58.0262 5076 C:\Windows\System32\ListSvc.dll - ok
08:14:58.0262 5076 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
08:14:58.0262 5076 C:\Windows\System32\P2P.dll - ok
08:14:58.0262 5076 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
08:14:58.0262 5076 C:\Windows\System32\IdListen.dll - ok
08:14:58.0262 5076 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
08:14:58.0262 5076 C:\Windows\System32\pnrpsvc.dll - ok
08:14:58.0277 5076 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
08:14:58.0277 5076 C:\Windows\System32\hgprint.dll - ok
08:14:58.0277 5076 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
08:14:58.0277 5076 C:\Windows\System32\wmdrmdev.dll - ok
08:14:58.0277 5076 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
08:14:58.0277 5076 C:\Windows\System32\FXSAPI.dll - ok
08:14:58.0277 5076 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
08:14:58.0277 5076 C:\Windows\System32\drmv2clt.dll - ok
08:14:58.0277 5076 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
08:14:58.0277 5076 C:\Windows\System32\FXSRESM.dll - ok
08:14:58.0293 5076 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
08:14:58.0293 5076 C:\Windows\System32\FXSSVC.exe - ok
08:14:58.0293 5076 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
08:14:58.0293 5076 C:\Windows\System32\p2psvc.dll - ok
08:14:58.0293 5076 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
08:14:58.0293 5076 C:\Windows\System32\P2PGraph.dll - ok
08:14:58.0293 5076 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
08:14:58.0293 5076 C:\Windows\System32\blackbox.dll - ok
08:14:58.0293 5076 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
08:14:58.0293 5076 C:\Windows\System32\wmp.dll - ok
08:14:58.0293 5076 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
08:14:58.0293 5076 C:\Windows\System32\wmploc.DLL - ok
08:14:58.0293 5076 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
08:14:58.0293 5076 C:\Windows\System32\wmpps.dll - ok
08:14:58.0308 5076 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
08:14:58.0308 5076 C:\Windows\System32\wmpmde.dll - ok
08:14:58.0308 5076 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
08:14:58.0308 5076 C:\Windows\System32\WinSATAPI.dll - ok
08:14:58.0308 5076 [ B79515AFF098E5A56DFBD316152534DE ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
08:14:58.0308 5076 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
08:14:58.0308 5076 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
08:14:58.0308 5076 C:\Windows\System32\MSMPEG2ENC.DLL - ok
08:14:58.0308 5076 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
08:14:58.0308 5076 C:\Windows\System32\devenum.dll - ok
08:14:58.0308 5076 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
08:14:58.0308 5076 C:\Windows\System32\msdmo.dll - ok
08:14:58.0324 5076 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
08:14:58.0324 5076 C:\Windows\System32\upnphost.dll - ok
08:14:58.0324 5076 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
08:14:58.0324 5076 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
08:14:58.0324 5076 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
08:14:58.0324 5076 C:\Windows\System32\wbem\wmiprov.dll - ok
08:14:58.0324 5076 [ 679E82F9D5BE28F5B05064A2F46CE4F2 ] C:\Windows\System32\wbem\mofd.dll
08:14:58.0324 5076 C:\Windows\System32\wbem\mofd.dll - ok
08:14:58.0324 5076 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
08:14:58.0324 5076 C:\Windows\System32\msxml3.dll - ok
08:14:58.0324 5076 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
08:14:58.0324 5076 C:\Windows\SysWOW64\msisip.dll - ok
08:14:58.0340 5076 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
08:14:58.0340 5076 C:\Windows\System32\udhisapi.dll - ok
08:14:58.0340 5076 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
08:14:58.0340 5076 C:\Windows\System32\drttransport.dll - ok
08:14:58.0340 5076 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
08:14:58.0340 5076 C:\Windows\System32\drt.dll - ok
08:14:58.0340 5076 [ 93065308C1B237A9C4A021A0C5AA65CA ] C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\qbackup.dll
08:14:58.0340 5076 C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\qbackup.dll - ok
08:14:58.0340 5076 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
08:14:58.0340 5076 C:\Windows\System32\keyiso.dll - ok
08:14:58.0355 5076 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
08:14:58.0355 5076 C:\Windows\SysWOW64\pdh.dll - ok
08:14:58.0355 5076 [ B92E9318F7E4AEF633B8EC3A873565AF ] C:\Windows\SysWOW64\perfdisk.dll
08:14:58.0355 5076 C:\Windows\SysWOW64\perfdisk.dll - ok
08:14:58.0355 5076 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
08:14:58.0355 5076 C:\Windows\SysWOW64\perfos.dll - ok
08:14:58.0355 5076 [ 224C6D142487DCC3D1D806CE4DEA6AD7 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\Reminder.exe
08:14:58.0355 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\Reminder.exe - ok
08:14:58.0355 5076 [ 47CC6954415DC4B877591B7C7A8C648F ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\Register.exe
08:14:58.0355 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\Register.exe - ok
08:14:58.0371 5076 [ 38A2D5C5ECEE90A795D52A4D8B898751 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.7601.17825_none_83810474ed62c6c4\GdiPlus.dll
08:14:58.0371 5076 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.7601.17825_none_83810474ed62c6c4\GdiPlus.dll - ok
08:14:58.0371 5076 [ 84F74D73185DB975CD9B8A022D0FB807 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\OFCommon.dll
08:14:58.0371 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\OFCommon.dll - ok
08:14:58.0371 5076 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
08:14:58.0371 5076 C:\Windows\System32\wbem\wmipcima.dll - ok
08:14:58.0371 5076 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
08:14:58.0371 5076 C:\Windows\System32\framedynos.dll - ok
08:14:58.0371 5076 [ 3420D325EE810E0D0495EA47A64603ED ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\DelayLoad.exe
08:14:58.0371 5076 C:\Program Files (x86)\IObit\Advanced SystemCare 6\DelayLoad.exe - ok
08:14:58.0371 5076 ============================================================
08:14:58.0371 5076 Scan finished
08:14:58.0371 5076 ============================================================
08:14:58.0386 5068 Detected object count: 2
08:14:58.0386 5068 Actual detected object count: 2
08:15:53.0298 5068 MDM ( UnsignedFile.Multi.Generic ) - skipped by user
08:15:53.0298 5068 MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
08:15:53.0314 5068 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
08:15:53.0314 5068 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip


21:30:37.0714 4740 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:30:38.0030 4740 ============================================================
21:30:38.0030 4740 Current date / time: 2013/04/13 21:30:38.0030
21:30:38.0030 4740 SystemInfo:
21:30:38.0030 4740
21:30:38.0030 4740 OS Version: 6.1.7601 ServicePack: 1.0
21:30:38.0030 4740 Product type: Workstation
21:30:38.0030 4740 ComputerName: BRIAN-PC
21:30:38.0031 4740 UserName: Brian
21:30:38.0031 4740 Windows directory: C:\Windows
21:30:38.0031 4740 System windows directory: C:\Windows
21:30:38.0031 4740 Running under WOW64
21:30:38.0031 4740 Processor architecture: Intel x64
21:30:38.0031 4740 Number of processors: 4
21:30:38.0031 4740 Page size: 0x1000
21:30:38.0031 4740 Boot type: Normal boot
21:30:38.0031 4740 ============================================================
21:30:39.0147 4740 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:30:39.0160 4740 ============================================================
21:30:39.0160 4740 \Device\Harddisk0\DR0:
21:30:39.0160 4740 MBR partitions:
21:30:39.0160 4740 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x15C3000
21:30:39.0160 4740 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x15D7000, BlocksNum 0x7312F000
21:30:39.0160 4740 ============================================================
21:30:39.0193 4740 C: <-> \Device\Harddisk0\DR0\Partition2
21:30:39.0193 4740 ============================================================
21:30:39.0193 4740 Initialize success
21:30:39.0193 4740 ============================================================
21:30:42.0469 4296 ============================================================
21:30:42.0469 4296 Scan started
21:30:42.0469 4296 Mode: Manual;
21:30:42.0469 4296 ============================================================
21:30:43.0670 4296 ================ Scan system memory ========================
21:30:43.0670 4296 System memory - ok
21:30:43.0670 4296 ================ Scan services =============================
21:30:43.0802 4296 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:30:43.0806 4296 1394ohci - ok
21:30:43.0844 4296 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:30:43.0848 4296 ACPI - ok
21:30:43.0875 4296 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:30:43.0876 4296 AcpiPmi - ok
21:30:43.0987 4296 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:30:43.0988 4296 AdobeARMservice - ok
21:30:44.0124 4296 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:30:44.0126 4296 AdobeFlashPlayerUpdateSvc - ok
21:30:44.0163 4296 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:30:44.0170 4296 adp94xx - ok
21:30:44.0191 4296 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:30:44.0196 4296 adpahci - ok
21:30:44.0213 4296 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:30:44.0217 4296 adpu320 - ok
21:30:44.0242 4296 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:30:44.0244 4296 AeLookupSvc - ok
21:30:44.0296 4296 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:30:44.0303 4296 AFD - ok
21:30:44.0340 4296 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:30:44.0341 4296 agp440 - ok
21:30:44.0360 4296 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:30:44.0362 4296 ALG - ok
21:30:44.0372 4296 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:30:44.0373 4296 aliide - ok
21:30:44.0383 4296 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:30:44.0384 4296 amdide - ok
21:30:44.0397 4296 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:30:44.0398 4296 AmdK8 - ok
21:30:44.0416 4296 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:30:44.0417 4296 AmdPPM - ok
21:30:44.0436 4296 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:30:44.0438 4296 amdsata - ok
21:30:44.0460 4296 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:30:44.0462 4296 amdsbs - ok
21:30:44.0477 4296 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:30:44.0477 4296 amdxata - ok
21:30:44.0505 4296 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:30:44.0506 4296 AppID - ok
21:30:44.0522 4296 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:30:44.0522 4296 AppIDSvc - ok
21:30:44.0559 4296 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:30:44.0560 4296 Appinfo - ok
21:30:44.0617 4296 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:30:44.0618 4296 Apple Mobile Device - ok
21:30:44.0651 4296 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
21:30:44.0653 4296 AppMgmt - ok
21:30:44.0668 4296 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:30:44.0670 4296 arc - ok
21:30:44.0684 4296 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:30:44.0685 4296 arcsas - ok
21:30:44.0713 4296 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:30:44.0714 4296 AsyncMac - ok
21:30:44.0748 4296 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:30:44.0749 4296 atapi - ok
21:30:44.0789 4296 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:30:44.0796 4296 AudioEndpointBuilder - ok
21:30:44.0805 4296 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:30:44.0809 4296 AudioSrv - ok
21:30:44.0840 4296 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:30:44.0841 4296 AxInstSV - ok
21:30:44.0860 4296 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:30:44.0864 4296 b06bdrv - ok
21:30:44.0901 4296 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:30:44.0904 4296 b57nd60a - ok
21:30:44.0947 4296 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:30:44.0949 4296 BDESVC - ok
21:30:44.0963 4296 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:30:44.0964 4296 Beep - ok
21:30:45.0000 4296 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:30:45.0006 4296 BFE - ok
21:30:45.0148 4296 [ E92A3DA47BED7CC65D264235617ED46E ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20130322.001\BHDrvx64.sys
21:30:45.0172 4296 BHDrvx64 - ok
21:30:45.0221 4296 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
21:30:45.0234 4296 BITS - ok
21:30:45.0240 4296 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:30:45.0241 4296 blbdrive - ok
21:30:45.0327 4296 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:30:45.0331 4296 Bonjour Service - ok
21:30:45.0362 4296 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:30:45.0363 4296 bowser - ok
21:30:45.0373 4296 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:30:45.0375 4296 BrFiltLo - ok
21:30:45.0383 4296 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:30:45.0384 4296 BrFiltUp - ok
21:30:45.0411 4296 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:30:45.0413 4296 Browser - ok
21:30:45.0428 4296 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:30:45.0432 4296 Brserid - ok
21:30:45.0445 4296 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:30:45.0447 4296 BrSerWdm - ok
21:30:45.0461 4296 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:30:45.0462 4296 BrUsbMdm - ok
21:30:45.0466 4296 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:30:45.0466 4296 BrUsbSer - ok
21:30:45.0471 4296 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:30:45.0472 4296 BTHMODEM - ok
21:30:45.0479 4296 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:30:45.0480 4296 bthserv - ok
21:30:45.0492 4296 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:30:45.0493 4296 cdfs - ok
21:30:45.0500 4296 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
21:30:45.0502 4296 cdrom - ok
21:30:45.0535 4296 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:30:45.0537 4296 CertPropSvc - ok
21:30:45.0551 4296 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:30:45.0552 4296 circlass - ok
21:30:45.0572 4296 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:30:45.0576 4296 CLFS - ok
