Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

slow computer [Solved]

Started by LUCYR , Feb 23 2014 01:04 PM

This topic is locked

#16
LUCYR

Posted 25 February 2014 - 11:15 PM

Member

Topic Starter
Member
18 posts

Great I think this is it

========== COMMANDS ==========
Restore point Set: OTL Restore Point
Error: Unable to interpret < :OTL> in the current context!
Error: Unable to interpret < IE:64bit: - HKLM\..\SearchScopes\{3F63E795-6EC4-4668-8712-0FF1975092F6}: "URL" = http://www.ask.com/w...&l=dis&o=cahpd> in the current context!
Error: Unable to interpret < IE - HKLM\..\SearchScopes\{3F63E795-6EC4-4668-8712-0FF1975092F6}: "URL" = http://www.ask.com/w...&l=dis&o=cahpd> in the current context!
Error: Unable to interpret < [2014/02/10 11:34:38 | 000,000,000 | ---D | M] (Websteroids) -- C:\Users\Lucille\AppData\Roaming\Mozilla\Firefox\extensions\[email protected]> in the current context!
Error: Unable to interpret < O4 - HKLM..\Run: [] File not found> in the current context!
Error: Unable to interpret < O4 - HKCU..\Run: [Opevof] "C:\Users\Lucille\AppData\Roaming\Enzako\ryfoz.exe" File not found> in the current context!
Error: Unable to interpret < O1364bit: - gopher Prefix: missing> in the current context!
Error: Unable to interpret < O13 - gopher Prefix: missing> in the current context!
Error: Unable to interpret < O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll) - File not found> in the current context!
Error: Unable to interpret < [2014/02/10 11:45:16 | 000,000,000 | ---D | C] -- C:\ProgramData\InternetUpdater> in the current context!
Error: Unable to interpret < [2014/02/10 11:34:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Updater> in the current context!
Error: Unable to interpret < [2014/02/10 11:34:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Websteroids> in the current context!
Error: Unable to interpret < :Commands> in the current context!

OTL by OldTimer - Version 3.2.69.0 log created on 02252014_205021

malware had 46 viruses

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.02.26.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Lucille :: LUCILLE-PC [administrator]

25/02/2014 8:59:56 PM
mbam-log-2014-02-25 (20-59-56).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 214601
Time elapsed: 4 minute(s), 50 second(s)

Memory Processes Detected: 1
C:\ProgramData\InternetUpdater\InternetUpdaterService.exe (PUP.Optional.InternetUpdaterService.A) -> 1772 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 7
HKLM\SYSTEM\CurrentControlSet\Services\InternetUpdater (PUP.Optional.InternetUpdaterService.A) -> Quarantined and deleted successfully.
HKCR\AppID\{384997EE-E3BE-49C4-9ECA-C62B7C08128A} (PUP.Optional.DynConIE.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} (PUP.Optional.WebSteroids.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} (PUP.Optional.DynConIE.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetUpdater (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Websteroids (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Classes\AppID\DynConIE.DLL (PUP.Optional.DynConIE.A) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKLM\SYSTEM\CurrentControlSet\Services\InternetUpdater|ImagePath (PUP.Optional.InternetUpdater.A) -> Data: "C:\ProgramData\InternetUpdater\InternetUpdaterService.exe" -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 8
C:\ProgramData\InternetUpdater (PUP.Optional.InternetUpdater.A) -> Delete on reboot.
C:\ProgramData\Websteroids (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome\content (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\IE (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.

Files Detected: 26
C:\ProgramData\InternetUpdater\InternetUpdaterService.exe (PUP.Optional.InternetUpdaterService.A) -> Delete on reboot.
C:\ProgramData\InternetUpdater\InternetUpdater.ico (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\app.dat (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\data.dat (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\InternetUpdaterService.exe.config (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\Uninstall.exe (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\app.dat (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Uninstall.exe (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Websteroids.ico (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\common.crx (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\_common.crx (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\announce.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\background.html (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\common.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\contentscript.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon128.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon16.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon48.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\iframecontentscript.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\manifest.json (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome.manifest (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\install.rdf (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome\content\main.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome\content\overlay.xul (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\IE\common.dll (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.

(end)

#17
LUCYR

Posted 25 February 2014 - 11:19 PM

Member

Topic Starter
Member
18 posts

I think this is it
========== COMMANDS ==========
Restore point Set: OTL Restore Point
Error: Unable to interpret < :OTL> in the current context!
Error: Unable to interpret < IE:64bit: - HKLM\..\SearchScopes\{3F63E795-6EC4-4668-8712-0FF1975092F6}: "URL" = http://www.ask.com/w...&l=dis&o=cahpd> in the current context!
Error: Unable to interpret < IE - HKLM\..\SearchScopes\{3F63E795-6EC4-4668-8712-0FF1975092F6}: "URL" = http://www.ask.com/w...&l=dis&o=cahpd> in the current context!
Error: Unable to interpret < [2014/02/10 11:34:38 | 000,000,000 | ---D | M] (Websteroids) -- C:\Users\Lucille\AppData\Roaming\Mozilla\Firefox\extensions\[email protected]> in the current context!
Error: Unable to interpret < O4 - HKLM..\Run: [] File not found> in the current context!
Error: Unable to interpret < O4 - HKCU..\Run: [Opevof] "C:\Users\Lucille\AppData\Roaming\Enzako\ryfoz.exe" File not found> in the current context!
Error: Unable to interpret < O1364bit: - gopher Prefix: missing> in the current context!
Error: Unable to interpret < O13 - gopher Prefix: missing> in the current context!
Error: Unable to interpret < O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll) - File not found> in the current context!
Error: Unable to interpret < [2014/02/10 11:45:16 | 000,000,000 | ---D | C] -- C:\ProgramData\InternetUpdater> in the current context!
Error: Unable to interpret < [2014/02/10 11:34:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Updater> in the current context!
Error: Unable to interpret < [2014/02/10 11:34:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Websteroids> in the current context!
Error: Unable to interpret < :Commands> in the current context!

OTL by OldTimer - Version 3.2.69.0 log created on 02252014_205021

malware
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.02.26.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Lucille :: LUCILLE-PC [administrator]

25/02/2014 8:59:56 PM
mbam-log-2014-02-25 (20-59-56).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 214601
Time elapsed: 4 minute(s), 50 second(s)

Memory Processes Detected: 1
C:\ProgramData\InternetUpdater\InternetUpdaterService.exe (PUP.Optional.InternetUpdaterService.A) -> 1772 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 7
HKLM\SYSTEM\CurrentControlSet\Services\InternetUpdater (PUP.Optional.InternetUpdaterService.A) -> Quarantined and deleted successfully.
HKCR\AppID\{384997EE-E3BE-49C4-9ECA-C62B7C08128A} (PUP.Optional.DynConIE.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} (PUP.Optional.WebSteroids.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} (PUP.Optional.DynConIE.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetUpdater (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Websteroids (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Classes\AppID\DynConIE.DLL (PUP.Optional.DynConIE.A) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKLM\SYSTEM\CurrentControlSet\Services\InternetUpdater|ImagePath (PUP.Optional.InternetUpdater.A) -> Data: "C:\ProgramData\InternetUpdater\InternetUpdaterService.exe" -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 8
C:\ProgramData\InternetUpdater (PUP.Optional.InternetUpdater.A) -> Delete on reboot.
C:\ProgramData\Websteroids (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome\content (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\IE (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.

Files Detected: 26
C:\ProgramData\InternetUpdater\InternetUpdaterService.exe (PUP.Optional.InternetUpdaterService.A) -> Delete on reboot.
C:\ProgramData\InternetUpdater\InternetUpdater.ico (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\app.dat (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\data.dat (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\InternetUpdaterService.exe.config (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\InternetUpdater\Uninstall.exe (PUP.Optional.InternetUpdater.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\app.dat (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Uninstall.exe (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Websteroids.ico (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\common.crx (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\_common.crx (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\announce.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\background.html (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\common.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\contentscript.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon128.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon16.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\icon48.png (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\iframecontentscript.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Chrome\unzip\manifest.json (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome.manifest (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\install.rdf (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome\content\main.js (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\Firefox\chrome\content\overlay.xul (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.
C:\ProgramData\Websteroids\IE\common.dll (PUP.Optional.Websteroids.A) -> Quarantined and deleted successfully.

(end)

#18
LUCYR

Posted 26 February 2014 - 04:47 AM

Member

Topic Starter
Member
18 posts

eset log ? there was 14 virus found but this is all that that was in that log and I made sure that the option Scan archives is checked and the option Remove found threats is NOT checked.

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK

mbamlog

OTL logfile created on: 25/02/2014 7:22:10 PM - Run 7
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lucille\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16518)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

8.00 Gb Total Physical Memory | 5.95 Gb Available Physical Memory | 74.42% Memory free
16.00 Gb Paging File | 13.62 Gb Available in Paging File | 85.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 685.70 Gb Total Space | 508.48 Gb Free Space | 74.15% Space Free | Partition Type: NTFS
Drive D: | 12.84 Gb Total Space | 2.30 Gb Free Space | 17.91% Space Free | Partition Type: NTFS

Computer Name: LUCILLE-PC | User Name: Lucille | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/01/14 17:07:04 | 000,045,568 | ---- | M] (Parallel Lines Development, LLC) -- C:\ProgramData\InternetUpdater\InternetUpdaterService.exe
PRC - [2014/01/02 16:46:10 | 030,714,328 | ---- | M] (Dropbox, Inc.) -- C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2013/12/20 22:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/12/14 05:26:30 | 000,309,328 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2013/04/04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 13:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/03/24 13:59:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lucille\Downloads\OTL.exe
PRC - [2012/02/23 12:30:40 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
PRC - [2012/01/06 15:30:00 | 001,446,760 | ---- | M] (Garmin) -- C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
PRC - [2010/11/27 00:55:42 | 000,648,032 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
PRC - [2010/11/27 00:55:42 | 000,398,176 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
PRC - [2010/08/17 19:26:38 | 000,560,848 | ---- | M] (CrossLoop Inc) -- C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe
PRC - [2009/08/23 00:00:00 | 000,091,432 | ---- | M] (Sage) -- C:\Program Files (x86)\winsim\ConnectionManager\Simply.SystemTrayIcon.exe
PRC - [2009/08/23 00:00:00 | 000,029,992 | ---- | M] (Sage) -- C:\Program Files (x86)\winsim\ConnectionManager\SimplyConnectionManager.exe
PRC - [2009/08/05 12:45:22 | 000,206,120 | ---- | M] (CyberLink) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2009/07/23 19:45:52 | 000,128,296 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2009/06/04 18:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 18:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2009/05/26 00:36:13 | 000,656,896 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
PRC - [2008/11/20 09:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
PRC - [2008/08/12 12:15:28 | 000,257,880 | ---- | M] (Creative Home) -- C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2009 Deluxe\Planner\PLNRnote.exe
PRC - [2008/03/19 22:45:36 | 001,675,264 | ---- | M] (D-Link) -- C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe
PRC - [2007/01/19 11:49:04 | 000,049,152 | ---- | M] (Wireless Service) -- C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe

========== Modules (No Company Name) ==========

MOD - [2014/02/25 03:15:39 | 000,399,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\49d7f498821498b3d5e9fe5bafceba41\System.Xml.Linq.ni.dll
MOD - [2014/02/25 03:15:12 | 000,190,976 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\75537eea06d1200805de72f3f7751091\UIAutomationTypes.ni.dll
MOD - [2014/02/25 03:15:10 | 000,018,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\19156dbc54c3ded7ba00c53d19b6ee96\PresentationFramework-SystemXml.ni.dll
MOD - [2014/02/25 03:15:10 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio4b37ff64#\64c51ef21713c34883a839dd202ff655\PresentationFramework-SystemXmlLinq.ni.dll
MOD - [2014/02/25 03:06:02 | 018,813,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\a2eb039301af47660eebc7566ce02b9c\PresentationFramework.ni.dll
MOD - [2014/02/25 03:05:49 | 000,470,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\ae01d58bd1cb283ec7b603919e2a8fb3\PresentationFramework.Aero.ni.dll
MOD - [2014/02/25 03:05:45 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\639f444db9491d25b5d158531e1f7d9b\System.Xaml.ni.dll
MOD - [2014/02/25 03:05:44 | 011,025,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\b9fe579783a35b57dd7e69375f35e239\PresentationCore.ni.dll
MOD - [2014/02/25 03:05:40 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\05ca0ca95b6fcc0d710b63b6200cc178\System.Windows.Forms.ni.dll
MOD - [2014/02/25 03:05:37 | 007,662,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d91f3556f8011a5d48e1448e3fa8df9e\System.Xml.ni.dll
MOD - [2014/02/25 03:05:36 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\4e69f1e7d86d79012db2d7e0dadc8880\System.Core.ni.dll
MOD - [2014/02/25 03:05:35 | 000,736,768 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\27ca661a959d853d190b567343d7ef05\System.Security.ni.dll
MOD - [2014/02/25 03:05:33 | 003,950,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\ef90aeb894485d14b249d102309b6df3\WindowsBase.ni.dll
MOD - [2014/02/25 03:05:32 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c4477b3ce64d0d612d1ab0dba425b77f\System.Drawing.ni.dll
MOD - [2014/02/25 03:05:30 | 010,060,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\79f6324a598a7c4446a4a1168be7c4b1\System.ni.dll
MOD - [2014/02/25 03:05:23 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\045c9588954c3662d542b53f4462268b\mscorlib.ni.dll
MOD - [2014/02/12 03:40:12 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\4412bbbb473c356b5ea3e1ea13b25f52\System.Management.ni.dll
MOD - [2014/02/12 03:33:31 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll
MOD - [2014/02/12 03:33:30 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b34b348a9935338b1282fd0c9309eb1f\System.ServiceProcess.ni.dll
MOD - [2014/02/12 03:33:16 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\59312674865dc2a19c27f9f460b1673b\System.Runtime.Remoting.ni.dll
MOD - [2014/02/12 03:33:14 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\fe1942c05eda4f9744f80afb4ae76a2d\System.Data.ni.dll
MOD - [2014/02/12 03:33:06 | 014,340,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll
MOD - [2014/02/12 03:32:53 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8bc548587e91ecf0552a40e47bbf99cc\System.Windows.Forms.ni.dll
MOD - [2014/02/12 03:32:47 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5c24d3b0041ebf4f48a93615b9fa3de9\System.Drawing.ni.dll
MOD - [2014/02/12 03:32:45 | 000,185,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\f9bb7cc29930815b098e26853962c1de\UIAutomationTypes.ni.dll
MOD - [2014/02/12 03:32:44 | 012,238,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll
MOD - [2014/02/12 03:32:34 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll
MOD - [2014/02/12 03:32:30 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll
MOD - [2014/02/12 03:32:26 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll
MOD - [2014/02/12 03:32:25 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll
MOD - [2014/02/12 03:32:19 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll
MOD - [2014/01/21 20:57:02 | 000,037,688 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll
MOD - [2014/01/02 16:45:04 | 003,558,400 | ---- | M] () -- C:\Users\Lucille\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2013/10/18 15:55:02 | 025,100,288 | ---- | M] () -- C:\Users\Lucille\AppData\Roaming\Dropbox\bin\libcef.dll
MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010/11/04 17:58:05 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2010/01/22 21:24:55 | 000,062,760 | ---- | M] () -- C:\Windows\assembly\GAC_32\Simply.ConnectionManagerService\15.0.0.1__bfd98eaca3f932d5\Simply.ConnectionManagerService.dll
MOD - [2009/08/05 12:45:22 | 000,931,112 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
MOD - [2009/07/15 16:51:04 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
MOD - [2009/07/15 16:51:02 | 000,131,072 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
MOD - [2009/07/15 16:50:58 | 000,040,960 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
MOD - [2009/07/15 16:50:56 | 000,036,864 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
MOD - [2009/07/15 16:50:56 | 000,007,680 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
MOD - [2009/07/15 16:50:54 | 000,005,632 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
MOD - [2009/07/15 16:50:52 | 000,018,944 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
MOD - [2009/07/15 16:50:44 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
MOD - [2009/05/26 00:36:13 | 000,656,896 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
MOD - [2007/12/11 15:36:00 | 000,245,760 | ---- | M] () -- C:\Windows\SysWOW64\WlanApp.dll

========== Services (SafeList) ==========

SRV:64bit: - [2014/02/06 02:48:45 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/10/23 17:14:22 | 000,348,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2013/10/23 17:14:22 | 000,023,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2013/05/26 21:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/05/15 15:24:10 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2014/02/20 16:28:32 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/01/14 17:07:04 | 000,045,568 | ---- | M] (Parallel Lines Development, LLC) [Auto | Running] -- C:\ProgramData\InternetUpdater\InternetUpdaterService.exe -- (InternetUpdater)
SRV - [2013/12/20 22:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/11/04 18:31:56 | 000,092,160 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2013/09/11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2013/04/04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/03/01 11:11:32 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2010/11/27 00:55:42 | 000,398,176 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider)
SRV - [2010/10/22 12:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\hp\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/08/17 19:26:38 | 000,560,848 | ---- | M] (CrossLoop Inc) [Auto | Running] -- C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe -- (CrossLoopService)
SRV - [2010/07/21 08:50:26 | 000,814,080 | ---- | M] (GlavSoft LLC.) [On_Demand | Stopped] -- C:\Users\Lucille\AppData\Local\CrossLoop\tvnserver.exe -- (tvnserver)
SRV - [2010/04/17 11:01:09 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/08/23 00:00:00 | 000,029,992 | ---- | M] (Sage) [Auto | Running] -- C:\Program Files (x86)\winsim\ConnectionManager\SimplyConnectionManager.exe -- (Simply Accounting Database Connection Manager)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 18:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
SRV - [2009/05/22 10:02:20 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2007/05/31 16:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 16:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/09/27 09:53:06 | 000,134,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2013/04/04 13:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2013/02/11 20:12:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/05/10 07:06:14 | 000,022,528 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
DRV:64bit: - [2011/03/10 22:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 22:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 05:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 03:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/10/20 07:05:02 | 000,059,048 | ---- | M] (SafeNet, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SNTUSB64.SYS -- (SNTUSB64)
DRV:64bit: - [2010/07/21 15:59:28 | 000,045,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2010/07/07 17:18:58 | 000,051,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d)
DRV:64bit: - [2009/09/17 07:05:02 | 000,145,448 | ---- | M] (SafeNet, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\sentinel64.sys -- (Sentinel64)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 16:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/07/13 06:31:42 | 000,233,472 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/06/29 01:00:00 | 000,116,752 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 10:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/05/25 04:38:20 | 000,966,144 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2009/05/15 16:02:04 | 005,957,632 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2008/05/20 17:33:36 | 000,028,416 | ---- | M] (Research In Motion Limited) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RimUsb_AMD64.sys -- (RimUsb)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{21F34268-63E5-4FCD-B6DB-A8E8360F612D}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{3F63E795-6EC4-4668-8712-0FF1975092F6}: "URL" = http://www.ask.com/w...}&l=dis&o=cahpd
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{21F34268-63E5-4FCD-B6DB-A8E8360F612D}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{3F63E795-6EC4-4668-8712-0FF1975092F6}: "URL" = http://www.ask.com/w...}&l=dis&o=cahpd
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\Lucille\Desktop
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{21F34268-63E5-4FCD-B6DB-A8E8360F612D}: "URL" = http://www.bing.com/...E11SR&pc=HPDTDF
IE - HKCU\..\SearchScopes\{3F63E795-6EC4-4668-8712-0FF1975092F6}: "URL" = http://www.ask.com/w...}&l=dis&o=cahpd
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7ADRA_enCA370
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@rim.com/npappworld: C:\Program Files (x86)\Research In Motion Limited\BlackBerry App World Browser Plugin\npappworld.dll ()
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Lucille\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Lucille\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Lucille\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/04/29 06:39:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/04/29 06:39:12 | 000,000,000 | ---D | M]

[2014/02/10 11:34:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lucille\AppData\Roaming\Mozilla\Firefox\extensions
[2014/02/10 11:34:38 | 000,000,000 | ---D | M] (Websteroids) -- C:\Users\Lucille\AppData\Roaming\Mozilla\Firefox\extensions\[email protected]

========== Chrome ==========

CHR - Extension: No name found = C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1\
CHR - Extension: No name found = C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: No name found = C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1\
CHR - Extension: No name found = C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
CHR - Extension: No name found = C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.9.0.12585_0\
CHR - Extension: No name found = C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: No name found = C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\

O1 HOSTS File: ([2014/02/25 18:44:49 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Microsoft Live Search Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Microsoft Live Search Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4:64bit: - HKLM..\Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ANIWZCS2Service] C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe (Wireless Service)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ConnectionManager] C:\Program Files (x86)\winsim\ConnectionManager\Simply.SystemTrayIcon.exe (Sage)
O4 - HKLM..\Run: [D-Link D-Link Wireless N DWA-130] C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe (D-Link)
O4 - HKLM..\Run: [Garmin Lifetime Updater] C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe (Garmin)
O4 - HKLM..\Run: [HP Remote Solution] C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe ()
O4 - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
O4 - HKCU..\Run: [Opevof] "C:\Users\Lucille\AppData\Roaming\Enzako\ryfoz.exe" File not found
O4:64bit: - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O4 - Startup: C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab (Microsoft Office Template and Media Control)
O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.aka...vex-2.2.5.0.cab (DLM Control)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail....NPUplden-ca.cab (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 64.59.144.16 64.59.150.132
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{58971045-C8DD-4C62-92E9-AE5F8B7B25E7}: DhcpNameServer = 64.71.255.198 64.71.255.253
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8918A3B4-8B80-41CA-94DA-4899E85C468E}: DhcpNameServer = 64.59.144.16 64.59.150.132
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll File not found
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll File not found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll) - File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/02/25 19:09:28 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2014/02/25 19:08:54 | 001,037,734 | ---- | C] (Thisisu) -- C:\Users\Lucille\Desktop\JRT.exe
[2014/02/25 18:52:48 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/02/25 03:01:19 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014/02/12 03:01:12 | 000,548,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2014/02/12 03:00:34 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2014/02/12 03:00:34 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2014/02/12 03:00:34 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2014/02/12 03:00:33 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2014/02/12 03:00:32 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2014/02/12 03:00:32 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2014/02/12 03:00:32 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2014/02/12 03:00:31 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2014/02/12 03:00:30 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2014/02/12 03:00:30 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2014/02/12 03:00:30 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2014/02/12 03:00:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2014/02/12 03:00:30 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2014/02/12 03:00:30 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2014/02/12 03:00:29 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2014/02/12 03:00:29 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2014/02/12 03:00:29 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2014/02/12 03:00:29 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2014/02/12 03:00:29 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2014/02/12 03:00:28 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2014/02/12 03:00:27 | 002,041,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2014/02/12 03:00:27 | 001,964,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2014/02/12 03:00:24 | 005,768,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2014/02/11 18:38:25 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2014/02/11 18:38:25 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2014/02/11 18:38:13 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2014/02/11 18:38:13 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2014/02/11 18:38:13 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2014/02/11 18:38:13 | 000,572,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2014/02/11 18:38:13 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2014/02/11 18:38:12 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2014/02/11 18:38:11 | 000,553,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2014/02/11 18:38:11 | 000,528,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2014/02/11 18:38:11 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2014/02/11 18:38:11 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2014/02/11 18:38:11 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2014/02/11 18:38:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2014/02/11 18:38:10 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2014/02/11 18:38:10 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2014/02/11 18:38:10 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2014/02/11 18:38:10 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2014/02/11 18:38:10 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2014/02/11 18:38:01 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2014/02/11 18:38:01 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2014/02/11 16:41:27 | 000,000,000 | ---D | C] -- C:\Users\Lucille\Documents\Jones Serpentine sewing machine
[2014/02/10 11:45:16 | 000,000,000 | ---D | C] -- C:\ProgramData\InternetUpdater
[2014/02/10 11:34:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Updater
[2014/02/10 11:34:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Websteroids
[2014/02/10 11:33:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Manuals Finder
[2014/02/10 11:33:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Manuals Finder
[2014/02/09 19:40:37 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Mozilla
[2014/02/06 18:58:03 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Itwywa
[2014/02/06 18:44:35 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Matyvi
[2014/02/06 14:47:42 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Enzako
[2014/02/06 10:39:10 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Zuhyrywa
[2014/02/06 06:44:22 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Ibdeyqby
[2014/02/06 02:49:26 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Neavfoim
[2014/02/05 22:41:19 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Ahhucoyn
[2014/02/05 18:46:12 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Xypeqi
[2014/02/05 14:45:47 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Lopoyho
[2014/02/05 13:36:06 | 000,000,000 | ---D | C] -- C:\Users\Lucille\AppData\Roaming\Dohuawmi
[4 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/02/25 19:08:54 | 001,037,734 | ---- | M] (Thisisu) -- C:\Users\Lucille\Desktop\JRT.exe
[2014/02/25 19:08:32 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/02/25 19:08:32 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/02/25 19:05:43 | 000,782,510 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/02/25 19:05:43 | 000,666,652 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/02/25 19:05:43 | 000,126,328 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/02/25 19:01:50 | 000,001,944 | ---- | M] () -- C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Photosmart 7520 series.lnk
[2014/02/25 19:01:36 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1cec69d91e59d.job
[2014/02/25 19:01:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/02/25 19:01:06 | 2146,873,343 | -HS- | M] () -- C:\hiberfil.sys
[2014/02/25 18:56:56 | 000,000,915 | ---- | M] () -- C:\Users\Lucille\Desktop\adwcleaner - Shortcut.lnk
[2014/02/25 18:54:28 | 001,241,834 | ---- | M] () -- C:\Users\Lucille\Desktop\adwcleaner.exe
[2014/02/25 18:45:00 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000UA1ce77efabf53454.job
[2014/02/25 18:44:49 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2014/02/25 18:30:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/02/25 18:28:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/02/25 18:00:00 | 000,000,500 | ---- | M] () -- C:\Windows\tasks\Foresight Software Registration3.job
[2014/02/25 15:45:00 | 000,000,864 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000Core1ce77efabd17faf.job
[2014/02/25 05:22:40 | 000,000,512 | ---- | M] () -- C:\Users\Lucille\Desktop\MBR.dat
[2014/02/25 03:22:00 | 000,000,340 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForLucille.job
[2014/02/25 03:03:10 | 000,766,376 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014/02/25 01:03:01 | 000,000,474 | ---- | M] () -- C:\Windows\tasks\Foresight Software Update3.job
[2014/02/22 09:25:26 | 000,000,446 | ---- | M] () -- C:\Windows\tasks\PC Helper 360.job
[2014/02/21 07:17:38 | 003,317,697 | ---- | M] () -- C:\Users\Lucille\Documents\Collingwood appraisal 2014.pdf
[2014/02/20 16:28:30 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014/02/20 16:28:30 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014/02/10 11:34:39 | 000,001,971 | ---- | M] () -- C:\Users\Lucille\Desktop\Sync Folder.lnk
[2014/02/10 11:33:43 | 000,001,983 | ---- | M] () -- C:\Users\Public\Desktop\Manuals Finder.lnk
[2014/02/06 03:30:12 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2014/02/06 03:07:39 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2014/02/06 03:06:47 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2014/02/06 02:56:03 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2014/02/06 02:52:11 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2014/02/06 02:49:03 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2014/02/06 02:48:45 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2014/02/06 02:48:11 | 000,708,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2014/02/06 02:32:49 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2014/02/06 02:17:15 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2014/02/06 02:11:37 | 005,768,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2014/02/06 02:01:36 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2014/02/06 02:00:46 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2014/02/06 01:57:13 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2014/02/06 01:52:21 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2014/02/06 01:50:32 | 002,041,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2014/02/06 01:49:22 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2014/02/06 01:47:22 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2014/02/06 01:46:27 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2014/02/06 01:25:43 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2014/02/06 01:09:30 | 001,964,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2014/02/06 00:40:06 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2014/02/06 00:34:31 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2014/02/05 13:36:07 | 000,012,326 | ---- | M] () -- C:\Users\Lucille\AppData\Local\dlsfscvo
[2014/02/05 13:35:04 | 000,068,260 | ---- | M] () -- C:\Users\Lucille\AppData\Local\ottujgmv
[2014/02/05 13:34:01 | 000,000,000 | ---- | M] () -- C:\Users\Lucille\AppData\Roaming\SharedSettings.ccs
[2014/02/03 21:26:37 | 000,002,185 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/02/03 14:02:36 | 004,521,989 | ---- | M] () -- C:\Users\Lucille\Documents\Husky Rent analysis 2014.pdf
[2014/01/31 11:23:42 | 000,065,290 | ---- | M] () -- C:\Users\Lucille\Documents\Husky offer 2014.pdf
[2014/01/31 11:22:57 | 000,065,290 | ---- | M] () -- C:\Users\Lucille\Desktop\2177.pdf
[2014/01/31 11:03:08 | 000,000,552 | ---- | M] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2014/01/27 13:09:46 | 000,642,691 | ---- | M] () -- C:\Users\Lucille\Documents\Scan0001.pdf
[4 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/02/25 18:56:56 | 000,000,915 | ---- | C] () -- C:\Users\Lucille\Desktop\adwcleaner - Shortcut.lnk
[2014/02/25 18:54:28 | 001,241,834 | ---- | C] () -- C:\Users\Lucille\Desktop\adwcleaner.exe
[2014/02/25 05:22:40 | 000,000,512 | ---- | C] () -- C:\Users\Lucille\Desktop\MBR.dat
[2014/02/21 07:17:38 | 003,317,697 | ---- | C] () -- C:\Users\Lucille\Documents\Collingwood appraisal 2014.pdf
[2014/02/10 11:34:39 | 000,001,971 | ---- | C] () -- C:\Users\Lucille\Desktop\Sync Folder.lnk
[2014/02/10 11:33:43 | 000,001,983 | ---- | C] () -- C:\Users\Public\Desktop\Manuals Finder.lnk
[2014/02/05 13:36:07 | 000,012,326 | ---- | C] () -- C:\Users\Lucille\AppData\Local\dlsfscvo
[2014/02/05 13:35:04 | 000,068,260 | ---- | C] () -- C:\Users\Lucille\AppData\Local\ottujgmv
[2014/02/05 13:34:01 | 000,000,000 | ---- | C] () -- C:\Users\Lucille\AppData\Roaming\SharedSettings.ccs
[2014/02/03 14:02:36 | 004,521,989 | ---- | C] () -- C:\Users\Lucille\Documents\Husky Rent analysis 2014.pdf
[2014/01/31 11:23:42 | 000,065,290 | ---- | C] () -- C:\Users\Lucille\Documents\Husky offer 2014.pdf
[2014/01/31 11:22:57 | 000,065,290 | ---- | C] () -- C:\Users\Lucille\Desktop\2177.pdf
[2014/01/27 13:09:45 | 000,642,691 | ---- | C] () -- C:\Users\Lucille\Documents\Scan0001.pdf
[2014/01/23 15:37:31 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013/04/01 09:49:50 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-LUCILLE-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2012/06/27 06:19:09 | 001,498,458 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1616.1
[2012/06/27 06:19:05 | 003,336,067 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1616.0
[2012/06/27 06:19:05 | 001,476,688 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1616.JPG
[2012/06/27 06:18:07 | 000,612,425 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1615.0
[2012/06/27 06:18:07 | 000,609,452 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1615.JPG
[2012/06/19 08:34:32 | 000,757,382 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpPHOTO.JPG
[2012/06/18 20:49:03 | 001,824,193 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpPHOTO (1).0
[2012/06/18 20:49:03 | 000,666,190 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpPHOTO (1).JPG
[2012/06/18 20:46:49 | 002,033,083 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpPHOTO.0
[2012/01/09 15:43:15 | 000,055,986 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_4458[1].JPG
[2011/09/22 22:23:55 | 000,749,710 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1547.0
[2011/09/22 22:23:55 | 000,651,155 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1547.JPG
[2011/07/30 11:43:43 | 001,263,963 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1048.JPG
[2011/07/30 11:42:18 | 000,917,919 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_1050.JPG
[2011/06/19 14:03:13 | 000,006,242 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpDAD N LAURA.0
[2011/06/19 14:03:13 | 000,006,227 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpDAD N LAURA.JPG
[2011/05/23 12:24:13 | 000,001,854 | ---- | C] () -- C:\Users\Lucille\AppData\Roaming\GhostObjGAFix.xml
[2011/01/19 13:31:25 | 002,089,630 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_0490.0
[2011/01/19 13:31:25 | 000,880,725 | ---- | C] () -- C:\Users\Lucille\AppData\Local\tmpIMG_0490.JPG
[2010/09/13 12:42:27 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/01/06 17:04:20 | 000,000,000 | ---- | C] () -- C:\Users\Lucille\AppData\Roaming\wklnhst.dat

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/25 18:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 17:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 04:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

security check

Results of screen317's Security Check version 0.99.79
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
(On Access scanning disabled!)
Error obtaining update status for antivirus!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.75.0.1300
Java 7 Update 51
Adobe Reader XI
Google Chrome 32.0.1700.102
Google Chrome 32.0.1700.107
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

not sure on changing password, it is not all the time it happens just occasionally

#19
pystryker

Posted 26 February 2014 - 06:36 AM

Trusted Helper

Malware Removal
3,912 posts

Your's is only the 2nd log I've seen that happen with regarding the ESET Scanner. No worries on that though, the majority of the time, the files it finds are remnants and are harmless.

The Malwarebytes scan looks good :thumbsup:

For some reason, OTL keeps giving errors when executing the script. That means it's leaving things behind that need to be removed. So, let's take a look with a different tool.

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. The version you need is the 64-Bit version.

Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
Press Scan button.
It will produce a log called FRST.txt in the same directory the tool is run from.
Please copy and paste log back here.
The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST64.exe). Please also paste that along with the FRST.txt into your reply.

Things I need to see in your next post:

FRST Log

Addition.txt Log

#20
LUCYR

Posted 26 February 2014 - 02:04 PM

Member

Topic Starter
Member
18 posts

frst log
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-02-2014 01
Ran by Lucille (administrator) on LUCILLE-PC on 26-02-2014 11:57:29
Running from C:\Users\Lucille\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CrossLoop Inc) C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Sage) C:\Program Files (x86)\Winsim\ConnectionManager\SimplyConnectionManager.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Creative Home) C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2009 Deluxe\Planner\PLNRnote.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
(Dropbox, Inc.) C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Wireless Service) C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
(D-Link) C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe
(Sage) C:\Program Files (x86)\winsim\ConnectionManager\Simply.SystemTrayIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Garmin) C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610360 2009-07-08] ()
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] - c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2327952 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [hpsysdrv] - c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Remote Solution] - C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe [656896 2009-05-26] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-05-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ANIWZCS2Service] - C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe [49152 2007-01-19] (Wireless Service)
HKLM-x32\...\Run: [D-Link D-Link Wireless N DWA-130] - C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe [1675264 2008-03-19] (D-Link)
HKLM-x32\...\Run: [ConnectionManager] - C:\Program Files (x86)\Winsim\ConnectionManager\Simply.SystemTrayIcon.exe [91432 2009-08-23] (Sage)
HKLM-x32\...\Run: [AppleSyncNotifier] - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation)
HKLM-x32\...\Run: [Garmin Lifetime Updater] - C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe [1446760 2012-01-06] (Garmin)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-09-17] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [X]
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-28] (Hewlett-Packard)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-03-21] (Microsoft Corporation)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664 2009-07-15] (Hewlett-Packard)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [Google Update] - C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2010-10-07] (Google Inc.)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [MobileDocuments] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [59240 2012-02-23] (Apple Inc.)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [Opevof] - "C:\Users\Lucille\AppData\Roaming\Enzako\ryfoz.exe"
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-03-09] (Google Inc.)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll File Not Found
Startup: C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Photosmart 7520 series.lnk
ShortcutTarget: Monitor Ink Alerts - HP Photosmart 7520 series.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {3F63E795-6EC4-4668-8712-0FF1975092F6} URL = http://www.ask.com/w...}&l=dis&o=cahpd
SearchScopes: HKLM-x32 - {3F63E795-6EC4-4668-8712-0FF1975092F6} URL = http://www.ask.com/w...}&l=dis&o=cahpd
SearchScopes: HKCU - {3F63E795-6EC4-4668-8712-0FF1975092F6} URL = http://www.ask.com/w...}&l=dis&o=cahpd
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab
DPF: HKLM-x32 {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.aka...vex-2.2.5.0.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
DPF: HKLM-x32 {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail....NPUplden-ca.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 64.59.144.16 64.59.150.132

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-30]
CHR Extension: (Google Drive) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-30]
CHR Extension: (YouTube) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-30]
CHR Extension: (Google Search) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-30]
CHR Extension: (Skype Click to Call) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2011-12-11]
CHR Extension: (Google Wallet) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-30]
CHR Extension: (Gmail) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-30]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 CrossLoopService; C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe [560848 2010-08-17] (CrossLoop Inc)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 Simply Accounting Database Connection Manager; C:\Program Files (x86)\Winsim\ConnectionManager\SimplyConnectionManager.exe [29992 2009-08-23] (Sage)
S3 Simply Accounting Transaction Manager 2010 - CDN; C:\Program Files (x86)\Winsim\TransactionManager2010 - CDN\Sage_SA.TransactionManager.exe [42280 2009-08-23] (Sage)
S3 tvnserver; C:\Users\Lucille\AppData\Local\CrossLoop\tvnserver.exe [814080 2010-07-21] (GlavSoft LLC.)

==================== Drivers (Whitelisted) ====================

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-05-20] (Research In Motion Limited)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc.)
S3 SNTUSB64; C:\Windows\System32\DRIVERS\SNTUSB64.SYS [59048 2010-10-20] (SafeNet, Inc.)
S1 ihtoshcw; \??\C:\Windows\system32\drivers\ihtoshcw.sys [X]
S1 kdkmulwq; \??\C:\Windows\system32\drivers\kdkmulwq.sys [X]
S1 kvshgyjl; \??\C:\Windows\system32\drivers\kvshgyjl.sys [X]
S1 wtsphtyv; \??\C:\Windows\system32\drivers\wtsphtyv.sys [X]
S1 xnrbzqyt; \??\C:\Windows\system32\drivers\xnrbzqyt.sys [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-02-26 11:57 - 2014-02-26 11:57 - 00018490 _____ () C:\Users\Lucille\Desktop\FRST.txt
2014-02-26 11:57 - 2014-02-26 11:57 - 00000000 ____D () C:\FRST
2014-02-26 11:56 - 2014-02-26 11:56 - 02155008 _____ (Farbar) C:\Users\Lucille\Desktop\FRST64.exe
2014-02-26 02:42 - 2014-02-26 02:42 - 00987425 _____ () C:\Users\Lucille\Desktop\SecurityCheck.exe
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ___HD () C:\Windows\AxInstSV
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-25 20:52 - 2014-02-25 20:52 - 534881850 _____ () C:\Windows\MEMORY.DMP
2014-02-25 20:52 - 2014-02-25 20:52 - 00277496 _____ () C:\Windows\Minidump\022514-39764-01.dmp
2014-02-25 20:52 - 2014-02-25 20:52 - 00000000 ____D () C:\Windows\Minidump
2014-02-25 19:16 - 2014-02-25 19:16 - 00025631 _____ () C:\Users\Lucille\Desktop\JRT.txt
2014-02-25 19:09 - 2014-02-25 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-02-25 19:08 - 2014-02-25 19:08 - 01037734 _____ (Thisisu) C:\Users\Lucille\Desktop\JRT.exe
2014-02-25 18:56 - 2014-02-25 18:56 - 00000915 _____ () C:\Users\Lucille\Desktop\adwcleaner - Shortcut.lnk
2014-02-25 18:54 - 2014-02-25 18:54 - 01241834 _____ () C:\Users\Lucille\Desktop\adwcleaner.exe
2014-02-25 18:52 - 2014-02-25 19:00 - 00000000 ____D () C:\AdwCleaner
2014-02-25 05:22 - 2014-02-25 05:22 - 00001593 _____ () C:\Users\Lucille\Desktop\aswMBR.txt
2014-02-25 05:22 - 2014-02-25 05:22 - 00000512 _____ () C:\Users\Lucille\Desktop\MBR.dat
2014-02-12 03:01 - 2013-12-21 01:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 03:01 - 2013-12-21 00:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 03:00 - 2014-02-06 04:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 03:00 - 2014-02-06 03:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 03:00 - 2014-02-06 03:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 03:00 - 2014-02-06 03:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 03:00 - 2014-02-06 03:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 03:00 - 2014-02-06 03:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 03:00 - 2014-02-06 02:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 03:00 - 2014-02-06 02:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 03:00 - 2014-02-06 02:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 03:00 - 2014-02-06 02:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 03:00 - 2014-02-06 02:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 03:00 - 2014-02-06 02:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 03:00 - 2014-02-06 02:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 03:00 - 2014-02-06 02:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 03:00 - 2014-02-06 02:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 03:00 - 2014-02-06 02:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 03:00 - 2014-02-06 02:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 03:00 - 2014-02-06 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 03:00 - 2014-02-06 02:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 03:00 - 2014-02-06 01:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 03:00 - 2014-02-06 01:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 03:00 - 2014-02-06 01:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 03:00 - 2014-02-06 01:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 03:00 - 2014-02-06 01:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 01:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 03:00 - 2014-02-06 01:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 03:00 - 2014-02-06 01:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 03:00 - 2014-02-06 01:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 03:00 - 2014-02-06 01:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 03:00 - 2014-02-06 01:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 03:00 - 2014-02-06 01:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 03:00 - 2014-02-06 01:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 03:00 - 2014-02-06 01:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 01:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 03:00 - 2014-02-06 00:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 03:00 - 2014-02-06 00:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 03:00 - 2014-02-06 00:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 03:00 - 2014-02-06 00:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 03:00 - 2014-02-06 00:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-11 18:38 - 2013-12-31 15:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-11 18:38 - 2013-12-31 15:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-11 18:38 - 2013-12-24 15:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-11 18:38 - 2013-12-24 14:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-11 18:38 - 2013-12-05 18:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-11 18:38 - 2013-12-05 18:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-11 18:38 - 2013-12-05 18:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-11 18:38 - 2013-12-05 18:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-11 18:38 - 2013-12-03 18:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-11 18:38 - 2013-12-03 18:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-11 18:38 - 2013-12-03 18:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-11 18:38 - 2013-12-03 18:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-11 18:38 - 2013-12-03 18:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-11 18:38 - 2013-12-03 18:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-11 18:38 - 2013-12-03 18:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-11 18:38 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-11 18:38 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-11 18:38 - 2013-12-03 18:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-11 18:38 - 2013-12-03 17:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-11 18:38 - 2013-12-03 17:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-11 18:38 - 2013-12-03 17:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-11 18:38 - 2013-12-03 17:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-11 18:38 - 2013-11-26 00:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-11 18:38 - 2013-11-22 14:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-11 16:41 - 2014-02-11 16:44 - 00000000 ____D () C:\Users\Lucille\Documents\Jones Serpentine sewing machine
2014-02-10 11:34 - 2014-02-10 11:34 - 00001971 _____ () C:\Users\Lucille\Desktop\Sync Folder.lnk
2014-02-10 11:34 - 2014-02-10 11:34 - 00000000 ____D () C:\ProgramData\Updater
2014-02-10 11:33 - 2014-02-10 11:33 - 00001983 _____ () C:\Users\Public\Desktop\Manuals Finder.lnk
2014-02-10 11:33 - 2014-02-10 11:33 - 00000000 ____D () C:\Program Files (x86)\Manuals Finder
2014-02-09 19:40 - 2014-02-10 11:34 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Mozilla
2014-02-06 18:58 - 2014-02-24 10:34 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Itwywa
2014-02-06 18:44 - 2014-02-24 10:34 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Matyvi
2014-02-06 14:47 - 2014-02-12 03:26 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Enzako
2014-02-06 10:39 - 2014-02-06 22:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Zuhyrywa
2014-02-06 06:44 - 2014-02-06 22:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Ibdeyqby
2014-02-06 02:49 - 2014-02-06 22:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Neavfoim
2014-02-05 22:41 - 2014-02-06 22:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Ahhucoyn
2014-02-05 18:46 - 2014-02-06 22:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Xypeqi
2014-02-05 14:45 - 2014-02-06 22:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Lopoyho
2014-02-05 13:36 - 2014-02-06 22:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Dohuawmi
2014-02-05 13:36 - 2014-02-05 13:36 - 00012326 _____ () C:\Users\Lucille\AppData\Local\dlsfscvo
2014-02-05 13:35 - 2014-02-05 13:35 - 00068260 _____ () C:\Users\Lucille\AppData\Local\ottujgmv
2014-02-05 13:34 - 2014-02-05 13:34 - 00000000 _____ () C:\Users\Lucille\AppData\Roaming\SharedSettings.ccs

==================== One Month Modified Files and Folders =======

2014-02-26 11:57 - 2014-02-26 11:57 - 00018490 _____ () C:\Users\Lucille\Desktop\FRST.txt
2014-02-26 11:57 - 2014-02-26 11:57 - 00000000 ____D () C:\FRST
2014-02-26 11:56 - 2014-02-26 11:56 - 02155008 _____ (Farbar) C:\Users\Lucille\Desktop\FRST64.exe
2014-02-26 11:45 - 2013-07-03 05:17 - 00000916 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000UA1ce77efabf53454.job
2014-02-26 11:30 - 2010-03-09 22:49 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-26 11:28 - 2012-08-15 14:50 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-26 10:11 - 2009-11-30 06:33 - 01571172 _____ () C:\Windows\WindowsUpdate.log
2014-02-26 08:36 - 2013-12-30 12:00 - 00000000 ___RD () C:\Users\Lucille\Dropbox
2014-02-26 08:36 - 2013-12-30 11:53 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Dropbox
2014-02-26 08:36 - 2013-10-11 08:14 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cec69d91e59d.job
2014-02-26 08:22 - 2009-07-13 20:45 - 00015792 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-26 08:22 - 2009-07-13 20:45 - 00015792 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-26 08:19 - 2009-07-13 21:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-26 08:14 - 2013-11-17 01:00 - 00004408 _____ () C:\Windows\setupact.log
2014-02-26 08:14 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-26 04:18 - 2013-04-03 19:34 - 00000446 _____ () C:\Windows\Tasks\PC Helper 360.job
2014-02-26 03:01 - 2011-07-13 17:58 - 00766376 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-26 02:42 - 2014-02-26 02:42 - 00987425 _____ () C:\Users\Lucille\Desktop\SecurityCheck.exe
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ___HD () C:\Windows\AxInstSV
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-25 21:06 - 2014-01-23 15:49 - 00215078 _____ () C:\Windows\PFRO.log
2014-02-25 20:52 - 2014-02-25 20:52 - 534881850 _____ () C:\Windows\MEMORY.DMP
2014-02-25 20:52 - 2014-02-25 20:52 - 00277496 _____ () C:\Windows\Minidump\022514-39764-01.dmp
2014-02-25 20:52 - 2014-02-25 20:52 - 00000000 ____D () C:\Windows\Minidump
2014-02-25 19:32 - 2013-03-24 14:11 - 00121818 _____ () C:\Users\Lucille\Downloads\OTL.Txt
2014-02-25 19:16 - 2014-02-25 19:16 - 00025631 _____ () C:\Users\Lucille\Desktop\JRT.txt
2014-02-25 19:09 - 2014-02-25 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-02-25 19:08 - 2014-02-25 19:08 - 01037734 _____ (Thisisu) C:\Users\Lucille\Desktop\JRT.exe
2014-02-25 19:00 - 2014-02-25 18:52 - 00000000 ____D () C:\AdwCleaner
2014-02-25 19:00 - 2010-01-03 15:10 - 00000000 ___RD () C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-25 18:56 - 2014-02-25 18:56 - 00000915 _____ () C:\Users\Lucille\Desktop\adwcleaner - Shortcut.lnk
2014-02-25 18:54 - 2014-02-25 18:54 - 01241834 _____ () C:\Users\Lucille\Desktop\adwcleaner.exe
2014-02-25 18:47 - 2010-06-12 18:57 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Skype
2014-02-25 18:00 - 2013-04-03 19:34 - 00000500 _____ () C:\Windows\Tasks\Foresight Software Registration3.job
2014-02-25 15:45 - 2013-07-03 05:17 - 00000864 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000Core1ce77efabd17faf.job
2014-02-25 05:22 - 2014-02-25 05:22 - 00001593 _____ () C:\Users\Lucille\Desktop\aswMBR.txt
2014-02-25 05:22 - 2014-02-25 05:22 - 00000512 _____ () C:\Users\Lucille\Desktop\MBR.dat
2014-02-25 03:22 - 2013-12-09 12:09 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForLucille.job
2014-02-25 01:03 - 2013-04-03 19:34 - 00000474 _____ () C:\Windows\Tasks\Foresight Software Update3.job
2014-02-24 11:14 - 2013-12-09 12:09 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForLucille
2014-02-24 11:14 - 2011-10-31 16:41 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-02-24 11:14 - 2010-01-11 07:44 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-02-24 10:34 - 2014-02-06 18:58 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Itwywa
2014-02-24 10:34 - 2014-02-06 18:44 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Matyvi
2014-02-21 07:12 - 2012-06-26 07:28 - 00000000 ____D () C:\Users\Lucille\AppData\Local\Windows Live
2014-02-20 16:28 - 2012-08-15 14:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-20 16:28 - 2012-08-15 14:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-20 16:28 - 2012-08-15 14:50 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-15 03:03 - 2013-07-20 02:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 03:00 - 2013-07-02 12:27 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-13 21:42 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-12 10:36 - 2010-01-03 14:59 - 00000000 ____D () C:\Users\Lucille
2014-02-12 10:33 - 2012-06-18 20:35 - 00000000 ____D () C:\Users\Lucille\Downloads\queen anne machine
2014-02-12 08:25 - 2013-10-11 08:14 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cec69d91e59d
2014-02-12 08:25 - 2010-03-09 22:49 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-12 04:04 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache
2014-02-12 03:26 - 2014-02-06 14:47 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Enzako
2014-02-11 16:44 - 2014-02-11 16:41 - 00000000 ____D () C:\Users\Lucille\Documents\Jones Serpentine sewing machine
2014-02-10 15:40 - 2013-07-03 05:17 - 00003890 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000UA1ce77efabf53454
2014-02-10 15:40 - 2013-07-03 05:17 - 00003494 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000Core1ce77efabd17faf
2014-02-10 11:34 - 2014-02-10 11:34 - 00001971 _____ () C:\Users\Lucille\Desktop\Sync Folder.lnk
2014-02-10 11:34 - 2014-02-10 11:34 - 00000000 ____D () C:\ProgramData\Updater
2014-02-10 11:34 - 2014-02-09 19:40 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Mozilla
2014-02-10 11:33 - 2014-02-10 11:33 - 00001983 _____ () C:\Users\Public\Desktop\Manuals Finder.lnk
2014-02-10 11:33 - 2014-02-10 11:33 - 00000000 ____D () C:\Program Files (x86)\Manuals Finder
2014-02-09 19:40 - 2010-03-09 22:29 - 00000000 ____D () C:\Users\Lucille\AppData\Local\Google
2014-02-06 22:39 - 2014-02-06 10:39 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Zuhyrywa
2014-02-06 22:39 - 2014-02-06 06:44 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Ibdeyqby
2014-02-06 22:39 - 2014-02-06 02:49 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Neavfoim
2014-02-06 22:39 - 2014-02-05 22:41 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Ahhucoyn
2014-02-06 22:39 - 2014-02-05 18:46 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Xypeqi
2014-02-06 22:39 - 2014-02-05 14:45 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Lopoyho
2014-02-06 22:39 - 2014-02-05 13:36 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Dohuawmi
2014-02-06 04:16 - 2014-02-12 03:00 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 03:30 - 2014-02-12 03:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 03:30 - 2014-02-12 03:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 03:12 - 2014-02-12 03:00 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 03:07 - 2014-02-12 03:00 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 03:06 - 2014-02-12 03:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 02:57 - 2014-02-12 03:00 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 02:56 - 2014-02-12 03:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 02:52 - 2014-02-12 03:00 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 02:49 - 2014-02-12 03:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 02:48 - 2014-02-12 03:00 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 02:48 - 2014-02-12 03:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 02:38 - 2014-02-12 03:00 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 02:32 - 2014-02-12 03:00 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 02:20 - 2014-02-12 03:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 02:17 - 2014-02-12 03:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 02:11 - 2014-02-12 03:00 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 02:01 - 2014-02-12 03:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 02:00 - 2014-02-12 03:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 01:57 - 2014-02-12 03:00 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 01:57 - 2014-02-12 03:00 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 01:52 - 2014-02-12 03:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 01:52 - 2014-02-12 03:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 01:50 - 2014-02-12 03:00 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 01:49 - 2014-02-12 03:00 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 01:47 - 2014-02-12 03:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 01:46 - 2014-02-12 03:00 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 01:25 - 2014-02-12 03:00 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 01:25 - 2014-02-12 03:00 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 01:24 - 2014-02-12 03:00 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 01:22 - 2014-02-12 03:00 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 01:13 - 2014-02-12 03:00 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 01:09 - 2014-02-12 03:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 01:03 - 2014-02-12 03:00 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 00:55 - 2014-02-12 03:00 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 00:41 - 2014-02-12 03:00 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 00:40 - 2014-02-12 03:00 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 00:36 - 2014-02-12 03:00 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 00:34 - 2014-02-12 03:00 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 17:16 - 2009-07-13 21:08 - 00032556 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-05 13:36 - 2014-02-05 13:36 - 00012326 _____ () C:\Users\Lucille\AppData\Local\dlsfscvo
2014-02-05 13:35 - 2014-02-05 13:35 - 00068260 _____ () C:\Users\Lucille\AppData\Local\ottujgmv
2014-02-05 13:34 - 2014-02-05 13:34 - 00000000 _____ () C:\Users\Lucille\AppData\Roaming\SharedSettings.ccs
2014-02-03 21:26 - 2013-10-30 19:42 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-31 11:03 - 2010-01-03 20:03 - 00000552 _____ () C:\Windows\Tasks\PCDRScheduledMaintenance.job

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-02-25 03:51

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-02-2014 01
Ran by Lucille at 2014-02-26 11:58:14
Running from C:\Users\Lucille\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: Microsoft Security Essentials (Disabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Disabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.0.0.0 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 2.0.0 - Adobe Systems Incorporated) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM-x32\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0.1 - Microsoft Corporation) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
ANIWZCS2 Service (HKLM-x32\...\{4C590030-7469-453E-8589-D15DA9D03F52}) (Version: - )
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{F4934901-B3C8-9918-F018-2D68F94B380E}) (Version: 3.0.728.0 - ATI Technologies, Inc.)
BlackBerry App World Browser Plugin (HKLM-x32\...\{598420E8-E9F9-4FAE-9B6C-599FDF2F611A}) (Version: 2.0.0 - Research In Motion Limited)
BlackBerry Device Software Updater (HKLM-x32\...\{23C12370-3A82-4558-B727-F345B473AD87}) (Version: 6.0.1.6 - Research In Motion Ltd)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
C309g-m (x32 Version: 130.0.396.000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2009.0520.1631.27815 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0520.1631.27815 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2009.0520.1631.27815 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2009.0520.1631.27815 - ATI) Hidden
Catalyst Control Center HydraVision Full (x32 Version: 2009.0520.1631.27815 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.0520.1631.27815 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2009.0520.1631.27815 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Czech (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Danish (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Dutch (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help English (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Finnish (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help French (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help German (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Greek (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Italian (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Japanese (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Korean (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Polish (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Russian (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Spanish (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Swedish (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Thai (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
CCC Help Turkish (x32 Version: 2009.0520.1630.27815 - ATI) Hidden
ccc-core-static (x32 Version: 2009.0520.1631.27815 - ATI) Hidden
ccc-utility64 (Version: 2009.0520.1631.27815 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.07 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CrossLoop 2.74 (HKLM-x32\...\CrossLoop_is1) (Version: 2.74 - CrossLoop, Inc.)
CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3101 - CyberLink Corp.)
CyberLink DVD Suite Deluxe (x32 Version: 6.0.3101 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
D-Link Wireless N DWA-130 (HKLM-x32\...\{F25B14A1-3863-41B6-9F8A-931DECA6D384}) (Version: - D-Link)
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Garmin Lifetime Updater (HKLM-x32\...\{0E13CAA3-B5FC-48C0-AA4A-26F5CD0C371C}) (Version: 2.1.7 - Garmin)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 32.0.1700.107 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{41101F0C-DBD9-321C-A6B1-E0689B495A4E}) (Version: 5.1.4.17398 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4805.320 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hallmark Card Studio 2009 Deluxe (HKLM-x32\...\{C4609419-C11E-4CE6-B369-F3F8A7DDD94C}) (Version: 10.0.0.28 - Creative Home)
Hardware Diagnostic Tools (HKLM\...\PC-Doctor for Windows) (Version: 6.0.5205.31 - PC-Doctor, Inc.)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.71 - WildTangent)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3123 - Hewlett-Packard)
HP MediaSmart DVD (x32 Version: 3.0.3123 - Hewlett-Packard) Hidden
HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard)
HP MediaSmart Movie Themes (x32 Version: 3.0.3102 - Hewlett-Packard) Hidden
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3205 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (x32 Version: 3.0.3205 - Hewlett-Packard) Hidden
HP MediaSmart SmartMenu (HKLM\...\{26280024-DFB7-4967-90DB-7F9C6660D01E}) (Version: 3.0.28.2 - Hewlett-Packard)
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Photosmart 7520 series Basic Device Software (HKLM\...\{27ABA988-D480-4F44-B0FD-45E5656D2CFE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 7520 series Help (HKLM-x32\...\{08295D09-E002-48F8-905D-34E4B08509BA}) (Version: 28.0.0 - Hewlett Packard)
HP Photosmart 7520 series Product Improvement Study (HKLM\...\{16B872EE-C458-41BD-BEAE-52758A3F3168}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart Premium C309g-m All-In-One Driver Software 13.0 Rel .6 (HKLM\...\{181AC4C7-B83C-4B5F-B566-E19BF2472429}) (Version: 13.0 - HP)
HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)
HP Remote Solution (HKLM-x32\...\HP Remote Solution) (Version: 1.1.9.0 - TopSeed)
HP Remote Solution (x32 Version: 1.1.9.0 - TopSeed) Hidden
HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B9A03B7B-E0FF-4FB3-BA83-762E58A1B0AA}) (Version: 10.1.0002 - Hewlett-Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
hpPrintProjects (x32 Version: 130.0.303.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (x32 Version: 130.0.303.000 - Hewlett-Packard) Hidden
HydraVision (x32 Version: 4.2.98.0 - ATI Technologies Inc.) Hidden
iCloud (HKLM\...\{8B485965-8EFE-464A-842F-CF8F18C3DFD7}) (Version: 1.1.0.40 - Apple Inc.)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{F73A118B-8271-47E2-8790-0C636B2539C5}) (Version: 11.1.0.126 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1901 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.1901 - CyberLink Corp.) Hidden
LightScribe System Software (HKLM-x32\...\{DD6C316A-FE75-4FBB-9D22-4C1920232B72}) (Version: 1.18.5.1 - LightScribe)
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Manuals Finder (HKLM-x32\...\Manuals Finder) (Version: 1.0 - Manuals Finder)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 8.0 (HKLM\...\{563F041C-DFDB-437B-A1E8-E141E0906076}) (Version: 8.0.225.0 - Microsoft)
Microsoft Live Search Toolbar (HKLM-x32\...\{DF802C05-4660-418c-970C-B988ADB1D316}) (Version: 3.0.560.0 - Microsoft Live Search Toolbar)
Microsoft Live Search Toolbar (x32 Version: 3.0.560.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Search Enhancement Pack (x32 Version: 3.0.127.0 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
MobileMe Control Panel (HKLM\...\{6DD01FF3-63CE-436B-96DB-61363EAA4EB8}) (Version: 3.1.8.0 - Apple Inc.)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MySQL Connector/ODBC 3.51 (HKLM-x32\...\{F929096B-54A0-4C5C-B125-1E7EB1917412}) (Version: 3.51.19 - MySQL AB)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
PC Helper 360 (HKLM-x32\...\{CED0FE94-7795-42b5-978C-B247EB3EDE66}) (Version: 3.1.1.0 - Foresight Software)
Pepakura Viewer 3 (HKLM-x32\...\pepakura_viewer3en) (Version: - TamaSoftware)
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.5.02.12220 - Sony Corporation)
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.3101 - CyberLink Corp.)
Power2Go (x32 Version: 6.0.3101 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.3101 - CyberLink Corp.)
PowerDirector (x32 Version: 7.0.3101 - CyberLink Corp.) Hidden
PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden
PS_AIO_06_C309g-m_SW_Min (x32 Version: 130.0.396.000 - Hewlett-Packard) Hidden
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5882 - Realtek Semiconductor Corp.)
Rosetta Stone Version 3 (HKLM-x32\...\{99011A6E-5200-11DE-BDB8-7ACD56D89593}) (Version: 3.4.5.0 - Rosetta Stone Ltd.)
Safari (HKLM-x32\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Sentinel System Driver Installer 7.5.2 (HKLM-x32\...\{504B7439-03BB-4C23-B17E-A1EC2D1D47B1}) (Version: 7.5.2 - SafeNet, Inc.)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Simply Accounting by Sage 2010 (HKLM-x32\...\InstallShield_{5BB74B26-8320-4846-951F-84CFFAD671C6}) (Version: 17.00.0001 - Sage Software)
Simply Accounting by Sage 2010 (x32 Version: 17.00.0001 - Sage Software) Hidden
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 6.3 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SPANISH in 10 minutes a day® (HKLM-x32\...\SPANISH in 10 minutes a day®) (Version: 1 - Bilingual Books, Inc.)
SQLAnywhere1000 (HKLM-x32\...\{349E9132-5101-4094-859E-0EEE6F3DDCD5}) (Version: 10.1.4157 - Merry Mechanization Inc)
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tweaking.com - Registry Backup (HKLM-x32\...\Tweaking.com - Registry Backup) (Version: 1.6.0 - Tweaking.com)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
Updater (HKLM-x32\...\{D54E3D9F-FEB8-4D2D-A138-B69A5C80080B}) (Version: 2.6.53 - Creative Island Media, LLC) <==== ATTENTION
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile Device Center (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version: - )