21:30:45.0626 4296 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:30:45.0628 4296 clr_optimization_v2.0.50727_32 - ok
21:30:45.0674 4296 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:30:45.0675 4296 clr_optimization_v2.0.50727_64 - ok
21:30:45.0729 4296 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:30:45.0730 4296 clr_optimization_v4.0.30319_32 - ok
21:30:45.0763 4296 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:30:45.0764 4296 clr_optimization_v4.0.30319_64 - ok
21:30:45.0788 4296 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:30:45.0789 4296 CmBatt - ok
21:30:45.0819 4296 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:30:45.0819 4296 cmdide - ok
21:30:45.0851 4296 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:30:45.0855 4296 CNG - ok
21:30:45.0868 4296 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:30:45.0869 4296 Compbatt - ok
21:30:45.0905 4296 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:30:45.0906 4296 CompositeBus - ok
21:30:45.0908 4296 COMSysApp - ok
21:30:45.0927 4296 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:30:45.0928 4296 crcdisk - ok
21:30:45.0973 4296 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:30:45.0975 4296 CryptSvc - ok
21:30:46.0013 4296 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
21:30:46.0018 4296 CSC - ok
21:30:46.0060 4296 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
21:30:46.0066 4296 CscService - ok
21:30:46.0087 4296 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:30:46.0092 4296 DcomLaunch - ok
21:30:46.0124 4296 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:30:46.0127 4296 defragsvc - ok
21:30:46.0171 4296 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:30:46.0172 4296 DfsC - ok
21:30:46.0192 4296 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:30:46.0197 4296 Dhcp - ok
21:30:46.0209 4296 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:30:46.0210 4296 discache - ok
21:30:46.0215 4296 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:30:46.0216 4296 Disk - ok
21:30:46.0257 4296 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:30:46.0260 4296 Dnscache - ok
21:30:46.0349 4296 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:30:46.0371 4296 dot3svc - ok
21:30:46.0449 4296 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:30:46.0476 4296 DPS - ok
21:30:46.0501 4296 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:30:46.0502 4296 drmkaud - ok
21:30:46.0527 4296 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:30:46.0539 4296 DXGKrnl - ok
21:30:46.0557 4296 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:30:46.0560 4296 EapHost - ok
21:30:46.0635 4296 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:30:46.0702 4296 ebdrv - ok
21:30:46.0798 4296 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:30:46.0804 4296 eeCtrl - ok
21:30:46.0841 4296 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:30:46.0843 4296 EFS - ok
21:30:46.0877 4296 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:30:46.0887 4296 ehRecvr - ok
21:30:46.0909 4296 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:30:46.0911 4296 ehSched - ok
21:30:46.0937 4296 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:30:46.0944 4296 elxstor - ok
21:30:46.0978 4296 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:30:46.0980 4296 EraserUtilRebootDrv - ok
21:30:46.0992 4296 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:30:46.0993 4296 ErrDev - ok
21:30:47.0015 4296 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:30:47.0019 4296 EventSystem - ok
21:30:47.0036 4296 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:30:47.0038 4296 exfat - ok
21:30:47.0059 4296 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:30:47.0061 4296 fastfat - ok
21:30:47.0084 4296 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:30:47.0092 4296 Fax - ok
21:30:47.0106 4296 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:30:47.0106 4296 fdc - ok
21:30:47.0118 4296 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:30:47.0119 4296 fdPHost - ok
21:30:47.0127 4296 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:30:47.0129 4296 FDResPub - ok
21:30:47.0133 4296 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:30:47.0134 4296 FileInfo - ok
21:30:47.0139 4296 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:30:47.0139 4296 Filetrace - ok
21:30:47.0157 4296 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:30:47.0158 4296 flpydisk - ok
21:30:47.0175 4296 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:30:47.0177 4296 FltMgr - ok
21:30:47.0225 4296 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
21:30:47.0235 4296 FontCache - ok
21:30:47.0283 4296 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:30:47.0284 4296 FontCache3.0.0.0 - ok
21:30:47.0305 4296 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:30:47.0307 4296 FsDepends - ok
21:30:47.0334 4296 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:30:47.0335 4296 Fs_Rec - ok
21:30:47.0365 4296 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:30:47.0368 4296 fvevol - ok
21:30:47.0374 4296 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:30:47.0375 4296 gagp30kx - ok
21:30:47.0407 4296 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:30:47.0407 4296 GEARAspiWDM - ok
21:30:47.0446 4296 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:30:47.0453 4296 gpsvc - ok
21:30:47.0500 4296 [ 98405343D7DCD330FE1B08C8F4C3900C ] HCW85BDA C:\Windows\system32\drivers\HCW85BDA.sys
21:30:47.0516 4296 HCW85BDA - ok
21:30:47.0526 4296 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:30:47.0527 4296 hcw85cir - ok
21:30:47.0576 4296 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:30:47.0579 4296 HdAudAddService - ok
21:30:47.0586 4296 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:30:47.0587 4296 HDAudBus - ok
21:30:47.0618 4296 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
21:30:47.0619 4296 HECIx64 - ok
21:30:47.0630 4296 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:30:47.0631 4296 HidBatt - ok
21:30:47.0648 4296 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:30:47.0649 4296 HidBth - ok
21:30:47.0666 4296 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:30:47.0667 4296 HidIr - ok
21:30:47.0684 4296 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:30:47.0685 4296 hidserv - ok
21:30:47.0705 4296 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:30:47.0705 4296 HidUsb - ok
21:30:47.0728 4296 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:30:47.0730 4296 hkmsvc - ok
21:30:47.0744 4296 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:30:47.0747 4296 HomeGroupListener - ok
21:30:47.0776 4296 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:30:47.0779 4296 HomeGroupProvider - ok
21:30:47.0793 4296 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:30:47.0795 4296 HpSAMD - ok
21:30:47.0830 4296 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:30:47.0837 4296 HTTP - ok
21:30:47.0869 4296 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:30:47.0870 4296 hwpolicy - ok
21:30:47.0887 4296 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:30:47.0889 4296 i8042prt - ok
21:30:47.0909 4296 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:30:47.0914 4296 iaStorV - ok
21:30:47.0952 4296 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:30:47.0965 4296 idsvc - ok
21:30:48.0058 4296 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20130412.001\IDSvia64.sys
21:30:48.0063 4296 IDSVia64 - ok
21:30:48.0079 4296 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:30:48.0080 4296 iirsp - ok
21:30:48.0134 4296 [ C5B04409186A27409BD069580208A6D3 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
21:30:48.0135 4296 IJPLMSVC - ok
21:30:48.0165 4296 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:30:48.0174 4296 IKEEXT - ok
21:30:48.0189 4296 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:30:48.0190 4296 intelide - ok
21:30:48.0207 4296 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:30:48.0208 4296 intelppm - ok
21:30:48.0275 4296 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
21:30:48.0276 4296 IntuitUpdateServiceV4 - ok
21:30:48.0291 4296 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:30:48.0294 4296 IPBusEnum - ok
21:30:48.0309 4296 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:30:48.0312 4296 IpFilterDriver - ok
21:30:48.0345 4296 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:30:48.0352 4296 iphlpsvc - ok
21:30:48.0370 4296 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:30:48.0371 4296 IPMIDRV - ok
21:30:48.0389 4296 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:30:48.0391 4296 IPNAT - ok
21:30:48.0438 4296 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:30:48.0446 4296 iPod Service - ok
21:30:48.0464 4296 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:30:48.0464 4296 IRENUM - ok
21:30:48.0482 4296 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:30:48.0483 4296 isapnp - ok
21:30:48.0505 4296 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:30:48.0509 4296 iScsiPrt - ok
21:30:48.0531 4296 [ 9D7EA8C7215D8D4AE7BE110EEE61085D ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
21:30:48.0535 4296 k57nd60a - ok
21:30:48.0553 4296 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:30:48.0554 4296 kbdclass - ok
21:30:48.0569 4296 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:30:48.0569 4296 kbdhid - ok
21:30:48.0583 4296 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:30:48.0584 4296 KeyIso - ok
21:30:48.0614 4296 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:30:48.0616 4296 KSecDD - ok
21:30:48.0646 4296 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:30:48.0648 4296 KSecPkg - ok
21:30:48.0656 4296 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:30:48.0657 4296 ksthunk - ok
21:30:48.0681 4296 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:30:48.0686 4296 KtmRm - ok
21:30:48.0710 4296 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:30:48.0714 4296 LanmanServer - ok
21:30:48.0723 4296 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:30:48.0727 4296 LanmanWorkstation - ok
21:30:48.0745 4296 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:30:48.0746 4296 lltdio - ok
21:30:48.0770 4296 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:30:48.0773 4296 lltdsvc - ok
21:30:48.0789 4296 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:30:48.0790 4296 lmhosts - ok
21:30:48.0808 4296 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:30:48.0810 4296 LSI_FC - ok
21:30:48.0819 4296 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:30:48.0821 4296 LSI_SAS - ok
21:30:48.0838 4296 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:30:48.0839 4296 LSI_SAS2 - ok
21:30:48.0858 4296 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:30:48.0859 4296 LSI_SCSI - ok
21:30:48.0875 4296 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:30:48.0876 4296 luafv - ok
21:30:48.0908 4296 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:30:48.0910 4296 Mcx2Svc - ok
21:30:48.0976 4296 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
21:30:48.0981 4296 MDM - ok
21:30:49.0000 4296 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:30:49.0002 4296 megasas - ok
21:30:49.0027 4296 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:30:49.0031 4296 MegaSR - ok
21:30:49.0108 4296 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
21:30:49.0109 4296 Microsoft Office Groove Audit Service - ok
21:30:49.0131 4296 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:30:49.0133 4296 MMCSS - ok
21:30:49.0149 4296 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:30:49.0149 4296 Modem - ok
21:30:49.0168 4296 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:30:49.0168 4296 monitor - ok
21:30:49.0201 4296 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:30:49.0202 4296 mouclass - ok
21:30:49.0211 4296 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:30:49.0212 4296 mouhid - ok
21:30:49.0245 4296 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:30:49.0247 4296 mountmgr - ok
21:30:49.0309 4296 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:30:49.0311 4296 MozillaMaintenance - ok
21:30:49.0332 4296 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:30:49.0335 4296 mpio - ok
21:30:49.0355 4296 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:30:49.0356 4296 mpsdrv - ok
21:30:49.0397 4296 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:30:49.0409 4296 MpsSvc - ok
21:30:49.0442 4296 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:30:49.0445 4296 MRxDAV - ok
21:30:49.0478 4296 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:30:49.0481 4296 mrxsmb - ok
21:30:49.0496 4296 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:30:49.0500 4296 mrxsmb10 - ok
21:30:49.0530 4296 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:30:49.0532 4296 mrxsmb20 - ok
21:30:49.0544 4296 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:30:49.0545 4296 msahci - ok
21:30:49.0563 4296 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:30:49.0565 4296 msdsm - ok
21:30:49.0579 4296 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:30:49.0581 4296 MSDTC - ok
21:30:49.0603 4296 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:30:49.0604 4296 Msfs - ok
21:30:49.0608 4296 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:30:49.0608 4296 mshidkmdf - ok
21:30:49.0635 4296 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:30:49.0635 4296 msisadrv - ok
21:30:49.0653 4296 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:30:49.0655 4296 MSiSCSI - ok
21:30:49.0659 4296 msiserver - ok
21:30:49.0676 4296 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:30:49.0676 4296 MSKSSRV - ok
21:30:49.0685 4296 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:30:49.0686 4296 MSPCLOCK - ok
21:30:49.0699 4296 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:30:49.0700 4296 MSPQM - ok
21:30:49.0719 4296 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:30:49.0722 4296 MsRPC - ok
21:30:49.0732 4296 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:30:49.0732 4296 mssmbios - ok
21:30:49.0741 4296 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:30:49.0741 4296 MSTEE - ok
21:30:49.0753 4296 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:30:49.0754 4296 MTConfig - ok
21:30:49.0767 4296 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:30:49.0768 4296 Mup - ok
21:30:49.0813 4296 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:30:49.0822 4296 napagent - ok
21:30:49.0843 4296 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:30:49.0847 4296 NativeWifiP - ok
21:30:49.0911 4296 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130413.016\ENG64.SYS
21:30:49.0912 4296 NAVENG - ok
21:30:49.0964 4296 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20130413.016\EX64.SYS
21:30:49.0980 4296 NAVEX15 - ok
21:30:50.0036 4296 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:30:50.0049 4296 NDIS - ok
21:30:50.0065 4296 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:30:50.0066 4296 NdisCap - ok
21:30:50.0073 4296 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:30:50.0073 4296 NdisTapi - ok