==================== Restore Points =========================

10-02-2014 06:53:42 Windows Update
12-02-2014 11:00:12 Windows Update
15-02-2014 11:00:12 Windows Update
20-02-2014 11:39:36 Windows Update
24-02-2014 18:46:16 Windows Update
25-02-2014 11:00:10 Windows Update
26-02-2014 02:35:44 OTL Restore Point - 25/02/2014 6:35:43 PM
26-02-2014 03:43:09 OTL Restore Point - 25/02/2014 7:43:06 PM
26-02-2014 04:37:54 OTL Restore Point - 25/02/2014 8:37:51 PM
26-02-2014 04:44:38 OTL Restore Point - 25/02/2014 8:44:34 PM
26-02-2014 04:50:35 OTL Restore Point - 25/02/2014 8:50:32 PM
26-02-2014 11:00:16 Windows Update

==================== Hosts content: ==========================

2009-07-13 18:34 - 2014-02-25 19:43 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {08ED28DA-8FE5-48DB-9C25-C9C3FEBE463D} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-07-23] (CyberLink Corp.)
Task: {093E3F28-F1B5-4582-AC0C-6F7006FF8BD6} - System32\Tasks\GoogleUpdateTaskMachineCore1cec69d91e59d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-09] (Google Inc.)
Task: {0EB84A07-FA3E-4AA1-B343-4007C504A336} - System32\Tasks\{B757075F-A5CA-4CA9-B365-635B06A3DA93} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-03-01] (Skype Technologies S.A.)
Task: {0F0505D8-DE8A-4E35-8D29-137928D7E4B8} - \Security Center Update - 1776586698 No Task File
Task: {11750628-48DC-4108-948D-D6FF248D2668} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-08-05] (CyberLink)
Task: {2042A131-EF02-45C4-AFAF-C11DE62BA2F1} - System32\Tasks\{541FEB57-65CD-49CB-B5DF-7B3BB0CEFACE} => Iexplore.exe http://ui.skype.com/...temlevelpresent
Task: {255B93EA-C353-4F07-AF65-002419D1BDAF} - \Security Center Update - 1847190746 No Task File
Task: {29D3FAC9-8E41-44C5-8C03-5653D14D38CA} - \Security Center Update - 1817549869 No Task File
Task: {2FB6B6E0-1B10-4F61-AF97-92B1E002ABF0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {312D54B9-6DCE-43CC-8FBB-73B3AB9E8AB0} - \Security Center Update - 3214612473 No Task File
Task: {33F3CC48-9363-4F04-B18D-1ECE0B410102} - System32\Tasks\HPCustParticipation HP Photosmart 7520 series => C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {3990C9F6-AFE8-4999-A3BE-43092937EEEB} - System32\Tasks\PC Helper 360 => C:\Program Files (x86)\Foresight Software\PC Helper 360\pch360.exe [2013-01-15] (Foresight Software)
Task: {3E5CD50F-7863-4E3D-9C65-1B645B1991E5} - \Security Center Update - 2695962086 No Task File
Task: {3FCC59EF-D7EE-4698-9513-6A1C44D2F4B2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: {4D9F8677-6DD2-4F7D-AE83-B095DC4845DB} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2010-07-21] (Microsoft Corporation)
Task: {5960F95A-4FD0-4354-AE5C-714F26AC39CA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {6E63A16C-E48D-49BE-82A5-08D4F613841E} - \Security Center Update - 707065561 No Task File
Task: {71843D69-71C1-4E7E-915D-D7184455E9A6} - System32\Tasks\{4B5254BC-7C8E-43FB-821D-EA0ECB4C0D08} => C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe [2008-03-19] (D-Link)
Task: {72E9D8AC-52E6-42FA-8543-309A8B9D0017} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000UA1ce77efabf53454 => C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-07] (Google Inc.)
Task: {8130F14D-2F7E-432B-87D1-B42225DA539A} - System32\Tasks\{285D083F-FB7B-4928-9FB9-98F54C18190C} => Iexplore.exe http://ui.skype.com/...tall?page=tsWLM
Task: {85FB085D-B791-44A9-9D2E-3A4FE8262AA6} - System32\Tasks\Foresight Software Registration3 => Rundll32.exe "C:\Program Files (x86)\Common Files\Foresight Software\UUS3\UUS3.dll" RunUns
Task: {8A800F5C-7758-4FCF-A289-0CB233A01F15} - \Security Center Update - 407371829 No Task File
Task: {A830459B-F84B-4E88-A815-0A9D6E16336D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {ACF3FD47-572C-41BF-854B-E813192B58C9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ADEBA5DA-6B8C-4632-84BB-C03B5CF8235D} - System32\Tasks\Foresight Software Update3 => C:\Program Files (x86)\Common Files\Foresight Software\UUS3\Update3.exe [2013-01-15] (Foresight Software)
Task: {AFCF24F5-B397-420D-96D6-932E058AF97D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000Core1ce77efabd17faf => C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-07] (Google Inc.)
Task: {B63CE1BF-A4E2-42BE-95BE-A1EAB513B76D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-03-09] (Google Inc.)
Task: {B65C5762-89AD-4B5D-8306-25AC6B3CC519} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-21] (Piriform Ltd)
Task: {BCFD4F1A-C770-4CBD-BC4E-FF154A125756} - \Scheduled Update for Ask Toolbar No Task File
Task: {CB138962-9652-464E-88EC-0D3DB38395BC} - \Security Center Update - 1606205072 No Task File
Task: {CC7372C3-4A03-41CC-844F-EB5B2FAF4815} - \Security Center Update - 3668586754 No Task File
Task: {DAF50667-B6EA-4F81-A323-BF8B573D4D31} - System32\Tasks\{B04651AA-A56D-4087-9B99-83DCF5469361} => C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe [2008-03-19] (D-Link)
Task: {DBB152DF-97BB-48CA-95B2-FAD3E30AEB7E} - System32\Tasks\HPCeeScheduleForLucille => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {EAF8E7CF-70CB-4A7C-8467-6B493BBD6962} - \Security Center Update - 1144510978 No Task File
Task: {F3970EE3-D3B6-4F8E-8439-4BC4EF967A40} - System32\Tasks\ROC_REG_JAN_DELETE => C:\ProgramData\AVG January 2013 Campaign\ROC.exe
Task: {F7B66B06-7348-4F05-9890-801EAD8EAFBA} - System32\Tasks\PCDRScheduledMaintenance => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [2009-07-02] (PC-Doctor, Inc.)
Task: {F97EEE24-3048-4FF7-9958-963FF4389771} - System32\Tasks\{F87117DE-1FA8-4FA8-AD5F-44CA8E61C0C1} => C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe [2008-03-19] (D-Link)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Foresight Software Registration3.job => C:\Program Files (x86)\Common Files\Foresight Software\UUS3\UUS3.dll
Task: C:\Windows\Tasks\Foresight Software Update3.job => C:\Program Files (x86)\Common Files\Foresight Software\UUS3\Update3.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cec69d91e59d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000Core1ce77efabd17faf.job => C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000UA1ce77efabf53454.job => C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForLucille.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\PC Helper 360.job => C:\Program Files (x86)\Foresight Software\PC Helper 360\pch360.exe
Task: C:\Windows\Tasks\PCDRScheduledMaintenance.job => C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe
Task: C:\Windows\Tasks\ROC_REG_JAN_DELETE.job => C:\ProgramData\AVG January 2013 Campaign\ROC.exe

==================== Loaded Modules (whitelisted) =============

2009-07-08 13:35 - 2009-07-08 13:35 - 00610360 _____ () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
2009-05-26 00:36 - 2009-05-26 00:36 - 00656896 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
2009-06-08 15:45 - 2009-06-08 15:45 - 00098304 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2009-09-09 00:31 - 2009-09-09 00:31 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-07-15 16:51 - 2009-07-15 16:51 - 00061440 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
2009-07-15 16:51 - 2009-07-15 16:51 - 00131072 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
2009-07-15 16:50 - 2009-07-15 16:50 - 00040960 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
2009-07-15 16:50 - 2009-07-15 16:50 - 00005632 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
2009-07-15 16:50 - 2009-07-15 16:50 - 00018944 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
2009-07-15 16:50 - 2009-07-15 16:50 - 00036864 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
2009-07-15 16:50 - 2009-07-15 16:50 - 00028672 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
2009-07-15 16:50 - 2009-07-15 16:50 - 00007680 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
2013-10-18 15:55 - 2013-10-18 15:55 - 25100288 _____ () C:\Users\Lucille\AppData\Roaming\Dropbox\bin\libcef.dll
2009-08-05 12:45 - 2009-08-05 12:45 - 00931112 ____N () C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupreg: NortonOnlineBackupReminder => "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

==================== Faulty Device Manager Devices =============

Name: Photosmart C6100 series
Description: Photosmart C6100 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (02/26/2014 03:51:58 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/26/2014 03:51:57 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (02/26/2014 02:27:35 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

System errors:
=============
Error: (02/26/2014 08:14:45 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 5:38:06 AM on ‎26/‎02/‎2014 was unexpected.

Error: (02/25/2014 08:52:28 PM) (Source: BugCheck) (User: )
Description: 0x000000c2 (0x0000000000000007, 0x000000000000109b, 0x0000000004050005, 0xfffffa800a5aed50)C:\Windows\MEMORY.DMP022514-39764-01

Error: (02/25/2014 07:42:55 PM) (Source: Service Control Manager) (User: )
Description: The Adobe Acrobat Update Service service terminated unexpectedly. It has done this 1 time(s).

Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 30%
Total physical RAM: 8191.23 MB
Available physical RAM: 5717.24 MB
Total Pagefile: 16380.63 MB
Available Pagefile: 13598.81 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (HP) (Fixed) (Total:685.7 GB) (Free:503.9 GB) NTFS
Drive d: (FACTORY_IMAGE) (Fixed) (Total:12.84 GB) (Free:2.3 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 699 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=686 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=13 GB) - (Type=07 NTFS)

==================== End Of Log ============================

==================== End Of Log ============================

#21
pystryker

Posted 27 February 2014 - 06:46 AM

Trusted Helper

Malware Removal
3,912 posts

Ok, looking good! :thumbsup:

Let's get rid of the things that FRST found and then run a scan to make sure everything is clear.

Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.

Step 1: FRST Fix

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
Right-click in the open notepad and select Paste).
Save it on the desktop as fixlist.txt

Start
HKLM-x32\...\Run: [] - [X]
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [Opevof] - "C:\Users\Lucille\AppData\Roaming\Enzako\ryfoz.exe"
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll File Not Found
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S1 ihtoshcw; \??\C:\Windows\system32\drivers\ihtoshcw.sys [X]
S1 kdkmulwq; \??\C:\Windows\system32\drivers\kdkmulwq.sys [X]
S1 kvshgyjl; \??\C:\Windows\system32\drivers\kvshgyjl.sys [X]
S1 wtsphtyv; \??\C:\Windows\system32\drivers\wtsphtyv.sys [X]
S1 xnrbzqyt; \??\C:\Windows\system32\drivers\xnrbzqyt.sys [X]
C:\Windows\system32\drivers\ihtoshcw.sys
C:\Windows\system32\drivers\kdkmulwq.sys
C:\Windows\system32\drivers\kvshgyjl.sys
C:\Windows\system32\drivers\wtsphtyv.sys
C:\Windows\system32\drivers\xnrbzqyt.sys
C:\Users\Lucille\AppData\Roaming\Itwywa
C:\Users\Lucille\AppData\Roaming\Matyvi
C:\Users\Lucille\AppData\Roaming\Enzako
C:\Users\Lucille\AppData\Roaming\Zuhyrywa
C:\Users\Lucille\AppData\Roaming\Ibdeyqby
C:\Users\Lucille\AppData\Roaming\Neavfoim
C:\Users\Lucille\AppData\Roaming\Ahhucoyn
C:\Users\Lucille\AppData\Roaming\Xypeqi
C:\Users\Lucille\AppData\Roaming\Lopoyho
C:\Users\Lucille\AppData\Roaming\Dohuawmi
C:\ProgramData\Updater
End

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.

Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.

Step 2: Scan with FRST

Start FRST and press the scan button.

When finished, it will produce one log on your desktop, please post that log in your next reply.

Things I need to see in your next post:

FRST Fix Log

Fresh FRST Scan

Question: How is the computer running now?

#22
LUCYR

Posted 27 February 2014 - 10:30 AM

Member

Topic Starter
Member
18 posts

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-02-2014 02
Ran by Lucille at 2014-02-27 08:27:58 Run:1
Running from C:\Users\Lucille\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Run: [] - [X]
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [Opevof] - "C:\Users\Lucille\AppData\Roaming\Enzako\ryfoz.exe"
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll File Not Found
Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
S1 ihtoshcw; \??\C:\Windows\system32\drivers\ihtoshcw.sys [X]
S1 kdkmulwq; \??\C:\Windows\system32\drivers\kdkmulwq.sys [X]
S1 kvshgyjl; \??\C:\Windows\system32\drivers\kvshgyjl.sys [X]
S1 wtsphtyv; \??\C:\Windows\system32\drivers\wtsphtyv.sys [X]
S1 xnrbzqyt; \??\C:\Windows\system32\drivers\xnrbzqyt.sys [X]
C:\Windows\system32\drivers\ihtoshcw.sys
C:\Windows\system32\drivers\kdkmulwq.sys
C:\Windows\system32\drivers\kvshgyjl.sys
C:\Windows\system32\drivers\wtsphtyv.sys
C:\Windows\system32\drivers\xnrbzqyt.sys
C:\Users\Lucille\AppData\Roaming\Itwywa
C:\Users\Lucille\AppData\Roaming\Matyvi
C:\Users\Lucille\AppData\Roaming\Enzako
C:\Users\Lucille\AppData\Roaming\Zuhyrywa
C:\Users\Lucille\AppData\Roaming\Ibdeyqby
C:\Users\Lucille\AppData\Roaming\Neavfoim
C:\Users\Lucille\AppData\Roaming\Ahhucoyn
C:\Users\Lucille\AppData\Roaming\Xypeqi
C:\Users\Lucille\AppData\Roaming\Lopoyho
C:\Users\Lucille\AppData\Roaming\Dohuawmi
C:\ProgramData\Updater
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Opevof => Value deleted successfully.
"C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC64Loader.dll" => Value Data removed successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Value deleted successfully.
HKCR\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} => Key not found.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
ihtoshcw => Service deleted successfully.
kdkmulwq => Service deleted successfully.
kvshgyjl => Service deleted successfully.
wtsphtyv => Service deleted successfully.
xnrbzqyt => Service deleted successfully.
"C:\Windows\system32\drivers\ihtoshcw.sys" => File/Directory not found.
"C:\Windows\system32\drivers\kdkmulwq.sys" => File/Directory not found.
"C:\Windows\system32\drivers\kvshgyjl.sys" => File/Directory not found.
"C:\Windows\system32\drivers\wtsphtyv.sys" => File/Directory not found.
"C:\Windows\system32\drivers\xnrbzqyt.sys" => File/Directory not found.
C:\Users\Lucille\AppData\Roaming\Itwywa => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Matyvi => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Enzako => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Zuhyrywa => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Ibdeyqby => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Neavfoim => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Ahhucoyn => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Xypeqi => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Lopoyho => Moved successfully.
C:\Users\Lucille\AppData\Roaming\Dohuawmi => Moved successfully.
C:\ProgramData\Updater => Moved successfully.

==== End of Fixlog ====

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-02-2014 02
Ran by Lucille (administrator) on LUCILLE-PC on 27-02-2014 08:28:42
Running from C:\Users\Lucille\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CrossLoop Inc) C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Sage) C:\Program Files (x86)\Winsim\ConnectionManager\SimplyConnectionManager.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Creative Home) C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2009 Deluxe\Planner\PLNRnote.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
(Dropbox, Inc.) C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
() C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Wireless Service) C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
(D-Link) C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe
(Sage) C:\Program Files (x86)\winsim\ConnectionManager\Simply.SystemTrayIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Garmin) C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610360 2009-07-08] ()
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] - c:\Program Files\Microsoft IntelliPoint\ipoint.exe [2327952 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [hpsysdrv] - c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Remote Solution] - C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe [656896 2009-05-26] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-05-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [ANIWZCS2Service] - C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe [49152 2007-01-19] (Wireless Service)
HKLM-x32\...\Run: [D-Link D-Link Wireless N DWA-130] - C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe [1675264 2008-03-19] (D-Link)
HKLM-x32\...\Run: [ConnectionManager] - C:\Program Files (x86)\Winsim\ConnectionManager\Simply.SystemTrayIcon.exe [91432 2009-08-23] (Sage)
HKLM-x32\...\Run: [AppleSyncNotifier] - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] - C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation)
HKLM-x32\...\Run: [Garmin Lifetime Updater] - C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe [1446760 2012-01-06] (Garmin)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-09-17] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-28] (Hewlett-Packard)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-03-21] (Microsoft Corporation)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1668664 2009-07-15] (Hewlett-Packard)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [Google Update] - C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2010-10-07] (Google Inc.)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [MobileDocuments] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [59240 2012-02-23] (Apple Inc.)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-3472568841-1174150532-69183956-1000\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-03-09] (Google Inc.)
Startup: C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Photosmart 7520 series.lnk
ShortcutTarget: Monitor Ink Alerts - HP Photosmart 7520 series.lnk -> C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {3F63E795-6EC4-4668-8712-0FF1975092F6} URL = http://www.ask.com/w...}&l=dis&o=cahpd
SearchScopes: HKLM-x32 - {3F63E795-6EC4-4668-8712-0FF1975092F6} URL = http://www.ask.com/w...}&l=dis&o=cahpd
SearchScopes: HKCU - {3F63E795-6EC4-4668-8712-0FF1975092F6} URL = http://www.ask.com/w...}&l=dis&o=cahpd
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0560.0\msneshellx.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab
DPF: HKLM-x32 {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.aka...vex-2.2.5.0.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
DPF: HKLM-x32 {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail....NPUplden-ca.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 64.59.144.16 64.59.150.132

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-30]
CHR Extension: (Google Drive) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-30]
CHR Extension: (YouTube) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-30]
CHR Extension: (Google Search) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-30]
CHR Extension: (Skype Click to Call) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2011-12-11]
CHR Extension: (Google Wallet) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-30]
CHR Extension: (Gmail) - C:\Users\Lucille\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-30]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]

==================== Services (Whitelisted) =================

R2 CrossLoopService; C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe [560848 2010-08-17] (CrossLoop Inc)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 Simply Accounting Database Connection Manager; C:\Program Files (x86)\Winsim\ConnectionManager\SimplyConnectionManager.exe [29992 2009-08-23] (Sage)
S3 Simply Accounting Transaction Manager 2010 - CDN; C:\Program Files (x86)\Winsim\TransactionManager2010 - CDN\Sage_SA.TransactionManager.exe [42280 2009-08-23] (Sage)
S3 tvnserver; C:\Users\Lucille\AppData\Local\CrossLoop\tvnserver.exe [814080 2010-07-21] (GlavSoft LLC.)

==================== Drivers (Whitelisted) ====================

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [28416 2008-05-20] (Research In Motion Limited)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc.)
S3 SNTUSB64; C:\Windows\System32\DRIVERS\SNTUSB64.SYS [59048 2010-10-20] (SafeNet, Inc.)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-02-27 08:27 - 2014-02-27 08:27 - 00000000 ____D () C:\Users\Lucille\Desktop\FRST-OlderVersion
2014-02-27 08:21 - 2014-02-27 08:22 - 00000000 ____D () C:\Users\Lucille\AppData\Local\{09C4544D-7B45-4278-92AB-9BE82271201D}
2014-02-26 11:58 - 2014-02-26 11:58 - 00041178 _____ () C:\Users\Lucille\Desktop\Addition.txt
2014-02-26 11:57 - 2014-02-27 08:28 - 00017719 _____ () C:\Users\Lucille\Desktop\FRST.txt
2014-02-26 11:57 - 2014-02-27 08:28 - 00000000 ____D () C:\FRST
2014-02-26 11:56 - 2014-02-27 08:27 - 02155520 _____ (Farbar) C:\Users\Lucille\Desktop\FRST64.exe
2014-02-26 02:42 - 2014-02-26 02:42 - 00987425 _____ () C:\Users\Lucille\Desktop\SecurityCheck.exe
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ___HD () C:\Windows\AxInstSV
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-25 20:52 - 2014-02-25 20:52 - 534881850 _____ () C:\Windows\MEMORY.DMP
2014-02-25 20:52 - 2014-02-25 20:52 - 00277496 _____ () C:\Windows\Minidump\022514-39764-01.dmp
2014-02-25 20:52 - 2014-02-25 20:52 - 00000000 ____D () C:\Windows\Minidump
2014-02-25 19:16 - 2014-02-25 19:16 - 00025631 _____ () C:\Users\Lucille\Desktop\JRT.txt
2014-02-25 19:09 - 2014-02-25 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-02-25 19:08 - 2014-02-25 19:08 - 01037734 _____ (Thisisu) C:\Users\Lucille\Desktop\JRT.exe
2014-02-25 18:56 - 2014-02-25 18:56 - 00000915 _____ () C:\Users\Lucille\Desktop\adwcleaner - Shortcut.lnk
2014-02-25 18:54 - 2014-02-25 18:54 - 01241834 _____ () C:\Users\Lucille\Desktop\adwcleaner.exe
2014-02-25 18:52 - 2014-02-25 19:00 - 00000000 ____D () C:\AdwCleaner
2014-02-25 05:22 - 2014-02-25 05:22 - 00001593 _____ () C:\Users\Lucille\Desktop\aswMBR.txt
2014-02-25 05:22 - 2014-02-25 05:22 - 00000512 _____ () C:\Users\Lucille\Desktop\MBR.dat
2014-02-12 03:01 - 2013-12-21 01:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 03:01 - 2013-12-21 00:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 03:00 - 2014-02-06 04:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 03:00 - 2014-02-06 03:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 03:00 - 2014-02-06 03:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 03:00 - 2014-02-06 03:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 03:00 - 2014-02-06 03:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 03:00 - 2014-02-06 03:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 03:00 - 2014-02-06 02:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 03:00 - 2014-02-06 02:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 03:00 - 2014-02-06 02:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 03:00 - 2014-02-06 02:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 03:00 - 2014-02-06 02:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 03:00 - 2014-02-06 02:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 03:00 - 2014-02-06 02:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 03:00 - 2014-02-06 02:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 03:00 - 2014-02-06 02:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 03:00 - 2014-02-06 02:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 03:00 - 2014-02-06 02:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 03:00 - 2014-02-06 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 03:00 - 2014-02-06 02:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 03:00 - 2014-02-06 01:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 03:00 - 2014-02-06 01:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 03:00 - 2014-02-06 01:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 03:00 - 2014-02-06 01:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 03:00 - 2014-02-06 01:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 01:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 03:00 - 2014-02-06 01:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 03:00 - 2014-02-06 01:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 03:00 - 2014-02-06 01:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 03:00 - 2014-02-06 01:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 03:00 - 2014-02-06 01:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 03:00 - 2014-02-06 01:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 03:00 - 2014-02-06 01:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 03:00 - 2014-02-06 01:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 01:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 03:00 - 2014-02-06 00:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 03:00 - 2014-02-06 00:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 03:00 - 2014-02-06 00:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 03:00 - 2014-02-06 00:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 03:00 - 2014-02-06 00:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-11 18:38 - 2013-12-31 15:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-11 18:38 - 2013-12-31 15:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-11 18:38 - 2013-12-24 15:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-11 18:38 - 2013-12-24 14:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-11 18:38 - 2013-12-05 18:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-11 18:38 - 2013-12-05 18:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-11 18:38 - 2013-12-05 18:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-11 18:38 - 2013-12-05 18:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-11 18:38 - 2013-12-03 18:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-11 18:38 - 2013-12-03 18:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-11 18:38 - 2013-12-03 18:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-11 18:38 - 2013-12-03 18:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-11 18:38 - 2013-12-03 18:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-11 18:38 - 2013-12-03 18:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-11 18:38 - 2013-12-03 18:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-11 18:38 - 2013-12-03 18:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-11 18:38 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-11 18:38 - 2013-12-03 18:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-11 18:38 - 2013-12-03 18:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-11 18:38 - 2013-12-03 17:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-11 18:38 - 2013-12-03 17:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-11 18:38 - 2013-12-03 17:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-11 18:38 - 2013-12-03 17:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-11 18:38 - 2013-11-26 00:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-11 18:38 - 2013-11-22 14:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-11 16:41 - 2014-02-11 16:44 - 00000000 ____D () C:\Users\Lucille\Documents\Jones Serpentine sewing machine
2014-02-10 11:34 - 2014-02-10 11:34 - 00001971 _____ () C:\Users\Lucille\Desktop\Sync Folder.lnk
2014-02-10 11:33 - 2014-02-10 11:33 - 00001983 _____ () C:\Users\Public\Desktop\Manuals Finder.lnk
2014-02-10 11:33 - 2014-02-10 11:33 - 00000000 ____D () C:\Program Files (x86)\Manuals Finder
2014-02-09 19:40 - 2014-02-10 11:34 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Mozilla
2014-02-05 13:36 - 2014-02-05 13:36 - 00012326 _____ () C:\Users\Lucille\AppData\Local\dlsfscvo
2014-02-05 13:35 - 2014-02-05 13:35 - 00068260 _____ () C:\Users\Lucille\AppData\Local\ottujgmv
2014-02-05 13:34 - 2014-02-05 13:34 - 00000000 _____ () C:\Users\Lucille\AppData\Roaming\SharedSettings.ccs

==================== One Month Modified Files and Folders =======

2014-02-27 08:28 - 2014-02-26 11:57 - 00017719 _____ () C:\Users\Lucille\Desktop\FRST.txt
2014-02-27 08:28 - 2014-02-26 11:57 - 00000000 ____D () C:\FRST
2014-02-27 08:28 - 2012-08-15 14:50 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-27 08:27 - 2014-02-27 08:27 - 00000000 ____D () C:\Users\Lucille\Desktop\FRST-OlderVersion
2014-02-27 08:27 - 2014-02-26 11:56 - 02155520 _____ (Farbar) C:\Users\Lucille\Desktop\FRST64.exe
2014-02-27 08:26 - 2009-11-30 06:33 - 01609199 _____ () C:\Windows\WindowsUpdate.log
2014-02-27 08:22 - 2014-02-27 08:21 - 00000000 ____D () C:\Users\Lucille\AppData\Local\{09C4544D-7B45-4278-92AB-9BE82271201D}
2014-02-27 07:45 - 2013-07-03 05:17 - 00000916 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000UA1ce77efabf53454.job
2014-02-27 07:30 - 2010-03-09 22:49 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-26 18:00 - 2013-04-03 19:34 - 00000500 _____ () C:\Windows\Tasks\Foresight Software Registration3.job
2014-02-26 15:45 - 2013-07-03 05:17 - 00000864 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000Core1ce77efabd17faf.job
2014-02-26 11:58 - 2014-02-26 11:58 - 00041178 _____ () C:\Users\Lucille\Desktop\Addition.txt
2014-02-26 08:36 - 2013-12-30 12:00 - 00000000 ___RD () C:\Users\Lucille\Dropbox
2014-02-26 08:36 - 2013-12-30 11:53 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Dropbox
2014-02-26 08:36 - 2013-10-11 08:14 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cec69d91e59d.job
2014-02-26 08:22 - 2009-07-13 20:45 - 00015792 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-26 08:22 - 2009-07-13 20:45 - 00015792 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-26 08:19 - 2009-07-13 21:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-26 08:14 - 2013-11-17 01:00 - 00004408 _____ () C:\Windows\setupact.log
2014-02-26 08:14 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-26 04:18 - 2013-04-03 19:34 - 00000446 _____ () C:\Windows\Tasks\PC Helper 360.job
2014-02-26 03:01 - 2011-07-13 17:58 - 00766376 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-26 02:42 - 2014-02-26 02:42 - 00987425 _____ () C:\Users\Lucille\Desktop\SecurityCheck.exe
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ___HD () C:\Windows\AxInstSV
2014-02-25 21:22 - 2014-02-25 21:22 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-02-25 21:06 - 2014-01-23 15:49 - 00215078 _____ () C:\Windows\PFRO.log
2014-02-25 20:52 - 2014-02-25 20:52 - 534881850 _____ () C:\Windows\MEMORY.DMP
2014-02-25 20:52 - 2014-02-25 20:52 - 00277496 _____ () C:\Windows\Minidump\022514-39764-01.dmp
2014-02-25 20:52 - 2014-02-25 20:52 - 00000000 ____D () C:\Windows\Minidump
2014-02-25 19:32 - 2013-03-24 14:11 - 00121818 _____ () C:\Users\Lucille\Downloads\OTL.Txt
2014-02-25 19:16 - 2014-02-25 19:16 - 00025631 _____ () C:\Users\Lucille\Desktop\JRT.txt
2014-02-25 19:09 - 2014-02-25 19:09 - 00000000 ____D () C:\Windows\ERUNT
2014-02-25 19:08 - 2014-02-25 19:08 - 01037734 _____ (Thisisu) C:\Users\Lucille\Desktop\JRT.exe
2014-02-25 19:00 - 2014-02-25 18:52 - 00000000 ____D () C:\AdwCleaner
2014-02-25 19:00 - 2010-01-03 15:10 - 00000000 ___RD () C:\Users\Lucille\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-25 18:56 - 2014-02-25 18:56 - 00000915 _____ () C:\Users\Lucille\Desktop\adwcleaner - Shortcut.lnk
2014-02-25 18:54 - 2014-02-25 18:54 - 01241834 _____ () C:\Users\Lucille\Desktop\adwcleaner.exe
2014-02-25 18:47 - 2010-06-12 18:57 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Skype
2014-02-25 05:22 - 2014-02-25 05:22 - 00001593 _____ () C:\Users\Lucille\Desktop\aswMBR.txt
2014-02-25 05:22 - 2014-02-25 05:22 - 00000512 _____ () C:\Users\Lucille\Desktop\MBR.dat
2014-02-25 03:22 - 2013-12-09 12:09 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForLucille.job
2014-02-25 01:03 - 2013-04-03 19:34 - 00000474 _____ () C:\Windows\Tasks\Foresight Software Update3.job
2014-02-24 11:14 - 2013-12-09 12:09 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForLucille
2014-02-24 11:14 - 2011-10-31 16:41 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-02-24 11:14 - 2010-01-11 07:44 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-02-21 07:12 - 2012-06-26 07:28 - 00000000 ____D () C:\Users\Lucille\AppData\Local\Windows Live
2014-02-20 16:28 - 2012-08-15 14:50 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-20 16:28 - 2012-08-15 14:50 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-20 16:28 - 2012-08-15 14:50 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-15 03:03 - 2013-07-20 02:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-15 03:00 - 2013-07-02 12:27 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-13 21:42 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-12 10:36 - 2010-01-03 14:59 - 00000000 ____D () C:\Users\Lucille
2014-02-12 10:33 - 2012-06-18 20:35 - 00000000 ____D () C:\Users\Lucille\Downloads\queen anne machine
2014-02-12 08:25 - 2013-10-11 08:14 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cec69d91e59d
2014-02-12 08:25 - 2010-03-09 22:49 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-12 04:04 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache
2014-02-11 16:44 - 2014-02-11 16:41 - 00000000 ____D () C:\Users\Lucille\Documents\Jones Serpentine sewing machine
2014-02-10 15:40 - 2013-07-03 05:17 - 00003890 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000UA1ce77efabf53454
2014-02-10 15:40 - 2013-07-03 05:17 - 00003494 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3472568841-1174150532-69183956-1000Core1ce77efabd17faf
2014-02-10 11:34 - 2014-02-10 11:34 - 00001971 _____ () C:\Users\Lucille\Desktop\Sync Folder.lnk
2014-02-10 11:34 - 2014-02-09 19:40 - 00000000 ____D () C:\Users\Lucille\AppData\Roaming\Mozilla
2014-02-10 11:33 - 2014-02-10 11:33 - 00001983 _____ () C:\Users\Public\Desktop\Manuals Finder.lnk
2014-02-10 11:33 - 2014-02-10 11:33 - 00000000 ____D () C:\Program Files (x86)\Manuals Finder
2014-02-09 19:40 - 2010-03-09 22:29 - 00000000 ____D () C:\Users\Lucille\AppData\Local\Google
2014-02-06 04:16 - 2014-02-12 03:00 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 03:30 - 2014-02-12 03:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 03:30 - 2014-02-12 03:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 03:12 - 2014-02-12 03:00 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 03:07 - 2014-02-12 03:00 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 03:06 - 2014-02-12 03:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 02:57 - 2014-02-12 03:00 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 02:56 - 2014-02-12 03:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 02:52 - 2014-02-12 03:00 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 02:49 - 2014-02-12 03:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 02:48 - 2014-02-12 03:00 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 02:48 - 2014-02-12 03:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 02:38 - 2014-02-12 03:00 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 02:32 - 2014-02-12 03:00 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 02:20 - 2014-02-12 03:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 02:17 - 2014-02-12 03:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 02:11 - 2014-02-12 03:00 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 02:01 - 2014-02-12 03:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 02:00 - 2014-02-12 03:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 01:57 - 2014-02-12 03:00 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 01:57 - 2014-02-12 03:00 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 01:52 - 2014-02-12 03:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 01:52 - 2014-02-12 03:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 01:50 - 2014-02-12 03:00 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 01:49 - 2014-02-12 03:00 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 01:47 - 2014-02-12 03:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 01:46 - 2014-02-12 03:00 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 01:25 - 2014-02-12 03:00 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 01:25 - 2014-02-12 03:00 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 01:24 - 2014-02-12 03:00 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 01:22 - 2014-02-12 03:00 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 01:13 - 2014-02-12 03:00 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 01:09 - 2014-02-12 03:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 01:03 - 2014-02-12 03:00 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 00:55 - 2014-02-12 03:00 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 00:41 - 2014-02-12 03:00 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 00:40 - 2014-02-12 03:00 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 00:36 - 2014-02-12 03:00 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 00:34 - 2014-02-12 03:00 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 17:16 - 2009-07-13 21:08 - 00032556 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-05 13:36 - 2014-02-05 13:36 - 00012326 _____ () C:\Users\Lucille\AppData\Local\dlsfscvo
2014-02-05 13:35 - 2014-02-05 13:35 - 00068260 _____ () C:\Users\Lucille\AppData\Local\ottujgmv
2014-02-05 13:34 - 2014-02-05 13:34 - 00000000 _____ () C:\Users\Lucille\AppData\Roaming\SharedSettings.ccs
2014-02-03 21:26 - 2013-10-30 19:42 - 00002185 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-31 11:03 - 2010-01-03 20:03 - 00000552 _____ () C:\Windows\Tasks\PCDRScheduledMaintenance.job

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-02-25 03:51

==================== End Of Log ============================

computer seems to be running good!

#23
pystryker

Posted 27 February 2014 - 06:29 PM

Trusted Helper

Malware Removal
3,912 posts

computer seems to be running good!

Good to hear! :thumbsup:

I'd like to run one more scan just to take a look.

Please disable your antivirus for the duration of my instructions. Don't forget to re-enable them after you have completed the steps.

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Things I need to see in your next post:

TDSS KIller Log

#24
LUCYR

Posted 27 February 2014 - 07:03 PM

Member

Topic Starter
Member
18 posts

They were not in a group but individual in c drive found 9

[InfectedFile]
Type: Raw image
Src: C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
md5: 2A8B93A01621E100A578E83C768AFA2C

[InfectedObject]
Type: Service
Name: hpqcxs08
Type: n/a (0x20)
Start: Demand (0x3)
ImagePath: %SystemRoot%\system32\svchost.exe -k hpdevmgmt
[InfectedObject]
Type: Service
Name: hpqddsvc
Type: n/a (0x20)
Start: Auto (0x2)
ImagePath: %SystemRoot%\system32\svchost.exe -k hpdevmgmt
[InfectedObject]
Type: Service
Name: HPSLPSVC
Type: n/a (0x20)
Start: Auto (0x2)
ImagePath: %SystemRoot%\system32\svchost.exe -k HPService
[InfectedObject]
Type: Service
Name: LightScribeService
Type: n/a (0x10)
Start: Auto (0x2)
ImagePath: "c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
[InfectedObject]
Type: Service
Name: Net Driver HPZ12
Type: n/a (0x10)
Start: Auto (0x2)
ImagePath: %SystemRoot%\System32\svchost.exe -k HPZ12
[InfectedObject]
Type: Service
Name: Netaapl
Type: Kernel driver (0x1)
Start: Demand (0x3)
ImagePath: system32\DRIVERS\netaapl64.sys
[InfectedObject]
Type: Service
Name: Pml Driver HPZ12
Type: n/a (0x10)
Start: Auto (0x2)
ImagePath: %SystemRoot%\System32\svchost.exe -k HPZ12
[InfectedObject]
Type: Service
Name: tvnserver
Type: n/a (0x10)
Start: Demand (0x3)
ImagePath: "C:\Users\Lucille\AppData\Local\CrossLoop\tvnserver.exe" -service

#25
pystryker

Posted 27 February 2014 - 07:09 PM

Trusted Helper

Malware Removal
3,912 posts

That log looks incomplete, there should be a lot more to it. Please look in C:\ and repost the log TDSSKiller.[Version]_[Date]_[Time]_log.txt found there. :thumbsup:

#26
LUCYR

Posted 27 February 2014 - 07:26 PM

Member

Topic Starter
Member
18 posts

found a larger log
17:11:39.0591 5864 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:11:41.0775 5864 ============================================================
17:11:41.0775 5864 Current date / time: 2014/02/27 17:11:41.0775
17:11:41.0775 5864 SystemInfo:
17:11:41.0775 5864
17:11:41.0775 5864 OS Version: 6.1.7601 ServicePack: 1.0
17:11:41.0775 5864 Product type: Workstation
17:11:41.0775 5864 ComputerName: LUCILLE-PC
17:11:41.0775 5864 UserName: Lucille
17:11:41.0775 5864 Windows directory: C:\Windows
17:11:41.0775 5864 System windows directory: C:\Windows
17:11:41.0775 5864 Running under WOW64
17:11:41.0775 5864 Processor architecture: Intel x64
17:11:41.0775 5864 Number of processors: 4
17:11:41.0775 5864 Page size: 0x1000
17:11:41.0775 5864 Boot type: Normal boot
17:11:41.0775 5864 ============================================================
17:11:41.0838 5864 BG loaded
17:11:42.0087 5864 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:11:42.0119 5864 ============================================================
17:11:42.0119 5864 \Device\Harddisk0\DR0:
17:11:42.0119 5864 MBR partitions:
17:11:42.0119 5864 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:11:42.0119 5864 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x55B65800
17:11:42.0119 5864 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x55B98000, BlocksNum 0x19AD800
17:11:42.0119 5864 ============================================================
17:11:42.0150 5864 C: <-> \Device\Harddisk0\DR0\Partition2
17:11:42.0181 5864 D: <-> \Device\Harddisk0\DR0\Partition3
17:11:42.0181 5864 ============================================================
17:11:42.0181 5864 Initialize success
17:11:42.0181 5864 ============================================================
17:11:54.0942 6904 ============================================================
17:11:54.0942 6904 Scan started
17:11:54.0942 6904 Mode: Manual; SigCheck; TDLFS;
17:11:54.0942 6904 ============================================================
17:11:55.0114 6904 ================ Scan system memory ========================
17:11:55.0114 6904 System memory - ok
17:11:55.0114 6904 ================ Scan services =============================
17:11:55.0238 6904 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:11:55.0301 6904 1394ohci - ok
17:11:55.0332 6904 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:11:55.0348 6904 ACPI - ok
17:11:55.0363 6904 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:11:55.0363 6904 AcpiPmi - ok
17:11:55.0441 6904 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:11:55.0457 6904 AdobeARMservice - ok
17:11:55.0597 6904 [ F7AB315A4D400CA876381D1E188A2E20 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:11:55.0597 6904 AdobeFlashPlayerUpdateSvc - ok
17:11:55.0644 6904 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:11:55.0660 6904 adp94xx - ok
17:11:55.0691 6904 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:11:55.0706 6904 adpahci - ok
17:11:55.0706 6904 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:11:55.0722 6904 adpu320 - ok
17:11:55.0769 6904 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:11:55.0800 6904 AeLookupSvc - ok
17:11:55.0862 6904 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
17:11:55.0878 6904 AFD - ok
17:11:55.0894 6904 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:11:55.0909 6904 agp440 - ok
17:11:55.0925 6904 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:11:55.0940 6904 ALG - ok
17:11:55.0972 6904 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:11:55.0972 6904 aliide - ok
17:11:55.0987 6904 [ 6290BA92CA8A23DB6BED83397CF97002 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:11:56.0003 6904 AMD External Events Utility - ok
17:11:56.0034 6904 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:11:56.0034 6904 amdide - ok
17:11:56.0065 6904 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:11:56.0081 6904 AmdK8 - ok
17:11:56.0112 6904 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:11:56.0128 6904 AmdPPM - ok
17:11:56.0174 6904 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:11:56.0190 6904 amdsata - ok
17:11:56.0221 6904 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:11:56.0221 6904 amdsbs - ok
17:11:56.0237 6904 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:11:56.0252 6904 amdxata - ok
17:11:56.0284 6904 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:11:56.0315 6904 AppID - ok
17:11:56.0346 6904 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:11:56.0377 6904 AppIDSvc - ok
17:11:56.0393 6904 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
17:11:56.0408 6904 Appinfo - ok
17:11:56.0502 6904 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:11:56.0518 6904 Apple Mobile Device - ok
17:11:56.0533 6904 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:11:56.0549 6904 arc - ok
17:11:56.0564 6904 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:11:56.0564 6904 arcsas - ok
17:11:56.0658 6904 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:11:56.0674 6904 aspnet_state - ok
17:11:56.0689 6904 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:11:56.0720 6904 AsyncMac - ok
17:11:56.0736 6904 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:11:56.0752 6904 atapi - ok
17:11:56.0783 6904 [ 04A5815DF7E8B037DF674D3CCACC0C31 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
17:11:56.0798 6904 AtiHdmiService - ok
17:11:56.0923 6904 [ 29623DB7E23B65F0C50CA19D7E0DFD03 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:11:56.0986 6904 atikmdag - ok
17:11:57.0048 6904 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:11:57.0079 6904 AudioEndpointBuilder - ok
17:11:57.0079 6904 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:11:57.0126 6904 AudioSrv - ok
17:11:57.0157 6904 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:11:57.0173 6904 AxInstSV - ok
17:11:57.0188 6904 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:11:57.0204 6904 b06bdrv - ok
17:11:57.0235 6904 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:11:57.0251 6904 b57nd60a - ok
17:11:57.0266 6904 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:11:57.0282 6904 BDESVC - ok
17:11:57.0298 6904 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:11:57.0329 6904 Beep - ok
17:11:57.0376 6904 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:11:57.0407 6904 BFE - ok
17:11:57.0422 6904 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:11:57.0469 6904 BITS - ok
17:11:57.0485 6904 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:11:57.0485 6904 blbdrive - ok
17:11:57.0563 6904 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:11:57.0578 6904 Bonjour Service - ok
17:11:57.0594 6904 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:11:57.0610 6904 bowser - ok
17:11:57.0625 6904 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:11:57.0641 6904 BrFiltLo - ok
17:11:57.0656 6904 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:11:57.0656 6904 BrFiltUp - ok
17:11:57.0688 6904 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:11:57.0703 6904 Browser - ok
17:11:57.0734 6904 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:11:57.0734 6904 Brserid - ok
17:11:57.0750 6904 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:11:57.0766 6904 BrSerWdm - ok
17:11:57.0781 6904 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:11:57.0797 6904 BrUsbMdm - ok
17:11:57.0828 6904 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:11:57.0828 6904 BrUsbSer - ok
17:11:57.0844 6904 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:11:57.0859 6904 BTHMODEM - ok
17:11:57.0875 6904 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:11:57.0906 6904 bthserv - ok
17:11:57.0922 6904 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:11:57.0953 6904 cdfs - ok
17:11:57.0984 6904 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:11:57.0984 6904 cdrom - ok
17:11:58.0015 6904 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:11:58.0046 6904 CertPropSvc - ok
17:11:58.0062 6904 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:11:58.0078 6904 circlass - ok
17:11:58.0093 6904 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:11:58.0109 6904 CLFS - ok
17:11:58.0156 6904 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:11:58.0171 6904 clr_optimization_v2.0.50727_32 - ok
17:11:58.0202 6904 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:11:58.0218 6904 clr_optimization_v2.0.50727_64 - ok
17:11:58.0280 6904 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:11:58.0296 6904 clr_optimization_v4.0.30319_32 - ok
17:11:58.0312 6904 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:11:58.0312 6904 clr_optimization_v4.0.30319_64 - ok
17:11:58.0343 6904 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:11:58.0343 6904 CmBatt - ok
17:11:58.0390 6904 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:11:58.0405 6904 cmdide - ok
17:11:58.0436 6904 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
17:11:58.0452 6904 CNG - ok
17:11:58.0468 6904 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:11:58.0483 6904 Compbatt - ok
17:11:58.0499 6904 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:11:58.0514 6904 CompositeBus - ok
17:11:58.0514 6904 COMSysApp - ok
17:11:58.0530 6904 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:11:58.0546 6904 crcdisk - ok
17:11:58.0639 6904 [ C128E740CDB1048FB72F4F80FA384943 ] CrossLoopService C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe
17:11:58.0655 6904 CrossLoopService - ok
17:11:58.0702 6904 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:11:58.0717 6904 CryptSvc - ok
17:11:58.0748 6904 [ 76E02DB615A03801D698199A2BC4A06A ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
17:11:58.0748 6904 dc3d - ok
17:11:58.0795 6904 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:11:58.0826 6904 DcomLaunch - ok
17:11:58.0842 6904 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:11:58.0889 6904 defragsvc - ok
17:11:58.0904 6904 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:11:58.0936 6904 DfsC - ok
17:11:58.0951 6904 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:11:58.0967 6904 Dhcp - ok
17:11:58.0998 6904 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:11:59.0029 6904 discache - ok
17:11:59.0045 6904 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:11:59.0060 6904 Disk - ok
17:11:59.0076 6904 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:11:59.0092 6904 Dnscache - ok
17:11:59.0123 6904 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:11:59.0154 6904 dot3svc - ok
17:11:59.0201 6904 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:11:59.0216 6904 Dot4 - ok
17:11:59.0248 6904 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:11:59.0263 6904 Dot4Print - ok
17:11:59.0279 6904 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:11:59.0279 6904 dot4usb - ok
17:11:59.0294 6904 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:11:59.0326 6904 DPS - ok
17:11:59.0357 6904 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:11:59.0357 6904 drmkaud - ok
17:11:59.0388 6904 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:11:59.0419 6904 DXGKrnl - ok
17:11:59.0435 6904 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:11:59.0466 6904 EapHost - ok
17:11:59.0544 6904 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:11:59.0575 6904 ebdrv - ok
17:11:59.0606 6904 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
17:11:59.0622 6904 EFS - ok
17:11:59.0669 6904 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:11:59.0684 6904 ehRecvr - ok
17:11:59.0700 6904 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:11:59.0716 6904 ehSched - ok
17:11:59.0747 6904 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:11:59.0762 6904 elxstor - ok
17:11:59.0778 6904 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:11:59.0794 6904 ErrDev - ok
17:11:59.0825 6904 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:11:59.0856 6904 EventSystem - ok
17:11:59.0887 6904 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:11:59.0918 6904 exfat - ok
17:11:59.0918 6904 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:11:59.0965 6904 fastfat - ok
17:11:59.0996 6904 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:12:00.0012 6904 Fax - ok
17:12:00.0043 6904 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:12:00.0043 6904 fdc - ok
17:12:00.0074 6904 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:12:00.0106 6904 fdPHost - ok
17:12:00.0121 6904 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:12:00.0152 6904 FDResPub - ok
17:12:00.0168 6904 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:12:00.0168 6904 FileInfo - ok
17:12:00.0184 6904 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:12:00.0215 6904 Filetrace - ok
17:12:00.0262 6904 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:12:00.0277 6904 FLEXnet Licensing Service - ok
17:12:00.0293 6904 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:12:00.0308 6904 flpydisk - ok
17:12:00.0340 6904 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:12:00.0355 6904 FltMgr - ok
17:12:00.0386 6904 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
17:12:00.0418 6904 FontCache - ok
17:12:00.0464 6904 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:12:00.0464 6904 FontCache3.0.0.0 - ok
17:12:00.0480 6904 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:12:00.0480 6904 FsDepends - ok
17:12:00.0511 6904 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:12:00.0511 6904 Fs_Rec - ok
17:12:00.0542 6904 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:12:00.0558 6904 fvevol - ok
17:12:00.0589 6904 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:12:00.0589 6904 gagp30kx - ok
17:12:00.0636 6904 [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:12:00.0652 6904 GameConsoleService - ok
17:12:00.0683 6904 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:12:00.0683 6904 GEARAspiWDM - ok
17:12:00.0730 6904 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:12:00.0761 6904 gpsvc - ok
17:12:00.0839 6904 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:12:00.0854 6904 gupdate - ok
17:12:00.0870 6904 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:12:00.0870 6904 gupdatem - ok
17:12:00.0886 6904 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:12:00.0901 6904 gusvc - ok
17:12:00.0917 6904 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:12:00.0917 6904 hcw85cir - ok
17:12:00.0964 6904 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:12:00.0979 6904 HDAudBus - ok
17:12:00.0979 6904 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:12:00.0995 6904 HidBatt - ok
17:12:01.0010 6904 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:12:01.0026 6904 HidBth - ok
17:12:01.0042 6904 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:12:01.0057 6904 HidIr - ok
17:12:01.0073 6904 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:12:01.0104 6904 hidserv - ok
17:12:01.0151 6904 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:12:01.0151 6904 HidUsb - ok
17:12:01.0182 6904 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:12:01.0213 6904 hkmsvc - ok
17:12:01.0244 6904 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:12:01.0260 6904 HomeGroupListener - ok
17:12:01.0291 6904 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:12:01.0307 6904 HomeGroupProvider - ok
17:12:01.0369 6904 [ 2A8B93A01621E100A578E83C768AFA2C ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:12:01.0369 6904 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
17:12:01.0369 6904 HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
17:12:01.0432 6904 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:12:01.0447 6904 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
17:12:01.0447 6904 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
17:12:01.0463 6904 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:12:01.0463 6904 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
17:12:01.0463 6904 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
17:12:01.0525 6904 [ D2946D9F020AE76E9CEF9B4A6DF838C0 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:12:01.0541 6904 hpqwmiex - ok
17:12:01.0572 6904 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:12:01.0572 6904 HpSAMD - ok
17:12:01.0634 6904 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:12:01.0650 6904 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
17:12:01.0650 6904 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
17:12:01.0697 6904 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:12:01.0728 6904 HTTP - ok
17:12:01.0744 6904 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:12:01.0759 6904 hwpolicy - ok
17:12:01.0775 6904 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:12:01.0790 6904 i8042prt - ok
17:12:01.0837 6904 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
17:12:01.0853 6904 IAANTMON - ok
17:12:01.0868 6904 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:12:01.0884 6904 iaStor - ok
17:12:01.0915 6904 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:12:01.0931 6904 iaStorV - ok
17:12:01.0962 6904 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:12:01.0978 6904 idsvc - ok
17:12:02.0009 6904 IEEtwCollectorService - ok
17:12:02.0024 6904 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:12:02.0040 6904 iirsp - ok
17:12:02.0071 6904 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
17:12:02.0087 6904 IKEEXT - ok
17:12:02.0149 6904 [ 31C32BC56D85D109EBB0C526BE5CACA7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:12:02.0180 6904 IntcAzAudAddService - ok
17:12:02.0212 6904 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:12:02.0212 6904 intelide - ok
17:12:02.0227 6904 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:12:02.0243 6904 intelppm - ok
17:12:02.0274 6904 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:12:02.0305 6904 IPBusEnum - ok
17:12:02.0321 6904 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:12:02.0352 6904 IpFilterDriver - ok
17:12:02.0399 6904 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:12:02.0414 6904 iphlpsvc - ok
17:12:02.0430 6904 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:12:02.0430 6904 IPMIDRV - ok
17:12:02.0461 6904 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:12:02.0492 6904 IPNAT - ok
17:12:02.0539 6904 [ 71F993192EB04B2C4C80F2DEE9119229 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:12:02.0555 6904 iPod Service - ok
17:12:02.0570 6904 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:12:02.0586 6904 IRENUM - ok
17:12:02.0602 6904 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:12:02.0602 6904 isapnp - ok
17:12:02.0617 6904 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:12:02.0633 6904 iScsiPrt - ok
17:12:02.0664 6904 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:12:02.0680 6904 kbdclass - ok
17:12:02.0680 6904 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:12:02.0695 6904 kbdhid - ok
17:12:02.0711 6904 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
17:12:02.0711 6904 KeyIso - ok
17:12:02.0742 6904 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:12:02.0758 6904 KSecDD - ok
17:12:02.0758 6904 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:12:02.0773 6904 KSecPkg - ok
17:12:02.0773 6904 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:12:02.0804 6904 ksthunk - ok
17:12:02.0836 6904 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:12:02.0867 6904 KtmRm - ok
17:12:02.0898 6904 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:12:02.0929 6904 LanmanServer - ok
17:12:02.0976 6904 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:12:03.0007 6904 LanmanWorkstation - ok
17:12:03.0038 6904 [ 108333981C841EB0FF198AA5DFCF3D3B ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:12:03.0054 6904 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
17:12:03.0054 6904 LightScribeService - detected UnsignedFile.Multi.Generic (1)
17:12:03.0070 6904 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:12:03.0101 6904 lltdio - ok
17:12:03.0116 6904 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:12:03.0148 6904 lltdsvc - ok
17:12:03.0163 6904 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:12:03.0194 6904 lmhosts - ok
17:12:03.0210 6904 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:12:03.0226 6904 LSI_FC - ok
17:12:03.0257 6904 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:12:03.0257 6904 LSI_SAS - ok
17:12:03.0272 6904 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:12:03.0288 6904 LSI_SAS2 - ok
17:12:03.0319 6904 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:12:03.0335 6904 LSI_SCSI - ok
17:12:03.0350 6904 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:12:03.0382 6904 luafv - ok
17:12:03.0444 6904 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:12:03.0444 6904 MBAMProtector - ok
17:12:03.0491 6904 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:12:03.0506 6904 MBAMScheduler - ok
17:12:03.0538 6904 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:12:03.0553 6904 MBAMService - ok
17:12:03.0569 6904 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:12:03.0584 6904 Mcx2Svc - ok
17:12:03.0600 6904 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:12:03.0616 6904 megasas - ok
17:12:03.0647 6904 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:12:03.0662 6904 MegaSR - ok
17:12:03.0678 6904 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:12:03.0709 6904 MMCSS - ok
17:12:03.0725 6904 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:12:03.0756 6904 Modem - ok
17:12:03.0772 6904 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:12:03.0787 6904 monitor - ok
17:12:03.0818 6904 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:12:03.0834 6904 mouclass - ok
17:12:03.0834 6904 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:12:03.0850 6904 mouhid - ok
17:12:03.0865 6904 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:12:03.0881 6904 mountmgr - ok
17:12:03.0912 6904 [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:12:03.0928 6904 MpFilter - ok
17:12:03.0943 6904 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:12:03.0959 6904 mpio - ok
17:12:03.0990 6904 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:12:04.0021 6904 mpsdrv - ok
17:12:04.0052 6904 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:12:04.0099 6904 MpsSvc - ok
17:12:04.0115 6904 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:12:04.0130 6904 MRxDAV - ok
17:12:04.0146 6904 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:12:04.0162 6904 mrxsmb - ok
17:12:04.0193 6904 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:12:04.0208 6904 mrxsmb10 - ok
17:12:04.0224 6904 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:12:04.0240 6904 mrxsmb20 - ok
17:12:04.0271 6904 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:12:04.0271 6904 msahci - ok
17:12:04.0302 6904 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:12:04.0302 6904 msdsm - ok
17:12:04.0318 6904 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:12:04.0333 6904 MSDTC - ok
17:12:04.0364 6904 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:12:04.0396 6904 Msfs - ok
17:12:04.0411 6904 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:12:04.0442 6904 mshidkmdf - ok
17:12:04.0474 6904 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:12:04.0474 6904 msisadrv - ok
17:12:04.0505 6904 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:12:04.0536 6904 MSiSCSI - ok
17:12:04.0536 6904 msiserver - ok
17:12:04.0552 6904 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:12:04.0583 6904 MSKSSRV - ok
17:12:04.0630 6904 [ 7675E15D1B2180745E4DA4D26AAD7385 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:12:04.0630 6904 MsMpSvc - ok
17:12:04.0661 6904 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:12:04.0692 6904 MSPCLOCK - ok
17:12:04.0692 6904 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:12:04.0723 6904 MSPQM - ok
17:12:04.0754 6904 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:12:04.0770 6904 MsRPC - ok
17:12:04.0786 6904 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:12:04.0786 6904 mssmbios - ok
17:12:04.0801 6904 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:12:04.0832 6904 MSTEE - ok
17:12:04.0848 6904 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:12:04.0864 6904 MTConfig - ok
17:12:04.0879 6904 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:12:04.0895 6904 Mup - ok
17:12:04.0926 6904 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:12:04.0957 6904 napagent - ok
17:12:04.0988 6904 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:12:05.0004 6904 NativeWifiP - ok
17:12:05.0051 6904 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:12:05.0066 6904 NDIS - ok
17:12:05.0082 6904 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:12:05.0113 6904 NdisCap - ok
17:12:05.0144 6904 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:12:05.0176 6904 NdisTapi - ok
17:12:05.0191 6904 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:12:05.0222 6904 Ndisuio - ok
17:12:05.0238 6904 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:12:05.0269 6904 NdisWan - ok
17:12:05.0300 6904 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:12:05.0332 6904 NDProxy - ok
17:12:05.0363 6904 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:12:05.0378 6904 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
17:12:05.0378 6904 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
17:12:05.0410 6904 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
17:12:05.0410 6904 Netaapl ( UnsignedFile.Multi.Generic ) - warning
17:12:05.0410 6904 Netaapl - detected UnsignedFile.Multi.Generic (1)
17:12:05.0425 6904 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:12:05.0456 6904 NetBIOS - ok
17:12:05.0472 6904 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:12:05.0503 6904 NetBT - ok
17:12:05.0503 6904 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
17:12:05.0519 6904 Netlogon - ok
17:12:05.0550 6904 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:12:05.0581 6904 Netman - ok
17:12:05.0597 6904 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:12:05.0612 6904 NetMsmqActivator - ok
17:12:05.0628 6904 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:12:05.0644 6904 NetPipeActivator - ok
17:12:05.0659 6904 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:12:05.0706 6904 netprofm - ok
17:12:05.0737 6904 [ 883269C1CA478658F1334F3C39B0C7AC ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
17:12:05.0753 6904 netr28ux - ok
17:12:05.0753 6904 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:12:05.0768 6904 NetTcpActivator - ok
17:12:05.0768 6904 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:12:05.0784 6904 NetTcpPortSharing - ok
17:12:05.0815 6904 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:12:05.0831 6904 nfrd960 - ok
17:12:05.0862 6904 [ ACE8C64C57E4A711473C8BC10ADF692B ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:12:05.0878 6904 NisDrv - ok
17:12:05.0893 6904 [ 6247E8B31ED0A9D6BC5A26276E49BEB3 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:12:05.0909 6904 NisSrv - ok
17:12:05.0940 6904 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:12:05.0940 6904 NlaSvc - ok
17:12:05.0956 6904 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:12:05.0987 6904 Npfs - ok
17:12:06.0018 6904 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:12:06.0049 6904 nsi - ok
17:12:06.0049 6904 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:12:06.0096 6904 nsiproxy - ok
17:12:06.0143 6904 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:12:06.0174 6904 Ntfs - ok
17:12:06.0174 6904 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:12:06.0205 6904 Null - ok
17:12:06.0221 6904 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:12:06.0236 6904 nvraid - ok
17:12:06.0283 6904 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:12:06.0299 6904 nvstor - ok
17:12:06.0299 6904 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:12:06.0314 6904 nv_agp - ok
17:12:06.0408 6904 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:12:06.0408 6904 odserv - ok
17:12:06.0439 6904 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:12:06.0455 6904 ohci1394 - ok
17:12:06.0486 6904 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:12:06.0502 6904 ose - ok
17:12:06.0517 6904 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:12:06.0533 6904 p2pimsvc - ok
17:12:06.0548 6904 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:12:06.0564 6904 p2psvc - ok
17:12:06.0580 6904 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:12:06.0595 6904 Parport - ok
17:12:06.0642 6904 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:12:06.0642 6904 partmgr - ok
17:12:06.0658 6904 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:12:06.0673 6904 PcaSvc - ok
17:12:06.0689 6904 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:12:06.0704 6904 pci - ok
17:12:06.0720 6904 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:12:06.0736 6904 pciide - ok
17:12:06.0751 6904 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:12:06.0767 6904 pcmcia - ok
17:12:06.0782 6904 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:12:06.0798 6904 pcw - ok
17:12:06.0814 6904 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:12:06.0845 6904 PEAUTH - ok
17:12:06.0892 6904 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:12:06.0907 6904 PerfHost - ok
17:12:06.0954 6904 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:12:07.0001 6904 pla - ok
17:12:07.0032 6904 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:12:07.0048 6904 PlugPlay - ok
17:12:07.0126 6904 [ 63694C307273062A2167AE4CE80730EF ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
17:12:07.0141 6904 PMBDeviceInfoProvider - ok
17:12:07.0188 6904 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:12:07.0188 6904 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
17:12:07.0188 6904 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
17:12:07.0204 6904 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:12:07.0204 6904 PNRPAutoReg - ok
17:12:07.0235 6904 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:12:07.0250 6904 PNRPsvc - ok
17:12:07.0282 6904 [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
17:12:07.0297 6904 Point64 - ok
17:12:07.0313 6904 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:12:07.0344 6904 PolicyAgent - ok
17:12:07.0375 6904 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:12:07.0406 6904 Power - ok
17:12:07.0438 6904 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:12:07.0469 6904 PptpMiniport - ok
17:12:07.0484 6904 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:12:07.0500 6904 Processor - ok
17:12:07.0516 6904 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:12:07.0531 6904 ProfSvc - ok
17:12:07.0547 6904 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
17:12:07.0547 6904 ProtectedStorage - ok
17:12:07.0594 6904 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:12:07.0625 6904 Psched - ok
17:12:07.0672 6904 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:12:07.0703 6904 ql2300 - ok
17:12:07.0703 6904 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:12:07.0718 6904 ql40xx - ok
17:12:07.0734 6904 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:12:07.0765 6904 QWAVE - ok
17:12:07.0781 6904 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:12:07.0796 6904 QWAVEdrv - ok
17:12:07.0843 6904 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
17:12:07.0859 6904 RapiMgr - ok
17:12:07.0859 6904 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:12:07.0890 6904 RasAcd - ok
17:12:07.0921 6904 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:12:07.0952 6904 RasAgileVpn - ok
17:12:07.0968 6904 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:12:07.0999 6904 RasAuto - ok
17:12:07.0999 6904 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:12:08.0030 6904 Rasl2tp - ok
17:12:08.0077 6904 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:12:08.0108 6904 RasMan - ok
17:12:08.0124 6904 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:12:08.0155 6904 RasPppoe - ok
17:12:08.0155 6904 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:12:08.0202 6904 RasSstp - ok
17:12:08.0218 6904 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:12:08.0249 6904 rdbss - ok
17:12:08.0264 6904 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:12:08.0280 6904 rdpbus - ok
17:12:08.0296 6904 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:12:08.0327 6904 RDPCDD - ok
17:12:08.0342 6904 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:12:08.0374 6904 RDPENCDD - ok
17:12:08.0389 6904 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:12:08.0420 6904 RDPREFMP - ok
17:12:08.0452 6904 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:12:08.0452 6904 RDPWD - ok
17:12:08.0498 6904 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:12:08.0498 6904 rdyboost - ok
17:12:08.0545 6904 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:12:08.0576 6904 RemoteAccess - ok
17:12:08.0576 6904 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:12:08.0608 6904 RemoteRegistry - ok
17:12:08.0639 6904 [ 5790BCA445CC40DF8B38C2C48608AAC2 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
17:12:08.0639 6904 RimUsb - ok
17:12:08.0654 6904 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:12:08.0686 6904 RpcEptMapper - ok
17:12:08.0701 6904 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:12:08.0717 6904 RpcLocator - ok
17:12:08.0748 6904 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:12:08.0779 6904 RpcSs - ok
17:12:08.0795 6904 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:12:08.0826 6904 rspndr - ok
17:12:08.0857 6904 [ 91296F0B2653281B2F11E0FCE56AA427 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:12:08.0873 6904 RTL8167 - ok
17:12:08.0888 6904 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
17:12:08.0888 6904 SamSs - ok
17:12:08.0920 6904 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:12:08.0935 6904 sbp2port - ok
17:12:08.0951 6904 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:12:08.0982 6904 SCardSvr - ok
17:12:08.0998 6904 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:12:09.0029 6904 scfilter - ok
17:12:09.0060 6904 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:12:09.0091 6904 Schedule - ok
17:12:09.0107 6904 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:12:09.0138 6904 SCPolicySvc - ok
17:12:09.0169 6904 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:12:09.0169 6904 SDRSVC - ok
17:12:09.0247 6904 [ 4A5809A1D796E2675AC0332BF7B0CB11 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
17:12:09.0263 6904 SeaPort - ok
17:12:09.0294 6904 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:12:09.0325 6904 secdrv - ok
17:12:09.0325 6904 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:12:09.0356 6904 seclogon - ok
17:12:09.0372 6904 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:12:09.0403 6904 SENS - ok
17:12:09.0403 6904 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:12:09.0419 6904 SensrSvc - ok
17:12:09.0466 6904 [ 255476B54C82A89416EFDF09FD62F107 ] Sentinel64 C:\Windows\System32\Drivers\Sentinel64.sys
17:12:09.0481 6904 Sentinel64 - ok
17:12:09.0497 6904 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:12:09.0512 6904 Serenum - ok
17:12:09.0512 6904 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:12:09.0528 6904 Serial - ok
17:12:09.0544 6904 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:12:09.0559 6904 sermouse - ok
17:12:09.0590 6904 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:12:09.0622 6904 SessionEnv - ok
17:12:09.0653 6904 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:12:09.0668 6904 sffdisk - ok
17:12:09.0684 6904 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:12:09.0684 6904 sffp_mmc - ok
17:12:09.0700 6904 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:12:09.0715 6904 sffp_sd - ok
17:12:09.0715 6904 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:12:09.0731 6904 sfloppy - ok
17:12:09.0762 6904 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:12:09.0793 6904 SharedAccess - ok
17:12:09.0824 6904 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:12:09.0856 6904 ShellHWDetection - ok
17:12:09.0902 6904 [ 850E17E9EB94D59A54BD6FA33A2CFA99 ] Simply Accounting Database Connection Manager C:\Program Files (x86)\Winsim\ConnectionManager\SimplyConnectionManager.exe
17:12:09.0918 6904 Simply Accounting Database Connection Manager - ok
17:12:09.0934 6904 [ 50765E0C0B94257CED940592AAD02B68 ] Simply Accounting Transaction Manager 2010 - CDN C:\Program Files (x86)\Winsim\TransactionManager2010 - CDN\Sage_SA.TransactionManager.exe
17:12:09.0949 6904 Simply Accounting Transaction Manager 2010 - CDN - ok
17:12:09.0980 6904 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:12:09.0980 6904 SiSRaid2 - ok
17:12:09.0996 6904 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:12:10.0012 6904 SiSRaid4 - ok
17:12:10.0074 6904 [ 875B04A71869D34A415CC8B4D4673EC4 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:12:10.0090 6904 SkypeUpdate - ok
17:12:10.0105 6904 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:12:10.0136 6904 Smb - ok
17:12:10.0168 6904 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:12:10.0168 6904 SNMPTRAP - ok
17:12:10.0199 6904 [ 47F99A3FF5900F70ADCF043580E595CB ] SNTUSB64 C:\Windows\system32\DRIVERS\SNTUSB64.SYS
17:12:10.0214 6904 SNTUSB64 - ok
17:12:10.0230 6904 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:12:10.0230 6904 spldr - ok
17:12:10.0261 6904 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:12:10.0292 6904 Spooler - ok
17:12:10.0355 6904 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:12:10.0417 6904 sppsvc - ok
17:12:10.0448 6904 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:12:10.0480 6904 sppuinotify - ok
17:12:10.0526 6904 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:12:10.0526 6904 srv - ok
17:12:10.0573 6904 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:12:10.0589 6904 srv2 - ok
17:12:10.0604 6904 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:12:10.0604 6904 srvnet - ok
17:12:10.0620 6904 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:12:10.0651 6904 SSDPSRV - ok
17:12:10.0667 6904 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:12:10.0698 6904 SstpSvc - ok
17:12:10.0714 6904 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:12:10.0729 6904 stexstor - ok
17:12:10.0745 6904 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
17:12:10.0760 6904 StillCam - ok
17:12:10.0776 6904 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:12:10.0807 6904 stisvc - ok
17:12:10.0838 6904 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:12:10.0838 6904 swenum - ok
17:12:10.0854 6904 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:12:10.0901 6904 swprv - ok
17:12:10.0948 6904 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:12:10.0979 6904 SysMain - ok
17:12:10.0994 6904 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:12:11.0010 6904 TabletInputService - ok
17:12:11.0026 6904 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:12:11.0057 6904 TapiSrv - ok
17:12:11.0057 6904 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:12:11.0104 6904 TBS - ok
17:12:11.0135 6904 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:12:11.0182 6904 Tcpip - ok
17:12:11.0228 6904 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:12:11.0260 6904 TCPIP6 - ok
17:12:11.0291 6904 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:12:11.0306 6904 tcpipreg - ok
17:12:11.0322 6904 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:12:11.0322 6904 TDPIPE - ok
17:12:11.0353 6904 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:12:11.0369 6904 TDTCP - ok
17:12:11.0400 6904 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:12:11.0431 6904 tdx - ok
17:12:11.0431 6904 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:12:11.0447 6904 TermDD - ok
17:12:11.0478 6904 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:12:11.0509 6904 TermService - ok
17:12:11.0525 6904 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:12:11.0540 6904 Themes - ok
17:12:11.0556 6904 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:12:11.0587 6904 THREADORDER - ok
17:12:11.0603 6904 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:12:11.0634 6904 TrkWks - ok
17:12:11.0665 6904 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:12:11.0696 6904 TrustedInstaller - ok
17:12:11.0712 6904 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:12:11.0728 6904 tssecsrv - ok
17:12:11.0759 6904 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:12:11.0774 6904 TsUsbFlt - ok
17:12:11.0806 6904 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:12:11.0837 6904 tunnel - ok
17:12:11.0946 6904 [ 7694DCA064D0B7E0D1A6972BB9C71B39 ] tvnserver C:\Users\Lucille\AppData\Local\CrossLoop\tvnserver.exe
17:12:11.0962 6904 tvnserver ( UnsignedFile.Multi.Generic ) - warning
17:12:11.0962 6904 tvnserver - detected UnsignedFile.Multi.Generic (1)
17:12:11.0977 6904 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:12:11.0993 6904 uagp35 - ok
17:12:12.0024 6904 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:12:12.0055 6904 udfs - ok
17:12:12.0071 6904 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:12:12.0086 6904 UI0Detect - ok
17:12:12.0118 6904 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:12:12.0118 6904 uliagpkx - ok
17:12:12.0164 6904 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:12:12.0180 6904 umbus - ok
17:12:12.0180 6904 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:12:12.0196 6904 UmPass - ok
17:12:12.0211 6904 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:12:12.0258 6904 upnphost - ok
17:12:12.0274 6904 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:12:12.0289 6904 USBAAPL64 - ok
17:12:12.0336 6904 [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:12:12.0352 6904 usbaudio - ok
17:12:12.0383 6904 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:12:12.0398 6904 usbccgp - ok
17:12:12.0430 6904 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:12:12.0430 6904 usbcir - ok
17:12:12.0445 6904 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:12:12.0461 6904 usbehci - ok
17:12:12.0476 6904 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:12:12.0492 6904 usbhub - ok
17:12:12.0508 6904 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:12:12.0523 6904 usbohci - ok
17:12:12.0539 6904 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:12:12.0554 6904 usbprint - ok
17:12:12.0570 6904 [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:12:12.0586 6904 usbscan - ok
17:12:12.0586 6904 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:12:12.0601 6904 USBSTOR - ok
17:12:12.0632 6904 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:12:12.0648 6904 usbuhci - ok
17:12:12.0679 6904 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
17:12:12.0679 6904 usb_rndisx - ok
17:12:12.0695 6904 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:12:12.0742 6904 UxSms - ok
17:12:12.0742 6904 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
17:12:12.0757 6904 VaultSvc - ok
17:12:12.0773 6904 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:12:12.0773 6904 vdrvroot - ok
17:12:12.0820 6904 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:12:12.0851 6904 vds - ok
17:12:12.0866 6904 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:12:12.0882 6904 vga - ok
17:12:12.0913 6904 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:12:12.0944 6904 VgaSave - ok
17:12:12.0960 6904 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:12:12.0976 6904 vhdmp - ok
17:12:13.0007 6904 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:12:13.0022 6904 viaide - ok
17:12:13.0022 6904 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:12:13.0038 6904 volmgr - ok
17:12:13.0069 6904 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:12:13.0085 6904 volmgrx - ok
17:12:13.0100 6904 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:12:13.0116 6904 volsnap - ok
17:12:13.0147 6904 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:12:13.0163 6904 vsmraid - ok
17:12:13.0210 6904 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:12:13.0256 6904 VSS - ok
17:12:13.0272 6904 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:12:13.0288 6904 vwifibus - ok
17:12:13.0319 6904 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:12:13.0334 6904 vwififlt - ok
17:12:13.0350 6904 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:12:13.0366 6904 vwifimp - ok
17:12:13.0381 6904 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:12:13.0412 6904 W32Time - ok
17:12:13.0444 6904 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:12:13.0459 6904 WacomPen - ok
17:12:13.0475 6904 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:12:13.0506 6904 WANARP - ok
17:12:13.0506 6904 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:12:13.0537 6904 Wanarpv6 - ok
17:12:13.0584 6904 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:12:13.0615 6904 WatAdminSvc - ok
17:12:13.0646 6904 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:12:13.0678 6904 wbengine - ok
17:12:13.0693 6904 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:12:13.0709 6904 WbioSrvc - ok
17:12:13.0724 6904 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
17:12:13.0740 6904 WcesComm - ok
17:12:13.0756 6904 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:12:13.0787 6904 wcncsvc - ok
17:12:13.0787 6904 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:12:13.0802 6904 WcsPlugInService - ok
17:12:13.0818 6904 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:12:13.0834 6904 Wd - ok
17:12:13.0865 6904 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:12:13.0880 6904 Wdf01000 - ok
17:12:13.0896 6904 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:12:13.0912 6904 WdiServiceHost - ok
17:12:13.0912 6904 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:12:13.0927 6904 WdiSystemHost - ok
17:12:13.0958 6904 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
17:12:13.0958 6904 WebClient - ok
17:12:13.0974 6904 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:12:14.0005 6904 Wecsvc - ok
17:12:14.0021 6904 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:12:14.0052 6904 wercplsupport - ok
17:12:14.0068 6904 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:12:14.0114 6904 WerSvc - ok
17:12:14.0130 6904 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:12:14.0161 6904 WfpLwf - ok
17:12:14.0161 6904 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:12:14.0177 6904 WIMMount - ok
17:12:14.0192 6904 WinDefend - ok
17:12:14.0208 6904 WinHttpAutoProxySvc - ok
17:12:14.0239 6904 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:12:14.0270 6904 Winmgmt - ok
17:12:14.0333 6904 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:12:14.0380 6904 WinRM - ok
17:12:14.0411 6904 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:12:14.0426 6904 WinUsb - ok
17:12:14.0458 6904 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:12:14.0489 6904 Wlansvc - ok
17:12:14.0582 6904 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:12:14.0629 6904 wlidsvc - ok
17:12:14.0645 6904 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:12:14.0660 6904 WmiAcpi - ok
17:12:14.0676 6904 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:12:14.0676 6904 wmiApSrv - ok
17:12:14.0692 6904 WMPNetworkSvc - ok
17:12:14.0707 6904 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:12:14.0723 6904 WPCSvc - ok
17:12:14.0754 6904 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:12:14.0770 6904 WPDBusEnum - ok
17:12:14.0785 6904 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:12:14.0816 6904 ws2ifsl - ok
17:12:14.0832 6904 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:12:14.0848 6904 wscsvc - ok
17:12:14.0848 6904 WSearch - ok
17:12:14.0926 6904 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:12:14.0957 6904 wuauserv - ok
17:12:14.0988 6904 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:12:15.0004 6904 WudfPf - ok
17:12:15.0019 6904 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:12:15.0035 6904 WUDFRd - ok
17:12:15.0050 6904 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:12:15.0066 6904 wudfsvc - ok
17:12:15.0082 6904 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
17:12:15.0097 6904 WwanSvc - ok
17:12:15.0128 6904 ================ Scan global ===============================
17:12:15.0144 6904 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:12:15.0175 6904 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
17:12:15.0175 6904 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
17:12:15.0191 6904 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:12:15.0206 6904 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:12:15.0206 6904 [Global] - ok
17:12:15.0206 6904 ================ Scan MBR ==================================
17:12:15.0222 6904 [ 950F9D0D77B712E1F4311734A7C7F1E2 ] \Device\Harddisk0\DR0
17:12:15.0409 6904 \Device\Harddisk0\DR0 - ok
17:12:15.0409 6904 ================ Scan VBR ==================================
17:12:15.0425 6904 [ CC4B9CF1634C197BD3C8DDBC994D9F2D ] \Device\Harddisk0\DR0\Partition1
17:12:15.0440 6904 \Device\Harddisk0\DR0\Partition1 - ok
17:12:15.0440 6904 [ 6ADC665E021D72681CB0759BB509EC68 ] \Device\Harddisk0\DR0\Partition2
17:12:15.0440 6904 \Device\Harddisk0\DR0\Partition2 - ok
17:12:15.0456 6904 [ BD0528DE3CC389809D120A565C83C8C6 ] \Device\Harddisk0\DR0\Partition3
17:12:15.0472 6904 \Device\Harddisk0\DR0\Partition3 - ok
17:12:15.0472 6904 ================ Scan active images ========================
17:12:15.0472 6904 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:12:15.0472 6904 C:\Windows\System32\drivers\crashdmp.sys - ok
17:12:15.0472 6904 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:12:15.0472 6904 C:\Windows\System32\drivers\dumpfve.sys - ok
17:12:15.0472 6904 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
17:12:15.0472 6904 C:\Windows\System32\drivers\iaStor.sys - ok
17:12:15.0487 6904 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
17:12:15.0487 6904 C:\Windows\System32\drivers\cdrom.sys - ok
17:12:15.0487 6904 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:12:15.0487 6904 C:\Windows\System32\drivers\beep.sys - ok
17:12:15.0487 6904 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:12:15.0487 6904 C:\Windows\System32\drivers\null.sys - ok
17:12:15.0487 6904 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
17:12:15.0487 6904 C:\Windows\System32\drivers\RDPCDD.sys - ok
17:12:15.0503 6904 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:12:15.0503 6904 C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:12:15.0503 6904 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:12:15.0503 6904 C:\Windows\System32\drivers\vga.sys - ok
17:12:15.0503 6904 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:12:15.0503 6904 C:\Windows\System32\drivers\videoprt.sys - ok
17:12:15.0518 6904 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:12:15.0518 6904 C:\Windows\System32\drivers\watchdog.sys - ok
17:12:15.0518 6904 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:12:15.0518 6904 C:\Windows\System32\drivers\msfs.sys - ok
17:12:15.0518 6904 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:12:15.0518 6904 C:\Windows\System32\drivers\npfs.sys - ok
17:12:15.0518 6904 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
17:12:15.0518 6904 C:\Windows\System32\drivers\RDPREFMP.sys - ok
17:12:15.0534 6904 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
17:12:15.0534 6904 C:\Windows\System32\drivers\tdi.sys - ok
17:12:15.0534 6904 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
17:12:15.0534 6904 C:\Windows\System32\drivers\tdx.sys - ok
17:12:15.0534 6904 [ 79059559E89D06E8B80CE2944BE20228 ] C:\Windows\System32\drivers\afd.sys
17:12:15.0534 6904 C:\Windows\System32\drivers\afd.sys - ok
17:12:15.0534 6904 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
17:12:15.0534 6904 C:\Windows\System32\drivers\netbt.sys - ok
17:12:15.0550 6904 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:12:15.0550 6904 C:\Windows\System32\drivers\wfplwf.sys - ok
17:12:15.0550 6904 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:12:15.0550 6904 C:\Windows\System32\drivers\netbios.sys - ok
17:12:15.0550 6904 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
17:12:15.0550 6904 C:\Windows\System32\drivers\pacer.sys - ok
17:12:15.0565 6904 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
17:12:15.0565 6904 C:\Windows\System32\drivers\termdd.sys - ok
17:12:15.0565 6904 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
17:12:15.0565 6904 C:\Windows\System32\drivers\vwififlt.sys - ok
17:12:15.0565 6904 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
17:12:15.0565 6904 C:\Windows\System32\drivers\wanarp.sys - ok
17:12:15.0565 6904 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:12:15.0565 6904 C:\Windows\System32\drivers\nsiproxy.sys - ok
17:12:15.0581 6904 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
17:12:15.0581 6904 C:\Windows\System32\drivers\rdbss.sys - ok
17:12:15.0581 6904 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
17:12:15.0581 6904 C:\Windows\System32\drivers\discache.sys - ok
17:12:15.0581 6904 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:12:15.0581 6904 C:\Windows\System32\drivers\mssmbios.sys - ok
17:12:15.0596 6904 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:12:15.0596 6904 C:\Windows\System32\drivers\blbdrive.sys - ok
17:12:15.0596 6904 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
17:12:15.0596 6904 C:\Windows\System32\drivers\dfsc.sys - ok
17:12:15.0596 6904 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
17:12:15.0596 6904 C:\Windows\System32\drivers\tunnel.sys - ok
17:12:15.0596 6904 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
17:12:15.0596 6904 C:\Windows\System32\drivers\intelppm.sys - ok
17:12:15.0612 6904 [ CAAAC014C5C56A69F710B5F1B836DE22 ] C:\Windows\System32\ntdll.dll
17:12:15.0612 6904 C:\Windows\System32\ntdll.dll - ok
17:12:15.0612 6904 [ F0970A4BC8395659C22BF53D0FADF16F ] C:\Windows\System32\smss.exe
17:12:15.0612 6904 C:\Windows\System32\smss.exe - ok
17:12:15.0612 6904 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
17:12:15.0612 6904 C:\Windows\System32\autochk.exe - ok
17:12:15.0612 6904 [ 29623DB7E23B65F0C50CA19D7E0DFD03 ] C:\Windows\System32\drivers\atikmdag.sys
17:12:15.0612 6904 C:\Windows\System32\drivers\atikmdag.sys - ok
17:12:15.0628 6904 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:12:15.0628 6904 C:\Windows\System32\difxapi.dll - ok
17:12:15.0628 6904 [ AD662B34B161198B9D66A564EDDA7D43 ] C:\Windows\System32\shell32.dll
17:12:15.0628 6904 C:\Windows\System32\shell32.dll - ok
17:12:15.0628 6904 [ 6300AD525D639CECBB3D144B6D7B30F9 ] C:\Windows\System32\iertutil.dll
17:12:15.0628 6904 C:\Windows\System32\iertutil.dll - ok
17:12:15.0628 6904 [ 796B47A4B82EF1C39F13435B88834C48 ] C:\Windows\System32\lpk.dll
17:12:15.0628 6904 C:\Windows\System32\lpk.dll - ok
17:12:15.0643 6904 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
17:12:15.0643 6904 C:\Windows\System32\Wldap32.dll - ok
17:12:15.0643 6904 [ 26036E228D2467DE6975AD819C22C043 ] C:\Windows\System32\rpcrt4.dll
17:12:15.0643 6904 C:\Windows\System32\rpcrt4.dll - ok
17:12:15.0643 6904 [ 56325BB1FF19F2A5AC8713756AC41140 ] C:\Windows\System32\gdi32.dll
17:12:15.0643 6904 C:\Windows\System32\gdi32.dll - ok
17:12:15.0659 6904 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:12:15.0659 6904 C:\Windows\System32\imm32.dll - ok
17:12:15.0659 6904 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
17:12:15.0659 6904 C:\Windows\System32\ole32.dll - ok
17:12:15.0659 6904 [ 63A580C88CFAF72A92550940054569EF ] C:\Windows\System32\advapi32.dll
17:12:15.0659 6904 C:\Windows\System32\advapi32.dll - ok
17:12:15.0659 6904 [ 22874047B810B5B174C68ACD7C0B6510 ] C:\Windows\System32\urlmon.dll
17:12:15.0659 6904 C:\Windows\System32\urlmon.dll - ok
17:12:15.0674 6904 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
17:12:15.0674 6904 C:\Windows\System32\msvcrt.dll - ok
17:12:15.0674 6904 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:12:15.0674 6904 C:\Windows\System32\clbcatq.dll - ok
17:12:15.0674 6904 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
17:12:15.0674 6904 C:\Windows\System32\user32.dll - ok
17:12:15.0674 6904 [ B4F29F65AD3114051F01E9403346047F ] C:\Windows\System32\imagehlp.dll
17:12:15.0674 6904 C:\Windows\System32\imagehlp.dll - ok
17:12:15.0690 6904 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:12:15.0690 6904 C:\Windows\System32\sechost.dll - ok
17:12:15.0690 6904 [ D8973E71F1B35CD3F3DEA7C12D49D0F0 ] C:\Windows\System32\kernel32.dll
17:12:15.0690 6904 C:\Windows\System32\kernel32.dll - ok
17:12:15.0690 6904 [ 263B6E451526A90FF8B1CEC759F22956 ] C:\Windows\System32\wininet.dll
17:12:15.0690 6904 C:\Windows\System32\wininet.dll - ok
17:12:15.0706 6904 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:12:15.0706 6904 C:\Windows\System32\msctf.dll - ok
17:12:15.0706 6904 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:12:15.0706 6904 C:\Windows\System32\nsi.dll - ok
17:12:15.0706 6904 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
17:12:15.0706 6904 C:\Windows\System32\shlwapi.dll - ok
17:12:15.0706 6904 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
17:12:15.0706 6904 C:\Windows\System32\ws2_32.dll - ok
17:12:15.0721 6904 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:12:15.0721 6904 C:\Windows\System32\normaliz.dll - ok
17:12:15.0721 6904 [ 88612F1CE3BF42256913BF6E61C70D52 ] C:\Windows\System32\drivers\dxgkrnl.sys
17:12:15.0721 6904 C:\Windows\System32\drivers\dxgkrnl.sys - ok
17:12:15.0721 6904 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:12:15.0721 6904 C:\Windows\System32\psapi.dll - ok
17:12:15.0721 6904 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
17:12:15.0721 6904 C:\Windows\System32\setupapi.dll - ok
17:12:15.0737 6904 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
17:12:15.0737 6904 C:\Windows\System32\oleaut32.dll - ok
17:12:15.0737 6904 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
17:12:15.0737 6904 C:\Windows\System32\comdlg32.dll - ok
17:12:15.0737 6904 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
17:12:15.0737 6904 C:\Windows\System32\drivers\dxgmms1.sys - ok
17:12:15.0752 6904 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
17:12:15.0752 6904 C:\Windows\System32\drivers\hdaudbus.sys - ok
17:12:15.0752 6904 [ 12FEB33791920678F8433701C822BCFD ] C:\Windows\System32\drivers\usbport.sys
17:12:15.0752 6904 C:\Windows\System32\drivers\usbport.sys - ok
17:12:15.0752 6904 [ DD253AFC3BC6CBA412342DE60C3647F3 ] C:\Windows\System32\drivers\usbuhci.sys
17:12:15.0752 6904 C:\Windows\System32\drivers\usbuhci.sys - ok
17:12:15.0752 6904 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
17:12:15.0752 6904 C:\Windows\System32\drivers\1394ohci.sys - ok
17:12:15.0768 6904 [ 91296F0B2653281B2F11E0FCE56AA427 ] C:\Windows\System32\drivers\Rt64win7.sys
17:12:15.0768 6904 C:\Windows\System32\drivers\Rt64win7.sys - ok
17:12:15.0768 6904 [ 18A85013A3E0F7E1755365D287443965 ] C:\Windows\System32\drivers\usbehci.sys
17:12:15.0768 6904 C:\Windows\System32\drivers\usbehci.sys - ok
17:12:15.0768 6904 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:12:15.0768 6904 C:\Windows\System32\drivers\agilevpn.sys - ok
17:12:15.0784 6904 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
17:12:15.0784 6904 C:\Windows\System32\drivers\CompositeBus.sys - ok
17:12:15.0784 6904 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
17:12:15.0784 6904 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
17:12:15.0784 6904 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:12:15.0784 6904 C:\Windows\System32\drivers\ndistapi.sys - ok
17:12:15.0784 6904 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
17:12:15.0784 6904 C:\Windows\System32\drivers\rasl2tp.sys - ok
17:12:15.0799 6904 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
17:12:15.0799 6904 C:\Windows\System32\drivers\ndiswan.sys - ok
17:12:15.0799 6904 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:12:15.0799 6904 C:\Windows\System32\drivers\raspppoe.sys - ok
17:12:15.0799 6904 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
17:12:15.0799 6904 C:\Windows\System32\drivers\raspptp.sys - ok
17:12:15.0799 6904 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:12:15.0799 6904 C:\Windows\System32\drivers\rassstp.sys - ok
17:12:15.0815 6904 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:12:15.0815 6904 C:\Windows\System32\drivers\kbdclass.sys - ok
17:12:15.0815 6904 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:12:15.0815 6904 C:\Windows\System32\drivers\mouclass.sys - ok
17:12:15.0815 6904 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
17:12:15.0815 6904 C:\Windows\System32\usp10.dll - ok
17:12:15.0830 6904 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
17:12:15.0830 6904 C:\Windows\System32\drivers\ks.sys - ok
17:12:15.0830 6904 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:12:15.0830 6904 C:\Windows\System32\drivers\swenum.sys - ok
17:12:15.0830 6904 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
17:12:15.0830 6904 C:\Windows\System32\drivers\umbus.sys - ok
17:12:15.0830 6904 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
17:12:15.0830 6904 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
17:12:15.0846 6904 [ 780F6ECC4F55D76C9730E6B6C9B31913 ] C:\Windows\System32\crypt32.dll
17:12:15.0846 6904 C:\Windows\System32\crypt32.dll - ok
17:12:15.0846 6904 [ 8D1196CFBB223621F2C67D45710F25BA ] C:\Windows\System32\drivers\usbhub.sys
17:12:15.0846 6904 C:\Windows\System32\drivers\usbhub.sys - ok
17:12:15.0846 6904 [ 959041D7014C97133D859B45BCA0FC58 ] C:\Windows\System32\wintrust.dll
17:12:15.0846 6904 C:\Windows\System32\wintrust.dll - ok
17:12:15.0862 6904 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:12:15.0862 6904 C:\Windows\System32\devobj.dll - ok
17:12:15.0862 6904 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
17:12:15.0862 6904 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
17:12:15.0862 6904 [ 9028D1621C43DF8DFBD1C76860412A11 ] C:\Windows\System32\comctl32.dll
17:12:15.0862 6904 C:\Windows\System32\comctl32.dll - ok
17:12:15.0862 6904 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
17:12:15.0862 6904 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
17:12:15.0877 6904 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
17:12:15.0877 6904 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
17:12:15.0877 6904 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
17:12:15.0877 6904 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
17:12:15.0877 6904 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
17:12:15.0877 6904 C:\Windows\System32\cfgmgr32.dll - ok
17:12:15.0893 6904 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
17:12:15.0893 6904 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
17:12:15.0893 6904 [ B22C00ED0491FD7B8803D7DDE2849F4C ] C:\Windows\System32\KernelBase.dll
17:12:15.0893 6904 C:\Windows\System32\KernelBase.dll - ok
17:12:15.0893 6904 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
17:12:15.0893 6904 C:\Windows\System32\msasn1.dll - ok
17:12:15.0893 6904 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
17:12:15.0893 6904 C:\Windows\System32\drivers\ndproxy.sys - ok
17:12:15.0908 6904 [ E0D3CD5841E5C7BE7B94BA946AF1E498 ] C:\Windows\System32\drivers\drmk.sys
17:12:15.0908 6904 C:\Windows\System32\drivers\drmk.sys - ok
17:12:15.0908 6904 [ 04A5815DF7E8B037DF674D3CCACC0C31 ] C:\Windows\System32\drivers\AtiHdmi.sys
17:12:15.0908 6904 C:\Windows\System32\drivers\AtiHdmi.sys - ok
17:12:15.0908 6904 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
17:12:15.0908 6904 C:\Windows\System32\drivers\ksthunk.sys - ok
17:12:15.0908 6904 [ 1E0B4CBBA91C6B041A14ECC2186F7E24 ] C:\Windows\System32\drivers\portcls.sys
17:12:15.0908 6904 C:\Windows\System32\drivers\portcls.sys - ok
17:12:15.0924 6904 [ 31C32BC56D85D109EBB0C526BE5CACA7 ] C:\Windows\System32\drivers\RTKVHD64.sys
17:12:15.0924 6904 C:\Windows\System32\drivers\RTKVHD64.sys - ok
17:12:15.0924 6904 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:12:15.0924 6904 C:\Windows\SysWOW64\normaliz.dll - ok
17:12:15.0924 6904 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:12:15.0924 6904 C:\Windows\System32\drivers\dxapi.sys - ok
17:12:15.0940 6904 [ F2BF71FCEAB8FB8A691408C478E2FF4C ] C:\Windows\System32\win32k.sys
17:12:15.0940 6904 C:\Windows\System32\win32k.sys - ok
17:12:15.0940 6904 [ 216BABD555BC550952320EEA89C25DDF ] C:\Windows\System32\csrsrv.dll
17:12:15.0940 6904 C:\Windows\System32\csrsrv.dll - ok
17:12:15.0940 6904 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:12:15.0940 6904 C:\Windows\System32\csrss.exe - ok
17:12:15.0940 6904 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:12:15.0940 6904 C:\Windows\System32\basesrv.dll - ok
17:12:15.0955 6904 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\System32\winsrv.dll
17:12:15.0955 6904 C:\Windows\System32\winsrv.dll - ok
17:12:15.0955 6904 [ DCA68B0943D6FA415F0C56C92158A83A ] C:\Windows\System32\drivers\usbccgp.sys
17:12:15.0955 6904 C:\Windows\System32\drivers\usbccgp.sys - ok
17:12:15.0955 6904 [ FFA06EF43987ED0DD42AD59B260C0C78 ] C:\Windows\System32\drivers\usbd.sys
17:12:15.0955 6904 C:\Windows\System32\drivers\usbd.sys - ok
17:12:15.0955 6904 [ 856E76B3641746ABBC2946BED1372098 ] C:\Windows\System32\drivers\hidparse.sys
17:12:15.0955 6904 C:\Windows\System32\drivers\hidparse.sys - ok
17:12:15.0971 6904 [ 597C3699384E53CC59587ED50CCE5CA2 ] C:\Windows\System32\drivers\hidclass.sys
17:12:15.0971 6904 C:\Windows\System32\drivers\hidclass.sys - ok
17:12:15.0971 6904 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
17:12:15.0971 6904 C:\Windows\System32\drivers\hidusb.sys - ok
17:12:15.0971 6904 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
17:12:15.0971 6904 C:\Windows\System32\drivers\kbdhid.sys - ok
17:12:15.0986 6904 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
17:12:15.0986 6904 C:\Windows\System32\drivers\USBSTOR.SYS - ok
17:12:15.0986 6904 [ 76E02DB615A03801D698199A2BC4A06A ] C:\Windows\System32\drivers\dc3d.sys
17:12:15.0986 6904 C:\Windows\System32\drivers\dc3d.sys - ok
17:12:15.0986 6904 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
17:12:15.0986 6904 C:\Windows\System32\drivers\mouhid.sys - ok
17:12:15.0986 6904 [ B8D8EC78B0F9ED8E220506181274F3D3 ] C:\Windows\System32\drivers\point64.sys
17:12:15.0986 6904 C:\Windows\System32\drivers\point64.sys - ok
17:12:16.0002 6904 [ 883269C1CA478658F1334F3C39B0C7AC ] C:\Windows\System32\drivers\netr28ux.sys
17:12:16.0002 6904 C:\Windows\System32\drivers\netr28ux.sys - ok
17:12:16.0002 6904 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
17:12:16.0002 6904 C:\Windows\System32\drivers\vwifibus.sys - ok
17:12:16.0002 6904 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
17:12:16.0002 6904 C:\Windows\System32\drivers\monitor.sys - ok
17:12:16.0018 6904 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:12:16.0018 6904 C:\Windows\System32\tsddd.dll - ok
17:12:16.0018 6904 [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
17:12:16.0018 6904 C:\Windows\System32\drivers\usbprint.sys - ok
17:12:16.0018 6904 [ 9661DA76B4531B2DA272ECCE25A8AF24 ] C:\Windows\System32\drivers\usbscan.sys
17:12:16.0018 6904 C:\Windows\System32\drivers\usbscan.sys - ok
17:12:16.0018 6904 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:12:16.0018 6904 C:\Windows\System32\sxssrv.dll - ok
17:12:16.0033 6904 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:12:16.0033 6904 C:\Windows\System32\wininit.exe - ok
17:12:16.0033 6904 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
17:12:16.0033 6904 C:\Windows\System32\cdd.dll - ok
17:12:16.0033 6904 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:12:16.0033 6904 C:\Windows\System32\profapi.dll - ok
17:12:16.0033 6904 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
17:12:16.0033 6904 C:\Windows\System32\RpcRtRemote.dll - ok
17:12:16.0049 6904 [ 0F5CD07A098D6A5989019CC377722989 ] C:\Windows\System32\KBDCA.DLL
17:12:16.0049 6904 C:\Windows\System32\KBDCA.DLL - ok
17:12:16.0049 6904 [ 283C64A094A763C2F3DE2C926AEAE8CD ] C:\Windows\System32\KBDCAN.DLL
17:12:16.0049 6904 C:\Windows\System32\KBDCAN.DLL - ok
17:12:16.0049 6904 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
17:12:16.0049 6904 C:\Windows\System32\KBDUS.DLL - ok
17:12:16.0049 6904 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
17:12:16.0049 6904 C:\Windows\System32\sxs.dll - ok
17:12:16.0064 6904 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:12:16.0064 6904 C:\Windows\System32\WlS0WndH.dll - ok
17:12:16.0064 6904 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:12:16.0064 6904 C:\Windows\System32\cryptbase.dll - ok
17:12:16.0064 6904 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
17:12:16.0064 6904 C:\Windows\System32\apphelp.dll - ok
17:12:16.0080 6904 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
17:12:16.0080 6904 C:\Windows\System32\winlogon.exe - ok
17:12:16.0080 6904 [ 4D71227301DD8D09097B9E4CC6527E5A ] C:\Windows\System32\lsass.exe
17:12:16.0080 6904 C:\Windows\System32\lsass.exe - ok
17:12:16.0080 6904 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
17:12:16.0080 6904 C:\Windows\System32\lsm.exe - ok
17:12:16.0080 6904 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:12:16.0080 6904 C:\Windows\System32\services.exe - ok
17:12:16.0096 6904 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
17:12:16.0096 6904 C:\Windows\System32\winsta.dll - ok
17:12:16.0096 6904 [ 086F906B1D30C0A5D35FE0F6362DAB21 ] C:\Windows\System32\lsasrv.dll
17:12:16.0096 6904 C:\Windows\System32\lsasrv.dll - ok
17:12:16.0096 6904 [ B08EA91C774AA734E0B9881F85CD9F42 ] C:\Windows\System32\sspicli.dll
17:12:16.0096 6904 C:\Windows\System32\sspicli.dll - ok
17:12:16.0096 6904 [ 7C46EC9CCDE6E793713FA01DB2EB918E ] C:\Windows\System32\sspisrv.dll
17:12:16.0096 6904 C:\Windows\System32\sspisrv.dll - ok
17:12:16.0111 6904 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
17:12:16.0111 6904 C:\Windows\System32\scesrv.dll - ok
17:12:16.0111 6904 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:12:16.0111 6904 C:\Windows\System32\scext.dll - ok
17:12:16.0111 6904 [ 208EAAFF40DA400190AA0605C797BEA2 ] C:\Windows\System32\secur32.dll
17:12:16.0111 6904 C:\Windows\System32\secur32.dll - ok
17:12:16.0127 6904 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:12:16.0127 6904 C:\Windows\System32\sysntfy.dll - ok
17:12:16.0127 6904 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:12:16.0127 6904 C:\Windows\System32\wmsgapi.dll - ok
17:12:16.0127 6904 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
17:12:16.0127 6904 C:\Windows\System32\samsrv.dll - ok
17:12:16.0127 6904 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
17:12:16.0127 6904 C:\Windows\System32\srvcli.dll - ok
17:12:16.0142 6904 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:12:16.0142 6904 C:\Windows\System32\cryptdll.dll - ok
17:12:16.0142 6904 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:12:16.0142 6904 C:\Windows\System32\wevtapi.dll - ok
17:12:16.0142 6904 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:12:16.0142 6904 C:\Windows\System32\authz.dll - ok
17:12:16.0142 6904 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:12:16.0142 6904 C:\Windows\System32\cngaudit.dll - ok
17:12:16.0158 6904 [ 747B9BA5412422F27934CB21131F0A3E ] C:\Windows\System32\ncrypt.dll
17:12:16.0158 6904 C:\Windows\System32\ncrypt.dll - ok
17:12:16.0158 6904 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:12:16.0158 6904 C:\Windows\System32\bcrypt.dll - ok
17:12:16.0158 6904 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:12:16.0158 6904 C:\Windows\System32\msprivs.dll - ok
17:12:16.0158 6904 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
17:12:16.0158 6904 C:\Windows\System32\netjoin.dll - ok
17:12:16.0174 6904 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
17:12:16.0174 6904 C:\Windows\System32\kerberos.dll - ok
17:12:16.0174 6904 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:12:16.0174 6904 C:\Windows\System32\negoexts.dll - ok
17:12:16.0174 6904 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:12:16.0174 6904 C:\Windows\System32\cryptsp.dll - ok
17:12:16.0189 6904 [ E1BB958681BE311E7CFF06CFEC5F1F2B ] C:\Windows\System32\atmfd.dll
17:12:16.0189 6904 C:\Windows\System32\atmfd.dll - ok
17:12:16.0189 6904 [ 9A9F9F1A77D6A80EE28B57664F00013E ] C:\Windows\System32\mswsock.dll
17:12:16.0189 6904 C:\Windows\System32\mswsock.dll - ok
17:12:16.0189 6904 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
17:12:16.0189 6904 C:\Windows\System32\msv1_0.dll - ok
17:12:16.0189 6904 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:12:16.0189 6904 C:\Windows\System32\wship6.dll - ok
17:12:16.0205 6904 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
17:12:16.0205 6904 C:\Windows\System32\netlogon.dll - ok
17:12:16.0205 6904 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
17:12:16.0205 6904 C:\Windows\System32\dnsapi.dll - ok
17:12:16.0205 6904 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
17:12:16.0205 6904 C:\Windows\System32\logoncli.dll - ok
17:12:16.0205 6904 [ 31FFED18C7B836CEC1B559347E32E151 ] C:\Windows\System32\schannel.dll
17:12:16.0205 6904 C:\Windows\System32\schannel.dll - ok
17:12:16.0220 6904 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:12:16.0220 6904 C:\Windows\System32\wdigest.dll - ok
17:12:16.0220 6904 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:12:16.0220 6904 C:\Windows\System32\rsaenh.dll - ok
17:12:16.0220 6904 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
17:12:16.0220 6904 C:\Windows\System32\TSpkg.dll - ok
17:12:16.0236 6904 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:12:16.0236 6904 C:\Windows\System32\pku2u.dll - ok
17:12:16.0236 6904 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
17:12:16.0236 6904 C:\Windows\System32\bcryptprimitives.dll - ok
17:12:16.0236 6904 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
17:12:16.0236 6904 C:\Windows\System32\LIVESSP.DLL - ok
17:12:16.0252 6904 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
17:12:16.0252 6904 C:\Windows\System32\credssp.dll - ok
17:12:16.0252 6904 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:12:16.0252 6904 C:\Windows\System32\efslsaext.dll - ok
17:12:16.0252 6904 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
17:12:16.0252 6904 C:\Windows\System32\scecli.dll - ok
17:12:16.0252 6904 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:12:16.0252 6904 C:\Windows\System32\ubpm.dll - ok
17:12:16.0267 6904 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:12:16.0267 6904 C:\Windows\System32\svchost.exe - ok
17:12:16.0267 6904 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
17:12:16.0267 6904 C:\Windows\System32\umpnpmgr.dll - ok
17:12:16.0267 6904 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:12:16.0267 6904 C:\Windows\System32\SPInf.dll - ok
17:12:16.0283 6904 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:12:16.0283 6904 C:\Windows\System32\devrtl.dll - ok
17:12:16.0283 6904 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
17:12:16.0283 6904 C:\Windows\System32\userenv.dll - ok
17:12:16.0283 6904 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:12:16.0283 6904 C:\Windows\System32\gpapi.dll - ok
17:12:16.0283 6904 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:12:16.0283 6904 C:\Windows\System32\pcwum.dll - ok
17:12:16.0298 6904 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:12:16.0298 6904 C:\Windows\System32\umpo.dll - ok
17:12:16.0298 6904 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:12:16.0298 6904 C:\Windows\System32\powrprof.dll - ok
17:12:16.0298 6904 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
17:12:16.0298 6904 C:\Windows\System32\drivers\luafv.sys - ok
17:12:16.0298 6904 [ 0BB97D43299910CBFBA59C461B99B910 ] C:\Windows\System32\drivers\mbam.sys
17:12:16.0298 6904 C:\Windows\System32\drivers\mbam.sys - ok
17:12:16.0314 6904 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
17:12:16.0314 6904 C:\Windows\System32\rpcss.dll - ok
17:12:16.0314 6904 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:12:16.0314 6904 C:\Windows\System32\RpcEpMap.dll - ok
17:12:16.0314 6904 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:12:16.0314 6904 C:\Windows\System32\wshqos.dll - ok
17:12:16.0314 6904 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:12:16.0314 6904 C:\Windows\System32\WSHTCPIP.DLL - ok
17:12:16.0330 6904 [ 8077537B1600AF493E7EE1A7A5C90799 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
17:12:16.0330 6904 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
17:12:16.0330 6904 [ 7675E15D1B2180745E4DA4D26AAD7385 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
17:12:16.0330 6904 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
17:12:16.0330 6904 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:12:16.0330 6904 C:\Windows\System32\FirewallAPI.dll - ok
17:12:16.0345 6904 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
17:12:16.0345 6904 C:\Windows\System32\LogonUI.exe - ok
17:12:16.0345 6904 [ 34152997FB906895290E0199AC94B85F ] C:\Windows\System32\authui.dll
17:12:16.0345 6904 C:\Windows\System32\authui.dll - ok
17:12:16.0345 6904 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:12:16.0345 6904 C:\Windows\System32\version.dll - ok
17:12:16.0361 6904 [ 1C3588802EE33660E620A046A505A337 ] C:\Program Files\Microsoft Security Client\MpClient.dll
17:12:16.0361 6904 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
17:12:16.0361 6904 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:12:16.0361 6904 C:\Windows\System32\wtsapi32.dll - ok
17:12:16.0361 6904 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:12:16.0361 6904 C:\Windows\System32\ntmarta.dll - ok
17:12:16.0361 6904 [ D68424A84A531FFA39FD8574AFBA9EE4 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
17:12:16.0361 6904 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
17:12:16.0376 6904 [ 6290BA92CA8A23DB6BED83397CF97002 ] C:\Windows\System32\atiesrxx.exe
17:12:16.0376 6904 C:\Windows\System32\atiesrxx.exe - ok
17:12:16.0376 6904 [ 4E0BDA8060201CA9AB68545E68C1E029 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
17:12:16.0376 6904 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
17:12:16.0376 6904 [ E17D455BD1FC7E99994E5C19B1BC3A64 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
17:12:16.0376 6904 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
17:12:16.0392 6904 [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] C:\Windows\System32\drivers\MpFilter.sys
17:12:16.0392 6904 C:\Windows\System32\drivers\MpFilter.sys - ok
17:12:16.0392 6904 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
17:12:16.0392 6904 C:\Windows\System32\fltLib.dll - ok
17:12:16.0392 6904 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
17:12:16.0392 6904 C:\Windows\System32\wevtsvc.dll - ok
17:12:16.0392 6904 [ F30A16105C6C685390074EE69BC175B0 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpengine.dll
17:12:16.0392 6904 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpengine.dll - ok
17:12:16.0408 6904 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
17:12:16.0408 6904 C:\Windows\System32\audiosrv.dll - ok
17:12:16.0408 6904 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
17:12:16.0408 6904 C:\Windows\System32\FntCache.dll - ok
17:12:16.0408 6904 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:12:16.0408 6904 C:\Windows\System32\avrt.dll - ok
17:12:16.0408 6904 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
17:12:16.0408 6904 C:\Windows\System32\mmcss.dll - ok
17:12:16.0423 6904 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:12:16.0423 6904 C:\Windows\System32\MMDevAPI.dll - ok
17:12:16.0423 6904 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
17:12:16.0423 6904 C:\Windows\System32\propsys.dll - ok
17:12:16.0423 6904 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
17:12:16.0423 6904 C:\Windows\System32\audiodg.exe - ok
17:12:16.0423 6904 [ 009220ECDCCDB2A4423F2C8CDA2C223F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasbase.vdm
17:12:16.0423 6904 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasbase.vdm - ok
17:12:16.0439 6904 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
17:12:16.0439 6904 C:\Windows\System32\gpsvc.dll - ok
17:12:16.0439 6904 [ AE05083466DA1BBBB7D5057FB6CC23FE ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasdlta.vdm
17:12:16.0439 6904 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasdlta.vdm - ok
17:12:16.0439 6904 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
17:12:16.0439 6904 C:\Windows\System32\cryptui.dll - ok
17:12:16.0454 6904 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
17:12:16.0454 6904 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
17:12:16.0454 6904 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:12:16.0454 6904 C:\Windows\System32\samlib.dll - ok
17:12:16.0454 6904 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
17:12:16.0454 6904 C:\Windows\System32\shacct.dll - ok
17:12:16.0454 6904 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:12:16.0454 6904 C:\Windows\System32\uxtheme.dll - ok
17:12:16.0470 6904 [ 18CAAF21CBA3EAEE17BBA5D3807F29B8 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll
17:12:16.0470 6904 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok
17:12:16.0470 6904 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:12:16.0470 6904 C:\Windows\System32\dui70.dll - ok
17:12:16.0470 6904 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:12:16.0470 6904 C:\Windows\System32\duser.dll - ok
17:12:16.0486 6904 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
17:12:16.0486 6904 C:\Windows\System32\profsvc.dll - ok
17:12:16.0486 6904 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:12:16.0486 6904 C:\Windows\System32\adtschema.dll - ok
17:12:16.0486 6904 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:12:16.0486 6904 C:\Windows\System32\atl.dll - ok
17:12:16.0486 6904 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
17:12:16.0486 6904 C:\Windows\System32\nlaapi.dll - ok
17:12:16.0501 6904 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
17:12:16.0501 6904 C:\Windows\System32\themeservice.dll - ok
17:12:16.0501 6904 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:12:16.0501 6904 C:\Windows\System32\hid.dll - ok
17:12:16.0501 6904 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
17:12:16.0501 6904 C:\Windows\System32\SndVolSSO.dll - ok
17:12:16.0501 6904 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:12:16.0501 6904 C:\Windows\System32\winmm.dll - ok
17:12:16.0517 6904 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:12:16.0517 6904 C:\Windows\System32\ksuser.dll - ok
17:12:16.0517 6904 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
17:12:16.0517 6904 C:\Windows\System32\wdmaud.drv - ok
17:12:16.0517 6904 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:12:16.0517 6904 C:\Windows\System32\dwmapi.dll - ok
17:12:16.0532 6904 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
17:12:16.0532 6904 C:\Windows\System32\xmllite.dll - ok
17:12:16.0532 6904 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:12:16.0532 6904 C:\Windows\System32\es.dll - ok
17:12:16.0532 6904 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
17:12:16.0532 6904 C:\Windows\System32\comres.dll - ok
17:12:16.0532 6904 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
17:12:16.0532 6904 C:\Windows\System32\radardt.dll - ok
17:12:16.0548 6904 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:12:16.0548 6904 C:\Windows\System32\wlansvc.dll - ok
17:12:16.0548 6904 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:12:16.0548 6904 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:12:16.0548 6904 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:12:16.0548 6904 C:\Windows\System32\dsrole.dll - ok
17:12:16.0564 6904 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
17:12:16.0564 6904 C:\Windows\System32\WUDFPlatform.dll - ok
17:12:16.0564 6904 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
17:12:16.0564 6904 C:\Windows\System32\drivers\fltMgr.sys - ok
17:12:16.0564 6904 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:12:16.0564 6904 C:\Windows\System32\PSHED.DLL - ok
17:12:16.0564 6904 [ 00000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavbase.vdm
17:12:16.0564 6904 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavbase.vdm - ok
17:12:16.0579 6904 [ FF5D53751D795B5A8CB0AA3E5155D432 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavdlta.vdm
17:12:16.0579 6904 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavdlta.vdm - ok
17:12:16.0579 6904 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
17:12:16.0579 6904 C:\Windows\System32\Sens.dll - ok
17:12:16.0579 6904 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:12:16.0579 6904 C:\Windows\System32\slc.dll - ok
17:12:16.0579 6904 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
17:12:16.0579 6904 C:\Windows\System32\uxsms.dll - ok
17:12:16.0595 6904 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
17:12:16.0595 6904 C:\Windows\System32\drivers\lltdio.sys - ok
17:12:16.0595 6904 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:12:16.0595 6904 C:\Windows\System32\drivers\nwifi.sys - ok
17:12:16.0595 6904 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
17:12:16.0595 6904 C:\Windows\System32\drivers\ndisuio.sys - ok
17:12:16.0610 6904 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
17:12:16.0610 6904 C:\Windows\System32\drivers\rspndr.sys - ok
17:12:16.0610 6904 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
17:12:16.0610 6904 C:\Windows\System32\IPHLPAPI.DLL - ok
17:12:16.0610 6904 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:12:16.0610 6904 C:\Windows\System32\lmhsvc.dll - ok
17:12:16.0610 6904 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
17:12:16.0610 6904 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
17:12:16.0626 6904 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:12:16.0626 6904 C:\Windows\System32\nsisvc.dll - ok
17:12:16.0626 6904 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
17:12:16.0626 6904 C:\Windows\System32\dhcpcore.dll - ok
17:12:16.0626 6904 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
17:12:16.0626 6904 C:\Windows\System32\nrpsrv.dll - ok
17:12:16.0642 6904 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:12:16.0642 6904 C:\Windows\System32\winnsi.dll - ok
17:12:16.0642 6904 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
17:12:16.0642 6904 C:\Windows\System32\dhcpcore6.dll - ok
17:12:16.0642 6904 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:12:16.0642 6904 C:\Windows\System32\eapsvc.dll - ok
17:12:16.0642 6904 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:12:16.0642 6904 C:\Windows\System32\keyiso.dll - ok
17:12:16.0657 6904 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
17:12:16.0657 6904 C:\Windows\System32\dnsrslvr.dll - ok
17:12:16.0657 6904 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
17:12:16.0657 6904 C:\Windows\System32\AudioSes.dll - ok
17:12:16.0657 6904 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
17:12:16.0657 6904 C:\Windows\System32\msacm32.dll - ok
17:12:16.0657 6904 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
17:12:16.0657 6904 C:\Windows\System32\msacm32.drv - ok
17:12:16.0673 6904 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
17:12:16.0673 6904 C:\Windows\System32\midimap.dll - ok
17:12:16.0673 6904 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
17:12:16.0673 6904 C:\Windows\System32\AudioEng.dll - ok
17:12:16.0673 6904 [ 3D7BB6DD7A87B3E36E44CA94444247A8 ] C:\Windows\System32\WindowsCodecs.dll
17:12:16.0673 6904 C:\Windows\System32\WindowsCodecs.dll - ok
17:12:16.0688 6904 [ D07EB640618F96490DB88C3CE58DB608 ] C:\Windows\System32\FWPUCLNT.DLL
17:12:16.0688 6904 C:\Windows\System32\FWPUCLNT.DLL - ok
17:12:16.0688 6904 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:12:16.0688 6904 C:\Windows\System32\dnsext.dll - ok
17:12:16.0688 6904 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:12:16.0688 6904 C:\Windows\System32\dhcpcsvc.dll - ok
17:12:16.0688 6904 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
17:12:16.0688 6904 C:\Windows\System32\dhcpcsvc6.dll - ok
17:12:16.0704 6904 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:12:16.0704 6904 C:\Windows\System32\VaultCredProvider.dll - ok
17:12:16.0704 6904 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:12:16.0704 6904 C:\Windows\System32\winbrand.dll - ok
17:12:16.0704 6904 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
17:12:16.0704 6904 C:\Windows\System32\BioCredProv.dll - ok
17:12:16.0704 6904 [ 8563BA40DF4F1E93A61B70E2C8B60CF8 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:12:16.0704 6904 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:12:16.0720 6904 [ 4403D5ECE7D8323CAF1207D1AA38FA01 ] C:\Windows\System32\credui.dll
17:12:16.0720 6904 C:\Windows\System32\credui.dll - ok
17:12:16.0720 6904 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
17:12:16.0720 6904 C:\Windows\System32\winbio.dll - ok
17:12:16.0720 6904 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
17:12:16.0720 6904 C:\Windows\System32\netapi32.dll - ok
17:12:16.0720 6904 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
17:12:16.0720 6904 C:\Windows\System32\netutils.dll - ok
17:12:16.0735 6904 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
17:12:16.0735 6904 C:\Windows\System32\vaultcli.dll - ok
17:12:16.0735 6904 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
17:12:16.0735 6904 C:\Windows\System32\wkscli.dll - ok
17:12:16.0735 6904 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
17:12:16.0735 6904 C:\Windows\System32\samcli.dll - ok
17:12:16.0751 6904 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
17:12:16.0751 6904 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
17:12:16.0751 6904 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
17:12:16.0751 6904 C:\Windows\System32\certCredProvider.dll - ok
17:12:16.0751 6904 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
17:12:16.0751 6904 C:\Windows\System32\rasplap.dll - ok
17:12:16.0751 6904 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:12:16.0751 6904 C:\Windows\System32\rasapi32.dll - ok
17:12:16.0766 6904 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:12:16.0766 6904 C:\Windows\System32\rasman.dll - ok
17:12:16.0766 6904 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
17:12:16.0766 6904 C:\Windows\System32\rtutils.dll - ok
17:12:16.0766 6904 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
17:12:16.0766 6904 C:\Windows\System32\oleacc.dll - ok
17:12:16.0782 6904 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
17:12:16.0782 6904 C:\Windows\System32\UIAutomationCore.dll - ok
17:12:16.0782 6904 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
17:12:16.0782 6904 C:\Windows\System32\msimg32.dll - ok
17:12:16.0782 6904 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
17:12:16.0782 6904 C:\Windows\System32\eapphost.dll - ok
17:12:16.0782 6904 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:12:16.0782 6904 C:\Windows\System32\UXInit.dll - ok
17:12:16.0798 6904 [ E8E2C8EFB3A6C3FE09AA4DFC19CDE20A ] C:\Windows\System32\atieclxx.exe
17:12:16.0798 6904 C:\Windows\System32\atieclxx.exe - ok
17:12:16.0798 6904 [ 3BD53337C25FA55B9612343B3B471582 ] C:\Windows\System32\atiadlxx.dll
17:12:16.0798 6904 C:\Windows\System32\atiadlxx.dll - ok
17:12:16.0798 6904 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:12:16.0798 6904 C:\Windows\System32\eappcfg.dll - ok
17:12:16.0798 6904 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:12:16.0798 6904 C:\Windows\System32\eappprxy.dll - ok
17:12:16.0813 6904 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
17:12:16.0813 6904 C:\Windows\System32\onex.dll - ok
17:12:16.0813 6904 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
17:12:16.0813 6904 C:\Windows\System32\wlanmsm.dll - ok
17:12:16.0813 6904 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:12:16.0813 6904 C:\Windows\System32\wlansec.dll - ok
17:12:16.0829 6904 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
17:12:16.0829 6904 C:\Windows\System32\umb.dll - ok
17:12:16.0829 6904 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:12:16.0829 6904 C:\Windows\System32\wlgpclnt.dll - ok
17:12:16.0829 6904 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:12:16.0829 6904 C:\Windows\System32\l2gpstore.dll - ok
17:12:16.0829 6904 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
17:12:16.0829 6904 C:\Windows\System32\WinSCard.dll - ok
17:12:16.0844 6904 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:12:16.0844 6904 C:\Windows\System32\wlanutil.dll - ok
17:12:16.0844 6904 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
17:12:16.0844 6904 C:\Windows\System32\msxml6.dll - ok
17:12:16.0844 6904 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
17:12:16.0844 6904 C:\Windows\System32\shsvcs.dll - ok
17:12:16.0844 6904 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
17:12:16.0844 6904 C:\Windows\System32\schedsvc.dll - ok
17:12:16.0860 6904 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
17:12:16.0860 6904 C:\Windows\System32\ktmw32.dll - ok
17:12:16.0860 6904 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
17:12:16.0860 6904 C:\Windows\System32\fveapi.dll - ok
17:12:16.0860 6904 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
17:12:16.0860 6904 C:\Windows\System32\fvecerts.dll - ok
17:12:16.0876 6904 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
17:12:16.0876 6904 C:\Windows\System32\tbs.dll - ok
17:12:16.0876 6904 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
17:12:16.0876 6904 C:\Windows\System32\AUDIOKSE.dll - ok
17:12:16.0876 6904 [ 8288E1F44743E58A0F593494AB7D9C88 ] C:\Windows\System32\RtkAPO64.dll
17:12:16.0876 6904 C:\Windows\System32\RtkAPO64.dll - ok
17:12:16.0876 6904 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
17:12:16.0876 6904 C:\Windows\System32\WMALFXGFXDSP.dll - ok
17:12:16.0891 6904 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
17:12:16.0891 6904 C:\Windows\System32\mfplat.dll - ok
17:12:16.0891 6904 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
17:12:16.0891 6904 C:\Windows\System32\taskcomp.dll - ok
17:12:16.0891 6904 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
17:12:16.0891 6904 C:\Windows\System32\drivers\http.sys - ok
17:12:16.0891 6904 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
17:12:16.0891 6904 C:\Windows\System32\wiarpc.dll - ok
17:12:16.0907 6904 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
17:12:16.0907 6904 C:\Windows\System32\netcfgx.dll - ok
17:12:16.0907 6904 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
17:12:16.0907 6904 C:\Windows\System32\drivers\vwifimp.sys - ok
17:12:16.0907 6904 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
17:12:16.0907 6904 C:\Windows\System32\taskeng.exe - ok
17:12:16.0922 6904 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
17:12:16.0922 6904 C:\Windows\System32\TSChannel.dll - ok
17:12:16.0922 6904 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:12:16.0922 6904 C:\Windows\System32\imageres.dll - ok
17:12:16.0922 6904 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
17:12:16.0922 6904 C:\Windows\System32\spoolsv.exe - ok
17:12:16.0922 6904 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
17:12:16.0922 6904 C:\Windows\System32\BFE.DLL - ok
17:12:16.0938 6904 [ 50D28F3F8B7C17056520C80A29EFE17C ] C:\Windows\System32\lpksetup.exe
17:12:16.0938 6904 C:\Windows\System32\lpksetup.exe - ok
17:12:16.0938 6904 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
17:12:16.0938 6904 C:\Windows\System32\dpx.dll - ok
17:12:16.0938 6904 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
17:12:16.0938 6904 C:\Windows\System32\drivers\bowser.sys - ok
17:12:16.0938 6904 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
17:12:16.0938 6904 C:\Windows\System32\drivers\mpsdrv.sys - ok
17:12:16.0954 6904 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
17:12:16.0954 6904 C:\Windows\System32\drivers\mrxsmb.sys - ok
17:12:16.0954 6904 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
17:12:16.0954 6904 C:\Windows\System32\MPSSVC.dll - ok
17:12:16.0954 6904 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
17:12:16.0954 6904 C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:12:16.0954 6904 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
17:12:16.0954 6904 C:\Windows\System32\wfapigp.dll - ok
17:12:16.0969 6904 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
17:12:16.0969 6904 C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:12:16.0969 6904 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
17:12:16.0969 6904 C:\Windows\System32\wkssvc.dll - ok
17:12:16.0969 6904 [ 255476B54C82A89416EFDF09FD62F107 ] C:\Windows\System32\drivers\sentinel64.sys
17:12:16.0969 6904 C:\Windows\System32\drivers\sentinel64.sys - ok
17:12:16.0985 6904 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
17:12:16.0985 6904 C:\Windows\System32\mscms.dll - ok
17:12:16.0985 6904 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
17:12:16.0985 6904 C:\Windows\System32\pcasvc.dll - ok
17:12:16.0985 6904 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
17:12:16.0985 6904 C:\Windows\System32\snmptrap.exe - ok
17:12:16.0985 6904 [ 233A10D4B3F6897899112E4EC60F1906 ] C:\Windows\WindowsMobile\wmdcBase.exe
17:12:16.0985 6904 C:\Windows\WindowsMobile\wmdcBase.exe - ok
17:12:17.0000 6904 [ F1C09EE3A594B19DD1F4B4AEA9E353C9 ] C:\Windows\System32\comsvcs.dll
17:12:17.0000 6904 C:\Windows\System32\comsvcs.dll - ok
17:12:17.0000 6904 [ 4004299B7AF4CBFF6540F1798899A11F ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
17:12:17.0000 6904 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
17:12:17.0000 6904 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
17:12:17.0000 6904 C:\Windows\System32\provsvc.dll - ok
17:12:17.0000 6904 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
17:12:17.0000 6904 C:\Windows\System32\sstpsvc.dll - ok
17:12:17.0016 6904 [ B362181ED3771DC03B4141927C80F801 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:12:17.0016 6904 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
17:12:17.0016 6904 [ A2B0924D50F4435FD389499047CE553A ] C:\Windows\SysWOW64\ntdll.dll
17:12:17.0016 6904 C:\Windows\SysWOW64\ntdll.dll - ok
17:12:17.0016 6904 [ 70833F5A59F65908698093889C34BCA2 ] C:\Windows\System32\wow64.dll
17:12:17.0016 6904 C:\Windows\System32\wow64.dll - ok
17:12:17.0032 6904 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
17:12:17.0032 6904 C:\Windows\System32\wow64win.dll - ok
17:12:17.0032 6904 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
17:12:17.0032 6904 C:\Windows\System32\wow64cpu.dll - ok
17:12:17.0032 6904 [ 365A5034093AD9E04F433046C4CDF6AB ] C:\Windows\SysWOW64\kernel32.dll
17:12:17.0032 6904 C:\Windows\SysWOW64\kernel32.dll - ok
17:12:17.0032 6904 [ 1B7343C3765638D4D17CB925F84F8ABE ] C:\Windows\SysWOW64\KernelBase.dll
17:12:17.0032 6904 C:\Windows\SysWOW64\KernelBase.dll - ok
17:12:17.0047 6904 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
17:12:17.0047 6904 C:\Windows\SysWOW64\user32.dll - ok
17:12:17.0047 6904 [ 56E3313690866F99CD17AA1342F64AE1 ] C:\Windows\SysWOW64\gdi32.dll
17:12:17.0047 6904 C:\Windows\SysWOW64\gdi32.dll - ok
17:12:17.0047 6904 [ CC23295DA8F7B5C53F93804D2F5D30EB ] C:\Windows\SysWOW64\lpk.dll
17:12:17.0047 6904 C:\Windows\SysWOW64\lpk.dll - ok
17:12:17.0047 6904 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
17:12:17.0047 6904 C:\Windows\SysWOW64\usp10.dll - ok
17:12:17.0063 6904 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
17:12:17.0063 6904 C:\Windows\SysWOW64\msvcrt.dll - ok
17:12:17.0063 6904 [ D67472125471784DE7147946EDA25FEB ] C:\Windows\SysWOW64\advapi32.dll
17:12:17.0063 6904 C:\Windows\SysWOW64\advapi32.dll - ok
17:12:17.0063 6904 [ 4DC999CED9429939D75682EBD7D48901 ] C:\Windows\SysWOW64\rpcrt4.dll
17:12:17.0063 6904 C:\Windows\SysWOW64\rpcrt4.dll - ok
17:12:17.0078 6904 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:12:17.0078 6904 C:\Windows\SysWOW64\sechost.dll - ok
17:12:17.0078 6904 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:12:17.0078 6904 C:\Windows\SysWOW64\cryptbase.dll - ok
17:12:17.0078 6904 [ E02781D4871844DCD30DF1D69A650F78 ] C:\Windows\SysWOW64\shell32.dll
17:12:17.0078 6904 C:\Windows\SysWOW64\shell32.dll - ok
17:12:17.0078 6904 [ 42B924C5F3924C1EB2539F22C10D7DF1 ] C:\Windows\SysWOW64\sspicli.dll
17:12:17.0078 6904 C:\Windows\SysWOW64\sspicli.dll - ok
17:12:17.0094 6904 [ B26B5EB92C3D91885CC8595B03DFB3DB ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
17:12:17.0094 6904 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
17:12:17.0094 6904 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
17:12:17.0094 6904 C:\Windows\SysWOW64\shlwapi.dll - ok
17:12:17.0094 6904 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
17:12:17.0094 6904 C:\Windows\SysWOW64\ole32.dll - ok
17:12:17.0094 6904 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
17:12:17.0094 6904 C:\Windows\SysWOW64\oleaut32.dll - ok
17:12:17.0110 6904 [ CC09E0C9A2D89C6E71D093DC8BD121B7 ] C:\Windows\SysWOW64\crypt32.dll
17:12:17.0110 6904 C:\Windows\SysWOW64\crypt32.dll - ok
17:12:17.0110 6904 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
17:12:17.0110 6904 C:\Windows\SysWOW64\msasn1.dll - ok
17:12:17.0110 6904 [ 68EAAEDF0365168B804E8728368FA946 ] C:\Windows\SysWOW64\wintrust.dll
17:12:17.0110 6904 C:\Windows\SysWOW64\wintrust.dll - ok
17:12:17.0125 6904 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:12:17.0125 6904 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:12:17.0125 6904 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
17:12:17.0125 6904 C:\Windows\SysWOW64\imm32.dll - ok
17:12:17.0125 6904 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:12:17.0125 6904 C:\Windows\SysWOW64\msctf.dll - ok
17:12:17.0125 6904 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
17:12:17.0125 6904 C:\Windows\System32\wscapi.dll - ok
17:12:17.0141 6904 [ 30E3850F303EAE5C364782EA78579CC9 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:12:17.0141 6904 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
17:12:17.0141 6904 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
17:12:17.0141 6904 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
17:12:17.0141 6904 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
17:12:17.0141 6904 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
17:12:17.0156 6904 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
17:12:17.0156 6904 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
17:12:17.0156 6904 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
17:12:17.0156 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
17:12:17.0156 6904 [ 6D41F6AA35220E7A54543075B27E8F83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
17:12:17.0156 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
17:12:17.0172 6904 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:12:17.0172 6904 C:\Windows\SysWOW64\version.dll - ok
17:12:17.0172 6904 [ 6953E980ADCA0BE816C7FF463695499A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
17:12:17.0172 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
17:12:17.0172 6904 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
17:12:17.0172 6904 C:\Windows\SysWOW64\ws2_32.dll - ok
17:12:17.0172 6904 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
17:12:17.0172 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
17:12:17.0188 6904 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:12:17.0188 6904 C:\Windows\SysWOW64\nsi.dll - ok
17:12:17.0188 6904 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
17:12:17.0188 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
17:12:17.0188 6904 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
17:12:17.0188 6904 C:\Windows\SysWOW64\wsock32.dll - ok
17:12:17.0203 6904 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
17:12:17.0203 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
17:12:17.0203 6904 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
17:12:17.0203 6904 C:\Windows\SysWOW64\winmm.dll - ok
17:12:17.0203 6904 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
17:12:17.0203 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
17:12:17.0203 6904 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
17:12:17.0203 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
17:12:17.0219 6904 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
17:12:17.0219 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
17:12:17.0219 6904 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
17:12:17.0219 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
17:12:17.0219 6904 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:12:17.0219 6904 C:\Windows\SysWOW64\profapi.dll - ok
17:12:17.0219 6904 [ 4D9B3DFBAB2EA93B594B74D47E0B4E5D ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
17:12:17.0219 6904 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
17:12:17.0234 6904 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
17:12:17.0234 6904 C:\Windows\SysWOW64\setupapi.dll - ok
17:12:17.0234 6904 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:12:17.0234 6904 C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:12:17.0234 6904 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
17:12:17.0234 6904 C:\Windows\SysWOW64\devobj.dll - ok
17:12:17.0250 6904 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
17:12:17.0250 6904 C:\Windows\SysWOW64\userenv.dll - ok
17:12:17.0250 6904 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
17:12:17.0250 6904 C:\Windows\SysWOW64\wtsapi32.dll - ok
17:12:17.0250 6904 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
17:12:17.0250 6904 C:\Windows\SysWOW64\dnssd.dll - ok
17:12:17.0250 6904 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
17:12:17.0250 6904 C:\Program Files\Bonjour\mDNSResponder.exe - ok
17:12:17.0266 6904 [ E94C583CDE2348950155F2AF2876F34D ] C:\Windows\SysWOW64\mswsock.dll
17:12:17.0266 6904 C:\Windows\SysWOW64\mswsock.dll - ok
17:12:17.0266 6904 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:12:17.0266 6904 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:12:17.0266 6904 [ FBDC1D23E595C22805BFE35D677732DA ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
17:12:17.0266 6904 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
17:12:17.0281 6904 [ C128E740CDB1048FB72F4F80FA384943 ] C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe
17:12:17.0281 6904 C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe - ok
17:12:17.0281 6904 [ 9C89246184979A070B0C6CCF61C68136 ] C:\Windows\SysWOW64\wininet.dll
17:12:17.0281 6904 C:\Windows\SysWOW64\wininet.dll - ok
17:12:17.0281 6904 [ BE706AC2CAEE39BA8C90BE3A6C037A08 ] C:\Users\Lucille\AppData\Local\CrossLoop\diCrPKI.dll
17:12:17.0281 6904 C:\Users\Lucille\AppData\Local\CrossLoop\diCrPKI.dll - ok
17:12:17.0281 6904 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:12:17.0281 6904 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:12:17.0297 6904 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:12:17.0297 6904 C:\Windows\SysWOW64\winnsi.dll - ok
17:12:17.0297 6904 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
17:12:17.0297 6904 C:\Windows\SysWOW64\winspool.drv - ok
17:12:17.0297 6904 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
17:12:17.0297 6904 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
17:12:17.0312 6904 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
17:12:17.0312 6904 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
17:12:17.0312 6904 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
17:12:17.0312 6904 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
17:12:17.0312 6904 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
17:12:17.0312 6904 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
17:12:17.0312 6904 [ 34CBED7698D557DDB43F8732FBC2ACB9 ] C:\Windows\SysWOW64\iertutil.dll
17:12:17.0312 6904 C:\Windows\SysWOW64\iertutil.dll - ok
17:12:17.0328 6904 [ 6B400F211BEE880A37A1ED0368776BF4 ] C:\Windows\System32\cryptsvc.dll
17:12:17.0328 6904 C:\Windows\System32\cryptsvc.dll - ok
17:12:17.0328 6904 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
17:12:17.0328 6904 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
17:12:17.0328 6904 [ A6B726DCA228F7878E38368A1BDC68BE ] C:\Windows\System32\cryptnet.dll
17:12:17.0328 6904 C:\Windows\System32\cryptnet.dll - ok
17:12:17.0344 6904 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
17:12:17.0344 6904 C:\Windows\System32\dps.dll - ok
17:12:17.0344 6904 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
17:12:17.0344 6904 C:\Windows\SysWOW64\NapiNSP.dll - ok
17:12:17.0344 6904 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
17:12:17.0344 6904 C:\Windows\SysWOW64\nlaapi.dll - ok
17:12:17.0344 6904 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
17:12:17.0344 6904 C:\Windows\SysWOW64\pnrpnsp.dll - ok
17:12:17.0359 6904 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
17:12:17.0359 6904 C:\Windows\SysWOW64\svchost.exe - ok
17:12:17.0359 6904 [ 108333981C841EB0FF198AA5DFCF3D3B ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:12:17.0359 6904 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
17:12:17.0359 6904 [ 7E53957E73BFB209D49932A9DDEBEDE4 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddcmn.dll
17:12:17.0359 6904 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddcmn.dll - ok
17:12:17.0375 6904 [ F3F72A2A86C22610BCA5439FA789DD52 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddsvc.dll
17:12:17.0375 6904 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddsvc.dll - ok
17:12:17.0375 6904 [ 344789398EC3EE5A4E00C52B31847946 ] C:\Windows\System32\IKEEXT.DLL
17:12:17.0375 6904 C:\Windows\System32\IKEEXT.DLL - ok
17:12:17.0375 6904 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
17:12:17.0375 6904 C:\Windows\System32\taskschd.dll - ok
17:12:17.0375 6904 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
17:12:17.0375 6904 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
17:12:17.0390 6904 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
17:12:17.0390 6904 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
17:12:17.0390 6904 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
17:12:17.0390 6904 C:\Windows\SysWOW64\dnsapi.dll - ok
17:12:17.0390 6904 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:12:17.0390 6904 C:\Windows\SysWOW64\psapi.dll - ok
17:12:17.0406 6904 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
17:12:17.0406 6904 C:\Windows\System32\vssapi.dll - ok
17:12:17.0406 6904 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
17:12:17.0406 6904 C:\Windows\SysWOW64\winrnr.dll - ok
17:12:17.0406 6904 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:12:17.0406 6904 C:\Windows\SysWOW64\clbcatq.dll - ok
17:12:17.0406 6904 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
17:12:17.0406 6904 C:\Windows\System32\vpnikeapi.dll - ok
17:12:17.0422 6904 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:12:17.0422 6904 C:\Windows\SysWOW64\cryptsp.dll - ok
17:12:17.0422 6904 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:12:17.0422 6904 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:12:17.0422 6904 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:12:17.0422 6904 C:\Windows\SysWOW64\rsaenh.dll - ok
17:12:17.0422 6904 [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
17:12:17.0422 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
17:12:17.0437 6904 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
17:12:17.0437 6904 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
17:12:17.0437 6904 [ A7DDDDE163F16AB49DF3DE9EEC715495 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
17:12:17.0437 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
17:12:17.0437 6904 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:12:17.0437 6904 C:\Windows\System32\vsstrace.dll - ok
17:12:17.0453 6904 [ F0D0E883EBBDC7615DC9EDEA0FFB2817 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:12:17.0453 6904 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:12:17.0453 6904 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
17:12:17.0453 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
17:12:17.0453 6904 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:12:17.0453 6904 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:12:17.0468 6904 [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
17:12:17.0468 6904 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
17:12:17.0468 6904 [ D73B5BEFC8BB6E877A7E6437E2613FFA ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
17:12:17.0468 6904 C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
17:12:17.0468 6904 [ 61DACB0FBB1F7237FFEF769C23C903AF ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
17:12:17.0468 6904 C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
17:12:17.0468 6904 [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:12:17.0468 6904 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
17:12:17.0484 6904 [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
17:12:17.0484 6904 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
17:12:17.0484 6904 [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
17:12:17.0484 6904 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
17:12:17.0484 6904 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:12:17.0484 6904 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
17:12:17.0484 6904 [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
17:12:17.0484 6904 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
17:12:17.0500 6904 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
17:12:17.0500 6904 C:\Windows\SysWOW64\mpr.dll - ok
17:12:17.0500 6904 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
17:12:17.0500 6904 C:\Windows\System32\aepic.dll - ok
17:12:17.0500 6904 [ 2334DC48997BA203B794DF3EE70521DB ] C:\Windows\System32\HPZinw12.dll
17:12:17.0500 6904 C:\Windows\System32\HPZinw12.dll - ok
17:12:17.0515 6904 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
17:12:17.0515 6904 C:\Windows\System32\nlasvc.dll - ok
17:12:17.0515 6904 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
17:12:17.0515 6904 C:\Windows\System32\wsock32.dll - ok
17:12:17.0515 6904 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:12:17.0515 6904 C:\Windows\System32\sfc.dll - ok
17:12:17.0515 6904 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:12:17.0515 6904 C:\Windows\System32\sfc_os.dll - ok
17:12:17.0531 6904 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
17:12:17.0531 6904 C:\Windows\System32\ncsi.dll - ok
17:12:17.0531 6904 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
17:12:17.0531 6904 C:\Windows\System32\winhttp.dll - ok
17:12:17.0531 6904 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
17:12:17.0531 6904 C:\Windows\System32\webio.dll - ok
17:12:17.0531 6904 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
17:12:17.0531 6904 C:\Windows\System32\aeevts.dll - ok
17:12:17.0546 6904 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
17:12:17.0546 6904 C:\Windows\System32\drivers\PEAuth.sys - ok
17:12:17.0546 6904 [ 63694C307273062A2167AE4CE80730EF ] C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
17:12:17.0546 6904 C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe - ok
17:12:17.0546 6904 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:12:17.0546 6904 C:\Windows\System32\ssdpapi.dll - ok
17:12:17.0562 6904 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
17:12:17.0562 6904 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
17:12:17.0562 6904 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] C:\Windows\System32\HPZipm12.dll
17:12:17.0562 6904 C:\Windows\System32\HPZipm12.dll - ok
17:12:17.0562 6904 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:12:17.0562 6904 C:\Windows\SysWOW64\ntmarta.dll - ok
17:12:17.0562 6904 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
17:12:17.0562 6904 C:\Windows\SysWOW64\Wldap32.dll - ok
17:12:17.0578 6904 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
17:12:17.0578 6904 C:\Windows\SysWOW64\winsta.dll - ok
17:12:17.0578 6904 [ 4A5809A1D796E2675AC0332BF7B0CB11 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
17:12:17.0578 6904 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe - ok
17:12:17.0578 6904 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
17:12:17.0578 6904 C:\Windows\SysWOW64\winhttp.dll - ok
17:12:17.0593 6904 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
17:12:17.0593 6904 C:\Windows\SysWOW64\webio.dll - ok
17:12:17.0593 6904 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
17:12:17.0593 6904 C:\Windows\SysWOW64\msxml6.dll - ok
17:12:17.0593 6904 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:12:17.0593 6904 C:\Windows\SysWOW64\SensApi.dll - ok
17:12:17.0593 6904 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
17:12:17.0593 6904 C:\Windows\System32\drivers\secdrv.sys - ok
17:12:17.0609 6904 [ 850E17E9EB94D59A54BD6FA33A2CFA99 ] C:\Program Files (x86)\winsim\ConnectionManager\SimplyConnectionManager.exe
17:12:17.0609 6904 C:\Program Files (x86)\winsim\ConnectionManager\SimplyConnectionManager.exe - ok
17:12:17.0609 6904 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
17:12:17.0609 6904 C:\Windows\SysWOW64\mscoree.dll - ok
17:12:17.0609 6904 [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
17:12:17.0609 6904 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
17:12:17.0609 6904 [ CE38536E05E23FE796C11AFFAB6FA842 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
17:12:17.0609 6904 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
17:12:17.0624 6904 [ 93C2D166F5C3C14B32B15184254049C3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll
17:12:17.0624 6904 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll - ok
17:12:17.0624 6904 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
17:12:17.0624 6904 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
17:12:17.0624 6904 [ 75F5E1FE8D55CF8E577E0EC5F2290D3F ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
17:12:17.0624 6904 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
17:12:17.0640 6904 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
17:12:17.0640 6904 C:\Windows\SysWOW64\riched20.dll - ok
17:12:17.0640 6904 [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 ] C:\Windows\SysWOW64\imagehlp.dll
17:12:17.0640 6904 C:\Windows\SysWOW64\imagehlp.dll - ok
17:12:17.0640 6904 [ AD7FB087A238883D1618F29F7BBBD584 ] C:\Windows\SysWOW64\ncrypt.dll
17:12:17.0640 6904 C:\Windows\SysWOW64\ncrypt.dll - ok
17:12:17.0640 6904 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:12:17.0640 6904 C:\Windows\SysWOW64\bcrypt.dll - ok
17:12:17.0656 6904 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:12:17.0656 6904 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:12:17.0656 6904 [ 7B851A8018B1EA00A69707A390004884 ] C:\Windows\SysWOW64\cryptnet.dll
17:12:17.0656 6904 C:\Windows\SysWOW64\cryptnet.dll - ok
17:12:17.0656 6904 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:12:17.0656 6904 C:\Windows\SysWOW64\gpapi.dll - ok
17:12:17.0671 6904 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
17:12:17.0671 6904 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
17:12:17.0671 6904 [ 0F42F3605AB5C3679765FF1081275EF3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll
17:12:17.0671 6904 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll - ok
17:12:17.0671 6904 [ C7928C9283C7D39D601926DC28736441 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b34b348a9935338b1282fd0c9309eb1f\System.ServiceProcess.ni.dll
17:12:17.0671 6904 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b34b348a9935338b1282fd0c9309eb1f\System.ServiceProcess.ni.dll - ok
17:12:17.0671 6904 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
17:12:17.0671 6904 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
17:12:17.0687 6904 [ 875B04A71869D34A415CC8B4D4673EC4 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
17:12:17.0687 6904 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
17:12:17.0687 6904 [ 6E55B702A50248D03E62AF0CF3CEB87D ] C:\Windows\assembly\GAC_32\Simply.ConnectionManagerService\15.0.0.1__bfd98eaca3f932d5\Simply.ConnectionManagerService.dll
17:12:17.0687 6904 C:\Windows\assembly\GAC_32\Simply.ConnectionManagerService\15.0.0.1__bfd98eaca3f932d5\Simply.ConnectionManagerService.dll - ok
17:12:17.0687 6904 [ 430796105516A35BD2AE5BF8BA1C64FF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\59312674865dc2a19c27f9f460b1673b\System.Runtime.Remoting.ni.dll
17:12:17.0687 6904 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\59312674865dc2a19c27f9f460b1673b\System.Runtime.Remoting.ni.dll - ok
17:12:17.0702 6904 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
17:12:17.0702 6904 C:\Windows\System32\drivers\srvnet.sys - ok
17:12:17.0702 6904 [ 0EF6ADCF0AEC1EB8B758A72FBA757A95 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll
17:12:17.0702 6904 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll - ok
17:12:17.0702 6904 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
17:12:17.0702 6904 C:\Windows\System32\drivers\tcpipreg.sys - ok
17:12:17.0718 6904 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
17:12:17.0718 6904 C:\Windows\System32\sysmain.dll - ok
17:12:17.0718 6904 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
17:12:17.0718 6904 C:\Windows\System32\wiaservc.dll - ok
17:12:17.0718 6904 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:12:17.0718 6904 C:\Windows\SysWOW64\wship6.dll - ok
17:12:17.0718 6904 [ 3D232BA8915FEA0694B07E535FC8D03A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll
17:12:17.0718 6904 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll - ok
17:12:17.0734 6904 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
17:12:17.0734 6904 C:\Windows\System32\wiatrace.dll - ok
17:12:17.0734 6904 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
17:12:17.0734 6904 C:\Windows\System32\fundisc.dll - ok
17:12:17.0734 6904 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
17:12:17.0734 6904 C:\Windows\System32\wsdchngr.dll - ok
17:12:17.0734 6904 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:12:17.0734 6904 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
17:12:17.0749 6904 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
17:12:17.0749 6904 C:\Windows\System32\trkwks.dll - ok
17:12:17.0749 6904 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:12:17.0749 6904 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:12:17.0749 6904 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
17:12:17.0749 6904 C:\Windows\System32\fdPnp.dll - ok
17:12:17.0749 6904 [ 25723DC86478FDAE07050BCB44787194 ] C:\Windows\System32\HPWia2_PS7520.dll
17:12:17.0749 6904 C:\Windows\System32\HPWia2_PS7520.dll - ok
17:12:17.0765 6904 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
17:12:17.0765 6904 C:\Windows\System32\wbemcomn.dll - ok
17:12:17.0765 6904 [ EC3D2217564D66078398030F1EF0F7D2 ] C:\Windows\System32\HPScanTRDrv_PS7520.dll
17:12:17.0765 6904 C:\Windows\System32\HPScanTRDrv_PS7520.dll - ok
17:12:17.0765 6904 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:12:17.0765 6904 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:12:17.0780 6904 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:12:17.0780 6904 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:12:17.0780 6904 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
17:12:17.0780 6904 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
17:12:17.0780 6904 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
17:12:17.0780 6904 C:\Windows\System32\SensApi.dll - ok
17:12:17.0780 6904 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:12:17.0780 6904 C:\Windows\System32\wbem\fastprox.dll - ok
17:12:17.0796 6904 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:12:17.0796 6904 C:\Windows\System32\wer.dll - ok
17:12:17.0796 6904 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:12:17.0796 6904 C:\Windows\System32\ntdsapi.dll - ok
17:12:17.0796 6904 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:12:17.0796 6904 C:\Windows\System32\wbem\wbemprox.dll - ok
17:12:17.0812 6904 [ 7548066DF68A8A1A56B043359F915F37 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
17:12:17.0812 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
17:12:17.0812 6904 [ 7523E7D2AB0C49585C0C199264B2BD73 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
17:12:17.0812 6904 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
17:12:17.0812 6904 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
17:12:17.0812 6904 C:\Windows\System32\wbem\wbemcore.dll - ok
17:12:17.0812 6904 [ 0D298133C359AB8CB9EB4FA178BF3947 ] C:\Windows\System32\msxml3.dll
17:12:17.0812 6904 C:\Windows\System32\msxml3.dll - ok
17:12:17.0827 6904 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
17:12:17.0827 6904 C:\Windows\SysWOW64\comdlg32.dll - ok
17:12:17.0827 6904 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:12:17.0827 6904 C:\Windows\System32\wbem\esscli.dll - ok
17:12:17.0827 6904 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
17:12:17.0827 6904 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
17:12:17.0843 6904 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
17:12:17.0843 6904 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
17:12:17.0843 6904 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:12:17.0843 6904 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:12:17.0843 6904 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:12:17.0843 6904 C:\Windows\System32\wbem\wmiutils.dll - ok
17:12:17.0843 6904 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:12:17.0843 6904 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:12:17.0859 6904 [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
17:12:17.0859 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
17:12:17.0859 6904 [ 3960CEB4A6B13784252D827ECF65CED3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
17:12:17.0859 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
17:12:17.0859 6904 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
17:12:17.0859 6904 C:\Windows\System32\drivers\srv2.sys - ok
17:12:17.0875 6904 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
17:12:17.0875 6904 C:\Windows\System32\iphlpsvc.dll - ok
17:12:17.0875 6904 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
17:12:17.0875 6904 C:\Windows\System32\drivers\srv.sys - ok
17:12:17.0875 6904 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
17:12:17.0875 6904 C:\Windows\System32\sqmapi.dll - ok
17:12:17.0875 6904 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
17:12:17.0875 6904 C:\Windows\System32\wdscore.dll - ok
17:12:17.0891 6904 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
17:12:17.0891 6904 C:\Windows\System32\browser.dll - ok
17:12:17.0891 6904 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
17:12:17.0891 6904 C:\Windows\System32\srvsvc.dll - ok
17:12:17.0891 6904 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:12:17.0891 6904 C:\Windows\System32\hnetcfg.dll - ok
17:12:17.0906 6904 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
17:12:17.0906 6904 C:\Windows\System32\netmsg.dll - ok
17:12:17.0906 6904 [ 1530DFBDFD68AAD1FD5FDA52EA44925E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
17:12:17.0906 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
17:12:17.0906 6904 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:12:17.0906 6904 C:\Windows\System32\netprofm.dll - ok
17:12:17.0906 6904 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
17:12:17.0906 6904 C:\Windows\System32\sscore.dll - ok
17:12:17.0922 6904 [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
17:12:17.0922 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
17:12:17.0922 6904 [ EEA7E552C2C992CFD4B50857010F39EA ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
17:12:17.0922 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
17:12:17.0922 6904 [ 5E2623439A9936D320FE8DC1AB84526A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
17:12:17.0922 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
17:12:17.0937 6904 [ 8F1656DEB2E861D608909792F5A68C3B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
17:12:17.0937 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
17:12:17.0937 6904 [ 78193AA97D679531522C3E2FA4A5EDFE ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
17:12:17.0937 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
17:12:17.0937 6904 [ 793A19EAB66BB232F019DFF9D1977A41 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
17:12:17.0937 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
17:12:17.0937 6904 [ BA726152513EC650EED219B7995DE852 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
17:12:17.0937 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
17:12:17.0953 6904 [ 77C8E1779E784189EA29D9A5ECCDD9E9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
17:12:17.0953 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
17:12:17.0953 6904 [ AFD87B70E2C48EC080CA28ADCC3175B5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
17:12:17.0953 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
17:12:17.0953 6904 [ 5ECEA5F29DCEE8D320454C86A1CB3366 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
17:12:17.0953 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
17:12:17.0969 6904 [ 18873D2B1ABBB8826ED18F840CB8E0D3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
17:12:17.0969 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
17:12:17.0969 6904 [ 79ECBC83B844F7A474C66BE77AAF7180 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
17:12:17.0969 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
17:12:17.0969 6904 [ 069006BF253F32CD980E67E8671DFE3C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
17:12:17.0969 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
17:12:17.0984 6904 [ 5925F32114BF5ACF50C66500433B35CC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
17:12:17.0984 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
17:12:17.0984 6904 [ 03C7D7A1553E3009CEBE3013A578B0ED ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
17:12:17.0984 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
17:12:17.0984 6904 [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
17:12:17.0984 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
17:12:18.0000 6904 [ 2499E32320905E68F9710527593A0EDB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
17:12:18.0000 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
17:12:18.0000 6904 [ 591EA8B6991D99720B36EBC1CC16CEA8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
17:12:18.0000 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
17:12:18.0000 6904 [ A4487F6CEFED12F2C1257F6DBCDAEB1E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
17:12:18.0000 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
17:12:18.0000 6904 [ 35989A505DEEC24DEF8D327D22FF14D4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
17:12:18.0000 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
17:12:18.0015 6904 [ 9D825B4E6B28F93F326538515EFC880B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
17:12:18.0015 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
17:12:18.0015 6904 [ D9BFF3E59CBE32FE72D6D68F6AF348BD ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
17:12:18.0015 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
17:12:18.0015 6904 [ E84CB5D899098DDEA6D013057C9E4B5F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
17:12:18.0015 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
17:12:18.0015 6904 [ 15C42334805B711FBF0C788A1D751528 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
17:12:18.0031 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
17:12:18.0031 6904 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
17:12:18.0031 6904 C:\Windows\SysWOW64\wbemcomn.dll - ok
17:12:18.0031 6904 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
17:12:18.0031 6904 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
17:12:18.0031 6904 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
17:12:18.0031 6904 C:\Windows\System32\clusapi.dll - ok
17:12:18.0047 6904 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
17:12:18.0047 6904 C:\Windows\System32\nci.dll - ok
17:12:18.0047 6904 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
17:12:18.0047 6904 C:\Windows\System32\resutils.dll - ok
17:12:18.0047 6904 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
17:12:18.0047 6904 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
17:12:18.0047 6904 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
17:12:18.0047 6904 C:\Program Files\Bonjour\mdnsNSP.dll - ok
17:12:18.0062 6904 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
17:12:18.0062 6904 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
17:12:18.0062 6904 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
17:12:18.0062 6904 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
17:12:18.0062 6904 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
17:12:18.0062 6904 C:\Windows\SysWOW64\ntdsapi.dll - ok
17:12:18.0078 6904 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
17:12:18.0078 6904 C:\Windows\System32\winspool.drv - ok
17:12:18.0078 6904 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
17:12:18.0078 6904 C:\Windows\System32\localspl.dll - ok
17:12:18.0078 6904 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:12:18.0078 6904 C:\Windows\System32\rasadhlp.dll - ok
17:12:18.0078 6904 [ 768380704934CD5B15F0B5F05533B881 ] C:\Windows\System32\hpinkstsBC11LM.dll
17:12:18.0078 6904 C:\Windows\System32\hpinkstsBC11LM.dll - ok
17:12:18.0093 6904 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
17:12:18.0093 6904 C:\Windows\System32\PrintIsolationProxy.dll - ok
17:12:18.0093 6904 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
17:12:18.0093 6904 C:\Windows\System32\spoolss.dll - ok
17:12:18.0093 6904 [ 3D7C1DFE052288F40AC9ABFB2A824B92 ] C:\Windows\System32\HPDiscoPMBC11.dll
17:12:18.0093 6904 C:\Windows\System32\HPDiscoPMBC11.dll - ok
17:12:18.0109 6904 [ AFE013F29FD99796958EC8EE0738306F ] C:\Windows\System32\hpf3l70w.dll
17:12:18.0109 6904 C:\Windows\System32\hpf3l70w.dll - ok
17:12:18.0109 6904 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
17:12:18.0109 6904 C:\Windows\System32\wsnmp32.dll - ok
17:12:18.0109 6904 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
17:12:18.0109 6904 C:\Windows\System32\FXSMON.dll - ok
17:12:18.0109 6904 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
17:12:18.0109 6904 C:\Windows\System32\hpz3lw71.dll - ok
17:12:18.0125 6904 [ E16C433D8D23B08A40A664A9D8348649 ] C:\Windows\System32\hpz3lw72.dll
17:12:18.0125 6904 C:\Windows\System32\hpz3lw72.dll - ok
17:12:18.0125 6904 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
17:12:18.0125 6904 C:\Windows\System32\snmpapi.dll - ok
17:12:18.0125 6904 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
17:12:18.0125 6904 C:\Windows\System32\tcpmon.dll - ok
17:12:18.0125 6904 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
17:12:18.0125 6904 C:\Windows\System32\usbmon.dll - ok
17:12:18.0140 6904 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
17:12:18.0140 6904 C:\Windows\System32\WSDMon.dll - ok
17:12:18.0140 6904 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
17:12:18.0140 6904 C:\Windows\System32\WSDApi.dll - ok
17:12:18.0140 6904 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
17:12:18.0140 6904 C:\Windows\System32\webservices.dll - ok
17:12:18.0156 6904 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:12:18.0156 6904 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:12:18.0156 6904 [ 38F13E9C0CBEE9FBA501B028C71BFA07 ] C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll
17:12:18.0156 6904 C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll - ok
17:12:18.0156 6904 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
17:12:18.0156 6904 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
17:12:18.0156 6904 [ 62FD1461C7C88D9927CAFF8FA827DAA8 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll
17:12:18.0156 6904 C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll - ok
17:12:18.0171 6904 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
17:12:18.0171 6904 C:\Windows\System32\inetpp.dll - ok
17:12:18.0171 6904 [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
17:12:18.0171 6904 C:\Windows\System32\win32spl.dll - ok
17:12:18.0171 6904 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqcxs08.dll
17:12:18.0171 6904 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqcxs08.dll - ok
17:12:18.0187 6904 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
17:12:18.0187 6904 C:\Windows\System32\wdi.dll - ok
17:12:18.0187 6904 [ F37882F128EFACEFE353E0BAE2766909 ] C:\Program Files (x86)\hp\Digital Imaging\bin\HPSLPSVC64.DLL
17:12:18.0187 6904 C:\Program Files (x86)\hp\Digital Imaging\bin\HPSLPSVC64.DLL - ok
17:12:18.0187 6904 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
17:12:18.0187 6904 C:\Windows\System32\appinfo.dll - ok
17:12:18.0187 6904 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
17:12:18.0187 6904 C:\Windows\System32\hidserv.dll - ok
17:12:18.0203 6904 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
17:12:18.0203 6904 C:\Windows\System32\wpdbusenum.dll - ok
17:12:18.0203 6904 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
17:12:18.0203 6904 C:\Windows\SysWOW64\shfolder.dll - ok
17:12:18.0203 6904 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
17:12:18.0203 6904 C:\Windows\System32\Apphlpdm.dll - ok
17:12:18.0203 6904 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:12:18.0203 6904 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:12:18.0218 6904 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:12:18.0218 6904 C:\Windows\System32\ncobjapi.dll - ok
17:12:18.0218 6904 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:12:18.0218 6904 C:\Windows\System32\wbem\wbemess.dll - ok
17:12:18.0218 6904 [ A5DBC74C5B91CF6E43B73D62936F8186 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
17:12:18.0218 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
17:12:18.0234 6904 [ 3CEF96890064B3CDB190963157F24BAC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
17:12:18.0234 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
17:12:18.0234 6904 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
17:12:18.0234 6904 C:\Windows\SysWOW64\oleacc.dll - ok
17:12:18.0234 6904 [ 5BFB02BDA2700D078400E149BC4CF87A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
17:12:18.0234 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
17:12:18.0249 6904 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:12:18.0249 6904 C:\Windows\System32\FXSRESM.dll - ok
17:12:18.0249 6904 [ 3C29B98149A28FEDA42796D3EA904F62 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
17:12:18.0249 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
17:12:18.0249 6904 [ 38ADD53ECFC5F040EF1C647ECD22A2A4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
17:12:18.0249 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
17:12:18.0249 6904 [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
17:12:18.0249 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
17:12:18.0265 6904 [ 43B02D7C43B77775F1DA63B1D1014F38 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
17:12:18.0265 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
17:12:18.0265 6904 [ 5AF1E9600E3FF841E522703A4993ED0C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
17:12:18.0265 6904 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
17:12:18.0265 6904 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
17:12:18.0265 6904 C:\Windows\System32\diagperf.dll - ok
17:12:18.0281 6904 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
17:12:18.0281 6904 C:\Windows\System32\pnpts.dll - ok
17:12:18.0281 6904 [ 8CF4B0337B06CCC624C20EE4C934767E ] C:\Windows\System32\lpksetupproxyserv.dll
17:12:18.0281 6904 C:\Windows\System32\lpksetupproxyserv.dll - ok
17:12:18.0281 6904 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
17:12:18.0281 6904 C:\Windows\servicing\TrustedInstaller.exe - ok