21:30:50.0106 4296 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:30:50.0107 4296 Ndisuio - ok
21:30:50.0122 4296 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:30:50.0124 4296 NdisWan - ok
21:30:50.0157 4296 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:30:50.0157 4296 NDProxy - ok
21:30:50.0178 4296 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:30:50.0179 4296 NetBIOS - ok
21:30:50.0217 4296 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:30:50.0220 4296 NetBT - ok
21:30:50.0232 4296 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:30:50.0233 4296 Netlogon - ok
21:30:50.0265 4296 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:30:50.0270 4296 Netman - ok
21:30:50.0282 4296 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:30:50.0287 4296 netprofm - ok
21:30:50.0307 4296 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:30:50.0308 4296 NetTcpPortSharing - ok
21:30:50.0325 4296 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:30:50.0326 4296 nfrd960 - ok
21:30:50.0412 4296 [ E78A365CC3E0FBFC018A33DCE01909F8 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
21:30:50.0413 4296 NIS - ok
21:30:50.0452 4296 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:30:50.0456 4296 NlaSvc - ok
21:30:50.0465 4296 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:30:50.0466 4296 Npfs - ok
21:30:50.0479 4296 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:30:50.0481 4296 nsi - ok
21:30:50.0490 4296 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:30:50.0490 4296 nsiproxy - ok
21:30:50.0550 4296 [ B8965FB53551B5455630A4B804D0791F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:30:50.0574 4296 Ntfs - ok
21:30:50.0586 4296 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:30:50.0587 4296 Null - ok
21:30:50.0784 4296 [ 56ECA691BD4EF5CBF07B6D08B32F12AE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:30:50.0951 4296 nvlddmkm - ok
21:30:50.0976 4296 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:30:50.0978 4296 nvraid - ok
21:30:51.0011 4296 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:30:51.0013 4296 nvstor - ok
21:30:51.0029 4296 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:30:51.0030 4296 nv_agp - ok
21:30:51.0074 4296 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:30:51.0077 4296 odserv - ok
21:30:51.0121 4296 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:30:51.0123 4296 ohci1394 - ok
21:30:51.0164 4296 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:30:51.0167 4296 ose - ok
21:30:51.0204 4296 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:30:51.0209 4296 p2pimsvc - ok
21:30:51.0242 4296 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:30:51.0247 4296 p2psvc - ok
21:30:51.0262 4296 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:30:51.0264 4296 Parport - ok
21:30:51.0293 4296 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:30:51.0294 4296 partmgr - ok
21:30:51.0304 4296 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:30:51.0307 4296 PcaSvc - ok
21:30:51.0320 4296 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:30:51.0322 4296 pci - ok
21:30:51.0332 4296 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:30:51.0333 4296 pciide - ok
21:30:51.0351 4296 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:30:51.0354 4296 pcmcia - ok
21:30:51.0367 4296 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:30:51.0368 4296 pcw - ok
21:30:51.0389 4296 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:30:51.0394 4296 PEAUTH - ok
21:30:51.0431 4296 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:30:51.0448 4296 PeerDistSvc - ok
21:30:51.0527 4296 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:30:51.0529 4296 PerfHost - ok
21:30:51.0595 4296 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:30:51.0619 4296 pla - ok
21:30:51.0651 4296 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:30:51.0655 4296 PlugPlay - ok
21:30:51.0673 4296 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:30:51.0675 4296 PNRPAutoReg - ok
21:30:51.0681 4296 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:30:51.0684 4296 PNRPsvc - ok
21:30:51.0702 4296 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:30:51.0707 4296 PolicyAgent - ok
21:30:51.0727 4296 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:30:51.0729 4296 Power - ok
21:30:51.0774 4296 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:30:51.0775 4296 PptpMiniport - ok
21:30:51.0794 4296 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:30:51.0795 4296 Processor - ok
21:30:51.0842 4296 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:30:51.0845 4296 ProfSvc - ok
21:30:51.0857 4296 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:30:51.0858 4296 ProtectedStorage - ok
21:30:51.0896 4296 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:30:51.0898 4296 Psched - ok
21:30:51.0939 4296 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:30:51.0961 4296 ql2300 - ok
21:30:51.0978 4296 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:30:51.0980 4296 ql40xx - ok
21:30:51.0997 4296 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:30:52.0001 4296 QWAVE - ok
21:30:52.0009 4296 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:30:52.0010 4296 QWAVEdrv - ok
21:30:52.0024 4296 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:30:52.0025 4296 RasAcd - ok
21:30:52.0052 4296 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:30:52.0053 4296 RasAgileVpn - ok
21:30:52.0061 4296 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:30:52.0063 4296 RasAuto - ok
21:30:52.0094 4296 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:30:52.0095 4296 Rasl2tp - ok
21:30:52.0139 4296 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:30:52.0142 4296 RasMan - ok
21:30:52.0153 4296 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:30:52.0154 4296 RasPppoe - ok
21:30:52.0157 4296 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:30:52.0158 4296 RasSstp - ok
21:30:52.0172 4296 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:30:52.0174 4296 rdbss - ok
21:30:52.0193 4296 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:30:52.0194 4296 rdpbus - ok
21:30:52.0197 4296 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:30:52.0197 4296 RDPCDD - ok
21:30:52.0228 4296 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:30:52.0230 4296 RDPDR - ok
21:30:52.0249 4296 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:30:52.0249 4296 RDPENCDD - ok
21:30:52.0255 4296 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:30:52.0255 4296 RDPREFMP - ok
21:30:52.0286 4296 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:30:52.0288 4296 RDPWD - ok
21:30:52.0318 4296 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:30:52.0320 4296 rdyboost - ok
21:30:52.0336 4296 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:30:52.0337 4296 RemoteAccess - ok
21:30:52.0349 4296 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:30:52.0351 4296 RemoteRegistry - ok
21:30:52.0364 4296 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:30:52.0366 4296 RpcEptMapper - ok
21:30:52.0385 4296 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:30:52.0386 4296 RpcLocator - ok
21:30:52.0428 4296 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:30:52.0432 4296 RpcSs - ok
21:30:52.0437 4296 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:30:52.0438 4296 rspndr - ok
21:30:52.0471 4296 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
21:30:52.0472 4296 s3cap - ok
21:30:52.0477 4296 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:30:52.0478 4296 SamSs - ok
21:30:52.0507 4296 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:30:52.0510 4296 sbp2port - ok
21:30:52.0589 4296 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
21:30:52.0597 4296 SBSDWSCService - ok
21:30:52.0620 4296 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:30:52.0623 4296 SCardSvr - ok
21:30:52.0660 4296 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:30:52.0661 4296 scfilter - ok
21:30:52.0698 4296 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:30:52.0708 4296 Schedule - ok
21:30:52.0734 4296 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:30:52.0735 4296 SCPolicySvc - ok
21:30:52.0768 4296 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:30:52.0771 4296 SDRSVC - ok
21:30:52.0786 4296 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:30:52.0787 4296 secdrv - ok
21:30:52.0804 4296 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:30:52.0805 4296 seclogon - ok
21:30:52.0820 4296 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:30:52.0823 4296 SENS - ok
21:30:52.0835 4296 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:30:52.0837 4296 SensrSvc - ok
21:30:52.0851 4296 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:30:52.0852 4296 Serenum - ok
21:30:52.0879 4296 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:30:52.0881 4296 Serial - ok
21:30:52.0899 4296 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:30:52.0900 4296 sermouse - ok
21:30:52.0940 4296 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:30:52.0943 4296 SessionEnv - ok
21:30:52.0976 4296 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:30:52.0978 4296 sffdisk - ok
21:30:52.0991 4296 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:30:52.0991 4296 sffp_mmc - ok
21:30:53.0004 4296 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:30:53.0005 4296 sffp_sd - ok
21:30:53.0020 4296 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:30:53.0021 4296 sfloppy - ok
21:30:53.0045 4296 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:30:53.0050 4296 SharedAccess - ok
21:30:53.0067 4296 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:30:53.0071 4296 ShellHWDetection - ok
21:30:53.0091 4296 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:30:53.0092 4296 SiSRaid2 - ok
21:30:53.0103 4296 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:30:53.0105 4296 SiSRaid4 - ok
21:30:53.0127 4296 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:30:53.0128 4296 Smb - ok
21:30:53.0135 4296 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:30:53.0136 4296 SNMPTRAP - ok
21:30:53.0148 4296 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:30:53.0149 4296 spldr - ok
21:30:53.0185 4296 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:30:53.0189 4296 Spooler - ok
21:30:53.0255 4296 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:30:53.0322 4296 sppsvc - ok
21:30:53.0334 4296 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:30:53.0336 4296 sppuinotify - ok
21:30:53.0414 4296 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS
21:30:53.0424 4296 SRTSP - ok
21:30:53.0442 4296 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS
21:30:53.0443 4296 SRTSPX - ok
21:30:53.0481 4296 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:30:53.0486 4296 srv - ok
21:30:53.0500 4296 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:30:53.0506 4296 srv2 - ok
21:30:53.0539 4296 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:30:53.0541 4296 srvnet - ok
21:30:53.0555 4296 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:30:53.0558 4296 SSDPSRV - ok
21:30:53.0564 4296 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:30:53.0567 4296 SstpSvc - ok
21:30:53.0585 4296 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:30:53.0585 4296 stexstor - ok
21:30:53.0621 4296 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:30:53.0627 4296 stisvc - ok
21:30:53.0637 4296 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
21:30:53.0638 4296 storflt - ok
21:30:53.0653 4296 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
21:30:53.0654 4296 StorSvc - ok
21:30:53.0694 4296 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
21:30:53.0695 4296 storvsc - ok
21:30:53.0704 4296 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:30:53.0705 4296 swenum - ok
21:30:53.0715 4296 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:30:53.0721 4296 swprv - ok
21:30:53.0736 4296 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS
21:30:53.0740 4296 SymDS - ok
21:30:53.0762 4296 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS
21:30:53.0770 4296 SymEFA - ok
21:30:53.0821 4296 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:30:53.0824 4296 SymEvent - ok
21:30:53.0854 4296 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS
21:30:53.0856 4296 SymIRON - ok
21:30:53.0873 4296 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS
21:30:53.0878 4296 SymNetS - ok
21:30:53.0948 4296 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:30:53.0980 4296 SysMain - ok
21:30:54.0011 4296 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:30:54.0014 4296 TabletInputService - ok
21:30:54.0049 4296 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:30:54.0055 4296 TapiSrv - ok
21:30:54.0062 4296 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:30:54.0064 4296 TBS - ok
21:30:54.0114 4296 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:30:54.0135 4296 Tcpip - ok
21:30:54.0161 4296 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:30:54.0172 4296 TCPIP6 - ok
21:30:54.0207 4296 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:30:54.0207 4296 tcpipreg - ok
21:30:54.0222 4296 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:30:54.0222 4296 TDPIPE - ok
21:30:54.0255 4296 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:30:54.0256 4296 TDTCP - ok
21:30:54.0286 4296 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:30:54.0288 4296 tdx - ok
21:30:54.0306 4296 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:30:54.0307 4296 TermDD - ok
21:30:54.0344 4296 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:30:54.0354 4296 TermService - ok
21:30:54.0369 4296 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:30:54.0371 4296 Themes - ok
21:30:54.0388 4296 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:30:54.0390 4296 THREADORDER - ok
21:30:54.0394 4296 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:30:54.0397 4296 TrkWks - ok
21:30:54.0451 4296 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:30:54.0453 4296 TrustedInstaller - ok
21:30:54.0489 4296 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:30:54.0490 4296 tssecsrv - ok
21:30:54.0513 4296 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:30:54.0515 4296 TsUsbFlt - ok
21:30:54.0563 4296 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:30:54.0565 4296 tunnel - ok
21:30:54.0585 4296 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:30:54.0586 4296 uagp35 - ok
21:30:54.0622 4296 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:30:54.0626 4296 udfs - ok
21:30:54.0641 4296 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:30:54.0643 4296 UI0Detect - ok
21:30:54.0659 4296 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:30:54.0660 4296 uliagpkx - ok
21:30:54.0680 4296 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
21:30:54.0681 4296 umbus - ok
21:30:54.0696 4296 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:30:54.0697 4296 UmPass - ok
21:30:54.0716 4296 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
21:30:54.0721 4296 UmRdpService - ok
21:30:54.0740 4296 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:30:54.0746 4296 upnphost - ok