\

#27
pystryker

Posted 27 February 2014 - 07:44 PM

Trusted Helper

Malware Removal
3,912 posts

That's a large part of it, but there is still a bit more of it. When you load the log up into notepad, click on the notepad window (anywhere will do) and then hit Ctrl-A to select all of it, the Ctrl C to copy all of it, then when you post your next reply , click in the reply window and hit Ctrl V. That will post all of the log. The end of the log will have a list of what it found and such.

If the board tells you the log is too big to post, please let me know.

I'm positive the things it found are legitimate, but I want to make sure. :thumbsup:

#28
LUCYR

Posted 27 February 2014 - 08:07 PM

Member

Topic Starter
Member
18 posts

in my c drive there are 3-4 logs I just took the biggest one here is another

17:20:05.0126 5548 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:20:13.0815 5548 ============================================================
17:20:13.0815 5548 Current date / time: 2014/02/27 17:20:13.0815
17:20:13.0815 5548 SystemInfo:
17:20:13.0815 5548
17:20:13.0815 5548 OS Version: 6.1.7601 ServicePack: 1.0
17:20:13.0815 5548 Product type: Workstation
17:20:13.0815 5548 ComputerName: LUCILLE-PC
17:20:13.0815 5548 UserName: Lucille
17:20:13.0815 5548 Windows directory: C:\Windows
17:20:13.0815 5548 System windows directory: C:\Windows
17:20:13.0815 5548 Running under WOW64
17:20:13.0815 5548 Processor architecture: Intel x64
17:20:13.0815 5548 Number of processors: 4
17:20:13.0815 5548 Page size: 0x1000
17:20:13.0815 5548 Boot type: Normal boot
17:20:13.0815 5548 ============================================================
17:20:13.0862 5548 BG loaded
17:20:14.0127 5548 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:20:14.0142 5548 ============================================================
17:20:14.0142 5548 \Device\Harddisk0\DR0:
17:20:14.0142 5548 MBR partitions:
17:20:14.0142 5548 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:20:14.0142 5548 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x55B65800
17:20:14.0142 5548 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x55B98000, BlocksNum 0x19AD800
17:20:14.0142 5548 ============================================================
17:20:14.0174 5548 C: <-> \Device\Harddisk0\DR0\Partition2
17:20:14.0205 5548 D: <-> \Device\Harddisk0\DR0\Partition3
17:20:14.0205 5548 ============================================================
17:20:14.0205 5548 Initialize success
17:20:14.0205 5548 ============================================================
17:20:26.0045 0480 ============================================================
17:20:26.0045 0480 Scan started
17:20:26.0045 0480 Mode: Manual; SigCheck; TDLFS;
17:20:26.0045 0480 ============================================================
17:20:26.0264 0480 ================ Scan system memory ========================
17:20:26.0264 0480 System memory - ok
17:20:26.0264 0480 ================ Scan services =============================
17:20:26.0389 0480 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:20:26.0435 0480 1394ohci - ok
17:20:26.0467 0480 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:20:26.0482 0480 ACPI - ok
17:20:26.0498 0480 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:20:26.0513 0480 AcpiPmi - ok
17:20:26.0591 0480 [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:20:26.0607 0480 AdobeARMservice - ok
17:20:26.0716 0480 [ F7AB315A4D400CA876381D1E188A2E20 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:20:26.0732 0480 AdobeFlashPlayerUpdateSvc - ok
17:20:26.0763 0480 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:20:26.0779 0480 adp94xx - ok
17:20:26.0810 0480 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:20:26.0825 0480 adpahci - ok
17:20:26.0841 0480 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:20:26.0857 0480 adpu320 - ok
17:20:26.0888 0480 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:20:26.0919 0480 AeLookupSvc - ok
17:20:26.0966 0480 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
17:20:26.0981 0480 AFD - ok
17:20:26.0997 0480 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:20:27.0013 0480 agp440 - ok
17:20:27.0028 0480 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:20:27.0044 0480 ALG - ok
17:20:27.0059 0480 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:20:27.0059 0480 aliide - ok
17:20:27.0075 0480 [ 6290BA92CA8A23DB6BED83397CF97002 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:20:27.0091 0480 AMD External Events Utility - ok
17:20:27.0122 0480 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:20:27.0122 0480 amdide - ok
17:20:27.0153 0480 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:20:27.0169 0480 AmdK8 - ok
17:20:27.0184 0480 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:20:27.0200 0480 AmdPPM - ok
17:20:27.0231 0480 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:20:27.0247 0480 amdsata - ok
17:20:27.0278 0480 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:20:27.0293 0480 amdsbs - ok
17:20:27.0309 0480 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:20:27.0325 0480 amdxata - ok
17:20:27.0356 0480 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:20:27.0387 0480 AppID - ok
17:20:27.0403 0480 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:20:27.0434 0480 AppIDSvc - ok
17:20:27.0465 0480 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
17:20:27.0481 0480 Appinfo - ok
17:20:27.0590 0480 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:20:27.0590 0480 Apple Mobile Device - ok
17:20:27.0605 0480 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:20:27.0621 0480 arc - ok
17:20:27.0652 0480 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:20:27.0652 0480 arcsas - ok
17:20:27.0746 0480 [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:20:27.0761 0480 aspnet_state - ok
17:20:27.0777 0480 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:20:27.0808 0480 AsyncMac - ok
17:20:27.0839 0480 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:20:27.0855 0480 atapi - ok
17:20:27.0886 0480 [ 04A5815DF7E8B037DF674D3CCACC0C31 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
17:20:27.0902 0480 AtiHdmiService - ok
17:20:28.0011 0480 [ 29623DB7E23B65F0C50CA19D7E0DFD03 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:20:28.0073 0480 atikmdag - ok
17:20:28.0105 0480 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:20:28.0151 0480 AudioEndpointBuilder - ok
17:20:28.0151 0480 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:20:28.0198 0480 AudioSrv - ok
17:20:28.0229 0480 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:20:28.0245 0480 AxInstSV - ok
17:20:28.0307 0480 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:20:28.0323 0480 b06bdrv - ok
17:20:28.0339 0480 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:20:28.0354 0480 b57nd60a - ok
17:20:28.0385 0480 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:20:28.0401 0480 BDESVC - ok
17:20:28.0432 0480 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:20:28.0463 0480 Beep - ok
17:20:28.0510 0480 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:20:28.0526 0480 BFE - ok
17:20:28.0557 0480 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:20:28.0604 0480 BITS - ok
17:20:28.0619 0480 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:20:28.0635 0480 blbdrive - ok
17:20:28.0697 0480 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:20:28.0713 0480 Bonjour Service - ok
17:20:28.0729 0480 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:20:28.0744 0480 bowser - ok
17:20:28.0775 0480 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:20:28.0791 0480 BrFiltLo - ok
17:20:28.0791 0480 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:20:28.0807 0480 BrFiltUp - ok
17:20:28.0838 0480 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:20:28.0838 0480 Browser - ok
17:20:28.0869 0480 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:20:28.0885 0480 Brserid - ok
17:20:28.0885 0480 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:20:28.0900 0480 BrSerWdm - ok
17:20:28.0916 0480 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:20:28.0931 0480 BrUsbMdm - ok
17:20:28.0963 0480 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:20:28.0978 0480 BrUsbSer - ok
17:20:28.0994 0480 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:20:29.0009 0480 BTHMODEM - ok
17:20:29.0009 0480 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:20:29.0041 0480 bthserv - ok
17:20:29.0072 0480 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:20:29.0103 0480 cdfs - ok
17:20:29.0134 0480 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:20:29.0150 0480 cdrom - ok
17:20:29.0181 0480 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:20:29.0212 0480 CertPropSvc - ok
17:20:29.0228 0480 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:20:29.0243 0480 circlass - ok
17:20:29.0275 0480 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:20:29.0290 0480 CLFS - ok
17:20:29.0321 0480 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:20:29.0321 0480 clr_optimization_v2.0.50727_32 - ok
17:20:29.0368 0480 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:20:29.0384 0480 clr_optimization_v2.0.50727_64 - ok
17:20:29.0446 0480 [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:20:29.0462 0480 clr_optimization_v4.0.30319_32 - ok
17:20:29.0462 0480 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:20:29.0477 0480 clr_optimization_v4.0.30319_64 - ok
17:20:29.0493 0480 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:20:29.0509 0480 CmBatt - ok
17:20:29.0540 0480 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:20:29.0555 0480 cmdide - ok
17:20:29.0587 0480 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
17:20:29.0602 0480 CNG - ok
17:20:29.0618 0480 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:20:29.0633 0480 Compbatt - ok
17:20:29.0649 0480 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:20:29.0665 0480 CompositeBus - ok
17:20:29.0680 0480 COMSysApp - ok
17:20:29.0696 0480 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:20:29.0711 0480 crcdisk - ok
17:20:29.0821 0480 [ C128E740CDB1048FB72F4F80FA384943 ] CrossLoopService C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe
17:20:29.0836 0480 CrossLoopService - ok
17:20:29.0867 0480 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:20:29.0883 0480 CryptSvc - ok
17:20:29.0914 0480 [ 76E02DB615A03801D698199A2BC4A06A ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
17:20:29.0930 0480 dc3d - ok
17:20:29.0961 0480 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:20:29.0992 0480 DcomLaunch - ok
17:20:30.0008 0480 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:20:30.0039 0480 defragsvc - ok
17:20:30.0070 0480 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:20:30.0101 0480 DfsC - ok
17:20:30.0133 0480 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:20:30.0148 0480 Dhcp - ok
17:20:30.0179 0480 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:20:30.0211 0480 discache - ok
17:20:30.0226 0480 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:20:30.0226 0480 Disk - ok
17:20:30.0273 0480 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:20:30.0273 0480 Dnscache - ok
17:20:30.0320 0480 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:20:30.0351 0480 dot3svc - ok
17:20:30.0398 0480 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:20:30.0413 0480 Dot4 - ok
17:20:30.0460 0480 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:20:30.0460 0480 Dot4Print - ok
17:20:30.0491 0480 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:20:30.0491 0480 dot4usb - ok
17:20:30.0507 0480 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:20:30.0538 0480 DPS - ok
17:20:30.0569 0480 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:20:30.0569 0480 drmkaud - ok
17:20:30.0601 0480 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:20:30.0632 0480 DXGKrnl - ok
17:20:30.0647 0480 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:20:30.0679 0480 EapHost - ok
17:20:30.0741 0480 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:20:30.0788 0480 ebdrv - ok
17:20:30.0803 0480 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
17:20:30.0819 0480 EFS - ok
17:20:30.0881 0480 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:20:30.0897 0480 ehRecvr - ok
17:20:30.0913 0480 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:20:30.0928 0480 ehSched - ok
17:20:30.0959 0480 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:20:30.0975 0480 elxstor - ok
17:20:30.0991 0480 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:20:31.0006 0480 ErrDev - ok
17:20:31.0037 0480 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:20:31.0069 0480 EventSystem - ok
17:20:31.0100 0480 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:20:31.0131 0480 exfat - ok
17:20:31.0131 0480 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:20:31.0178 0480 fastfat - ok
17:20:31.0209 0480 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:20:31.0225 0480 Fax - ok
17:20:31.0256 0480 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:20:31.0256 0480 fdc - ok
17:20:31.0287 0480 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:20:31.0318 0480 fdPHost - ok
17:20:31.0334 0480 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:20:31.0365 0480 FDResPub - ok
17:20:31.0365 0480 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:20:31.0381 0480 FileInfo - ok
17:20:31.0396 0480 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:20:31.0428 0480 Filetrace - ok
17:20:31.0475 0480 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:20:31.0491 0480 FLEXnet Licensing Service - ok
17:20:31.0506 0480 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:20:31.0522 0480 flpydisk - ok
17:20:31.0569 0480 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:20:31.0584 0480 FltMgr - ok
17:20:31.0616 0480 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
17:20:31.0631 0480 FontCache - ok
17:20:31.0678 0480 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:20:31.0694 0480 FontCache3.0.0.0 - ok
17:20:31.0709 0480 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:20:31.0709 0480 FsDepends - ok
17:20:31.0740 0480 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:20:31.0740 0480 Fs_Rec - ok
17:20:31.0772 0480 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:20:31.0787 0480 fvevol - ok
17:20:31.0803 0480 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:20:31.0818 0480 gagp30kx - ok
17:20:31.0881 0480 [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:20:31.0881 0480 GameConsoleService - ok
17:20:31.0912 0480 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:20:31.0912 0480 GEARAspiWDM - ok
17:20:31.0943 0480 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:20:31.0990 0480 gpsvc - ok
17:20:32.0052 0480 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:20:32.0068 0480 gupdate - ok
17:20:32.0084 0480 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:20:32.0084 0480 gupdatem - ok
17:20:32.0099 0480 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:20:32.0115 0480 gusvc - ok
17:20:32.0115 0480 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:20:32.0130 0480 hcw85cir - ok
17:20:32.0177 0480 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:20:32.0193 0480 HDAudBus - ok
17:20:32.0193 0480 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:20:32.0208 0480 HidBatt - ok
17:20:32.0224 0480 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:20:32.0240 0480 HidBth - ok
17:20:32.0255 0480 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:20:32.0271 0480 HidIr - ok
17:20:32.0286 0480 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:20:32.0318 0480 hidserv - ok
17:20:32.0364 0480 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:20:32.0364 0480 HidUsb - ok
17:20:32.0396 0480 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:20:32.0427 0480 hkmsvc - ok
17:20:32.0458 0480 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:20:32.0474 0480 HomeGroupListener - ok
17:20:32.0489 0480 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:20:32.0505 0480 HomeGroupProvider - ok
17:20:32.0567 0480 [ 2A8B93A01621E100A578E83C768AFA2C ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:20:32.0583 0480 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
17:20:32.0583 0480 HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
17:20:32.0645 0480 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:20:32.0661 0480 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
17:20:32.0661 0480 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
17:20:32.0661 0480 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:20:32.0676 0480 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
17:20:32.0676 0480 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
17:20:32.0770 0480 [ D2946D9F020AE76E9CEF9B4A6DF838C0 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
17:20:32.0786 0480 hpqwmiex - ok
17:20:32.0817 0480 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:20:32.0817 0480 HpSAMD - ok
17:20:32.0879 0480 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:20:32.0895 0480 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
17:20:32.0895 0480 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
17:20:32.0942 0480 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:20:32.0988 0480 HTTP - ok
17:20:33.0020 0480 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:20:33.0020 0480 hwpolicy - ok
17:20:33.0051 0480 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:20:33.0066 0480 i8042prt - ok
17:20:33.0098 0480 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
17:20:33.0113 0480 IAANTMON - ok
17:20:33.0144 0480 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:20:33.0160 0480 iaStor - ok
17:20:33.0176 0480 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:20:33.0191 0480 iaStorV - ok
17:20:33.0238 0480 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:20:33.0254 0480 idsvc - ok
17:20:33.0254 0480 IEEtwCollectorService - ok
17:20:33.0285 0480 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:20:33.0300 0480 iirsp - ok
17:20:33.0332 0480 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
17:20:33.0363 0480 IKEEXT - ok
17:20:33.0425 0480 [ 31C32BC56D85D109EBB0C526BE5CACA7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:20:33.0456 0480 IntcAzAudAddService - ok
17:20:33.0472 0480 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:20:33.0488 0480 intelide - ok
17:20:33.0503 0480 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:20:33.0519 0480 intelppm - ok
17:20:33.0534 0480 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:20:33.0566 0480 IPBusEnum - ok
17:20:33.0597 0480 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:20:33.0628 0480 IpFilterDriver - ok
17:20:33.0659 0480 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:20:33.0675 0480 iphlpsvc - ok
17:20:33.0690 0480 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:20:33.0706 0480 IPMIDRV - ok
17:20:33.0722 0480 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:20:33.0753 0480 IPNAT - ok
17:20:33.0800 0480 [ 71F993192EB04B2C4C80F2DEE9119229 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:20:33.0815 0480 iPod Service - ok
17:20:33.0831 0480 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:20:33.0846 0480 IRENUM - ok
17:20:33.0862 0480 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:20:33.0878 0480 isapnp - ok
17:20:33.0893 0480 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:20:33.0909 0480 iScsiPrt - ok
17:20:33.0924 0480 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:20:33.0940 0480 kbdclass - ok
17:20:33.0956 0480 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:20:33.0971 0480 kbdhid - ok
17:20:33.0971 0480 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
17:20:33.0987 0480 KeyIso - ok
17:20:34.0018 0480 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:20:34.0018 0480 KSecDD - ok
17:20:34.0034 0480 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:20:34.0049 0480 KSecPkg - ok
17:20:34.0049 0480 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:20:34.0080 0480 ksthunk - ok
17:20:34.0096 0480 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:20:34.0127 0480 KtmRm - ok
17:20:34.0174 0480 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:20:34.0205 0480 LanmanServer - ok
17:20:34.0236 0480 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:20:34.0283 0480 LanmanWorkstation - ok
17:20:34.0314 0480 [ 108333981C841EB0FF198AA5DFCF3D3B ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:20:34.0314 0480 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
17:20:34.0314 0480 LightScribeService - detected UnsignedFile.Multi.Generic (1)
17:20:34.0346 0480 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:20:34.0377 0480 lltdio - ok
17:20:34.0408 0480 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:20:34.0439 0480 lltdsvc - ok
17:20:34.0470 0480 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:20:34.0502 0480 lmhosts - ok
17:20:34.0517 0480 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:20:34.0533 0480 LSI_FC - ok
17:20:34.0564 0480 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:20:34.0580 0480 LSI_SAS - ok
17:20:34.0611 0480 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:20:34.0611 0480 LSI_SAS2 - ok
17:20:34.0642 0480 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:20:34.0642 0480 LSI_SCSI - ok
17:20:34.0658 0480 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:20:34.0704 0480 luafv - ok
17:20:34.0751 0480 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:20:34.0767 0480 MBAMProtector - ok
17:20:34.0814 0480 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:20:34.0829 0480 MBAMScheduler - ok
17:20:34.0845 0480 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:20:34.0860 0480 MBAMService - ok
17:20:34.0892 0480 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:20:34.0907 0480 Mcx2Svc - ok
17:20:34.0923 0480 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:20:34.0938 0480 megasas - ok
17:20:34.0970 0480 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:20:34.0985 0480 MegaSR - ok
17:20:35.0001 0480 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:20:35.0032 0480 MMCSS - ok
17:20:35.0048 0480 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:20:35.0079 0480 Modem - ok
17:20:35.0094 0480 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:20:35.0110 0480 monitor - ok
17:20:35.0141 0480 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
17:20:35.0141 0480 mouclass - ok
17:20:35.0157 0480 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:20:35.0172 0480 mouhid - ok
17:20:35.0188 0480 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:20:35.0204 0480 mountmgr - ok
17:20:35.0235 0480 [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:20:35.0250 0480 MpFilter - ok
17:20:35.0266 0480 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:20:35.0282 0480 mpio - ok
17:20:35.0282 0480 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:20:35.0313 0480 mpsdrv - ok
17:20:35.0360 0480 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:20:35.0406 0480 MpsSvc - ok
17:20:35.0422 0480 [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:20:35.0438 0480 MRxDAV - ok
17:20:35.0453 0480 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:20:35.0469 0480 mrxsmb - ok
17:20:35.0500 0480 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:20:35.0516 0480 mrxsmb10 - ok
17:20:35.0531 0480 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:20:35.0531 0480 mrxsmb20 - ok
17:20:35.0562 0480 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:20:35.0578 0480 msahci - ok
17:20:35.0594 0480 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:20:35.0609 0480 msdsm - ok
17:20:35.0625 0480 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:20:35.0640 0480 MSDTC - ok
17:20:35.0672 0480 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:20:35.0703 0480 Msfs - ok
17:20:35.0703 0480 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:20:35.0734 0480 mshidkmdf - ok
17:20:35.0750 0480 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:20:35.0750 0480 msisadrv - ok
17:20:35.0781 0480 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:20:35.0812 0480 MSiSCSI - ok
17:20:35.0812 0480 msiserver - ok
17:20:35.0828 0480 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:20:35.0859 0480 MSKSSRV - ok
17:20:35.0906 0480 [ 7675E15D1B2180745E4DA4D26AAD7385 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:20:35.0921 0480 MsMpSvc - ok
17:20:35.0937 0480 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:20:35.0968 0480 MSPCLOCK - ok
17:20:35.0984 0480 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:20:36.0015 0480 MSPQM - ok
17:20:36.0046 0480 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:20:36.0062 0480 MsRPC - ok
17:20:36.0077 0480 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:20:36.0093 0480 mssmbios - ok
17:20:36.0108 0480 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:20:36.0140 0480 MSTEE - ok
17:20:36.0155 0480 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:20:36.0155 0480 MTConfig - ok
17:20:36.0186 0480 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:20:36.0202 0480 Mup - ok
17:20:36.0233 0480 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:20:36.0264 0480 napagent - ok
17:20:36.0280 0480 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:20:36.0296 0480 NativeWifiP - ok
17:20:36.0342 0480 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:20:36.0374 0480 NDIS - ok
17:20:36.0389 0480 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:20:36.0420 0480 NdisCap - ok
17:20:36.0420 0480 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:20:36.0452 0480 NdisTapi - ok
17:20:36.0483 0480 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:20:36.0514 0480 Ndisuio - ok
17:20:36.0545 0480 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:20:36.0576 0480 NdisWan - ok
17:20:36.0592 0480 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:20:36.0623 0480 NDProxy - ok
17:20:36.0670 0480 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:20:36.0670 0480 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
17:20:36.0670 0480 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
17:20:36.0717 0480 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
17:20:36.0717 0480 Netaapl ( UnsignedFile.Multi.Generic ) - warning
17:20:36.0717 0480 Netaapl - detected UnsignedFile.Multi.Generic (1)
17:20:36.0732 0480 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:20:36.0764 0480 NetBIOS - ok
17:20:36.0764 0480 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:20:36.0810 0480 NetBT - ok
17:20:36.0810 0480 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
17:20:36.0826 0480 Netlogon - ok
17:20:36.0842 0480 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:20:36.0888 0480 Netman - ok
17:20:36.0904 0480 [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:20:36.0920 0480 NetMsmqActivator - ok
17:20:36.0935 0480 [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:20:36.0951 0480 NetPipeActivator - ok
17:20:36.0966 0480 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:20:36.0998 0480 netprofm - ok
17:20:37.0044 0480 [ 883269C1CA478658F1334F3C39B0C7AC ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
17:20:37.0060 0480 netr28ux - ok
17:20:37.0060 0480 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:20:37.0076 0480 NetTcpActivator - ok
17:20:37.0076 0480 [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:20:37.0091 0480 NetTcpPortSharing - ok
17:20:37.0122 0480 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:20:37.0122 0480 nfrd960 - ok
17:20:37.0169 0480 [ ACE8C64C57E4A711473C8BC10ADF692B ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:20:37.0185 0480 NisDrv - ok
17:20:37.0200 0480 [ 6247E8B31ED0A9D6BC5A26276E49BEB3 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:20:37.0216 0480 NisSrv - ok
17:20:37.0232 0480 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:20:37.0247 0480 NlaSvc - ok
17:20:37.0263 0480 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:20:37.0294 0480 Npfs - ok
17:20:37.0310 0480 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:20:37.0341 0480 nsi - ok
17:20:37.0356 0480 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:20:37.0388 0480 nsiproxy - ok
17:20:37.0434 0480 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:20:37.0466 0480 Ntfs - ok
17:20:37.0481 0480 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:20:37.0512 0480 Null - ok
17:20:37.0528 0480 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:20:37.0544 0480 nvraid - ok
17:20:37.0559 0480 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:20:37.0575 0480 nvstor - ok
17:20:37.0590 0480 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:20:37.0606 0480 nv_agp - ok
17:20:37.0684 0480 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:20:37.0700 0480 odserv - ok
17:20:37.0731 0480 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:20:37.0731 0480 ohci1394 - ok
17:20:37.0762 0480 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:20:37.0778 0480 ose - ok
17:20:37.0793 0480 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:20:37.0809 0480 p2pimsvc - ok
17:20:37.0824 0480 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:20:37.0840 0480 p2psvc - ok
17:20:37.0871 0480 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:20:37.0871 0480 Parport - ok
17:20:37.0902 0480 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:20:37.0918 0480 partmgr - ok
17:20:37.0934 0480 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:20:37.0949 0480 PcaSvc - ok
17:20:37.0965 0480 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:20:37.0980 0480 pci - ok
17:20:37.0996 0480 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:20:38.0012 0480 pciide - ok
17:20:38.0027 0480 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:20:38.0043 0480 pcmcia - ok
17:20:38.0058 0480 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:20:38.0074 0480 pcw - ok
17:20:38.0090 0480 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:20:38.0121 0480 PEAUTH - ok
17:20:38.0183 0480 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:20:38.0199 0480 PerfHost - ok
17:20:38.0261 0480 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:20:38.0308 0480 pla - ok
17:20:38.0339 0480 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:20:38.0355 0480 PlugPlay - ok
17:20:38.0433 0480 [ 63694C307273062A2167AE4CE80730EF ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
17:20:38.0448 0480 PMBDeviceInfoProvider - ok
17:20:38.0495 0480 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:20:38.0495 0480 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
17:20:38.0495 0480 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
17:20:38.0511 0480 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:20:38.0526 0480 PNRPAutoReg - ok
17:20:38.0542 0480 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:20:38.0558 0480 PNRPsvc - ok
17:20:38.0604 0480 [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
17:20:38.0604 0480 Point64 - ok
17:20:38.0636 0480 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:20:38.0667 0480 PolicyAgent - ok
17:20:38.0698 0480 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:20:38.0729 0480 Power - ok
17:20:38.0760 0480 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:20:38.0792 0480 PptpMiniport - ok
17:20:38.0807 0480 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:20:38.0807 0480 Processor - ok
17:20:38.0854 0480 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:20:38.0854 0480 ProfSvc - ok
17:20:38.0870 0480 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
17:20:38.0885 0480 ProtectedStorage - ok
17:20:38.0916 0480 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:20:38.0948 0480 Psched - ok
17:20:38.0994 0480 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:20:39.0026 0480 ql2300 - ok
17:20:39.0041 0480 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:20:39.0041 0480 ql40xx - ok
17:20:39.0072 0480 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:20:39.0088 0480 QWAVE - ok
17:20:39.0104 0480 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:20:39.0119 0480 QWAVEdrv - ok
17:20:39.0166 0480 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
17:20:39.0182 0480 RapiMgr - ok
17:20:39.0197 0480 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:20:39.0228 0480 RasAcd - ok
17:20:39.0244 0480 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:20:39.0275 0480 RasAgileVpn - ok
17:20:39.0275 0480 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:20:39.0322 0480 RasAuto - ok
17:20:39.0338 0480 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:20:39.0369 0480 Rasl2tp - ok
17:20:39.0400 0480 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:20:39.0431 0480 RasMan - ok
17:20:39.0447 0480 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:20:39.0478 0480 RasPppoe - ok
17:20:39.0494 0480 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:20:39.0525 0480 RasSstp - ok
17:20:39.0556 0480 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:20:39.0587 0480 rdbss - ok
17:20:39.0603 0480 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:20:39.0618 0480 rdpbus - ok
17:20:39.0634 0480 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:20:39.0665 0480 RDPCDD - ok
17:20:39.0681 0480 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:20:39.0712 0480 RDPENCDD - ok
17:20:39.0728 0480 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:20:39.0759 0480 RDPREFMP - ok
17:20:39.0790 0480 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:20:39.0806 0480 RDPWD - ok
17:20:39.0852 0480 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:20:39.0852 0480 rdyboost - ok
17:20:39.0899 0480 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:20:39.0930 0480 RemoteAccess - ok
17:20:39.0930 0480 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:20:39.0962 0480 RemoteRegistry - ok
17:20:39.0993 0480 [ 5790BCA445CC40DF8B38C2C48608AAC2 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
17:20:39.0993 0480 RimUsb - ok
17:20:39.0993 0480 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:20:40.0040 0480 RpcEptMapper - ok
17:20:40.0055 0480 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:20:40.0071 0480 RpcLocator - ok
17:20:40.0086 0480 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:20:40.0118 0480 RpcSs - ok
17:20:40.0133 0480 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:20:40.0164 0480 rspndr - ok
17:20:40.0196 0480 [ 91296F0B2653281B2F11E0FCE56AA427 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:20:40.0211 0480 RTL8167 - ok
17:20:40.0211 0480 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
17:20:40.0227 0480 SamSs - ok
17:20:40.0258 0480 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:20:40.0274 0480 sbp2port - ok
17:20:40.0274 0480 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:20:40.0320 0480 SCardSvr - ok
17:20:40.0352 0480 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:20:40.0383 0480 scfilter - ok
17:20:40.0414 0480 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:20:40.0445 0480 Schedule - ok
17:20:40.0461 0480 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:20:40.0492 0480 SCPolicySvc - ok
17:20:40.0523 0480 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:20:40.0523 0480 SDRSVC - ok
17:20:40.0601 0480 [ 4A5809A1D796E2675AC0332BF7B0CB11 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
17:20:40.0617 0480 SeaPort - ok
17:20:40.0648 0480 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:20:40.0679 0480 secdrv - ok
17:20:40.0679 0480 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:20:40.0710 0480 seclogon - ok
17:20:40.0726 0480 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:20:40.0757 0480 SENS - ok
17:20:40.0757 0480 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:20:40.0773 0480 SensrSvc - ok
17:20:40.0804 0480 [ 255476B54C82A89416EFDF09FD62F107 ] Sentinel64 C:\Windows\System32\Drivers\Sentinel64.sys
17:20:40.0820 0480 Sentinel64 - ok
17:20:40.0835 0480 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:20:40.0851 0480 Serenum - ok
17:20:40.0851 0480 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:20:40.0866 0480 Serial - ok
17:20:40.0898 0480 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:20:40.0913 0480 sermouse - ok
17:20:40.0944 0480 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:20:40.0976 0480 SessionEnv - ok
17:20:41.0007 0480 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:20:41.0022 0480 sffdisk - ok
17:20:41.0022 0480 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:20:41.0038 0480 sffp_mmc - ok
17:20:41.0054 0480 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:20:41.0069 0480 sffp_sd - ok
17:20:41.0069 0480 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:20:41.0085 0480 sfloppy - ok
17:20:41.0116 0480 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:20:41.0147 0480 SharedAccess - ok
17:20:41.0178 0480 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:20:41.0210 0480 ShellHWDetection - ok
17:20:41.0256 0480 [ 850E17E9EB94D59A54BD6FA33A2CFA99 ] Simply Accounting Database Connection Manager C:\Program Files (x86)\Winsim\ConnectionManager\SimplyConnectionManager.exe
17:20:41.0256 0480 Simply Accounting Database Connection Manager - ok
17:20:41.0288 0480 [ 50765E0C0B94257CED940592AAD02B68 ] Simply Accounting Transaction Manager 2010 - CDN C:\Program Files (x86)\Winsim\TransactionManager2010 - CDN\Sage_SA.TransactionManager.exe
17:20:41.0288 0480 Simply Accounting Transaction Manager 2010 - CDN - ok
17:20:41.0319 0480 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:20:41.0334 0480 SiSRaid2 - ok
17:20:41.0350 0480 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:20:41.0350 0480 SiSRaid4 - ok
17:20:41.0428 0480 [ 875B04A71869D34A415CC8B4D4673EC4 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:20:41.0428 0480 SkypeUpdate - ok
17:20:41.0459 0480 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:20:41.0492 0480 Smb - ok
17:20:41.0524 0480 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:20:41.0524 0480 SNMPTRAP - ok
17:20:41.0570 0480 [ 47F99A3FF5900F70ADCF043580E595CB ] SNTUSB64 C:\Windows\system32\DRIVERS\SNTUSB64.SYS
17:20:41.0586 0480 SNTUSB64 - ok
17:20:41.0586 0480 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:20:41.0602 0480 spldr - ok
17:20:41.0633 0480 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:20:41.0648 0480 Spooler - ok
17:20:41.0726 0480 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:20:41.0789 0480 sppsvc - ok
17:20:41.0804 0480 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:20:41.0836 0480 sppuinotify - ok
17:20:41.0867 0480 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:20:41.0882 0480 srv - ok
17:20:41.0914 0480 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:20:41.0929 0480 srv2 - ok
17:20:41.0945 0480 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:20:41.0960 0480 srvnet - ok
17:20:41.0976 0480 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:20:42.0007 0480 SSDPSRV - ok
17:20:42.0023 0480 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:20:42.0054 0480 SstpSvc - ok
17:20:42.0085 0480 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:20:42.0085 0480 stexstor - ok
17:20:42.0116 0480 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
17:20:42.0116 0480 StillCam - ok
17:20:42.0148 0480 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:20:42.0163 0480 stisvc - ok
17:20:42.0194 0480 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:20:42.0210 0480 swenum - ok
17:20:42.0226 0480 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:20:42.0257 0480 swprv - ok
17:20:42.0319 0480 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:20:42.0350 0480 SysMain - ok
17:20:42.0366 0480 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:20:42.0382 0480 TabletInputService - ok
17:20:42.0397 0480 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:20:42.0428 0480 TapiSrv - ok
17:20:42.0444 0480 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:20:42.0475 0480 TBS - ok
17:20:42.0522 0480 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:20:42.0553 0480 Tcpip - ok
17:20:42.0600 0480 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:20:42.0631 0480 TCPIP6 - ok
17:20:42.0662 0480 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:20:42.0662 0480 tcpipreg - ok
17:20:42.0678 0480 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:20:42.0694 0480 TDPIPE - ok
17:20:42.0725 0480 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:20:42.0725 0480 TDTCP - ok
17:20:42.0740 0480 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:20:42.0772 0480 tdx - ok
17:20:42.0787 0480 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:20:42.0787 0480 TermDD - ok
17:20:42.0818 0480 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:20:42.0850 0480 TermService - ok
17:20:42.0865 0480 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:20:42.0881 0480 Themes - ok
17:20:42.0912 0480 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:20:42.0943 0480 THREADORDER - ok
17:20:42.0943 0480 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:20:42.0990 0480 TrkWks - ok
17:20:43.0021 0480 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:20:43.0052 0480 TrustedInstaller - ok
17:20:43.0084 0480 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:20:43.0099 0480 tssecsrv - ok
17:20:43.0130 0480 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:20:43.0146 0480 TsUsbFlt - ok
17:20:43.0177 0480 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:20:43.0208 0480 tunnel - ok
17:20:43.0302 0480 [ 7694DCA064D0B7E0D1A6972BB9C71B39 ] tvnserver C:\Users\Lucille\AppData\Local\CrossLoop\tvnserver.exe
17:20:43.0318 0480 tvnserver ( UnsignedFile.Multi.Generic ) - warning
17:20:43.0318 0480 tvnserver - detected UnsignedFile.Multi.Generic (1)
17:20:43.0333 0480 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:20:43.0349 0480 uagp35 - ok
17:20:43.0380 0480 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:20:43.0411 0480 udfs - ok
17:20:43.0427 0480 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:20:43.0442 0480 UI0Detect - ok
17:20:43.0489 0480 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:20:43.0489 0480 uliagpkx - ok
17:20:43.0536 0480 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:20:43.0552 0480 umbus - ok
17:20:43.0567 0480 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:20:43.0567 0480 UmPass - ok
17:20:43.0598 0480 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:20:43.0630 0480 upnphost - ok
17:20:43.0661 0480 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:20:43.0676 0480 USBAAPL64 - ok
17:20:43.0708 0480 [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:20:43.0723 0480 usbaudio - ok
17:20:43.0754 0480 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:20:43.0754 0480 usbccgp - ok
17:20:43.0786 0480 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:20:43.0801 0480 usbcir - ok
17:20:43.0817 0480 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:20:43.0832 0480 usbehci - ok
17:20:43.0848 0480 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:20:43.0864 0480 usbhub - ok
17:20:43.0879 0480 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:20:43.0879 0480 usbohci - ok
17:20:43.0910 0480 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:20:43.0926 0480 usbprint - ok
17:20:43.0942 0480 [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:20:43.0957 0480 usbscan - ok
17:20:43.0957 0480 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:20:43.0973 0480 USBSTOR - ok
17:20:44.0004 0480 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:20:44.0020 0480 usbuhci - ok
17:20:44.0051 0480 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
17:20:44.0051 0480 usb_rndisx - ok
17:20:44.0066 0480 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:20:44.0098 0480 UxSms - ok
17:20:44.0113 0480 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
17:20:44.0129 0480 VaultSvc - ok
17:20:44.0144 0480 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:20:44.0144 0480 vdrvroot - ok
17:20:44.0176 0480 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:20:44.0222 0480 vds - ok
17:20:44.0238 0480 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:20:44.0254 0480 vga - ok
17:20:44.0269 0480 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:20:44.0300 0480 VgaSave - ok
17:20:44.0332 0480 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:20:44.0347 0480 vhdmp - ok
17:20:44.0363 0480 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:20:44.0378 0480 viaide - ok
17:20:44.0394 0480 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:20:44.0410 0480 volmgr - ok
17:20:44.0441 0480 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:20:44.0456 0480 volmgrx - ok
17:20:44.0472 0480 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:20:44.0488 0480 volsnap - ok
17:20:44.0503 0480 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:20:44.0519 0480 vsmraid - ok
17:20:44.0566 0480 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:20:44.0612 0480 VSS - ok
17:20:44.0628 0480 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:20:44.0644 0480 vwifibus - ok
17:20:44.0659 0480 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:20:44.0690 0480 vwififlt - ok
17:20:44.0690 0480 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:20:44.0706 0480 vwifimp - ok
17:20:44.0737 0480 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:20:44.0768 0480 W32Time - ok
17:20:44.0784 0480 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:20:44.0800 0480 WacomPen - ok
17:20:44.0815 0480 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:20:44.0846 0480 WANARP - ok
17:20:44.0862 0480 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:20:44.0893 0480 Wanarpv6 - ok
17:20:44.0940 0480 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:20:44.0956 0480 WatAdminSvc - ok
17:20:45.0002 0480 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:20:45.0018 0480 wbengine - ok
17:20:45.0049 0480 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:20:45.0065 0480 WbioSrvc - ok
17:20:45.0080 0480 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
17:20:45.0096 0480 WcesComm - ok
17:20:45.0127 0480 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:20:45.0143 0480 wcncsvc - ok
17:20:45.0158 0480 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:20:45.0174 0480 WcsPlugInService - ok
17:20:45.0190 0480 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:20:45.0205 0480 Wd - ok
17:20:45.0236 0480 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:20:45.0252 0480 Wdf01000 - ok
17:20:45.0268 0480 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:20:45.0283 0480 WdiServiceHost - ok
17:20:45.0283 0480 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:20:45.0299 0480 WdiSystemHost - ok
17:20:45.0314 0480 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient C:\Windows\System32\webclnt.dll
17:20:45.0330 0480 WebClient - ok
17:20:45.0346 0480 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:20:45.0377 0480 Wecsvc - ok
17:20:45.0392 0480 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:20:45.0424 0480 wercplsupport - ok
17:20:45.0439 0480 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:20:45.0470 0480 WerSvc - ok
17:20:45.0502 0480 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:20:45.0533 0480 WfpLwf - ok
17:20:45.0533 0480 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:20:45.0548 0480 WIMMount - ok
17:20:45.0564 0480 WinDefend - ok
17:20:45.0580 0480 WinHttpAutoProxySvc - ok
17:20:45.0611 0480 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:20:45.0642 0480 Winmgmt - ok
17:20:45.0704 0480 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:20:45.0751 0480 WinRM - ok
17:20:45.0782 0480 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:20:45.0798 0480 WinUsb - ok
17:20:45.0829 0480 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:20:45.0845 0480 Wlansvc - ok
17:20:45.0954 0480 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:20:45.0985 0480 wlidsvc - ok
17:20:46.0001 0480 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:20:46.0016 0480 WmiAcpi - ok
17:20:46.0032 0480 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:20:46.0048 0480 wmiApSrv - ok
17:20:46.0048 0480 WMPNetworkSvc - ok
17:20:46.0079 0480 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:20:46.0079 0480 WPCSvc - ok
17:20:46.0110 0480 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:20:46.0126 0480 WPDBusEnum - ok
17:20:46.0141 0480 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:20:46.0172 0480 ws2ifsl - ok
17:20:46.0188 0480 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:20:46.0204 0480 wscsvc - ok
17:20:46.0204 0480 WSearch - ok
17:20:46.0266 0480 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:20:46.0313 0480 wuauserv - ok
17:20:46.0360 0480 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:20:46.0360 0480 WudfPf - ok
17:20:46.0391 0480 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:20:46.0406 0480 WUDFRd - ok
17:20:46.0406 0480 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:20:46.0422 0480 wudfsvc - ok
17:20:46.0438 0480 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
17:20:46.0453 0480 WwanSvc - ok
17:20:46.0484 0480 ================ Scan global ===============================
17:20:46.0500 0480 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:20:46.0531 0480 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
17:20:46.0531 0480 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
17:20:46.0562 0480 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:20:46.0578 0480 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:20:46.0578 0480 [Global] - ok
17:20:46.0578 0480 ================ Scan MBR ==================================
17:20:46.0594 0480 [ 950F9D0D77B712E1F4311734A7C7F1E2 ] \Device\Harddisk0\DR0
17:20:46.0796 0480 \Device\Harddisk0\DR0 - ok
17:20:46.0796 0480 ================ Scan VBR ==================================
17:20:46.0812 0480 [ CC4B9CF1634C197BD3C8DDBC994D9F2D ] \Device\Harddisk0\DR0\Partition1
17:20:46.0828 0480 \Device\Harddisk0\DR0\Partition1 - ok
17:20:46.0828 0480 [ 6ADC665E021D72681CB0759BB509EC68 ] \Device\Harddisk0\DR0\Partition2
17:20:46.0828 0480 \Device\Harddisk0\DR0\Partition2 - ok
17:20:46.0843 0480 [ BD0528DE3CC389809D120A565C83C8C6 ] \Device\Harddisk0\DR0\Partition3
17:20:46.0859 0480 \Device\Harddisk0\DR0\Partition3 - ok
17:20:46.0859 0480 ================ Scan active images ========================
17:20:46.0859 0480 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:20:46.0859 0480 C:\Windows\System32\drivers\crashdmp.sys - ok
17:20:46.0859 0480 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:20:46.0859 0480 C:\Windows\System32\drivers\dumpfve.sys - ok
17:20:46.0859 0480 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
17:20:46.0859 0480 C:\Windows\System32\drivers\iaStor.sys - ok
17:20:46.0874 0480 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
17:20:46.0874 0480 C:\Windows\System32\drivers\cdrom.sys - ok
17:20:46.0874 0480 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:20:46.0874 0480 C:\Windows\System32\drivers\beep.sys - ok
17:20:46.0874 0480 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:20:46.0874 0480 C:\Windows\System32\drivers\null.sys - ok
17:20:46.0874 0480 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
17:20:46.0874 0480 C:\Windows\System32\drivers\RDPCDD.sys - ok
17:20:46.0890 0480 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:20:46.0890 0480 C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:20:46.0890 0480 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:20:46.0890 0480 C:\Windows\System32\drivers\vga.sys - ok
17:20:46.0890 0480 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:20:46.0890 0480 C:\Windows\System32\drivers\videoprt.sys - ok
17:20:46.0906 0480 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:20:46.0906 0480 C:\Windows\System32\drivers\watchdog.sys - ok
17:20:46.0906 0480 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:20:46.0906 0480 C:\Windows\System32\drivers\msfs.sys - ok
17:20:46.0906 0480 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:20:46.0906 0480 C:\Windows\System32\drivers\npfs.sys - ok
17:20:46.0906 0480 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
17:20:46.0906 0480 C:\Windows\System32\drivers\RDPREFMP.sys - ok
17:20:46.0921 0480 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
17:20:46.0921 0480 C:\Windows\System32\drivers\tdi.sys - ok
17:20:46.0921 0480 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
17:20:46.0921 0480 C:\Windows\System32\drivers\tdx.sys - ok
17:20:46.0921 0480 [ 79059559E89D06E8B80CE2944BE20228 ] C:\Windows\System32\drivers\afd.sys
17:20:46.0921 0480 C:\Windows\System32\drivers\afd.sys - ok
17:20:46.0921 0480 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
17:20:46.0921 0480 C:\Windows\System32\drivers\netbt.sys - ok
17:20:46.0937 0480 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:20:46.0937 0480 C:\Windows\System32\drivers\wfplwf.sys - ok
17:20:46.0937 0480 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:20:46.0937 0480 C:\Windows\System32\drivers\netbios.sys - ok
17:20:46.0937 0480 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
17:20:46.0937 0480 C:\Windows\System32\drivers\pacer.sys - ok
17:20:46.0952 0480 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
17:20:46.0952 0480 C:\Windows\System32\drivers\termdd.sys - ok
17:20:46.0952 0480 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
17:20:46.0952 0480 C:\Windows\System32\drivers\vwififlt.sys - ok
17:20:46.0952 0480 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
17:20:46.0952 0480 C:\Windows\System32\drivers\wanarp.sys - ok
17:20:46.0952 0480 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:20:46.0952 0480 C:\Windows\System32\drivers\nsiproxy.sys - ok
17:20:46.0968 0480 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
17:20:46.0968 0480 C:\Windows\System32\drivers\rdbss.sys - ok
17:20:46.0968 0480 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
17:20:46.0968 0480 C:\Windows\System32\drivers\discache.sys - ok
17:20:46.0968 0480 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:20:46.0968 0480 C:\Windows\System32\drivers\mssmbios.sys - ok
17:20:46.0968 0480 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:20:46.0968 0480 C:\Windows\System32\drivers\blbdrive.sys - ok
17:20:46.0984 0480 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
17:20:46.0984 0480 C:\Windows\System32\drivers\dfsc.sys - ok
17:20:46.0984 0480 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
17:20:46.0984 0480 C:\Windows\System32\drivers\tunnel.sys - ok
17:20:46.0984 0480 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
17:20:46.0984 0480 C:\Windows\System32\drivers\intelppm.sys - ok
17:20:46.0999 0480 [ CAAAC014C5C56A69F710B5F1B836DE22 ] C:\Windows\System32\ntdll.dll
17:20:46.0999 0480 C:\Windows\System32\ntdll.dll - ok
17:20:46.0999 0480 [ F0970A4BC8395659C22BF53D0FADF16F ] C:\Windows\System32\smss.exe
17:20:46.0999 0480 C:\Windows\System32\smss.exe - ok
17:20:46.0999 0480 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
17:20:46.0999 0480 C:\Windows\System32\autochk.exe - ok
17:20:46.0999 0480 [ 29623DB7E23B65F0C50CA19D7E0DFD03 ] C:\Windows\System32\drivers\atikmdag.sys
17:20:46.0999 0480 C:\Windows\System32\drivers\atikmdag.sys - ok
17:20:47.0015 0480 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:20:47.0015 0480 C:\Windows\System32\difxapi.dll - ok
17:20:47.0015 0480 [ AD662B34B161198B9D66A564EDDA7D43 ] C:\Windows\System32\shell32.dll
17:20:47.0015 0480 C:\Windows\System32\shell32.dll - ok
17:20:47.0015 0480 [ 6300AD525D639CECBB3D144B6D7B30F9 ] C:\Windows\System32\iertutil.dll
17:20:47.0015 0480 C:\Windows\System32\iertutil.dll - ok
17:20:47.0030 0480 [ 796B47A4B82EF1C39F13435B88834C48 ] C:\Windows\System32\lpk.dll
17:20:47.0030 0480 C:\Windows\System32\lpk.dll - ok
17:20:47.0030 0480 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
17:20:47.0030 0480 C:\Windows\System32\Wldap32.dll - ok
17:20:47.0030 0480 [ 26036E228D2467DE6975AD819C22C043 ] C:\Windows\System32\rpcrt4.dll
17:20:47.0030 0480 C:\Windows\System32\rpcrt4.dll - ok
17:20:47.0030 0480 [ 56325BB1FF19F2A5AC8713756AC41140 ] C:\Windows\System32\gdi32.dll
17:20:47.0030 0480 C:\Windows\System32\gdi32.dll - ok
17:20:47.0046 0480 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:20:47.0046 0480 C:\Windows\System32\imm32.dll - ok
17:20:47.0046 0480 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
17:20:47.0046 0480 C:\Windows\System32\ole32.dll - ok
17:20:47.0046 0480 [ 63A580C88CFAF72A92550940054569EF ] C:\Windows\System32\advapi32.dll
17:20:47.0046 0480 C:\Windows\System32\advapi32.dll - ok
17:20:47.0046 0480 [ 22874047B810B5B174C68ACD7C0B6510 ] C:\Windows\System32\urlmon.dll
17:20:47.0046 0480 C:\Windows\System32\urlmon.dll - ok
17:20:47.0062 0480 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
17:20:47.0062 0480 C:\Windows\System32\msvcrt.dll - ok
17:20:47.0062 0480 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:20:47.0062 0480 C:\Windows\System32\clbcatq.dll - ok
17:20:47.0062 0480 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
17:20:47.0062 0480 C:\Windows\System32\user32.dll - ok
17:20:47.0077 0480 [ B4F29F65AD3114051F01E9403346047F ] C:\Windows\System32\imagehlp.dll
17:20:47.0077 0480 C:\Windows\System32\imagehlp.dll - ok
17:20:47.0077 0480 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:20:47.0077 0480 C:\Windows\System32\sechost.dll - ok
17:20:47.0077 0480 [ D8973E71F1B35CD3F3DEA7C12D49D0F0 ] C:\Windows\System32\kernel32.dll
17:20:47.0077 0480 C:\Windows\System32\kernel32.dll - ok
17:20:47.0077 0480 [ 263B6E451526A90FF8B1CEC759F22956 ] C:\Windows\System32\wininet.dll
17:20:47.0077 0480 C:\Windows\System32\wininet.dll - ok
17:20:47.0093 0480 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:20:47.0093 0480 C:\Windows\System32\msctf.dll - ok
17:20:47.0093 0480 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:20:47.0093 0480 C:\Windows\System32\nsi.dll - ok
17:20:47.0093 0480 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
17:20:47.0093 0480 C:\Windows\System32\shlwapi.dll - ok
17:20:47.0108 0480 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
17:20:47.0108 0480 C:\Windows\System32\ws2_32.dll - ok
17:20:47.0108 0480 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:20:47.0108 0480 C:\Windows\System32\normaliz.dll - ok
17:20:47.0108 0480 [ 88612F1CE3BF42256913BF6E61C70D52 ] C:\Windows\System32\drivers\dxgkrnl.sys
17:20:47.0108 0480 C:\Windows\System32\drivers\dxgkrnl.sys - ok
17:20:47.0108 0480 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:20:47.0108 0480 C:\Windows\System32\psapi.dll - ok
17:20:47.0124 0480 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
17:20:47.0124 0480 C:\Windows\System32\setupapi.dll - ok
17:20:47.0124 0480 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
17:20:47.0124 0480 C:\Windows\System32\oleaut32.dll - ok
17:20:47.0124 0480 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
17:20:47.0124 0480 C:\Windows\System32\comdlg32.dll - ok
17:20:47.0124 0480 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
17:20:47.0124 0480 C:\Windows\System32\drivers\dxgmms1.sys - ok
17:20:47.0140 0480 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
17:20:47.0140 0480 C:\Windows\System32\drivers\hdaudbus.sys - ok
17:20:47.0140 0480 [ 12FEB33791920678F8433701C822BCFD ] C:\Windows\System32\drivers\usbport.sys
17:20:47.0140 0480 C:\Windows\System32\drivers\usbport.sys - ok
17:20:47.0140 0480 [ DD253AFC3BC6CBA412342DE60C3647F3 ] C:\Windows\System32\drivers\usbuhci.sys
17:20:47.0140 0480 C:\Windows\System32\drivers\usbuhci.sys - ok
17:20:47.0155 0480 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
17:20:47.0155 0480 C:\Windows\System32\drivers\1394ohci.sys - ok
17:20:47.0155 0480 [ 91296F0B2653281B2F11E0FCE56AA427 ] C:\Windows\System32\drivers\Rt64win7.sys
17:20:47.0155 0480 C:\Windows\System32\drivers\Rt64win7.sys - ok
17:20:47.0155 0480 [ 18A85013A3E0F7E1755365D287443965 ] C:\Windows\System32\drivers\usbehci.sys
17:20:47.0155 0480 C:\Windows\System32\drivers\usbehci.sys - ok
17:20:47.0155 0480 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:20:47.0155 0480 C:\Windows\System32\drivers\agilevpn.sys - ok
17:20:47.0171 0480 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
17:20:47.0171 0480 C:\Windows\System32\drivers\CompositeBus.sys - ok
17:20:47.0171 0480 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
17:20:47.0171 0480 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
17:20:47.0171 0480 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:20:47.0171 0480 C:\Windows\System32\drivers\ndistapi.sys - ok
17:20:47.0186 0480 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
17:20:47.0186 0480 C:\Windows\System32\drivers\rasl2tp.sys - ok
17:20:47.0186 0480 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
17:20:47.0186 0480 C:\Windows\System32\drivers\ndiswan.sys - ok
17:20:47.0186 0480 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:20:47.0186 0480 C:\Windows\System32\drivers\raspppoe.sys - ok
17:20:47.0186 0480 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
17:20:47.0186 0480 C:\Windows\System32\drivers\raspptp.sys - ok
17:20:47.0202 0480 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:20:47.0202 0480 C:\Windows\System32\drivers\rassstp.sys - ok
17:20:47.0202 0480 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:20:47.0202 0480 C:\Windows\System32\drivers\kbdclass.sys - ok
17:20:47.0202 0480 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:20:47.0202 0480 C:\Windows\System32\drivers\mouclass.sys - ok
17:20:47.0202 0480 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
17:20:47.0202 0480 C:\Windows\System32\usp10.dll - ok
17:20:47.0218 0480 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
17:20:47.0218 0480 C:\Windows\System32\drivers\ks.sys - ok
17:20:47.0218 0480 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:20:47.0218 0480 C:\Windows\System32\drivers\swenum.sys - ok
17:20:47.0218 0480 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
17:20:47.0218 0480 C:\Windows\System32\drivers\umbus.sys - ok
17:20:47.0233 0480 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
17:20:47.0233 0480 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
17:20:47.0233 0480 [ 780F6ECC4F55D76C9730E6B6C9B31913 ] C:\Windows\System32\crypt32.dll
17:20:47.0233 0480 C:\Windows\System32\crypt32.dll - ok
17:20:47.0233 0480 [ 8D1196CFBB223621F2C67D45710F25BA ] C:\Windows\System32\drivers\usbhub.sys
17:20:47.0233 0480 C:\Windows\System32\drivers\usbhub.sys - ok
17:20:47.0233 0480 [ 959041D7014C97133D859B45BCA0FC58 ] C:\Windows\System32\wintrust.dll
17:20:47.0233 0480 C:\Windows\System32\wintrust.dll - ok
17:20:47.0249 0480 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:20:47.0249 0480 C:\Windows\System32\devobj.dll - ok
17:20:47.0249 0480 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
17:20:47.0249 0480 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
17:20:47.0249 0480 [ 9028D1621C43DF8DFBD1C76860412A11 ] C:\Windows\System32\comctl32.dll
17:20:47.0249 0480 C:\Windows\System32\comctl32.dll - ok
17:20:47.0264 0480 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
17:20:47.0264 0480 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
17:20:47.0264 0480 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
17:20:47.0264 0480 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
17:20:47.0264 0480 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
17:20:47.0264 0480 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
17:20:47.0264 0480 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
17:20:47.0264 0480 C:\Windows\System32\cfgmgr32.dll - ok
17:20:47.0280 0480 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
17:20:47.0280 0480 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
17:20:47.0280 0480 [ B22C00ED0491FD7B8803D7DDE2849F4C ] C:\Windows\System32\KernelBase.dll
17:20:47.0280 0480 C:\Windows\System32\KernelBase.dll - ok
17:20:47.0280 0480 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
17:20:47.0280 0480 C:\Windows\System32\msasn1.dll - ok
17:20:47.0296 0480 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
17:20:47.0296 0480 C:\Windows\System32\drivers\ndproxy.sys - ok
17:20:47.0296 0480 [ E0D3CD5841E5C7BE7B94BA946AF1E498 ] C:\Windows\System32\drivers\drmk.sys
17:20:47.0296 0480 C:\Windows\System32\drivers\drmk.sys - ok
17:20:47.0296 0480 [ 04A5815DF7E8B037DF674D3CCACC0C31 ] C:\Windows\System32\drivers\AtiHdmi.sys
17:20:47.0296 0480 C:\Windows\System32\drivers\AtiHdmi.sys - ok
17:20:47.0296 0480 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
17:20:47.0296 0480 C:\Windows\System32\drivers\ksthunk.sys - ok
17:20:47.0311 0480 [ 1E0B4CBBA91C6B041A14ECC2186F7E24 ] C:\Windows\System32\drivers\portcls.sys
17:20:47.0311 0480 C:\Windows\System32\drivers\portcls.sys - ok
17:20:47.0311 0480 [ 31C32BC56D85D109EBB0C526BE5CACA7 ] C:\Windows\System32\drivers\RTKVHD64.sys
17:20:47.0311 0480 C:\Windows\System32\drivers\RTKVHD64.sys - ok
17:20:47.0311 0480 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:20:47.0311 0480 C:\Windows\SysWOW64\normaliz.dll - ok
17:20:47.0311 0480 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:20:47.0327 0480 C:\Windows\System32\drivers\dxapi.sys - ok
17:20:47.0327 0480 [ F2BF71FCEAB8FB8A691408C478E2FF4C ] C:\Windows\System32\win32k.sys
17:20:47.0327 0480 C:\Windows\System32\win32k.sys - ok
17:20:47.0327 0480 [ 216BABD555BC550952320EEA89C25DDF ] C:\Windows\System32\csrsrv.dll
17:20:47.0327 0480 C:\Windows\System32\csrsrv.dll - ok
17:20:47.0327 0480 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:20:47.0327 0480 C:\Windows\System32\csrss.exe - ok
17:20:47.0342 0480 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:20:47.0342 0480 C:\Windows\System32\basesrv.dll - ok
17:20:47.0342 0480 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\System32\winsrv.dll
17:20:47.0342 0480 C:\Windows\System32\winsrv.dll - ok
17:20:47.0342 0480 [ DCA68B0943D6FA415F0C56C92158A83A ] C:\Windows\System32\drivers\usbccgp.sys
17:20:47.0342 0480 C:\Windows\System32\drivers\usbccgp.sys - ok
17:20:47.0342 0480 [ FFA06EF43987ED0DD42AD59B260C0C78 ] C:\Windows\System32\drivers\usbd.sys
17:20:47.0342 0480 C:\Windows\System32\drivers\usbd.sys - ok
17:20:47.0358 0480 [ 856E76B3641746ABBC2946BED1372098 ] C:\Windows\System32\drivers\hidparse.sys
17:20:47.0358 0480 C:\Windows\System32\drivers\hidparse.sys - ok
17:20:47.0358 0480 [ 597C3699384E53CC59587ED50CCE5CA2 ] C:\Windows\System32\drivers\hidclass.sys
17:20:47.0358 0480 C:\Windows\System32\drivers\hidclass.sys - ok
17:20:47.0358 0480 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
17:20:47.0358 0480 C:\Windows\System32\drivers\hidusb.sys - ok
17:20:47.0374 0480 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
17:20:47.0374 0480 C:\Windows\System32\drivers\kbdhid.sys - ok
17:20:47.0374 0480 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
17:20:47.0374 0480 C:\Windows\System32\drivers\USBSTOR.SYS - ok
17:20:47.0374 0480 [ 76E02DB615A03801D698199A2BC4A06A ] C:\Windows\System32\drivers\dc3d.sys
17:20:47.0374 0480 C:\Windows\System32\drivers\dc3d.sys - ok
17:20:47.0374 0480 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
17:20:47.0374 0480 C:\Windows\System32\drivers\mouhid.sys - ok
17:20:47.0389 0480 [ B8D8EC78B0F9ED8E220506181274F3D3 ] C:\Windows\System32\drivers\point64.sys
17:20:47.0389 0480 C:\Windows\System32\drivers\point64.sys - ok
17:20:47.0389 0480 [ 883269C1CA478658F1334F3C39B0C7AC ] C:\Windows\System32\drivers\netr28ux.sys
17:20:47.0389 0480 C:\Windows\System32\drivers\netr28ux.sys - ok
17:20:47.0389 0480 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
17:20:47.0389 0480 C:\Windows\System32\drivers\vwifibus.sys - ok
17:20:47.0405 0480 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
17:20:47.0405 0480 C:\Windows\System32\drivers\monitor.sys - ok
17:20:47.0405 0480 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:20:47.0405 0480 C:\Windows\System32\tsddd.dll - ok
17:20:47.0405 0480 [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
17:20:47.0405 0480 C:\Windows\System32\drivers\usbprint.sys - ok
17:20:47.0405 0480 [ 9661DA76B4531B2DA272ECCE25A8AF24 ] C:\Windows\System32\drivers\usbscan.sys
17:20:47.0405 0480 C:\Windows\System32\drivers\usbscan.sys - ok
17:20:47.0420 0480 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:20:47.0420 0480 C:\Windows\System32\sxssrv.dll - ok
17:20:47.0420 0480 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:20:47.0420 0480 C:\Windows\System32\wininit.exe - ok
17:20:47.0420 0480 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
17:20:47.0420 0480 C:\Windows\System32\cdd.dll - ok
17:20:47.0420 0480 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:20:47.0420 0480 C:\Windows\System32\profapi.dll - ok
17:20:47.0436 0480 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
17:20:47.0436 0480 C:\Windows\System32\RpcRtRemote.dll - ok
17:20:47.0436 0480 [ 0F5CD07A098D6A5989019CC377722989 ] C:\Windows\System32\KBDCA.DLL
17:20:47.0436 0480 C:\Windows\System32\KBDCA.DLL - ok
17:20:47.0436 0480 [ 283C64A094A763C2F3DE2C926AEAE8CD ] C:\Windows\System32\KBDCAN.DLL
17:20:47.0436 0480 C:\Windows\System32\KBDCAN.DLL - ok
17:20:47.0452 0480 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
17:20:47.0452 0480 C:\Windows\System32\KBDUS.DLL - ok
17:20:47.0452 0480 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
17:20:47.0452 0480 C:\Windows\System32\sxs.dll - ok
17:20:47.0452 0480 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:20:47.0452 0480 C:\Windows\System32\WlS0WndH.dll - ok
17:20:47.0452 0480 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:20:47.0452 0480 C:\Windows\System32\cryptbase.dll - ok
17:20:47.0467 0480 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
17:20:47.0467 0480 C:\Windows\System32\apphelp.dll - ok
17:20:47.0467 0480 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
17:20:47.0467 0480 C:\Windows\System32\winlogon.exe - ok
17:20:47.0467 0480 [ 4D71227301DD8D09097B9E4CC6527E5A ] C:\Windows\System32\lsass.exe
17:20:47.0467 0480 C:\Windows\System32\lsass.exe - ok
17:20:47.0467 0480 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
17:20:47.0467 0480 C:\Windows\System32\lsm.exe - ok
17:20:47.0483 0480 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:20:47.0483 0480 C:\Windows\System32\services.exe - ok
17:20:47.0483 0480 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
17:20:47.0483 0480 C:\Windows\System32\winsta.dll - ok
17:20:47.0483 0480 [ 086F906B1D30C0A5D35FE0F6362DAB21 ] C:\Windows\System32\lsasrv.dll
17:20:47.0483 0480 C:\Windows\System32\lsasrv.dll - ok
17:20:47.0498 0480 [ B08EA91C774AA734E0B9881F85CD9F42 ] C:\Windows\System32\sspicli.dll
17:20:47.0498 0480 C:\Windows\System32\sspicli.dll - ok
17:20:47.0498 0480 [ 7C46EC9CCDE6E793713FA01DB2EB918E ] C:\Windows\System32\sspisrv.dll
17:20:47.0498 0480 C:\Windows\System32\sspisrv.dll - ok
17:20:47.0498 0480 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
17:20:47.0498 0480 C:\Windows\System32\scesrv.dll - ok
17:20:47.0498 0480 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:20:47.0498 0480 C:\Windows\System32\scext.dll - ok
17:20:47.0514 0480 [ 208EAAFF40DA400190AA0605C797BEA2 ] C:\Windows\System32\secur32.dll
17:20:47.0514 0480 C:\Windows\System32\secur32.dll - ok
17:20:47.0514 0480 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:20:47.0514 0480 C:\Windows\System32\sysntfy.dll - ok
17:20:47.0514 0480 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:20:47.0514 0480 C:\Windows\System32\wmsgapi.dll - ok
17:20:47.0514 0480 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
17:20:47.0514 0480 C:\Windows\System32\samsrv.dll - ok
17:20:47.0530 0480 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
17:20:47.0530 0480 C:\Windows\System32\srvcli.dll - ok
17:20:47.0530 0480 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:20:47.0530 0480 C:\Windows\System32\cryptdll.dll - ok
17:20:47.0530 0480 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:20:47.0530 0480 C:\Windows\System32\wevtapi.dll - ok
17:20:47.0530 0480 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:20:47.0530 0480 C:\Windows\System32\authz.dll - ok
17:20:47.0545 0480 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:20:47.0545 0480 C:\Windows\System32\cngaudit.dll - ok
17:20:47.0545 0480 [ 747B9BA5412422F27934CB21131F0A3E ] C:\Windows\System32\ncrypt.dll
17:20:47.0545 0480 C:\Windows\System32\ncrypt.dll - ok
17:20:47.0545 0480 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:20:47.0545 0480 C:\Windows\System32\bcrypt.dll - ok
17:20:47.0561 0480 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:20:47.0561 0480 C:\Windows\System32\msprivs.dll - ok
17:20:47.0561 0480 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
17:20:47.0561 0480 C:\Windows\System32\netjoin.dll - ok
17:20:47.0561 0480 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
17:20:47.0561 0480 C:\Windows\System32\kerberos.dll - ok
17:20:47.0561 0480 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:20:47.0561 0480 C:\Windows\System32\negoexts.dll - ok
17:20:47.0576 0480 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:20:47.0576 0480 C:\Windows\System32\cryptsp.dll - ok
17:20:47.0576 0480 [ E1BB958681BE311E7CFF06CFEC5F1F2B ] C:\Windows\System32\atmfd.dll
17:20:47.0576 0480 C:\Windows\System32\atmfd.dll - ok
17:20:47.0576 0480 [ 9A9F9F1A77D6A80EE28B57664F00013E ] C:\Windows\System32\mswsock.dll
17:20:47.0576 0480 C:\Windows\System32\mswsock.dll - ok
17:20:47.0576 0480 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
17:20:47.0576 0480 C:\Windows\System32\msv1_0.dll - ok
17:20:47.0592 0480 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:20:47.0592 0480 C:\Windows\System32\wship6.dll - ok
17:20:47.0592 0480 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
17:20:47.0592 0480 C:\Windows\System32\netlogon.dll - ok
17:20:47.0592 0480 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
17:20:47.0592 0480 C:\Windows\System32\dnsapi.dll - ok
17:20:47.0608 0480 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
17:20:47.0608 0480 C:\Windows\System32\logoncli.dll - ok
17:20:47.0608 0480 [ 31FFED18C7B836CEC1B559347E32E151 ] C:\Windows\System32\schannel.dll
17:20:47.0608 0480 C:\Windows\System32\schannel.dll - ok
17:20:47.0608 0480 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:20:47.0608 0480 C:\Windows\System32\wdigest.dll - ok
17:20:47.0608 0480 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:20:47.0608 0480 C:\Windows\System32\rsaenh.dll - ok
17:20:47.0623 0480 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
17:20:47.0623 0480 C:\Windows\System32\TSpkg.dll - ok
17:20:47.0623 0480 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:20:47.0623 0480 C:\Windows\System32\pku2u.dll - ok
17:20:47.0623 0480 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
17:20:47.0623 0480 C:\Windows\System32\bcryptprimitives.dll - ok
17:20:47.0623 0480 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
17:20:47.0623 0480 C:\Windows\System32\LIVESSP.DLL - ok
17:20:47.0639 0480 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
17:20:47.0639 0480 C:\Windows\System32\credssp.dll - ok
17:20:47.0639 0480 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:20:47.0639 0480 C:\Windows\System32\efslsaext.dll - ok
17:20:47.0639 0480 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
17:20:47.0639 0480 C:\Windows\System32\scecli.dll - ok
17:20:47.0654 0480 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:20:47.0654 0480 C:\Windows\System32\ubpm.dll - ok
17:20:47.0654 0480 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:20:47.0654 0480 C:\Windows\System32\svchost.exe - ok
17:20:47.0654 0480 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
17:20:47.0654 0480 C:\Windows\System32\umpnpmgr.dll - ok
17:20:47.0654 0480 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:20:47.0654 0480 C:\Windows\System32\SPInf.dll - ok
17:20:47.0670 0480 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:20:47.0670 0480 C:\Windows\System32\devrtl.dll - ok
17:20:47.0670 0480 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
17:20:47.0670 0480 C:\Windows\System32\userenv.dll - ok
17:20:47.0670 0480 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:20:47.0670 0480 C:\Windows\System32\gpapi.dll - ok
17:20:47.0686 0480 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:20:47.0686 0480 C:\Windows\System32\pcwum.dll - ok
17:20:47.0686 0480 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:20:47.0686 0480 C:\Windows\System32\umpo.dll - ok
17:20:47.0686 0480 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:20:47.0686 0480 C:\Windows\System32\powrprof.dll - ok
17:20:47.0686 0480 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
17:20:47.0686 0480 C:\Windows\System32\drivers\luafv.sys - ok
17:20:47.0701 0480 [ 0BB97D43299910CBFBA59C461B99B910 ] C:\Windows\System32\drivers\mbam.sys
17:20:47.0701 0480 C:\Windows\System32\drivers\mbam.sys - ok
17:20:47.0701 0480 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
17:20:47.0701 0480 C:\Windows\System32\rpcss.dll - ok
17:20:47.0701 0480 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:20:47.0701 0480 C:\Windows\System32\RpcEpMap.dll - ok
17:20:47.0701 0480 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:20:47.0701 0480 C:\Windows\System32\wshqos.dll - ok
17:20:47.0717 0480 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:20:47.0717 0480 C:\Windows\System32\WSHTCPIP.DLL - ok
17:20:47.0717 0480 [ 8077537B1600AF493E7EE1A7A5C90799 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
17:20:47.0717 0480 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
17:20:47.0717 0480 [ 7675E15D1B2180745E4DA4D26AAD7385 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
17:20:47.0717 0480 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
17:20:47.0732 0480 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:20:47.0732 0480 C:\Windows\System32\FirewallAPI.dll - ok
17:20:47.0732 0480 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
17:20:47.0732 0480 C:\Windows\System32\LogonUI.exe - ok
17:20:47.0732 0480 [ 34152997FB906895290E0199AC94B85F ] C:\Windows\System32\authui.dll
17:20:47.0732 0480 C:\Windows\System32\authui.dll - ok
17:20:47.0732 0480 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:20:47.0732 0480 C:\Windows\System32\version.dll - ok
17:20:47.0748 0480 [ 1C3588802EE33660E620A046A505A337 ] C:\Program Files\Microsoft Security Client\MpClient.dll
17:20:47.0748 0480 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
17:20:47.0748 0480 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:20:47.0748 0480 C:\Windows\System32\wtsapi32.dll - ok
17:20:47.0748 0480 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:20:47.0748 0480 C:\Windows\System32\ntmarta.dll - ok
17:20:47.0764 0480 [ D68424A84A531FFA39FD8574AFBA9EE4 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
17:20:47.0764 0480 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
17:20:47.0764 0480 [ 6290BA92CA8A23DB6BED83397CF97002 ] C:\Windows\System32\atiesrxx.exe
17:20:47.0764 0480 C:\Windows\System32\atiesrxx.exe - ok
17:20:47.0764 0480 [ 4E0BDA8060201CA9AB68545E68C1E029 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
17:20:47.0764 0480 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
17:20:47.0764 0480 [ E17D455BD1FC7E99994E5C19B1BC3A64 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
17:20:47.0764 0480 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
17:20:47.0779 0480 [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] C:\Windows\System32\drivers\MpFilter.sys
17:20:47.0779 0480 C:\Windows\System32\drivers\MpFilter.sys - ok
17:20:47.0779 0480 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
17:20:47.0779 0480 C:\Windows\System32\fltLib.dll - ok
17:20:47.0779 0480 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
17:20:47.0779 0480 C:\Windows\System32\wevtsvc.dll - ok
17:20:47.0779 0480 [ F30A16105C6C685390074EE69BC175B0 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpengine.dll
17:20:47.0779 0480 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpengine.dll - ok
17:20:47.0795 0480 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
17:20:47.0795 0480 C:\Windows\System32\audiosrv.dll - ok
17:20:47.0795 0480 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
17:20:47.0795 0480 C:\Windows\System32\FntCache.dll - ok
17:20:47.0795 0480 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:20:47.0795 0480 C:\Windows\System32\avrt.dll - ok
17:20:47.0810 0480 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
17:20:47.0810 0480 C:\Windows\System32\mmcss.dll - ok
17:20:47.0810 0480 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:20:47.0810 0480 C:\Windows\System32\MMDevAPI.dll - ok
17:20:47.0810 0480 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
17:20:47.0810 0480 C:\Windows\System32\propsys.dll - ok
17:20:47.0810 0480 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
17:20:47.0810 0480 C:\Windows\System32\audiodg.exe - ok
17:20:47.0826 0480 [ 009220ECDCCDB2A4423F2C8CDA2C223F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasbase.vdm
17:20:47.0826 0480 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasbase.vdm - ok
17:20:47.0826 0480 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
17:20:47.0826 0480 C:\Windows\System32\gpsvc.dll - ok
17:20:47.0826 0480 [ AE05083466DA1BBBB7D5057FB6CC23FE ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasdlta.vdm
17:20:47.0826 0480 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpasdlta.vdm - ok
17:20:47.0842 0480 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
17:20:47.0842 0480 C:\Windows\System32\cryptui.dll - ok
17:20:47.0842 0480 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
17:20:47.0842 0480 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
17:20:47.0842 0480 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:20:47.0842 0480 C:\Windows\System32\samlib.dll - ok
17:20:47.0842 0480 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
17:20:47.0842 0480 C:\Windows\System32\shacct.dll - ok
17:20:47.0857 0480 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:20:47.0857 0480 C:\Windows\System32\uxtheme.dll - ok
17:20:47.0857 0480 [ 18CAAF21CBA3EAEE17BBA5D3807F29B8 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll
17:20:47.0857 0480 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_2b25b14c71ebf230\GdiPlus.dll - ok
17:20:47.0857 0480 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:20:47.0857 0480 C:\Windows\System32\dui70.dll - ok
17:20:47.0857 0480 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:20:47.0857 0480 C:\Windows\System32\duser.dll - ok
17:20:47.0873 0480 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
17:20:47.0873 0480 C:\Windows\System32\profsvc.dll - ok
17:20:47.0873 0480 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:20:47.0873 0480 C:\Windows\System32\adtschema.dll - ok
17:20:47.0873 0480 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:20:47.0873 0480 C:\Windows\System32\atl.dll - ok
17:20:47.0888 0480 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
17:20:47.0888 0480 C:\Windows\System32\nlaapi.dll - ok
17:20:47.0888 0480 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
17:20:47.0888 0480 C:\Windows\System32\themeservice.dll - ok
17:20:47.0888 0480 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:20:47.0888 0480 C:\Windows\System32\hid.dll - ok
17:20:47.0888 0480 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
17:20:47.0888 0480 C:\Windows\System32\SndVolSSO.dll - ok
17:20:47.0904 0480 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:20:47.0904 0480 C:\Windows\System32\winmm.dll - ok
17:20:47.0904 0480 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:20:47.0904 0480 C:\Windows\System32\ksuser.dll - ok
17:20:47.0904 0480 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
17:20:47.0904 0480 C:\Windows\System32\wdmaud.drv - ok
17:20:47.0904 0480 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:20:47.0904 0480 C:\Windows\System32\dwmapi.dll - ok
17:20:47.0920 0480 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
17:20:47.0920 0480 C:\Windows\System32\xmllite.dll - ok
17:20:47.0920 0480 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:20:47.0920 0480 C:\Windows\System32\es.dll - ok
17:20:47.0920 0480 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
17:20:47.0920 0480 C:\Windows\System32\comres.dll - ok
17:20:47.0935 0480 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
17:20:47.0935 0480 C:\Windows\System32\radardt.dll - ok
17:20:47.0935 0480 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:20:47.0935 0480 C:\Windows\System32\wlansvc.dll - ok
17:20:47.0935 0480 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:20:47.0935 0480 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:20:47.0935 0480 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:20:47.0935 0480 C:\Windows\System32\dsrole.dll - ok
17:20:47.0951 0480 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
17:20:47.0951 0480 C:\Windows\System32\WUDFPlatform.dll - ok
17:20:47.0951 0480 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
17:20:47.0951 0480 C:\Windows\System32\drivers\fltMgr.sys - ok
17:20:47.0951 0480 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:20:47.0951 0480 C:\Windows\System32\PSHED.DLL - ok
17:20:47.0951 0480 [ 00000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavbase.vdm
17:20:47.0951 0480 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavbase.vdm - ok
17:20:47.0966 0480 [ FF5D53751D795B5A8CB0AA3E5155D432 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavdlta.vdm
17:20:47.0966 0480 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9734C8B7-996E-4659-A96E-677B565C0750}\mpavdlta.vdm - ok
17:20:47.0966 0480 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
17:20:47.0966 0480 C:\Windows\System32\Sens.dll - ok
17:20:47.0966 0480 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:20:47.0966 0480 C:\Windows\System32\slc.dll - ok
17:20:47.0982 0480 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
17:20:47.0982 0480 C:\Windows\System32\uxsms.dll - ok
17:20:47.0982 0480 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
17:20:47.0982 0480 C:\Windows\System32\drivers\lltdio.sys - ok
17:20:47.0982 0480 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:20:47.0982 0480 C:\Windows\System32\drivers\nwifi.sys - ok
17:20:47.0982 0480 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
17:20:47.0982 0480 C:\Windows\System32\drivers\ndisuio.sys - ok
17:20:47.0998 0480 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
17:20:47.0998 0480 C:\Windows\System32\drivers\rspndr.sys - ok
17:20:47.0998 0480 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
17:20:47.0998 0480 C:\Windows\System32\IPHLPAPI.DLL - ok
17:20:47.0998 0480 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:20:47.0998 0480 C:\Windows\System32\lmhsvc.dll - ok
17:20:48.0013 0480 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
17:20:48.0013 0480 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
17:20:48.0013 0480 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:20:48.0013 0480 C:\Windows\System32\nsisvc.dll - ok
17:20:48.0013 0480 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
17:20:48.0013 0480 C:\Windows\System32\dhcpcore.dll - ok
17:20:48.0013 0480 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
17:20:48.0013 0480 C:\Windows\System32\nrpsrv.dll - ok
17:20:48.0029 0480 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:20:48.0029 0480 C:\Windows\System32\winnsi.dll - ok
17:20:48.0029 0480 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
17:20:48.0029 0480 C:\Windows\System32\dhcpcore6.dll - ok
17:20:48.0029 0480 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:20:48.0029 0480 C:\Windows\System32\eapsvc.dll - ok
17:20:48.0029 0480 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:20:48.0029 0480 C:\Windows\System32\keyiso.dll - ok
17:20:48.0044 0480 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
17:20:48.0044 0480 C:\Windows\System32\dnsrslvr.dll - ok
17:20:48.0044 0480 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
17:20:48.0044 0480 C:\Windows\System32\AudioSes.dll - ok
17:20:48.0044 0480 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
17:20:48.0044 0480 C:\Windows\System32\msacm32.dll - ok
17:20:48.0044 0480 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
17:20:48.0044 0480 C:\Windows\System32\msacm32.drv - ok
17:20:48.0060 0480 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
17:20:48.0060 0480 C:\Windows\System32\midimap.dll - ok
17:20:48.0060 0480 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
17:20:48.0060 0480 C:\Windows\System32\AudioEng.dll - ok
17:20:48.0060 0480 [ 3D7BB6DD7A87B3E36E44CA94444247A8 ] C:\Windows\System32\WindowsCodecs.dll
17:20:48.0060 0480 C:\Windows\System32\WindowsCodecs.dll - ok
17:20:48.0076 0480 [ D07EB640618F96490DB88C3CE58DB608 ] C:\Windows\System32\FWPUCLNT.DLL
17:20:48.0076 0480 C:\Windows\System32\FWPUCLNT.DLL - ok
17:20:48.0076 0480 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:20:48.0076 0480 C:\Windows\System32\dnsext.dll - ok
17:20:48.0076 0480 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:20:48.0076 0480 C:\Windows\System32\dhcpcsvc.dll - ok
17:20:48.0076 0480 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
17:20:48.0076 0480 C:\Windows\System32\dhcpcsvc6.dll - ok
17:20:48.0091 0480 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:20:48.0091 0480 C:\Windows\System32\VaultCredProvider.dll - ok
17:20:48.0091 0480 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:20:48.0091 0480 C:\Windows\System32\winbrand.dll - ok
17:20:48.0091 0480 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
17:20:48.0091 0480 C:\Windows\System32\BioCredProv.dll - ok
17:20:48.0091 0480 [ 8563BA40DF4F1E93A61B70E2C8B60CF8 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:20:48.0091 0480 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:20:48.0107 0480 [ 4403D5ECE7D8323CAF1207D1AA38FA01 ] C:\Windows\System32\credui.dll
17:20:48.0107 0480 C:\Windows\System32\credui.dll - ok
17:20:48.0107 0480 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
17:20:48.0107 0480 C:\Windows\System32\winbio.dll - ok
17:20:48.0107 0480 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
17:20:48.0107 0480 C:\Windows\System32\netapi32.dll - ok
17:20:48.0122 0480 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
17:20:48.0122 0480 C:\Windows\System32\netutils.dll - ok
17:20:48.0122 0480 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
17:20:48.0122 0480 C:\Windows\System32\vaultcli.dll - ok
17:20:48.0122 0480 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
17:20:48.0122 0480 C:\Windows\System32\wkscli.dll - ok
17:20:48.0138 0480 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
17:20:48.0138 0480 C:\Windows\System32\samcli.dll - ok
17:20:48.0138 0480 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
17:20:48.0138 0480 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
17:20:48.0138 0480 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
17:20:48.0138 0480 C:\Windows\System32\certCredProvider.dll - ok
17:20:48.0138 0480 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
17:20:48.0138 0480 C:\Windows\System32\rasplap.dll - ok
17:20:48.0154 0480 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:20:48.0154 0480 C:\Windows\System32\rasapi32.dll - ok
17:20:48.0154 0480 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:20:48.0154 0480 C:\Windows\System32\rasman.dll - ok
17:20:48.0154 0480 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
17:20:48.0154 0480 C:\Windows\System32\rtutils.dll - ok
17:20:48.0154 0480 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
17:20:48.0154 0480 C:\Windows\System32\oleacc.dll - ok
17:20:48.0169 0480 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
17:20:48.0169 0480 C:\Windows\System32\UIAutomationCore.dll - ok
17:20:48.0169 0480 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
17:20:48.0169 0480 C:\Windows\System32\msimg32.dll - ok
17:20:48.0169 0480 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
17:20:48.0169 0480 C:\Windows\System32\eapphost.dll - ok
17:20:48.0185 0480 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:20:48.0185 0480 C:\Windows\System32\UXInit.dll - ok
17:20:48.0185 0480 [ E8E2C8EFB3A6C3FE09AA4DFC19CDE20A ] C:\Windows\System32\atieclxx.exe
17:20:48.0185 0480 C:\Windows\System32\atieclxx.exe - ok
17:20:48.0185 0480 [ 3BD53337C25FA55B9612343B3B471582 ] C:\Windows\System32\atiadlxx.dll
17:20:48.0185 0480 C:\Windows\System32\atiadlxx.dll - ok
17:20:48.0185 0480 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:20:48.0185 0480 C:\Windows\System32\eappcfg.dll - ok
17:20:48.0200 0480 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:20:48.0200 0480 C:\Windows\System32\eappprxy.dll - ok
17:20:48.0200 0480 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
17:20:48.0200 0480 C:\Windows\System32\onex.dll - ok
17:20:48.0200 0480 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
17:20:48.0200 0480 C:\Windows\System32\wlanmsm.dll - ok
17:20:48.0216 0480 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:20:48.0216 0480 C:\Windows\System32\wlansec.dll - ok
17:20:48.0216 0480 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
17:20:48.0216 0480 C:\Windows\System32\umb.dll - ok
17:20:48.0216 0480 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:20:48.0216 0480 C:\Windows\System32\wlgpclnt.dll - ok
17:20:48.0216 0480 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:20:48.0216 0480 C:\Windows\System32\l2gpstore.dll - ok
17:20:48.0232 0480 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
17:20:48.0232 0480 C:\Windows\System32\WinSCard.dll - ok
17:20:48.0232 0480 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:20:48.0232 0480 C:\Windows\System32\wlanutil.dll - ok
17:20:48.0232 0480 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
17:20:48.0232 0480 C:\Windows\System32\msxml6.dll - ok
17:20:48.0247 0480 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
17:20:48.0247 0480 C:\Windows\System32\shsvcs.dll - ok
17:20:48.0247 0480 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
17:20:48.0247 0480 C:\Windows\System32\schedsvc.dll - ok
17:20:48.0247 0480 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
17:20:48.0247 0480 C:\Windows\System32\ktmw32.dll - ok
17:20:48.0247 0480 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
17:20:48.0247 0480 C:\Windows\System32\fveapi.dll - ok
17:20:48.0263 0480 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
17:20:48.0263 0480 C:\Windows\System32\fvecerts.dll - ok
17:20:48.0263 0480 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
17:20:48.0263 0480 C:\Windows\System32\tbs.dll - ok
17:20:48.0263 0480 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
17:20:48.0263 0480 C:\Windows\System32\AUDIOKSE.dll - ok
17:20:48.0278 0480 [ 8288E1F44743E58A0F593494AB7D9C88 ] C:\Windows\System32\RtkAPO64.dll
17:20:48.0278 0480 C:\Windows\System32\RtkAPO64.dll - ok
17:20:48.0278 0480 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
17:20:48.0278 0480 C:\Windows\System32\WMALFXGFXDSP.dll - ok
17:20:48.0278 0480 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
17:20:48.0278 0480 C:\Windows\System32\mfplat.dll - ok
17:20:48.0278 0480 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
17:20:48.0278 0480 C:\Windows\System32\taskcomp.dll - ok
17:20:48.0294 0480 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
17:20:48.0294 0480 C:\Windows\System32\drivers\http.sys - ok
17:20:48.0294 0480 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
17:20:48.0294 0480 C:\Windows\System32\wiarpc.dll - ok
17:20:48.0294 0480 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
17:20:48.0294 0480 C:\Windows\System32\netcfgx.dll - ok
17:20:48.0294 0480 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
17:20:48.0294 0480 C:\Windows\System32\drivers\vwifimp.sys - ok
17:20:48.0310 0480 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
17:20:48.0310 0480 C:\Windows\System32\taskeng.exe - ok
17:20:48.0310 0480 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
17:20:48.0310 0480 C:\Windows\System32\TSChannel.dll - ok
17:20:48.0310 0480 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:20:48.0310 0480 C:\Windows\System32\imageres.dll - ok
17:20:48.0325 0480 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
17:20:48.0325 0480 C:\Windows\System32\spoolsv.exe - ok
17:20:48.0325 0480 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
17:20:48.0325 0480 C:\Windows\System32\BFE.DLL - ok
17:20:48.0325 0480 [ 50D28F3F8B7C17056520C80A29EFE17C ] C:\Windows\System32\lpksetup.exe
17:20:48.0325 0480 C:\Windows\System32\lpksetup.exe - ok
17:20:48.0325 0480 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
17:20:48.0325 0480 C:\Windows\System32\dpx.dll - ok
17:20:48.0341 0480 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
17:20:48.0341 0480 C:\Windows\System32\drivers\bowser.sys - ok
17:20:48.0341 0480 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
17:20:48.0341 0480 C:\Windows\System32\drivers\mpsdrv.sys - ok
17:20:48.0341 0480 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
17:20:48.0341 0480 C:\Windows\System32\drivers\mrxsmb.sys - ok
17:20:48.0356 0480 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
17:20:48.0356 0480 C:\Windows\System32\MPSSVC.dll - ok
17:20:48.0356 0480 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
17:20:48.0356 0480 C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:20:48.0356 0480 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
17:20:48.0356 0480 C:\Windows\System32\wfapigp.dll - ok
17:20:48.0356 0480 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
17:20:48.0356 0480 C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:20:48.0372 0480 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
17:20:48.0372 0480 C:\Windows\System32\wkssvc.dll - ok
17:20:48.0372 0480 [ 255476B54C82A89416EFDF09FD62F107 ] C:\Windows\System32\drivers\sentinel64.sys
17:20:48.0372 0480 C:\Windows\System32\drivers\sentinel64.sys - ok
17:20:48.0372 0480 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
17:20:48.0372 0480 C:\Windows\System32\mscms.dll - ok
17:20:48.0372 0480 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
17:20:48.0372 0480 C:\Windows\System32\pcasvc.dll - ok
17:20:48.0388 0480 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
17:20:48.0388 0480 C:\Windows\System32\snmptrap.exe - ok
17:20:48.0388 0480 [ 233A10D4B3F6897899112E4EC60F1906 ] C:\Windows\WindowsMobile\wmdcBase.exe
17:20:48.0388 0480 C:\Windows\WindowsMobile\wmdcBase.exe - ok
17:20:48.0388 0480 [ F1C09EE3A594B19DD1F4B4AEA9E353C9 ] C:\Windows\System32\comsvcs.dll
17:20:48.0388 0480 C:\Windows\System32\comsvcs.dll - ok
17:20:48.0403 0480 [ 4004299B7AF4CBFF6540F1798899A11F ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
17:20:48.0403 0480 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
17:20:48.0403 0480 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
17:20:48.0403 0480 C:\Windows\System32\provsvc.dll - ok
17:20:48.0403 0480 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
17:20:48.0403 0480 C:\Windows\System32\sstpsvc.dll - ok
17:20:48.0403 0480 [ B362181ED3771DC03B4141927C80F801 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:20:48.0403 0480 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
17:20:48.0419 0480 [ A2B0924D50F4435FD389499047CE553A ] C:\Windows\SysWOW64\ntdll.dll
17:20:48.0419 0480 C:\Windows\SysWOW64\ntdll.dll - ok
17:20:48.0419 0480 [ 70833F5A59F65908698093889C34BCA2 ] C:\Windows\System32\wow64.dll
17:20:48.0419 0480 C:\Windows\System32\wow64.dll - ok
17:20:48.0419 0480 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
17:20:48.0419 0480 C:\Windows\System32\wow64win.dll - ok
17:20:48.0434 0480 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
17:20:48.0434 0480 C:\Windows\System32\wow64cpu.dll - ok
17:20:48.0434 0480 [ 365A5034093AD9E04F433046C4CDF6AB ] C:\Windows\SysWOW64\kernel32.dll
17:20:48.0434 0480 C:\Windows\SysWOW64\kernel32.dll - ok
17:20:48.0434 0480 [ 1B7343C3765638D4D17CB925F84F8ABE ] C:\Windows\SysWOW64\KernelBase.dll
17:20:48.0434 0480 C:\Windows\SysWOW64\KernelBase.dll - ok
17:20:48.0450 0480 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
17:20:48.0450 0480 C:\Windows\SysWOW64\user32.dll - ok
17:20:48.0450 0480 [ 56E3313690866F99CD17AA1342F64AE1 ] C:\Windows\SysWOW64\gdi32.dll
17:20:48.0450 0480 C:\Windows\SysWOW64\gdi32.dll - ok
17:20:48.0450 0480 [ CC23295DA8F7B5C53F93804D2F5D30EB ] C:\Windows\SysWOW64\lpk.dll
17:20:48.0450 0480 C:\Windows\SysWOW64\lpk.dll - ok
17:20:48.0450 0480 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
17:20:48.0450 0480 C:\Windows\SysWOW64\usp10.dll - ok
17:20:48.0466 0480 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
17:20:48.0466 0480 C:\Windows\SysWOW64\msvcrt.dll - ok
17:20:48.0466 0480 [ D67472125471784DE7147946EDA25FEB ] C:\Windows\SysWOW64\advapi32.dll
17:20:48.0466 0480 C:\Windows\SysWOW64\advapi32.dll - ok
17:20:48.0466 0480 [ 4DC999CED9429939D75682EBD7D48901 ] C:\Windows\SysWOW64\rpcrt4.dll
17:20:48.0466 0480 C:\Windows\SysWOW64\rpcrt4.dll - ok
17:20:48.0481 0480 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:20:48.0481 0480 C:\Windows\SysWOW64\sechost.dll - ok
17:20:48.0481 0480 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:20:48.0481 0480 C:\Windows\SysWOW64\cryptbase.dll - ok
17:20:48.0481 0480 [ E02781D4871844DCD30DF1D69A650F78 ] C:\Windows\SysWOW64\shell32.dll
17:20:48.0481 0480 C:\Windows\SysWOW64\shell32.dll - ok
17:20:48.0481 0480 [ 42B924C5F3924C1EB2539F22C10D7DF1 ] C:\Windows\SysWOW64\sspicli.dll
17:20:48.0481 0480 C:\Windows\SysWOW64\sspicli.dll - ok
17:20:48.0497 0480 [ B26B5EB92C3D91885CC8595B03DFB3DB ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
17:20:48.0497 0480 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
17:20:48.0497 0480 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
17:20:48.0497 0480 C:\Windows\SysWOW64\shlwapi.dll - ok
17:20:48.0497 0480 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
17:20:48.0497 0480 C:\Windows\SysWOW64\ole32.dll - ok
17:20:48.0512 0480 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
17:20:48.0512 0480 C:\Windows\SysWOW64\oleaut32.dll - ok
17:20:48.0512 0480 [ CC09E0C9A2D89C6E71D093DC8BD121B7 ] C:\Windows\SysWOW64\crypt32.dll
17:20:48.0512 0480 C:\Windows\SysWOW64\crypt32.dll - ok
17:20:48.0512 0480 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
17:20:48.0512 0480 C:\Windows\SysWOW64\msasn1.dll - ok
17:20:48.0512 0480 [ 68EAAEDF0365168B804E8728368FA946 ] C:\Windows\SysWOW64\wintrust.dll
17:20:48.0512 0480 C:\Windows\SysWOW64\wintrust.dll - ok
17:20:48.0528 0480 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:20:48.0528 0480 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:20:48.0528 0480 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
17:20:48.0528 0480 C:\Windows\SysWOW64\imm32.dll - ok
17:20:48.0528 0480 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:20:48.0528 0480 C:\Windows\SysWOW64\msctf.dll - ok
17:20:48.0544 0480 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
17:20:48.0544 0480 C:\Windows\System32\wscapi.dll - ok
17:20:48.0544 0480 [ 30E3850F303EAE5C364782EA78579CC9 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:20:48.0544 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
17:20:48.0544 0480 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
17:20:48.0544 0480 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
17:20:48.0544 0480 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
17:20:48.0544 0480 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
17:20:48.0559 0480 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
17:20:48.0559 0480 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
17:20:48.0559 0480 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
17:20:48.0559 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
17:20:48.0559 0480 [ 6D41F6AA35220E7A54543075B27E8F83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
17:20:48.0559 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
17:20:48.0575 0480 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:20:48.0575 0480 C:\Windows\SysWOW64\version.dll - ok
17:20:48.0575 0480 [ 6953E980ADCA0BE816C7FF463695499A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
17:20:48.0575 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
17:20:48.0575 0480 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
17:20:48.0575 0480 C:\Windows\SysWOW64\ws2_32.dll - ok
17:20:48.0575 0480 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
17:20:48.0575 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
17:20:48.0590 0480 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:20:48.0590 0480 C:\Windows\SysWOW64\nsi.dll - ok
17:20:48.0590 0480 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
17:20:48.0590 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
17:20:48.0590 0480 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
17:20:48.0590 0480 C:\Windows\SysWOW64\wsock32.dll - ok
17:20:48.0606 0480 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
17:20:48.0606 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
17:20:48.0606 0480 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
17:20:48.0606 0480 C:\Windows\SysWOW64\winmm.dll - ok
17:20:48.0606 0480 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
17:20:48.0606 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
17:20:48.0606 0480 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
17:20:48.0606 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
17:20:48.0622 0480 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
17:20:48.0622 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
17:20:48.0622 0480 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
17:20:48.0622 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
17:20:48.0622 0480 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:20:48.0622 0480 C:\Windows\SysWOW64\profapi.dll - ok
17:20:48.0637 0480 [ 4D9B3DFBAB2EA93B594B74D47E0B4E5D ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
17:20:48.0637 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
17:20:48.0637 0480 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
17:20:48.0637 0480 C:\Windows\SysWOW64\setupapi.dll - ok
17:20:48.0637 0480 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:20:48.0637 0480 C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:20:48.0653 0480 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
17:20:48.0653 0480 C:\Windows\SysWOW64\devobj.dll - ok
17:20:48.0653 0480 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
17:20:48.0653 0480 C:\Windows\SysWOW64\userenv.dll - ok
17:20:48.0653 0480 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
17:20:48.0653 0480 C:\Windows\SysWOW64\wtsapi32.dll - ok
17:20:48.0653 0480 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
17:20:48.0653 0480 C:\Windows\SysWOW64\dnssd.dll - ok
17:20:48.0668 0480 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
17:20:48.0668 0480 C:\Program Files\Bonjour\mDNSResponder.exe - ok
17:20:48.0668 0480 [ E94C583CDE2348950155F2AF2876F34D ] C:\Windows\SysWOW64\mswsock.dll
17:20:48.0668 0480 C:\Windows\SysWOW64\mswsock.dll - ok
17:20:48.0668 0480 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:20:48.0668 0480 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:20:48.0684 0480 [ FBDC1D23E595C22805BFE35D677732DA ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
17:20:48.0684 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
17:20:48.0684 0480 [ C128E740CDB1048FB72F4F80FA384943 ] C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe
17:20:48.0684 0480 C:\Users\Lucille\AppData\Local\CrossLoop\CrossLoopService.exe - ok
17:20:48.0684 0480 [ 9C89246184979A070B0C6CCF61C68136 ] C:\Windows\SysWOW64\wininet.dll
17:20:48.0684 0480 C:\Windows\SysWOW64\wininet.dll - ok
17:20:48.0684 0480 [ BE706AC2CAEE39BA8C90BE3A6C037A08 ] C:\Users\Lucille\AppData\Local\CrossLoop\diCrPKI.dll
17:20:48.0684 0480 C:\Users\Lucille\AppData\Local\CrossLoop\diCrPKI.dll - ok
17:20:48.0700 0480 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:20:48.0700 0480 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:20:48.0700 0480 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:20:48.0700 0480 C:\Windows\SysWOW64\winnsi.dll - ok
17:20:48.0700 0480 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
17:20:48.0700 0480 C:\Windows\SysWOW64\winspool.drv - ok
17:20:48.0715 0480 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
17:20:48.0715 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
17:20:48.0715 0480 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
17:20:48.0715 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
17:20:48.0715 0480 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
17:20:48.0715 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
17:20:48.0715 0480 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
17:20:48.0715 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
17:20:48.0731 0480 [ 34CBED7698D557DDB43F8732FBC2ACB9 ] C:\Windows\SysWOW64\iertutil.dll
17:20:48.0731 0480 C:\Windows\SysWOW64\iertutil.dll - ok
17:20:48.0731 0480 [ 6B400F211BEE880A37A1ED0368776BF4 ] C:\Windows\System32\cryptsvc.dll
17:20:48.0731 0480 C:\Windows\System32\cryptsvc.dll - ok
17:20:48.0731 0480 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
17:20:48.0731 0480 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
17:20:48.0746 0480 [ A6B726DCA228F7878E38368A1BDC68BE ] C:\Windows\System32\cryptnet.dll
17:20:48.0746 0480 C:\Windows\System32\cryptnet.dll - ok
17:20:48.0746 0480 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
17:20:48.0746 0480 C:\Windows\System32\dps.dll - ok
17:20:48.0746 0480 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
17:20:48.0746 0480 C:\Windows\SysWOW64\NapiNSP.dll - ok
17:20:48.0746 0480 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
17:20:48.0746 0480 C:\Windows\SysWOW64\nlaapi.dll - ok
17:20:48.0762 0480 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
17:20:48.0762 0480 C:\Windows\SysWOW64\pnrpnsp.dll - ok
17:20:48.0762 0480 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
17:20:48.0762 0480 C:\Windows\SysWOW64\svchost.exe - ok
17:20:48.0762 0480 [ 108333981C841EB0FF198AA5DFCF3D3B ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:20:48.0762 0480 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
17:20:48.0762 0480 [ 7E53957E73BFB209D49932A9DDEBEDE4 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddcmn.dll
17:20:48.0778 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddcmn.dll - ok
17:20:48.0778 0480 [ F3F72A2A86C22610BCA5439FA789DD52 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddsvc.dll
17:20:48.0778 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddsvc.dll - ok
17:20:48.0778 0480 [ 344789398EC3EE5A4E00C52B31847946 ] C:\Windows\System32\IKEEXT.DLL
17:20:48.0778 0480 C:\Windows\System32\IKEEXT.DLL - ok
17:20:48.0778 0480 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
17:20:48.0778 0480 C:\Windows\System32\taskschd.dll - ok
17:20:48.0793 0480 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
17:20:48.0793 0480 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
17:20:48.0793 0480 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
17:20:48.0793 0480 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
17:20:48.0793 0480 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
17:20:48.0793 0480 C:\Windows\SysWOW64\dnsapi.dll - ok
17:20:48.0793 0480 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:20:48.0793 0480 C:\Windows\SysWOW64\psapi.dll - ok
17:20:48.0809 0480 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
17:20:48.0809 0480 C:\Windows\System32\vssapi.dll - ok
17:20:48.0809 0480 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
17:20:48.0809 0480 C:\Windows\SysWOW64\winrnr.dll - ok
17:20:48.0809 0480 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:20:48.0809 0480 C:\Windows\SysWOW64\clbcatq.dll - ok
17:20:48.0824 0480 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
17:20:48.0824 0480 C:\Windows\System32\vpnikeapi.dll - ok
17:20:48.0824 0480 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:20:48.0824 0480 C:\Windows\SysWOW64\cryptsp.dll - ok
17:20:48.0824 0480 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:20:48.0824 0480 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:20:48.0824 0480 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:20:48.0824 0480 C:\Windows\SysWOW64\rsaenh.dll - ok
17:20:48.0840 0480 [ A56CCBBFCCEDCE2FD9C69FED24E035E3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
17:20:48.0840 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
17:20:48.0840 0480 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
17:20:48.0840 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
17:20:48.0840 0480 [ A7DDDDE163F16AB49DF3DE9EEC715495 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
17:20:48.0840 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
17:20:48.0856 0480 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:20:48.0856 0480 C:\Windows\System32\vsstrace.dll - ok
17:20:48.0856 0480 [ F0D0E883EBBDC7615DC9EDEA0FFB2817 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:20:48.0856 0480 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:20:48.0856 0480 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
17:20:48.0856 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
17:20:48.0856 0480 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:20:48.0856 0480 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:20:48.0871 0480 [ 18301B40411B2108076AB685B4E4B6DC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
17:20:48.0871 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
17:20:48.0871 0480 [ D73B5BEFC8BB6E877A7E6437E2613FFA ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
17:20:48.0871 0480 C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
17:20:48.0871 0480 [ 61DACB0FBB1F7237FFEF769C23C903AF ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
17:20:48.0871 0480 C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
17:20:48.0887 0480 [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:20:48.0887 0480 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
17:20:48.0887 0480 [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
17:20:48.0887 0480 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
17:20:48.0887 0480 [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
17:20:48.0887 0480 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
17:20:48.0902 0480 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:20:48.0902 0480 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
17:20:48.0902 0480 [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
17:20:48.0902 0480 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
17:20:48.0902 0480 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
17:20:48.0902 0480 C:\Windows\SysWOW64\mpr.dll - ok
17:20:48.0902 0480 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
17:20:48.0902 0480 C:\Windows\System32\aepic.dll - ok
17:20:48.0918 0480 [ 2334DC48997BA203B794DF3EE70521DB ] C:\Windows\System32\HPZinw12.dll
17:20:48.0918 0480 C:\Windows\System32\HPZinw12.dll - ok
17:20:48.0918 0480 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
17:20:48.0918 0480 C:\Windows\System32\nlasvc.dll - ok
17:20:48.0918 0480 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
17:20:48.0918 0480 C:\Windows\System32\wsock32.dll - ok
17:20:48.0934 0480 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:20:48.0934 0480 C:\Windows\System32\sfc.dll - ok
17:20:48.0934 0480 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:20:48.0934 0480 C:\Windows\System32\sfc_os.dll - ok
17:20:48.0934 0480 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
17:20:48.0934 0480 C:\Windows\System32\ncsi.dll - ok
17:20:48.0934 0480 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
17:20:48.0934 0480 C:\Windows\System32\winhttp.dll - ok
17:20:48.0949 0480 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
17:20:48.0949 0480 C:\Windows\System32\webio.dll - ok
17:20:48.0949 0480 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
17:20:48.0949 0480 C:\Windows\System32\aeevts.dll - ok
17:20:48.0949 0480 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
17:20:48.0949 0480 C:\Windows\System32\drivers\PEAuth.sys - ok
17:20:48.0949 0480 [ 63694C307273062A2167AE4CE80730EF ] C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
17:20:48.0949 0480 C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe - ok
17:20:48.0965 0480 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:20:48.0965 0480 C:\Windows\System32\ssdpapi.dll - ok
17:20:48.0965 0480 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
17:20:48.0965 0480 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
17:20:48.0965 0480 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] C:\Windows\System32\HPZipm12.dll
17:20:48.0965 0480 C:\Windows\System32\HPZipm12.dll - ok
17:20:48.0980 0480 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:20:48.0980 0480 C:\Windows\SysWOW64\ntmarta.dll - ok
17:20:48.0980 0480 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
17:20:48.0980 0480 C:\Windows\SysWOW64\Wldap32.dll - ok
17:20:48.0980 0480 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
17:20:48.0980 0480 C:\Windows\SysWOW64\winsta.dll - ok
17:20:48.0980 0480 [ 4A5809A1D796E2675AC0332BF7B0CB11 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
17:20:48.0980 0480 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe - ok
17:20:48.0996 0480 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
17:20:48.0996 0480 C:\Windows\SysWOW64\winhttp.dll - ok
17:20:48.0996 0480 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
17:20:48.0996 0480 C:\Windows\SysWOW64\webio.dll - ok
17:20:48.0996 0480 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
17:20:48.0996 0480 C:\Windows\SysWOW64\msxml6.dll - ok
17:20:49.0012 0480 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:20:49.0012 0480 C:\Windows\SysWOW64\SensApi.dll - ok
17:20:49.0012 0480 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
17:20:49.0012 0480 C:\Windows\System32\drivers\secdrv.sys - ok
17:20:49.0012 0480 [ 850E17E9EB94D59A54BD6FA33A2CFA99 ] C:\Program Files (x86)\winsim\ConnectionManager\SimplyConnectionManager.exe
17:20:49.0012 0480 C:\Program Files (x86)\winsim\ConnectionManager\SimplyConnectionManager.exe - ok
17:20:49.0027 0480 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
17:20:49.0027 0480 C:\Windows\SysWOW64\mscoree.dll - ok
17:20:49.0027 0480 [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
17:20:49.0027 0480 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
17:20:49.0027 0480 [ CE38536E05E23FE796C11AFFAB6FA842 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
17:20:49.0027 0480 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
17:20:49.0027 0480 [ 93C2D166F5C3C14B32B15184254049C3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll
17:20:49.0027 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll - ok
17:20:49.0043 0480 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
17:20:49.0043 0480 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
17:20:49.0043 0480 [ 75F5E1FE8D55CF8E577E0EC5F2290D3F ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
17:20:49.0043 0480 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
17:20:49.0043 0480 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
17:20:49.0043 0480 C:\Windows\SysWOW64\riched20.dll - ok
17:20:49.0058 0480 [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37 ] C:\Windows\SysWOW64\imagehlp.dll
17:20:49.0058 0480 C:\Windows\SysWOW64\imagehlp.dll - ok
17:20:49.0058 0480 [ AD7FB087A238883D1618F29F7BBBD584 ] C:\Windows\SysWOW64\ncrypt.dll
17:20:49.0058 0480 C:\Windows\SysWOW64\ncrypt.dll - ok
17:20:49.0058 0480 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:20:49.0058 0480 C:\Windows\SysWOW64\bcrypt.dll - ok
17:20:49.0058 0480 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:20:49.0058 0480 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:20:49.0074 0480 [ 7B851A8018B1EA00A69707A390004884 ] C:\Windows\SysWOW64\cryptnet.dll
17:20:49.0074 0480 C:\Windows\SysWOW64\cryptnet.dll - ok
17:20:49.0074 0480 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:20:49.0074 0480 C:\Windows\SysWOW64\gpapi.dll - ok
17:20:49.0074 0480 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
17:20:49.0074 0480 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
17:20:49.0090 0480 [ 0F42F3605AB5C3679765FF1081275EF3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll
17:20:49.0090 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll - ok
17:20:49.0090 0480 [ C7928C9283C7D39D601926DC28736441 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b34b348a9935338b1282fd0c9309eb1f\System.ServiceProcess.ni.dll
17:20:49.0090 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b34b348a9935338b1282fd0c9309eb1f\System.ServiceProcess.ni.dll - ok
17:20:49.0090 0480 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
17:20:49.0090 0480 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
17:20:49.0090 0480 [ 875B04A71869D34A415CC8B4D4673EC4 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
17:20:49.0090 0480 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
17:20:49.0105 0480 [ 6E55B702A50248D03E62AF0CF3CEB87D ] C:\Windows\assembly\GAC_32\Simply.ConnectionManagerService\15.0.0.1__bfd98eaca3f932d5\Simply.ConnectionManagerService.dll
17:20:49.0105 0480 C:\Windows\assembly\GAC_32\Simply.ConnectionManagerService\15.0.0.1__bfd98eaca3f932d5\Simply.ConnectionManagerService.dll - ok
17:20:49.0105 0480 [ 430796105516A35BD2AE5BF8BA1C64FF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\59312674865dc2a19c27f9f460b1673b\System.Runtime.Remoting.ni.dll
17:20:49.0105 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\59312674865dc2a19c27f9f460b1673b\System.Runtime.Remoting.ni.dll - ok
17:20:49.0105 0480 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
17:20:49.0105 0480 C:\Windows\System32\drivers\srvnet.sys - ok
17:20:49.0121 0480 [ 0EF6ADCF0AEC1EB8B758A72FBA757A95 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll
17:20:49.0121 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll - ok
17:20:49.0121 0480 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
17:20:49.0121 0480 C:\Windows\System32\drivers\tcpipreg.sys - ok
17:20:49.0121 0480 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
17:20:49.0121 0480 C:\Windows\System32\sysmain.dll - ok
17:20:49.0121 0480 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
17:20:49.0121 0480 C:\Windows\System32\wiaservc.dll - ok
17:20:49.0136 0480 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:20:49.0136 0480 C:\Windows\SysWOW64\wship6.dll - ok
17:20:49.0136 0480 [ 3D232BA8915FEA0694B07E535FC8D03A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll
17:20:49.0136 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll - ok
17:20:49.0136 0480 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
17:20:49.0136 0480 C:\Windows\System32\wiatrace.dll - ok
17:20:49.0152 0480 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
17:20:49.0152 0480 C:\Windows\System32\fundisc.dll - ok
17:20:49.0152 0480 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
17:20:49.0152 0480 C:\Windows\System32\wsdchngr.dll - ok
17:20:49.0152 0480 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:20:49.0152 0480 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
17:20:49.0152 0480 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
17:20:49.0152 0480 C:\Windows\System32\trkwks.dll - ok
17:20:49.0168 0480 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:20:49.0168 0480 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:20:49.0168 0480 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
17:20:49.0168 0480 C:\Windows\System32\fdPnp.dll - ok
17:20:49.0168 0480 [ 25723DC86478FDAE07050BCB44787194 ] C:\Windows\System32\HPWia2_PS7520.dll
17:20:49.0168 0480 C:\Windows\System32\HPWia2_PS7520.dll - ok
17:20:49.0183 0480 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
17:20:49.0183 0480 C:\Windows\System32\wbemcomn.dll - ok
17:20:49.0183 0480 [ EC3D2217564D66078398030F1EF0F7D2 ] C:\Windows\System32\HPScanTRDrv_PS7520.dll
17:20:49.0183 0480 C:\Windows\System32\HPScanTRDrv_PS7520.dll - ok
17:20:49.0183 0480 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:20:49.0183 0480 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:20:49.0183 0480 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:20:49.0183 0480 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:20:49.0199 0480 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
17:20:49.0199 0480 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
17:20:49.0199 0480 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
17:20:49.0199 0480 C:\Windows\System32\SensApi.dll - ok
17:20:49.0199 0480 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:20:49.0199 0480 C:\Windows\System32\wbem\fastprox.dll - ok
17:20:49.0214 0480 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:20:49.0214 0480 C:\Windows\System32\wer.dll - ok
17:20:49.0214 0480 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:20:49.0214 0480 C:\Windows\System32\ntdsapi.dll - ok
17:20:49.0214 0480 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:20:49.0214 0480 C:\Windows\System32\wbem\wbemprox.dll - ok
17:20:49.0214 0480 [ 7548066DF68A8A1A56B043359F915F37 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
17:20:49.0214 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
17:20:49.0230 0480 [ 7523E7D2AB0C49585C0C199264B2BD73 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
17:20:49.0230 0480 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
17:20:49.0230 0480 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
17:20:49.0230 0480 C:\Windows\System32\wbem\wbemcore.dll - ok
17:20:49.0230 0480 [ 0D298133C359AB8CB9EB4FA178BF3947 ] C:\Windows\System32\msxml3.dll
17:20:49.0230 0480 C:\Windows\System32\msxml3.dll - ok
17:20:49.0246 0480 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
17:20:49.0246 0480 C:\Windows\SysWOW64\comdlg32.dll - ok
17:20:49.0246 0480 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:20:49.0246 0480 C:\Windows\System32\wbem\esscli.dll - ok
17:20:49.0246 0480 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
17:20:49.0246 0480 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
17:20:49.0261 0480 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
17:20:49.0261 0480 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
17:20:49.0261 0480 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:20:49.0261 0480 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:20:49.0261 0480 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:20:49.0261 0480 C:\Windows\System32\wbem\wmiutils.dll - ok
17:20:49.0261 0480 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:20:49.0261 0480 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:20:49.0277 0480 [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
17:20:49.0277 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
17:20:49.0277 0480 [ 3960CEB4A6B13784252D827ECF65CED3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
17:20:49.0277 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
17:20:49.0277 0480 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
17:20:49.0277 0480 C:\Windows\System32\drivers\srv2.sys - ok
17:20:49.0292 0480 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
17:20:49.0292 0480 C:\Windows\System32\iphlpsvc.dll - ok
17:20:49.0292 0480 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
17:20:49.0292 0480 C:\Windows\System32\drivers\srv.sys - ok
17:20:49.0292 0480 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
17:20:49.0292 0480 C:\Windows\System32\sqmapi.dll - ok
17:20:49.0292 0480 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
17:20:49.0292 0480 C:\Windows\System32\wdscore.dll - ok
17:20:49.0308 0480 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
17:20:49.0308 0480 C:\Windows\System32\browser.dll - ok
17:20:49.0308 0480 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
17:20:49.0308 0480 C:\Windows\System32\srvsvc.dll - ok
17:20:49.0308 0480 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:20:49.0308 0480 C:\Windows\System32\hnetcfg.dll - ok
17:20:49.0324 0480 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
17:20:49.0324 0480 C:\Windows\System32\netmsg.dll - ok
17:20:49.0324 0480 [ 1530DFBDFD68AAD1FD5FDA52EA44925E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
17:20:49.0324 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
17:20:49.0324 0480 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:20:49.0324 0480 C:\Windows\System32\netprofm.dll - ok
17:20:49.0324 0480 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
17:20:49.0324 0480 C:\Windows\System32\sscore.dll - ok
17:20:49.0339 0480 [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
17:20:49.0339 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
17:20:49.0339 0480 [ EEA7E552C2C992CFD4B50857010F39EA ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
17:20:49.0339 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
17:20:49.0339 0480 [ 5E2623439A9936D320FE8DC1AB84526A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
17:20:49.0339 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
17:20:49.0355 0480 [ 8F1656DEB2E861D608909792F5A68C3B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
17:20:49.0355 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
17:20:49.0355 0480 [ 78193AA97D679531522C3E2FA4A5EDFE ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
17:20:49.0355 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
17:20:49.0355 0480 [ 793A19EAB66BB232F019DFF9D1977A41 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
17:20:49.0355 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
17:20:49.0355 0480 [ BA726152513EC650EED219B7995DE852 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
17:20:49.0355 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
17:20:49.0370 0480 [ 77C8E1779E784189EA29D9A5ECCDD9E9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
17:20:49.0370 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
17:20:49.0370 0480 [ AFD87B70E2C48EC080CA28ADCC3175B5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
17:20:49.0370 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
17:20:49.0370 0480 [ 5ECEA5F29DCEE8D320454C86A1CB3366 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
17:20:49.0370 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
17:20:49.0386 0480 [ 18873D2B1ABBB8826ED18F840CB8E0D3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
17:20:49.0386 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
17:20:49.0386 0480 [ 79ECBC83B844F7A474C66BE77AAF7180 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
17:20:49.0386 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
17:20:49.0386 0480 [ 069006BF253F32CD980E67E8671DFE3C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
17:20:49.0386 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
17:20:49.0402 0480 [ 5925F32114BF5ACF50C66500433B35CC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
17:20:49.0402 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
17:20:49.0402 0480 [ 03C7D7A1553E3009CEBE3013A578B0ED ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
17:20:49.0402 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
17:20:49.0402 0480 [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
17:20:49.0402 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
17:20:49.0402 0480 [ 2499E32320905E68F9710527593A0EDB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
17:20:49.0402 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
17:20:49.0417 0480 [ 591EA8B6991D99720B36EBC1CC16CEA8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
17:20:49.0417 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
17:20:49.0417 0480 [ A4487F6CEFED12F2C1257F6DBCDAEB1E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
17:20:49.0417 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
17:20:49.0417 0480 [ 35989A505DEEC24DEF8D327D22FF14D4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
17:20:49.0417 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
17:20:49.0433 0480 [ 9D825B4E6B28F93F326538515EFC880B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
17:20:49.0433 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
17:20:49.0433 0480 [ D9BFF3E59CBE32FE72D6D68F6AF348BD ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
17:20:49.0433 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
17:20:49.0433 0480 [ E84CB5D899098DDEA6D013057C9E4B5F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
17:20:49.0433 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
17:20:49.0448 0480 [ 15C42334805B711FBF0C788A1D751528 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
17:20:49.0448 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
17:20:49.0448 0480 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
17:20:49.0448 0480 C:\Windows\SysWOW64\wbemcomn.dll - ok
17:20:49.0448 0480 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
17:20:49.0448 0480 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
17:20:49.0448 0480 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
17:20:49.0448 0480 C:\Windows\System32\clusapi.dll - ok
17:20:49.0464 0480 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
17:20:49.0464 0480 C:\Windows\System32\nci.dll - ok
17:20:49.0464 0480 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
17:20:49.0464 0480 C:\Windows\System32\resutils.dll - ok
17:20:49.0464 0480 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
17:20:49.0464 0480 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
17:20:49.0480 0480 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
17:20:49.0480 0480 C:\Program Files\Bonjour\mdnsNSP.dll - ok
17:20:49.0480 0480 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
17:20:49.0480 0480 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
17:20:49.0480 0480 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
17:20:49.0480 0480 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
17:20:49.0480 0480 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
17:20:49.0480 0480 C:\Windows\SysWOW64\ntdsapi.dll - ok
17:20:49.0495 0480 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
17:20:49.0495 0480 C:\Windows\System32\winspool.drv - ok
17:20:49.0495 0480 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
17:20:49.0495 0480 C:\Windows\System32\localspl.dll - ok
17:20:49.0495 0480 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:20:49.0495 0480 C:\Windows\System32\rasadhlp.dll - ok
17:20:49.0511 0480 [ 768380704934CD5B15F0B5F05533B881 ] C:\Windows\System32\hpinkstsBC11LM.dll
17:20:49.0511 0480 C:\Windows\System32\hpinkstsBC11LM.dll - ok
17:20:49.0511 0480 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
17:20:49.0511 0480 C:\Windows\System32\PrintIsolationProxy.dll - ok
17:20:49.0511 0480 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
17:20:49.0511 0480 C:\Windows\System32\spoolss.dll - ok
17:20:49.0511 0480 [ 3D7C1DFE052288F40AC9ABFB2A824B92 ] C:\Windows\System32\HPDiscoPMBC11.dll
17:20:49.0511 0480 C:\Windows\System32\HPDiscoPMBC11.dll - ok
17:20:49.0526 0480 [ AFE013F29FD99796958EC8EE0738306F ] C:\Windows\System32\hpf3l70w.dll
17:20:49.0526 0480 C:\Windows\System32\hpf3l70w.dll - ok
17:20:49.0526 0480 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
17:20:49.0526 0480 C:\Windows\System32\wsnmp32.dll - ok
17:20:49.0526 0480 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
17:20:49.0526 0480 C:\Windows\System32\FXSMON.dll - ok
17:20:49.0526 0480 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
17:20:49.0526 0480 C:\Windows\System32\hpz3lw71.dll - ok
17:20:49.0542 0480 [ E16C433D8D23B08A40A664A9D8348649 ] C:\Windows\System32\hpz3lw72.dll
17:20:49.0542 0480 C:\Windows\System32\hpz3lw72.dll - ok
17:20:49.0542 0480 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
17:20:49.0542 0480 C:\Windows\System32\snmpapi.dll - ok
17:20:49.0542 0480 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
17:20:49.0542 0480 C:\Windows\System32\tcpmon.dll - ok
17:20:49.0558 0480 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
17:20:49.0558 0480 C:\Windows\System32\usbmon.dll - ok
17:20:49.0558 0480 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
17:20:49.0558 0480 C:\Windows\System32\WSDMon.dll - ok
17:20:49.0558 0480 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
17:20:49.0558 0480 C:\Windows\System32\WSDApi.dll - ok
17:20:49.0558 0480 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
17:20:49.0558 0480 C:\Windows\System32\webservices.dll - ok
17:20:49.0573 0480 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:20:49.0573 0480 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:20:49.0573 0480 [ 38F13E9C0CBEE9FBA501B028C71BFA07 ] C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll
17:20:49.0573 0480 C:\Windows\System32\spool\prtprocs\x64\hpfpp70w.dll - ok
17:20:49.0573 0480 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
17:20:49.0573 0480 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
17:20:49.0573 0480 [ 62FD1461C7C88D9927CAFF8FA827DAA8 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll
17:20:49.0573 0480 C:\Windows\System32\spool\prtprocs\x64\hpzppw72.dll - ok
17:20:49.0589 0480 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
17:20:49.0589 0480 C:\Windows\System32\inetpp.dll - ok
17:20:49.0589 0480 [ 67CF11E00D026A5C0C88EA5F84D501E5 ] C:\Windows\System32\win32spl.dll
17:20:49.0589 0480 C:\Windows\System32\win32spl.dll - ok
17:20:49.0589 0480 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqcxs08.dll
17:20:49.0589 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqcxs08.dll - ok
17:20:49.0604 0480 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
17:20:49.0604 0480 C:\Windows\System32\wdi.dll - ok
17:20:49.0604 0480 [ F37882F128EFACEFE353E0BAE2766909 ] C:\Program Files (x86)\hp\Digital Imaging\bin\HPSLPSVC64.DLL
17:20:49.0604 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\HPSLPSVC64.DLL - ok
17:20:49.0604 0480 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll
17:20:49.0604 0480 C:\Windows\System32\appinfo.dll - ok
17:20:49.0604 0480 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
17:20:49.0604 0480 C:\Windows\System32\hidserv.dll - ok
17:20:49.0620 0480 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
17:20:49.0620 0480 C:\Windows\System32\wpdbusenum.dll - ok
17:20:49.0620 0480 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
17:20:49.0620 0480 C:\Windows\SysWOW64\shfolder.dll - ok
17:20:49.0620 0480 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
17:20:49.0620 0480 C:\Windows\System32\Apphlpdm.dll - ok
17:20:49.0620 0480 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:20:49.0620 0480 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:20:49.0636 0480 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:20:49.0636 0480 C:\Windows\System32\ncobjapi.dll - ok
17:20:49.0636 0480 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:20:49.0636 0480 C:\Windows\System32\wbem\wbemess.dll - ok
17:20:49.0636 0480 [ A5DBC74C5B91CF6E43B73D62936F8186 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
17:20:49.0636 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
17:20:49.0651 0480 [ 3CEF96890064B3CDB190963157F24BAC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
17:20:49.0651 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
17:20:49.0651 0480 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
17:20:49.0651 0480 C:\Windows\SysWOW64\oleacc.dll - ok
17:20:49.0651 0480 [ 5BFB02BDA2700D078400E149BC4CF87A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
17:20:49.0651 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
17:20:49.0667 0480 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:20:49.0667 0480 C:\Windows\System32\FXSRESM.dll - ok
17:20:49.0667 0480 [ 3C29B98149A28FEDA42796D3EA904F62 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
17:20:49.0667 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
17:20:49.0667 0480 [ 38ADD53ECFC5F040EF1C647ECD22A2A4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
17:20:49.0667 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
17:20:49.0667 0480 [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
17:20:49.0667 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
17:20:49.0682 0480 [ 43B02D7C43B77775F1DA63B1D1014F38 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
17:20:49.0682 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
17:20:49.0682 0480 [ 5AF1E9600E3FF841E522703A4993ED0C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
17:20:49.0682 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
17:20:49.0682 0480 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
17:20:49.0682 0480 C:\Windows\System32\diagperf.dll - ok
17:20:49.0698 0480 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
17:20:49.0698 0480 C:\Windows\System32\pnpts.dll - ok
17:20:49.0698 0480 [ 8CF4B0337B06CCC624C20EE4C934767E ] C:\Windows\System32\lpksetupproxyserv.dll
17:20:49.0698 0480 C:\Windows\System32\lpksetupproxyserv.dll - ok
17:20:49.0698 0480 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
17:20:49.0698 0480 C:\Windows\servicing\TrustedInstaller.exe - ok
17:20:49.0698 0480 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
17:20:49.0698 0480 C:\Windows\System32\dbghelp.dll - ok
17:20:49.0714 0480 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
17:20:49.0714 0480 C:\Windows\SysWOW64\sxs.dll - ok
17:20:49.0714 0480 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
17:20:49.0714 0480 C:\Windows\System32\perftrack.dll - ok
17:20:49.0714 0480 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:20:49.0714 0480 C:\Windows\System32\npmproxy.dll - ok
17:20:49.0729 0480 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
17:20:49.0729 0480 C:\Windows\System32\PortableDeviceApi.dll - ok
17:20:49.0729 0480 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
17:20:49.0729 0480 C:\Windows\System32\wdiasqmmodule.dll - ok
17:20:49.0729 0480 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:20:49.0729 0480 C:\Windows\System32\NapiNSP.dll - ok
17:20:49.0745 0480 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:20:49.0745 0480 C:\Windows\System32\pnrpnsp.dll - ok
17:20:49.0745 0480 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:20:49.0745 0480 C:\Windows\System32\winrnr.dll - ok
17:20:49.0745 0480 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:20:49.0745 0480 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:20:49.0760 0480 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
17:20:49.0760 0480 C:\Windows\System32\taskhost.exe - ok
17:20:49.0760 0480 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
17:20:49.0760 0480 C:\Windows\System32\drivers\WUDFRd.sys - ok
17:20:49.0760 0480 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
17:20:49.0760 0480 C:\Windows\System32\IPSECSVC.DLL - ok
17:20:49.0776 0480 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
17:20:49.0776 0480 C:\Windows\System32\FwRemoteSvr.dll - ok
17:20:49.0776 0480 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
17:20:49.0776 0480 C:\Windows\System32\dimsjob.dll - ok
17:20:49.0776 0480 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
17:20:49.0776 0480 C:\Windows\System32\pautoenr.dll - ok
17:20:49.0792 0480 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
17:20:49.0792 0480 C:\Windows\System32\certcli.dll - ok
17:20:49.0792 0480 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
17:20:49.0792 0480 C:\Windows\System32\CertEnroll.dll - ok
17:20:49.0792 0480 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
17:20:49.0792 0480 C:\Windows\System32\drivers\WUDFPf.sys - ok
17:20:49.0807 0480 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
17:20:49.0807 0480 C:\Windows\System32\WUDFSvc.dll - ok
17:20:49.0807 0480 [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
17:20:49.0807 0480 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
17:20:49.0807 0480 [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
17:20:49.0807 0480 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
17:20:49.0823 0480 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
17:20:49.0823 0480 C:\Windows\System32\WUDFHost.exe - ok
17:20:49.0823 0480 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
17:20:49.0823 0480 C:\Windows\System32\WUDFx.dll - ok
17:20:49.0823 0480 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
17:20:49.0823 0480 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
17:20:49.0838 0480 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
17:20:49.0838 0480 C:\Windows\System32\WMVCORE.DLL - ok
17:20:49.0838 0480 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
17:20:49.0838 0480 C:\Windows\System32\WMASF.DLL - ok
17:20:49.0838 0480 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
17:20:49.0838 0480 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
17:20:49.0838 0480 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:20:49.0838 0480 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:20:49.0854 0480 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
17:20:49.0854 0480 C:\Windows\System32\mprapi.dll - ok
17:20:49.0854 0480 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
17:20:49.0854 0480 C:\Windows\System32\ndiscapCfg.dll - ok
17:20:49.0854 0480 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
17:20:49.0854 0480 C:\Windows\System32\rascfg.dll - ok
17:20:49.0870 0480 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
17:20:49.0870 0480 C:\Windows\System32\mprmsg.dll - ok
17:20:49.0870 0480 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
17:20:49.0870 0480 C:\Windows\System32\tcpipcfg.dll - ok
17:20:49.0870 0480 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
17:20:49.0870 0480 C:\Windows\System32\cscapi.dll - ok
17:20:49.0870 0480 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:20:49.0870 0480 C:\Windows\System32\mpr.dll - ok
17:20:49.0885 0480 [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
17:20:49.0885 0480 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
17:20:49.0885 0480 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
17:20:49.0885 0480 C:\Windows\System32\spp.dll - ok
17:20:49.0885 0480 [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
17:20:49.0885 0480 C:\Windows\System32\srclient.dll - ok
17:20:49.0885 0480 [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
17:20:49.0885 0480 C:\Windows\System32\sxsstore.dll - ok
17:20:49.0901 0480 [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
17:20:49.0901 0480 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
17:20:49.0901 0480 [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
17:20:49.0901 0480 C:\Windows\servicing\CbsApi.dll - ok
17:20:49.0901 0480 [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
17:20:49.0901 0480 C:\Windows\System32\HelpPaneProxy.dll - ok
17:20:49.0916 0480 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
17:20:49.0916 0480 C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
17:20:49.0916 0480 [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll
17:20:49.0916 0480 C:\Windows\System32\mgmtapi.dll - ok
17:20:49.0916 0480 [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll
17:20:49.0916 0480 C:\Windows\System32\tcpmib.dll - ok
17:20:49.0916 0480 [ 22F020C76E339EB2B2187BA73A7E4173 ] C:\Windows\System32\PrintIsolationHost.exe
17:20:49.0916 0480 C:\Windows\System32\PrintIsolationHost.exe - ok
17:20:49.0932 0480 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL
17:20:49.0932 0480 C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok
17:20:49.0932 0480 [ B6D0EB60B3F01A0B5554894784651190 ] C:\Windows\System32\spool\drivers\x64\3\HPZUIW71.DLL
17:20:49.0932 0480 C:\Windows\System32\spool\drivers\x64\3\HPZUIW71.DLL - ok
17:20:49.0932 0480 [ FCE23E27F62989AD0BB88E256E847A41 ] C:\Windows\System32\CertPolEng.dll
17:20:49.0932 0480 C:\Windows\System32\CertPolEng.dll - ok
17:20:49.0948 0480 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
17:20:49.0948 0480 C:\Windows\System32\dssenh.dll - ok
17:20:49.0948 0480 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:20:49.0948 0480 C:\Windows\System32\dllhost.exe - ok
17:20:49.0948 0480 [ 9028D1621C43DF8DFBD1C76860412A11 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
17:20:49.0948 0480 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
17:20:49.0948 0480 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:20:49.0948 0480 C:\Windows\System32\IDStore.dll - ok
17:20:49.0963 0480 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
17:20:49.0963 0480 C:\Windows\SysWOW64\apphelp.dll - ok
17:20:49.0963 0480 [ D1D5DAB39DCB4BE0359943738D87409B ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
17:20:49.0963 0480 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
17:20:49.0963 0480 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:20:49.0963 0480 C:\Windows\System32\MsCtfMonitor.dll - ok
17:20:49.0979 0480 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:20:49.0979 0480 C:\Windows\System32\msutb.dll - ok
17:20:49.0979 0480 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
17:20:49.0979 0480 C:\Windows\System32\AtBroker.exe - ok
17:20:49.0979 0480 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
17:20:49.0979 0480 C:\Windows\System32\userinit.exe - ok
17:20:49.0979 0480 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
17:20:49.0979 0480 C:\Windows\System32\dwm.exe - ok
17:20:49.0994 0480 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
17:20:49.0994 0480 C:\Windows\System32\dwmredir.dll - ok
17:20:49.0994 0480 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
17:20:49.0994 0480 C:\Windows\System32\dwmcore.dll - ok
17:20:49.0994 0480 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:20:49.0994 0480 C:\Windows\SysWOW64\dwmapi.dll - ok
17:20:50.0010 0480 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:20:50.0010 0480 C:\Windows\SysWOW64\uxtheme.dll - ok
17:20:50.0010 0480 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
17:20:50.0010 0480 C:\Windows\System32\d3d10_1.dll - ok
17:20:50.0010 0480 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
17:20:50.0010 0480 C:\Windows\System32\HotStartUserAgent.dll - ok
17:20:50.0010 0480 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
17:20:50.0010 0480 C:\Windows\System32\PlaySndSrv.dll - ok
17:20:50.0026 0480 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
17:20:50.0026 0480 C:\Windows\System32\d3d10_1core.dll - ok
17:20:50.0026 0480 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
17:20:50.0026 0480 C:\Windows\System32\esent.dll - ok
17:20:50.0026 0480 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
17:20:50.0026 0480 C:\Windows\System32\dxgi.dll - ok
17:20:50.0041 0480 [ 4C92EB7535CAA1681A77D928FBF9771F ] C:\Windows\System32\d3d11.dll
17:20:50.0041 0480 C:\Windows\System32\d3d11.dll - ok
17:20:50.0041 0480 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
17:20:50.0041 0480 C:\Windows\explorer.exe - ok
17:20:50.0041 0480 [ E9D6EA4D8FAFD1D095BFB0BEC5E0ED39 ] C:\Windows\System32\atidxx64.dll
17:20:50.0041 0480 C:\Windows\System32\atidxx64.dll - ok
17:20:50.0041 0480 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
17:20:50.0041 0480 C:\Windows\System32\ExplorerFrame.dll - ok
17:20:50.0057 0480 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
17:20:50.0057 0480 C:\Windows\System32\uDWM.dll - ok
17:20:50.0057 0480 [ 6F8EB694504B5A797317BDAB5DBA6B45 ] C:\Users\Lucille\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
17:20:50.0057 0480 C:\Users\Lucille\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll - ok
17:20:50.0057 0480 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
17:20:50.0057 0480 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
17:20:50.0057 0480 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
17:20:50.0057 0480 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
17:20:50.0072 0480 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:20:50.0072 0480 C:\Windows\System32\EhStorShell.dll - ok
17:20:50.0072 0480 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
17:20:50.0072 0480 C:\Windows\System32\ntshrui.dll - ok
17:20:50.0072 0480 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:20:50.0072 0480 C:\Windows\System32\IconCodecService.dll - ok
17:20:50.0088 0480 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
17:20:50.0088 0480 C:\Windows\System32\runonce.exe - ok
17:20:50.0088 0480 [ DD79A6B15C2F28DE98DF4852AAF6B13B ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
17:20:50.0088 0480 C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe - ok
17:20:50.0088 0480 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
17:20:50.0088 0480 C:\Windows\System32\mscoree.dll - ok
17:20:50.0088 0480 [ D44067027714CC58B8AB0AC38FDA1A0B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
17:20:50.0088 0480 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
17:20:50.0104 0480 [ B24232BCA42AA784A5C951B74B7789D3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
17:20:50.0104 0480 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
17:20:50.0104 0480 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
17:20:50.0104 0480 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
17:20:50.0104 0480 [ AB44EE3B916F1626B9C4222F2B6F2DE4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\bb750d3baf928f94ea3977e96af9769f\mscorlib.ni.dll
17:20:50.0104 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\bb750d3baf928f94ea3977e96af9769f\mscorlib.ni.dll - ok
17:20:50.0119 0480 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
17:20:50.0119 0480 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
17:20:50.0119 0480 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
17:20:50.0119 0480 C:\Windows\System32\riched20.dll - ok
17:20:50.0119 0480 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
17:20:50.0119 0480 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
17:20:50.0135 0480 [ DE9EC2C90DA5A74ACA19AF8CF564748E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\350ed175b92e48f5249a1bab538872e5\System.ni.dll
17:20:50.0135 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\350ed175b92e48f5249a1bab538872e5\System.ni.dll - ok
17:20:50.0135 0480 [ F0E839CDE31A9FF7F2D77A901099D334 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\981815c04012453ded108530fbdc4646\System.Drawing.ni.dll
17:20:50.0135 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\981815c04012453ded108530fbdc4646\System.Drawing.ni.dll - ok
17:20:50.0135 0480 [ F057F73C56937749F0652F8E9326BE1C ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\c97010ae0b7cd474407b3824041fbb40\System.Windows.Forms.ni.dll
17:20:50.0135 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\c97010ae0b7cd474407b3824041fbb40\System.Windows.Forms.ni.dll - ok
17:20:50.0135 0480 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
17:20:50.0135 0480 C:\Windows\SysWOW64\runonce.exe - ok
17:20:50.0150 0480 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
17:20:50.0150 0480 C:\Windows\SysWOW64\propsys.dll - ok
17:20:50.0150 0480 [ 5D9DC6332A4FC66388B09BBE7CF53750 ] C:\Windows\SysWOW64\urlmon.dll
17:20:50.0150 0480 C:\Windows\SysWOW64\urlmon.dll - ok
17:20:50.0150 0480 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
17:20:50.0150 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
17:20:50.0150 0480 [ 372948BB5E41CE42341C4398DE572E56 ] C:\Windows\SysWOW64\secur32.dll
17:20:50.0150 0480 C:\Windows\SysWOW64\secur32.dll - ok
17:20:50.0166 0480 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
17:20:50.0166 0480 C:\Windows\SysWOW64\cmd.exe - ok
17:20:50.0166 0480 [ BF95EA5809E3BBF55370F7CB309FEBD0 ] C:\Windows\System32\conhost.exe
17:20:50.0166 0480 C:\Windows\System32\conhost.exe - ok
17:20:50.0166 0480 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
17:20:50.0166 0480 C:\Windows\SysWOW64\winbrand.dll - ok
17:20:50.0182 0480 [ 79FA7D8B488F90EDE325963379A6F738 ] C:\Windows\SysWOW64\ieframe.dll
17:20:50.0182 0480 C:\Windows\SysWOW64\ieframe.dll - ok
17:20:50.0182 0480 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
17:20:50.0182 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
17:20:50.0182 0480 [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503 ] C:\Windows\SysWOW64\shdocvw.dll
17:20:50.0182 0480 C:\Windows\SysWOW64\shdocvw.dll - ok
17:20:50.0182 0480 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
17:20:50.0182 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
17:20:50.0197 0480 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Lucille\AppData\Local\Temp\99BE4447-611E-4461-8F5E-6D5EE2332577.exe
17:20:50.0197 0480 C:\Users\Lucille\AppData\Local\Temp\99BE4447-611E-4461-8F5E-6D5EE2332577.exe - ok
17:20:50.0197 0480 [ 5B2E4E90C04FB9AE9F2C5E99FF59B283 ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:20:50.0197 0480 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:20:50.0197 0480 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
17:20:50.0197 0480 C:\Windows\SysWOW64\EhStorShell.dll - ok
17:20:50.0213 0480 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
17:20:50.0213 0480 C:\Windows\SysWOW64\ntshrui.dll - ok
17:20:50.0213 0480 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
17:20:50.0213 0480 C:\Windows\SysWOW64\cscapi.dll - ok
17:20:50.0213 0480 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
17:20:50.0213 0480 C:\Windows\SysWOW64\imageres.dll - ok
17:20:50.0213 0480 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
17:20:50.0213 0480 C:\Windows\SysWOW64\slc.dll - ok
17:20:50.0228 0480 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
17:20:50.0228 0480 C:\Windows\SysWOW64\srvcli.dll - ok
17:20:50.0228 0480 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
17:20:50.0228 0480 C:\Windows\System32\aelupsvc.dll - ok
17:20:50.0228 0480 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:20:50.0228 0480 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
17:20:50.0244 0480 [ A43B937C580F5DFC43EF63EF72992FE9 ] C:\Program Files (x86)\Google\Update\1.3.22.5\goopdate.dll
17:20:50.0244 0480 C:\Program Files (x86)\Google\Update\1.3.22.5\goopdate.dll - ok
17:20:50.0244 0480 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
17:20:50.0244 0480 C:\Windows\SysWOW64\msi.dll - ok
17:20:50.0244 0480 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
17:20:50.0244 0480 C:\Windows\SysWOW64\netapi32.dll - ok
17:20:50.0244 0480 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
17:20:50.0244 0480 C:\Windows\SysWOW64\netutils.dll - ok
17:20:50.0260 0480 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
17:20:50.0260 0480 C:\Windows\SysWOW64\wkscli.dll - ok
17:20:50.0260 0480 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:20:50.0260 0480 C:\Windows\SysWOW64\msimg32.dll - ok
17:20:50.0260 0480 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
17:20:50.0260 0480 C:\Windows\SysWOW64\dbghelp.dll - ok
17:20:50.0275 0480 [ C98ACDE22458C8F46FD0503CB9E2D01F ] C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
17:20:50.0275 0480 C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe - ok
17:20:50.0275 0480 [ EA8B5B41163A06FFA8930F5316473035 ] C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
17:20:50.0275 0480 C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe - ok
17:20:50.0275 0480 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
17:20:50.0275 0480 C:\Windows\SysWOW64\mstask.dll - ok
17:20:50.0291 0480 [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe
17:20:50.0291 0480 C:\Users\Lucille\AppData\Local\Google\Update\GoogleUpdate.exe - ok
17:20:50.0291 0480 [ A43B937C580F5DFC43EF63EF72992FE9 ] C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\goopdate.dll
17:20:50.0291 0480 C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\goopdate.dll - ok
17:20:50.0291 0480 [ D0B90C38FA3CD4F4A03F0BF1FD45B635 ] C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\goopdateres_en.dll
17:20:50.0291 0480 C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\goopdateres_en.dll - ok
17:20:50.0291 0480 [ C65B115A03DB0260895DE96681E88221 ] C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
17:20:50.0291 0480 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe - ok
17:20:50.0306 0480 [ EF06E2DEDA4BEBF1848FE395D078FFC1 ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
17:20:50.0306 0480 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe - ok
17:20:50.0306 0480 [ 7B93C623333F121DC9E689CCB1B7A733 ] C:\Windows\SysWOW64\MFC71u.dll
17:20:50.0306 0480 C:\Windows\SysWOW64\MFC71u.dll - ok
17:20:50.0306 0480 [ 84174CA0E190BB9D1EFD0F005FE13B35 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll
17:20:50.0306 0480 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18120_none_72d2e82386681b36\GdiPlus.dll - ok
17:20:50.0322 0480 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
17:20:50.0322 0480 C:\Windows\SysWOW64\msvcr71.dll - ok
17:20:50.0322 0480 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
17:20:50.0322 0480 C:\Windows\SysWOW64\msvcp71.dll - ok
17:20:50.0322 0480 [ ED2F7EB7E90CEC72E8DBDDD743525314 ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
17:20:50.0322 0480 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll - ok
17:20:50.0338 0480 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
17:20:50.0338 0480 C:\Windows\SysWOW64\drprov.dll - ok
17:20:50.0338 0480 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
17:20:50.0338 0480 C:\Windows\SysWOW64\ntlanman.dll - ok
17:20:50.0338 0480 [ EAF4712B706936C0B10D3B5319B37E81 ] C:\Windows\SysWOW64\davclnt.dll
17:20:50.0338 0480 C:\Windows\SysWOW64\davclnt.dll - ok
17:20:50.0338 0480 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
17:20:50.0338 0480 C:\Windows\SysWOW64\davhlpr.dll - ok
17:20:50.0353 0480 [ E4561704CBFA193761743E5AF746C669 ] C:\Windows\SysWOW64\msxml3.dll
17:20:50.0353 0480 C:\Windows\SysWOW64\msxml3.dll - ok
17:20:50.0353 0480 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
17:20:50.0353 0480 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
17:20:50.0353 0480 [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
17:20:50.0353 0480 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
17:20:50.0369 0480 [ 3F126756F43B4EE74A4831145D99B9BA ] C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\Common\CLRCEngine3.dll
17:20:50.0369 0480 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\Common\CLRCEngine3.dll - ok
17:20:50.0369 0480 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
17:20:50.0369 0480 C:\Windows\SysWOW64\xmllite.dll - ok
17:20:50.0369 0480 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:20:50.0369 0480 C:\Windows\SysWOW64\linkinfo.dll - ok
17:20:50.0369 0480 [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\SysWOW64\networkexplorer.dll
17:20:50.0369 0480 C:\Windows\SysWOW64\networkexplorer.dll - ok
17:20:50.0384 0480 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
17:20:50.0384 0480 C:\Windows\SysWOW64\credssp.dll - ok
17:20:50.0384 0480 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:20:50.0384 0480 C:\Windows\System32\wbem\NCProv.dll - ok
17:20:50.0384 0480 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
17:20:50.0384 0480 C:\Windows\SysWOW64\sfc.dll - ok
17:20:50.0384 0480 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
17:20:50.0384 0480 C:\Windows\SysWOW64\sfc_os.dll - ok
17:20:50.0400 0480 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
17:20:50.0400 0480 C:\Windows\SysWOW64\devrtl.dll - ok
17:20:50.0400 0480 [ AB272BBFB05A8585C3405EFA9F605774 ] C:\Windows\System32\wmploc.DLL
17:20:50.0400 0480 C:\Windows\System32\wmploc.DLL - ok
17:20:50.0400 0480 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
17:20:50.0400 0480 C:\Windows\System32\themeui.dll - ok
17:20:50.0416 0480 [ 27516B54E116D5EF8B0129B5C829A87C ] C:\Windows\System32\ie4uinit.exe
17:20:50.0416 0480 C:\Windows\System32\ie4uinit.exe - ok
17:20:50.0416 0480 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
17:20:50.0416 0480 C:\Windows\System32\timedate.cpl - ok
17:20:50.0416 0480 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
17:20:50.0416 0480 C:\Windows\System32\actxprxy.dll - ok
17:20:50.0416 0480 [ 23B001185B7C3CB1F4BDEB143E6B45B7 ] C:\Windows\System32\shdocvw.dll
17:20:50.0416 0480 C:\Windows\System32\shdocvw.dll - ok
17:20:50.0431 0480 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:20:50.0431 0480 C:\Windows\System32\linkinfo.dll - ok
17:20:50.0431 0480 [ 49FD14B8F41EFA4BC2181ECECB441425 ] C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoLibraryDuiResourcesLocalized.dll
17:20:50.0431 0480 C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoLibraryDuiResourcesLocalized.dll - ok
17:20:50.0431 0480 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
17:20:50.0431 0480 C:\Windows\System32\msftedit.dll - ok
17:20:50.0431 0480 [ 2EBD0C5B090125AECF017C57344C45AB ] C:\Windows\System32\msls31.dll
17:20:50.0431 0480 C:\Windows\System32\msls31.dll - ok
17:20:50.0447 0480 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
17:20:50.0447 0480 C:\Windows\System32\gameux.dll - ok
17:20:50.0447 0480 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
17:20:50.0447 0480 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
17:20:50.0447 0480 [ 50B6C8EA3315966B46FCB4F90EA9DB1B ] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
17:20:50.0447 0480 C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe - ok
17:20:50.0462 0480 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
17:20:50.0462 0480 C:\Windows\System32\DeviceCenter.dll - ok
17:20:50.0462 0480 [ 233A10D4B3F6897899112E4EC60F1906 ] C:\Windows\WindowsMobile\wmdc.exe
17:20:50.0462 0480 C:\Windows\WindowsMobile\wmdc.exe - ok
17:20:50.0462 0480 [ FC4C561550E5407FFA29D4F6C69B272F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll
17:20:50.0462 0480 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll - ok
17:20:50.0462 0480 [ DB02F4D37E5F7F07A0D0F9FAA68249EE ] C:\Windows\System32\ieframe.dll
17:20:50.0462 0480 C:\Windows\System32\ieframe.dll - ok
17:20:50.0478 0480 [ 6C457C8E7D16A708F7818877F570ADFC ] C:\Windows\System32\rapistub.dll
17:20:50.0478 0480 C:\Windows\System32\rapistub.dll - ok
17:20:50.0478 0480 [ 2978388067E79B781BFF6DD2AB565376 ] C:\Windows\System32\rapi.dll
17:20:50.0478 0480 C:\Windows\System32\rapi.dll - ok
17:20:50.0478 0480 [ 56312836FE23FADC4F838656D7477A93 ] C:\Windows\System32\ceutil.dll
17:20:50.0478 0480 C:\Windows\System32\ceutil.dll - ok
17:20:50.0494 0480 [ A55E7D0D873B2C97585B3B5926AC6ADE ] C:\Windows\WindowsMobile\rapimgr.dll
17:20:50.0494 0480 C:\Windows\WindowsMobile\rapimgr.dll - ok
17:20:50.0494 0480 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
17:20:50.0494 0480 C:\Windows\System32\msvcp60.dll - ok
17:20:50.0494 0480 [ C676E5EA388AF7C4C031F56F9B42E362 ] C:\Windows\System32\d2d1.dll
17:20:50.0494 0480 C:\Windows\System32\d2d1.dll - ok
17:20:50.0494 0480 [ 7B40621518648A67E8F543904696A219 ] C:\Windows\System32\rapiproxystub.dll
17:20:50.0494 0480 C:\Windows\System32\rapiproxystub.dll - ok
17:20:50.0509 0480 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] C:\Windows\WindowsMobile\wcescomm.dll
17:20:50.0509 0480 C:\Windows\WindowsMobile\wcescomm.dll - ok
17:20:50.0509 0480 [ 5D0F03EEF3205F66ECFBE72A7CBBAD1F ] C:\Windows\System32\winusb.dll
17:20:50.0509 0480 C:\Windows\System32\winusb.dll - ok
17:20:50.0509 0480 [ F76DE9FC66F049AE7DCC2C6AA082CA90 ] C:\Windows\WindowsMobile\tcp2udp.dll
17:20:50.0509 0480 C:\Windows\WindowsMobile\tcp2udp.dll - ok
17:20:50.0525 0480 [ B44A28651149D885FCD33FEC08A7733C ] C:\Windows\System32\wcescommproxy.dll
17:20:50.0525 0480 C:\Windows\System32\wcescommproxy.dll - ok
17:20:50.0525 0480 [ F2FD94A4F1E5400DB959A2987B8081E9 ] C:\Windows\WindowsMobile\dtptdns.dll
17:20:50.0525 0480 C:\Windows\WindowsMobile\dtptdns.dll - ok
17:20:50.0525 0480 [ 19951B1AF3F684B1293FB633D3BA73B6 ] C:\Windows\WindowsMobile\BthASPlugin.dll
17:20:50.0525 0480 C:\Windows\WindowsMobile\BthASPlugin.dll - ok
17:20:50.0525 0480 [ DD85F00EC31F77315AE992B7B0411D65 ] C:\Windows\System32\DWrite.dll
17:20:50.0525 0480 C:\Windows\System32\DWrite.dll - ok
17:20:50.0540 0480 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
17:20:50.0540 0480 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
17:20:50.0540 0480 [ DC2755EB981280C312E7BE5EE8CF5D62 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
17:20:50.0540 0480 C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
17:20:50.0540 0480 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
17:20:50.0540 0480 C:\Windows\System32\UIAnimation.dll - ok
17:20:50.0540 0480 [ E8710B5DDA963E6BA198DF5FB209E72A ] C:\Windows\System32\d3d10warp.dll
17:20:50.0556 0480 C:\Windows\System32\d3d10warp.dll - ok
17:20:50.0556 0480 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
17:20:50.0556 0480 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
17:20:50.0556 0480 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
17:20:50.0556 0480 C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
17:20:50.0556 0480 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
17:20:50.0556 0480 C:\Windows\System32\SyncCenter.dll - ok
17:20:50.0572 0480 [ E37A7354D3E135E61203BE0CFB90E978 ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
17:20:50.0572 0480 C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
17:20:50.0572 0480 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
17:20:50.0572 0480 C:\Windows\System32\msi.dll - ok
17:20:50.0572 0480 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
17:20:50.0572 0480 C:\Windows\System32\networkexplorer.dll - ok
17:20:50.0572 0480 [ 6860E32B7335EC62295673AA2106A407 ] C:\Program Files\Microsoft Security Client\msseces.exe
17:20:50.0572 0480 C:\Program Files\Microsoft Security Client\msseces.exe - ok
17:20:50.0587 0480 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
17:20:50.0587 0480 C:\Windows\System32\drprov.dll - ok
17:20:50.0587 0480 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
17:20:50.0587 0480 C:\Windows\System32\ntlanman.dll - ok
17:20:50.0587 0480 [ B32AB94A432289AC2DF77A3DCAD32EED ] C:\Windows\System32\davclnt.dll
17:20:50.0587 0480 C:\Windows\System32\davclnt.dll - ok
17:20:50.0603 0480 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
17:20:50.0603 0480 C:\Windows\System32\davhlpr.dll - ok
17:20:50.0603 0480 [ 9157189DC07511ECBBE1D2615D8A2FED ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
17:20:50.0603 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe - ok
17:20:50.0603 0480 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
17:20:50.0603 0480 C:\Windows\System32\SearchFolder.dll - ok
17:20:50.0603 0480 [ C9AEBF3A8363AC7FF23ACE4DFA9B6D82 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
17:20:50.0603 0480 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
17:20:50.0618 0480 [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
17:20:50.0618 0480 C:\Windows\System32\StructuredQuery.dll - ok
17:20:50.0618 0480 [ A1A6509F6D12AB2B435EF08CD4FD675E ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
17:20:50.0618 0480 C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
17:20:50.0618 0480 [ 8CC33F757E817C7C03C6A5F7FDF85F09 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll
17:20:50.0618 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll - ok
17:20:50.0634 0480 [ E0E15F209360E4A97ABCC21A486B4AEE ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
17:20:50.0634 0480 C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe - ok
17:20:50.0634 0480 [ F920FBB43C1CDB905044C91B9A3FD516 ] C:\Program Files (x86)\Skype\Phone\Skype.exe
17:20:50.0634 0480 C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
17:20:50.0634 0480 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:20:50.0634 0480 C:\Windows\System32\msiltcfg.dll - ok
17:20:50.0634 0480 [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
17:20:50.0634 0480 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
17:20:50.0650 0480 [ 554A50B5310E702029D3A675459108FF ] C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
17:20:50.0650 0480 C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe - ok
17:20:50.0650 0480 [ 013F05784A4BD193C9CD1817ACC31B6B ] C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe
17:20:50.0650 0480 C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe - ok
17:20:50.0650 0480 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
17:20:50.0650 0480 C:\Windows\System32\thumbcache.dll - ok
17:20:50.0665 0480 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
17:20:50.0665 0480 C:\Windows\System32\l3codeca.acm - ok
17:20:50.0665 0480 [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
17:20:50.0665 0480 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
17:20:50.0665 0480 [ 82D73D171BF119B5AAE68BFEFADFE9FE ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd_main.dll
17:20:50.0665 0480 C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd_main.dll - ok
17:20:50.0665 0480 [ 6B67537ED035A6700FDA8F549048A06A ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:20:50.0665 0480 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
17:20:50.0681 0480 [ AEB43D2A8158FB535F48F440CC266953 ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\gtn.dll
17:20:50.0681 0480 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\gtn.dll - ok
17:20:50.0681 0480 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
17:20:50.0681 0480 C:\Windows\SysWOW64\hid.dll - ok
17:20:50.0681 0480 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
17:20:50.0681 0480 C:\Windows\SysWOW64\rasapi32.dll - ok
17:20:50.0696 0480 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
17:20:50.0696 0480 C:\Windows\SysWOW64\rasman.dll - ok
17:20:50.0696 0480 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
17:20:50.0696 0480 C:\Windows\SysWOW64\rtutils.dll - ok
17:20:50.0696 0480 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
17:20:50.0696 0480 C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
17:20:50.0696 0480 [ D3088606C810A355EAE9B9056C9B5392 ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll
17:20:50.0696 0480 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll - ok
17:20:50.0712 0480 [ 739AFF76CF8D1280EB3E10DD02748DDF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll
17:20:50.0712 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll - ok
17:20:50.0712 0480 [ 4EFCDF3DB1BBA69C09622991280C4ACB ] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe
17:20:50.0712 0480 C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe - ok
17:20:50.0712 0480 [ 6AFD3970A41F48306874DB23991A4955 ] C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
17:20:50.0712 0480 C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe - ok
17:20:50.0728 0480 [ 5343E22001C5682CD503EC35FFCD0FB2 ] C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe
17:20:50.0728 0480 C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\AirNCFG.exe - ok
17:20:50.0728 0480 [ C16C054F1E07EE69090B03B5E053BA36 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\GenerationalStorage.dll
17:20:50.0728 0480 C:\Program Files (x86)\Common Files\Apple\Internet Services\GenerationalStorage.dll - ok
17:20:50.0728 0480 [ 4263F6C131E513CEA1AE82B5B81A4E1A ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
17:20:50.0728 0480 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
17:20:50.0728 0480 [ F81F14DC4DD866552DD37398E68FE23F ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ChunkingLibrary.dll
17:20:50.0728 0480 C:\Program Files (x86)\Common Files\Apple\Internet Services\ChunkingLibrary.dll - ok
17:20:50.0743 0480 [ 41E31912E5B6345AAFFC9C82D8980A97 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll
17:20:50.0743 0480 C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll - ok
17:20:50.0743 0480 [ B7F2C4D496CAD656016E49BFCE6143A5 ] C:\Windows\SysWOW64\wnicapi.dll
17:20:50.0743 0480 C:\Windows\SysWOW64\wnicapi.dll - ok
17:20:50.0743 0480 [ C98ACDE22458C8F46FD0503CB9E2D01F ] C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe
17:20:50.0743 0480 C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler.exe - ok
17:20:50.0759 0480 [ 72F9DA60AD131D4A74D17C4D62B75B24 ] C:\Program Files (x86)\winsim\ConnectionManager\Simply.SystemTrayIcon.exe
17:20:50.0759 0480 C:\Program Files (x86)\winsim\ConnectionManager\Simply.SystemTrayIcon.exe - ok
17:20:50.0759 0480 [ 3FBBF6092C4EF5F50302707063E853EF ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
17:20:50.0759 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe - ok
17:20:50.0759 0480 [ F1B967838DBAD78327434D36A447E183 ] C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\ANIOApi.dll
17:20:50.0759 0480 C:\Program Files (x86)\D-Link\D-Link Wireless N DWA-130\ANIOApi.dll - ok
17:20:50.0774 0480 [ 61E4289E91E88C90478D7F4BEB10DCF7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
17:20:50.0774 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
17:20:50.0774 0480 [ 3129AC158EA2682786939973420D5C0C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll
17:20:50.0774 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll - ok
17:20:50.0774 0480 [ 57549093CA2C536855F7C04E8789679A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll
17:20:50.0774 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll - ok
17:20:50.0790 0480 [ 48B9248CED8A5DE4EB0917CB676CB8D5 ] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
17:20:50.0790 0480 C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe - ok
17:20:50.0790 0480 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
17:20:50.0790 0480 C:\Windows\SysWOW64\mfc42.dll - ok
17:20:50.0790 0480 [ E2D1853679F5BCCDB9100D02AE8A0444 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll
17:20:50.0790 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll - ok
17:20:50.0790 0480 [ 13820B972D74B3DE4F6552A57AC799A7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
17:20:50.0790 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
17:20:50.0806 0480 [ FC3CCDC979CE75AFF02DAF3B7286D0A1 ] C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
17:20:50.0806 0480 C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe - ok
17:20:50.0806 0480 [ 8721DD94434AD318C01B008E7F99E119 ] C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2009 Deluxe\Planner\PLNRnote.exe
17:20:50.0806 0480 C:\Program Files (x86)\Creative Home\Hallmark Card Studio 2009 Deluxe\Planner\PLNRnote.exe - ok
17:20:50.0806 0480 [ 544DBFEE6C4C2F2FA626F0C4D5E3C8C3 ] C:\Program Files (x86)\Sony\PMB\XpStorageDevice_WinXp2k.dll
17:20:50.0806 0480 C:\Program Files (x86)\Sony\PMB\XpStorageDevice_WinXp2k.dll - ok
17:20:50.0821 0480 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
17:20:50.0821 0480 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
17:20:50.0821 0480 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
17:20:50.0821 0480 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
17:20:50.0821 0480 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
17:20:50.0821 0480 C:\Windows\System32\stobject.dll - ok
17:20:50.0821 0480 [ FB35DC61EB4ECC8148A307DEA7202669 ] C:\Windows\SysWOW64\msxml4.dll
17:20:50.0821 0480 C:\Windows\SysWOW64\msxml4.dll - ok
17:20:50.0837 0480 [ 048EA4B978851788E9F5E8E4F081DF7A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:20:50.0837 0480 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
17:20:50.0837 0480 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
17:20:50.0837 0480 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
17:20:50.0837 0480 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
17:20:50.0837 0480 C:\Windows\System32\batmeter.dll - ok
17:20:50.0852 0480 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
17:20:50.0852 0480 C:\Windows\SysWOW64\odbc32.dll - ok
17:20:50.0852 0480 [ 9ACCBC5891BA51B5B29C1A88F80D4CE3 ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:20:50.0852 0480 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
17:20:50.0852 0480 [ B2387FD351A3D4780A917E4C00A83310 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
17:20:50.0852 0480 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
17:20:50.0852 0480 [ 12DDA8027618DE959EB6FD0A4FAB2DE8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5c24d3b0041ebf4f48a93615b9fa3de9\System.Drawing.ni.dll
17:20:50.0852 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5c24d3b0041ebf4f48a93615b9fa3de9\System.Drawing.ni.dll - ok
17:20:50.0868 0480 [ 05A0D40AAB3D2CD5AF532943D92DE69B ] C:\Windows\SysWOW64\WlanApp.dll
17:20:50.0868 0480 C:\Windows\SysWOW64\WlanApp.dll - ok
17:20:50.0868 0480 [ A03C933F94D952723293CD5092289BC3 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
17:20:50.0868 0480 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
17:20:50.0868 0480 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
17:20:50.0868 0480 C:\Windows\SysWOW64\cryptui.dll - ok
17:20:50.0884 0480 [ 337461F2DDD051EFE30B3FEB5854059E ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
17:20:50.0884 0480 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
17:20:50.0884 0480 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
17:20:50.0884 0480 C:\Windows\SysWOW64\samcli.dll - ok
17:20:50.0884 0480 [ 5B6E8E09BE6401A7E022F52FDFCB2FF8 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:20:50.0884 0480 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
17:20:50.0884 0480 [ ECF45E3FC8C63E44ED45D38A8672E7F1 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe
17:20:50.0884 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.exe - ok
17:20:50.0899 0480 [ 89D9685F59184F2D52BEE50E8298C8D9 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll
17:20:50.0899 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll - ok
17:20:50.0899 0480 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
17:20:50.0899 0480 C:\Windows\System32\prnfldr.dll - ok
17:20:50.0899 0480 [ 3687E37869B69040657E0CE3F5DB58AA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll
17:20:50.0899 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll - ok
17:20:50.0915 0480 [ 897D719D3B4E514505985AB74D029EEF ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
17:20:50.0915 0480 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
17:20:50.0915 0480 [ A7DA411E22D08D4F869EB8952AD38060 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll
17:20:50.0915 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll - ok
17:20:50.0915 0480 [ C753ED3DA24F3FE86F754E08A14E2460 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\Ubiquity.dll
17:20:50.0915 0480 C:\Program Files (x86)\Common Files\Apple\Internet Services\Ubiquity.dll - ok
17:20:50.0915 0480 [ 89084DD8C7A4C7FCDA50485B33C6C98D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\mmcs.dll
17:20:50.0915 0480 C:\Program Files (x86)\Common Files\Apple\Internet Services\mmcs.dll - ok
17:20:50.0930 0480 [ CE5C9977DA751DDC30952AC4DCBCA788 ] C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
17:20:50.0930 0480 C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe - ok
17:20:50.0930 0480 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
17:20:50.0930 0480 C:\Windows\SysWOW64\oledlg.dll - ok
17:20:50.0930 0480 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
17:20:50.0930 0480 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
17:20:50.0946 0480 [ CCDA8E6A2AC68FD417A8BB8D88CBFDAC ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
17:20:50.0946 0480 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
17:20:50.0946 0480 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
17:20:50.0946 0480 C:\Windows\SysWOW64\msiltcfg.dll - ok
17:20:50.0946 0480 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
17:20:50.0946 0480 C:\Windows\SysWOW64\olepro32.dll - ok
17:20:50.0946 0480 [ AA2903E3EEE74D5A14846629822AD0AA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
17:20:50.0946 0480 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe - ok
17:20:50.0962 0480 [ C0E1D09C01019F27F2B06BBA152CDB07 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpquio08.dll
17:20:50.0962 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpquio08.dll - ok
17:20:50.0962 0480 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
17:20:50.0962 0480 C:\Windows\SysWOW64\odbcint.dll - ok
17:20:50.0962 0480 [ 794918BA6D0EEB27C9132F5B90A39C0C ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.rsc
17:20:50.0962 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtra08.rsc - ok
17:20:50.0977 0480 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
17:20:50.0977 0480 C:\Windows\SysWOW64\wlanapi.dll - ok
17:20:50.0977 0480 [ DD1173E82083162858D1D4EAF43EC69B ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtao08.dll
17:20:50.0977 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqtao08.dll - ok
17:20:50.0977 0480 [ 58FC1B36032F03342E4C02813F80DAC1 ] C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe
17:20:50.0977 0480 C:\Users\Lucille\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
17:20:50.0977 0480 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
17:20:50.0977 0480 C:\Windows\SysWOW64\wlanutil.dll - ok
17:20:50.0993 0480 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
17:20:50.0993 0480 C:\Windows\System32\DXP.dll - ok
17:20:50.0993 0480 [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
17:20:50.0993 0480 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
17:20:50.0993 0480 [ 7044F8CFA0CF979E29D91EBBB3485FF8 ] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcherLOC.dll
17:20:50.0993 0480 C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcherLOC.dll - ok
17:20:51.0008 0480 [ EA8B5B41163A06FFA8930F5316473035 ] C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
17:20:51.0008 0480 C:\Users\Lucille\AppData\Local\Google\Update\1.3.22.5\GoogleCrashHandler64.exe - ok
17:20:51.0008 0480 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:20:51.0008 0480 C:\Windows\System32\Syncreg.dll - ok
17:20:51.0008 0480 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
17:20:51.0008 0480 C:\Windows\System32\rundll32.exe - ok
17:20:51.0008 0480 [ E83D2495D5867E224FBF42EF40D8856C ] C:\Program Files\DVD Maker\DVDMaker.exe
17:20:51.0008 0480 C:\Program Files\DVD Maker\DVDMaker.exe - ok
17:20:51.0024 0480 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:20:51.0024 0480 C:\Windows\ehome\ehSSO.dll - ok
17:20:51.0024 0480 [ 32C26797AB646074A2BB562F9D10ADB5 ] C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
17:20:51.0024 0480 C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE - ok
17:20:51.0024 0480 [ BF49381D79D5257BF7579AF367E1719F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8bc548587e91ecf0552a40e47bbf99cc\System.Windows.Forms.ni.dll
17:20:51.0024 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8bc548587e91ecf0552a40e47bbf99cc\System.Windows.Forms.ni.dll - ok
17:20:51.0040 0480 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
17:20:51.0040 0480 C:\Windows\System32\netshell.dll - ok
17:20:51.0040 0480 [ 65AF88D89E9F1F43198EB7D4DBF2E34B ] C:\Program Files\Internet Explorer\sqmapi.dll
17:20:51.0040 0480 C:\Program Files\Internet Explorer\sqmapi.dll - ok
17:20:51.0040 0480 [ B6D3C63C07085941446AA90BD77AC07F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll
17:20:51.0040 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll - ok
17:20:51.0055 0480 [ 2EE693BE96C0D9E885CBC0FAC177D379 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
17:20:51.0055 0480 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
17:20:51.0055 0480 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
17:20:51.0055 0480 C:\Windows\System32\WPDShServiceObj.dll - ok
17:20:51.0055 0480 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
17:20:51.0055 0480 C:\Windows\System32\ActionCenter.dll - ok
17:20:51.0055 0480 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
17:20:51.0055 0480 C:\Windows\System32\srchadmin.dll - ok
17:20:51.0071 0480 [ 71F993192EB04B2C4C80F2DEE9119229 ] C:\Program Files\iPod\bin\iPodService.exe
17:20:51.0071 0480 C:\Program Files\iPod\bin\iPodService.exe - ok
17:20:51.0071 0480 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:20:51.0071 0480 C:\Windows\System32\AltTab.dll - ok
17:20:51.0071 0480 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
17:20:51.0071 0480 C:\Windows\System32\pnidui.dll - ok
17:20:51.0086 0480 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
17:20:51.0086 0480 C:\Windows\System32\QUTIL.DLL - ok
17:20:51.0086 0480 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
17:20:51.0086 0480 C:\Windows\System32\bthprops.cpl - ok
17:20:51.0086 0480 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
17:20:51.0086 0480 C:\Windows\SysWOW64\d3d9.dll - ok
17:20:51.0086 0480 [ 7861112ACB32FD733C415E408B5955C9 ] C:\Windows\SysWOW64\ANIWZCS2.dll
17:20:51.0086 0480 C:\Windows\SysWOW64\ANIWZCS2.dll - ok
17:20:51.0102 0480 [ F1B967838DBAD78327434D36A447E183 ] C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIOApi.dll
17:20:51.0102 0480 C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIOApi.dll - ok
17:20:51.0102 0480 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:20:51.0102 0480 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:20:51.0102 0480 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
17:20:51.0102 0480 C:\Windows\SysWOW64\pdh.dll - ok
17:20:51.0118 0480 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
17:20:51.0118 0480 C:\Windows\SysWOW64\powrprof.dll - ok
17:20:51.0118 0480 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
17:20:51.0118 0480 C:\Windows\SysWOW64\msacm32.dll - ok
17:20:51.0118 0480 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
17:20:51.0118 0480 C:\Windows\SysWOW64\devenum.dll - ok
17:20:51.0118 0480 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
17:20:51.0118 0480 C:\Windows\SysWOW64\msdmo.dll - ok
17:20:51.0133 0480 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
17:20:51.0133 0480 C:\Windows\SysWOW64\avicap32.dll - ok
17:20:51.0133 0480 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
17:20:51.0133 0480 C:\Windows\SysWOW64\msvfw32.dll - ok
17:20:51.0133 0480 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:20:51.0133 0480 C:\Windows\System32\FXSST.dll - ok
17:20:51.0133 0480 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
17:20:51.0133 0480 C:\Windows\SysWOW64\avrt.dll - ok
17:20:51.0149 0480 [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\SysWOW64\PortableDeviceApi.dll
17:20:51.0149 0480 C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
17:20:51.0149 0480 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
17:20:51.0149 0480 C:\Windows\SysWOW64\mapi32.dll - ok
17:20:51.0149 0480 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\SysWOW64\PortableDeviceTypes.dll
17:20:51.0149 0480 C:\Windows\SysWOW64\PortableDeviceTypes.dll - ok
17:20:51.0164 0480 [ 021EFD0024B1D92BA1467F60F02DAA89 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\4b1795df6372b251625f958595e08d3d\System.Web.ni.dll
17:20:51.0164 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\4b1795df6372b251625f958595e08d3d\System.Web.ni.dll - ok
17:20:51.0164 0480 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
17:20:51.0164 0480 C:\Windows\System32\FXSAPI.dll - ok
17:20:51.0164 0480 [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Program Files (x86)\Windows Portable Devices\sqmapi.dll
17:20:51.0164 0480 C:\Program Files (x86)\Windows Portable Devices\sqmapi.dll - ok
17:20:51.0164 0480 [ 0272B199B434CB15FCF821884E5153D7 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll
17:20:51.0164 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll - ok
17:20:51.0180 0480 [ 0F6C6CD496925E89A71803F34B157EF2 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpotradd.dll
17:20:51.0180 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpotradd.dll - ok
17:20:51.0180 0480 [ 0C731C5B45C6FA1580773957D628F1B6 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
17:20:51.0180 0480 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
17:20:51.0180 0480 [ BB96E2FBC5F1FB48240C01A4D7F010D4 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
17:20:51.0180 0480 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
17:20:51.0196 0480 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Windows\SysWOW64\msvcp100.dll
17:20:51.0196 0480 C:\Windows\SysWOW64\msvcp100.dll - ok
17:20:51.0196 0480 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
17:20:51.0196 0480 C:\Windows\System32\FXSSVC.exe - ok
17:20:51.0196 0480 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
17:20:51.0196 0480 C:\Windows\System32\SearchIndexer.exe - ok
17:20:51.0211 0480 [ 8DFB5078508924FA725C203CE179B10C ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:20:51.0211 0480 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:20:51.0211 0480 [ ADE4DAE3CD6FD56BC525C11409007598 ] C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPStatusBL.dll
17:20:51.0211 0480 C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPStatusBL.dll - ok
17:20:51.0211 0480 [ 862CC528BD5FB39E42F53A5666D9469C ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpotra08.dll
17:20:51.0211 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpotra08.dll - ok
17:20:51.0211 0480 [ 1843E81FA7ACFFF4344A7DD4328D7DA0 ] C:\Program Files (x86)\Microsoft Office\Office12\1033\ONINTL.DLL
17:20:51.0211 0480 C:\Program Files (x86)\Microsoft Office\Office12\1033\ONINTL.DLL - ok
17:20:51.0227 0480 [ 9AAADE86A4659A69CF5AA298C8AEEC22 ] C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe
17:20:51.0227 0480 C:\Program Files\Microsoft Games\Mahjong\Mahjong.exe - ok
17:20:51.0227 0480 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Windows\SysWOW64\msvcr100.dll
17:20:51.0227 0480 C:\Windows\SysWOW64\msvcr100.dll - ok
17:20:51.0227 0480 [ 8E2242BB3CB7A632A8CF22BDE2A41AE1 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
17:20:51.0227 0480 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
17:20:51.0242 0480 [ 570EE775B54604D9F7F35856E1D91C00 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpotra08.rsc
17:20:51.0242 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpotra08.rsc - ok
17:20:51.0242 0480 [ 3C69CE161C7007E9AD53A325492D446A ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqrif08.dll
17:20:51.0242 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqrif08.dll - ok
17:20:51.0242 0480 [ B0A41262968DD6FCE3933527892D4A24 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqmif08.dll
17:20:51.0242 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqmif08.dll - ok
17:20:51.0242 0480 [ C863E5A2417DF0F2A31ED32C3B2CB23F ] C:\Windows\SysWOW64\mshtml.dll
17:20:51.0242 0480 C:\Windows\SysWOW64\mshtml.dll - ok
17:20:51.0258 0480 [ 11FBB8CB6865B7BA387095398EB91ED4 ] C:\Windows\SysWOW64\rapi.dll
17:20:51.0258 0480 C:\Windows\SysWOW64\rapi.dll - ok
17:20:51.0258 0480 [ B0B4C590C0CAE7741DA17E3DC86CC828 ] C:\Windows\SysWOW64\ceutil.dll
17:20:51.0258 0480 C:\Windows\SysWOW64\ceutil.dll - ok
17:20:51.0258 0480 [ 03211597018F96769F7F731039F692E1 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddusr.dll
17:20:51.0258 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqddusr.dll - ok
17:20:51.0274 0480 [ 0DCA5F8AF83975061D9D8340DC471B5C ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
17:20:51.0274 0480 C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
17:20:51.0274 0480 [ E0E5BB58A4C43F7DBB83352785F32DEF ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
17:20:51.0274 0480 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
17:20:51.0274 0480 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
17:20:51.0274 0480 C:\Windows\System32\tquery.dll - ok
17:20:51.0289 0480 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
17:20:51.0289 0480 C:\Windows\System32\mssrch.dll - ok
17:20:51.0289 0480 [ 0F082AA29D17B61EE9B4D62D2300CD82 ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
17:20:51.0289 0480 C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
17:20:51.0289 0480 [ 464822A1F51A2340FE8BE020A1EA3052 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
17:20:51.0289 0480 C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
17:20:51.0289 0480 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
17:20:51.0289 0480 C:\Windows\System32\msidle.dll - ok
17:20:51.0305 0480 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:20:51.0305 0480 C:\Windows\System32\netman.dll - ok
17:20:51.0305 0480 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:20:51.0305 0480 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:20:51.0305 0480 [ B1E4D190CD21CC75AE38562400DD5345 ] C:\Windows\SysWOW64\rapistub.dll
17:20:51.0305 0480 C:\Windows\SysWOW64\rapistub.dll - ok
17:20:51.0320 0480 [ 917422E1B95A72B0328B301BACBF1B07 ] C:\Windows\SysWOW64\wcescommproxy.dll
17:20:51.0320 0480 C:\Windows\SysWOW64\wcescommproxy.dll - ok
17:20:51.0320 0480 [ B6F8B660A02CF540DFD56D6496B81819 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll
17:20:51.0320 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll - ok
17:20:51.0320 0480 [ 3379989F06B31347792836DCF028A325 ] C:\Windows\SysWOW64\rapiproxystub.dll
17:20:51.0320 0480 C:\Windows\SysWOW64\rapiproxystub.dll - ok
17:20:51.0320 0480 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
17:20:51.0320 0480 C:\Windows\SysWOW64\security.dll - ok
17:20:51.0336 0480 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
17:20:51.0336 0480 C:\Windows\System32\qmgr.dll - ok
17:20:51.0336 0480 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:20:51.0336 0480 C:\Windows\System32\rasdlg.dll - ok
17:20:51.0336 0480 [ AB3CB333E08766BA05F468C540188C0E ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll
17:20:51.0336 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll - ok
17:20:51.0352 0480 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
17:20:51.0352 0480 C:\Windows\SysWOW64\logoncli.dll - ok
17:20:51.0352 0480 [ 20A771958DB2B8CA4372EB95F59FDF3F ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll
17:20:51.0352 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll - ok
17:20:51.0352 0480 [ B4C5BFE28D158992F296BA44DE7074C5 ] C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPStatusUI.dll
17:20:51.0352 0480 C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPStatusUI.dll - ok
17:20:51.0352 0480 [ C1F1E53851FAA7E029CFA07DAF9A5E81 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
17:20:51.0352 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll - ok
17:20:51.0367 0480 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
17:20:51.0367 0480 C:\Windows\System32\mssprxy.dll - ok
17:20:51.0367 0480 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
17:20:51.0367 0480 C:\Windows\System32\bitsperf.dll - ok
17:20:51.0367 0480 [ D1FF91E5D243A1F9632A8D2F9B264271 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.ObjectBuilder.dll
17:20:51.0367 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.ObjectBuilder.dll - ok
17:20:51.0383 0480 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
17:20:51.0383 0480 C:\Windows\System32\bitsigd.dll - ok
17:20:51.0383 0480 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
17:20:51.0383 0480 C:\Windows\System32\upnp.dll - ok
17:20:51.0383 0480 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
17:20:51.0383 0480 C:\Windows\System32\dot3api.dll - ok
17:20:51.0383 0480 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:20:51.0383 0480 C:\Windows\System32\wlanhlp.dll - ok
17:20:51.0398 0480 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:20:51.0398 0480 C:\Windows\SysWOW64\duser.dll - ok
17:20:51.0398 0480 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:20:51.0398 0480 C:\Windows\System32\wlanapi.dll - ok
17:20:51.0398 0480 [ F2D09793CEDFD6DB1533803A344015A1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\4412bbbb473c356b5ea3e1ea13b25f52\System.Management.ni.dll
17:20:51.0398 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\4412bbbb473c356b5ea3e1ea13b25f52\System.Management.ni.dll - ok
17:20:51.0414 0480 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:20:51.0414 0480 C:\Windows\SysWOW64\dui70.dll - ok
17:20:51.0414 0480 [ 21BFA433415377C6C9E428202BDFA9F9 ] C:\Users\Lucille\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
17:20:51.0414 0480 C:\Users\Lucille\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll - ok
17:20:51.0414 0480 [ 299E867D29F6E3C7C0F446EC95658DEF ] C:\Windows\SysWOW64\atiumdag.dll
17:20:51.0414 0480 C:\Windows\SysWOW64\atiumdag.dll - ok
17:20:51.0414 0480 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
17:20:51.0414 0480 C:\Windows\System32\ssdpsrv.dll - ok
17:20:51.0430 0480 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
17:20:51.0430 0480 C:\Windows\System32\oledlg.dll - ok
17:20:51.0430 0480 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
17:20:51.0430 0480 C:\Windows\System32\en-US\tquery.dll.mui - ok
17:20:51.0430 0480 [ 09C98313768B5592D14E24C864BADB24 ] C:\Windows\SysWOW64\atiumdva.dll
17:20:51.0430 0480 C:\Windows\SysWOW64\atiumdva.dll - ok
17:20:51.0430 0480 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
17:20:51.0430 0480 C:\Windows\System32\qmgrprxy.dll - ok
17:20:51.0445 0480 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
17:20:51.0445 0480 C:\Windows\SysWOW64\qmgrprxy.dll - ok
17:20:51.0445 0480 [ B4FEBBAC47297242F04EF7F14FE6DF99 ] C:\Program Files (x86)\hp\Digital Imaging\bin\hpqusg.dll
17:20:51.0445 0480 C:\Program Files (x86)\hp\Digital Imaging\bin\hpqusg.dll - ok
17:20:51.0445 0480 [ 90FC753BB8CAFCCBF1CABFB644F73B74 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\f9bb7cc29930815b098e26853962c1de\UIAutomationTypes.ni.dll
17:20:51.0445 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\f9bb7cc29930815b098e26853962c1de\UIAutomationTypes.ni.dll - ok
17:20:51.0461 0480 [ 0A7C1BC5DDB3EA975A33DD5FA9A5994E ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll
17:20:51.0461 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll - ok
17:20:51.0461 0480 [ 8C972171A3AEC39380CA74061D2675F7 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.dll
17:20:51.0461 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.dll - ok
17:20:51.0461 0480 [ EC7BAC2F868BED8EF3BF7CCD6BAEA6FF ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\SystemStatus.dll
17:20:51.0461 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\SystemStatus.dll - ok
17:20:51.0476 0480 [ 04A9086C1DF3BB5272CB509D9C54AC1A ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
17:20:51.0476 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll - ok
17:20:51.0476 0480 [ F761DC16DD0086C5FFB889C2CB7824DB ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll
17:20:51.0476 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll - ok
17:20:51.0476 0480 [ 752F8E96BAB993517838315508FB82CB ] C:\Windows\SysWOW64\perfproc.dll
17:20:51.0476 0480 C:\Windows\SysWOW64\perfproc.dll - ok
17:20:51.0476 0480 [ B92E9318F7E4AEF633B8EC3A873565AF ] C:\Windows\SysWOW64\perfdisk.dll
17:20:51.0476 0480 C:\Windows\SysWOW64\perfdisk.dll - ok
17:20:51.0492 0480 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
17:20:51.0492 0480 C:\Windows\SysWOW64\perfos.dll - ok
17:20:51.0492 0480 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
17:20:51.0492 0480 C:\Windows\SysWOW64\MMDevAPI.dll - ok
17:20:51.0492 0480 [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\Windows\SysWOW64\gameux.dll
17:20:51.0492 0480 C:\Windows\SysWOW64\gameux.dll - ok
17:20:51.0492 0480 [ 35066007A1EB30180BDC020D0B677F88 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
17:20:51.0492 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll - ok
17:20:51.0508 0480 [ C277FAB73175C5D37D35DE0DEB05D213 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll
17:20:51.0508 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll - ok
17:20:51.0508 0480 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
17:20:51.0508 0480 C:\Windows\SysWOW64\wer.dll - ok
17:20:51.0508 0480 [ E3CD8CA170EBFE8ABAC23E7CA44B6292 ] C:\Users\Lucille\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
17:20:51.0508 0480 C:\Users\Lucille\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll - ok
17:20:51.0523 0480 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
17:20:51.0523 0480 C:\Windows\SysWOW64\FirewallAPI.dll - ok
17:20:51.0523 0480 [ 779E142FE2159935E78C0FA2E190FF1E ] C:\Windows\SysWOW64\jscript.dll
17:20:51.0523 0480 C:\Windows\SysWOW64\jscript.dll - ok
17:20:51.0523 0480 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
17:20:51.0523 0480 C:\Windows\System32\browcli.dll - ok
17:20:51.0523 0480 [ 5098A5D0F433048AF91D556330678B52 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll
17:20:51.0523 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll - ok
17:20:51.0539 0480 [ 50EE5F0AF1BAEBA3EF31894F58A286EC ] C:\Users\Lucille\AppData\Roaming\Dropbox\bin\libcef.dll
17:20:51.0539 0480 C:\Users\Lucille\AppData\Roaming\Dropbox\bin\libcef.dll - ok
17:20:51.0539 0480 [ 378B0CAFC4A0FA3C53287DAA84DC2464 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\acf97bfe2a931d4a47253b26b7218991\WindowsBase.ni.dll
17:20:51.0539 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\acf97bfe2a931d4a47253b26b7218991\WindowsBase.ni.dll - ok
17:20:51.0539 0480 [ DA4AB78D11EEC83CEC4552443AEE7DA8 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\a74542efbeb46445949a39026c501132\PresentationCore.ni.dll
17:20:51.0539 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\a74542efbeb46445949a39026c501132\PresentationCore.ni.dll - ok
17:20:51.0554 0480 [ 5434E18B933E03F274D8DA59FDA4C676 ] C:\Users\Lucille\AppData\Roaming\Dropbox\bin\icudt.dll
17:20:51.0554 0480 C:\Users\Lucille\AppData\Roaming\Dropbox\bin\icudt.dll - ok
17:20:51.0554 0480 [ 5ACA5926F501C300046FAE5944B3A19B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\a4b45c44490c75bc2fb22780e7ef087d\PresentationFramework.ni.dll
17:20:51.0554 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\a4b45c44490c75bc2fb22780e7ef087d\PresentationFramework.ni.dll - ok
17:20:51.0554 0480 [ 7EF5923CBD35BDF49A14082ABC0D4C75 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\3fe705796c6a41d4889d9001d1c56af8\System.Xaml.ni.dll
17:20:51.0554 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\3fe705796c6a41d4889d9001d1c56af8\System.Xaml.ni.dll - ok
17:20:51.0570 0480 [ 4676E92357233BD5A097BE3F7D6DB00A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dce99d8de14d8a015313db98c72552ee\System.Core.ni.dll
17:20:51.0570 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dce99d8de14d8a015313db98c72552ee\System.Core.ni.dll - ok
17:20:51.0570 0480 [ E87213F37A13E2B54391E40934F071D0 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:20:51.0570 0480 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
17:20:51.0570 0480 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
17:20:51.0570 0480 C:\Windows\System32\SearchProtocolHost.exe - ok
17:20:51.0586 0480 [ F00AE7B953ABEF1B53FBBA187DFC8238 ] C:\Windows\System32\webcheck.dll
17:20:51.0586 0480 C:\Windows\System32\webcheck.dll - ok
17:20:51.0586 0480 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:20:51.0586 0480 C:\Windows\System32\WWanAPI.dll - ok
17:20:51.0586 0480 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
17:20:51.0586 0480 C:\Windows\SysWOW64\msimtf.dll - ok
17:20:51.0586 0480 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\40957212.sys
17:20:51.0586 0480 C:\Windows\System32\drivers\40957212.sys - ok
17:20:51.0601 0480 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:20:51.0601 0480 C:\Windows\System32\wwapi.dll - ok
17:20:51.0601 0480 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
17:20:51.0601 0480 C:\Windows\System32\msshooks.dll - ok
17:20:51.0601 0480 [ 99280392987A1A96C756A9F38C4CE396 ] C:\Windows\SysWOW64\jscript9.dll
17:20:51.0601 0480 C:\Windows\SysWOW64\jscript9.dll - ok
17:20:51.0601 0480 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
17:20:51.0601 0480 C:\Windows\System32\imapi2.dll - ok
17:20:51.0617 0480 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
17:20:51.0617 0480 C:\Windows\System32\SearchFilterHost.exe - ok
17:20:51.0617 0480 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
17:20:51.0617 0480 C:\Windows\System32\QAGENT.DLL - ok
17:20:51.0617 0480 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
17:20:51.0617 0480 C:\Windows\System32\hgcpl.dll - ok
17:20:51.0632 0480 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
17:20:51.0632 0480 C:\Windows\System32\mssph.dll - ok
17:20:51.0632 0480 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
17:20:51.0632 0480 C:\Windows\System32\mapi32.dll - ok
17:20:51.0632 0480 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
17:20:51.0632 0480 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
17:20:51.0648 0480 [ 1C0E369575F387460E2A5F28269B2CC4 ] C:\Windows\SysWOW64\DWrite.dll
17:20:51.0648 0480 C:\Windows\SysWOW64\DWrite.dll - ok
17:20:51.0648 0480 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
17:20:51.0648 0480 C:\Windows\SysWOW64\netprofm.dll - ok
17:20:51.0648 0480 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
17:20:51.0648 0480 C:\Windows\SysWOW64\npmproxy.dll - ok
17:20:51.0648 0480 [ 76C2A3B47FE220E027697CDEF63A72C9 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
17:20:51.0648 0480 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
17:20:51.0664 0480 [ 14800BD31701A5047AC3145BB1E698AE ] C:\Windows\SysWOW64\d2d1.dll
17:20:51.0664 0480 C:\Windows\SysWOW64\d2d1.dll - ok
17:20:51.0664 0480 [ 3F2C5D443777650ACD8FE56AC1E34D25 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\7934f9795ad87e109e4df93b3a5cdf06\System.ServiceProcess.ni.dll
17:20:51.0664 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\7934f9795ad87e109e4df93b3a5cdf06\System.ServiceProcess.ni.dll - ok
17:20:51.0664 0480 [ 593AD9042E84A7BADB7E84C6A97D6494 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\860cfb90fd4dd4eccb26488e10e0f42e\WindowsBase.ni.dll
17:20:51.0664 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\860cfb90fd4dd4eccb26488e10e0f42e\WindowsBase.ni.dll - ok
17:20:51.0679 0480 [ AE839020FEE052598F096942C8002C73 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
17:20:51.0679 0480 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
17:20:51.0679 0480 [ 3AD3602258590F5A3C45DC7A029D0140 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
17:20:51.0679 0480 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
17:20:51.0679 0480 [ 7F3F7EFE4AC0C279770C3A03839C8C7B ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll
17:20:51.0679 0480 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll - ok
17:20:51.0695 0480 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
17:20:51.0695 0480 C:\Windows\SysWOW64\dxgi.dll - ok
17:20:51.0695 0480 [ 71ECC01F9928873A5DEB5B475C0F2429 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
17:20:51.0695 0480 C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
17:20:51.0695 0480 [ 6DE66FE7C526637E74CD066461C7C871 ] C:\Windows\SysWOW64\d3d11.dll
17:20:51.0695 0480 C:\Windows\SysWOW64\d3d11.dll - ok
17:20:51.0695 0480 [ D9B9FA5132E0868911737E44536536EB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\496c66c1ec949738d092aab42ea40325\PresentationCore.ni.dll
17:20:51.0695 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\496c66c1ec949738d092aab42ea40325\PresentationCore.ni.dll - ok
17:20:51.0710 0480 [ D96106CF60505734B14F6AE80AAA4B07 ] C:\Windows\SysWOW64\d3d10warp.dll
17:20:51.0710 0480 C:\Windows\SysWOW64\d3d10warp.dll - ok
17:20:51.0710 0480 [ 2E7D051495EFBE01E590D42303967183 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll
17:20:51.0710 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll - ok
17:20:51.0710 0480 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
17:20:51.0710 0480 C:\Windows\SysWOW64\wshqos.dll - ok
17:20:51.0726 0480 [ AA6F6457116B559B76BC6A012CB4C293 ] C:\Windows\SysWOW64\schannel.dll
17:20:51.0726 0480 C:\Windows\SysWOW64\schannel.dll - ok
17:20:51.0726 0480 [ DF23B98FA41224DE5B2D537CE890A7D8 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll
17:20:51.0726 0480 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll - ok
17:20:51.0726 0480 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
17:20:51.0726 0480 C:\Windows\SysWOW64\mlang.dll - ok
17:20:51.0726 0480 [ 9AE06337C568C19ED91FAEAA91C609E3 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\b6c7a1ca929c1b10f36b683c9f1a0517\System.Xml.Linq.ni.dll
17:20:51.0726 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\b6c7a1ca929c1b10f36b683c9f1a0517\System.Xml.Linq.ni.dll - ok
17:20:51.0742 0480 [ 1B6998BB509DCCDE8881BC311DDD0D3D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\fcffb45098807dbf4f96bb133936789a\System.Security.ni.dll
17:20:51.0742 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\fcffb45098807dbf4f96bb133936789a\System.Security.ni.dll - ok
17:20:51.0742 0480 [ CFD2A32F63250A006B053E71D5DD196C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\75f8bc4cf08030c4a53b6d5e0ae20046\PresentationFramework.Aero.ni.dll
17:20:51.0742 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\75f8bc4cf08030c4a53b6d5e0ae20046\PresentationFramework.Aero.ni.dll - ok
17:20:51.0742 0480 [ AE098D9D3BD83440C59A0C3386F4F5DD ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:20:51.0742 0480 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:20:51.0757 0480 [ 441CC7DBC4F8661807A9B1C87CABA81C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll
17:20:51.0757 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll - ok
17:20:51.0757 0480 [ DD3DE2DA4D2D40D9EEBE570C44C0FFC6 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f4f6ee0df2aa4189bf36e6335cb92761\System.Windows.Forms.ni.dll
17:20:51.0757 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f4f6ee0df2aa4189bf36e6335cb92761\System.Windows.Forms.ni.dll - ok
17:20:51.0757 0480 [ 6E656C325A5519A3A9D951709958CF6F ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
17:20:51.0757 0480 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
17:20:51.0757 0480 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
17:20:51.0757 0480 C:\Windows\System32\shfolder.dll - ok
17:20:51.0773 0480 [ 4AEDAB50F83580D0B4D6CF78191F92AA ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:20:51.0773 0480 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
17:20:51.0773 0480 [ 81FB155132AE12BA18119D5B36A85476 ] C:\Windows\System32\msvcr110_clr0400.dll
17:20:51.0773 0480 C:\Windows\System32\msvcr110_clr0400.dll - ok
17:20:51.0773 0480 [ D0B90C38FA3CD4F4A03F0BF1FD45B635 ] C:\Program Files (x86)\Google\Update\1.3.22.5\goopdateres_en.dll
17:20:51.0773 0480 C:\Program Files (x86)\Google\Update\1.3.22.5\goopdateres_en.dll - ok
17:20:51.0788 0480 [ 2A8B93A01621E100A578E83C768AFA2C ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
17:20:51.0788 0480 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe - ok
17:20:51.0788 0480 [ 8E066CBA11F1256B56847676375970A2 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\fa3d1590f15acc02e87b266c0b971523\System.Runtime.Remoting.ni.dll
17:20:51.0788 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\fa3d1590f15acc02e87b266c0b971523\System.Runtime.Remoting.ni.dll - ok
17:20:51.0788 0480 [ 6CD6425CE6BDF70C5D7D724FC8473036 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\47e7fc401facd4a5d3f2237f16948f36\PresentationFramework-SystemXml.ni.dll
17:20:51.0788 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\47e7fc401facd4a5d3f2237f16948f36\PresentationFramework-SystemXml.ni.dll - ok
17:20:51.0804 0480 [ 470F95B4908BC27786BCB8E0E5718B3A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio4b37ff64#\0d3cb1df8b6af32cebdc6e2cc4948c69\PresentationFramework-SystemXmlLinq.ni.dll
17:20:51.0804 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio4b37ff64#\0d3cb1df8b6af32cebdc6e2cc4948c69\PresentationFramework-SystemXmlLinq.ni.dll - ok
17:20:51.0804 0480 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
17:20:51.0804 0480 C:\Windows\System32\sppsvc.exe - ok
17:20:51.0804 0480 [ 45FB05F743E626D9E239E52602CEA041 ] C:\Windows\SysWOW64\msctfui.dll
17:20:51.0804 0480 C:\Windows\SysWOW64\msctfui.dll - ok
17:20:51.0804 0480 [ 0A2D3994E4633A3E448C465D51388F66 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\75b6a68103e1b76063d9f69b8275ae61\UIAutomationTypes.ni.dll
17:20:51.0804 0480 C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\75b6a68103e1b76063d9f69b8275ae61\UIAutomationTypes.ni.dll - ok
17:20:51.0820 0480 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\SysWOW64\UIAutomationCore.dll
17:20:51.0820 0480 C:\Windows\SysWOW64\UIAutomationCore.dll - ok
17:20:51.0820 0480 [ 629FA3D98F179E716833DCE6B0D86B95 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll
17:20:51.0820 0480 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll - ok
17:20:51.0820 0480 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
17:20:51.0820 0480 C:\Windows\System32\drivers\spsys.sys - ok
17:20:51.0835 0480 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
17:20:51.0835 0480 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
17:20:51.0835 0480 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
17:20:51.0835 0480 C:\Windows\System32\httpapi.dll - ok
17:20:51.0835 0480 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
17:20:51.0835 0480 C:\Windows\System32\sppwinob.dll - ok
17:20:51.0835 0480 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
17:20:51.0835 0480 C:\Windows\System32\wmdrmdev.dll - ok
17:20:51.0851 0480 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
17:20:51.0851 0480 C:\Windows\System32\drmv2clt.dll - ok
17:20:51.0851 0480 [ C4ADA6F7C85A1046AF8DF8A20E6E74E6 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
17:20:51.0851 0480 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
17:20:51.0851 0480 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
17:20:51.0851 0480 C:\Windows\System32\wscsvc.dll - ok
17:20:51.0866 0480 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
17:20:51.0866 0480 C:\Windows\System32\wuaueng.dll - ok
17:20:51.0866 0480 [ 77BD0166102F3B9BB9499B2952C3BCFA ] C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
17:20:51.0866 0480 C:\Program Files (x86)\Windows Live\Mail\wlmail.exe - ok
17:20:51.0866 0480 [ 8CBBB27369F9F07BC5E874E750EAF9D0 ] C:\Windows\System32\wmp.dll
17:20:51.0866 0480 C:\Windows\System32\wmp.dll - ok
17:20:51.0866 0480 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
17:20:51.0866 0480 C:\Windows\System32\cabinet.dll - ok
17:20:51.0882 0480 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
17:20:51.0882 0480 C:\Windows\System32\mspatcha.dll - ok
17:20:51.0882 0480 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
17:20:51.0882 0480 C:\Windows\System32\p2pcollab.dll - ok
17:20:51.0882 0480 [ 58D00BC009219C645847589ED195ECCA ] C:\Program Files (x86)\Windows Live\Mail\mailrt2.dll
17:20:51.0882 0480 C:\Program Files (x86)\Windows Live\Mail\mailrt2.dll - ok
17:20:51.0882 0480 [ D25C90F166CB25DCB85755F3DAA984B3 ] C:\Program Files (x86)\Windows Live\Shared\wldlog.dll
17:20:51.0882 0480 C:\Program Files (x86)\Windows Live\Shared\wldlog.dll - ok
17:20:51.0898 0480 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
17:20:51.0898 0480 C:\Windows\System32\QAGENTRT.DLL - ok
17:20:51.0898 0480 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
17:20:51.0898 0480 C:\Windows\System32\fveui.dll - ok
17:20:51.0898 0480 [ F78ABFBFE48251ABD664CEED28E5F8FB ] C:\Program Files (x86)\Windows Live\Mail\msmail.dll
17:20:51.0898 0480 C:\Program Files (x86)\Windows Live\Mail\msmail.dll - ok
17:20:51.0913 0480 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
17:20:51.0913 0480 C:\Windows\System32\wuapi.dll - ok
17:20:51.0913 0480 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
17:20:51.0913 0480 C:\Windows\System32\wups.dll - ok
17:20:51.0913 0480 [ 7EBC90430CF384439B6F5EEB488393BF ] C:\Program Files (x86)\Windows Live\Mail\mailacct.dll
17:20:51.0913 0480 C:\Program Files (x86)\Windows Live\Mail\mailacct.dll - ok
17:20:51.0913 0480 [ 7673834A77B64F05E7BC8AD04A23F509 ] C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
17:20:51.0913 0480 C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll - ok
17:20:51.0929 0480 [ ACEB5E6F416223806421D8864FC0EEB4 ] C:\Program Files (x86)\Windows Live\Shared\uxcore.dll
17:20:51.0929 0480 C:\Program Files (x86)\Windows Live\Shared\uxcore.dll - ok
17:20:51.0929 0480 [ 3C1936A12C62254F914A01BBC6A8DC69 ] C:\Windows\SysWOW64\d3d10_1.dll
17:20:51.0929 0480 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:20:51.0929 0480 [ D4212AB475A3B25EC4DF574536C3EDC5 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:20:51.0929 0480 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:20:51.0944 0480 [ 1AA571774936717EE776DBED51E9EDF4 ] C:\Windows\SysWOW64\d3dx10_41.dll
17:20:51.0944 0480 C:\Windows\SysWOW64\d3dx10_41.dll - ok
17:20:51.0944 0480 [ 9DBD149CAF43D2E7C874C5F40600825C ] C:\Program Files (x86)\Windows Live\Shared\wldcore.dll
17:20:51.0944 0480 C:\Program Files (x86)\Windows Live\Shared\wldcore.dll - ok
17:20:51.0944 0480 [ 18C49CF5352BF8DE47BD2B1E5A912886 ] C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll
17:20:51.0944 0480 C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll - ok
17:20:51.0944 0480 [ D779D935A3109B2D20FD84EA097E3E4A ] C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll
17:20:51.0944 0480 C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll - ok
17:20:51.0960 0480 [ EB24684437EC448D680A7CACBDE94C94 ] C:\Program Files (x86)\Windows Live\Shared\wlidux.dll
17:20:51.0960 0480 C:\Program Files (x86)\Windows Live\Shared\wlidux.dll - ok
17:20:51.0960 0480 [ FB7784A74CAA1DECE064954E73408F59 ] C:\Program Files\Internet Explorer\ieproxy.dll
17:20:51.0960 0480 C:\Program Files\Internet Explorer\ieproxy.dll - ok
17:20:51.0960 0480 [ 45406FFD87F6BA4345B018E303A64FF1 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
17:20:51.0960 0480 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
17:20:51.0976 0480 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
17:20:51.0976 0480 C:\Windows\SysWOW64\WinSCard.dll - ok
17:20:51.0976 0480 [ 67E7E3ECD06DD21A29B236DB1E880A7E ] C:\Program Files (x86)\Windows Live\Mail\vista.thm
17:20:51.0976 0480 C:\Program Files (x86)\Windows Live\Mail\vista.thm - ok
17:20:51.0976 0480 [ E4161DB5263E1FDF5898B1651D5AA8ED ] C:\Program Files (x86)\Windows Live\Mail\en\maillang.dll.mui
17:20:51.0976 0480 C:\Program Files (x86)\Windows Live\Mail\en\maillang.dll.mui - ok
17:20:51.0976 0480 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
17:20:51.0976 0480 C:\Windows\System32\wscisvif.dll - ok
17:20:51.0991 0480 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
17:20:51.0991 0480 C:\Windows\System32\wscproxystub.dll - ok
17:20:51.0991 0480 [ 9A10438CD439FF2CFC0DD8DE4D5EBD0A ] C:\Program Files (x86)\Windows Live\Mail\mailres2.dll
17:20:51.0991 0480 C:\Program Files (x86)\Windows Live\Mail\mailres2.dll - ok
17:20:51.0991 0480 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
17:20:51.0991 0480 C:\Windows\System32\sppobjs.dll - ok
17:20:52.0007 0480 [ 51AE7FB541762F4E66303146E03AD15C ] C:\Program Files (x86)\Windows Live\Shared\uxctl.dll
17:20:52.0007 0480 C:\Program Files (x86)\Windows Live\Shared\uxctl.dll - ok
17:20:52.0007 0480 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
17:20:52.0007 0480 C:\Windows\System32\wmpps.dll - ok
17:20:52.0007 0480 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
17:20:52.0007 0480 C:\Windows\System32\wmpmde.dll - ok
17:20:52.0007 0480 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
17:20:52.0007 0480 C:\Windows\System32\WinSATAPI.dll - ok
17:20:52.0022 0480 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
17:20:52.0022 0480 C:\Windows\System32\MSMPEG2ENC.DLL - ok
17:20:52.0022 0480 [ 04FE83D282D439E4884C07BC4378DB09 ] C:\Program Files (x86)\Windows Live\Mail\wcstore.dll
17:20:52.0022 0480 C:\Program Files (x86)\Windows Live\Mail\wcstore.dll - ok
17:20:52.0022 0480 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
17:20:52.0022 0480 C:\Windows\System32\devenum.dll - ok
17:20:52.0022 0480 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
17:20:52.0022 0480 C:\Windows\System32\msdmo.dll - ok
17:20:52.0038 0480 [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\Windows\SysWOW64\esent.dll
17:20:52.0038 0480 C:\Windows\SysWOW64\esent.dll - ok
17:20:52.0038 0480 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
17:20:52.0038 0480 C:\Windows\System32\upnphost.dll - ok
17:20:52.0038 0480 [ 3EC2F47EDD39FC483F15D173D690D9AB ] C:\Program Files (x86)\Windows Live\Mail\wcics.dll
17:20:52.0038 0480 C:\Program Files (x86)\Windows Live\Mail\wcics.dll - ok
17:20:52.0054 0480 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:20:52.0054 0480 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:20:52.0054 0480 [ 84E061BB8A464D28DDE102E1BD3CCD8C ] C:\Program Files (x86)\Windows Live\Contacts\condb.dll
17:20:52.0054 0480 C:\Program Files (x86)\Windows Live\Contacts\condb.dll - ok
17:20:52.0054 0480 [ 56230760954DB0FAD383DC73EC42515C ] C:\Program Files (x86)\Windows Live\Shared\wlbici.dll
17:20:52.0054 0480 C:\Program Files (x86)\Windows Live\Shared\wlbici.dll - ok
17:20:52.0054 0480 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
17:20:52.0054 0480 C:\Windows\SysWOW64\cabinet.dll - ok
17:20:52.0069 0480 [ 0F6652951129F283C72E1A5A951FF948 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
17:20:52.0069 0480 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
17:20:52.0069 0480 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
17:20:52.0069 0480 C:\Windows\System32\wbem\wmiprov.dll - ok
17:20:52.0069 0480 [ 80739D6157FDF84E444C659AC3B0E41E ] C:\Windows\SysWOW64\PresentationNative_v0300.dll
17:20:52.0069 0480 C:\Windows\SysWOW64\PresentationNative_v0300.dll - ok
17:20:52.0085 0480 [ 7E91590E44277236141CF352C3FD5363 ] C:\Windows\SysWOW64\atidxx32.dll
17:20:52.0085 0480 C:\Windows\SysWOW64\atidxx32.dll - ok
17:20:52.0085 0480 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll
17:20:52.0085 0480 C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll - ok
17:20:52.0085 0480 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
17:20:52.0085 0480 C:\Windows\System32\wups2.dll - ok
17:20:52.0085 0480 [ AFBF51D42CD3DE162FA1F53A8C15DA12 ] C:\Program Files (x86)\Windows Live\Contacts\conproxy.dll
17:20:52.0085 0480 C:\Program Files (x86)\Windows Live\Contacts\conproxy.dll - ok
17:20:52.0100 0480 [ CCFCAFA798C474D3A09A8E1AB0A26A2D ] C:\Program Files (x86)\Windows Live\Mail\wcstoreproxy.dll
17:20:52.0100 0480 C:\Program Files (x86)\Windows Live\Mail\wcstoreproxy.dll - ok
17:20:52.0100 0480 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
17:20:52.0100 0480 C:\Windows\SysWOW64\es.dll - ok
17:20:52.0100 0480 [ B85B0267A743607052263447E6091E8C ] C:\Windows\SysWOW64\UIRibbon.dll
17:20:52.0100 0480 C:\Windows\SysWOW64\UIRibbon.dll - ok
17:20:52.0116 0480 [ 8B285BDAB7735FDFB18E6F7122923B77 ] C:\Windows\SysWOW64\UIAnimation.dll
17:20:52.0116 0480 C:\Windows\SysWOW64\UIAnimation.dll - ok
17:20:52.0116 0480 [ 86B9E27CDB040DE1C981BEC2A56326A7 ] C:\Windows\SysWOW64\UIRibbonRes.dll
17:20:52.0116 0480 C:\Windows\SysWOW64\UIRibbonRes.dll - ok
17:20:52.0116 0480 [ FC6EC352EF180F55F6861460DDB1C6B6 ] C:\Program Files (x86)\Windows Live\Shared\en\uxctlloc.dll.mui
17:20:52.0116 0480 C:\Program Files (x86)\Windows Live\Shared\en\uxctlloc.dll.mui - ok
17:20:52.0116 0480 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
17:20:52.0116 0480 C:\Windows\SysWOW64\mssprxy.dll - ok
17:20:52.0132 0480 [ F61D535F267550DFFD0D66C39C579512 ] C:\Program Files (x86)\Windows Live\Contacts\lmcdata.dll
17:20:52.0132 0480 C:\Program Files (x86)\Windows Live\Contacts\lmcdata.dll - ok
17:20:52.0132 0480 [ E3BCD0DBBD29296B9CF37FC2D718EA60 ] C:\Program Files (x86)\Windows Live\Mail\wcsync.dll
17:20:52.0132 0480 C:\Program Files (x86)\Windows Live\Mail\wcsync.dll - ok
17:20:52.0132 0480 [ A28574E9659180AF96C8178FC1D722D8 ] C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
17:20:52.0132 0480 C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe - ok
17:20:52.0147 0480 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
17:20:52.0147 0480 C:\Windows\System32\udhisapi.dll - ok
17:20:52.0147 0480 [ 3A927A1ABED9152B5A3CBDB65CCD0B17 ] C:\Program Files (x86)\Windows Live\Contacts\LivePlatform.dll
17:20:52.0147 0480 C:\Program Files (x86)\Windows Live\Contacts\LivePlatform.dll - ok
17:20:52.0147 0480 [ 068CA24E24E970F275B1AD26E423AE74 ] C:\Program Files (x86)\Windows Live\Contacts\consync.dll
17:20:52.0147 0480 C:\Program Files (x86)\Windows Live\Contacts\consync.dll - ok
17:20:52.0147 0480 [ BFD17358837F27235BFC1640905C683C ] C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll
17:20:52.0147 0480 C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll - ok
17:20:52.0163 0480 [ B8956806B33366E28C08C261E746B0B8 ] C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll
17:20:52.0163 0480 C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll - ok
17:20:52.0163 0480 [ E301F09BEB39DAF997D6609C5913599F ] C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll
17:20:52.0163 0480 C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll - ok
17:20:52.0163 0480 [ 531E3414858A817152EDEDE9C1BF9DE3 ] C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll
17:20:52.0163 0480 C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll - ok
17:20:52.0178 0480 [ 27FF9680FD2FBE75330997DDC3AE0584 ] C:\Program Files (x86)\Windows Live\Contacts\abssm.dll
17:20:52.0178 0480 C:\Program Files (x86)\Windows Live\Contacts\abssm.dll - ok
17:20:52.0178 0480 [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
17:20:52.0178 0480 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
17:20:52.0178 0480 [ 298FDE634538B62CEEEC266D8773B21A ] C:\Windows\SysWOW64\msls31.dll
17:20:52.0178 0480 C:\Windows\SysWOW64\msls31.dll - ok
17:20:52.0178 0480 [ E2095C5CBE19CB17F8C6B07A5805B784 ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
17:20:52.0178 0480 C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll - ok
17:20:52.0194 0480 [ A99C4D1B5E7E794EC5779CF14F431932 ] C:\Windows\SysWOW64\msdart.dll
17:20:52.0194 0480 C:\Windows\SysWOW64\msdart.dll - ok
17:20:52.0194 0480 [ 8859C0357D3C1499BEF65C7D5BBF7A40 ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll
17:20:52.0194 0480 C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll - ok
17:20:52.0194 0480 [ ED12110CD5BFE686F645E145A7DD28C5 ] C:\Windows\SysWOW64\comsvcs.dll
17:20:52.0194 0480 C:\Windows\SysWOW64\comsvcs.dll - ok
17:20:52.0210 0480 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
17:20:52.0210 0480 C:\Windows\SysWOW64\atl.dll - ok
17:20:52.0210 0480 [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\SysWOW64\tquery.dll
17:20:52.0210 0480 C:\Windows\SysWOW64\tquery.dll - ok
17:20:52.0210 0480 [ 6A1E8DEB746912DF47CF651E138401D7 ] C:\Windows\SysWOW64\StructuredQuery.dll
17:20:52.0210 0480 C:\Windows\SysWOW64\StructuredQuery.dll - ok
17:20:52.0210 0480 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
17:20:52.0210 0480 C:\Windows\System32\NaturalLanguage6.dll - ok
17:20:52.0225 0480 [ 9C10D3A5FAB00763AE00333EE706286E ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.PostEditor.dll
17:20:52.0225 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.PostEditor.dll - ok
17:20:52.0225 0480 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
17:20:52.0225 0480 C:\Windows\System32\NlsData0009.dll - ok
17:20:52.0225 0480 [ 976CA10BB316FD380DD36AA069094912 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Interop.dll
17:20:52.0225 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Interop.dll - ok
17:20:52.0241 0480 [ 5805D8000CFB07BAECC9A92205300F70 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Mshtml.dll
17:20:52.0241 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Mshtml.dll - ok
17:20:52.0241 0480 [ 68F75367B87C257CEDCFA7935CAA8930 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.HtmlEditor.dll
17:20:52.0241 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.HtmlEditor.dll - ok
17:20:52.0241 0480 [ C9D1131E2163CE932DF3EAAF0EEA3673 ] C:\Windows\SysWOW64\msfeeds.dll
17:20:52.0241 0480 C:\Windows\SysWOW64\msfeeds.dll - ok
17:20:52.0256 0480 [ 8DFA1FF4414C1DA3C177DBE6DC195305 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.ApplicationFramework.dll
17:20:52.0256 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.ApplicationFramework.dll - ok
17:20:52.0256 0480 [ 8444A7364D6877922049E99BF4B78C5C ] C:\Windows\SysWOW64\ELSCore.dll
17:20:52.0256 0480 C:\Windows\SysWOW64\ELSCore.dll - ok
17:20:52.0256 0480 [ 7D7F66636B69B1081432721CBB8BB637 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.CoreServices.dll
17:20:52.0256 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.CoreServices.dll - ok
17:20:52.0272 0480 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
17:20:52.0272 0480 C:\Windows\System32\NlsLexicons0009.dll - ok
17:20:52.0272 0480 [ 7F6A823DF3373B4E65A0396C5404000E ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Interop.Mshtml.dll
17:20:52.0272 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Interop.Mshtml.dll - ok
17:20:52.0272 0480 [ 86CA449F63DD51B03B70975003785DF3 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Passport.dll
17:20:52.0272 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Passport.dll - ok
17:20:52.0272 0480 [ 20F53F9DA0336C73616D124E48CC3387 ] C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
17:20:52.0272 0480 C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
17:20:52.0288 0480 [ 676B3D8716B19DADBAA84E99785E71EC ] C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
17:20:52.0288 0480 C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
17:20:52.0288 0480 [ 0DEB5F1F8BA75072912238F09DBB7760 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Localization.dll
17:20:52.0288 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Localization.dll - ok
17:20:52.0288 0480 [ BE210318FA6DA2A862BD41EA87E8CBE6 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
17:20:52.0288 0480 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
17:20:52.0303 0480 [ FA3F6FB17B233E12404A62523DE4308D ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Api.dll
17:20:52.0303 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Api.dll - ok
17:20:52.0303 0480 [ 7E34D07F6C53C5DFB83A8F28E3F8D45C ] C:\Program Files (x86)\Windows Live\Writer\WindowsLiveLocal.WriterPlugin.dll
17:20:52.0303 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLiveLocal.WriterPlugin.dll - ok
17:20:52.0303 0480 [ 9CF7AF5647B7F04148F71E57653109F1 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Controls.dll
17:20:52.0303 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Controls.dll - ok
17:20:52.0303 0480 [ 9C0E3F480BD06F939205953629DB12F8 ] C:\Program Files (x86)\Windows Live\Writer\en\WindowsLive.Writer.Localization.resources.dll
17:20:52.0303 0480 C:\Program Files (x86)\Windows Live\Writer\en\WindowsLive.Writer.Localization.resources.dll - ok
17:20:52.0319 0480 [ 3B3B7BE7DD0C81E32038887C0A36D8F5 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.HtmlParser.dll
17:20:52.0319 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.HtmlParser.dll - ok
17:20:52.0319 0480 [ BD4B3CDE45101ED8EC5294A351245957 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.BlogClient.dll
17:20:52.0319 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.BlogClient.dll - ok
17:20:52.0319 0480 [ AF674E65313177FFD4293C788F3BCD85 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Extensibility.dll
17:20:52.0319 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.Extensibility.dll - ok
17:20:52.0334 0480 [ 5A8608A48DFDE21ACE7AEAF747CCBCC2 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.SpellChecker.dll
17:20:52.0334 0480 C:\Program Files (x86)\Windows Live\Writer\WindowsLive.Writer.SpellChecker.dll - ok
17:20:52.0334 0480 [ 3BF383EB4ADE05DEC8D37BB8B2D16A26 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\4f5069e6497e5e6a381ab6aadf05d6a5\Accessibility.ni.dll
17:20:52.0334 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\4f5069e6497e5e6a381ab6aadf05d6a5\Accessibility.ni.dll - ok
17:20:52.0334 0480 [ ED27D1D75BF5E683AD3EDD9E3123520A ] C:\Windows\SysWOW64\inetcomm.dll
17:20:52.0334 0480 C:\Windows\SysWOW64\inetcomm.dll - ok
17:20:52.0350 0480 [ B7592E80772071D66336B3EC9B82101D ] C:\Windows\SysWOW64\msoert2.dll
17:20:52.0350 0480 C:\Windows\SysWOW64\msoert2.dll - ok
17:20:52.0350 0480 [ 9CB30A4E79BE55751312991DE827F6ED ] C:\Windows\SysWOW64\INETRES.dll
17:20:52.0350 0480 C:\Windows\SysWOW64\INETRES.dll - ok
17:20:52.0350 0480 [ 1F3D3A6D5948FE2772A8A87C227CDBD7 ] C:\Windows\SysWOW64\atiadlxy.dll
17:20:52.0350 0480 C:\Windows\SysWOW64\atiadlxy.dll - ok
17:20:52.0350 0480 [ E7704CBF568815C1CAA6E513387BD3F2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
17:20:52.0350 0480 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
17:20:52.0366 0480 [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
17:20:52.0366 0480 C:\Windows\SysWOW64\hlink.dll - ok
17:20:52.0366 0480 [ E62605314A3CEAC54B15684AB442E1FE ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
17:20:52.0366 0480 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
17:20:52.0366 0480 [ C6E1178294BDEAB1CACF50427688DF05 ] C:\Program Files\Internet Explorer\iexplore.exe
17:20:52.0366 0480 C:\Program Files\Internet Explorer\iexplore.exe - ok
17:20:52.0381 0480 [ 74EF310FAC89341CE2897B7F2C4A7B0F ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
17:20:52.0381 0480 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
17:20:52.0381 0480 [ FD7400A3BCC1FCCAE7A562106426C99C ] C:\Program Files\Internet Explorer\IEShims.dll
17:20:52.0381 0480 C:\Program Files\Internet Explorer\IEShims.dll - ok
17:20:52.0381 0480 [ 63B5E990896BA81D604032A48CC80A5C ] C:\Windows\System32\ieui.dll
17:20:52.0381 0480 C:\Windows\System32\ieui.dll - ok
17:20:52.0381 0480 [ 76D9E01CCB2D27C57105B3D321BFA39D ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
17:20:52.0381 0480 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
17:20:52.0397 0480 [ 85AC8EB265EDCAD86D651D45C5E3AB83 ] C:\Windows\SysWOW64\ieui.dll
17:20:52.0397 0480 C:\Windows\SysWOW64\ieui.dll - ok
17:20:52.0397 0480 [ F756052BF21CF9D8D064827B8C76E39C ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
17:20:52.0397 0480 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
17:20:52.0397 0480 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:20:52.0397 0480 C:\Windows\System32\mlang.dll - ok
17:20:52.0412 0480 [ C07BC673D4888999CDFFB68521ADA800 ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
17:20:52.0412 0480 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll - ok
17:20:52.0412 0480 [ E2AE87D114ABB2A9A147E2ED2F3C09A5 ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_684DC7005CD18CB2.dll
17:20:52.0412 0480 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_684DC7005CD18CB2.dll - ok
17:20:52.0412 0480 [ 63B282FB2550893724647A359BA2323F ] C:\Windows\SysWOW64\Query.dll
17:20:52.0412 0480 C:\Windows\SysWOW64\Query.dll - ok
17:20:52.0412 0480 [ 4FAFC27DBEF9A19134620633F5CDC680 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\45e0966acaad1f6fa698d599615bb921\System.Web.ni.dll
17:20:52.0412 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\45e0966acaad1f6fa698d599615bb921\System.Web.ni.dll - ok
17:20:52.0428 0480 [ 14F5ED2452EE5EF1A711F60C07DD463C ] C:\Program Files (x86)\Java\jre7\bin\ssv.dll
17:20:52.0428 0480 C:\Program Files (x86)\Java\jre7\bin\ssv.dll - ok
17:20:52.0428 0480 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
17:20:52.0428 0480 C:\Windows\SysWOW64\msisip.dll - ok
17:20:52.0428 0480 [ 23CF598C517104D3B0A55863875BE534 ] C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
17:20:52.0428 0480 C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll - ok
17:20:52.0444 0480 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
17:20:52.0444 0480 C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll - ok
17:20:52.0444 0480 [ 1ACCA74287FE5D7449FBB2B9F0C83341 ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
17:20:52.0444 0480 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe - ok
17:20:52.0444 0480 [ 62DAACB3501B81C3C8CC39927DB3B400 ] C:\Program Files (x86)\Java\jre7\bin\deploy.dll
17:20:52.0444 0480 C:\Program Files (x86)\Java\jre7\bin\deploy.dll - ok
17:20:52.0444 0480 [ 6ED77EC897CCEA26D651F0ED31C7C710 ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_9E87A5D52B7CCB1B.dll
17:20:52.0444 0480 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_9E87A5D52B7CCB1B.dll - ok
17:20:52.0459 0480 [ AC673746F0EFBF0F09D35651163C04E8 ] C:\Windows\System32\Macromed\Flash\Flash64_12_0_0_70.ocx
17:20:52.0459 0480 C:\Windows\System32\Macromed\Flash\Flash64_12_0_0_70.ocx - ok
17:20:52.0459 0480 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
17:20:52.0459 0480 C:\Windows\SysWOW64\samlib.dll - ok
17:20:52.0459 0480 [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
17:20:52.0459 0480 C:\Windows\SysWOW64\wpdshext.dll - ok
17:20:52.0475 0480 [ 4634B0EE4098F0F2B972BDAC19A802E7 ] C:\Windows\SysWOW64\audiodev.dll
17:20:52.0475 0480 C:\Windows\SysWOW64\audiodev.dll - ok
17:20:52.0475 0480 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\SysWOW64\WMVCORE.DLL
17:20:52.0475 0480 C:\Windows\SysWOW64\WMVCORE.DLL - ok
17:20:52.0475 0480 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\SysWOW64\WMASF.DLL
17:20:52.0475 0480 C:\Windows\SysWOW64\WMASF.DLL - ok
17:20:52.0475 0480 [ 1060D60CCA69A8136A87DBE3C8F4A467 ] C:\Windows\SysWOW64\EhStorAPI.dll
17:20:52.0475 0480 C:\Windows\SysWOW64\EhStorAPI.dll - ok
17:20:52.0490 0480 [ 547BE09D331BBCF57F3AF5B4FC02C310 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\210e87c409d2f08e7503e9ab1e12db11\System.Xml.ni.dll
17:20:52.0490 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\210e87c409d2f08e7503e9ab1e12db11\System.Xml.ni.dll - ok
17:20:52.0490 0480 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
17:20:52.0490 0480 C:\Windows\SysWOW64\p2pcollab.dll - ok
17:20:52.0490 0480 [ 5DD49C02D059C1E6E47A8FB4A076C9B1 ] C:\Windows\SysWOW64\ieapfltr.dll
17:20:52.0490 0480 C:\Windows\SysWOW64\ieapfltr.dll - ok
17:20:52.0506 0480 [ 1FD1215C4B622EB21D50BC6F80821023 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\d6a43130081227fd48defe1a87040123\System.Configuration.ni.dll
17:20:52.0506 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\d6a43130081227fd48defe1a87040123\System.Configuration.ni.dll - ok
17:20:52.0506 0480 [ C17139EAF939964142C7A1AEEE02DC81 ] C:\Windows\SysWOW64\ieapfltr.dat
17:20:52.0506 0480 C:\Windows\SysWOW64\ieapfltr.dat - ok
17:20:52.0506 0480 [ EE9A493436DEF36ABA5F5DA75414BC65 ] C:\Windows\System32\atipdl64.dll
17:20:52.0506 0480 C:\Windows\System32\atipdl64.dll - ok
17:20:52.0506 0480 [ 950E73D43BA3D8415EF788D301CBE364 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_70.ocx
17:20:52.0506 0480 C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_70.ocx - ok
17:20:52.0522 0480 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
17:20:52.0522 0480 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
17:20:52.0522 0480 [ BE501CBC29B2025A263D80D399F1797A ] C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
17:20:52.0522 0480 C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll - ok
17:20:52.0522 0480 [ 65B063CA7A90693F524A6274BCF4F29C ] C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleCld_67CA61FFB258B28A.dll
17:20:52.0522 0480 C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleCld_67CA61FFB258B28A.dll - ok
17:20:52.0537 0480 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
17:20:52.0537 0480 C:\Windows\System32\PhotoMetadataHandler.dll - ok
17:20:52.0537 0480 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
17:20:52.0537 0480 C:\Windows\System32\wbem\cimwin32.dll - ok
17:20:52.0537 0480 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
17:20:52.0537 0480 C:\Windows\System32\framedynos.dll - ok
17:20:52.0537 0480 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
17:20:52.0537 0480 C:\Windows\System32\security.dll - ok
17:20:52.0553 0480 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
17:20:52.0553 0480 C:\Windows\System32\schedcli.dll - ok
17:20:52.0553 0480 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
17:20:52.0553 0480 C:\Windows\System32\wbem\wmipcima.dll - ok
17:20:52.0553 0480 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
17:20:52.0553 0480 C:\Windows\System32\wmi.dll - ok
17:20:52.0568 0480 [ DC98274F03D0FB4D25B7B4B1C9FEBDBA ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
17:20:52.0568 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll - ok
17:20:52.0568 0480 [ 6373089570750D52EF80CAE3FF1F5516 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
17:20:52.0568 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll - ok
17:20:52.0568 0480 [ AC0CAE25A086CCB3C7D2CCFE991631D9 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
17:20:52.0568 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll - ok
17:20:52.0568 0480 [ 74533144AACE6F435DBE39DAC714BC62 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\fe1942c05eda4f9744f80afb4ae76a2d\System.Data.ni.dll
17:20:52.0568 0480 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\fe1942c05eda4f9744f80afb4ae76a2d\System.Data.ni.dll - ok
17:20:52.0584 0480 [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
17:20:52.0584 0480 C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
17:20:52.0584 0480 [ 0302F9E5C9A04AD8F1AD4F92C6B3EB92 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
17:20:52.0584 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll - ok
17:20:52.0584 0480 [ 7868ED46C34A1B36BEA10560F453598F ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll
17:20:52.0584 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll - ok
17:20:52.0600 0480 [ FC86971A5B92709D56447095C53DCAA6 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
17:20:52.0600 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll - ok
17:20:52.0600 0480 [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
17:20:52.0600 0480 C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
17:20:52.0600 0480 [ 56DD8F069A5367DFC0BEDEFD0C94B120 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
17:20:52.0600 0480 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll - ok
17:20:52.0615 0480 [ 390B316B99EC200BF8B4259B4C95E2AB ] C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll
17:20:52.0615 0480 C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll - ok
17:20:52.0615 0480 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
17:20:52.0615 0480 C:\Windows\System32\wscinterop.dll - ok
17:20:52.0615 0480 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
17:20:52.0615 0480 C:\Windows\System32\wscui.cpl - ok
17:20:52.0615 0480 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
17:20:52.0615 0480 C:\Windows\System32\werconcpl.dll - ok
17:20:52.0631 0480 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
17:20:52.0631 0480 C:\Windows\System32\wercplsupport.dll - ok
17:20:52.0631 0480 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
17:20:52.0631 0480 C:\Windows\System32\hcproviders.dll - ok
17:20:52.0631 0480 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
17:20:52.0631 0480 C:\Windows\System32\wbem\WMIADAP.exe - ok
17:20:52.0646 0480 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
17:20:52.0646 0480 C:\Windows\System32\loadperf.dll - ok
17:20:52.0646 0480 [ BE5C7690D94F9DAB63BEED73D8FFABBE ] C:\Windows\System32\wbem\WmiApRes.dll
17:20:52.0646 0480 C:\Windows\System32\wbem\WmiApRes.dll - ok
17:20:52.0646 0480 [ 3E53CC4591B043C8D42FB3D771D55FCE ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
17:20:52.0646 0480 C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe - ok
17:20:52.0662 0480 [ C4F8E5684A636D4D16BE409FD5E5AF6F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f11b76fe8e17836118d9589f35845091\PresentationFramework.ni.dll
17:20:52.0662 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f11b76fe8e17836118d9589f35845091\PresentationFramework.ni.dll - ok
17:20:52.0662 0480 [ 8808B725F60DFE66E59620940A193CAF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\8653acb87b4a219a84e4ce58df35e62a\System.Runtime.Serialization.Formatters.Soap.ni.dll
17:20:52.0662 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\8653acb87b4a219a84e4ce58df35e62a\System.Runtime.Serialization.Formatters.Soap.ni.dll - ok
17:20:52.0662 0480 [ 5FBA7AA0224C5574845A2AFE28BAE4A3 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\bf76ec576453e56f4d41d99cbed88e5c\System.Management.ni.dll
17:20:52.0662 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\bf76ec576453e56f4d41d99cbed88e5c\System.Management.ni.dll - ok
17:20:52.0662 0480 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
17:20:52.0662 0480 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
17:20:52.0678 0480 [ B6CCB6129ABFC60421EAF2404431FA8F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\02e876a42f8f4ae5d74c8f07819a4870\System.Core.ni.dll
17:20:52.0678 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\02e876a42f8f4ae5d74c8f07819a4870\System.Core.ni.dll - ok
17:20:52.0678 0480 [ A4B361D8D5A963B75B080CE25C114981 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\58895d16e437b97040631a373ebf7e4f\System.Xml.Linq.ni.dll
17:20:52.0678 0480 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\58895d16e437b97040631a373ebf7e4f\System.Xml.Linq.ni.dll - ok
17:20:52.0678 0480 [ 4E8887ECF3D9B85DE2C85C243CF1B5AA ] C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll
17:20:52.0678 0480 C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll - ok
17:20:52.0693 0480 [ 97E0EC3D6D99E8CC2B17EF2D3760E8FC ] C:\Windows\System32\schtasks.exe
17:20:52.0693 0480 C:\Windows\System32\schtasks.exe - ok
17:20:52.0693 0480 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
17:20:52.0693 0480 C:\Windows\System32\ELSCore.dll - ok
17:20:52.0693 0480 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
17:20:52.0693 0480 C:\Windows\System32\elslad.dll - ok
17:20:52.0693 0480 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
17:20:52.0693 0480 C:\Windows\System32\elsTrans.dll - ok
17:20:52.0709 0480 [ A42FBC61385A5F5F444209EE94D89F27 ] C:\Windows\System32\NlsData0021.dll
17:20:52.0709 0480 C:\Windows\System32\NlsData0021.dll - ok
17:20:52.0709 0480 [ E5283AFD7590ECC37F8D62C4D6F1FB48 ] C:\Windows\System32\NlsLexicons0021.dll
17:20:52.0709 0480 C:\Windows\System32\NlsLexicons0021.dll - ok
17:20:52.0709 0480 [ 3E876771ACA0358E6CC5D0D813A4085D ] C:\Windows\System32\NlsData0026.dll
17:20:52.0709 0480 C:\Windows\System32\NlsData0026.dll - ok
17:20:52.0724 0480 [ 925E7FF3C0A2C6BD98892E968F6CB142 ] C:\Windows\System32\NlsLexicons0026.dll
17:20:52.0724 0480 C:\Windows\System32\NlsLexicons0026.dll - ok
17:20:52.0724 0480 [ 34EF6F776C62011ABFAAF3BF577A0E78 ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
17:20:52.0724 0480 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
17:20:52.0724 0480 [ B7206EC0AD3DF541B1E3EF97145BE6EA ] C:\Program Files\Microsoft Security Client\MpCommu.dll
17:20:52.0724 0480 C:\Program Files\Microsoft Security Client\MpCommu.dll - ok
17:20:52.0724 0480 [ AC61CBEF0376F080588968476D063D45 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smipi.dll
17:20:52.0724 0480 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smipi.dll - ok
17:20:52.0740 0480 [ C5D0AEC12FED8323E1AE2E40C129F2D6 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smiengine.dll
17:20:52.0740 0480 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\smiengine.dll - ok
17:20:52.0740 0480 [ D862BF8459358A4B7E89C6FCDE3CB664 ] C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
17:20:52.0740 0480 C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll - ok
17:20:52.0740 0480 [ 21B62252D283FBF75A5F67849EBD9B2E ] C:\Windows\System32\WFSR.dll
17:20:52.0740 0480 C:\Windows\System32\WFSR.dll - ok
17:20:52.0756 0480 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
17:20:52.0756 0480 C:\Windows\System32\notepad.exe - ok
17:20:52.0756 0480 [ 01073F2BA36792C9BFD1BD622A6247B3 ] C:\Windows\System32\wpccpl.dll
17:20:52.0756 0480 C:\Windows\System32\wpccpl.dll - ok
17:20:52.0756 0480 [ 4715F8F8CDBFFF2728BA38B789A1D7C7 ] C:\Windows\System32\wpdshext.dll
17:20:52.0756 0480 C:\Windows\System32\wpdshext.dll - ok
17:20:52.0756 0480 [ 55934080B2ED262D13455578DD5E50C9 ] C:\Program Files\Common Files\System\wab32res.dll
17:20:52.0771 0480 C:\Program Files\Common Files\System\wab32res.dll - ok
17:20:52.0771 0480 [ BBAAE027C176402E221CADBFCAEB5407 ] C:\Windows\System32\zipfldr.dll
17:20:52.0771 0480 C:\Windows\System32\zipfldr.dll - ok
17:20:52.0771 0480 [ 03AB2A2E426C2AD400AC8315226347F8 ] C:\Windows\System32\EhStorAPI.dll
17:20:52.0771 0480 C:\Windows\System32\EhStorAPI.dll - ok
17:20:52.0771 0480 [ 534D84434D9DB1D1E1E865F64E52AA8E ] C:\Windows\System32\twext.dll
17:20:52.0771 0480 C:\Windows\System32\twext.dll - ok
17:20:52.0787 0480 [ 0B1C3C977F5C7261E6C569C3CF40D6D1 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
17:20:52.0787 0480 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll - ok
17:20:52.0787 0480 [ A10B048B681C38E26CA90CD1BC123604 ] C:\Windows\System32\syncui.dll
17:20:52.0787 0480 C:\Windows\System32\syncui.dll - ok
17:20:52.0787 0480 [ 8699D17DFCFCD327784034DB6BD3A422 ] C:\Windows\System32\synceng.dll
17:20:52.0787 0480 C:\Windows\System32\synceng.dll - ok
17:20:52.0787 0480 [ 3FDB52FD16CA9ABA63D6C0D9D2CB5DE4 ] C:\Program Files\Microsoft Security Client\shellext.dll
17:20:52.0787 0480 C:\Program Files\Microsoft Security Client\shellext.dll - ok
17:20:52.0802 0480 [ 6441D2FFB14B613C1D44D709BC7F8FFA ] C:\Windows\System32\sendmail.dll
17:20:52.0802 0480 C:\Windows\System32\sendmail.dll - ok
17:20:52.0802 0480 [ C8994E2703410F8DFE19DE5BF82994C0 ] C:\Windows\System32\mydocs.dll
17:20:52.0802 0480 C:\Windows\System32\mydocs.dll - ok
17:20:52.0802 0480 [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe
17:20:52.0802 0480 C:\Windows\System32\wermgr.exe - ok
17:20:52.0818 0480 [ 344DA9D196C0D98A738289BB09CE4CF6 ] C:\Windows\System32\MsSpellCheckingFacility.exe
17:20:52.0818 0480 C:\Windows\System32\MsSpellCheckingFacility.exe - ok
17:20:52.0818 0480 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\SysWOW64\dllhost.exe
17:20:52.0818 0480 C:\Windows\SysWOW64\dllhost.exe - ok
17:20:52.0818 0480 [ DF26B0F18A702629068D7AA59AA122DC ] C:\Program Files (x86)\Windows Live\SOXE\wlsoxe.dll
17:20:52.0818 0480 C:\Program Files (x86)\Windows Live\SOXE\wlsoxe.dll - ok
17:20:52.0818 0480 [ E1EF320CBB1A6623DF040D5539DDA8F4 ] C:\Windows\SysWOW64\TaskSchdPS.dll
17:20:52.0818 0480 C:\Windows\SysWOW64\TaskSchdPS.dll - ok
17:20:52.0834 0480 [ C3D545F4646303A864C8DFA85B33F476 ] C:\Windows\System32\TaskSchdPS.dll
17:20:52.0834 0480 C:\Windows\System32\TaskSchdPS.dll - ok
17:20:52.0834 0480 [ AE6A2C5ECD3E96556E22F12816842F60 ] C:\Windows\SysWOW64\mshtmler.dll
17:20:52.0834 0480 C:\Windows\SysWOW64\mshtmler.dll - ok
17:20:52.0834 0480 [ 027675ED9B34EE1B91505C3B8752649F ] C:\Windows\System32\Wpc.dll
17:20:52.0834 0480 C:\Windows\System32\Wpc.dll - ok
17:20:52.0834 0480 [ 142E90CF1A4C5B6E7505810E38B07B9F ] C:\Windows\System32\inetcomm.dll
17:20:52.0834 0480 C:\Windows\System32\inetcomm.dll - ok
17:20:52.0849 0480 [ 82D2C191740D13DCBD2A6EF5F209FB3A ] C:\Windows\System32\msoert2.dll
17:20:52.0849 0480 C:\Windows\System32\msoert2.dll - ok
17:20:52.0849 0480 [ 70D8B5C2A5DC62AF0FB5504B2E2233D7 ] C:\Windows\System32\INETRES.dll
17:20:52.0849 0480 C:\Windows\System32\INETRES.dll - ok
17:20:52.0849 0480 [ 8B22B0CF8912F810B28AFBFC8B42727F ] C:\Windows\System32\acppage.dll
17:20:52.0849 0480 C:\Windows\System32\acppage.dll - ok
17:20:52.0865 0480 [ E948D1D42DC68923ABD75EEB5BCCD1D3 ] C:\Windows\System32\consent.exe
17:20:52.0865 0480 C:\Windows\System32\consent.exe - ok
17:20:52.0865 0480 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Lucille\Desktop\tdsskiller.exe
17:20:52.0865 0480 C:\Users\Lucille\Desktop\tdsskiller.exe - ok
17:20:52.0865 0480 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\44635636.sys
17:20:52.0865 0480 C:\Windows\System32\drivers\44635636.sys - ok
17:20:52.0865 0480 [ B24450E38722F69F338533A36ECFFC29 ] C:\Windows\System32\RacEngn.dll
17:20:52.0865 0480 C:\Windows\System32\RacEngn.dll - ok
17:20:52.0880 0480 [ AA61A7047E854A9E914FDD17C2F35675 ] C:\Windows\System32\sqlceoledb30.dll
17:20:52.0880 0480 C:\Windows\System32\sqlceoledb30.dll - ok
17:20:52.0880 0480 [ E5744D18C88737C6356D0A8D6D49D512 ] C:\Windows\System32\sqlceqp30.dll
17:20:52.0880 0480 C:\Windows\System32\sqlceqp30.dll - ok
17:20:52.0880 0480 [ 9C75CB8B98610F0CD85D99BB5876308B ] C:\Windows\System32\sqlcese30.dll
17:20:52.0880 0480 C:\Windows\System32\sqlcese30.dll - ok
17:20:52.0880 0480 [ E27F9CC5BAEEDEF832415D1513382AF6 ] C:\Program Files (x86)\Windows Live\Mail\maillang.dll
17:20:52.0880 0480 C:\Program Files (x86)\Windows Live\Mail\maillang.dll - ok
17:20:52.0896 0480 [ 2D05DB6FB64F5290499D0A0B7F6FFF7E ] C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL
17:20:52.0896 0480 C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL - ok
17:20:52.0896 0480 [ 46D3DCD65E65995FFA33610579B428D5 ] C:\hp\bin\WIZINS~1.EXE
17:20:52.0896 0480 C:\hp\bin\WIZINS~1.EXE - ok
17:20:52.0896 0480 [ FD3F34830C39F4B554106ADA19924F4E ] C:\Windows\System32\control.exe
17:20:52.0896 0480 C:\Windows\System32\control.exe - ok
17:20:52.0912 0480 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
17:20:52.0912 0480 C:\Program Files\Windows Sidebar\sidebar.exe - ok
17:20:52.0912 0480 [ 314C76642049DD4E9B964BC333A620B1 ] C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
17:20:52.0912 0480 C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe - ok
17:20:52.0912 0480 [ 8728A91948AC0FE779BDF47BC551BAF5 ] C:\Windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe
17:20:52.0912 0480 C:\Windows\Installer\{95120000-00AF-0409-0000-0000000FF1CE}\ppvwicon.exe - ok
17:20:52.0927 0480 [ 625FF1A0B5B2C2B8DD11B2395DA6E51A ] C:\Windows\Installer\{FA4C2D53-205F-4245-9717-F3761154824D}\SafariIco.exe
17:20:52.0927 0480 C:\Windows\Installer\{FA4C2D53-205F-4245-9717-F3761154824D}\SafariIco.exe - ok
17:20:52.0927 0480 [ FDA49D1D0C201F6C76BD2593F562BF80 ] C:\Windows\System32\WindowsAnytimeUpgradeui.exe
17:20:52.0927 0480 C:\Windows\System32\WindowsAnytimeUpgradeui.exe - ok
17:20:52.0927 0480 [ A943D670747778C7597987A4B5B9A679 ] C:\Windows\System32\WFS.exe
17:20:52.0927 0480 C:\Windows\System32\WFS.exe - ok
17:20:52.0927 0480 [ FF0729002E081668620A681182D63FE6 ] C:\Windows\System32\wuapp.exe
17:20:52.0927 0480 C:\Windows\System32\wuapp.exe - ok
17:20:52.0943 0480 [ 492CB6A624D5DAD73EE0294B5DB37DD6 ] C:\Windows\System32\xpsrchvw.exe
17:20:52.0943 0480 C:\Windows\System32\xpsrchvw.exe - ok
17:20:52.0943 0480 [ BD4C1D83353BFB80F6BA019F6D0BA95B ] C:\Windows\ehome\ehshell.exe
17:20:52.0943 0480 C:\Windows\ehome\ehshell.exe - ok
17:20:52.0943 0480 [ 233A10D4B3F6897899112E4EC60F1906 ] C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe
17:20:52.0943 0480 C:\Windows\Installer\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}\wmdc.exe - ok
17:20:52.0943 0480 [ 06A6FE79BD96C7FEF7322AFE5B45FFFF ] C:\Windows\System32\mycomput.dll
17:20:52.0943 0480 C:\Windows\System32\mycomput.dll - ok
17:20:52.0958 0480 [ 18D4729031314F8C217CDFCC599EF4E4 ] C:\Windows\System32\ndfapi.dll
17:20:52.0958 0480 C:\Windows\System32\ndfapi.dll - ok
17:20:52.0958 0480 [ AB11CEFE591909A85E98E27A230807C7 ] C:\Program Files\Windows Sidebar\sbdrop.dll
17:20:52.0958 0480 C:\Program Files\Windows Sidebar\sbdrop.dll - ok
17:20:52.0958 0480 [ 218047636F646E905B4B790FBE5297E1 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
17:20:52.0958 0480 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll - ok
17:20:52.0974 0480 [ 5E03D6BB0B7C8C9EB084C8E20F26BE4C ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamenu.dll
17:20:52.0974 0480 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamenu.dll - ok
17:20:52.0974 0480 [ 75EB974222F293159427F9A77A5F3C6A ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msoshext.dll
17:20:52.0974 0480 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\msoshext.dll - ok
17:20:52.0974 0480 [ 32373D1783A9425F8C1FB5A86FD9CDE6 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll
17:20:52.0974 0480 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll - ok
17:20:52.0974 0480 [ 55EDFADBEFB5B1C28DCE340DDCD2206E ] C:\Windows\System32\powercpl.dll
17:20:52.0974 0480 C:\Windows\System32\powercpl.dll - ok
17:20:52.0990 0480 [ F0112F2DDAC14DFD4B3A69BB0164D005 ] C:\Windows\System32\taskbarcpl.dll
17:20:52.0990 0480 C:\Windows\System32\taskbarcpl.dll - ok
17:20:52.0990 0480 [ F8297797CC1993E25B8967D6032BFB31 ] C:\Windows\System32\Vault.dll
17:20:52.0990 0480 C:\Windows\System32\Vault.dll - ok
17:20:52.0990 0480 [ EC84D7DCAE6AE0FE87EE5D4F0D50DC55 ] C:\Windows\System32\sud.dll
17:20:52.0990 0480 C:\Windows\System32\sud.dll - ok
17:20:53.0005 0480 [ 03E012434BBE2B66D8C56B4A69461615 ] C:\Windows\System32\TSWorkspace.dll
17:20:53.0005 0480 C:\Windows\System32\TSWorkspace.dll - ok
17:20:53.0005 0480 [ 1870ED158D9E2FE8EB4E67917E6BCA71 ] C:\Program Files (x86)\Windows Live\Installer\LangSelectorLang.dll
17:20:53.0005 0480 C:\Program Files (x86)\Windows Live\Installer\LangSelectorLang.dll - ok
17:20:53.0005 0480 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
17:20:53.0005 0480 C:\Windows\System32\wucltux.dll - ok
17:20:53.0005 0480 [ 6F1AC6100B372F22709B24CFC9E2CC16 ] C:\Windows\System32\FirewallControlPanel.dll
17:20:53.0005 0480 C:\Windows\System32\FirewallControlPanel.dll - ok
17:20:53.0021 0480 [ 6E9BF5A8CD471D66E1154CCB640B0AA0 ] C:\Windows\System32\telephon.cpl
17:20:53.0021 0480 C:\Windows\System32\telephon.cpl - ok
17:20:53.0021 0480 [ 6A541D3C502BBA311375D1BB370B2BFD ] C:\Windows\System32\Speech\SpeechUX\speechuxcpl.dll
17:20:53.0021 0480 C:\Windows\System32\Speech\SpeechUX\speechuxcpl.dll - ok
17:20:53.0021 0480 [ 887EB84BB2EC3F4C1510C98E8C1ADFC0 ] C:\Windows\System32\usercpl.dll
17:20:53.0021 0480 C:\Windows\System32\usercpl.dll - ok
17:20:53.0036 0480 [ 2C2FBB6DC3CE8FAF4AB2F7C6C5071C4C ] C:\Windows\System32\intl.cpl
17:20:53.0036 0480 C:\Windows\System32\intl.cpl - ok
17:20:53.0036 0480 [ 6E90B7A6C66355AA8DDC5CABF6073DE1 ] C:\Windows\System32\main.cpl
17:20:53.0036 0480 C:\Windows\System32\main.cpl - ok
17:20:53.0036 0480 [ 1EB9CE09181421F2C5951164611170B9 ] C:\Windows\System32\devmgr.dll
17:20:53.0036 0480 C:\Windows\System32\devmgr.dll - ok
17:20:53.0036 0480 [ 9481CE9E51B3CA43FD61894B89ED4CCA ] C:\Windows\System32\icardres.dll
17:20:53.0036 0480 C:\Windows\System32\icardres.dll - ok
17:20:53.0052 0480 [ DC8560036F238C904DC9FBCEA7796D54 ] C:\Windows\System32\PerfCenterCPL.dll
17:20:53.0052 0480 C:\Windows\System32\PerfCenterCPL.dll - ok
17:20:53.0052 0480 [ 587BB0FA7D11F81251539A630C097C8C ] C:\Windows\System32\appwiz.cpl
17:20:53.0052 0480 C:\Windows\System32\appwiz.cpl - ok
17:20:53.0052 0480 [ 56BEB546F3F6EEAAAD5759E0B32E7C58 ] C:\Windows\System32\netcenter.dll
17:20:53.0052 0480 C:\Windows\System32\netcenter.dll - ok
17:20:53.0068 0480 [ 1FB6588DDF991124D49475C99BBC9C5B ] C:\Windows\System32\autoplay.dll
17:20:53.0068 0480 C:\Windows\System32\autoplay.dll - ok
17:20:53.0068 0480 [ 2F6DA6A2C092BC61F0324E3C52935252 ] C:\Windows\System32\recovery.dll
17:20:53.0068 0480 C:\Windows\System32\recovery.dll - ok
17:20:53.0068 0480 [ 83296DE8CFFEADA636DCC1AB2E3BF643 ] C:\Windows\System32\inetcpl.cpl
17:20:53.0068 0480 C:\Windows\System32\inetcpl.cpl - ok
17:20:53.0068 0480 [ 1F6DC007EAB7F6911130D729B4739A12 ] C:\Windows\System32\colorcpl.exe
17:20:53.0068 0480 C:\Windows\System32\colorcpl.exe - ok
17:20:53.0083 0480 [ E7B1B5D5A1D1E4C77AE995D725A1FEE5 ] C:\Windows\System32\sdcpl.dll
17:20:53.0083 0480 C:\Windows\System32\sdcpl.dll - ok
17:20:53.0083 0480 [ BB074F35B49EB2EA416962B596281E1E ] C:\Windows\System32\systemcpl.dll
17:20:53.0083 0480 C:\Windows\System32\systemcpl.dll - ok
17:20:53.0083 0480 [ 7D067C851FD270E7C3495788AD487CDE ] C:\Windows\System32\ActionCenterCPL.dll
17:20:53.0083 0480 C:\Windows\System32\ActionCenterCPL.dll - ok
17:20:53.0083 0480 [ F0074CEB72EA93608037C98A1F187DB5 ] C:\Windows\System32\Display.dll
17:20:53.0083 0480 C:\Windows\System32\Display.dll - ok
17:20:53.0099 0480 [ DC50B0FE1C3F654AC25B5484BF3A458C ] C:\Windows\System32\DiagCpl.dll
17:20:53.0099 0480 C:\Windows\System32\DiagCpl.dll - ok
17:20:53.0099 0480 [ FCF433BFE9F44C8FD2FAF1E8DED23D72 ] C:\Windows\System32\OobeFldr.dll
17:20:53.0099 0480 C:\Windows\System32\OobeFldr.dll - ok
17:20:53.0099 0480 [ FD28E3B46F63337EAF905120F1E00070 ] C:\Windows\System32\accessibilitycpl.dll
17:20:53.0099 0480 C:\Windows\System32\accessibilitycpl.dll - ok
17:20:53.0114 0480 [ 2DA738A0A6BEE483A5647A76695AF3B0 ] C:\Program Files\Windows Defender\MsMpRes.dll
17:20:53.0114 0480 C:\Program Files\Windows Defender\MsMpRes.dll - ok
17:20:53.0114 0480 [ B3F03B594E7A6353273D43F6E7EA1D25 ] C:\Windows\System32\SensorsCpl.dll
17:20:53.0114 0480 C:\Windows\System32\SensorsCpl.dll - ok
17:20:53.0114 0480 [ CFA6B4D4A70D67C6387C29FA6FD703D0 ] C:\Windows\System32\themecpl.dll
17:20:53.0114 0480 C:\Windows\System32\themecpl.dll - ok
17:20:53.0114 0480 [ 649F5F47EA85C08AEE9353CEEF810233 ] C:\Windows\System32\mmsys.cpl
17:20:53.0114 0480 C:\Windows\System32\mmsys.cpl - ok
17:20:53.0130 0480 [ 9613BEA1E1509884EC472A10858EC61D ] C:\Windows\System32\fontext.dll
17:20:53.0130 0480 C:\Windows\System32\fontext.dll - ok
17:20:53.0130 0480 [ D558E09CFB4E933F66B8D24178519300 ] C:\Windows\Branding\ShellBrd\shellbrd.dll
17:20:53.0130 0480 C:\Windows\Branding\ShellBrd\shellbrd.dll - ok
17:20:53.0130 0480 [ 36640155AE85AE0740A0C9020918566B ] C:\Windows\System32\RTSnMg64.cpl
17:20:53.0130 0480 C:\Windows\System32\RTSnMg64.cpl - ok
17:20:53.0146 0480 [ 531D105E2377422D986A8F192211AB8F ] C:\Program Files (x86)\Windows Live\Installer\LangSelectorRes.dll
17:20:53.0146 0480 C:\Program Files (x86)\Windows Live\Installer\LangSelectorRes.dll - ok
17:20:53.0146 0480 [ D1F75BA6FCCC5C3BC3CA39EA39A73138 ] C:\Windows\WindowsMobile\wmdConn.cpl
17:20:53.0146 0480 C:\Windows\WindowsMobile\wmdConn.cpl - ok
17:20:53.0146 0480 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
17:20:53.0146 0480 C:\Windows\SysWOW64\actxprxy.dll - ok
17:20:53.0146 0480 [ ECEC505F96DC60024B5C3384B180D07C ] C:\Windows\System32\osbaseln.dll
17:20:53.0146 0480 C:\Windows\System32\osbaseln.dll - ok
17:20:53.0161 0480 [ 4CB4CBC3DF302DCF606F0A08D6FB9F58 ] C:\ProgramData\PC-Doctor for Windows\startmenu\bundle.dll.mui
17:20:53.0161 0480 C:\ProgramData\PC-Doctor for Windows\startmenu\bundle.dll.mui - ok
17:20:53.0161 0480 [ AFAF8EC2E6716258A79B854EFE33DE0A ] C:\Program Files\CCleaner\CCleaner64.exe
17:20:53.0161 0480 C:\Program Files\CCleaner\CCleaner64.exe - ok
17:20:53.0161 0480 [ C1EF4900EAC105E0139764C3E4469061 ] C:\Program Files (x86)\Windows Live\Installer\wlsres.dll
17:20:53.0161 0480 C:\Program Files (x86)\Windows Live\Installer\wlsres.dll - ok
17:20:53.0177 0480 [ C52FEC5291914470BB82726F3EB08FEB ] C:\Program Files (x86)\hp\Digital Imaging\{181AC4C7-B83C-4B5F-B566-E19BF2472429}\setup\hpzscr40.exe
17:20:53.0177 0480 C:\Program Files (x86)\hp\Digital Imaging\{181AC4C7-B83C-4B5F-B566-E19BF2472429}\setup\hpzscr40.exe - ok
17:20:53.0177 0480 [ 19F33803FFE7BA7B9D41278C9A5355AF ] C:\Windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
17:20:53.0177 0480 C:\Windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe - ok
17:20:53.0177 0480 [ 92DAE5269E026DC54CF871F03DD2F65B ] C:\Program Files (x86)\Realtek\Audio\Drivers\RtlUpd64.exe
17:20:53.0177 0480 C:\Program Files (x86)\Realtek\Audio\Drivers\RtlUpd64.exe - ok
17:20:53.0177 0480 [ 43C9CF6825CEA58F1815B7C3DBBB385C ] C:\Windows\SysWOW64\Wpc.dll
17:20:53.0177 0480 C:\Windows\SysWOW64\Wpc.dll - ok
17:20:53.0192 0480 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
17:20:53.0192 0480 C:\Windows\SysWOW64\wevtapi.dll - ok
17:20:53.0192 0480 [ F348B2D0983C91392632B4291C517AA4 ] C:\Windows\System32\ieapfltr.dll
17:20:53.0192 0480 C:\Windows\System32\ieapfltr.dll - ok
17:20:53.0192 0480 [ C17139EAF939964142C7A1AEEE02DC81 ] C:\Windows\System32\ieapfltr.dat
17:20:53.0192 0480 C:\Windows\System32\ieapfltr.dat - ok
17:20:53.0208 0480 [ F7F7235A77D02BE6675A4D5AA9B6E7B2 ] C:\Windows\System32\winshfhc.dll
17:20:53.0208 0480 C:\Windows\System32\winshfhc.dll - ok
17:20:53.0208 0480 [ 5A4A633B3A84086CAB6AD61BA54C8D0C ] C:\Program Files\Windows Defender\MpOAV.dll
17:20:53.0208 0480 C:\Program Files\Windows Defender\MpOAV.dll - ok
17:20:53.0208 0480 [ 662BA98309818AF2C17D4E48BF4021C4 ] C:\Program Files\Windows Defender\MpClient.dll
17:20:53.0208 0480 C:\Program Files\Windows Defender\MpClient.dll - ok
17:20:53.0208 0480 [ 5229B8B305F12A66680163E1ED545343 ] C:\Program Files\Microsoft Security Client\MpOAv.dll
17:20:53.0208 0480 C:\Program Files\Microsoft Security Client\MpOAv.dll - ok
17:20:53.0224 0480 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
17:20:53.0224 0480 C:\Windows\System32\Query.dll - ok
17:20:53.0224 0480 [ 8EE1C893C50D1C02D4675978BAC756BA ] C:\Windows\System32\msimsg.dll
17:20:53.0224 0480 C:\Windows\System32\msimsg.dll - ok
17:20:53.0224 0480 [ CD2C20CC3B385A32701F78C0ACBBE9F3 ] C:\Windows\System32\msxml3r.dll
17:20:53.0224 0480 C:\Windows\System32\msxml3r.dll - ok
17:20:53.0224 0480 [ 830CF56A6AFCA75C11FA66F80D6ABDC2 ] C:\Users\Lucille\Desktop\FRST64.exe
17:20:53.0224 0480 C:\Users\Lucille\Desktop\FRST64.exe - ok
17:20:53.0239 0480 [ 5AA16332C2166D650375EB8E28D5D35F ] C:\Program Files (x86)\Windows Live\Photo Gallery\RegRes.dll
17:20:53.0239 0480 C:\Program Files (x86)\Windows Live\Photo Gallery\RegRes.dll - ok
17:20:53.0239 0480 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\32789157.sys
17:20:53.0239 0480 C:\Windows\System32\drivers\32789157.sys - ok
17:20:53.0239 0480 ============================================================
17:20:53.0239 0480 Scan finished
17:20:53.0239 0480 ============================================================
17:20:53.0255 5080 Detected object count: 9
17:20:53.0255 5080 Actual detected object count: 9
17:21:05.0782 5080 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0782 5080 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0782 5080 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0782 5080 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0797 5080 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0797 5080 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0797 5080 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0797 5080 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0797 5080 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0797 5080 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0797 5080 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0797 5080 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0797 5080 Netaapl ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0797 5080 Netaapl ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0797 5080 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0797 5080 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:21:05.0797 5080 tvnserver ( UnsignedFile.Multi.Generic ) - skipped by user
17:21:05.0797 5080 tvnserver ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:45.0125 3168 Deinitialize success

#29
pystryker

Posted 27 February 2014 - 08:26 PM

Trusted Helper

Malware Removal
3,912 posts

That's the one I was looking for :thumbsup:

It looks good, which brings me to my next point:

Great news, your logs are CLEAN! :thumbsup:

I see no signs of infection in the last logs you posted, but we still have a few things we need to address namely:

I need to remove the tools we installed on your machine.
I have some information for you to help protect you in the future as well as protection against a new form of ransomware called CryptoLocker.

Step 1: Download and Run DelFix

Download Delfix from here
Ensure Remove disinfection tools is ticked
Also tick:
- Create registry backup
- Purge system restore
Click Run

The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply

I'd recommend keeping Malwarebytes Anti-Malware installed. Make sure to update it and run it at least once a week.

Step 2: Install FileHippo

Keeping your software updated

Another weapon against malicious programs and viruses is to keeping other programs updated. There are several programs out there that can check for out of date programs on your computer. One is Filehippo. You can run this on a weekly or monthly basis to check your programs for updates and then it will provide a link for you to download them.

Download Filehippo Updatechecker

Step 3: Tips, Information, and protection against CryptoLocker

Watch what you open in your emails. If you get an email from an unknown source with any attached files, do not open it.

Be careful of the websites you visit.

When installing new programs, don't be "click happy" and click through the screens. Many programs come with adware in them and are set to install them by default. Several programs require that you uncheck or select no to prevent the installation. Take you time and read each screen as you go.

To help protect yourself while on the web, I recommend you read How did I get infected in the first place?

A warning about CryptoLocker

CryptoLocker is a ransomware program that was released around the beginning of September 2013 that targets all versions of Windows including Windows XP, Windows Vista, Windows 7, and Windows 8. This ransomware will encrypt certain files using a mixture of RSA & AES encryption. When it has finished encrypting your files, it will display a CryptoLocker payment program that prompts you to send a ransom of either $100 or $300 in order to decrypt the files. This screen will also display a timer stating that you have 72 hours, or 4 days, to pay the ransom or it will delete your encryption key and you will not have any way to decrypt your files. This ransom must be paid using MoneyPak vouchers or Bitcoins. Once you send the payment and it is verified, the program will decrypt the files that it encrypted.

Please download and install CryptoPrevent to lock your machine down from this infection.

Posted Image

Watch what you open in your emails. If you get an email from an unknown source with any attached files, do not open it.

Be careful of the websites you visit.

When installing new programs, don't be "click happy" and click through the screens. Many programs come with adware in them and are set to install them by default. Several programs require that you uncheck or select no to prevent the installation. Take you time and read each screen as you go.

To help protect yourself while on the web, I recommend you read How did I get infected in the first place?

Are there any further issues I can assist you with?

#30
LUCYR

Posted 28 February 2014 - 12:25 PM

Member

Topic Starter
Member
18 posts

thank you for all your help hopefully I can keep them from coming back

# DelFix v10.6 - Logfile created 28/02/2014 at 10:13:44
# Updated 11/11/2013 by Xplode
# Username : Lucille - LUCILLE-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\_OTL
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Lucille\Desktop\RK_Quarantine
Deleted : C:\AdwCleaner[R1].txt
Deleted : C:\AdwCleaner[S1].txt
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_16.40.09_log.txt
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_16.42.57_log.txt
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_16.45.56_log.txt
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_17.11.39_log.txt
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_17.20.05_log.txt
Deleted : C:\TDSSKiller.3.0.0.25_27.02.2014_18.04.59_log.txt
Deleted : C:\Users\Lucille\Desktop\Addition.txt
Deleted : C:\Users\Lucille\Desktop\adwcleaner - Shortcut.lnk
Deleted : C:\Users\Lucille\Desktop\adwcleaner.exe
Deleted : C:\Users\Lucille\Desktop\aswMBR.txt
Deleted : C:\Users\Lucille\Desktop\Fixlog.txt
Deleted : C:\Users\Lucille\Desktop\FRST.txt
Deleted : C:\Users\Lucille\Desktop\FRST64.exe
Deleted : C:\Users\Lucille\Desktop\FSS.exe
Deleted : C:\Users\Lucille\Desktop\JRT.exe
Deleted : C:\Users\Lucille\Desktop\JRT.txt
Deleted : C:\Users\Lucille\Desktop\MBR.dat
Deleted : C:\Users\Lucille\Desktop\SecurityCheck.exe
Deleted : C:\Users\Lucille\Desktop\TDSSKiller.2.8.16.0_27.02.2014_17.11.39_log.txt.lnk
Deleted : C:\Users\Lucille\Desktop\tdsskiller.exe
Deleted : C:\Users\Lucille\Desktop\tdsskiller.zip
Deleted : C:\Users\Lucille\Downloads\OTL.Txt
Deleted : C:\Users\Lucille\Downloads\OTL.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #1132 [Windows Update | 02/10/2014 06:53:42]
Deleted : RP #1133 [Windows Update | 02/12/2014 11:00:12]
Deleted : RP #1134 [Windows Update | 02/15/2014 11:00:12]
Deleted : RP #1135 [Windows Update | 02/20/2014 11:39:36]
Deleted : RP #1136 [Windows Update | 02/24/2014 18:46:16]
Deleted : RP #1137 [Windows Update | 02/25/2014 11:00:10]
Deleted : RP #1138 [OTL Restore Point - 25/02/2014 6:35:43 PM | 02/26/2014 02:35:44]
Deleted : RP #1139 [OTL Restore Point - 25/02/2014 7:43:06 PM | 02/26/2014 03:43:09]
Deleted : RP #1140 [OTL Restore Point - 25/02/2014 8:37:51 PM | 02/26/2014 04:37:54]
Deleted : RP #1141 [OTL Restore Point - 25/02/2014 8:44:34 PM | 02/26/2014 04:44:38]
Deleted : RP #1142 [OTL Restore Point - 25/02/2014 8:50:32 PM | 02/26/2014 04:50:35]
Deleted : RP #1143 [Windows Update | 02/26/2014 11:00:16]

New restore point created !

########## - EOF - ##########