21:30:54.0792 4296 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:30:54.0793 4296 USBAAPL64 - ok
21:30:54.0799 4296 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:30:54.0800 4296 usbccgp - ok
21:30:54.0831 4296 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:30:54.0833 4296 usbcir - ok
21:30:54.0838 4296 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:30:54.0839 4296 usbehci - ok
21:30:54.0859 4296 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:30:54.0863 4296 usbhub - ok
21:30:54.0881 4296 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:30:54.0883 4296 usbohci - ok
21:30:54.0901 4296 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:30:54.0902 4296 usbprint - ok
21:30:54.0935 4296 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:30:54.0936 4296 usbscan - ok
21:30:54.0948 4296 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:30:54.0950 4296 USBSTOR - ok
21:30:54.0961 4296 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:30:54.0962 4296 usbuhci - ok
21:30:54.0974 4296 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:30:54.0976 4296 UxSms - ok
21:30:54.0982 4296 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:30:54.0983 4296 VaultSvc - ok
21:30:54.0991 4296 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:30:54.0992 4296 vdrvroot - ok
21:30:55.0031 4296 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:30:55.0037 4296 vds - ok
21:30:55.0076 4296 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:30:55.0077 4296 vga - ok
21:30:55.0096 4296 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:30:55.0096 4296 VgaSave - ok
21:30:55.0116 4296 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:30:55.0120 4296 vhdmp - ok
21:30:55.0148 4296 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:30:55.0149 4296 viaide - ok
21:30:55.0182 4296 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
21:30:55.0185 4296 vmbus - ok
21:30:55.0216 4296 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
21:30:55.0218 4296 VMBusHID - ok
21:30:55.0232 4296 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:30:55.0233 4296 volmgr - ok
21:30:55.0267 4296 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:30:55.0272 4296 volmgrx - ok
21:30:55.0289 4296 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:30:55.0291 4296 volsnap - ok
21:30:55.0304 4296 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:30:55.0305 4296 vsmraid - ok
21:30:55.0339 4296 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:30:55.0356 4296 VSS - ok
21:30:55.0363 4296 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:30:55.0364 4296 vwifibus - ok
21:30:55.0387 4296 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:30:55.0391 4296 W32Time - ok
21:30:55.0403 4296 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:30:55.0404 4296 WacomPen - ok
21:30:55.0436 4296 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:30:55.0437 4296 WANARP - ok
21:30:55.0440 4296 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:30:55.0441 4296 Wanarpv6 - ok
21:30:55.0472 4296 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:30:55.0488 4296 wbengine - ok
21:30:55.0509 4296 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:30:55.0512 4296 WbioSrvc - ok
21:30:55.0536 4296 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:30:55.0540 4296 wcncsvc - ok
21:30:55.0556 4296 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:30:55.0557 4296 WcsPlugInService - ok
21:30:55.0571 4296 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:30:55.0572 4296 Wd - ok
21:30:55.0609 4296 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
21:30:55.0610 4296 WDC_SAM - ok
21:30:55.0653 4296 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:30:55.0663 4296 Wdf01000 - ok
21:30:55.0680 4296 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:30:55.0683 4296 WdiServiceHost - ok
21:30:55.0686 4296 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:30:55.0688 4296 WdiSystemHost - ok
21:30:55.0717 4296 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:30:55.0721 4296 WebClient - ok
21:30:55.0730 4296 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:30:55.0734 4296 Wecsvc - ok
21:30:55.0745 4296 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:30:55.0747 4296 wercplsupport - ok
21:30:55.0756 4296 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:30:55.0759 4296 WerSvc - ok
21:30:55.0771 4296 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:30:55.0771 4296 WfpLwf - ok
21:30:55.0784 4296 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:30:55.0784 4296 WIMMount - ok
21:30:55.0800 4296 WinDefend - ok
21:30:55.0804 4296 WinHttpAutoProxySvc - ok
21:30:55.0844 4296 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:30:55.0847 4296 Winmgmt - ok
21:30:55.0885 4296 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:30:55.0918 4296 WinRM - ok
21:30:55.0972 4296 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:30:55.0973 4296 WinUsb - ok
21:30:55.0999 4296 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:30:56.0010 4296 Wlansvc - ok
21:30:56.0041 4296 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:30:56.0042 4296 WmiAcpi - ok
21:30:56.0069 4296 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:30:56.0072 4296 wmiApSrv - ok
21:30:56.0082 4296 WMPNetworkSvc - ok
21:30:56.0087 4296 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:30:56.0088 4296 WPCSvc - ok
21:30:56.0102 4296 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:30:56.0105 4296 WPDBusEnum - ok
21:30:56.0109 4296 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:30:56.0110 4296 ws2ifsl - ok
21:30:56.0124 4296 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
21:30:56.0127 4296 wscsvc - ok
21:30:56.0131 4296 WSearch - ok
21:30:56.0202 4296 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:30:56.0246 4296 wuauserv - ok
21:30:56.0279 4296 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:30:56.0280 4296 WudfPf - ok
21:30:56.0326 4296 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:30:56.0329 4296 WUDFRd - ok
21:30:56.0348 4296 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:30:56.0351 4296 wudfsvc - ok
21:30:56.0370 4296 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:30:56.0374 4296 WwanSvc - ok
21:30:56.0378 4296 ================ Scan global ===============================
21:30:56.0403 4296 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:30:56.0430 4296 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:30:56.0436 4296 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:30:56.0457 4296 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:30:56.0483 4296 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:30:56.0487 4296 [Global] - ok
21:30:56.0487 4296 ================ Scan MBR ==================================
21:30:56.0497 4296 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:30:56.0912 4296 \Device\Harddisk0\DR0 - ok
21:30:56.0913 4296 ================ Scan VBR ==================================
21:30:56.0917 4296 [ 38AE9BC7A889F172AD05FFE48384D8CA ] \Device\Harddisk0\DR0\Partition1
21:30:56.0919 4296 \Device\Harddisk0\DR0\Partition1 - ok
21:30:56.0927 4296 [ 645AF88657C0C97F0D423CDC0734D6A7 ] \Device\Harddisk0\DR0\Partition2
21:30:56.0928 4296 \Device\Harddisk0\DR0\Partition2 - ok
21:30:56.0929 4296 ============================================================
21:30:56.0929 4296 Scan finished
21:30:56.0929 4296 ============================================================
21:30:56.0941 2060 Detected object count: 0
21:30:56.0941 2060 Actual detected object count: 0
21:31:01.0907 24700 Deinitialize success
  • 0

#13
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Malwarebytes Anti-Rootkit BETA 1.05.0.1001
www.malwarebytes.org

Database version: v2013.05.03.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16540
Brian :: BRIAN-PC [administrator]

5/3/2013 8:40:49 AM
mbar-log-2013-05-03 (08-40-49).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 27629
Time elapsed: 6 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
  • 0

#14
DrCannibal

DrCannibal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Hi Gringo, please let me know if you see anything in the logs. Those scans didn't seems to uncover anything. I am still getting the redirects.

Thanks, Brian
  • 0

#15
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello DrCannibal

I would like you to run this custom script for me now and when it is complete please give me the report and a status update for the computer.

Run OTL Script

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Posted Image text box.
    :OTL
    IE - HKCU\..\URLSearchHook: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No CLSID value found
    FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
    O2 - BHO: (no name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No CLSID value found.
    O4 - HKLM..\Run: []  File not found
    O16:[b]64bit:[/b] - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_64.CAB (Reg Error: Key error.)
    O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
    O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
    O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    PRC - [2013/02/23 19:16:58 | 001,297,728 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
    PRC - [2013/02/23 16:54:28 | 000,805,752 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
    SRV - [2013/02/23 16:54:28 | 000,805,752 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
    FF - prefs.js..extensions.enabledAddons: rugxkrpfti%40rugxkrpfti.org:3.2
    [1641/02/16 01:42:32 | 000,004,830 | ---- | M] () (No name found) -- C:\Users\Brian\AppData\Roaming\Mozilla\Firefox\Profiles\7kply0ku.default\extensions\[email protected]
    O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
    [2013/04/13 22:30:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Spigot
      
    
    :Files
    ipconfig /flushdns /c
    
    :Commands
    [PURITY]
    [emptyjava]
    [EMPTYFLASH]
    [reboot]
    
  • Then click the Run Fix button at the top.
  • Click Posted Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

    Note** if the report does not popup after the computer reboots you can find it here in this folder - C:\_OTL\MovedFiles

    It will be named - mmddyyyy_hhmmss.log

    Where mmddyyyy_hhmmss - are numbers representing the date and time the fix was run.

Let me know How things are doing

Gringo
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP