Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PrivitizeVPN malware on computer - Need to get rid of it and any associated damage/threats


  • Please log in to reply
13 replies to this topic

#1 incandescentface

incandescentface

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:27 AM

Posted 09 February 2013 - 11:26 PM

I naively installed the software PrivitizeVPN and it was only after installation I thought that maybe I should do a background check. Apparently it's a pain to get rid of - I don't know how and I need help to do this.

 

Thanks!



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 AM

Posted 09 February 2013 - 11:28 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 incandescentface

incandescentface
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:27 AM

Posted 10 February 2013 - 09:22 AM

TDSSKiller:

 

 

22:35:12.0329 4844  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:35:12.0811 4844  ============================================================
22:35:12.0811 4844  Current date / time: 2013/02/09 22:35:12.0811
22:35:12.0811 4844  SystemInfo:
22:35:12.0811 4844  
22:35:12.0811 4844  OS Version: 6.1.7601 ServicePack: 1.0
22:35:12.0811 4844  Product type: Workstation
22:35:12.0811 4844  ComputerName: RON-PC
22:35:12.0811 4844  UserName: Ryan
22:35:12.0811 4844  Windows directory: C:\Windows
22:35:12.0811 4844  System windows directory: C:\Windows
22:35:12.0811 4844  Running under WOW64
22:35:12.0811 4844  Processor architecture: Intel x64
22:35:12.0811 4844  Number of processors: 4
22:35:12.0811 4844  Page size: 0x1000
22:35:12.0811 4844  Boot type: Normal boot
22:35:12.0811 4844  ============================================================
22:35:26.0182 4844  BG loaded
22:35:27.0436 4844  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:35:27.0490 4844  ============================================================
22:35:27.0490 4844  \Device\Harddisk0\DR0:
22:35:27.0753 4844  MBR partitions:
22:35:27.0753 4844  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1389000, BlocksNum 0x494CE800
22:35:27.0753 4844  ============================================================
22:35:27.0929 4844  C: <-> \Device\Harddisk0\DR0\Partition1
22:35:27.0929 4844  ============================================================
22:35:27.0929 4844  Initialize success
22:35:27.0929 4844  ============================================================
22:37:04.0802 1936  ============================================================
22:37:04.0802 1936  Scan started
22:37:04.0802 1936  Mode: Manual; TDLFS; 
22:37:04.0802 1936  ============================================================
22:37:06.0295 1936  ================ Scan system memory ========================
22:37:06.0295 1936  System memory - ok
22:37:06.0295 1936  ================ Scan services =============================
22:37:06.0571 1936  [ 0DD9A0E38D220A3365B12EA412418C54 ] 123MediaStreamer C:\Program Files (x86)\123CopyDVDPlatinum 2012\MediaStreamerService.exe
22:37:06.0601 1936  123MediaStreamer - ok
22:37:06.0709 1936  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:37:06.0711 1936  1394ohci - ok
22:37:06.0759 1936  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:37:06.0763 1936  ACPI - ok
22:37:06.0807 1936  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:37:06.0809 1936  AcpiPmi - ok
22:37:06.0843 1936  [ 0EC911D24F14C969E980E92E4371464D ] acsock          C:\Windows\system32\DRIVERS\acsock64.sys
22:37:06.0867 1936  acsock - ok
22:37:06.0972 1936  [ C004F38974F4D321B4C20A240E1175C0 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
22:37:06.0974 1936  AdobeActiveFileMonitor9.0 - ok
22:37:07.0056 1936  [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:37:07.0057 1936  AdobeARMservice - ok
22:37:07.0182 1936  [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:37:07.0185 1936  AdobeFlashPlayerUpdateSvc - ok
22:37:07.0240 1936  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
22:37:07.0257 1936  adp94xx - ok
22:37:07.0289 1936  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
22:37:07.0294 1936  adpahci - ok
22:37:07.0310 1936  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
22:37:07.0314 1936  adpu320 - ok
22:37:07.0354 1936  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:37:07.0355 1936  AeLookupSvc - ok
22:37:07.0375 1936  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
22:37:07.0379 1936  AFD - ok
22:37:07.0433 1936  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
22:37:07.0460 1936  AgereSoftModem - ok
22:37:07.0500 1936  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:37:07.0502 1936  agp440 - ok
22:37:07.0514 1936  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:37:07.0516 1936  ALG - ok
22:37:07.0530 1936  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:37:07.0532 1936  aliide - ok
22:37:07.0569 1936  [ B3E801135E0C81733542C14D9AA8120A ] Alpham1         C:\Windows\system32\DRIVERS\Alpham164.sys
22:37:07.0570 1936  Alpham1 - ok
22:37:07.0598 1936  [ 6493983FEDBC49D9112703ECE9B251FE ] Alpham2         C:\Windows\system32\DRIVERS\Alpham264.sys
22:37:07.0600 1936  Alpham2 - ok
22:37:07.0669 1936  [ DCEEE24E57E8176115207312F827C130 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:37:07.0671 1936  AMD External Events Utility - ok
22:37:07.0684 1936  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
22:37:07.0686 1936  amdide - ok
22:37:07.0717 1936  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
22:37:07.0719 1936  AmdK8 - ok
22:37:07.0724 1936  amdkmdag - ok
22:37:07.0766 1936  [ 20B63276A1920B41E1C56720B395049B ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
22:37:07.0770 1936  amdkmdap - ok
22:37:07.0792 1936  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:37:07.0792 1936  AmdPPM - ok
22:37:07.0836 1936  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:37:07.0838 1936  amdsata - ok
22:37:07.0864 1936  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
22:37:07.0868 1936  amdsbs - ok
22:37:07.0878 1936  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:37:07.0879 1936  amdxata - ok
22:37:07.0956 1936  [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc      C:\Windows\system32\inetsrv\apphostsvc.dll
22:37:07.0958 1936  AppHostSvc - ok
22:37:08.0003 1936  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
22:37:08.0005 1936  AppID - ok
22:37:08.0022 1936  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:37:08.0024 1936  AppIDSvc - ok
22:37:08.0060 1936  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
22:37:08.0061 1936  Appinfo - ok
22:37:08.0091 1936  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:37:08.0093 1936  Apple Mobile Device - ok
22:37:08.0175 1936  [ 2C349460E40EF6B9604D774AAF367730 ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
22:37:08.0302 1936  Application Updater - ok
22:37:08.0354 1936  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
22:37:08.0358 1936  AppMgmt - ok
22:37:08.0392 1936  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
22:37:08.0394 1936  arc - ok
22:37:08.0406 1936  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
22:37:08.0408 1936  arcsas - ok
22:37:08.0579 1936  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:37:08.0610 1936  aspnet_state - ok
22:37:08.0634 1936  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:37:08.0634 1936  AsyncMac - ok
22:37:08.0670 1936  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
22:37:08.0671 1936  atapi - ok
22:37:08.0727 1936  [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:37:08.0729 1936  AtiHDAudioService - ok
22:37:08.0791 1936  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:37:08.0797 1936  AudioEndpointBuilder - ok
22:37:08.0817 1936  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:37:08.0822 1936  AudioSrv - ok
22:37:08.0864 1936  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:37:08.0866 1936  AxInstSV - ok
22:37:08.0900 1936  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
22:37:08.0917 1936  b06bdrv - ok
22:37:08.0951 1936  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:37:08.0955 1936  b57nd60a - ok
22:37:09.0017 1936  [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
22:37:09.0043 1936  BCM43XX - ok
22:37:09.0069 1936  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:37:09.0071 1936  BDESVC - ok
22:37:09.0091 1936  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:37:09.0092 1936  Beep - ok
22:37:09.0148 1936  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
22:37:09.0154 1936  BFE - ok
22:37:09.0201 1936  [ 00CADB1BC2D0030F0B2A1063618B6BD7 ] BIOS            C:\Windows\system32\drivers\BIOS64.sys
22:37:09.0213 1936  BIOS - ok
22:37:09.0263 1936  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
22:37:09.0272 1936  BITS - ok
22:37:09.0298 1936  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:37:09.0299 1936  blbdrive - ok
22:37:09.0380 1936  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:37:09.0384 1936  Bonjour Service - ok
22:37:09.0423 1936  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:37:09.0425 1936  bowser - ok
22:37:09.0434 1936  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:37:09.0448 1936  BrFiltLo - ok
22:37:09.0457 1936  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:37:09.0458 1936  BrFiltUp - ok
22:37:09.0499 1936  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
22:37:09.0500 1936  Browser - ok
22:37:09.0520 1936  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:37:09.0525 1936  Brserid - ok
22:37:09.0536 1936  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:37:09.0538 1936  BrSerWdm - ok
22:37:09.0548 1936  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:37:09.0549 1936  BrUsbMdm - ok
22:37:09.0555 1936  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:37:09.0556 1936  BrUsbSer - ok
22:37:09.0596 1936  [ 83601BBE5563D92C1FDB4E960D84DC77 ] BS_I2cIo        C:\Windows\system32\drivers\BS_I2c64.sys
22:37:09.0608 1936  BS_I2cIo - ok
22:37:09.0614 1936  btaudio - ok
22:37:09.0621 1936  BTDriver - ok
22:37:09.0638 1936  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
22:37:09.0639 1936  BTHMODEM - ok
22:37:09.0658 1936  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:37:09.0660 1936  bthserv - ok
22:37:09.0671 1936  BTWDNDIS - ok
22:37:09.0679 1936  btwhid - ok
22:37:09.0714 1936  [ A765F4A60A1B5B2A3CD2544B324DDA23 ] BTWUSB          C:\Windows\system32\Drivers\btwusb.sys
22:37:09.0716 1936  BTWUSB - ok
22:37:09.0748 1936  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:37:09.0750 1936  cdfs - ok
22:37:09.0795 1936  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:37:09.0796 1936  cdrom - ok
22:37:09.0837 1936  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:37:09.0839 1936  CertPropSvc - ok
22:37:09.0856 1936  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
22:37:09.0858 1936  circlass - ok
22:37:09.0880 1936  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:37:09.0885 1936  CLFS - ok
22:37:09.0929 1936  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:37:09.0933 1936  clr_optimization_v2.0.50727_32 - ok
22:37:09.0964 1936  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:37:09.0967 1936  clr_optimization_v2.0.50727_64 - ok
22:37:10.0074 1936  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:37:10.0184 1936  clr_optimization_v4.0.30319_32 - ok
22:37:10.0210 1936  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:37:10.0215 1936  clr_optimization_v4.0.30319_64 - ok
22:37:10.0257 1936  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:37:10.0259 1936  CmBatt - ok
22:37:10.0270 1936  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:37:10.0272 1936  cmdide - ok
22:37:10.0316 1936  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
22:37:10.0333 1936  CNG - ok
22:37:10.0344 1936  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:37:10.0346 1936  Compbatt - ok
22:37:10.0396 1936  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
22:37:10.0397 1936  CompositeBus - ok
22:37:10.0410 1936  COMSysApp - ok
22:37:10.0446 1936  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
22:37:10.0447 1936  crcdisk - ok
22:37:10.0497 1936  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:37:10.0499 1936  CryptSvc - ok
22:37:10.0538 1936  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
22:37:10.0542 1936  CSC - ok
22:37:10.0596 1936  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
22:37:10.0602 1936  CscService - ok
22:37:10.0646 1936  [ 1CA90212A99DB6975C344826D11055C9 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
22:37:10.0648 1936  dc3d - ok
22:37:10.0693 1936  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:37:10.0698 1936  DcomLaunch - ok
22:37:10.0746 1936  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:37:10.0751 1936  defragsvc - ok
22:37:10.0797 1936  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:37:10.0799 1936  DfsC - ok
22:37:10.0815 1936  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:37:10.0818 1936  Dhcp - ok
22:37:10.0833 1936  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:37:10.0834 1936  discache - ok
22:37:10.0864 1936  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
22:37:10.0866 1936  Disk - ok
22:37:10.0911 1936  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:37:10.0913 1936  Dnscache - ok
22:37:10.0951 1936  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:37:10.0955 1936  dot3svc - ok
22:37:11.0002 1936  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
22:37:11.0004 1936  DPS - ok
22:37:11.0036 1936  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:37:11.0038 1936  drmkaud - ok
22:37:11.0070 1936  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:37:11.0078 1936  DXGKrnl - ok
22:37:11.0110 1936  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:37:11.0112 1936  EapHost - ok
22:37:11.0178 1936  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
22:37:11.0239 1936  ebdrv - ok
22:37:11.0278 1936  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
22:37:11.0279 1936  EFS - ok
22:37:11.0306 1936  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:37:11.0323 1936  ehRecvr - ok
22:37:11.0343 1936  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:37:11.0345 1936  ehSched - ok
22:37:11.0371 1936  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
22:37:11.0389 1936  elxstor - ok
22:37:11.0428 1936  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:37:11.0429 1936  ErrDev - ok
22:37:11.0471 1936  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:37:11.0475 1936  EventSystem - ok
22:37:11.0483 1936  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:37:11.0486 1936  exfat - ok
22:37:11.0499 1936  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:37:11.0502 1936  fastfat - ok
22:37:11.0556 1936  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
22:37:11.0562 1936  Fax - ok
22:37:11.0568 1936  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:37:11.0569 1936  fdc - ok
22:37:11.0586 1936  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:37:11.0587 1936  fdPHost - ok
22:37:11.0599 1936  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:37:11.0601 1936  FDResPub - ok
22:37:11.0614 1936  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:37:11.0616 1936  FileInfo - ok
22:37:11.0624 1936  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:37:11.0626 1936  Filetrace - ok
22:37:11.0631 1936  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:37:11.0633 1936  flpydisk - ok
22:37:11.0679 1936  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:37:11.0681 1936  FltMgr - ok
22:37:11.0733 1936  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
22:37:11.0743 1936  FontCache - ok
22:37:11.0790 1936  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:37:11.0792 1936  FontCache3.0.0.0 - ok
22:37:11.0808 1936  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:37:11.0810 1936  FsDepends - ok
22:37:11.0849 1936  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:37:11.0850 1936  Fs_Rec - ok
22:37:11.0906 1936  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:37:11.0910 1936  fvevol - ok
22:37:11.0925 1936  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
22:37:11.0927 1936  gagp30kx - ok
22:37:11.0969 1936  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:37:11.0970 1936  GEARAspiWDM - ok
22:37:12.0017 1936  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
22:37:12.0024 1936  gpsvc - ok
22:37:12.0120 1936  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:37:12.0121 1936  gupdate - ok
22:37:12.0165 1936  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:37:12.0166 1936  gupdatem - ok
22:37:12.0174 1936  gwiopm - ok
22:37:12.0195 1936  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:37:12.0196 1936  hcw85cir - ok
22:37:12.0249 1936  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:37:12.0254 1936  HdAudAddService - ok
22:37:12.0299 1936  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:37:12.0300 1936  HDAudBus - ok
22:37:12.0323 1936  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
22:37:12.0362 1936  HidBatt - ok
22:37:12.0406 1936  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
22:37:12.0408 1936  HidBth - ok
22:37:12.0423 1936  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
22:37:12.0424 1936  HidIr - ok
22:37:12.0442 1936  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
22:37:12.0443 1936  hidserv - ok
22:37:12.0522 1936  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:37:12.0523 1936  HidUsb - ok
22:37:12.0561 1936  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:37:12.0563 1936  hkmsvc - ok
22:37:12.0603 1936  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:37:12.0606 1936  HomeGroupListener - ok
22:37:12.0649 1936  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:37:12.0652 1936  HomeGroupProvider - ok
22:37:12.0666 1936  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:37:12.0669 1936  HpSAMD - ok
22:37:12.0718 1936  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:37:12.0724 1936  HTTP - ok
22:37:12.0768 1936  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:37:12.0769 1936  hwpolicy - ok
22:37:12.0820 1936  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
22:37:12.0822 1936  i8042prt - ok
22:37:12.0851 1936  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:37:12.0858 1936  iaStorV - ok
22:37:12.0962 1936  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:37:13.0018 1936  IDriverT - ok
22:37:13.0064 1936  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:37:13.0082 1936  idsvc - ok
22:37:13.0105 1936  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
22:37:13.0106 1936  iirsp - ok
22:37:13.0128 1936  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
22:37:13.0136 1936  IKEEXT - ok
22:37:13.0237 1936  [ C03463214D23B46B991F582821C8DF69 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:37:13.0256 1936  IntcAzAudAddService - ok
22:37:13.0270 1936  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
22:37:13.0271 1936  intelide - ok
22:37:13.0300 1936  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:37:13.0302 1936  intelppm - ok
22:37:13.0341 1936  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:37:13.0343 1936  IPBusEnum - ok
22:37:13.0384 1936  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:37:13.0386 1936  IpFilterDriver - ok
22:37:13.0430 1936  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:37:13.0435 1936  iphlpsvc - ok
22:37:13.0473 1936  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:37:13.0475 1936  IPMIDRV - ok
22:37:13.0494 1936  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:37:13.0496 1936  IPNAT - ok
22:37:13.0578 1936  [ 0F261EC4F514926177C70C1832374231 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
22:37:13.0583 1936  iPod Service - ok
22:37:13.0608 1936  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:37:13.0610 1936  IRENUM - ok
22:37:13.0652 1936  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:37:13.0654 1936  isapnp - ok
22:37:13.0694 1936  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:37:13.0698 1936  iScsiPrt - ok
22:37:13.0728 1936  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:37:13.0729 1936  kbdclass - ok
22:37:13.0770 1936  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:37:13.0770 1936  kbdhid - ok
22:37:13.0778 1936  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
22:37:13.0779 1936  KeyIso - ok
22:37:13.0817 1936  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:37:13.0819 1936  KSecDD - ok
22:37:13.0862 1936  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:37:13.0865 1936  KSecPkg - ok
22:37:13.0874 1936  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:37:13.0875 1936  ksthunk - ok
22:37:13.0898 1936  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:37:13.0915 1936  KtmRm - ok
22:37:13.0967 1936  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:37:13.0971 1936  LanmanServer - ok
22:37:14.0013 1936  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:37:14.0016 1936  LanmanWorkstation - ok
22:37:14.0054 1936  [ DB164EB571FD118D277D939510B0F562 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
22:37:14.0056 1936  LGBusEnum - ok
22:37:14.0081 1936  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:37:14.0082 1936  lltdio - ok
22:37:14.0108 1936  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:37:14.0113 1936  lltdsvc - ok
22:37:14.0142 1936  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:37:14.0144 1936  lmhosts - ok
22:37:14.0182 1936  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
22:37:14.0187 1936  LSI_FC - ok
22:37:14.0204 1936  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
22:37:14.0206 1936  LSI_SAS - ok
22:37:14.0219 1936  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:37:14.0221 1936  LSI_SAS2 - ok
22:37:14.0234 1936  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:37:14.0237 1936  LSI_SCSI - ok
22:37:14.0271 1936  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:37:14.0273 1936  luafv - ok
22:37:14.0322 1936  [ C586CC39820B6E7FE3657FED8329D300 ] lvpopf64        C:\Windows\system32\DRIVERS\lvpopf64.sys
22:37:14.0326 1936  lvpopf64 - ok
22:37:14.0363 1936  [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
22:37:14.0364 1936  LVPr2M64 - ok
22:37:14.0379 1936  [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
22:37:14.0379 1936  LVPr2Mon - ok
22:37:14.0466 1936  [ 9CD0DC863BE5D40A762F7D84F11A8471 ] LVPrcS64        C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
22:37:14.0468 1936  LVPrcS64 - ok
22:37:14.0487 1936  [ 224AB3850F573A419F921C41A15D7F5B ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
22:37:14.0491 1936  LVRS64 - ok
22:37:14.0602 1936  [ BFBA84B8A9C233AE42B11CF7BDFC6C01 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
22:37:14.0708 1936  LVUVC64 - ok
22:37:14.0751 1936  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:37:14.0754 1936  Mcx2Svc - ok
22:37:14.0767 1936  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
22:37:14.0768 1936  megasas - ok
22:37:14.0783 1936  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
22:37:14.0787 1936  MegaSR - ok
22:37:14.0832 1936  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:37:14.0834 1936  MMCSS - ok
22:37:14.0846 1936  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:37:14.0847 1936  Modem - ok
22:37:14.0876 1936  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:37:14.0876 1936  monitor - ok
22:37:14.0938 1936  [ 5FEC1FF5BB9A1FA5C9CF4544D19D6D5D ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
22:37:14.0961 1936  MotioninJoyXFilter - ok
22:37:14.0993 1936  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:37:14.0993 1936  mouclass - ok
22:37:15.0027 1936  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:37:15.0028 1936  mouhid - ok
22:37:15.0067 1936  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:37:15.0069 1936  mountmgr - ok
22:37:15.0185 1936  [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:37:15.0188 1936  MozillaMaintenance - ok
22:37:15.0264 1936  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
22:37:15.0267 1936  MpFilter - ok
22:37:15.0308 1936  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:37:15.0311 1936  mpio - ok
22:37:15.0347 1936  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:37:15.0348 1936  mpsdrv - ok
22:37:15.0397 1936  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:37:15.0405 1936  MpsSvc - ok
22:37:15.0444 1936  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:37:15.0446 1936  MRxDAV - ok
22:37:15.0487 1936  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:37:15.0489 1936  mrxsmb - ok
22:37:15.0516 1936  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:37:15.0518 1936  mrxsmb10 - ok
22:37:15.0550 1936  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:37:15.0551 1936  mrxsmb20 - ok
22:37:15.0565 1936  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:37:15.0566 1936  msahci - ok
22:37:15.0577 1936  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:37:15.0580 1936  msdsm - ok
22:37:15.0607 1936  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:37:15.0610 1936  MSDTC - ok
22:37:15.0754 1936  [ 0C02096E686E9EB2A3D37DFF9B42D946 ] MsDtsServer100  C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe
22:37:15.0756 1936  MsDtsServer100 - ok
22:37:15.0765 1936  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:37:15.0766 1936  Msfs - ok
22:37:15.0774 1936  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:37:15.0775 1936  mshidkmdf - ok
22:37:15.0810 1936  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:37:15.0812 1936  msisadrv - ok
22:37:15.0853 1936  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:37:15.0857 1936  MSiSCSI - ok
22:37:15.0865 1936  msiserver - ok
22:37:15.0899 1936  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:37:15.0901 1936  MSKSSRV - ok
22:37:15.0996 1936  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:37:15.0997 1936  MsMpSvc - ok
22:37:16.0004 1936  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:37:16.0006 1936  MSPCLOCK - ok
22:37:16.0021 1936  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:37:16.0022 1936  MSPQM - ok
22:37:16.0062 1936  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:37:16.0070 1936  MsRPC - ok
22:37:16.0109 1936  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
22:37:16.0110 1936  mssmbios - ok
22:37:16.0190 1936  [ 6286605FE7C87DDC628E3CE41A15FFA6 ] MSSQLFDLauncher C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe
22:37:16.0191 1936  MSSQLFDLauncher - ok
22:37:16.0224 1936  MSSQLSERVER - ok
22:37:16.0299 1936  [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
22:37:16.0301 1936  MSSQLServerADHelper100 - ok
22:37:16.0345 1936  MSSQLServerOLAPService - ok
22:37:16.0353 1936  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:37:16.0354 1936  MSTEE - ok
22:37:16.0373 1936  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
22:37:16.0374 1936  MTConfig - ok
22:37:16.0399 1936  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:37:16.0401 1936  Mup - ok
22:37:16.0445 1936  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
22:37:16.0450 1936  napagent - ok
22:37:16.0495 1936  NasPmService - ok
22:37:16.0525 1936  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:37:16.0528 1936  NativeWifiP - ok
22:37:16.0585 1936  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:37:16.0603 1936  NDIS - ok
22:37:16.0638 1936  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:37:16.0640 1936  NdisCap - ok
22:37:16.0663 1936  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:37:16.0664 1936  NdisTapi - ok
22:37:16.0708 1936  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:37:16.0709 1936  Ndisuio - ok
22:37:16.0754 1936  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:37:16.0756 1936  NdisWan - ok
22:37:16.0793 1936  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:37:16.0794 1936  NDProxy - ok
22:37:16.0818 1936  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:37:16.0819 1936  NetBIOS - ok
22:37:16.0862 1936  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:37:16.0865 1936  NetBT - ok
22:37:16.0877 1936  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
22:37:16.0879 1936  Netlogon - ok
22:37:16.0898 1936  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:37:16.0902 1936  Netman - ok
22:37:16.0954 1936  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:37:16.0974 1936  NetMsmqActivator - ok
22:37:16.0995 1936  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:37:16.0997 1936  NetPipeActivator - ok
22:37:17.0036 1936  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:37:17.0041 1936  netprofm - ok
22:37:17.0068 1936  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:37:17.0069 1936  NetTcpActivator - ok
22:37:17.0075 1936  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:37:17.0076 1936  NetTcpPortSharing - ok
22:37:17.0100 1936  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
22:37:17.0102 1936  nfrd960 - ok
22:37:17.0157 1936  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:37:17.0159 1936  NisDrv - ok
22:37:17.0224 1936  [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
22:37:17.0227 1936  NisSrv - ok
22:37:17.0260 1936  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:37:17.0264 1936  NlaSvc - ok
22:37:17.0278 1936  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:37:17.0279 1936  Npfs - ok
22:37:17.0291 1936  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:37:17.0293 1936  nsi - ok
22:37:17.0302 1936  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:37:17.0303 1936  nsiproxy - ok
22:37:17.0387 1936  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:37:17.0451 1936  Ntfs - ok
22:37:17.0523 1936  [ 4C08A14D04E62963E96E0BB57BBC953B ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
22:37:17.0525 1936  NuidFltr - ok
22:37:17.0535 1936  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:37:17.0536 1936  Null - ok
22:37:17.0585 1936  [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
22:37:17.0587 1936  NVHDA - ok
22:37:17.0863 1936  [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:37:17.0963 1936  nvlddmkm - ok
22:37:18.0010 1936  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:37:18.0013 1936  nvraid - ok
22:37:18.0045 1936  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:37:18.0048 1936  nvstor - ok
22:37:18.0091 1936  [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc           C:\Windows\system32\nvvsvc.exe
22:37:18.0100 1936  nvsvc - ok
22:37:18.0162 1936  [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
22:37:18.0188 1936  nvUpdatusService - ok
22:37:18.0234 1936  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:37:18.0237 1936  nv_agp - ok
22:37:18.0343 1936  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:37:18.0351 1936  odserv - ok
22:37:18.0411 1936  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:37:18.0413 1936  ohci1394 - ok
22:37:18.0465 1936  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:37:18.0468 1936  ose - ok
22:37:18.0496 1936  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:37:18.0500 1936  p2pimsvc - ok
22:37:18.0519 1936  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:37:18.0524 1936  p2psvc - ok
22:37:18.0561 1936  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
22:37:18.0562 1936  Parport - ok
22:37:18.0600 1936  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:37:18.0602 1936  partmgr - ok
22:37:18.0619 1936  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:37:18.0622 1936  PcaSvc - ok
22:37:18.0660 1936  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
22:37:18.0663 1936  pci - ok
22:37:18.0679 1936  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
22:37:18.0681 1936  pciide - ok
22:37:18.0695 1936  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
22:37:18.0699 1936  pcmcia - ok
22:37:18.0713 1936  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:37:18.0715 1936  pcw - ok
22:37:18.0737 1936  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:37:18.0743 1936  PEAUTH - ok
22:37:18.0783 1936  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
22:37:18.0809 1936  PeerDistSvc - ok
22:37:18.0869 1936  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:37:18.0871 1936  PerfHost - ok
22:37:18.0941 1936  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
22:37:18.0968 1936  pla - ok
22:37:19.0021 1936  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:37:19.0026 1936  PlugPlay - ok
22:37:19.0057 1936  PnkBstrA - ok
22:37:19.0076 1936  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:37:19.0079 1936  PNRPAutoReg - ok
22:37:19.0096 1936  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:37:19.0100 1936  PNRPsvc - ok
22:37:19.0149 1936  [ B8D8EC78B0F9ED8E220506181274F3D3 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
22:37:19.0150 1936  Point64 - ok
22:37:19.0197 1936  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:37:19.0202 1936  PolicyAgent - ok
22:37:19.0231 1936  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:37:19.0234 1936  Power - ok
22:37:19.0284 1936  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:37:19.0285 1936  PptpMiniport - ok
22:37:19.0296 1936  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
22:37:19.0298 1936  Processor - ok
22:37:19.0348 1936  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:37:19.0351 1936  ProfSvc - ok
22:37:19.0361 1936  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:37:19.0362 1936  ProtectedStorage - ok
22:37:19.0409 1936  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:37:19.0411 1936  Psched - ok
22:37:19.0473 1936  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
22:37:19.0475 1936  PxHlpa64 - ok
22:37:19.0524 1936  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
22:37:19.0550 1936  ql2300 - ok
22:37:19.0563 1936  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
22:37:19.0565 1936  ql40xx - ok
22:37:19.0587 1936  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:37:19.0592 1936  QWAVE - ok
22:37:19.0606 1936  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:37:19.0607 1936  QWAVEdrv - ok
22:37:19.0618 1936  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:37:19.0620 1936  RasAcd - ok
22:37:19.0655 1936  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:37:19.0656 1936  RasAgileVpn - ok
22:37:19.0666 1936  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:37:19.0669 1936  RasAuto - ok
22:37:19.0704 1936  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:37:19.0705 1936  Rasl2tp - ok
22:37:19.0757 1936  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
22:37:19.0765 1936  RasMan - ok
22:37:19.0794 1936  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:37:19.0795 1936  RasPppoe - ok
22:37:19.0826 1936  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:37:19.0828 1936  RasSstp - ok
22:37:19.0868 1936  [ 81DDBF4FE998EF1F4BA230F7E8D8C67E ] Razerlow        C:\Windows\system32\drivers\Razerlow.sys
22:37:19.0869 1936  Razerlow - ok
22:37:19.0911 1936  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:37:19.0914 1936  rdbss - ok
22:37:19.0927 1936  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:37:19.0928 1936  rdpbus - ok
22:37:19.0940 1936  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:37:19.0941 1936  RDPCDD - ok
22:37:19.0982 1936  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
22:37:19.0985 1936  RDPDR - ok
22:37:20.0013 1936  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:37:20.0014 1936  RDPENCDD - ok
22:37:20.0029 1936  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:37:20.0030 1936  RDPREFMP - ok
22:37:20.0088 1936  [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:37:20.0090 1936  RdpVideoMiniport - ok
22:37:20.0128 1936  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:37:20.0132 1936  RDPWD - ok
22:37:20.0172 1936  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:37:20.0176 1936  rdyboost - ok
22:37:20.0197 1936  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:37:20.0200 1936  RemoteAccess - ok
22:37:20.0215 1936  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:37:20.0220 1936  RemoteRegistry - ok
22:37:20.0320 1936  [ DACF8F0D09A0AF56109DFE60351A5BEB ] ReportServer    C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
22:37:20.0336 1936  ReportServer - ok
22:37:20.0366 1936  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:37:20.0368 1936  RpcEptMapper - ok
22:37:20.0384 1936  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:37:20.0385 1936  RpcLocator - ok
22:37:20.0443 1936  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
22:37:20.0448 1936  RpcSs - ok
22:37:20.0490 1936  [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103        C:\Windows\system32\DRIVERS\RsFx0103.sys
22:37:20.0495 1936  RsFx0103 - ok
22:37:20.0523 1936  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:37:20.0525 1936  rspndr - ok
22:37:20.0579 1936  [ 4FBDA07EF0A3097CE14C5CABF723B278 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:37:20.0584 1936  RTL8167 - ok
22:37:20.0629 1936  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
22:37:20.0631 1936  s3cap - ok
22:37:20.0644 1936  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
22:37:20.0645 1936  SamSs - ok
22:37:20.0686 1936  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:37:20.0688 1936  sbp2port - ok
22:37:20.0701 1936  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:37:20.0706 1936  SCardSvr - ok
22:37:20.0740 1936  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:37:20.0742 1936  scfilter - ok
22:37:20.0798 1936  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
22:37:20.0808 1936  Schedule - ok
22:37:20.0853 1936  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:37:20.0854 1936  SCPolicySvc - ok
22:37:20.0892 1936  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:37:20.0896 1936  SDRSVC - ok
22:37:20.0909 1936  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:37:20.0910 1936  secdrv - ok
22:37:20.0948 1936  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
22:37:20.0951 1936  seclogon - ok
22:37:20.0972 1936  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
22:37:20.0974 1936  SENS - ok
22:37:20.0988 1936  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:37:20.0991 1936  SensrSvc - ok
22:37:21.0021 1936  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
22:37:21.0022 1936  Serenum - ok
22:37:21.0059 1936  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
22:37:21.0060 1936  Serial - ok
22:37:21.0094 1936  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
22:37:21.0096 1936  sermouse - ok
22:37:21.0139 1936  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:37:21.0143 1936  SessionEnv - ok
22:37:21.0181 1936  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:37:21.0183 1936  sffdisk - ok
22:37:21.0193 1936  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:37:21.0194 1936  sffp_mmc - ok
22:37:21.0204 1936  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:37:21.0206 1936  sffp_sd - ok
22:37:21.0216 1936  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
22:37:21.0218 1936  sfloppy - ok
22:37:21.0245 1936  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:37:21.0251 1936  SharedAccess - ok
22:37:21.0295 1936  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:37:21.0300 1936  ShellHWDetection - ok
22:37:21.0312 1936  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:37:21.0314 1936  SiSRaid2 - ok
22:37:21.0330 1936  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
22:37:21.0332 1936  SiSRaid4 - ok
22:37:21.0393 1936  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:37:21.0394 1936  SkypeUpdate - ok
22:37:21.0419 1936  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:37:21.0421 1936  Smb - ok
22:37:21.0458 1936  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:37:21.0460 1936  SNMPTRAP - ok
22:37:21.0473 1936  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:37:21.0475 1936  spldr - ok
22:37:21.0517 1936  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
22:37:21.0523 1936  Spooler - ok
22:37:21.0635 1936  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
22:37:21.0662 1936  sppsvc - ok
22:37:21.0679 1936  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:37:21.0683 1936  sppuinotify - ok
22:37:21.0789 1936  [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
22:37:21.0793 1936  SQLBrowser - ok
22:37:21.0877 1936  [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLSERVERAGENT  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
22:37:21.0883 1936  SQLSERVERAGENT - ok
22:37:21.0937 1936  [ 6D65985945B03CA59B67D0B73702FC7B ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
22:37:21.0939 1936  SQLWriter - ok
22:37:21.0989 1936  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:37:21.0992 1936  srv - ok
22:37:22.0009 1936  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:37:22.0013 1936  srv2 - ok
22:37:22.0026 1936  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:37:22.0028 1936  srvnet - ok
22:37:22.0088 1936  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:37:22.0091 1936  SSDPSRV - ok
22:37:22.0111 1936  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:37:22.0113 1936  SstpSvc - ok
22:37:22.0166 1936  Steam Client Service - ok
22:37:22.0230 1936  [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:37:22.0234 1936  Stereo Service - ok
22:37:22.0301 1936  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
22:37:22.0313 1936  stexstor - ok
22:37:22.0409 1936  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
22:37:22.0410 1936  StillCam - ok
22:37:22.0482 1936  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
22:37:22.0489 1936  stisvc - ok
22:37:22.0534 1936  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
22:37:22.0536 1936  storflt - ok
22:37:22.0558 1936  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
22:37:22.0560 1936  storvsc - ok
22:37:22.0575 1936  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
22:37:22.0576 1936  swenum - ok
22:37:22.0616 1936  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:37:22.0633 1936  swprv - ok
22:37:22.0639 1936  Synth3dVsc - ok
22:37:22.0727 1936  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
22:37:22.0743 1936  SysMain - ok
22:37:22.0782 1936  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:37:22.0786 1936  TabletInputService - ok
22:37:22.0826 1936  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:37:22.0842 1936  TapiSrv - ok
22:37:22.0856 1936  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:37:22.0859 1936  TBS - ok
22:37:22.0927 1936  [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:37:22.0963 1936  Tcpip - ok
22:37:23.0017 1936  [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:37:23.0031 1936  TCPIP6 - ok
22:37:23.0078 1936  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:37:23.0079 1936  tcpipreg - ok
22:37:23.0104 1936  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:37:23.0106 1936  TDPIPE - ok
22:37:23.0145 1936  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:37:23.0147 1936  TDTCP - ok
22:37:23.0195 1936  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:37:23.0197 1936  tdx - ok
22:37:23.0238 1936  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
22:37:23.0239 1936  TermDD - ok
22:37:23.0284 1936  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
22:37:23.0301 1936  TermService - ok
22:37:23.0311 1936  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:37:23.0313 1936  Themes - ok
22:37:23.0340 1936  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:37:23.0341 1936  THREADORDER - ok
22:37:23.0353 1936  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:37:23.0356 1936  TrkWks - ok
22:37:23.0416 1936  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:37:23.0419 1936  TrustedInstaller - ok
22:37:23.0454 1936  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:37:23.0456 1936  tssecsrv - ok
22:37:23.0486 1936  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:37:23.0487 1936  TsUsbFlt - ok
22:37:23.0493 1936  tsusbhub - ok
22:37:23.0545 1936  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:37:23.0547 1936  tunnel - ok
22:37:23.0589 1936  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
22:37:23.0625 1936  uagp35 - ok
22:37:23.0700 1936  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:37:23.0703 1936  udfs - ok
22:37:23.0724 1936  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:37:23.0727 1936  UI0Detect - ok
22:37:23.0742 1936  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:37:23.0744 1936  uliagpkx - ok
22:37:23.0792 1936  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:37:23.0793 1936  umbus - ok
22:37:23.0818 1936  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
22:37:23.0819 1936  UmPass - ok
22:37:23.0863 1936  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
22:37:23.0869 1936  UmRdpService - ok
22:37:23.0885 1936  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:37:23.0889 1936  upnphost - ok
22:37:23.0936 1936  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
22:37:23.0972 1936  USBAAPL64 - ok
22:37:24.0025 1936  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:37:24.0048 1936  usbaudio - ok
22:37:24.0080 1936  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:37:24.0081 1936  usbccgp - ok
22:37:24.0128 1936  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:37:24.0130 1936  usbcir - ok
22:37:24.0170 1936  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:37:24.0171 1936  usbehci - ok
22:37:24.0214 1936  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:37:24.0217 1936  usbhub - ok
22:37:24.0251 1936  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
22:37:24.0253 1936  usbohci - ok
22:37:24.0275 1936  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:37:24.0277 1936  usbprint - ok
22:37:24.0319 1936  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:37:24.0321 1936  usbscan - ok
22:37:24.0336 1936  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:37:24.0338 1936  USBSTOR - ok
22:37:24.0348 1936  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:37:24.0352 1936  usbuhci - ok
22:37:24.0364 1936  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:37:24.0366 1936  UxSms - ok
22:37:24.0377 1936  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
22:37:24.0379 1936  VaultSvc - ok
22:37:24.0421 1936  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:37:24.0423 1936  vdrvroot - ok
22:37:24.0479 1936  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
22:37:24.0496 1936  vds - ok
22:37:24.0512 1936  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:37:24.0514 1936  vga - ok
22:37:24.0528 1936  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:37:24.0529 1936  VgaSave - ok
22:37:24.0534 1936  VGPU - ok
22:37:24.0563 1936  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:37:24.0566 1936  vhdmp - ok
22:37:24.0584 1936  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:37:24.0585 1936  viaide - ok
22:37:24.0624 1936  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
22:37:24.0629 1936  vmbus - ok
22:37:24.0639 1936  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
22:37:24.0641 1936  VMBusHID - ok
22:37:24.0694 1936  [ 091E009EF749C9D65CF9ADFAD316D251 ] vmm             C:\Windows\system32\Drivers\vmm.sys
22:37:24.0697 1936  vmm - ok
22:37:24.0740 1936  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:37:24.0742 1936  volmgr - ok
22:37:24.0781 1936  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:37:24.0787 1936  volmgrx - ok
22:37:24.0829 1936  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:37:24.0834 1936  volsnap - ok
22:37:24.0887 1936  [ BC2EA40B98B5E866D9A4F98AFB66B682 ] VPCNetS2        C:\Windows\system32\DRIVERS\VMNetSrv.sys
22:37:24.0888 1936  VPCNetS2 - ok
22:37:24.0955 1936  [ 0E097E4D63E39FD2583DB1CF5CFE3AD5 ] vpnagent        C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
22:37:24.0958 1936  vpnagent - ok
22:37:25.0017 1936  [ E526A69D932538AE8BC96B3F4A5A90B1 ] vpnva           C:\Windows\system32\DRIVERS\vpnva64.sys
22:37:25.0019 1936  vpnva - ok
22:37:25.0036 1936  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
22:37:25.0039 1936  vsmraid - ok
22:37:25.0101 1936  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
22:37:25.0178 1936  VSS - ok
22:37:25.0224 1936  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:37:25.0225 1936  vwifibus - ok
22:37:25.0253 1936  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:37:25.0255 1936  vwififlt - ok
22:37:25.0289 1936  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:37:25.0291 1936  vwifimp - ok
22:37:25.0320 1936  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:37:25.0337 1936  W32Time - ok
22:37:25.0426 1936  [ B32009DB1972E7F2C227499289C4384A ] W3SVC           C:\Windows\system32\inetsrv\iisw3adm.dll
22:37:25.0430 1936  W3SVC - ok
22:37:25.0445 1936  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
22:37:25.0447 1936  WacomPen - ok
22:37:25.0501 1936  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:37:25.0502 1936  WANARP - ok
22:37:25.0519 1936  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:37:25.0521 1936  Wanarpv6 - ok
22:37:25.0551 1936  [ B32009DB1972E7F2C227499289C4384A ] WAS             C:\Windows\system32\inetsrv\iisw3adm.dll
22:37:25.0555 1936  WAS - ok
22:37:25.0636 1936  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:37:25.0663 1936  WatAdminSvc - ok
22:37:25.0721 1936  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
22:37:25.0756 1936  wbengine - ok
22:37:25.0769 1936  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:37:25.0774 1936  WbioSrvc - ok
22:37:25.0818 1936  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:37:25.0835 1936  wcncsvc - ok
22:37:25.0850 1936  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:37:25.0853 1936  WcsPlugInService - ok
22:37:25.0876 1936  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
22:37:25.0878 1936  Wd - ok
22:37:25.0925 1936  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:37:25.0943 1936  Wdf01000 - ok
22:37:25.0959 1936  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:37:25.0962 1936  WdiServiceHost - ok
22:37:25.0967 1936  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:37:25.0970 1936  WdiSystemHost - ok
22:37:26.0011 1936  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
22:37:26.0020 1936  WebClient - ok
22:37:26.0032 1936  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:37:26.0038 1936  Wecsvc - ok
22:37:26.0047 1936  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:37:26.0051 1936  wercplsupport - ok
22:37:26.0077 1936  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:37:26.0080 1936  WerSvc - ok
22:37:26.0127 1936  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:37:26.0128 1936  WfpLwf - ok
22:37:26.0146 1936  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:37:26.0148 1936  WIMMount - ok
22:37:26.0170 1936  WinDefend - ok
22:37:26.0181 1936  WinHttpAutoProxySvc - ok
22:37:26.0220 1936  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:37:26.0222 1936  Winmgmt - ok
22:37:26.0294 1936  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
22:37:26.0338 1936  WinRM - ok
22:37:26.0396 1936  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:37:26.0398 1936  WinUsb - ok
22:37:26.0431 1936  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:37:26.0440 1936  Wlansvc - ok
22:37:26.0595 1936  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:37:26.0613 1936  wlidsvc - ok
22:37:26.0663 1936  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:37:26.0665 1936  WmiAcpi - ok
22:37:26.0717 1936  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:37:26.0721 1936  wmiApSrv - ok
22:37:26.0755 1936  WMPNetworkSvc - ok
22:37:26.0762 1936  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:37:26.0766 1936  WPCSvc - ok
22:37:26.0803 1936  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:37:26.0806 1936  WPDBusEnum - ok
22:37:26.0821 1936  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:37:26.0823 1936  ws2ifsl - ok
22:37:26.0831 1936  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
22:37:26.0834 1936  wscsvc - ok
22:37:26.0839 1936  WSearch - ok
22:37:26.0918 1936  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:37:26.0938 1936  wuauserv - ok
22:37:26.0975 1936  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:37:26.0976 1936  WudfPf - ok
22:37:27.0006 1936  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:37:27.0008 1936  WUDFRd - ok
22:37:27.0041 1936  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:37:27.0045 1936  wudfsvc - ok
22:37:27.0057 1936  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:37:27.0062 1936  WwanSvc - ok
22:37:27.0116 1936  [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
22:37:27.0131 1936  xusb21 - ok
22:37:27.0178 1936  [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
22:37:27.0182 1936  yukonw7 - ok
22:37:27.0216 1936  ================ Scan global ===============================
22:37:27.0238 1936  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:37:27.0276 1936  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
22:37:27.0292 1936  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
22:37:27.0316 1936  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:37:27.0343 1936  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:37:27.0349 1936  [Global] - ok
22:37:27.0350 1936  ================ Scan MBR ==================================
22:37:27.0362 1936  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:37:27.0627 1936  \Device\Harddisk0\DR0 - ok
22:37:27.0628 1936  ================ Scan VBR ==================================
22:37:27.0632 1936  [ 9F78FE8D9273396B19C77BFE1D1CD41C ] \Device\Harddisk0\DR0\Partition1
22:37:27.0633 1936  \Device\Harddisk0\DR0\Partition1 - ok
22:37:27.0635 1936  ================ Scan active images ========================
22:37:27.0638 1936  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
22:37:27.0638 1936  C:\Windows\System32\drivers\crashdmp.sys - ok
22:37:27.0646 1936  [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
22:37:27.0646 1936  C:\Windows\System32\drivers\Dumpata.sys - ok
22:37:27.0655 1936  [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
22:37:27.0655 1936  C:\Windows\System32\drivers\atapi.sys - ok
22:37:27.0662 1936  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
22:37:27.0662 1936  C:\Windows\System32\drivers\dumpfve.sys - ok
22:37:27.0669 1936  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
22:37:27.0669 1936  C:\Windows\System32\drivers\cdrom.sys - ok
22:37:27.0676 1936  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
22:37:27.0676 1936  C:\Windows\System32\drivers\null.sys - ok
22:37:27.0683 1936  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
22:37:27.0683 1936  C:\Windows\System32\drivers\beep.sys - ok
22:37:27.0690 1936  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
22:37:27.0690 1936  C:\Windows\System32\drivers\vga.sys - ok
22:37:27.0696 1936  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
22:37:27.0696 1936  C:\Windows\System32\drivers\videoprt.sys - ok
22:37:27.0705 1936  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
22:37:27.0705 1936  C:\Windows\System32\drivers\watchdog.sys - ok
22:37:27.0710 1936  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
22:37:27.0710 1936  C:\Windows\System32\drivers\RDPCDD.sys - ok
22:37:27.0716 1936  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
22:37:27.0716 1936  C:\Windows\System32\drivers\RDPENCDD.sys - ok
22:37:27.0725 1936  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
22:37:27.0725 1936  C:\Windows\System32\drivers\RDPREFMP.sys - ok
22:37:27.0732 1936  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
22:37:27.0732 1936  C:\Windows\System32\drivers\msfs.sys - ok
22:37:27.0746 1936  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
22:37:27.0746 1936  C:\Windows\System32\drivers\npfs.sys - ok
22:37:27.0750 1936  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
22:37:27.0750 1936  C:\Windows\System32\drivers\tdi.sys - ok
22:37:27.0757 1936  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
22:37:27.0757 1936  C:\Windows\System32\drivers\tdx.sys - ok
22:37:27.0764 1936  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
22:37:27.0764 1936  C:\Windows\System32\drivers\netbt.sys - ok
22:37:27.0770 1936  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
22:37:27.0771 1936  C:\Windows\System32\drivers\afd.sys - ok
22:37:27.0777 1936  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
22:37:27.0777 1936  C:\Windows\System32\drivers\wfplwf.sys - ok
22:37:27.0783 1936  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
22:37:27.0783 1936  C:\Windows\System32\drivers\pacer.sys - ok
22:37:27.0789 1936  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
22:37:27.0789 1936  C:\Windows\System32\drivers\netbios.sys - ok
22:37:27.0796 1936  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
22:37:27.0796 1936  C:\Windows\System32\drivers\vwififlt.sys - ok
22:37:27.0804 1936  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
22:37:27.0804 1936  C:\Windows\System32\drivers\serial.sys - ok
22:37:27.0810 1936  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
22:37:27.0810 1936  C:\Windows\System32\drivers\wanarp.sys - ok
22:37:27.0818 1936  [ 091E009EF749C9D65CF9ADFAD316D251 ] C:\Windows\System32\drivers\VMM.sys
22:37:27.0818 1936  C:\Windows\System32\drivers\VMM.sys - ok
22:37:27.0824 1936  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
22:37:27.0824 1936  C:\Windows\System32\drivers\termdd.sys - ok
22:37:27.0828 1936  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
22:37:27.0828 1936  C:\Windows\System32\drivers\rdbss.sys - ok
22:37:27.0835 1936  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
22:37:27.0835 1936  C:\Windows\System32\drivers\nsiproxy.sys - ok
22:37:27.0841 1936  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
22:37:27.0841 1936  C:\Windows\System32\drivers\mssmbios.sys - ok
22:37:27.0848 1936  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
22:37:27.0848 1936  C:\Windows\System32\drivers\discache.sys - ok
22:37:27.0855 1936  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] C:\Windows\System32\drivers\csc.sys
22:37:27.0855 1936  C:\Windows\System32\drivers\csc.sys - ok
22:37:27.0862 1936  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
22:37:27.0862 1936  C:\Windows\System32\drivers\dfsc.sys - ok
22:37:27.0869 1936  [ 83601BBE5563D92C1FDB4E960D84DC77 ] C:\Windows\System32\drivers\BS_I2c64.sys
22:37:27.0869 1936  C:\Windows\System32\drivers\BS_I2c64.sys - ok
22:37:27.0875 1936  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
22:37:27.0875 1936  C:\Windows\System32\drivers\blbdrive.sys - ok
22:37:27.0881 1936  [ 00CADB1BC2D0030F0B2A1063618B6BD7 ] C:\Windows\System32\drivers\BIOS64.sys
22:37:27.0881 1936  C:\Windows\System32\drivers\BIOS64.sys - ok
22:37:27.0891 1936  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
22:37:27.0891 1936  C:\Windows\System32\drivers\tunnel.sys - ok
22:37:27.0896 1936  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
22:37:27.0896 1936  C:\Windows\System32\smss.exe - ok
22:37:27.0903 1936  [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
22:37:27.0903 1936  C:\Windows\System32\drivers\amdppm.sys - ok
22:37:27.0909 1936  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
22:37:27.0909 1936  C:\Windows\System32\ntdll.dll - ok
22:37:27.0916 1936  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
22:37:27.0916 1936  C:\Windows\System32\autochk.exe - ok
22:37:27.0922 1936  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
22:37:27.0922 1936  C:\Windows\System32\lpk.dll - ok
22:37:27.0928 1936  [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
22:37:27.0928 1936  C:\Windows\System32\wininet.dll - ok
22:37:27.0935 1936  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
22:37:27.0935 1936  C:\Windows\System32\oleaut32.dll - ok
22:37:27.0941 1936  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
22:37:27.0941 1936  C:\Windows\System32\usp10.dll - ok
22:37:27.0947 1936  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
22:37:27.0947 1936  C:\Windows\System32\imm32.dll - ok
22:37:27.0954 1936  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
22:37:27.0954 1936  C:\Windows\System32\sechost.dll - ok
22:37:27.0960 1936  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
22:37:27.0960 1936  C:\Windows\System32\normaliz.dll - ok
22:37:27.0967 1936  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
22:37:27.0967 1936  C:\Windows\System32\shlwapi.dll - ok
22:37:27.0973 1936  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
22:37:27.0973 1936  C:\Windows\System32\clbcatq.dll - ok
22:37:27.0979 1936  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
22:37:27.0979 1936  C:\Windows\System32\msctf.dll - ok
22:37:27.0985 1936  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
22:37:27.0985 1936  C:\Windows\System32\gdi32.dll - ok
22:37:27.0991 1936  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
22:37:27.0991 1936  C:\Windows\System32\setupapi.dll - ok
22:37:28.0000 1936  [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] C:\Windows\System32\drivers\nvlddmkm.sys
22:37:28.0000 1936  C:\Windows\System32\drivers\nvlddmkm.sys - ok
22:37:28.0007 1936  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
22:37:28.0007 1936  C:\Windows\System32\shell32.dll - ok
22:37:28.0014 1936  [ 115BE147638F62321DFE754D3193099C ] C:\Windows\System32\drivers\nvBridge.kmd
22:37:28.0014 1936  C:\Windows\System32\drivers\nvBridge.kmd - ok
22:37:28.0023 1936  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
22:37:28.0023 1936  C:\Windows\System32\drivers\dxgkrnl.sys - ok
22:37:28.0032 1936  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
22:37:28.0032 1936  C:\Windows\System32\drivers\dxgmms1.sys - ok
22:37:28.0039 1936  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
22:37:28.0039 1936  C:\Windows\System32\drivers\hdaudbus.sys - ok
22:37:28.0046 1936  [ 64F88AF327AA74E03658AE32B48CCB8B ] C:\Windows\System32\drivers\yk62x64.sys
22:37:28.0046 1936  C:\Windows\System32\drivers\yk62x64.sys - ok
22:37:28.0054 1936  [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
22:37:28.0054 1936  C:\Windows\System32\drivers\1394ohci.sys - ok
22:37:28.0061 1936  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
22:37:28.0061 1936  C:\Windows\System32\drivers\usbport.sys - ok
22:37:28.0069 1936  [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
22:37:28.0069 1936  C:\Windows\System32\drivers\usbohci.sys - ok
22:37:28.0075 1936  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
22:37:28.0075 1936  C:\Windows\System32\drivers\usbehci.sys - ok
22:37:28.0079 1936  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
22:37:28.0079 1936  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
22:37:28.0086 1936  [ 0086431C29C35BE1DBC43F52CC273887 ] C:\Windows\System32\drivers\parport.sys
22:37:28.0086 1936  C:\Windows\System32\drivers\parport.sys - ok
22:37:28.0093 1936  [ CB624C0035412AF0DEBEC78C41F5CA1B ] C:\Windows\System32\drivers\serenum.sys
22:37:28.0094 1936  C:\Windows\System32\drivers\serenum.sys - ok
22:37:28.0102 1936  [ BC2EA40B98B5E866D9A4F98AFB66B682 ] C:\Windows\System32\drivers\VMNetSrv.sys
22:37:28.0102 1936  C:\Windows\System32\drivers\VMNetSrv.sys - ok
22:37:28.0109 1936  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
22:37:28.0109 1936  C:\Windows\System32\drivers\CompositeBus.sys - ok
22:37:28.0119 1936  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
22:37:28.0119 1936  C:\Windows\System32\drivers\agilevpn.sys - ok
22:37:28.0127 1936  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
22:37:28.0127 1936  C:\Windows\System32\drivers\rasl2tp.sys - ok
22:37:28.0133 1936  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
22:37:28.0133 1936  C:\Windows\System32\drivers\ndistapi.sys - ok
22:37:28.0140 1936  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
22:37:28.0140 1936  C:\Windows\System32\drivers\ndiswan.sys - ok
22:37:28.0146 1936  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
22:37:28.0146 1936  C:\Windows\System32\nsi.dll - ok
22:37:28.0153 1936  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
22:37:28.0153 1936  C:\Windows\System32\drivers\raspppoe.sys - ok
22:37:28.0159 1936  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
22:37:28.0159 1936  C:\Windows\System32\ole32.dll - ok
22:37:28.0166 1936  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
22:37:28.0167 1936  C:\Windows\System32\drivers\raspptp.sys - ok
22:37:28.0173 1936  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
22:37:28.0173 1936  C:\Windows\System32\drivers\rassstp.sys - ok
22:37:28.0180 1936  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys
22:37:28.0180 1936  C:\Windows\System32\drivers\rdpbus.sys - ok
22:37:28.0186 1936  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
22:37:28.0187 1936  C:\Windows\System32\drivers\kbdclass.sys - ok
22:37:28.0193 1936  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
22:37:28.0193 1936  C:\Windows\System32\user32.dll - ok
22:37:28.0200 1936  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
22:37:28.0200 1936  C:\Windows\System32\drivers\mouclass.sys - ok
22:37:28.0206 1936  [ DECACB6921DED1A38642642685D77DAC ] C:\Windows\System32\drivers\serscan.sys
22:37:28.0206 1936  C:\Windows\System32\drivers\serscan.sys - ok
22:37:28.0213 1936  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
22:37:28.0213 1936  C:\Windows\System32\msvcrt.dll - ok
22:37:28.0220 1936  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
22:37:28.0220 1936  C:\Windows\System32\drivers\ks.sys - ok
22:37:28.0226 1936  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
22:37:28.0227 1936  C:\Windows\System32\drivers\ksthunk.sys - ok
22:37:28.0233 1936  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
22:37:28.0233 1936  C:\Windows\System32\drivers\swenum.sys - ok
22:37:28.0240 1936  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
22:37:28.0240 1936  C:\Windows\System32\ws2_32.dll - ok
22:37:28.0247 1936  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
22:37:28.0247 1936  C:\Windows\System32\drivers\umbus.sys - ok
22:37:28.0253 1936  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
22:37:28.0253 1936  C:\Windows\System32\rpcrt4.dll - ok
22:37:28.0260 1936  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
22:37:28.0260 1936  C:\Windows\System32\comdlg32.dll - ok
22:37:28.0266 1936  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
22:37:28.0266 1936  C:\Windows\System32\imagehlp.dll - ok
22:37:28.0273 1936  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
22:37:28.0273 1936  C:\Windows\System32\advapi32.dll - ok
22:37:28.0279 1936  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
22:37:28.0279 1936  C:\Windows\System32\psapi.dll - ok
22:37:28.0286 1936  [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
22:37:28.0286 1936  C:\Windows\System32\urlmon.dll - ok
22:37:28.0292 1936  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
22:37:28.0292 1936  C:\Windows\System32\kernel32.dll - ok
22:37:28.0299 1936  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
22:37:28.0299 1936  C:\Windows\System32\Wldap32.dll - ok
22:37:28.0305 1936  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
22:37:28.0305 1936  C:\Windows\System32\difxapi.dll - ok
22:37:28.0312 1936  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
22:37:28.0312 1936  C:\Windows\System32\drivers\usbhub.sys - ok
22:37:28.0318 1936  [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
22:37:28.0319 1936  C:\Windows\System32\iertutil.dll - ok
22:37:28.0325 1936  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
22:37:28.0325 1936  C:\Windows\System32\devobj.dll - ok
22:37:28.0331 1936  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
22:37:28.0331 1936  C:\Windows\System32\comctl32.dll - ok
22:37:28.0335 1936  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
22:37:28.0335 1936  C:\Windows\System32\wintrust.dll - ok
22:37:28.0341 1936  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
22:37:28.0341 1936  C:\Windows\System32\KernelBase.dll - ok
22:37:28.0348 1936  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
22:37:28.0348 1936  C:\Windows\System32\cfgmgr32.dll - ok
22:37:28.0354 1936  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
22:37:28.0354 1936  C:\Windows\System32\crypt32.dll - ok
22:37:28.0361 1936  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
22:37:28.0361 1936  C:\Windows\System32\msasn1.dll - ok
22:37:28.0364 1936  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
22:37:28.0364 1936  C:\Windows\SysWOW64\normaliz.dll - ok
22:37:28.0371 1936  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
22:37:28.0371 1936  C:\Windows\System32\drivers\ndproxy.sys - ok
22:37:28.0377 1936  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
22:37:28.0377 1936  C:\Windows\System32\drivers\drmk.sys - ok
22:37:28.0383 1936  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
22:37:28.0383 1936  C:\Windows\System32\drivers\portcls.sys - ok
22:37:28.0390 1936  [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] C:\Windows\System32\drivers\nvhda64v.sys
22:37:28.0390 1936  C:\Windows\System32\drivers\nvhda64v.sys - ok
22:37:28.0396 1936  [ C03463214D23B46B991F582821C8DF69 ] C:\Windows\System32\drivers\RTKVHD64.sys
22:37:28.0396 1936  C:\Windows\System32\drivers\RTKVHD64.sys - ok
22:37:28.0403 1936  [ 81DDBF4FE998EF1F4BA230F7E8D8C67E ] C:\Windows\System32\drivers\Razerlow.sys
22:37:28.0403 1936  C:\Windows\System32\drivers\Razerlow.sys - ok
22:37:28.0409 1936  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
22:37:28.0409 1936  C:\Windows\System32\drivers\hidparse.sys - ok
22:37:28.0416 1936  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
22:37:28.0417 1936  C:\Windows\System32\drivers\hidclass.sys - ok
22:37:28.0424 1936  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
22:37:28.0424 1936  C:\Windows\System32\drivers\hidusb.sys - ok
22:37:28.0431 1936  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
22:37:28.0431 1936  C:\Windows\System32\drivers\usbd.sys - ok
22:37:28.0437 1936  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
22:37:28.0437 1936  C:\Windows\System32\drivers\dxapi.sys - ok
22:37:28.0443 1936  [ 523B9B64F2B6C630A2E0A87116C05F12 ] C:\Windows\System32\win32k.sys
22:37:28.0443 1936  C:\Windows\System32\win32k.sys - ok
22:37:28.0449 1936  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
22:37:28.0449 1936  C:\Windows\System32\drivers\mouhid.sys - ok
22:37:28.0455 1936  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
22:37:28.0456 1936  C:\Windows\System32\csrss.exe - ok
22:37:28.0461 1936  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
22:37:28.0461 1936  C:\Windows\System32\csrsrv.dll - ok
22:37:28.0468 1936  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
22:37:28.0468 1936  C:\Windows\System32\drivers\usbccgp.sys - ok
22:37:28.0474 1936  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
22:37:28.0474 1936  C:\Windows\System32\basesrv.dll - ok
22:37:28.0480 1936  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\System32\winsrv.dll
22:37:28.0480 1936  C:\Windows\System32\winsrv.dll - ok
22:37:28.0486 1936  [ 5FEC1FF5BB9A1FA5C9CF4544D19D6D5D ] C:\Windows\System32\drivers\MijXfilt.sys
22:37:28.0487 1936  C:\Windows\System32\drivers\MijXfilt.sys - ok
22:37:28.0493 1936  [ 9176C0822FAA649E45121875BE32F5D2 ] C:\Windows\System32\drivers\xusb21.sys
22:37:28.0493 1936  C:\Windows\System32\drivers\xusb21.sys - ok
22:37:28.0499 1936  [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
22:37:28.0500 1936  C:\Windows\System32\drivers\udfs.sys - ok
22:37:28.0506 1936  [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
22:37:28.0506 1936  C:\Windows\System32\drivers\USBSTOR.SYS - ok
22:37:28.0513 1936  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
22:37:28.0513 1936  C:\Windows\System32\drivers\kbdhid.sys - ok
22:37:28.0519 1936  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
22:37:28.0519 1936  C:\Windows\System32\drivers\monitor.sys - ok
22:37:28.0525 1936  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
22:37:28.0526 1936  C:\Windows\System32\tsddd.dll - ok
22:37:28.0532 1936  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
22:37:28.0532 1936  C:\Windows\System32\sxssrv.dll - ok
22:37:28.0539 1936  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
22:37:28.0539 1936  C:\Windows\System32\wininit.exe - ok
22:37:28.0547 1936  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
22:37:28.0547 1936  C:\Windows\System32\profapi.dll - ok
22:37:28.0553 1936  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
22:37:28.0553 1936  C:\Windows\System32\RpcRtRemote.dll - ok
22:37:28.0559 1936  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
22:37:28.0559 1936  C:\Windows\System32\cdd.dll - ok
22:37:28.0566 1936  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
22:37:28.0566 1936  C:\Windows\System32\KBDUS.DLL - ok
22:37:28.0573 1936  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
22:37:28.0573 1936  C:\Windows\System32\winlogon.exe - ok
22:37:28.0583 1936  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
22:37:28.0583 1936  C:\Windows\System32\winsta.dll - ok
22:37:28.0595 1936  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
22:37:28.0595 1936  C:\Windows\System32\WlS0WndH.dll - ok
22:37:28.0600 1936  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
22:37:28.0600 1936  C:\Windows\System32\sxs.dll - ok
22:37:28.0607 1936  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
22:37:28.0607 1936  C:\Windows\System32\cryptbase.dll - ok
22:37:28.0614 1936  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
22:37:28.0614 1936  C:\Windows\System32\apphelp.dll - ok
22:37:28.0621 1936  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe

 

22:37:28.0621 1936  C:\Windows\System32\services.exe - ok
22:37:28.0628 1936  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
22:37:28.0628 1936  C:\Windows\System32\lsass.exe - ok
22:37:28.0634 1936  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
22:37:28.0634 1936  C:\Windows\System32\lsm.exe - ok
22:37:28.0643 1936  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
22:37:28.0643 1936  C:\Windows\System32\sspisrv.dll - ok
22:37:28.0651 1936  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
22:37:28.0651 1936  C:\Windows\System32\lsasrv.dll - ok
22:37:28.0659 1936  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
22:37:28.0659 1936  C:\Windows\System32\sspicli.dll - ok
22:37:28.0667 1936  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
22:37:28.0668 1936  C:\Windows\System32\scext.dll - ok
22:37:28.0675 1936  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
22:37:28.0675 1936  C:\Windows\System32\secur32.dll - ok
22:37:28.0679 1936  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
22:37:28.0679 1936  C:\Windows\System32\sysntfy.dll - ok
22:37:28.0686 1936  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
22:37:28.0686 1936  C:\Windows\System32\wmsgapi.dll - ok
22:37:28.0692 1936  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
22:37:28.0692 1936  C:\Windows\System32\scesrv.dll - ok
22:37:28.0699 1936  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
22:37:28.0699 1936  C:\Windows\System32\srvcli.dll - ok
22:37:28.0706 1936  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
22:37:28.0706 1936  C:\Windows\System32\samsrv.dll - ok
22:37:28.0714 1936  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
22:37:28.0714 1936  C:\Windows\System32\cryptdll.dll - ok
22:37:28.0720 1936  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
22:37:28.0720 1936  C:\Windows\System32\wevtapi.dll - ok
22:37:28.0728 1936  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
22:37:28.0728 1936  C:\Windows\System32\cngaudit.dll - ok
22:37:28.0735 1936  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
22:37:28.0735 1936  C:\Windows\System32\authz.dll - ok
22:37:28.0741 1936  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
22:37:28.0741 1936  C:\Windows\System32\ncrypt.dll - ok
22:37:28.0747 1936  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
22:37:28.0748 1936  C:\Windows\System32\bcrypt.dll - ok
22:37:28.0754 1936  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
22:37:28.0754 1936  C:\Windows\System32\msprivs.dll - ok
22:37:28.0760 1936  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
22:37:28.0760 1936  C:\Windows\System32\netjoin.dll - ok
22:37:28.0767 1936  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
22:37:28.0767 1936  C:\Windows\System32\negoexts.dll - ok
22:37:28.0773 1936  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
22:37:28.0773 1936  C:\Windows\System32\kerberos.dll - ok
22:37:28.0779 1936  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
22:37:28.0779 1936  C:\Windows\System32\cryptsp.dll - ok
22:37:28.0786 1936  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
22:37:28.0786 1936  C:\Windows\System32\mswsock.dll - ok
22:37:28.0792 1936  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
22:37:28.0793 1936  C:\Windows\System32\wship6.dll - ok
22:37:28.0799 1936  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
22:37:28.0799 1936  C:\Windows\System32\msv1_0.dll - ok
22:37:28.0808 1936  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
22:37:28.0808 1936  C:\Windows\System32\netlogon.dll - ok
22:37:28.0816 1936  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
22:37:28.0816 1936  C:\Windows\System32\dnsapi.dll - ok
22:37:28.0823 1936  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] C:\Windows\System32\drivers\TsUsbFlt.sys
22:37:28.0823 1936  C:\Windows\System32\drivers\TsUsbFlt.sys - ok
22:37:28.0829 1936  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
22:37:28.0829 1936  C:\Windows\System32\logoncli.dll - ok
22:37:28.0833 1936  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
22:37:28.0833 1936  C:\Windows\System32\schannel.dll - ok
22:37:28.0840 1936  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
22:37:28.0841 1936  C:\Windows\System32\wdigest.dll - ok
22:37:28.0847 1936  [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
22:37:28.0847 1936  C:\Windows\System32\atmfd.dll - ok
22:37:28.0854 1936  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
22:37:28.0854 1936  C:\Windows\System32\rsaenh.dll - ok
22:37:28.0860 1936  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
22:37:28.0860 1936  C:\Windows\System32\TSpkg.dll - ok
22:37:28.0867 1936  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
22:37:28.0868 1936  C:\Windows\System32\pku2u.dll - ok
22:37:28.0874 1936  [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
22:37:28.0874 1936  C:\Windows\System32\LIVESSP.DLL - ok
22:37:28.0882 1936  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
22:37:28.0883 1936  C:\Windows\System32\bcryptprimitives.dll - ok
22:37:28.0890 1936  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
22:37:28.0891 1936  C:\Windows\System32\efslsaext.dll - ok
22:37:28.0897 1936  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
22:37:28.0897 1936  C:\Windows\System32\credssp.dll - ok
22:37:28.0906 1936  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
22:37:28.0907 1936  C:\Windows\System32\scecli.dll - ok
22:37:28.0914 1936  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
22:37:28.0914 1936  C:\Windows\System32\ubpm.dll - ok
22:37:28.0920 1936  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
22:37:28.0920 1936  C:\Windows\System32\svchost.exe - ok
22:37:28.0926 1936  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
22:37:28.0926 1936  C:\Windows\System32\umpnpmgr.dll - ok
22:37:28.0932 1936  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
22:37:28.0933 1936  C:\Windows\System32\SPInf.dll - ok
22:37:28.0939 1936  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
22:37:28.0939 1936  C:\Windows\System32\devrtl.dll - ok
22:37:28.0945 1936  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
22:37:28.0945 1936  C:\Windows\System32\userenv.dll - ok
22:37:28.0952 1936  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
22:37:28.0952 1936  C:\Windows\System32\gpapi.dll - ok
22:37:28.0958 1936  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
22:37:28.0958 1936  C:\Windows\System32\pcwum.dll - ok
22:37:28.0966 1936  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
22:37:28.0966 1936  C:\Windows\System32\umpo.dll - ok
22:37:28.0973 1936  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
22:37:28.0973 1936  C:\Windows\System32\powrprof.dll - ok
22:37:28.0980 1936  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
22:37:28.0980 1936  C:\Windows\System32\drivers\luafv.sys - ok
22:37:28.0986 1936  [ DDFAFCE89A5C93D04712B86F94E9FCBA ] C:\Windows\System32\nvvsvc.exe
22:37:28.0986 1936  C:\Windows\System32\nvvsvc.exe - ok
22:37:28.0993 1936  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
22:37:28.0993 1936  C:\Windows\System32\wtsapi32.dll - ok
22:37:29.0000 1936  [ F0359F7CE712D69ACEF0886BDB4792ED ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:37:29.0000 1936  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - ok
22:37:29.0007 1936  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
22:37:29.0007 1936  C:\Windows\SysWOW64\ntdll.dll - ok
22:37:29.0013 1936  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
22:37:29.0013 1936  C:\Windows\System32\wow64.dll - ok
22:37:29.0023 1936  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
22:37:29.0023 1936  C:\Windows\System32\wow64win.dll - ok
22:37:29.0032 1936  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
22:37:29.0032 1936  C:\Windows\System32\wow64cpu.dll - ok
22:37:29.0039 1936  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
22:37:29.0039 1936  C:\Windows\SysWOW64\kernel32.dll - ok
22:37:29.0047 1936  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
22:37:29.0047 1936  C:\Windows\SysWOW64\KernelBase.dll - ok
22:37:29.0053 1936  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
22:37:29.0054 1936  C:\Windows\SysWOW64\msvcrt.dll - ok
22:37:29.0060 1936  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
22:37:29.0060 1936  C:\Windows\SysWOW64\version.dll - ok
22:37:29.0068 1936  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
22:37:29.0068 1936  C:\Windows\SysWOW64\setupapi.dll - ok
22:37:29.0074 1936  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
22:37:29.0074 1936  C:\Windows\SysWOW64\cfgmgr32.dll - ok
22:37:29.0082 1936  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
22:37:29.0083 1936  C:\Windows\SysWOW64\rpcrt4.dll - ok
22:37:29.0091 1936  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
22:37:29.0092 1936  C:\Windows\SysWOW64\sspicli.dll - ok
22:37:29.0100 1936  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
22:37:29.0100 1936  C:\Windows\SysWOW64\advapi32.dll - ok
22:37:29.0108 1936  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
22:37:29.0108 1936  C:\Windows\SysWOW64\cryptbase.dll - ok
22:37:29.0115 1936  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
22:37:29.0116 1936  C:\Windows\SysWOW64\sechost.dll - ok
22:37:29.0125 1936  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
22:37:29.0125 1936  C:\Windows\SysWOW64\gdi32.dll - ok
22:37:29.0132 1936  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
22:37:29.0132 1936  C:\Windows\SysWOW64\user32.dll - ok
22:37:29.0138 1936  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
22:37:29.0139 1936  C:\Windows\SysWOW64\lpk.dll - ok
22:37:29.0145 1936  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
22:37:29.0145 1936  C:\Windows\SysWOW64\usp10.dll - ok
22:37:29.0152 1936  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
22:37:29.0152 1936  C:\Windows\SysWOW64\oleaut32.dll - ok
22:37:29.0158 1936  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
22:37:29.0158 1936  C:\Windows\SysWOW64\ole32.dll - ok
22:37:29.0165 1936  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
22:37:29.0165 1936  C:\Windows\SysWOW64\devobj.dll - ok
22:37:29.0172 1936  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
22:37:29.0172 1936  C:\Windows\SysWOW64\winspool.drv - ok
22:37:29.0179 1936  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
22:37:29.0179 1936  C:\Windows\SysWOW64\imm32.dll - ok
22:37:29.0185 1936  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
22:37:29.0185 1936  C:\Windows\SysWOW64\msctf.dll - ok
22:37:29.0192 1936  [ DECAC42EC861E07D2B0D19ADE95339EE ] C:\PROGRA~2\MagniPic\SPROTE~1.DLL
22:37:29.0192 1936  C:\PROGRA~2\MagniPic\SPROTE~1.DLL - ok
22:37:29.0199 1936  [ 145E7826A07D98628924A9B06F6273AB ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll
22:37:29.0199 1936  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll - ok
22:37:29.0207 1936  [ 7AD857422AFA068A39A4B4BBF7FCC49C ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll
22:37:29.0207 1936  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll - ok
22:37:29.0214 1936  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
22:37:29.0214 1936  C:\Windows\System32\rpcss.dll - ok
22:37:29.0222 1936  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
22:37:29.0222 1936  C:\Windows\SysWOW64\wintrust.dll - ok
22:37:29.0229 1936  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
22:37:29.0229 1936  C:\Windows\SysWOW64\crypt32.dll - ok
22:37:29.0236 1936  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
22:37:29.0237 1936  C:\Windows\System32\RpcEpMap.dll - ok
22:37:29.0243 1936  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
22:37:29.0243 1936  C:\Windows\SysWOW64\msasn1.dll - ok
22:37:29.0249 1936  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
22:37:29.0249 1936  C:\Windows\System32\WSHTCPIP.DLL - ok
22:37:29.0256 1936  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
22:37:29.0256 1936  C:\Windows\SysWOW64\ntmarta.dll - ok
22:37:29.0262 1936  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
22:37:29.0262 1936  C:\Windows\SysWOW64\Wldap32.dll - ok
22:37:29.0269 1936  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
22:37:29.0270 1936  C:\Windows\System32\wshqos.dll - ok
22:37:29.0276 1936  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
22:37:29.0276 1936  C:\Windows\System32\FirewallAPI.dll - ok
22:37:29.0283 1936  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
22:37:29.0283 1936  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
22:37:29.0290 1936  [ BCF8F2758AA5C451F8E366C66A98BBFE ] C:\Program Files\Microsoft Security Client\MpSvc.dll
22:37:29.0290 1936  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
22:37:29.0296 1936  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
22:37:29.0296 1936  C:\Windows\SysWOW64\devrtl.dll - ok
22:37:29.0303 1936  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
22:37:29.0303 1936  C:\Windows\System32\LogonUI.exe - ok
22:37:29.0309 1936  [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
22:37:29.0309 1936  C:\Windows\SysWOW64\SPInf.dll - ok
22:37:29.0318 1936  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
22:37:29.0318 1936  C:\Windows\System32\version.dll - ok
22:37:29.0324 1936  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
22:37:29.0324 1936  C:\Windows\System32\authui.dll - ok
22:37:29.0331 1936  [ 2F67DEE6452EBC9F4A6C97A1CCC232FE ] C:\Program Files\Microsoft Security Client\MpClient.dll
22:37:29.0331 1936  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
22:37:29.0335 1936  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
22:37:29.0335 1936  C:\Windows\System32\cryptui.dll - ok
22:37:29.0342 1936  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
22:37:29.0342 1936  C:\Windows\System32\ntmarta.dll - ok
22:37:29.0349 1936  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
22:37:29.0349 1936  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
22:37:29.0355 1936  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
22:37:29.0356 1936  C:\Windows\System32\shacct.dll - ok
22:37:29.0362 1936  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
22:37:29.0362 1936  C:\Windows\System32\samlib.dll - ok
22:37:29.0369 1936  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
22:37:29.0369 1936  C:\Windows\System32\propsys.dll - ok
22:37:29.0377 1936  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
22:37:29.0377 1936  C:\Windows\System32\uxtheme.dll - ok
22:37:29.0383 1936  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
22:37:29.0384 1936  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
22:37:29.0391 1936  [ 5F10310A5A9273475AA04930DFE16742 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
22:37:29.0391 1936  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
22:37:29.0398 1936  [ DCEEE24E57E8176115207312F827C130 ] C:\Windows\System32\atiesrxx.exe
22:37:29.0399 1936  C:\Windows\System32\atiesrxx.exe - ok
22:37:29.0405 1936  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
22:37:29.0405 1936  C:\Windows\System32\dui70.dll - ok
22:37:29.0412 1936  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
22:37:29.0412 1936  C:\Windows\System32\wevtsvc.dll - ok
22:37:29.0420 1936  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
22:37:29.0420 1936  C:\Windows\System32\duser.dll - ok
22:37:29.0427 1936  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
22:37:29.0427 1936  C:\Windows\System32\SndVolSSO.dll - ok
22:37:29.0436 1936  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
22:37:29.0436 1936  C:\Windows\System32\hid.dll - ok
22:37:29.0442 1936  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
22:37:29.0442 1936  C:\Windows\System32\audiosrv.dll - ok
22:37:29.0449 1936  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
22:37:29.0449 1936  C:\Windows\System32\mmcss.dll - ok
22:37:29.0456 1936  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
22:37:29.0456 1936  C:\Windows\System32\MMDevAPI.dll - ok
22:37:29.0463 1936  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
22:37:29.0463 1936  C:\Windows\System32\netprofm.dll - ok
22:37:29.0469 1936  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
22:37:29.0470 1936  C:\Windows\System32\avrt.dll - ok
22:37:29.0476 1936  [ BF62F3BC1BE0700804EC394BB77F02C4 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
22:37:29.0476 1936  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
22:37:29.0485 1936  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
22:37:29.0485 1936  C:\Windows\System32\dwmapi.dll - ok
22:37:29.0492 1936  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
22:37:29.0492 1936  C:\Windows\System32\xmllite.dll - ok
22:37:29.0501 1936  [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
22:37:29.0502 1936  C:\Windows\System32\fltLib.dll - ok
22:37:29.0510 1936  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
22:37:29.0510 1936  C:\Windows\System32\adtschema.dll - ok
22:37:29.0516 1936  [ FF7E814CBFEC3C27922C13BB94667416 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
22:37:29.0516 1936  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
22:37:29.0523 1936  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] C:\Windows\System32\drivers\MpFilter.sys
22:37:29.0523 1936  C:\Windows\System32\drivers\MpFilter.sys - ok
22:37:29.0529 1936  [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
22:37:29.0529 1936  C:\Windows\System32\WindowsCodecs.dll - ok
22:37:29.0536 1936  [ 12FD09889C8A6141C8D10F7AE48BBAC8 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
22:37:29.0536 1936  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
22:37:29.0542 1936  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
22:37:29.0542 1936  C:\Windows\System32\radardt.dll - ok
22:37:29.0550 1936  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
22:37:29.0550 1936  C:\Windows\System32\audiodg.exe - ok
22:37:29.0556 1936  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
22:37:29.0556 1936  C:\Windows\System32\MPSSVC.dll - ok
22:37:29.0563 1936  [ 30042487E83BF3B518DD9B92A2F52F42 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{02D127D9-E544-403C-B31E-B63B4DBFD621}\mpengine.dll
22:37:29.0563 1936  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{02D127D9-E544-403C-B31E-B63B4DBFD621}\mpengine.dll - ok
22:37:29.0570 1936  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
22:37:29.0570 1936  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
22:37:29.0576 1936  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
22:37:29.0576 1936  C:\Windows\System32\profsvc.dll - ok
22:37:29.0582 1936  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] C:\Windows\System32\cscsvc.dll
22:37:29.0582 1936  C:\Windows\System32\cscsvc.dll - ok
22:37:29.0586 1936  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
22:37:29.0586 1936  C:\Windows\System32\gpsvc.dll - ok
22:37:29.0593 1936  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
22:37:29.0593 1936  C:\Windows\System32\WUDFPlatform.dll - ok
22:37:29.0600 1936  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
22:37:29.0600 1936  C:\Windows\System32\winbrand.dll - ok
22:37:29.0607 1936  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
22:37:29.0607 1936  C:\Windows\System32\VaultCredProvider.dll - ok
22:37:29.0613 1936  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
22:37:29.0613 1936  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
22:37:29.0620 1936  [ 29910D50542B1AA0F162EF3339C61B6D ] C:\Windows\System32\PeerDist.dll
22:37:29.0620 1936  C:\Windows\System32\PeerDist.dll - ok
22:37:29.0626 1936  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
22:37:29.0626 1936  C:\Windows\System32\wlansvc.dll - ok
22:37:29.0632 1936  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
22:37:29.0632 1936  C:\Windows\System32\nlaapi.dll - ok
22:37:29.0639 1936  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
22:37:29.0639 1936  C:\Windows\System32\BioCredProv.dll - ok
22:37:29.0646 1936  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
22:37:29.0646 1936  C:\Windows\System32\taskschd.dll - ok
22:37:29.0652 1936  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
22:37:29.0652 1936  C:\Windows\System32\atl.dll - ok
22:37:29.0658 1936  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
22:37:29.0658 1936  C:\Windows\System32\themeservice.dll - ok
22:37:29.0665 1936  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
22:37:29.0665 1936  C:\Windows\System32\winbio.dll - ok
22:37:29.0671 1936  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
22:37:29.0671 1936  C:\Windows\System32\credui.dll - ok
22:37:29.0677 1936  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
22:37:29.0677 1936  C:\Windows\System32\drivers\fltMgr.sys - ok
22:37:29.0684 1936  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
22:37:29.0684 1936  C:\Windows\System32\dsrole.dll - ok
22:37:29.0690 1936  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
22:37:29.0690 1936  C:\Windows\System32\es.dll - ok
22:37:29.0696 1936  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
22:37:29.0696 1936  C:\Windows\System32\slc.dll - ok
22:37:29.0702 1936  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
22:37:29.0702 1936  C:\Windows\System32\vaultcli.dll - ok
22:37:29.0708 1936  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
22:37:29.0708 1936  C:\Windows\System32\PSHED.DLL - ok
22:37:29.0714 1936  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
22:37:29.0714 1936  C:\Windows\System32\netapi32.dll - ok
22:37:29.0720 1936  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
22:37:29.0720 1936  C:\Windows\System32\comres.dll - ok
22:37:29.0726 1936  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
22:37:29.0726 1936  C:\Windows\System32\Sens.dll - ok
22:37:29.0732 1936  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
22:37:29.0733 1936  C:\Windows\System32\netutils.dll - ok
22:37:29.0739 1936  [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
22:37:29.0739 1936  C:\Windows\System32\mstask.dll - ok
22:37:29.0746 1936  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
22:37:29.0746 1936  C:\Windows\System32\wkscli.dll - ok
22:37:29.0752 1936  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
22:37:29.0752 1936  C:\Windows\System32\samcli.dll - ok
22:37:29.0759 1936  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
22:37:29.0759 1936  C:\Windows\System32\certCredProvider.dll - ok
22:37:29.0766 1936  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
22:37:29.0766 1936  C:\Windows\System32\uxsms.dll - ok
22:37:29.0773 1936  [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
22:37:29.0773 1936  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
22:37:29.0780 1936  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
22:37:29.0780 1936  C:\Windows\System32\drivers\lltdio.sys - ok
22:37:29.0787 1936  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
22:37:29.0787 1936  C:\Windows\System32\rasplap.dll - ok
22:37:29.0794 1936  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
22:37:29.0794 1936  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
22:37:29.0800 1936  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
22:37:29.0801 1936  C:\Windows\System32\drivers\nwifi.sys - ok
22:37:29.0807 1936  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
22:37:29.0807 1936  C:\Windows\System32\rasapi32.dll - ok
22:37:29.0813 1936  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
22:37:29.0813 1936  C:\Windows\System32\drivers\ndisuio.sys - ok
22:37:29.0819 1936  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
22:37:29.0819 1936  C:\Windows\System32\rasman.dll - ok
22:37:29.0826 1936  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
22:37:29.0826 1936  C:\Windows\System32\rtutils.dll - ok
22:37:29.0832 1936  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
22:37:29.0832 1936  C:\Windows\System32\drivers\rspndr.sys - ok
22:37:29.0839 1936  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
22:37:29.0839 1936  C:\Windows\System32\lmhsvc.dll - ok
22:37:29.0843 1936  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
22:37:29.0843 1936  C:\Windows\System32\nsisvc.dll - ok
22:37:29.0849 1936  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
22:37:29.0849 1936  C:\Windows\System32\UXInit.dll - ok
22:37:29.0855 1936  [ 3080E59431AE0F5F386F05A421CE7559 ] C:\Windows\System32\atieclxx.exe
22:37:29.0855 1936  C:\Windows\System32\atieclxx.exe - ok
22:37:29.0862 1936  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
22:37:29.0862 1936  C:\Windows\System32\IPHLPAPI.DLL - ok
22:37:29.0869 1936  [ 0E097E4D63E39FD2583DB1CF5CFE3AD5 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
22:37:29.0869 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe - ok
22:37:29.0876 1936  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
22:37:29.0876 1936  C:\Windows\System32\winnsi.dll - ok
22:37:29.0884 1936  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
22:37:29.0884 1936  C:\Windows\System32\nrpsrv.dll - ok
22:37:29.0891 1936  [ 15B8C80B021BB978253996640EA5D5B7 ] C:\Windows\System32\atiadlxx.dll
22:37:29.0891 1936  C:\Windows\System32\atiadlxx.dll - ok
22:37:29.0898 1936  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
22:37:29.0898 1936  C:\Windows\SysWOW64\ws2_32.dll - ok
22:37:29.0904 1936  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
22:37:29.0904 1936  C:\Windows\SysWOW64\nsi.dll - ok
22:37:29.0911 1936  [ CD9184EBED9347E4123B2E896A8710E0 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\ssleay32.dll
22:37:29.0911 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\ssleay32.dll - ok
22:37:29.0919 1936  [ F272059EBF9036DC707EBC7ED553AEB5 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\libeay32.dll
22:37:29.0919 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\libeay32.dll - ok
22:37:29.0926 1936  [ DF3E3167B03804F32AD274C33F77B308 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
22:37:29.0926 1936  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
22:37:29.0933 1936  [ 4CE5C4F80620D6DBBB054003EAD71F95 ] C:\Windows\System32\nvsvc64.dll
22:37:29.0933 1936  C:\Windows\System32\nvsvc64.dll - ok
22:37:29.0940 1936  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
22:37:29.0940 1936  C:\Windows\System32\imageres.dll - ok
22:37:29.0947 1936  [ 9C8C59A8FB8894858ECDE9461EE31496 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommoncrypt.dll
22:37:29.0947 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommoncrypt.dll - ok
22:37:29.0955 1936  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
22:37:29.0955 1936  C:\Windows\SysWOW64\shell32.dll - ok
22:37:29.0962 1936  [ 11205381BBBF98F0CA1C672056808B8F ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
22:37:29.0962 1936  C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
22:37:29.0969 1936  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
22:37:29.0969 1936  C:\Windows\System32\mscms.dll - ok
22:37:29.0978 1936  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
22:37:29.0978 1936  C:\Windows\System32\winmm.dll - ok
22:37:29.0985 1936  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
22:37:29.0985 1936  C:\Windows\System32\msimg32.dll - ok
22:37:29.0992 1936  [ E6E9DC01812ABA16DBAE5EFA4EF63E57 ] C:\Windows\System32\nvapi64.dll
22:37:29.0992 1936  C:\Windows\System32\nvapi64.dll - ok
22:37:30.0000 1936  [ 40965B72A0A33DDB8423B85F93E4C136 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
22:37:30.0000 1936  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
22:37:30.0007 1936  [ BC2A18841494B3756894627FF279C65E ] C:\Windows\System32\nvcpl.dll
22:37:30.0007 1936  C:\Windows\System32\nvcpl.dll - ok
22:37:30.0013 1936  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
22:37:30.0014 1936  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
22:37:30.0021 1936  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
22:37:30.0021 1936  C:\Windows\System32\winspool.drv - ok
22:37:30.0027 1936  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
22:37:30.0028 1936  C:\Windows\System32\oleacc.dll - ok
22:37:30.0035 1936  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
22:37:30.0035 1936  C:\Windows\SysWOW64\shlwapi.dll - ok
22:37:30.0042 1936  [ 47B8B745BFE0A0CB70120C8D08E2492F ] C:\Windows\System32\nvumdshimx.dll
22:37:30.0042 1936  C:\Windows\System32\nvumdshimx.dll - ok
22:37:30.0049 1936  [ FBF96DB3506C30C8FF7F775E91CB3E50 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommon.dll
22:37:30.0050 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpncommon.dll - ok
22:37:30.0057 1936  [ C765A8406048E3094501ED8F17BFA4D6 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
22:37:30.0057 1936  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
22:37:30.0063 1936  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
22:37:30.0063 1936  C:\Windows\SysWOW64\rasapi32.dll - ok
22:37:30.0070 1936  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
22:37:30.0070 1936  C:\Windows\SysWOW64\rasman.dll - ok
22:37:30.0076 1936  [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
22:37:30.0076 1936  C:\Windows\SysWOW64\wininet.dll - ok
22:37:30.0083 1936  [ 3B3DE5C189F896A7961A12BA74851BCB ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
22:37:30.0083 1936  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
22:37:30.0090 1936  [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
22:37:30.0090 1936  C:\Windows\SysWOW64\iertutil.dll - ok
22:37:30.0094 1936  [ 5B8580B819BE32EEC18CE1FEC52A4BCE ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
22:37:30.0094 1936  C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
22:37:30.0101 1936  [ 0E7045E24F78351E021D3C01566DBBA3 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
22:37:30.0101 1936  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
22:37:30.0108 1936  [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
22:37:30.0108 1936  C:\Windows\SysWOW64\urlmon.dll - ok
22:37:30.0114 1936  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
22:37:30.0114 1936  C:\Windows\System32\conhost.exe - ok
22:37:30.0121 1936  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
22:37:30.0121 1936  C:\Windows\System32\wscapi.dll - ok
22:37:30.0127 1936  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
22:37:30.0127 1936  C:\Windows\System32\cabinet.dll - ok
22:37:30.0133 1936  [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
22:37:30.0133 1936  C:\Windows\SysWOW64\msvcp60.dll - ok
22:37:30.0140 1936  [ DA7009BBECF2BE078EE5B6B1D2E2430A ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagentutilities.dll
22:37:30.0140 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagentutilities.dll - ok
22:37:30.0147 1936  [ 1FB3291E4A7D436E9551DE2D626C2DE2 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnapi.dll
22:37:30.0147 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnapi.dll - ok
22:37:30.0153 1936  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
22:37:30.0153 1936  C:\Windows\System32\p2pcollab.dll - ok
22:37:30.0159 1936  [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
22:37:30.0159 1936  C:\Windows\System32\QAGENTRT.DLL - ok
22:37:30.0165 1936  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
22:37:30.0165 1936  C:\Windows\System32\fveui.dll - ok
22:37:30.0172 1936  [ CA9E3BD4752FA2C084F5CD35FD8D0025 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
22:37:30.0172 1936  C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
22:37:30.0178 1936  [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
22:37:30.0178 1936  C:\Windows\System32\slwga.dll - ok
22:37:30.0185 1936  [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
22:37:30.0185 1936  C:\Windows\System32\sppc.dll - ok
22:37:30.0192 1936  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
22:37:30.0192 1936  C:\Windows\SysWOW64\dbghelp.dll - ok
22:37:30.0198 1936  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
22:37:30.0198 1936  C:\Windows\System32\dhcpcore.dll - ok
22:37:30.0205 1936  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
22:37:30.0205 1936  C:\Windows\System32\dnsrslvr.dll - ok
22:37:30.0212 1936  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
22:37:30.0212 1936  C:\Windows\System32\keyiso.dll - ok
22:37:30.0218 1936  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
22:37:30.0218 1936  C:\Windows\System32\eapsvc.dll - ok
22:37:30.0224 1936  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
22:37:30.0224 1936  C:\Windows\System32\FWPUCLNT.DLL - ok
22:37:30.0230 1936  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
22:37:30.0230 1936  C:\Windows\System32\dhcpcore6.dll - ok
22:37:30.0237 1936  [ 32154E20B3404C365F82C7E514ED8D54 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\Plugins\vpnipsec.dll
22:37:30.0237 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\Plugins\vpnipsec.dll - ok
22:37:30.0244 1936  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
22:37:30.0244 1936  C:\Windows\System32\eapphost.dll - ok
22:37:30.0250 1936  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
22:37:30.0250 1936  C:\Windows\System32\dhcpcsvc6.dll - ok
22:37:30.0256 1936  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
22:37:30.0256 1936  C:\Windows\System32\dnsext.dll - ok
22:37:30.0262 1936  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
22:37:30.0262 1936  C:\Windows\System32\dhcpcsvc.dll - ok
22:37:30.0269 1936  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
22:37:30.0269 1936  C:\Windows\System32\umb.dll - ok
22:37:30.0275 1936  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
22:37:30.0275 1936  C:\Windows\System32\wlanmsm.dll - ok
22:37:30.0281 1936  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
22:37:30.0281 1936  C:\Windows\SysWOW64\netapi32.dll - ok
22:37:30.0288 1936  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
22:37:30.0288 1936  C:\Windows\SysWOW64\netutils.dll - ok
22:37:30.0294 1936  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
22:37:30.0294 1936  C:\Windows\SysWOW64\srvcli.dll - ok
22:37:30.0301 1936  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
22:37:30.0301 1936  C:\Windows\System32\wlansec.dll - ok
22:37:30.0307 1936  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
22:37:30.0307 1936  C:\Windows\SysWOW64\wkscli.dll - ok
22:37:30.0313 1936  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
22:37:30.0313 1936  C:\Windows\SysWOW64\cryptsp.dll - ok
22:37:30.0319 1936  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
22:37:30.0319 1936  C:\Windows\System32\onex.dll - ok
22:37:30.0325 1936  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
22:37:30.0325 1936  C:\Windows\System32\eappcfg.dll - ok
22:37:30.0331 1936  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
22:37:30.0331 1936  C:\Windows\System32\eappprxy.dll - ok
22:37:30.0338 1936  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
22:37:30.0338 1936  C:\Windows\SysWOW64\rsaenh.dll - ok
22:37:30.0342 1936  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
22:37:30.0342 1936  C:\Windows\System32\wlgpclnt.dll - ok
22:37:30.0349 1936  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
22:37:30.0349 1936  C:\Windows\System32\l2gpstore.dll - ok
22:37:30.0355 1936  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
22:37:30.0355 1936  C:\Windows\System32\WinSCard.dll - ok
22:37:30.0361 1936  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
22:37:30.0361 1936  C:\Windows\System32\wlanutil.dll - ok
22:37:30.0367 1936  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
22:37:30.0367 1936  C:\Windows\System32\msxml6.dll - ok
22:37:30.0373 1936  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
22:37:30.0373 1936  C:\Windows\System32\shsvcs.dll - ok
22:37:30.0379 1936  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
22:37:30.0379 1936  C:\Windows\System32\schedsvc.dll - ok
22:37:30.0385 1936  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
22:37:30.0385 1936  C:\Windows\System32\ktmw32.dll - ok
22:37:30.0391 1936  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
22:37:30.0391 1936  C:\Windows\System32\fveapi.dll - ok
22:37:30.0397 1936  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
22:37:30.0397 1936  C:\Windows\System32\tbs.dll - ok
22:37:30.0404 1936  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
22:37:30.0404 1936  C:\Windows\System32\fvecerts.dll - ok
22:37:30.0410 1936  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
22:37:30.0410 1936  C:\Windows\System32\wiarpc.dll - ok
22:37:30.0416 1936  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
22:37:30.0416 1936  C:\Windows\SysWOW64\mswsock.dll - ok
22:37:30.0423 1936  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
22:37:30.0423 1936  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
22:37:30.0429 1936  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
22:37:30.0429 1936  C:\Windows\SysWOW64\profapi.dll - ok
22:37:30.0436 1936  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
22:37:30.0436 1936  C:\Windows\SysWOW64\clbcatq.dll - ok
22:37:30.0442 1936  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
22:37:30.0442 1936  C:\Windows\System32\taskcomp.dll - ok
22:37:30.0448 1936  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
22:37:30.0448 1936  C:\Windows\SysWOW64\mlang.dll - ok
22:37:30.0455 1936  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
22:37:30.0455 1936  C:\Windows\SysWOW64\msxml6.dll - ok
22:37:30.0461 1936  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
22:37:30.0461 1936  C:\Windows\System32\drivers\http.sys - ok
22:37:30.0467 1936  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
22:37:30.0467 1936  C:\Windows\System32\spoolsv.exe - ok
22:37:30.0473 1936  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
22:37:30.0473 1936  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
22:37:30.0479 1936  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
22:37:30.0479 1936  C:\Windows\SysWOW64\winnsi.dll - ok
22:37:30.0486 1936  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
22:37:30.0486 1936  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
22:37:30.0492 1936  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
22:37:30.0492 1936  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
22:37:30.0499 1936  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
22:37:30.0499 1936  C:\Windows\SysWOW64\wship6.dll - ok
22:37:30.0505 1936  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
22:37:30.0505 1936  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
22:37:30.0511 1936  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
22:37:30.0511 1936  C:\Windows\System32\BFE.DLL - ok
22:37:30.0518 1936  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
22:37:30.0518 1936  C:\Windows\System32\drivers\bowser.sys - ok
22:37:30.0525 1936  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
22:37:30.0525 1936  C:\Windows\System32\drivers\mpsdrv.sys - ok
22:37:30.0532 1936  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
22:37:30.0532 1936  C:\Windows\System32\wfapigp.dll - ok
22:37:30.0539 1936  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
22:37:30.0539 1936  C:\Windows\System32\drivers\mrxsmb.sys - ok
22:37:30.0545 1936  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
22:37:30.0545 1936  C:\Windows\System32\pcasvc.dll - ok
22:37:30.0552 1936  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
22:37:30.0552 1936  C:\Windows\System32\snmptrap.exe - ok
22:37:30.0558 1936  [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
22:37:30.0558 1936  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
22:37:30.0566 1936  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
22:37:30.0566 1936  C:\Windows\System32\drivers\mrxsmb10.sys - ok
22:37:30.0574 1936  [ B1A8D4A2974CA902148F0B0FC00D877E ] C:\Windows\System32\inetsrv\iisres.dll
22:37:30.0574 1936  C:\Windows\System32\inetsrv\iisres.dll - ok
22:37:30.0581 1936  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
22:37:30.0581 1936  C:\Windows\System32\dllhost.exe - ok
22:37:30.0588 1936  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
22:37:30.0588 1936  C:\Windows\System32\drivers\mrxsmb20.sys - ok
22:37:30.0592 1936  [ 91A8E32B00BF7899EDAB6783287DDDA6 ] C:\Windows\System32\PeerDistSh.dll
22:37:30.0592 1936  C:\Windows\System32\PeerDistSh.dll - ok
22:37:30.0598 1936  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
22:37:30.0598 1936  C:\Windows\System32\wkssvc.dll - ok
22:37:30.0605 1936  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
22:37:30.0605 1936  C:\Windows\System32\IDStore.dll - ok
22:37:30.0612 1936  [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
22:37:30.0612 1936  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
22:37:30.0619 1936  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
22:37:30.0619 1936  C:\Windows\System32\taskhost.exe - ok
22:37:30.0626 1936  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
22:37:30.0626 1936  C:\Program Files\Bonjour\mdnsNSP.dll - ok
22:37:30.0633 1936  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
22:37:30.0633 1936  C:\Windows\System32\provsvc.dll - ok
22:37:30.0640 1936  [ C004F38974F4D321B4C20A240E1175C0 ] C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
22:37:30.0640 1936  C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe - ok
22:37:30.0646 1936  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
22:37:30.0646 1936  C:\Windows\System32\rasadhlp.dll - ok
22:37:30.0653 1936  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
22:37:30.0653 1936  C:\Windows\System32\sstpsvc.dll - ok
22:37:30.0659 1936  [ B4C6840939D5030B63A7D64645F4D983 ] C:\Program Files (x86)\Adobe\Elements 9 Organizer\platform.DLL
22:37:30.0659 1936  C:\Program Files (x86)\Adobe\Elements 9 Organizer\platform.DLL - ok
22:37:30.0668 1936  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
22:37:30.0668 1936  C:\Windows\System32\localspl.dll - ok
22:37:30.0674 1936  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
22:37:30.0674 1936  C:\Windows\System32\MsCtfMonitor.dll - ok
22:37:30.0681 1936  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
22:37:30.0682 1936  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
22:37:30.0689 1936  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
22:37:30.0689 1936  C:\Windows\System32\AtBroker.exe - ok
22:37:30.0695 1936  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
22:37:30.0695 1936  C:\Windows\System32\msutb.dll - ok
22:37:30.0701 1936  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
22:37:30.0701 1936  C:\Windows\System32\mpr.dll - ok
22:37:30.0708 1936  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
22:37:30.0708 1936  C:\Windows\System32\PlaySndSrv.dll - ok
22:37:30.0715 1936  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
22:37:30.0715 1936  C:\Windows\System32\userinit.exe - ok
22:37:30.0722 1936  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
22:37:30.0722 1936  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
22:37:30.0728 1936  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
22:37:30.0728 1936  C:\Windows\System32\spoolss.dll - ok
22:37:30.0734 1936  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
22:37:30.0734 1936  C:\Windows\System32\HotStartUserAgent.dll - ok
22:37:30.0741 1936  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
22:37:30.0741 1936  C:\Windows\System32\PrintIsolationProxy.dll - ok
22:37:30.0747 1936  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
22:37:30.0747 1936  C:\Windows\System32\dwm.exe - ok
22:37:30.0753 1936  [ 50074722936A769B0A54BF7CD71B6500 ] C:\Windows\System32\CNHF1LM.DLL
22:37:30.0753 1936  C:\Windows\System32\CNHF1LM.DLL - ok
22:37:30.0759 1936  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
22:37:30.0759 1936  C:\Windows\System32\dwmredir.dll - ok
22:37:30.0765 1936  [ 540F5216118AB5AA221DC37242A36CEF ] C:\Windows\System32\CNMLM7R.DLL
22:37:30.0765 1936  C:\Windows\System32\CNMLM7R.DLL - ok
22:37:30.0771 1936  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
22:37:30.0771 1936  C:\Windows\explorer.exe - ok
22:37:30.0777 1936  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
22:37:30.0777 1936  C:\Windows\System32\dwmcore.dll - ok
22:37:30.0784 1936  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
22:37:30.0784 1936  C:\Windows\System32\taskeng.exe - ok
22:37:30.0791 1936  [ CD30833D3C7AC7E96FE63B1708E880E1 ] C:\Windows\System32\CNCF2La.DLL
22:37:30.0791 1936  C:\Windows\System32\CNCF2La.DLL - ok
22:37:30.0797 1936  [ B1EA9681502EE57F87DB71D726288A5B ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:37:30.0797 1936  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
22:37:30.0804 1936  [ 9BD23F7649260E5454E22F43D2B84BF5 ] C:\Windows\System32\hpinksts8e11LM.dll
22:37:30.0804 1936  C:\Windows\System32\hpinksts8e11LM.dll - ok
22:37:30.0810 1936  [ 59D01FA91962C9C1E9B4022B2D3B46DB ] C:\Windows\System32\inetsrv\apphostsvc.dll
22:37:30.0810 1936  C:\Windows\System32\inetsrv\apphostsvc.dll - ok
22:37:30.0817 1936  [ C99C5AD6E5412A8D37D40E780113D7B5 ] C:\Windows\System32\inetsrv\iisutil.dll
22:37:30.0817 1936  C:\Windows\System32\inetsrv\iisutil.dll - ok
22:37:30.0823 1936  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
22:37:30.0823 1936  C:\Windows\System32\TSChannel.dll - ok
22:37:30.0830 1936  [ A77EA0AF89B0147A9B38211E3096A2E0 ] C:\Windows\System32\inetsrv\nativerd.dll
22:37:30.0830 1936  C:\Windows\System32\inetsrv\nativerd.dll - ok
22:37:30.0836 1936  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:37:30.0836 1936  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
22:37:30.0843 1936  [ B01C0C93E4AF06229E55F7F855FB0C09 ] C:\Windows\System32\HPDiscoPM8e11.dll
22:37:30.0843 1936  C:\Windows\System32\HPDiscoPM8e11.dll - ok
22:37:30.0848 1936  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
22:37:30.0848 1936  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
22:37:30.0855 1936  [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
22:37:30.0855 1936  C:\Windows\System32\d3d10_1.dll - ok
22:37:30.0861 1936  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
22:37:30.0861 1936  C:\Windows\System32\vssapi.dll - ok
22:37:30.0868 1936  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
22:37:30.0868 1936  C:\Windows\System32\FXSMON.dll - ok
22:37:30.0874 1936  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:37:30.0874 1936  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
22:37:30.0881 1936  [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
22:37:30.0881 1936  C:\Windows\System32\d3d10_1core.dll - ok
22:37:30.0887 1936  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
22:37:30.0888 1936  C:\Windows\SysWOW64\wtsapi32.dll - ok
22:37:30.0894 1936  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
22:37:30.0894 1936  C:\Windows\System32\tcpmon.dll - ok
22:37:30.0900 1936  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
22:37:30.0900 1936  C:\Windows\SysWOW64\winsta.dll - ok
22:37:30.0907 1936  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
22:37:30.0907 1936  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
22:37:30.0914 1936  [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
22:37:30.0914 1936  C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
22:37:30.0920 1936  [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
22:37:30.0920 1936  C:\Windows\System32\dxgi.dll - ok
22:37:30.0926 1936  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
22:37:30.0926 1936  C:\Windows\System32\snmpapi.dll - ok
22:37:30.0933 1936  [ 22F8AB79C3F90A6E5EC909050B44F728 ] C:\ProgramData\Premium\MagniPic\MagniPic.exe
22:37:30.0933 1936  C:\ProgramData\Premium\MagniPic\MagniPic.exe - ok
22:37:30.0939 1936  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
22:37:30.0940 1936  C:\Windows\System32\wsnmp32.dll - ok
22:37:30.0946 1936  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
22:37:30.0946 1936  C:\Windows\SysWOW64\userenv.dll - ok
22:37:30.0952 1936  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
22:37:30.0952 1936  C:\Windows\System32\usbmon.dll - ok
22:37:30.0958 1936  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
22:37:30.0958 1936  C:\Windows\SysWOW64\apphelp.dll - ok
22:37:30.0965 1936  [ 848BC9A0BB2361E549FD4C22D7548FB8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
22:37:30.0965 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
22:37:30.0971 1936  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
22:37:30.0971 1936  C:\Windows\System32\ExplorerFrame.dll - ok
22:37:30.0977 1936  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
22:37:30.0977 1936  C:\Windows\System32\WSDMon.dll - ok
22:37:30.0984 1936  [ B2442E25949A5EA619A44B2AC213503D ] C:\Users\Ryan\AppData\Local\SwvUpdater\Updater.exe
22:37:30.0984 1936  C:\Users\Ryan\AppData\Local\SwvUpdater\Updater.exe - ok
22:37:30.0991 1936  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
22:37:30.0991 1936  C:\Windows\SysWOW64\winhttp.dll - ok
22:37:30.0997 1936  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
22:37:30.0997 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
22:37:31.0004 1936  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
22:37:31.0004 1936  C:\Windows\System32\WSDApi.dll - ok
22:37:31.0010 1936  [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
22:37:31.0010 1936  C:\Windows\AppPatch\AcGenral.dll - ok
22:37:31.0016 1936  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
22:37:31.0017 1936  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
22:37:31.0023 1936  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
22:37:31.0023 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
22:37:31.0030 1936  [ 80ED288D61ABCBB9B2DD3FCDDBB71E1E ] C:\Windows\System32\nvwgf2umx.dll
22:37:31.0030 1936  C:\Windows\System32\nvwgf2umx.dll - ok
22:37:31.0037 1936  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
22:37:31.0037 1936  C:\Windows\System32\vsstrace.dll - ok
22:37:31.0043 1936  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
22:37:31.0043 1936  C:\Windows\SysWOW64\webio.dll - ok
22:37:31.0049 1936  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
22:37:31.0049 1936  C:\Windows\System32\webservices.dll - ok
22:37:31.0056 1936  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
22:37:31.0056 1936  C:\Windows\System32\mlang.dll - ok
22:37:31.0062 1936  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
22:37:31.0062 1936  C:\Windows\SysWOW64\uxtheme.dll - ok
22:37:31.0069 1936  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
22:37:31.0069 1936  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
22:37:31.0075 1936  [ D9699CEE84A398B73D1D1919802BC914 ] C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe
22:37:31.0075 1936  C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe - ok
22:37:31.0082 1936  [ C9680F06E51DB8B9A0772C20F3E10DB6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
22:37:31.0082 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
22:37:31.0089 1936  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
 

Edited by incandescentface, 10 February 2013 - 09:46 AM.


#4 incandescentface

incandescentface
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:27 AM

Posted 10 February 2013 - 09:47 AM

22:37:31.0089 1936  C:\Windows\SysWOW64\wsock32.dll - ok
22:37:31.0096 1936  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
22:37:31.0096 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
22:37:31.0100 1936  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
22:37:31.0100 1936  C:\Windows\SysWOW64\imagehlp.dll - ok
22:37:31.0106 1936  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
22:37:31.0106 1936  C:\Windows\System32\EhStorShell.dll - ok
22:37:31.0113 1936  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
22:37:31.0113 1936  C:\Windows\SysWOW64\credssp.dll - ok
22:37:31.0120 1936  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
22:37:31.0120 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
22:37:31.0129 1936  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
22:37:31.0129 1936  C:\Windows\System32\fundisc.dll - ok
22:37:31.0136 1936  [ 32802C0F6FC7C8F561B9D91F52A46421 ] C:\Windows\System32\cscui.dll
22:37:31.0136 1936  C:\Windows\System32\cscui.dll - ok
22:37:31.0143 1936  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
22:37:31.0143 1936  C:\Windows\SysWOW64\msi.dll - ok
22:37:31.0149 1936  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
22:37:31.0149 1936  C:\Windows\SysWOW64\winmm.dll - ok
22:37:31.0156 1936  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
22:37:31.0156 1936  C:\Windows\System32\fdPnp.dll - ok
22:37:31.0162 1936  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
22:37:31.0162 1936  C:\Windows\SysWOW64\samcli.dll - ok
22:37:31.0170 1936  [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
22:37:31.0170 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
22:37:31.0177 1936  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
22:37:31.0177 1936  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
22:37:31.0185 1936  [ 7EE5F17A21D9A9101207DF4BC37B085D ] C:\Windows\System32\cscdll.dll
22:37:31.0185 1936  C:\Windows\System32\cscdll.dll - ok
22:37:31.0191 1936  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
22:37:31.0191 1936  C:\Windows\SysWOW64\msacm32.dll - ok
22:37:31.0197 1936  [ C3072FA9FC6971759D504C26C29A1C4F ] C:\Windows\System32\spool\prtprocs\x64\CNMPD7R.DLL
22:37:31.0198 1936  C:\Windows\System32\spool\prtprocs\x64\CNMPD7R.DLL - ok
22:37:31.0204 1936  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
22:37:31.0204 1936  C:\Windows\System32\cscapi.dll - ok
22:37:31.0210 1936  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
22:37:31.0210 1936  C:\Windows\SysWOW64\sfc.dll - ok
22:37:31.0217 1936  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
22:37:31.0217 1936  C:\Windows\System32\win32spl.dll - ok
22:37:31.0224 1936  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
22:37:31.0224 1936  C:\Windows\System32\ntshrui.dll - ok
22:37:31.0230 1936  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
22:37:31.0230 1936  C:\Windows\SysWOW64\sfc_os.dll - ok
22:37:31.0237 1936  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
22:37:31.0237 1936  C:\Windows\SysWOW64\dwmapi.dll - ok
22:37:31.0243 1936  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
22:37:31.0243 1936  C:\Windows\SysWOW64\mpr.dll - ok
22:37:31.0250 1936  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
22:37:31.0250 1936  C:\Windows\System32\IconCodecService.dll - ok
22:37:31.0257 1936  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
22:37:31.0257 1936  C:\Windows\System32\inetpp.dll - ok
22:37:31.0264 1936  [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
22:37:31.0264 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
22:37:31.0271 1936  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
22:37:31.0271 1936  C:\Windows\SysWOW64\cscapi.dll - ok
22:37:31.0279 1936  [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
22:37:31.0279 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
22:37:31.0286 1936  [ CB990D676E92D58F8EE2124148C32907 ] C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPDiscoPMSxS.dll
22:37:31.0286 1936  C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPDiscoPMSxS.dll - ok
22:37:31.0293 1936  [ A971A8B6ADA8D56B0ACF67DBD4463916 ] C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe
22:37:31.0293 1936  C:\Program Files\HP\HP Photosmart Plus B210 series\Bin\HPNetworkCommunicator.exe - ok
22:37:31.0299 1936  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
22:37:31.0299 1936  C:\Windows\System32\winhttp.dll - ok
22:37:31.0306 1936  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
22:37:31.0306 1936  C:\Windows\System32\uDWM.dll - ok
22:37:31.0312 1936  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
22:37:31.0312 1936  C:\Windows\System32\webio.dll - ok
22:37:31.0318 1936  [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
22:37:31.0318 1936  C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
22:37:31.0325 1936  [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
22:37:31.0325 1936  C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
22:37:31.0332 1936  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
22:37:31.0332 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
22:37:31.0338 1936  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
22:37:31.0338 1936  C:\Windows\SysWOW64\mstask.dll - ok
22:37:31.0344 1936  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
22:37:31.0344 1936  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
22:37:31.0348 1936  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
22:37:31.0348 1936  C:\Windows\SysWOW64\dnssd.dll - ok
22:37:31.0355 1936  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
22:37:31.0355 1936  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
22:37:31.0362 1936  [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
22:37:31.0362 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
22:37:31.0369 1936  [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
22:37:31.0369 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
22:37:31.0376 1936  [ 2C349460E40EF6B9604D774AAF367730 ] C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
22:37:31.0376 1936  C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe - ok
22:37:31.0384 1936  [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
22:37:31.0384 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
22:37:31.0391 1936  [ C3C8D359D1FCB72941F75F8A302BFBDE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
22:37:31.0391 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
22:37:31.0397 1936  [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
22:37:31.0397 1936  C:\Windows\SysWOW64\ieframe.dll - ok
22:37:31.0404 1936  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
22:37:31.0404 1936  C:\Windows\System32\dbghelp.dll - ok
22:37:31.0410 1936  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
22:37:31.0410 1936  C:\Windows\SysWOW64\psapi.dll - ok
22:37:31.0417 1936  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
22:37:31.0417 1936  C:\Windows\SysWOW64\oleacc.dll - ok
22:37:31.0423 1936  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
22:37:31.0423 1936  C:\Program Files\Bonjour\mDNSResponder.exe - ok
22:37:31.0430 1936  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
22:37:31.0430 1936  C:\Windows\System32\cryptsvc.dll - ok
22:37:31.0436 1936  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
22:37:31.0436 1936  C:\Windows\System32\dps.dll - ok
22:37:31.0442 1936  [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
22:37:31.0442 1936  C:\Windows\System32\efssvc.dll - ok
22:37:31.0448 1936  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
22:37:31.0448 1936  C:\Windows\System32\FDResPub.dll - ok
22:37:31.0455 1936  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
22:37:31.0455 1936  C:\Windows\System32\IKEEXT.DLL - ok
22:37:31.0461 1936  [ 9CD0DC863BE5D40A762F7D84F11A8471 ] C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
22:37:31.0461 1936  C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe - ok
22:37:31.0468 1936  [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
22:37:31.0468 1936  C:\Windows\System32\efscore.dll - ok
22:37:31.0474 1936  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
22:37:31.0474 1936  C:\Windows\System32\cryptnet.dll - ok
22:37:31.0480 1936  [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
22:37:31.0480 1936  C:\Windows\System32\efsutil.dll - ok
22:37:31.0487 1936  [ 0C02096E686E9EB2A3D37DFF9B42D946 ] C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe
22:37:31.0487 1936  C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe - ok
22:37:31.0494 1936  [ 18234EC42C951403BF889A9754FF1835 ] C:\Program Files (x86)\Common Files\logishrd\LVMVFM\LVPrS64H.exe
22:37:31.0494 1936  C:\Program Files (x86)\Common Files\logishrd\LVMVFM\LVPrS64H.exe - ok
22:37:31.0501 1936  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
22:37:31.0501 1936  C:\Windows\System32\httpapi.dll - ok
22:37:31.0507 1936  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
22:37:31.0507 1936  C:\Windows\System32\vpnikeapi.dll - ok
22:37:31.0513 1936  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
22:37:31.0513 1936  C:\Windows\System32\mscoree.dll - ok
22:37:31.0520 1936  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
22:37:31.0520 1936  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
22:37:31.0526 1936  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
22:37:31.0526 1936  C:\Windows\SysWOW64\sxs.dll - ok
22:37:31.0533 1936  [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
22:37:31.0533 1936  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
22:37:31.0540 1936  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
22:37:31.0540 1936  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
22:37:31.0547 1936  [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
22:37:31.0547 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
22:37:31.0554 1936  [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
22:37:31.0554 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
22:37:31.0561 1936  [ D6C6ADB50B8CDB4D6FE4A76F0602C1F6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MsDtsSrvr\b333c58cb2ba305f3f9a5e7feebbddd9\MsDtsSrvr.ni.exe
22:37:31.0561 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\MsDtsSrvr\b333c58cb2ba305f3f9a5e7feebbddd9\MsDtsSrvr.ni.exe - ok
22:37:31.0568 1936  [ 4BCAC176BE9F87E0A85A4C9A5EB63B3E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll
22:37:31.0568 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll - ok
22:37:31.0575 1936  [ B80A1522ACCFD06C5FB6CDC4AAA610EF ] C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvrUtil.dll
22:37:31.0575 1936  C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvrUtil.dll - ok
22:37:31.0583 1936  [ B95F748C4F100DD0F6E8115CC0968670 ] C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll
22:37:31.0583 1936  C:\Windows\winsxs\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.dll - ok
22:37:31.0590 1936  [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
22:37:31.0590 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
22:37:31.0597 1936  [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
22:37:31.0597 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
22:37:31.0602 1936  [ 63503137BEC360B2D4F5B0BF0677EF07 ] C:\Program Files\Microsoft SQL Server\100\DTS\Binn\DTS.dll
22:37:31.0602 1936  C:\Program Files\Microsoft SQL Server\100\DTS\Binn\DTS.dll - ok
22:37:31.0609 1936  [ 00000000000000000000000000000000 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
22:37:31.0609 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlservr.exe - ok
22:37:31.0616 1936  [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
22:37:31.0616 1936  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
22:37:31.0622 1936  [ 47A3DFD9ABD521F6324870E32AA9B4F8 ] C:\Program Files\Microsoft SQL Server\100\DTS\Binn\dtsmsg100.dll
22:37:31.0622 1936  C:\Program Files\Microsoft SQL Server\100\DTS\Binn\dtsmsg100.dll - ok
22:37:31.0629 1936  [ C87E88165D5ACBFAE7DF08BB4DF212EF ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlos.dll
22:37:31.0629 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlos.dll - ok
22:37:31.0636 1936  [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
22:37:31.0636 1936  C:\Windows\System32\pdh.dll - ok
22:37:31.0643 1936  [ 759B3E957B35C2426B81B81FF62E9AB7 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\opends60.dll
22:37:31.0643 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\opends60.dll - ok
22:37:31.0650 1936  [ AAAF7B5CD55363C7F9F8E00C084E9B27 ] C:\Program Files\Microsoft SQL Server\100\Shared\instapi10.dll
22:37:31.0650 1936  C:\Program Files\Microsoft SQL Server\100\Shared\instapi10.dll - ok
22:37:31.0657 1936  [ 83398851164292684C34F7FC9A236C2D ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\batchparser.dll
22:37:31.0657 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\batchparser.dll - ok
22:37:31.0664 1936  [ DB6D118B6E12C8B56D7A7707283763C8 ] C:\Program Files\Microsoft SQL Server\100\Shared\sqlboot.dll
22:37:31.0664 1936  C:\Program Files\Microsoft SQL Server\100\Shared\sqlboot.dll - ok
22:37:31.0672 1936  [ EE4E364CA52E54EA0D33DCA3EC64D4C5 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.SqlServer#\c1a2eee1f7b32f1fbcb3fff63aeddd71\Microsoft.SqlServer.DtsServer.Interop.ni.dll
22:37:31.0672 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\Microsoft.SqlServer#\c1a2eee1f7b32f1fbcb3fff63aeddd71\Microsoft.SqlServer.DtsServer.Interop.ni.dll - ok
22:37:31.0679 1936  [ DB6D118B6E12C8B56D7A7707283763C8 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlboot.dll
22:37:31.0679 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlboot.dll - ok
22:37:31.0686 1936  [ BE633B0102CD544793C8C3464CF41D6E ] C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\msmdsrv.exe
22:37:31.0686 1936  C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\msmdsrv.exe - ok
22:37:31.0694 1936  [ 6C3CAD1816F6DEB7EFBFE73866657F13 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\sqlevn70.rll
22:37:31.0694 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok
22:37:31.0702 1936  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
22:37:31.0702 1936  C:\Windows\System32\browcli.dll - ok
22:37:31.0709 1936  [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
22:37:31.0709 1936  C:\Windows\System32\security.dll - ok
22:37:31.0716 1936  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
22:37:31.0716 1936  C:\Windows\System32\dssenh.dll - ok
22:37:31.0724 1936  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
22:37:31.0724 1936  C:\Windows\System32\wsock32.dll - ok
22:37:31.0731 1936  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
22:37:31.0731 1936  C:\Windows\System32\ntdsapi.dll - ok
22:37:31.0738 1936  [ F90A398C466FD96CB56DC8E5C13396DD ] C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\xmlrw.dll
22:37:31.0738 1936  C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\xmlrw.dll - ok
22:37:31.0746 1936  [ FC6EE7091C6C2045A2AE03117177C0B5 ] C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\xmlrwbin.dll
22:37:31.0746 1936  C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\xmlrwbin.dll - ok
22:37:31.0753 1936  [ C3D7F6870E6F4E0F31F6CA545F09D052 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlscriptupgrade.dll
22:37:31.0753 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlscriptupgrade.dll - ok
22:37:31.0761 1936  [ 15E5ABD9E03D57671BB74EB5CBAB8019 ] C:\Program Files (x86)\BUFFALO\NASNAVI\nassvc.exe
22:37:31.0761 1936  C:\Program Files (x86)\BUFFALO\NASNAVI\nassvc.exe - ok
22:37:31.0769 1936  [ DB6D118B6E12C8B56D7A7707283763C8 ] C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\sqlboot.dll
22:37:31.0769 1936  C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\sqlboot.dll - ok
22:37:31.0777 1936  [ 127DC99C7EFDD3D4994F12B7A480C739 ] C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\Resources\1033\msmdsrv.rll
22:37:31.0777 1936  C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\Resources\1033\msmdsrv.rll - ok
22:37:31.0785 1936  [ 08DE24B7B61CBCA3AEFDF201A25F5D4E ] C:\Program Files (x86)\BUFFALO\NASNAVI\nasexo.dll
22:37:31.0785 1936  C:\Program Files (x86)\BUFFALO\NASNAVI\nasexo.dll - ok
22:37:31.0792 1936  [ E8F503EB5F9633A1547B3F0968F3B662 ] C:\Program Files (x86)\BUFFALO\NASNAVI\nasdmn.dll
22:37:31.0792 1936  C:\Program Files (x86)\BUFFALO\NASNAVI\nasdmn.dll - ok
22:37:31.0799 1936  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
22:37:31.0799 1936  C:\Windows\SysWOW64\comdlg32.dll - ok
22:37:31.0805 1936  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] C:\Windows\System32\drivers\NisDrvWFP.sys
22:37:31.0805 1936  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
22:37:31.0812 1936  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
22:37:31.0812 1936  C:\Windows\System32\aepic.dll - ok
22:37:31.0819 1936  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
22:37:31.0819 1936  C:\Windows\System32\nlasvc.dll - ok
22:37:31.0826 1936  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
22:37:31.0826 1936  C:\Windows\System32\sfc.dll - ok
22:37:31.0833 1936  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
22:37:31.0833 1936  C:\Windows\System32\sfc_os.dll - ok
22:37:31.0839 1936  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
22:37:31.0839 1936  C:\Windows\System32\ncsi.dll - ok
22:37:31.0847 1936  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
22:37:31.0847 1936  C:\Windows\System32\ssdpapi.dll - ok
22:37:31.0854 1936  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
22:37:31.0854 1936  C:\Windows\System32\drivers\PEAuth.sys - ok
22:37:31.0859 1936  [ 4ECA1DB451B759ADED4CED11CD0E9289 ] C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\msmgdsrv.dll
22:37:31.0859 1936  C:\Program Files\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\bin\msmgdsrv.dll - ok
22:37:31.0866 1936  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
22:37:31.0866 1936  C:\Windows\System32\aeevts.dll - ok
22:37:31.0872 1936  [ 831883B107684301F48ACE752C963984 ] C:\Windows\SysWOW64\PnkBstrA.exe
22:37:31.0872 1936  C:\Windows\SysWOW64\PnkBstrA.exe - ok
22:37:31.0880 1936  [ DACF8F0D09A0AF56109DFE60351A5BEB ] C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
22:37:31.0880 1936  C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe - ok
22:37:31.0887 1936  [ EFA8AB14DAE6A19729CC0076BEC5DCCC ] C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\SQLRSOS.dll
22:37:31.0887 1936  C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\SQLRSOS.dll - ok
22:37:31.0894 1936  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
22:37:31.0894 1936  C:\Windows\System32\msxml3.dll - ok
22:37:31.0901 1936  [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
22:37:31.0901 1936  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
22:37:31.0908 1936  [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
22:37:31.0908 1936  C:\Windows\System32\riched20.dll - ok
22:37:31.0915 1936  [ FA5CC7090726C42050F7FD74A79915BE ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\ftimport.dll
22:37:31.0915 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\ftimport.dll - ok
22:37:31.0922 1936  [ 9B74417FDAC6D6D17EF0AF9E9406D5B3 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\msfte.dll
22:37:31.0922 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\msfte.dll - ok
22:37:31.0929 1936  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
22:37:31.0929 1936  C:\Windows\System32\SensApi.dll - ok
22:37:31.0936 1936  [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
22:37:31.0936 1936  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
22:37:31.0943 1936  [ 220D34AE99FD3036BAA70E77AAA64241 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\DBGHELP.DLL
22:37:31.0943 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\DBGHELP.DLL - ok
22:37:31.0951 1936  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
22:37:31.0951 1936  C:\Windows\System32\drivers\secdrv.sys - ok
22:37:31.0958 1936  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] C:\Program Files (x86)\Skype\Updater\Updater.exe
22:37:31.0958 1936  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
22:37:31.0967 1936  [ A7E03E5E0C27DDD4CFE8F243FBE853F8 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcm80.dll
22:37:31.0967 1936  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcm80.dll - ok
22:37:31.0973 1936  [ 6D65985945B03CA59B67D0B73702FC7B ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
22:37:31.0973 1936  C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok
22:37:31.0980 1936  [ 2D426C1E984FFDDB240AB4D4B842838B ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll
22:37:31.0980 1936  C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll - ok
22:37:31.0987 1936  [ 00B0C9A3101E120D6D86E5581E12BED2 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\NaturalLanguage6.dll
22:37:31.0988 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\NaturalLanguage6.dll - ok
22:37:31.0994 1936  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
22:37:31.0994 1936  C:\Windows\System32\drivers\srvnet.sys - ok
22:37:32.0001 1936  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
22:37:32.0001 1936  C:\Windows\System32\wiaservc.dll - ok
22:37:32.0007 1936  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
22:37:32.0007 1936  C:\Windows\System32\sysmain.dll - ok
22:37:32.0014 1936  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
22:37:32.0014 1936  C:\Windows\System32\drivers\tcpipreg.sys - ok
22:37:32.0021 1936  [ 0C8912B972254A37E0D9E1A69A587D53 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\ChsBrkr.dll
22:37:32.0021 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\ChsBrkr.dll - ok
22:37:32.0027 1936  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
22:37:32.0028 1936  C:\Windows\System32\wiatrace.dll - ok
22:37:32.0035 1936  [ 8E5CCDED7D67C67C597A17978054E48F ] C:\Program Files\Microsoft SQL Server\100\Shared\SqlDumper.exe
22:37:32.0035 1936  C:\Program Files\Microsoft SQL Server\100\Shared\SqlDumper.exe - ok
22:37:32.0041 1936  [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
22:37:32.0041 1936  C:\Windows\System32\wsdchngr.dll - ok
22:37:32.0049 1936  [ 4221FA3C258CB5F1893EB286A4839BE0 ] C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesNativeServer.dll
22:37:32.0049 1936  C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesNativeServer.dll - ok
22:37:32.0056 1936  [ 220D34AE99FD3036BAA70E77AAA64241 ] C:\Program Files\Microsoft SQL Server\100\Shared\dbghelp.dll
22:37:32.0056 1936  C:\Program Files\Microsoft SQL Server\100\Shared\dbghelp.dll - ok
22:37:32.0063 1936  [ CFB862D53A49E830CC219C4B5E4D345E ] C:\Windows\System32\HPScanMiniDrv_PSB210.dll
22:37:32.0063 1936  C:\Windows\System32\HPScanMiniDrv_PSB210.dll - ok
22:37:32.0070 1936  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
22:37:32.0070 1936  C:\Windows\System32\trkwks.dll - ok
22:37:32.0077 1936  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
22:37:32.0077 1936  C:\Windows\System32\wbem\WMIsvc.dll - ok
22:37:32.0083 1936  [ B32009DB1972E7F2C227499289C4384A ] C:\Windows\System32\inetsrv\iisw3adm.dll
22:37:32.0083 1936  C:\Windows\System32\inetsrv\iisw3adm.dll - ok
22:37:32.0090 1936  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:37:32.0090 1936  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
22:37:32.0097 1936  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
22:37:32.0097 1936  C:\Windows\System32\wbemcomn.dll - ok
22:37:32.0104 1936  [ 5E6244A99D60C73216E4C684E7A42299 ] C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesNativeClient.dll
22:37:32.0104 1936  C:\Program Files\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesNativeClient.dll - ok
22:37:32.0109 1936  [ 49F9AF60349A514C1BCF14DB9C843C5A ] C:\Windows\System32\inetsrv\w3tp.dll
22:37:32.0109 1936  C:\Windows\System32\inetsrv\w3tp.dll - ok
22:37:32.0115 1936  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
22:37:32.0115 1936  C:\Windows\System32\wbem\WinMgmtR.dll - ok
22:37:32.0121 1936  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
22:37:32.0121 1936  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
22:37:32.0128 1936  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
22:37:32.0128 1936  C:\Windows\System32\wbem\fastprox.dll - ok
22:37:32.0135 1936  [ 4D79D8F95143184B9C05F21396DE7645 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\ef8150a4b9439bd8fe200670681db670\System.Data.ni.dll
22:37:32.0135 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\ef8150a4b9439bd8fe200670681db670\System.Data.ni.dll - ok
22:37:32.0142 1936  [ B6663FC132F0262A5EF48DB2D0187DE3 ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll
22:37:32.0142 1936  C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll - ok
22:37:32.0149 1936  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
22:37:32.0149 1936  C:\Windows\System32\wbem\wbemprox.dll - ok
22:37:32.0155 1936  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
22:37:32.0156 1936  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
22:37:32.0162 1936  [ A77BA10A0D610BBB6101AEA1E633ABE1 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
22:37:32.0162 1936  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
22:37:32.0169 1936  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
22:37:32.0169 1936  C:\Windows\System32\wbem\wbemcore.dll - ok
22:37:32.0175 1936  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
22:37:32.0175 1936  C:\Windows\System32\wer.dll - ok
22:37:32.0182 1936  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
22:37:32.0182 1936  C:\Windows\System32\wbem\esscli.dll - ok
22:37:32.0188 1936  [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
22:37:32.0188 1936  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
22:37:32.0195 1936  [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
22:37:32.0195 1936  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
22:37:32.0202 1936  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
22:37:32.0203 1936  C:\Windows\System32\iphlpsvc.dll - ok
22:37:32.0209 1936  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
22:37:32.0209 1936  C:\Windows\System32\drivers\srv2.sys - ok
22:37:32.0216 1936  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
22:37:32.0216 1936  C:\Windows\System32\sqmapi.dll - ok
22:37:32.0223 1936  [ AE0A2DE2BB518D204F94DDCF93BBCC4C ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
22:37:32.0223 1936  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok
22:37:32.0230 1936  [ 854B343EB96804372D52465212F84546 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\CHTBRKR.DLL
22:37:32.0230 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\CHTBRKR.DLL - ok
22:37:32.0237 1936  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
22:37:32.0238 1936  C:\Windows\System32\wdscore.dll - ok
22:37:32.0245 1936  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
22:37:32.0245 1936  C:\Windows\System32\drivers\srv.sys - ok
22:37:32.0253 1936  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
22:37:32.0254 1936  C:\Windows\System32\wbem\wbemsvc.dll - ok
22:37:32.0261 1936  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
22:37:32.0261 1936  C:\Windows\System32\netcfgx.dll - ok
22:37:32.0269 1936  [ 50BC57B992859549DBAB27C1AB0594EC ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\LangWrbk.dll
22:37:32.0269 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\LangWrbk.dll - ok
22:37:32.0276 1936  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
22:37:32.0276 1936  C:\Windows\System32\hnetcfg.dll - ok
22:37:32.0283 1936  [ 12E6D95CDE974B131DEFAA44BAB8B056 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
22:37:32.0283 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE - ok
22:37:32.0290 1936  [ 98D53BB2DB8E11762D30C3CF41FA140B ] C:\Windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
22:37:32.0290 1936  C:\Windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
22:37:32.0299 1936  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
22:37:32.0299 1936  C:\Windows\System32\esent.dll - ok
22:37:32.0305 1936  [ 5DEA28080C4DF178621D54D4B92D98AD ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\korwbrkr.dll
22:37:32.0306 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\korwbrkr.dll - ok
22:37:32.0312 1936  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
22:37:32.0312 1936  C:\Windows\System32\srvsvc.dll - ok
22:37:32.0319 1936  [ 5193BA6EE8977BA7CE19C8C5B36C78E2 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\ThaWBrkr.dll
22:37:32.0319 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\ThaWBrkr.dll - ok
22:37:32.0326 1936  [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
22:37:32.0326 1936  C:\Windows\System32\odbc32.dll - ok
22:37:32.0333 1936  [ 069D8D0D4699845C1EE9122BD41E41D5 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\nlhtml.dll
22:37:32.0334 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\nlhtml.dll - ok
22:37:32.0341 1936  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
22:37:32.0341 1936  C:\Windows\System32\browser.dll - ok
22:37:32.0347 1936  [ A9035C4CA57ACB80419ED878FE1EB161 ] C:\Windows\System32\offfilt.dll
22:37:32.0348 1936  C:\Windows\System32\offfilt.dll - ok
22:37:32.0356 1936  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
22:37:32.0356 1936  C:\Windows\System32\wbem\wmiutils.dll - ok
22:37:32.0360 1936  [ 47C3A7B0E19EC52351A1211ACFE65150 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SqlResourceLoader.dll
22:37:32.0360 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SqlResourceLoader.dll - ok
22:37:32.0367 1936  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
22:37:32.0367 1936  C:\Windows\System32\netmsg.dll - ok
22:37:32.0374 1936  [ 1F2521BE3319E6BCCCB2E945A4C13082 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlsvc.dll
22:37:32.0374 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlsvc.dll - ok
22:37:32.0381 1936  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
22:37:32.0381 1936  C:\Windows\System32\sscore.dll - ok
22:37:32.0388 1936  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
22:37:32.0388 1936  C:\Windows\System32\nci.dll - ok
22:37:32.0394 1936  [ C1AA9EE5ED84723F0C176EBC19B11950 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\xmlfilt.dll
22:37:32.0395 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\xmlfilt.dll - ok
22:37:32.0402 1936  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
22:37:32.0402 1936  C:\Windows\System32\wbem\repdrvfs.dll - ok
22:37:32.0405 1936  [ 682CD442CBF80A1C3F939A8AC62BD93D ] C:\Windows\System32\sqlncli10.dll
22:37:32.0405 1936  C:\Windows\System32\sqlncli10.dll - ok
22:37:32.0412 1936  [ B720B4D1C97FBE02BE32812B580F1849 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll
22:37:32.0412 1936  C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll - ok
22:37:32.0419 1936  [ EE1213C83CA80FA59121A9B41D2A1282 ] C:\Program Files\Microsoft SQL Server\100\COM\iftsph.dll
22:37:32.0419 1936  C:\Program Files\Microsoft SQL Server\100\COM\iftsph.dll - ok
22:37:32.0427 1936  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
22:37:32.0427 1936  C:\Windows\System32\clusapi.dll - ok
22:37:32.0434 1936  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
22:37:32.0435 1936  C:\Windows\System32\resutils.dll - ok
22:37:32.0441 1936  [ EC248BC9C9C225FD289F250756503146 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
22:37:32.0441 1936  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok
22:37:32.0448 1936  [ 6DAE8099EE2455CD5035C3B70C534C26 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Transactions\797cf5ce4b6d05ce5fcf764f63dc3840\System.Transactions.ni.dll
22:37:32.0448 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Transactions\797cf5ce4b6d05ce5fcf764f63dc3840\System.Transactions.ni.dll - ok
22:37:32.0455 1936  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
22:37:32.0455 1936  C:\Windows\System32\NapiNSP.dll - ok
22:37:32.0461 1936  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
22:37:32.0461 1936  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
22:37:32.0469 1936  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
22:37:32.0469 1936  C:\Windows\System32\pnrpnsp.dll - ok
22:37:32.0475 1936  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
22:37:32.0475 1936  C:\Windows\System32\winrnr.dll - ok
22:37:32.0482 1936  [ E4806AC8BE2D890193252D4BEE7EA95C ] C:\Windows\assembly\GAC_64\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
22:37:32.0482 1936  C:\Windows\assembly\GAC_64\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
22:37:32.0489 1936  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
22:37:32.0489 1936  C:\Windows\System32\ncobjapi.dll - ok
22:37:32.0495 1936  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
22:37:32.0495 1936  C:\Windows\System32\wbem\wbemess.dll - ok
22:37:32.0502 1936  [ 0F5EAC0A3F90C57ABB20849E423FC89E ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlscm.dll
22:37:32.0502 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\sqlscm.dll - ok
22:37:32.0509 1936  [ B024BB7F005F775B129905E8BD36EF7A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\0b83e9bc346c16e8993356e08c660f67\System.EnterpriseServices.ni.dll
22:37:32.0509 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\0b83e9bc346c16e8993356e08c660f67\System.EnterpriseServices.ni.dll - ok
22:37:32.0517 1936  [ 8DC5513BC0569CB292D1A4E3771F7984 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SEMMAP.DLL
22:37:32.0517 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SEMMAP.DLL - ok
22:37:32.0523 1936  [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
22:37:32.0523 1936  C:\Windows\System32\odbcint.dll - ok
22:37:32.0530 1936  [ 2E025D5A313C094D4F788E29D82052B7 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\sqlsvc.rll
22:37:32.0530 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\sqlsvc.rll - ok
22:37:32.0537 1936  [ 90C1D3360E8F36A4FD326386532D43D4 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SEMMAP.RLL
22:37:32.0537 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SEMMAP.RLL - ok
22:37:32.0544 1936  [ BEE31583EC46597C48F9745A82D04574 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLAGENT.RLL
22:37:32.0544 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLAGENT.RLL - ok
22:37:32.0552 1936  [ 7C82EF8080CA458B7574D27B2DE03F43 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll
22:37:32.0552 1936  C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok
22:37:32.0559 1936  [ 7DB47CD93D839C7194B59CCFEF72B1E7 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENTLOG.DLL
22:37:32.0559 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLAGENTLOG.DLL - ok
22:37:32.0566 1936  [ A6071FCAC74DB12D8CE03D78D6154D86 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\cd91841321f9942330b6097dcd96dce9\System.Web.ni.dll
22:37:32.0566 1936  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\cd91841321f9942330b6097dcd96dce9\System.Web.ni.dll - ok
22:37:32.0573 1936  [ EB33609DF1BFB89ADB2EC0041CD02701 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscordacwks.dll
22:37:32.0573 1936  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscordacwks.dll - ok
22:37:32.0580 1936  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
22:37:32.0580 1936  C:\Windows\System32\wdi.dll - ok
22:37:32.0587 1936  [ 79E80B10FE8F6662E0C9162A68C43444 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
22:37:32.0587 1936  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
22:37:32.0594 1936  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
22:37:32.0594 1936  C:\Windows\System32\perftrack.dll - ok
22:37:32.0601 1936  [ 132045285DCC8654C14F1CFB4A8DCDA1 ] C:\Program Files\Microsoft Security Client\NisLog.dll
22:37:32.0601 1936  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
22:37:32.0607 1936  [ 6286605FE7C87DDC628E3CE41A15FFA6 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe
22:37:32.0608 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe - ok
22:37:32.0612 1936  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
22:37:32.0612 1936  C:\Windows\System32\appinfo.dll - ok
22:37:32.0618 1936  [ 20C7F2ADAE249D6708941BC8CDD9735F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BD6B4EFC-B6E2-4BBA-869F-D1824DBAA3C4}\gapaengine.dll
22:37:32.0618 1936  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BD6B4EFC-B6E2-4BBA-869F-D1824DBAA3C4}\gapaengine.dll - ok
22:37:32.0625 1936  [ 3F3468597948358F631DF5F1415BCC3B ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fdhost.exe
22:37:32.0625 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fdhost.exe - ok
22:37:32.0632 1936  [ B3944D06EB4B64D57BD7E5FE89415F58 ] C:\Windows\System32\drivers\LVPr2M64.sys
22:37:32.0632 1936  C:\Windows\System32\drivers\LVPr2M64.sys - ok
22:37:32.0639 1936  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
22:37:32.0639 1936  C:\Windows\System32\hidserv.dll - ok
22:37:32.0645 1936  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
22:37:32.0645 1936  C:\Windows\System32\diagperf.dll - ok
22:37:32.0653 1936  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
22:37:32.0653 1936  C:\Windows\System32\npmproxy.dll - ok
22:37:32.0659 1936  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
22:37:32.0659 1936  C:\Windows\System32\wpdbusenum.dll - ok
22:37:32.0666 1936  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
22:37:32.0666 1936  C:\Windows\System32\IPSECSVC.DLL - ok
22:37:32.0673 1936  [ 7228C6C7FA65351D6A5929D86A62FC52 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fd.dll
22:37:32.0673 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\fd.dll - ok
22:37:32.0679 1936  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
22:37:32.0679 1936  C:\Windows\System32\PortableDeviceApi.dll - ok
22:37:32.0686 1936  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
22:37:32.0686 1936  C:\Windows\System32\runonce.exe - ok
22:37:32.0693 1936  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
22:37:32.0693 1936  C:\Windows\SysWOW64\msxml3.dll - ok
22:37:32.0700 1936  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
22:37:32.0700 1936  C:\Windows\System32\FwRemoteSvr.dll - ok
22:37:32.0706 1936  [ D729084195C952B7ED14AA6DA4B44DCA ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BD6B4EFC-B6E2-4BBA-869F-D1824DBAA3C4}\nisfull.vdm
22:37:32.0706 1936  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BD6B4EFC-B6E2-4BBA-869F-D1824DBAA3C4}\nisfull.vdm - ok
22:37:32.0713 1936  [ E36A13BEB5CC61994A0FF03B1E0B81C4 ] C:\Windows\System32\logishrd\LVPrcInj01.dll
22:37:32.0713 1936  C:\Windows\System32\logishrd\LVPrcInj01.dll - ok
22:37:32.0720 1936  [ 2337DDE804CB385A7DFC2F98C93BAC96 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\query.dll
22:37:32.0720 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\query.dll - ok
22:37:32.0726 1936  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
22:37:32.0726 1936  C:\Windows\SysWOW64\runonce.exe - ok
22:37:32.0733 1936  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
22:37:32.0733 1936  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
22:37:32.0740 1936  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
22:37:32.0740 1936  C:\Windows\System32\Apphlpdm.dll - ok
22:37:32.0746 1936  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
22:37:32.0746 1936  C:\Windows\System32\pnpts.dll - ok
22:37:32.0752 1936  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
22:37:32.0752 1936  C:\Windows\System32\wdiasqmmodule.dll - ok
22:37:32.0759 1936  [ 7601876ADB2A654EFCFA33242E432C42 ] C:\ProgramData\Premium\MagniPic\runB8A4.tmp
22:37:32.0759 1936  C:\ProgramData\Premium\MagniPic\runB8A4.tmp - ok
22:37:32.0765 1936  [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
22:37:32.0765 1936  C:\Program Files\Windows Defender\MpClient.dll - ok
22:37:32.0772 1936  [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
22:37:32.0772 1936  C:\Windows\System32\drivers\WUDFRd.sys - ok
22:37:32.0779 1936  [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
22:37:32.0779 1936  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
22:37:32.0786 1936  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
22:37:32.0786 1936  C:\Windows\SysWOW64\secur32.dll - ok
22:37:32.0792 1936  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
22:37:32.0792 1936  C:\Windows\System32\dimsjob.dll - ok
22:37:32.0800 1936  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
22:37:32.0800 1936  C:\Windows\SysWOW64\propsys.dll - ok
22:37:32.0807 1936  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
22:37:32.0807 1936  C:\Windows\System32\pautoenr.dll - ok
22:37:32.0815 1936  [ 0A866897039E42DF8080BE5DD83BC8E0 ] C:\Windows\SysWOW64\jscript.dll
22:37:32.0815 1936  C:\Windows\SysWOW64\jscript.dll - ok
22:37:32.0822 1936  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
22:37:32.0822 1936  C:\Windows\System32\drivers\WUDFPf.sys - ok
22:37:32.0829 1936  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
22:37:32.0829 1936  C:\Windows\System32\certcli.dll - ok
22:37:32.0836 1936  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
22:37:32.0836 1936  C:\Windows\System32\WUDFSvc.dll - ok
22:37:32.0843 1936  [ AB511CEFF47C2C3F8C8EC8836955EDA5 ] C:\Windows\System32\1033\sqlnclir10.rll
22:37:32.0844 1936  C:\Windows\System32\1033\sqlnclir10.rll - ok
22:37:32.0852 1936  [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
22:37:32.0852 1936  C:\Windows\System32\WUDFHost.exe - ok
22:37:32.0858 1936  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
22:37:32.0858 1936  C:\Windows\System32\CertEnroll.dll - ok
22:37:32.0863 1936  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
22:37:32.0863 1936  C:\Windows\SysWOW64\dnsapi.dll - ok
22:37:32.0869 1936  [ 5629E16C6C15A138F9E0FABF42E2AE78 ] C:\Windows\System32\netbios.dll
22:37:32.0869 1936  C:\Windows\System32\netbios.dll - ok
22:37:32.0876 1936  [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\SysWOW64\mshtml.dll
22:37:32.0876 1936  C:\Windows\SysWOW64\mshtml.dll - ok
22:37:32.0883 1936  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
22:37:32.0883 1936  C:\Windows\SysWOW64\cmd.exe - ok
22:37:32.0890 1936  [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
22:37:32.0890 1936  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
22:37:32.0897 1936  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
22:37:32.0897 1936  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
22:37:32.0905 1936  [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
22:37:32.0905 1936  C:\Windows\System32\WUDFx.dll - ok
22:37:32.0913 1936  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
22:37:32.0913 1936  C:\Windows\SysWOW64\rasadhlp.dll - ok
22:37:32.0920 1936  [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
22:37:32.0920 1936  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
22:37:32.0926 1936  [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
22:37:32.0926 1936  C:\Windows\System32\WMVCORE.DLL - ok
22:37:32.0932 1936  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
22:37:32.0933 1936  C:\Windows\SysWOW64\winbrand.dll - ok
22:37:32.0939 1936  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
22:37:32.0939 1936  C:\Windows\System32\aelupsvc.dll - ok
22:37:32.0945 1936  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
22:37:32.0945 1936  C:\Windows\SysWOW64\shdocvw.dll - ok
22:37:32.0952 1936  [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
22:37:32.0952 1936  C:\Windows\System32\WMASF.DLL - ok
22:37:32.0958 1936  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
22:37:32.0958 1936  C:\Windows\System32\wbem\NCProv.dll - ok
22:37:32.0965 1936  [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
22:37:32.0965 1936  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
22:37:32.0972 1936  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
22:37:32.0972 1936  C:\Windows\System32\PortableDeviceTypes.dll - ok
22:37:32.0979 1936  [ A3FA99A16F10D44EDB7A8C340FA2EE1B ] C:\Windows\SysWOW64\jscript9.dll
22:37:32.0979 1936  C:\Windows\SysWOW64\jscript9.dll - ok
22:37:32.0986 1936  [ 1A211B323E358D3DD03D0FDE07386B56 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\xpsqlbot.dll
22:37:32.0986 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\xpsqlbot.dll - ok
22:37:32.0993 1936  [ 69A1D7C29CFF256BECBD4E39E2159636 ] C:\Windows\SysWOW64\scrrun.dll
22:37:32.0993 1936  C:\Windows\SysWOW64\scrrun.dll - ok
22:37:32.0999 1936  [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
22:37:32.0999 1936  C:\Windows\System32\qmgr.dll - ok
22:37:33.0007 1936  [ 1A7A424F6ED9D8C7DED7F54F04ADC8A8 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\XPStar.DLL
22:37:33.0007 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\XPStar.DLL - ok
22:37:33.0014 1936  [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
22:37:33.0014 1936  C:\Windows\System32\bitsperf.dll - ok
22:37:33.0021 1936  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
22:37:33.0022 1936  C:\Windows\System32\bitsigd.dll - ok
22:37:33.0028 1936  [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
22:37:33.0028 1936  C:\Windows\System32\upnp.dll - ok
22:37:33.0037 1936  [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Ryan\AppData\Local\Temp\0B5C09AE-1428-4E01-BC71-3688BF1CAFC1.exe
22:37:33.0037 1936  C:\Users\Ryan\AppData\Local\Temp\0B5C09AE-1428-4E01-BC71-3688BF1CAFC1.exe - ok
22:37:33.0044 1936  [ 2AF5F890B5BBB95973DE70A55DCE9FD2 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\XPStar.RLL
22:37:33.0044 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\XPStar.RLL - ok
22:37:33.0052 1936  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
22:37:33.0052 1936  C:\Windows\SysWOW64\ncrypt.dll - ok
22:37:33.0061 1936  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
22:37:33.0061 1936  C:\Windows\System32\ssdpsrv.dll - ok
22:37:33.0068 1936  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
22:37:33.0068 1936  C:\Windows\SysWOW64\bcrypt.dll - ok
22:37:33.0075 1936  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
22:37:33.0075 1936  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
22:37:33.0085 1936  [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
22:37:33.0085 1936  C:\Windows\System32\qmgrprxy.dll - ok
22:37:33.0092 1936  [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
22:37:33.0092 1936  C:\Windows\SysWOW64\qmgrprxy.dll - ok
22:37:33.0099 1936  [ EDA509ABBA350ACA97861B902728D7AF ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\xplog70.dll
22:37:33.0099 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\xplog70.dll - ok
22:37:33.0108 1936  [ 1901DA54BC01BE803C580FDCB2F429C6 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\xplog70.rll
22:37:33.0108 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\xplog70.rll - ok
22:37:33.0113 1936  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
22:37:33.0113 1936  C:\Windows\SysWOW64\gpapi.dll - ok
22:37:33.0120 1936  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
22:37:33.0120 1936  C:\Windows\SysWOW64\cryptnet.dll - ok
22:37:33.0126 1936  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
22:37:33.0126 1936  C:\Windows\SysWOW64\SensApi.dll - ok
22:37:33.0133 1936  [ 96D2365A92C1EB4DC141184B126D0C12 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLATXSS.DLL
22:37:33.0133 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLATXSS.DLL - ok
22:37:33.0140 1936  [ 3AD529CE14688D656E413631E7F0EBAC ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\atxcore.dll
22:37:33.0140 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\atxcore.dll - ok
22:37:33.0147 1936  [ C972C8C82A1B00432A4182D29251628B ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\atxcore.rll
22:37:33.0147 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\atxcore.rll - ok
22:37:33.0156 1936  [ 07F74DD405CE2E9C4D501CD9C4789F8E ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLATXSS.RLL
22:37:33.0156 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLATXSS.RLL - ok
22:37:33.0162 1936  [ 7AB1D5898AB1ED22B3EC9B5C04A2212F ] C:\Program Files\Microsoft SQL Server\100\COM\AXSCPHST.DLL
22:37:33.0162 1936  C:\Program Files\Microsoft SQL Server\100\COM\AXSCPHST.DLL - ok
22:37:33.0170 1936  [ 027F54BA783947C5CA8B3D8092950BAA ] C:\Program Files\Microsoft SQL Server\100\COM\Resources\1033\AXSCPHST.RLL
22:37:33.0170 1936  C:\Program Files\Microsoft SQL Server\100\COM\Resources\1033\AXSCPHST.RLL - ok
22:37:33.0178 1936  [ C93FEEF5329AC61BCB5BEA857B6E8FB1 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLOLAPSS.DLL
22:37:33.0178 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLOLAPSS.DLL - ok
22:37:33.0186 1936  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
22:37:33.0186 1936  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
22:37:33.0195 1936  [ 164DD7B46DC54F0BC3E02E9FDAA72E0B ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLOLAPSS.RLL
22:37:33.0195 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLOLAPSS.RLL - ok
22:37:33.0203 1936  [ 62D5B38C9653D3430D8E30FA4CD756CB ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLCMDSS.DLL
22:37:33.0203 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLCMDSS.DLL - ok
22:37:33.0210 1936  [ D8813D1C2BC3CFF2ADE137315D224FB3 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLCMDSS.RLL
22:37:33.0210 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLCMDSS.RLL - ok
22:37:33.0217 1936  [ 816755C21A9607D6983817294D9855EB ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLPOWERSHELLSS.DLL
22:37:33.0217 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLPOWERSHELLSS.DLL - ok
22:37:33.0223 1936  [ 5BE5092E3AF995FE90F5FED695CAC4B9 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLPOWERSHELLSS.RLL
22:37:33.0223 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLPOWERSHELLSS.RLL - ok
22:37:33.0230 1936  [ 42400C7B4C8B6BAC46D78DF233D328D0 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLDTSSS.DLL
22:37:33.0230 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLDTSSS.DLL - ok
22:37:33.0237 1936  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
22:37:33.0237 1936  C:\Windows\SysWOW64\EhStorShell.dll - ok
22:37:33.0243 1936  [ E6323B18C4F59D8BD59BA3B22DB8EC46 ] C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLDTSSS.RLL
22:37:33.0243 1936  C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\Resources\1033\SQLDTSSS.RLL - ok
22:37:33.0250 1936  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
22:37:33.0251 1936  C:\Windows\SysWOW64\ntshrui.dll - ok
22:37:33.0257 1936  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
22:37:33.0257 1936  C:\Windows\SysWOW64\slc.dll - ok
22:37:33.0263 1936  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
22:37:33.0263 1936  C:\Windows\SysWOW64\imageres.dll - ok
22:37:33.0269 1936  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
22:37:33.0269 1936  C:\Windows\System32\wdmaud.drv - ok
22:37:33.0275 1936  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
22:37:33.0275 1936  C:\Windows\System32\ksuser.dll - ok
22:37:33.0282 1936  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
22:37:33.0282 1936  C:\Windows\System32\AudioSes.dll - ok
22:37:33.0289 1936  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
22:37:33.0290 1936  C:\Windows\System32\msacm32.drv - ok
22:37:33.0300 1936  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
22:37:33.0300 1936  C:\Windows\System32\msacm32.dll - ok
22:37:33.0311 1936  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
22:37:33.0312 1936  C:\Windows\System32\midimap.dll - ok
22:37:33.0318 1936  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
22:37:33.0319 1936  C:\Windows\System32\AudioEng.dll - ok
22:37:33.0330 1936  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
22:37:33.0331 1936  C:\Windows\System32\AUDIOKSE.dll - ok
22:37:33.0339 1936  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
22:37:33.0339 1936  C:\Windows\System32\WMALFXGFXDSP.dll - ok
22:37:33.0346 1936  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
22:37:33.0347 1936  C:\Windows\System32\mfplat.dll - ok
22:37:33.0353 1936  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
22:37:33.0354 1936  C:\Windows\System32\ie4uinit.exe - ok
22:37:33.0361 1936  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
22:37:33.0361 1936  C:\Windows\System32\iedkcs32.dll - ok
22:37:33.0365 1936  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
22:37:33.0365 1936  C:\Windows\System32\timedate.cpl - ok
22:37:33.0372 1936  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
22:37:33.0372 1936  C:\Windows\System32\actxprxy.dll - ok
22:37:33.0379 1936  [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
22:37:33.0379 1936  C:\Windows\System32\shdocvw.dll - ok
22:37:33.0386 1936  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
22:37:33.0386 1936  C:\Windows\System32\linkinfo.dll - ok
22:37:33.0392 1936  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
22:37:33.0392 1936  C:\Windows\System32\msiltcfg.dll - ok
22:37:33.0399 1936  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
22:37:33.0399 1936  C:\Windows\System32\msi.dll - ok
22:37:33.0406 1936  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
22:37:33.0406 1936  C:\Windows\System32\gameux.dll - ok
22:37:33.0412 1936  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
22:37:33.0412 1936  C:\Windows\System32\msftedit.dll - ok
22:37:33.0419 1936  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
22:37:33.0419 1936  C:\Windows\System32\msls31.dll - ok
22:37:33.0425 1936  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
22:37:33.0425 1936  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
22:37:33.0432 1936  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
22:37:33.0432 1936  C:\Windows\System32\DeviceCenter.dll - ok
22:37:33.0440 1936  [ 65600640A94863057D4AAB7258624310 ] C:\Program Files\Microsoft IntelliType Pro\itype.exe
22:37:33.0440 1936  C:\Program Files\Microsoft IntelliType Pro\itype.exe - ok
22:37:33.0447 1936  [ DC2755EB981280C312E7BE5EE8CF5D62 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
22:37:33.0447 1936  C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
22:37:33.0454 1936  [ DB3E4EB4BDA2822249D38367DE5905CC ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:37:33.0454 1936  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
22:37:33.0461 1936  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
22:37:33.0461 1936  C:\Windows\System32\thumbcache.dll - ok
22:37:33.0467 1936  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
22:37:33.0467 1936  C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
22:37:33.0474 1936  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
22:37:33.0474 1936  C:\Windows\System32\stobject.dll - ok
22:37:33.0480 1936  [ E37A7354D3E135E61203BE0CFB90E978 ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
22:37:33.0480 1936  C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
22:37:33.0487 1936  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
22:37:33.0487 1936  C:\Windows\System32\batmeter.dll - ok
22:37:33.0493 1936  [ BB7481A1306823D1B6592263F1AB8DD7 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
22:37:33.0493 1936  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
22:37:33.0501 1936  [ 0DC6669BC2B552C0ECC905B6B761F508 ] C:\Program Files\Microsoft Security Client\msseces.exe
22:37:33.0501 1936  C:\Program Files\Microsoft Security Client\msseces.exe - ok
22:37:33.0509 1936  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
22:37:33.0509 1936  C:\Windows\System32\rundll32.exe - ok
22:37:33.0516 1936  [ C7BEFB8747FEFBF4350E325850C8D7E5 ] C:\Windows\System32\nvshext.dll
22:37:33.0516 1936  C:\Windows\System32\nvshext.dll - ok
22:37:33.0522 1936  [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
22:37:33.0522 1936  C:\Windows\System32\ieframe.dll - ok
22:37:33.0529 1936  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
22:37:33.0529 1936  C:\Windows\System32\prnfldr.dll - ok
22:37:33.0535 1936  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
22:37:33.0535 1936  C:\Windows\System32\networkexplorer.dll - ok
22:37:33.0543 1936  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
22:37:33.0543 1936  C:\Windows\SysWOW64\taskschd.dll - ok
22:37:33.0550 1936  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\66028203.sys
22:37:33.0550 1936  C:\Windows\System32\drivers\66028203.sys - ok
22:37:33.0557 1936  [ DC5B5D3A1BF59A74ECA9C2EBB34574BE ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
22:37:33.0557 1936  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
22:37:33.0565 1936  [ 3B4D0AA285F848041DEA8D1B4FF2D132 ] C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe
22:37:33.0565 1936  C:\Program Files\NVIDIA Corporation\Control Panel Client\nvcplui.exe - ok
22:37:33.0571 1936  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
22:37:33.0571 1936  C:\Windows\System32\dsound.dll - ok
22:37:33.0578 1936  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliType Pro\SQMAPI.dll
22:37:33.0578 1936  C:\Program Files\Microsoft IntelliType Pro\SQMAPI.dll - ok
22:37:33.0584 1936  [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
22:37:33.0584 1936  C:\Windows\System32\opengl32.dll - ok
22:37:33.0591 1936  [ 6AEE3BBB1E1CF7B6E8EEC122CE21B020 ] C:\Program Files\Microsoft IntelliType Pro\dpgmkb.dll
22:37:33.0591 1936  C:\Program Files\Microsoft IntelliType Pro\dpgmkb.dll - ok
22:37:33.0597 1936  [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
22:37:33.0597 1936  C:\Windows\System32\glu32.dll - ok
22:37:33.0603 1936  [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
22:37:33.0603 1936  C:\Windows\System32\ddraw.dll - ok
22:37:33.0611 1936  [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
22:37:33.0611 1936  C:\Windows\System32\dciman32.dll - ok
22:37:33.0618 1936  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
22:37:33.0618 1936  C:\Windows\System32\oledlg.dll - ok
22:37:33.0622 1936  [ F44462B746712258EDB209718D759982 ] C:\Windows\System32\RtkCfg64.dll
22:37:33.0622 1936  C:\Windows\System32\RtkCfg64.dll - ok
22:37:33.0628 1936  [ 83D73EF1EB40D521142C50112E001829 ] C:\Windows\System32\RtkAPO64.dll
22:37:33.0628 1936  C:\Windows\System32\RtkAPO64.dll - ok
22:37:33.0635 1936  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
22:37:33.0635 1936  C:\Windows\System32\DXP.dll - ok
22:37:33.0641 1936  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
22:37:33.0641 1936  C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
22:37:33.0647 1936  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
22:37:33.0648 1936  C:\Windows\System32\Syncreg.dll - ok
22:37:33.0654 1936  [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe
22:37:33.0654 1936  C:\Users\Ryan\AppData\Local\Google\Update\GoogleUpdate.exe - ok
22:37:33.0661 1936  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
22:37:33.0661 1936  C:\Windows\System32\ActionCenter.dll - ok
22:37:33.0667 1936  [ 6CBEC289086EC51A263DA1413FF4208F ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
22:37:33.0667 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe - ok
22:37:33.0674 1936  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
22:37:33.0674 1936  C:\Windows\SysWOW64\riched20.dll - ok
22:37:33.0680 1936  [ A1A6509F6D12AB2B435EF08CD4FD675E ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
22:37:33.0680 1936  C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
22:37:33.0687 1936  [ 9040A817D976550912A74B67D2A1DA0A ] C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
22:37:33.0687 1936  C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe - ok
22:37:33.0693 1936  [ 9B5E7EFF0485F39A9663314667D97049 ] C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe
22:37:33.0693 1936  C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe - ok
22:37:33.0699 1936  [ AB11CEFE591909A85E98E27A230807C7 ] C:\Program Files\Windows Sidebar\sbdrop.dll
22:37:33.0699 1936  C:\Program Files\Windows Sidebar\sbdrop.dll - ok
22:37:33.0706 1936  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
22:37:33.0706 1936  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
22:37:33.0712 1936  [ 24081AE1E47A890025A91A25D79EC9B0 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTCore4.dll
22:37:33.0712 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTCore4.dll - ok
22:37:33.0719 1936  [ 42CDFB2273EEC623B903C311B19FB484 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
22:37:33.0719 1936  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe - ok
22:37:33.0726 1936  [ 26345C6180000928E958BFFDF7AF2128 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
22:37:33.0726 1936  C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe - ok
22:37:33.0732 1936  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
22:37:33.0732 1936  C:\Windows\ehome\ehSSO.dll - ok
22:37:33.0738 1936  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
22:37:33.0739 1936  C:\Windows\System32\FXSST.dll - ok
22:37:33.0745 1936  [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:37:33.0745 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
22:37:33.0752 1936  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
22:37:33.0752 1936  C:\Windows\SysWOW64\msimg32.dll - ok
22:37:33.0759 1936  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
22:37:33.0759 1936  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
22:37:33.0766 1936  [ FE821F6FA60E9DF9FDEE69A23488BBAB ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:37:33.0766 1936  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
22:37:33.0773 1936  [ B79515AFF098E5A56DFBD316152534DE ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
22:37:33.0773 1936  C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
22:37:33.0782 1936  [ 52EBE9F1CBCD3B60B08A61C8D3FEEECE ] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
22:37:33.0782 1936  C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe - ok
22:37:33.0789 1936  [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files (x86)\QuickTime\QTTask.exe
22:37:33.0789 1936  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
22:37:33.0797 1936  [ A2482057CC07E43E5E0CA436F0607A9F ] C:\Program Files\Microsoft IntelliType Pro\dpgcmd.dll
22:37:33.0798 1936  C:\Program Files\Microsoft IntelliType Pro\dpgcmd.dll - ok
22:37:33.0805 1936  [ 21C0D7CF8FF91A6ED206CD327FA1CE4B ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll
22:37:33.0805 1936  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll - ok
22:37:33.0813 1936  [ E4401CF27225C1D6E664E86195978562 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
22:37:33.0813 1936  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
22:37:33.0820 1936  [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
22:37:33.0820 1936  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
22:37:33.0827 1936  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
22:37:33.0827 1936  C:\Windows\System32\FXSAPI.dll - ok
22:37:33.0835 1936  [ 68685BBD072F7316C2DA1DB6CEA4535B ] C:\Windows\SysWOW64\QuickTime.qts
22:37:33.0835 1936  C:\Windows\SysWOW64\QuickTime.qts - ok
22:37:33.0842 1936  [ E5EB1B688D25CBBC5E868D88DF35C52C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll
22:37:33.0842 1936  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\XMPP.dll - ok
22:37:33.0849 1936  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
22:37:33.0849 1936  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
22:37:33.0856 1936  [ 10685A9A922E971B2B4D811A374A01E1 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll
22:37:33.0856 1936  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll - ok
22:37:33.0863 1936  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
22:37:33.0863 1936  C:\Windows\SysWOW64\duser.dll - ok
22:37:33.0871 1936  [ CA0C67BA7AEBA6AED5DDB852E6EEA811 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
22:37:33.0871 1936  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
22:37:33.0874 1936  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
22:37:33.0874 1936  C:\Windows\SysWOW64\dui70.dll - ok
22:37:33.0881 1936  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
22:37:33.0882 1936  C:\Windows\System32\FXSRESM.dll - ok
22:37:33.0890 1936  [ C85ECCBAA179719E658FFDBF99221E1E ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
22:37:33.0890 1936  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
22:37:33.0896 1936  [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
22:37:33.0896 1936  C:\Windows\SysWOW64\WinSCard.dll - ok
22:37:33.0903 1936  [ 9BE95786D648A9D0D31CAF5D98DBE3A2 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTGui4.dll
22:37:33.0903 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTGui4.dll - ok
22:37:33.0910 1936  [ 814A169C40B55178BD8E1F79D1ADA649 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
22:37:33.0910 1936  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
22:37:33.0917 1936  [ 9DF319F1C2D4B80D8CE8214EA4899ADF ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
22:37:33.0917 1936  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
22:37:33.0924 1936  [ 015FF027EF66D2B991FCDCE7991DCACB ] C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth156.dll
22:37:33.0924 1936  C:\Program Files (x86)\Common Files\Spigot\Search Settings\wth156.dll - ok
22:37:33.0931 1936  [ 088CF5B6380FB9002F2A4246F812225D ] C:\Windows\SysWOW64\asycfilt.dll
22:37:33.0931 1936  C:\Windows\SysWOW64\asycfilt.dll - ok
22:37:33.0938 1936  [ F0074CEB72EA93608037C98A1F187DB5 ] C:\Windows\System32\Display.dll
22:37:33.0938 1936  C:\Windows\System32\Display.dll - ok
22:37:33.0944 1936  [ 78BFC4EA95666D5CC8DA346F2A0742EB ] C:\Program Files\Microsoft IntelliType Pro\Components\Commands\DPGHnt\DPGHnt.dll
22:37:33.0944 1936  C:\Program Files\Microsoft IntelliType Pro\Components\Commands\DPGHnt\DPGHnt.dll - ok
22:37:33.0951 1936  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
22:37:33.0951 1936  C:\Windows\System32\netshell.dll - ok
22:37:33.0957 1936  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
22:37:33.0957 1936  C:\Windows\System32\FXSSVC.exe - ok
22:37:33.0964 1936  [ 0F261EC4F514926177C70C1832374231 ] C:\Program Files\iPod\bin\iPodService.exe
22:37:33.0964 1936  C:\Program Files\iPod\bin\iPodService.exe - ok
22:37:33.0970 1936  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
22:37:33.0970 1936  C:\Windows\System32\WPDShServiceObj.dll - ok
22:37:33.0977 1936  [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
22:37:33.0977 1936  C:\Program Files\Windows Sidebar\sidebar.exe - ok
22:37:33.0985 1936  [ 5EF8A000C7927E87332D8CB6B7970067 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
22:37:33.0985 1936  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
22:37:33.0992 1936  [ 763E2BBEFCD523AB3B7163A5671BF5EF ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
22:37:33.0992 1936  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
22:37:33.0999 1936  [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
22:37:33.0999 1936  C:\Windows\System32\wersvc.dll - ok
22:37:34.0005 1936  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
22:37:34.0006 1936  C:\Windows\System32\AltTab.dll - ok
22:37:34.0012 1936  [ CFA6B4D4A70D67C6387C29FA6FD703D0 ] C:\Windows\System32\themecpl.dll
22:37:34.0012 1936  C:\Windows\System32\themecpl.dll - ok
22:37:34.0019 1936  [ E7FC2CFE8953E69D665A4A798F4D69D4 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTXml4.dll
22:37:34.0019 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTXml4.dll - ok
22:37:34.0026 1936  [ 1587E43590271373FF7B57D2566D5C0C ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtNetwork4.dll
22:37:34.0026 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtNetwork4.dll - ok
22:37:34.0032 1936  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
22:37:34.0032 1936  C:\Windows\System32\pnidui.dll - ok
22:37:34.0038 1936  [ 91233922BBB9D1B3D76BA99FBE4B0B9E ] C:\Windows\SysWOW64\logishrd\LVPrcInj01.dll
22:37:34.0038 1936  C:\Windows\SysWOW64\logishrd\LVPrcInj01.dll - ok
22:37:34.0045 1936  [ 27F8BF031D9332C9C02AE8C1357185B3 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
22:37:34.0045 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe - ok
22:37:34.0053 1936  [ 0DA8F104F30D6EE053876249230FEB14 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\HelpMain\Main_help.dll
22:37:34.0053 1936  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\HelpMain\Main_help.dll - ok
22:37:34.0060 1936  [ 8FAD04A00BFE6977AA4743C067364B5F ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll
22:37:34.0060 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll - ok
22:37:34.0067 1936  [ CEF58ABD7D7CC34431C9AD79D123F37D ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll
22:37:34.0067 1936  C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll - ok
22:37:34.0074 1936  [ 6F8DCC24AA8F99CE6E99ED76A870E566 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraHelperUI.dll
22:37:34.0074 1936  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraHelperUI.dll - ok
22:37:34.0080 1936  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
22:37:34.0080 1936  C:\Windows\System32\QUTIL.DLL - ok
22:37:34.0088 1936  [ 1D516B617C7E3F00BAF55AFBDE6AC360 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControlsUI.dll
22:37:34.0088 1936  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControlsUI.dll - ok
22:37:34.0095 1936  [ 234AFA322624B3203A2E720F08292B03 ] C:\Windows\System32\cscobj.dll
22:37:34.0095 1936  C:\Windows\System32\cscobj.dll - ok
22:37:34.0101 1936  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
22:37:34.0101 1936  C:\Windows\System32\SearchIndexer.exe - ok
22:37:34.0108 1936  [ 4F355BA4BBE88C91296A92861F1E75D3 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VFXCore.dll
22:37:34.0108 1936  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VFXCore.dll - ok
22:37:34.0115 1936  [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
22:37:34.0115 1936  C:\Windows\System32\UIAnimation.dll - ok
22:37:34.0122 1936  [ 982E1E2534C787541C4216F0F6A091A4 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControls_Core.dll
22:37:34.0122 1936  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControls_Core.dll - ok
22:37:34.0126 1936  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
22:37:34.0126 1936  C:\Windows\System32\srchadmin.dll - ok
22:37:34.0132 1936  [ B4310AFD9B493158EF90D06451438FFD ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VideoEffects.dll
22:37:34.0133 1936  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VideoEffects.dll - ok
22:37:34.0140 1936  [ 723FCCFC592E5A022BD7FFC87B55AE91 ] C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManager.exe
22:37:34.0140 1936  C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManager.exe - ok
22:37:34.0146 1936  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
22:37:34.0146 1936  C:\Windows\System32\tquery.dll - ok
22:37:34.0152 1936  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
22:37:34.0152 1936  C:\Windows\System32\bthprops.cpl - ok
22:37:34.0158 1936  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
22:37:34.0158 1936  C:\Windows\SysWOW64\oledlg.dll - ok
22:37:34.0164 1936  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
22:37:34.0164 1936  C:\Windows\System32\mssrch.dll - ok
22:37:34.0170 1936  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
22:37:34.0171 1936  C:\Windows\System32\msidle.dll - ok
22:37:34.0177 1936  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
22:37:34.0177 1936  C:\Windows\System32\netman.dll - ok
22:37:34.0183 1936  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
22:37:34.0183 1936  C:\Windows\System32\mssprxy.dll - ok
22:37:34.0190 1936  [ E6B7E297B81010C2F2267E01A9D2A2C3 ] C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManagerPS.dll
22:37:34.0190 1936  C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManagerPS.dll - ok
22:37:34.0197 1936  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
22:37:34.0197 1936  C:\Windows\System32\rasdlg.dll - ok
22:37:34.0204 1936  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
22:37:34.0204 1936  C:\Windows\System32\mprapi.dll - ok
22:37:34.0210 1936  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
22:37:34.0210 1936  C:\Windows\System32\dot3api.dll - ok
22:37:34.0216 1936  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
22:37:34.0216 1936  C:\Windows\System32\wlanhlp.dll - ok
22:37:34.0223 1936  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
22:37:34.0223 1936  C:\Windows\System32\wlanapi.dll - ok
22:37:34.0230 1936  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
22:37:34.0230 1936  C:\Windows\System32\en-US\tquery.dll.mui - ok
22:37:34.0236 1936  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
22:37:34.0236 1936  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
22:37:34.0243 1936  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
22:37:34.0243 1936  C:\Windows\System32\WWanAPI.dll - ok
22:37:34.0250 1936  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
22:37:34.0250 1936  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
22:37:34.0257 1936  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
22:37:34.0257 1936  C:\Windows\System32\wwapi.dll - ok
22:37:34.0263 1936  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
22:37:34.0263 1936  C:\Windows\System32\QAGENT.DLL - ok
22:37:34.0271 1936  [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
22:37:34.0271 1936  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
22:37:34.0278 1936  [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
22:37:34.0279 1936  C:\Windows\System32\wmdrmdev.dll - ok
22:37:34.0286 1936  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
22:37:34.0286 1936  C:\Windows\System32\drmv2clt.dll - ok
22:37:34.0293 1936  [ 8729EED479F0FAE2B3FEB6A5CCEA0069 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
22:37:34.0294 1936  C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
22:37:34.0303 1936  [ 6950A94027F8E301E4AAC98BC5BEA6E7 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
22:37:34.0303 1936  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll - ok
22:37:34.0310 1936  [ 0654E4C1F597FC07D6FC7443D4F94840 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
22:37:34.0310 1936  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
22:37:34.0317 1936  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
22:37:34.0317 1936  C:\Windows\SysWOW64\MMDevAPI.dll - ok
22:37:34.0324 1936  [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
22:37:34.0324 1936  C:\Windows\System32\wmp.dll - ok
22:37:34.0330 1936  [ 7601876ADB2A654EFCFA33242E432C42 ] C:\ProgramData\Premium\MagniPic\runA35F.tmp
22:37:34.0330 1936  C:\ProgramData\Premium\MagniPic\runA35F.tmp - ok
22:37:34.0339 1936  [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
22:37:34.0339 1936  C:\Windows\System32\wmploc.DLL - ok
22:37:34.0350 1936  [ 6B97B815716415E0B5DD1A1D4C8B8521 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\chrome.dll
22:37:34.0363 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\chrome.dll - ok
22:37:34.0367 1936  [ 56C546924ACCEF03EAF101FA2B0B4061 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\icudt.dll
22:37:34.0367 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\icudt.dll - ok
22:37:34.0374 1936  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
22:37:34.0374 1936  C:\Windows\System32\webcheck.dll - ok
22:37:34.0379 1936  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
22:37:34.0379 1936  C:\Windows\System32\SyncCenter.dll - ok
22:37:34.0385 1936  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
22:37:34.0385 1936  C:\Windows\System32\imapi2.dll - ok
22:37:34.0392 1936  [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
22:37:34.0392 1936  C:\Program Files\Internet Explorer\ieproxy.dll - ok
22:37:34.0398 1936  [ 71C4F42DC8DB668E826DA79462EA741E ] C:\Windows\SysWOW64\KBDUS.DLL
22:37:34.0398 1936  C:\Windows\SysWOW64\KBDUS.DLL - ok
22:37:34.0405 1936  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
22:37:34.0405 1936  C:\Windows\SysWOW64\nlaapi.dll - ok
22:37:34.0411 1936  [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
22:37:34.0411 1936  C:\Windows\System32\wmpps.dll - ok
22:37:34.0418 1936  [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
22:37:34.0418 1936  C:\Windows\System32\wmpmde.dll - ok
22:37:34.0425 1936  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
22:37:34.0425 1936  C:\Windows\System32\hgcpl.dll - ok
22:37:34.0431 1936  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
22:37:34.0431 1936  C:\Windows\System32\fdPHost.dll - ok
22:37:34.0438 1936  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
22:37:34.0438 1936  C:\Windows\System32\fdWSD.dll - ok
22:37:34.0445 1936  [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
22:37:34.0445 1936  C:\Windows\System32\WinSATAPI.dll - ok
22:37:34.0452 1936  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
22:37:34.0452 1936  C:\Windows\System32\fdSSDP.dll - ok
22:37:34.0459 1936  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
22:37:34.0459 1936  C:\Windows\SysWOW64\mssprxy.dll - ok
22:37:34.0466 1936  [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
22:37:34.0466 1936  C:\Windows\System32\MSMPEG2ENC.DLL - ok
22:37:34.0472 1936  [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
22:37:34.0472 1936  C:\Windows\System32\fdProxy.dll - ok
22:37:34.0479 1936  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
22:37:34.0479 1936  C:\Windows\SysWOW64\mscms.dll - ok
22:37:34.0485 1936  [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
22:37:34.0485 1936  C:\Windows\System32\P2P.dll - ok
22:37:34.0492 1936  [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
22:37:34.0492 1936  C:\Windows\System32\ListSvc.dll - ok
22:37:34.0498 1936  [ 43C9CF6825CEA58F1815B7C3DBBB385C ] C:\Windows\SysWOW64\Wpc.dll
22:37:34.0498 1936  C:\Windows\SysWOW64\Wpc.dll - ok
22:37:34.0504 1936  [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
22:37:34.0504 1936  C:\Windows\System32\devenum.dll - ok
22:37:34.0511 1936  [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
22:37:34.0511 1936  C:\Windows\System32\IdListen.dll - ok
22:37:34.0517 1936  [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
22:37:34.0518 1936  C:\Windows\System32\msdmo.dll - ok
22:37:34.0524 1936  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
22:37:34.0524 1936  C:\Windows\SysWOW64\wevtapi.dll - ok
22:37:34.0530 1936  [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
22:37:34.0530 1936  C:\Windows\System32\hgprint.dll - ok
22:37:34.0536 1936  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
22:37:34.0536 1936  C:\Windows\SysWOW64\samlib.dll - ok
22:37:34.0542 1936  [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
22:37:34.0542 1936  C:\Windows\System32\pnrpsvc.dll - ok
22:37:34.0549 1936  [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\SysWOW64\msftedit.dll
22:37:34.0549 1936  C:\Windows\SysWOW64\msftedit.dll - ok
22:37:34.0556 1936  [ 94097D7604CCC99982D13D945D875F94 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\pdf.dll
22:37:34.0556 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\pdf.dll - ok
22:37:34.0562 1936  [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
22:37:34.0562 1936  C:\Windows\System32\p2psvc.dll - ok
22:37:34.0569 1936  [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
22:37:34.0569 1936  C:\Windows\System32\upnphost.dll - ok
22:37:34.0575 1936  [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
22:37:34.0576 1936  C:\Windows\System32\P2PGraph.dll - ok
22:37:34.0582 1936  [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Windows\SysWOW64\D3DCompiler_43.dll
22:37:34.0582 1936  C:\Windows\SysWOW64\D3DCompiler_43.dll - ok
22:37:34.0589 1936  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
22:37:34.0589 1936  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
22:37:34.0595 1936  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
22:37:34.0595 1936  C:\Windows\System32\wbem\wmiprov.dll - ok
22:37:34.0602 1936  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
22:37:34.0602 1936  C:\Windows\SysWOW64\linkinfo.dll - ok
22:37:34.0608 1936  [ 86E39E9161C3D930D93822F1563C280D ] C:\Windows\SysWOW64\D3DX9_43.dll
22:37:34.0608 1936  C:\Windows\SysWOW64\D3DX9_43.dll - ok
22:37:34.0615 1936  [ 10921A9733A6DEE90F98B059E278FBFE ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ppgooglenaclpluginchrome.dll
22:37:34.0615 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ppgooglenaclpluginchrome.dll - ok
22:37:34.0623 1936  [ A5B66F56D5994FCA083DE44DFDA3C038 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll
22:37:34.0623 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll - ok
22:37:34.0627 1936  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
22:37:34.0627 1936  C:\Windows\SysWOW64\actxprxy.dll - ok
22:37:34.0634 1936  [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
22:37:34.0634 1936  C:\Windows\System32\udhisapi.dll - ok
22:37:34.0640 1936  [ 7EBB572149DE6FF2AE529DE1D4044884 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\libglesv2.dll
22:37:34.0641 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\libglesv2.dll - ok
22:37:34.0647 1936  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
22:37:34.0647 1936  C:\Windows\SysWOW64\d3d9.dll - ok
22:37:34.0653 1936  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
22:37:34.0653 1936  C:\Windows\System32\drprov.dll - ok
22:37:34.0660 1936  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
22:37:34.0660 1936  C:\Windows\System32\ntlanman.dll - ok
22:37:34.0666 1936  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
22:37:34.0666 1936  C:\Windows\System32\davclnt.dll - ok
22:37:34.0672 1936  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
22:37:34.0672 1936  C:\Windows\System32\davhlpr.dll - ok
22:37:34.0679 1936  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
22:37:34.0679 1936  C:\Windows\SysWOW64\d3d8thk.dll - ok
22:37:34.0686 1936  [ B12F5EED5B2C59DF9FC1466F458F939C ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\libegl.dll
22:37:34.0686 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\libegl.dll - ok
22:37:34.0694 1936  [ 365E96584583C9FAE85953BD1A2D9850 ] C:\Windows\SysWOW64\nvd3dum.dll
22:37:34.0694 1936  C:\Windows\SysWOW64\nvd3dum.dll - ok
22:37:34.0701 1936  [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
22:37:34.0701 1936  C:\Windows\System32\drttransport.dll - ok
22:37:34.0708 1936  [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
22:37:34.0708 1936  C:\Windows\System32\drt.dll - ok
22:37:34.0714 1936  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
22:37:34.0714 1936  C:\Windows\SysWOW64\powrprof.dll - ok
22:37:34.0721 1936  [ 408416EB4F50DAB83625481C0B4E6692 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
22:37:34.0721 1936  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll - ok
22:37:34.0729 1936  [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
22:37:34.0729 1936  C:\Windows\SysWOW64\dxgi.dll - ok
22:37:34.0736 1936  [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
22:37:34.0737 1936  C:\Windows\SysWOW64\dxva2.dll - ok
22:37:34.0743 1936  [ FDBA1DEC4F9BE4274A00B9B850C63484 ] C:\Windows\SysWOW64\mf.dll
22:37:34.0743 1936  C:\Windows\SysWOW64\mf.dll - ok
22:37:34.0749 1936  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
22:37:34.0749 1936  C:\Windows\SysWOW64\atl.dll - ok
22:37:34.0756 1936  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
22:37:34.0756 1936  C:\Windows\SysWOW64\mfplat.dll - ok
22:37:34.0762 1936  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
22:37:34.0762 1936  C:\Windows\SysWOW64\avrt.dll - ok
22:37:34.0769 1936  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
22:37:34.0769 1936  C:\Windows\SysWOW64\ksuser.dll - ok
22:37:34.0775 1936  [ 3DE43BFDAF3F8979699650202AA18B12 ] C:\Windows\SysWOW64\msmpeg2vdec.dll
22:37:34.0775 1936  C:\Windows\SysWOW64\msmpeg2vdec.dll - ok
22:37:34.0782 1936  [ 53AF1750FD45DDD705C9B68C7DC58827 ] C:\Windows\SysWOW64\evr.dll
22:37:34.0782 1936  C:\Windows\SysWOW64\evr.dll - ok
22:37:34.0788 1936  [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\SysWOW64\sqmapi.dll
22:37:34.0788 1936  C:\Windows\SysWOW64\sqmapi.dll - ok
22:37:34.0794 1936  [ 3FDC5B918B767DAB2963B1AA60ECF1AE ] C:\Windows\SysWOW64\nvapi.dll
22:37:34.0794 1936  C:\Windows\SysWOW64\nvapi.dll - ok
22:37:34.0801 1936  [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
22:37:34.0801 1936  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
22:37:34.0808 1936  [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
22:37:34.0808 1936  C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
22:37:34.0815 1936  [ 5BACFD51D926774C8DD8028BEC9B4374 ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe
22:37:34.0815 1936  C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok
22:37:34.0822 1936  [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
22:37:34.0822 1936  C:\Windows\System32\PhotoMetadataHandler.dll - ok
22:37:34.0829 1936  [ EC155C323A3B777441BF6A2BF4077FCC ] C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.139\pepflashplayer.dll
22:37:34.0829 1936  C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.139\pepflashplayer.dll - ok
22:37:34.0836 1936  [ 4ABF9443A614E22FC5577B6615EC3248 ] C:\Users\Ryan\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
22:37:34.0836 1936  C:\Users\Ryan\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe - ok
22:37:34.0843 1936  [ 5F1DB290BABE88B17DB48D6262886D95 ] C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll
22:37:34.0843 1936  C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.57\PepperFlash\pepflashplayer.dll - ok
22:37:34.0851 1936  [ 21FF3F07336CE4F8DF6AF1746BC26AAB ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
22:37:34.0851 1936  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll - ok
22:37:34.0858 1936  [ 9A6101F29E2E9D41B99CBCC8F106E8FE ] C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
22:37:34.0858 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL - ok
22:37:34.0865 1936  [ 21FF3F07336CE4F8DF6AF1746BC26AAB ] C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
22:37:34.0865 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll - ok
22:37:34.0871 1936  [ 419680FCE774976FD752EB425D91AEDF ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
22:37:34.0871 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll - ok
22:37:34.0878 1936  [ DE5507DBA44CC5B6869205871B64A587 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
22:37:34.0879 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll - ok
22:37:34.0883 1936  [ 2DA7883A884BE60F9EB2810F67E0E361 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
22:37:34.0883 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll - ok
22:37:34.0890 1936  [ BB28A86CDFFFBB041C72AD9EFEAA00D0 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
22:37:34.0890 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll - ok
22:37:34.0897 1936  [ 16112E74A62381C69456566D35F9E51E ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
22:37:34.0897 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll - ok
22:37:34.0904 1936  [ BB7F5F4966E76578A3EC0D11C444C545 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
22:37:34.0904 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll - ok
22:37:34.0910 1936  [ 11EF47BE3D8A4A943E10A63870C1F2C6 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
22:37:34.0910 1936  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll - ok
22:37:34.0918 1936  [ 419680FCE774976FD752EB425D91AEDF ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll
22:37:34.0918 1936  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll - ok
22:37:34.0925 1936  [ DE5507DBA44CC5B6869205871B64A587 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll
22:37:34.0925 1936  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll - ok
22:37:34.0932 1936  [ 2DA7883A884BE60F9EB2810F67E0E361 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll
22:37:34.0932 1936  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll - ok
22:37:34.0939 1936  [ BB28A86CDFFFBB041C72AD9EFEAA00D0 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll
22:37:34.0939 1936  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll - ok
22:37:34.0946 1936  [ 16112E74A62381C69456566D35F9E51E ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
22:37:34.0946 1936  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll - ok
22:37:34.0952 1936  [ BB7F5F4966E76578A3EC0D11C444C545 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll
22:37:34.0952 1936  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll - ok
22:37:34.0959 1936  [ 0F082AA29D17B61EE9B4D62D2300CD82 ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
22:37:34.0959 1936  C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
22:37:34.0967 1936  [ 11EF47BE3D8A4A943E10A63870C1F2C6 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll
22:37:34.0967 1936  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll - ok
22:37:34.0973 1936  [ E0BCE90537E4A41AF36D5BDD5963A09D ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
22:37:34.0973 1936  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - ok
22:37:34.0981 1936  [ 464822A1F51A2340FE8BE020A1EA3052 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
22:37:34.0981 1936  C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
22:37:34.0988 1936  [ EBD27B24F7925C686D2EB59BC3BC3BA2 ] C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin.dll
22:37:34.0988 1936  C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin.dll - ok
22:37:34.0996 1936  [ B78F4C2C592C87DF54E8E0C6AAEF3874 ] C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
22:37:34.0996 1936  C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll - ok
22:37:35.0003 1936  [ 586FDC4E02623EE228EC35B9604AE5F2 ] C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
22:37:35.0003 1936  C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll - ok
22:37:35.0010 1936  [ C04FCB7EEBEB5097B30468828F20FB9E ] C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
22:37:35.0010 1936  C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll - ok
22:37:35.0018 1936  [ B30BFE5817EF9BB23EF299E10C210C31 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
22:37:35.0018 1936  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll - ok
22:37:35.0025 1936  [ CB2DB588335669AA88076DE419B2964B ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
22:37:35.0025 1936  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll - ok
22:37:35.0032 1936  [ 0CA99C5ACF7D36B6EC8F504A1F11902B ] C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
22:37:35.0032 1936  C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll - ok
22:37:35.0039 1936  [ 2EE3BDE552C7960DF92A4C8F129F5B4F ] C:\Program Files (x86)\Illustrate\dBpoweramp\dBPropertyHandler.dll
22:37:35.0039 1936  C:\Program Files (x86)\Illustrate\dBpoweramp\dBPropertyHandler.dll - ok
22:37:35.0046 1936  [ 680D70FD73C93E0A525AAB978EDB94E2 ] C:\Program Files (x86)\Illustrate\dBpoweramp\GetPopupInfo.exe
22:37:35.0046 1936  C:\Program Files (x86)\Illustrate\dBpoweramp\GetPopupInfo.exe - ok
22:37:35.0053 1936  [ 9998B10BAD87E3E0C9ADCE9A8E779227 ] C:\Program Files (x86)\Illustrate\dBpoweramp\decoder\Wave.dll
22:37:35.0053 1936  C:\Program Files (x86)\Illustrate\dBpoweramp\decoder\Wave.dll - ok
22:37:35.0060 1936  [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
22:37:35.0060 1936  C:\Windows\System32\WindowsCodecsExt.dll - ok
22:37:35.0066 1936  [ 3E31FF7F2EA6E7BB507605C2B9081FA3 ] C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll
22:37:35.0067 1936  C:\Program Files (x86)\Virtools\3D Life Player\npvirtools.dll - ok
22:37:35.0074 1936  [ AC421A44DE902F2627F1E63793ED89CD ] C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
22:37:35.0074 1936  C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll - ok
22:37:35.0081 1936  [ 3FCF47BD73094FA62D81373515F46110 ] C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
22:37:35.0081 1936  C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll - ok
22:37:35.0088 1936  [ 586FDC4E02623EE228EC35B9604AE5F2 ] C:\Users\Ryan\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
22:37:35.0088 1936  C:\Users\Ryan\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll - ok
22:37:35.0095 1936  [ 54FC590185D7D00D65E53B9A5990DC14 ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll
22:37:35.0095 1936  C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll - ok
22:37:35.0102 1936  [ 96C406EC877EB23BB753E59B776C6BC7 ] C:\Windows\SysWOW64\npDeployJava1.dll
22:37:35.0102 1936  C:\Windows\SysWOW64\npDeployJava1.dll - ok
22:37:35.0109 1936  [ D892C77AFA8AFABA6F474A7DA401BD7C ] C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
22:37:35.0109 1936  C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - ok
22:37:35.0116 1936  [ 711A2E6A55EC7BFD59B5F649D58B704B ] C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
22:37:35.0116 1936  C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll - ok
22:37:35.0124 1936  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:37:35.0124 1936  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
22:37:35.0131 1936  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
22:37:35.0131 1936  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
22:37:35.0136 1936  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
22:37:35.0136 1936  C:\Windows\SysWOW64\mscoree.dll - ok
22:37:35.0143 1936  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:37:35.0143 1936  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
22:37:35.0149 1936  [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
22:37:35.0149 1936  C:\Windows\System32\msvcr100_clr0400.dll - ok
22:37:35.0156 1936  [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
22:37:35.0156 1936  C:\Windows\System32\FntCache.dll - ok
22:37:35.0162 1936  [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
22:37:35.0162 1936  C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
22:37:35.0169 1936  [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
22:37:35.0169 1936  C:\Windows\System32\IPBusEnum.dll - ok
22:37:35.0175 1936  [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
22:37:35.0175 1936  C:\Windows\System32\sppsvc.exe - ok
22:37:35.0181 1936  [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
22:37:35.0181 1936  C:\Windows\System32\drivers\spsys.sys - ok
22:37:35.0188 1936  [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
22:37:35.0188 1936  C:\Windows\System32\wscsvc.dll - ok
22:37:35.0194 1936  [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
22:37:35.0194 1936  C:\Windows\System32\wuapi.dll - ok
22:37:35.0200 1936  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
22:37:35.0200 1936  C:\Windows\System32\wuaueng.dll - ok
22:37:35.0206 1936  [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
22:37:35.0206 1936  C:\Windows\System32\sppwinob.dll - ok
22:37:35.0213 1936  [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
22:37:35.0213 1936  C:\Windows\System32\wups.dll - ok
22:37:35.0219 1936  [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
22:37:35.0219 1936  C:\Windows\System32\mspatcha.dll - ok
22:37:35.0226 1936  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
22:37:35.0226 1936  C:\Windows\System32\wups2.dll - ok
22:37:35.0233 1936  [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
22:37:35.0233 1936  C:\Windows\System32\sppobjs.dll - ok
22:37:35.0239 1936  [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
22:37:35.0239 1936  C:\Windows\System32\drivers\asyncmac.sys - ok
22:37:35.0246 1936  [ 7601876ADB2A654EFCFA33242E432C42 ] C:\ProgramData\Premium\MagniPic\run8DCD.tmp
22:37:35.0246 1936  C:\ProgramData\Premium\MagniPic\run8DCD.tmp - ok
22:37:35.0253 1936  [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
22:37:35.0253 1936  C:\Windows\System32\wscisvif.dll - ok
22:37:35.0259 1936  [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
22:37:35.0259 1936  C:\Windows\System32\wscproxystub.dll - ok
22:37:35.0265 1936  [ AF7224A563FBC22F7212A560377D9958 ] C:\Program Files (x86)\Illustrate\dBpoweramp\decoder\mp3.dll
22:37:35.0265 1936  C:\Program Files (x86)\Illustrate\dBpoweramp\decoder\mp3.dll - ok
22:37:35.0269 1936  ============================================================
22:37:35.0269 1936  Scan finished
22:37:35.0269 1936  ============================================================
22:37:35.0290 2112  Detected object count: 0
22:37:35.0290 2112  Actual detected object count: 0
22:43:33.0520 4816  Deinitialize success


#5 incandescentface

incandescentface
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:27 AM

Posted 10 February 2013 - 09:51 AM

aswMBR:

 

 

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-09 23:23:10
-----------------------------
23:23:10.352    OS Version: Windows x64 6.1.7601 Service Pack 1
23:23:10.353    Number of processors: 4 586 0x203
23:23:10.354    ComputerName: RON-PC  UserName: Ryan
23:23:16.418    Initialize success
23:23:34.510    AVAST engine defs: 13020901
23:23:40.682    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
23:23:40.685    Disk 0 Vendor: WDC_WD6400AAKS-22A7B2 01.03B01 Size: 610480MB BusType: 3
23:23:40.696    Disk 0 MBR read successfully
23:23:40.699    Disk 0 MBR scan
23:23:40.704    Disk 0 Windows 7 default MBR code
23:23:40.707    Disk 0 Partition 1 00     27 Hidden NTFS WinRE NTFS        10001 MB offset 63
23:23:40.721    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS       600477 MB offset 20484096
23:23:40.741    Disk 0 scanning C:\Windows\system32\drivers
23:24:09.489    Service scanning
23:24:50.600    Modules scanning
23:24:50.601    Disk 0 trace - called modules:
23:24:50.612    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys 
23:24:50.613    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a46060]
23:24:50.614    3 CLASSPNP.SYS[fffff8800100243f] -> nt!IofCallDriver -> [0xfffffa8003ae8580]
23:24:50.615    5 ACPI.sys[fffff88000fa87a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8003ae7060]
23:24:52.523    AVAST engine scan C:\Windows
23:24:55.368    AVAST engine scan C:\Windows\system32
23:32:38.843    AVAST engine scan C:\Windows\system32\drivers
23:33:17.732    AVAST engine scan C:\Users\Ryan
23:45:07.324    AVAST engine scan C:\ProgramData
00:00:48.666    File: C:\ProgramData\Premium\MagniPic\MagniPic.exe  **INFECTED** Win32:Dropper-gen [Drp]
00:01:20.064    Scan finished successfully
08:05:03.798    Disk 0 MBR has been saved successfully to "C:\Users\Ryan\Desktop\MBR.dat"
08:05:03.804    The log file has been saved successfully to "C:\Users\Ryan\Desktop\aswMBR.txt"
 
ESET results:
 
C:\Users\All Users\MagniPic\51171c4269bf4.dll    a variant of Win32/Adware.MultiPlug.I application
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.10    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.11    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.12    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.13    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.14    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.15    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.16    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.17    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.18    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.19    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.6    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.7    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.8    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.9    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\LMMS\Babylon9_setup.exe    Win32/Toolbar.Babylon application    cleaned by deleting - quarantined
C:\Program Files (x86)\MagniPic\sprotector.dll    a variant of Win32/SProtector.A application    cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\YTD Toolbar\WidgiHelper.exe    Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\Program Files (x86)\YTD Toolbar\IE\6.6\ytdToolbarIE.dll    a variant of Win32/Toolbar.Widgi application    cleaned by deleting - quarantined
C:\ProgramData\MagniPic\51171c4269bf4.dll    a variant of Win32/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\Users\Carrie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PUQ3TPUB\youtubedownloaderToolbar[1].msi    a variant of Win32/Toolbar.Widgi application    deleted - quarantined
C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gajdakkpkaegleoajmnfpffkdfjlmdii\1\51171c42699be3.00917405.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Ryan\AppData\Local\Temp\Bunndle\BunndleOfferManager.dll    a variant of Win32/Bunndle application    cleaned by deleting - quarantined
C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\yirrz02i.default\extensions\staged\51171c4269a62@51171c4269a9c.com\content\bg.js    Win32/Adware.MultiPlug.H application    cleaned by deleting - quarantined
C:\Users\Ryan\Downloads\setup.exe    Win32/OutBrowse.C application    cleaned by deleting - quarantined
C:\Users\Ryan\Downloads\solitaire.exe    Win32/InstallMonetizer.AF application    cleaned by deleting - quarantined
C:\Windows\Installer\62bf9.msi    a variant of Win32/Toolbar.Widgi application    deleted - quarantined
 

delete quarantined files? also, that first listed file, the magnipic one, wasn't dealt with. but you probably saw that



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 AM

Posted 10 February 2013 - 09:53 AM

Delete the quarantined files

 

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log



#7 incandescentface

incandescentface
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:27 AM

Posted 10 February 2013 - 03:41 PM

Malwarebytes Anti-Malware 1.70.0.1100

 

www.malwarebytes.org
 
Database version: v2013.02.10.07
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Ryan :: RON-PC [administrator]
 
2/10/2013 12:23:06 PM
mbam-log-2013-02-10 (12-23-06).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 426793
Time elapsed: 5 minute(s), 14 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 9
HKCR\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Software.Updater) -> Quarantined and deleted successfully.
HKCR\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Software.Updater) -> Quarantined and deleted successfully.
HKCR\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Software.Updater) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} (PUP.Software.Updater) -> Quarantined and deleted successfully.
HKCR\Updater.AmiUpd.1 (PUP.Software.Updater) -> Quarantined and deleted successfully.
HKCR\Updater.AmiUpd (PUP.Software.Updater) -> Quarantined and deleted successfully.
HKCR\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} (PUP.Adware.Magnipic) -> Quarantined and deleted successfully.
HKCR\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F} (PUP.Adware.Magnipic) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EB03EF39-C655-D560-FA95-79182B837D64} (PUP.Adware.Magnipic) -> Quarantined and deleted successfully.
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.StartPage) -> Bad: (http://searchab.com/?aff=7&uid=28f33da9-7333-11e2-88a3-00226847424b) Good: (http://www.google.com) -> Quarantined and repaired successfully.
 
Folders Detected: 1
C:\ProgramData\MagniPic (PUP.Adware.Magnipic) -> Quarantined and deleted successfully.
 
Files Detected: 5
C:\Users\Ryan\AppData\Local\SwvUpdater\Updater.exe (PUP.Software.Updater) -> Quarantined and deleted successfully.
C:\Windows\Tasks\AmiUpdXp.job (PUP.Software.Updater) -> Quarantined and deleted successfully.
C:\ProgramData\MagniPic\51171c4269bf4.tlb (PUP.Adware.Magnipic) -> Quarantined and deleted successfully.
C:\ProgramData\MagniPic\settings.ini (PUP.Adware.Magnipic) -> Quarantined and deleted successfully.
C:\ProgramData\MagniPic\uninstall.exe (PUP.Adware.Magnipic) -> Quarantined and deleted successfully.
 
(end)
 
 
minitoolbox
 
 
MiniToolBox by Farbar  Version:10-01-2013
Ran by Ryan (administrator) on 10-02-2013 at 12:24:41
Running from "C:\Users\Ryan\Downloads"
Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller = Local Area Connection (Connected)
Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64 = Local Area Connection 3 (Hardware not present)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection 3" nexthop=142.5.208.1 metric=1 publish=Yes
set interface interface="Local Area Connection 3" forwarding=enabled advertise=enabled metric=1 nud=enabled
add address name="Local Area Connection 3" address=142.5.222.161 mask=255.255.240.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Ron-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.2wire.net
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : 00-22-68-47-42-4B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c9c1:1e35:7aa3:3928%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, February 09, 2013 11:18:57 PM
   Lease Expires . . . . . . . . . . : Monday, February 11, 2013 11:18:57 AM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 234889832
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-18-E2-9D-00-22-68-47-42-4B
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:1803:1c5f:b974:2faa(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::1803:1c5f:b974:2faa%21(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.gateway.2wire.net:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.2wire.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  homeportal
Address:  192.168.1.254
 
Name:    google.com
Addresses:  2607:f8b0:4000:803::1007
      173.194.46.9
      173.194.46.14
      173.194.46.0
      173.194.46.1
      173.194.46.2
      173.194.46.3
      173.194.46.4
      173.194.46.5
      173.194.46.6
      173.194.46.7
      173.194.46.8
 
 
Pinging google.com [173.194.46.14] with 32 bytes of data:
Reply from 173.194.46.14: bytes=32 time=28ms TTL=52
Reply from 173.194.46.14: bytes=32 time=27ms TTL=52
 
Ping statistics for 173.194.46.14:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 27ms, Maximum = 28ms, Average = 27ms
Server:  homeportal
Address:  192.168.1.254
 
Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=698ms TTL=43
Reply from 98.139.183.24: bytes=32 time=678ms TTL=43
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 678ms, Maximum = 698ms, Average = 688ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...00 22 68 47 42 4b ......Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller
  1...........................Software Loopback Interface 1
 21...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.64     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.64    276
     192.168.1.64  255.255.255.255         On-link      192.168.1.64    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.64    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.64    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.64    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      142.5.208.1       1
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 21     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 21     58 2001::/32                On-link
 21    306 2001:0:9d38:6ab8:1803:1c5f:b974:2faa/128
                                    On-link
 10    276 fe80::/64                On-link
 21    306 fe80::/64                On-link
 21    306 fe80::1803:1c5f:b974:2faa/128
                                    On-link
 10    276 fe80::c9c1:1e35:7aa3:3928/128
                                    On-link
  1    306 ff00::/8                 On-link
 21    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (02/10/2013 00:24:48 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:24:48 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:24:47 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:24:46 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:23:48 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:23:48 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:23:47 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:23:46 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:22:48 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
Error: (02/10/2013 00:22:47 PM) (Source: MagniPicUpdater) (User: )
Description: BITS download job failed -2145844844 HTTP status 404: The requested URL does not exist on the server.
 
 
System errors:
=============
Error: (02/09/2013 11:23:49 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (02/09/2013 11:23:49 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (02/09/2013 11:18:43 PM) (Source: BugCheck) (User: )
Description: 0x00000019 (0x0000000000000003, 0xfffffa8003965a40, 0x0000000bd45ec4e3, 0xfffffa8003965a40)C:\Windows\MEMORY.DMP020913-26161-01
 
Error: (02/09/2013 11:18:42 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:17:04 PM on ?2/?9/?2013 was unexpected.
 
Error: (02/09/2013 10:36:44 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (02/09/2013 10:36:44 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (02/09/2013 09:39:00 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2CDF6C38-00A7-452A-BF9C-A87341FAA9E1} because another computer on the network has the same name.  The server could not start.
 
Error: (02/09/2013 03:45:36 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (02/09/2013 03:45:36 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (02/08/2013 05:12:30 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2011-01-09 02:35:54.210
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unknown Device Identifier\GWIOPM.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-01-09 02:35:54.195
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unknown Device Identifier\GWIOPM.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-01-09 02:35:47.687
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unknown Device Identifier\GWIOPM.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-01-09 02:35:47.588
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Unknown Device Identifier\GWIOPM.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
 Update for Microsoft Office 2007 (KB2508958)
123CopyDVDPlatinum (Version: 2012)
123Movies2Android (Version: 2012)
3DVIA player 5.0 (Version: 5.0.0.12)
7-Zip 9.20
Ableton Live 8 (Version: 8.0.0.0)
Adobe AIR (Version: 3.5.0.600)
Adobe Community Help (Version: 3.2.1)
Adobe Community Help (Version: 3.2.1.650)
Adobe Flash Media Live Encoder 3.2 (Version: 3.2.0)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.135)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Photoshop.com Inspiration Browser (Version: 3.07)
Adobe Reader XI (Version: 11.0.00)
Adobe Shockwave Player 11.5 (Version: 11.5.8.612)
Amazon MP3 Downloader 1.0.15 (Version: 1.0.15)
Amazon MP3 Uploader (Version: 1.0.7)
AMD DnD V1.0.19 (Version: 1.0.19)
Amnesia: The Dark Descent
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
ARMA 2
ARMA 2: Operation Arrowhead
ATI Catalyst Install Manager (Version: 3.0.745.0)
ATI Catalyst Registration (Version: 3.00.0000)
Audacity 2.0
Auditorium
AviSynth 2.5
BattlEye for OA Uninstall
BioShock (Version: 2.5.0000)
Bonjour (Version: 3.0.0.10)
BUFFALO NAS Navigator2
CameraHelperMsi (Version: 13.00.1774.0)
Canon MP530
Catalyst Control Center InstallProxy (Version: 2010.1125.2142.38865)
ccc-utility64 (Version: 2010.1125.2142.38865)
CCleaner (Version: 3.27)
Cisco AnyConnect Secure Mobility Client  (Version: 3.0.1047)
Cisco AnyConnect Secure Mobility Client (Version: 3.0.1047)
Crysis® (Version: 1.00.0000)
D3DX10 (Version: 15.4.2368.0902)
Dark Messiah: Might and Magic - Single Player
Dawn of War - Dark Crusade (Version: 1.00.0000)
dBpoweramp Music Converter (Version: Release 14.2)
Dead Space™ (Version: 1.0.222.0)
Dear Esther
Deus Ex: Human Revolution
Diablo III (Version: 1.0.6.13644)
E.Y.E: Divine Cybermancy
EasyBits GO
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
eTools
Eufloria - Demo
Euro Truck Simulator 1.3 (Version: 1.3)
EZ Vinyl/Tape Converter 7.4 by MixMeister
F.E.A.R.
Galactic Civilizations II
GameFly (Version: 1.2.182)
GameSpy Arcade
Garry's Mod
GDR 2573 for SQL Server 2008 (KB2494096) (64-bit) (Version: 10.1.2573.0)
GoldWave v5.67
Google Chrome (Version: 23.0.1271.97)
Google Chrome (Version: 24.0.1312.57)
Google Earth (Version: 6.2.2.6613)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
GPGNet (Version: 1.0.0)
Half-Life 2
Half-Life 2: Episode One
Half-Life 2: Episode Two
Halo 2 for Windows Vista
Halo 2 for Windows Vista (Version: 1.0.0.0)
Hello World 0.1
Heroes of Might and Magic® III
HP Photosmart Plus B210 series Basic Device Software (Version: 22.0.334.0)
HP Photosmart Plus B210 series Help (Version: 140.0.54.54)
Impulse
Impulse (Version: 1.0)
IrfanView (remove only) (Version: 4.32)
iTunes (Version: 11.0.1.12)
Java 7 Update 11 (64-bit) (Version: 7.0.110)
Java 7 Update 9 (Version: 7.0.90)
Java SE Development Kit 7 Update 11 (64-bit) (Version: 1.7.0.110)
join.me (Version: 1.6.0.172)
LADSPA_plugins-win-0.4.15
LAME v3.98.2 for Audacity
League of Legends (Version: 1.0.0)
League of Legends (Version: 1.0020)
League of Legends (Version: 1.3)
Left 4 Dead
Left 4 Dead 2
Legend of Grimrock
LIMBO
LMMS 0.4.13 (Version: 0.4.13)
Logitech Vid (Version: 1.70.1044)
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.01.1018.0)
LWS Gallery (Version: 13.01.1018.0)
LWS Help_main (Version: 13.01.1025.0)
LWS Launcher (Version: 13.01.1024.0)
LWS Motion Detection (Version: 13.01.1018.0)
LWS Pictures And Video (Version: 13.01.1018.0)
LWS Video Mask Maker (Version: 13.00.1774.0)
LWS VideoEffects (Version: 13.00.1774.0)
LWS Webcam Software (Version: 13.00.1774.0)
LWS WLM Plugin (Version: 1.00.1774.0)
LWS YouTube Plugin (Version: 13.01.1022.0)
MagniPic (Version: 1.0)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MD-4072 Music Data Management Software (Version: 3.00.0000)
Metro 2033
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Halo
Microsoft IntelliPoint 8.0 (Version: 8.0.225.0)
Microsoft IntelliType Pro 8.0 (Version: 8.0.225.0)
Microsoft Office 2003 Web Components (Version: 12.0.6213.1000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Analysis Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 BI Development Studio (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Books Online (English) (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Browser (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Client Tools (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Full text search (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Integration Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Management Objects (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Management Studio (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Policies (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Reporting Services (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Reporting Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2573.0)
Microsoft SQL Server Compact 3.5 SP1 Design Tools English (Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP1 English (Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP1 Query Tools English (Version: 3.5.5692.0)
Microsoft SQL Server Native Client (Version: 9.00.1399.06)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.1399.06)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0)
Microsoft Virtual PC 2007 (Version: 6.0.156.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.6.0)
MotioninJoy DS3 driver version 0.6.0005 (Version: 0.6.0005)
Mount & Blade
Mount & Blade: Warband
Mount & Blade: With Fire and Sword
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MuseScore 1.2 MuseScore score typesetter (Version: 1.2.0)
Noitu Love 2 Devolution
Notepad++ (Version: 6.2.2)
NVIDIA 3D Vision Controller Driver (Version: 275.33)
NVIDIA 3D Vision Controller Driver 306.97 (Version: 306.97)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0604)
NVIDIA PhysX System Software 9.12.0604 (Version: 9.12.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
ObjectDock Free (Version: 2.0)
Oblivion (Version: 1.00.0000)
OpenAL
Osmos
Paint.NET v3.5.10 (Version: 3.60.0)
Pando Media Booster (Version: 2.3.5.6)
Password Safe 3.17 for Windows (Version: 3.17)
Path of Exile (Version: 0.10.0.22397)
Paws and Claws Pet School (remove only)
Pearltree's extension (Version: 2.3.3)
Pet Vet (remove only)
PixelJunk Eden
PlanetSide 2
Plants vs. Zombies: Game of the Year
Portal
Portal 2
Psychonauts
PunkBuster Services (Version: 0.986)
Python 2.5 Numeric-24.2
Python 2.5 pygame-1.7.1release
Python 2.5 PythonCard-0.8.2
Python 2.5.1 (Version: 2.5.1150)
QuickTime (Version: 7.73.80.64)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.18.322.2010)
Realtek High Definition Audio Driver (Version: 6.0.1.6215)
RocketDock 1.3.5
S.T.A.L.K.E.R.: Shadow of Chernobyl
Safari (Version: 5.33.21.1)
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (Version: 10.1.2531.0)
Six Updater (Version: 2.09.7016)
Skype Click to Call (Version: 5.9.9216)
Skype™ 6.1 (Version: 6.1.129)
Software Version Updater (Version: 1.1.3.6)
Solitaire XP version 1.0 (Version: 1.0)
Sonic Adventure DX
Sonic Adventure™ 2 
Source SDK Base
Source SDK Base 2007
SPE
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
SQL Server System CLR Types (Version: 10.0.1600.22)
SQL Server System CLR Types (Version: 10.1.2531.0)
StarCraft II (Version: 1.4.3.21029)
Steam (Version: 1.0.0.0)
Supreme Commander (Version: 1.00.0000)
Team Fortress 2
The Elder Scrolls V: Skyrim
The Lord of the Rings FREE Trial  (Version: 1.00.0000)
The Mixologist
Thief 2
Thief Gold
Thief: Deadly Shadows
Titan Quest (Version: 1.00.0000)
Titan Quest Immortal Throne (Version: 1.00.0000)
Torchlight (Version: 1.0.67.91)
Tron 2.0
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760586) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Ventrilo Client (Version: 3.0.5)
Ventrilo Client for Windows x64 (Version: 3.0.5.0)
VH Toolkit 1.0.44.0
Visual C++ 2008 IA64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 IA64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - (v9.0.30729.4148) (Version: 9.0.30729.4148)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x86 Runtime - v9.0.30729.4148 (Version: 9.0.30729.4148)
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2005 Tools for Office Second Edition Runtime
Warcraft III
Warframe (Version: 1.0.0)
Where's Waldo ® The Fantastic Journey
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Wireless-G PCI Adapter
World of Warcraft (Version: 5.0.4.16016)
wxPython 2.8.7.1 (unicode) for Python 2.5 (Version: 2.8.7.1-unicode)
X-COM: UFO Defense
You Rock Guitar App
YTD Toolbar v6.6 (Version: 6.6)
Zeno Clash
Zombie Panic Source
Zoo Tycoon: Complete Collection
 
========================= Devices: ================================
 
Name: Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect VPN Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 73%
Total physical RAM: 4095.18 MB
Available physical RAM: 1075.33 MB
Total Pagefile: 8188.55 MB
Available Pagefile: 4839.57 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.74 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:586.4 GB) (Free:173.83 GB) NTFS
2 Drive d: (DISK1) (CDROM) (Total:3.43 GB) (Free:0 GB) UDF
 
========================= Users: ========================================
 
User accounts for
 
 
**** End of log ****
 
 
farbar's service scanner
 
Farbar Service Scanner Version: 10-02-2013
Ran by Ryan (administrator) on 10-02-2013 at 12:25:44
Running from "C:\Users\Ryan\Downloads"
Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****
 
adwcleaner
 
# AdwCleaner v2.112 - Logfile created 02/10/2013 at 14:04:25
# Updated 10/02/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Ryan - RON-PC
# Boot Mode : Normal
# Running from : C:\Users\Ryan\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\ProgramData\Premium
File Deleted : C:\Users\\AppData\Roaming\Mozilla\Firefox\Profiles\yirrz02i.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
File Deleted : C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\yirrz02i.default\searchplugins\Searchab.xml
File Deleted : C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\yirrz02i.default\searchplugins\SweetIm.xml
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\ProgramData\clsoft ltd
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Users\rie\AppData\Local\Temp\boost_interprocess
Folder Deleted : C:\Usersrie\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Kn\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\n\AppData\Local\AVG Security Toolbar
Folder Deleted : C:\Users\Kn\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\\AppData\LocalLow\Search Settings
Folder Deleted : C:\Usersn\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\n\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\n\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\n\AppData\Roaming\Mozilla\Firefox\Profiles\yirrz02i.default\extensions\staged
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v9.0.8112.16457
 
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://searchab.com/?aff=7&uid=28f33da9-7333-11e2-88a3-00226847424b --> hxxp://www.google.com
 
-\\ Mozilla Firefox v13.0.1 (en-US)
 
File : C:\Users\Ron\AppData\Roaming\Mozilla\Firefox\Profiles\4661rvb8.default\prefs.js
 
[OK] File is clean.
 
File : C:\Users\\AppData\Roaming\Mozilla\Firefox\Profiles\lh9y2u70.default\prefs.js
 
[OK] File is clean.
 
File : C:\Users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\yirrz02i.default\prefs.js
 
Deleted : user_pref("browser.startup.homepage", "hxxp://searchab.com/?aff=7&uid=28f33da9-7333-11e2-88a3-002268[...]
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Deleted : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=3.1010000.10005&barid={4C2B[...]
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "Yahoo");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "Privitize VPN");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://searchab.com/?aff=7&uid=28f33da9-7333-11e2[...]
 
File : C:\Users\\AppData\Roaming\Mozilla\Firefox\Profiles\wmtjl9u0.default\prefs.js
 
[OK] File is clean.
 
File : C:\Users\\AppData\Roaming\Mozilla\Firefox\Profiles\9gmrj48q.default\prefs.js
 
[OK] File is clean.
 
-\\ Google Chrome v24.0.1312.57
 
File : C:\Users\Ron\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
File : C:\Users\Carrie\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
File : C:\Users\\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
File : C:\Users\Ryan\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.12] : homepage = "hxxp://searchab.com/?aff=7&uid=28f33da9-7333-11e2-88a3-00226847424b",
Deleted [l.1758] : homepage = "hxxp://searchab.com/?aff=7&uid=28f33da9-7333-11e2-88a3-00226847424b",
 
File : C:\Users\\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
File : C:\Users\\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [353 octets] - [10/02/2013 12:26:35]
AdwCleaner[S2].txt - [5548 octets] - [10/02/2013 14:04:25]
 
########## EOF - C:\AdwCleaner[S2].txt - [5608 octets] ##########
 
JRT
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.2 (02.02.2013:2)
OS: Windows 7 Ultimate x64
Ran by Ryan on Sun 02/10/2013 at 14:10:59.60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\windows nt\currentversion\windows\\AppInit_DLLs
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] hkey_current_user\software\sweetim
Successfully deleted: [Registry Key] hkey_local_machine\software\sweetim
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll
 
 
 
~~~ Folders
 
Failed to delete: [Folder] "C:\ProgramData\premium"
Successfully deleted: [Folder] "C:\Program Files (x86)\ytd toolbar"
 
 
 
~~~ FireFox
 
Failed to delete: [Folder] C:\Users\Ryan\AppData\Roaming\mozilla\firefox\profiles\yirrz02i.default\extensions\wtxpcom@mybrowserbar.com
Failed to delete: [Folder] C:\Users\Ryan\AppData\Roaming\mozilla\firefox\profiles\yirrz02i.default\extensions\youtubedownloader@mybrowserbar.com
Successfully deleted the following from C:\Users\Ryan\AppData\Roaming\mozilla\firefox\profiles\yirrz02i.default\prefs.js
 
user_pref("browser.search.defaultenginename", "Privitize VPN");
user_pref("browser.search.defaultengine", "Privitize VPN");
user_pref("browser.search.order.1", "Privitize VPN");");
user_pref("browser.search.defaultengine", "Privitize VPN");
user_pref("browser.search.order.1", "Privitize VPN");
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 02/10/2013 at 14:20:10.58
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
Rkill
 
Rkill 2.4.6 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 02/10/2013 02:32:27 PM in x64 mode.
Windows Version: Windows 7 Ultimate Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\ProgramData\Premium\MagniPic\MagniPic.exe (PID: 3432) [AU-HEUR]
 
1 proccess terminated!
 
Checking Registry for malware related settings:
 
 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]
 
Backup Registry file created at:
 C:\Users\Ryan\Desktop\rkill\rkill-02-10-2013-02-32-33.reg
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  * HKCU\SOFTWARE\Classes\.exe "@" exists and is set to exefile!
  * HKCU\SOFTWARE\Classes\.exe has been deleted!
 
Performing miscellaneous checks:
 
 * No issues found.
 
Checking Windows Service Integrity: 
 
 * No issues found.
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 02/10/2013 02:32:44 PM
Execution time: 0 hours(s), 0 minute(s), and 16 seconds(s)
 
 
Autoruns
 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "AdobeAAMUpdater-1.0"    "Adobe Updater Startup Utility"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "IntelliPoint"    "IPoint.exe"    "Microsoft Corporation"    "c:\program files\microsoft intellipoint\ipoint.exe"
+ "itype"    "IType.exe"    "Microsoft Corporation"    "c:\program files\microsoft intellitype pro\itype.exe"
+ "MSC"    "Microsoft Security Client User Interface"    "Microsoft Corporation"    "c:\program files\microsoft security client\msseces.exe"
+ "RtHDVCpl"    "Realtek HD Audio Manager"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\ravcpl64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "AppleSyncNotifier"    "AppleSyncNotifier"    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applesyncnotifier.exe"
+ "APSDaemon"    "Apple Push"    "Apple Inc."    "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "ATICustomerCare"    "ATI Customer Care"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati\aticustomercare\aticustomercare.exe"
+ "Cisco AnyConnect Secure Mobility Agent for Windows"    "Cisco AnyConnect User Interface"    "Cisco Systems, Inc."    "c:\program files (x86)\cisco\cisco anyconnect secure mobility client\vpnui.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program files (x86)\itunes\ituneshelper.exe"
+ "LWS"    "Logitech Webcam Software"    "Logitech Inc."    "c:\program files (x86)\logitech\lws\webcam software\lws.exe"
+ "QuickTime Task"    "QuickTime Task"    "Apple Inc."    "c:\program files (x86)\quicktime\qttask.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce"    ""    ""    ""
+ "AvgUninstallURL"    ""    ""    "File not found: http://www.avg.com/ww.special-uninstallation-feedback-app?lic=OQBBAFYARgBSAEUARQAtAFYAQQBFAEEAWQAtAFQAMwBMAFUARQAtAE4ATAAzAEQAQQAtAEMAQgBVAEsASAAtAEoARgA3AE0AOQA"&"inst=NwA3AC0ANAAyADUAMAAxADUAMQA5ADMALQBLAFYAMwArADcALQBYAEwAKwAxAC0AVAA0AC0AQgAyAC0ARgBQADkAKwA2AC0AVABCADkAKwAyAC0ARgBMACsAOQAtAFgATwAzADYAKwAxAC0ARgA5AE0ANwBDACsANQAtAEYAOQBNADEAMABCACsAMgAtAFgATwA5ACsAMQAtAEYAOQBNADIAKwAxAC0ARABEAFQAKwAwAA"&"prod=90"&"ver=9.0.894"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Google Chrome"    "Google Chrome"    "Google Inc."    "c:\program files (x86)\google\chrome\application\24.0.1312.57\installer\chrmstp.exe"
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Google Update"    "Google Installer"    "Google Inc."    "c:\users\ryan\appdata\local\google\update\googleupdate.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "ANotepad++64"    "ShellHandler for Notepad++ (64 bit)"    ""    "c:\program files (x86)\notepad++\nppshell_05.dll"
+ "EPP"    "Microsoft Security Client Shell Extension"    "Microsoft Corporation"    "c:\program files\microsoft security client\shellext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files (x86)\7-zip\7-zip.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "EPP"    "Microsoft Security Client Shell Extension"    "Microsoft Corporation"    "c:\program files\microsoft security client\shellext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files (x86)\7-zip\7-zip.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files (x86)\7-zip\7-zip.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers"    ""    ""    ""
+ "VPCHostCopyHook"    "Virtual PC Host Shell Extension"    "Microsoft Corporation"    "c:\program files (x86)\microsoft virtual pc\vpcshexh.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext"    ""    "NVIDIA Corporation"    "c:\windows\system32\nvshext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "dBpShell Class"    "Provides dBpoweramp Shell Interaction"    "Illustrate"    "c:\program files (x86)\illustrate\dbpoweramp\dbshell.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\ssv.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "PearlbarBHO Class"    "Automatic activation of the pearlbar"    "pearltrees"    "c:\program files (x86)\pearltrees\pearlbar\pearlbaract.dll"
+ "Skype Browser Helper"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""
+ "Pearlbar"    "pearltrees recorder toolbar"    "pearltrees"    "c:\program files (x86)\pearltrees\pearlbar\pearltree.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler"    ""    ""    ""
+ "\Adobe Flash Player Updater"    "Adobe® Flash® Player Update Service 11.5 r502"    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\AdobeAAMUpdater-1.0-Ron-PC-Carrie"    "Adobe Updater Startup Utility"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "\AdobeAAMUpdater-1.0-Ron-PC-Ryan"    "Adobe Updater Startup Utility"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "\Apple\AppleSoftwareUpdate"    "Apple Software Update"    "Apple Inc."    "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC"    "CCleaner"    "Piriform Ltd"    "c:\program files\ccleaner\ccleaner.exe"
+ "\GoogleUpdateTaskMachineCore"    "Google Installer"    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA"    "Google Installer"    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3166199928-2098980565-1580785596-1001Core"    "Google Installer"    "Google Inc."    "c:\users\ron\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3166199928-2098980565-1580785596-1001UA"    "Google Installer"    "Google Inc."    "c:\users\ron\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3166199928-2098980565-1580785596-1003Core"    "Google Installer"    "Google Inc."    "c:\users\carrie\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3166199928-2098980565-1580785596-1003UA"    "Google Installer"    "Google Inc."    "c:\users\carrie\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3166199928-2098980565-1580785596-1006Core"    "Google Installer"    "Google Inc."    "c:\users\ryan\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3166199928-2098980565-1580785596-1006UA"    "Google Installer"    "Google Inc."    "c:\users\ryan\appdata\local\google\update\googleupdate.exe"
+ "\Halo 2 for Vista restart"    "Launcher"    "Microsoft Corporation"    "c:\program files (x86)\microsoft games\halo 2\startup.exe"
+ "\hpUtility.exe"    "hpUtility"    "Hewlett-Packard Co."    "c:\program files\hp\hp photosmart plus b210 series\bin\utils\hputility.exe"
+ "\MagniPicUpdaterTask{F20CDE77-98CC-4EEF-AC0B-70931017637B}"    "Updater"    ""    "c:\programdata\premium\magnipic\magnipic.exe"
+ "\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan"    "Microsoft Malware Protection Command Line Utility"    "Microsoft Corporation"    "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task"    "Windows Live Social Object Extractor Engine"    "Microsoft Corporation"    "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"    "Windows Media Player Network Sharing Service Configuration Application"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnscfg.exe"
+ "\Microsoft_Hardware_Launch_IPoint_exe"    "IPoint.exe"    "Microsoft Corporation"    "c:\program files\microsoft intellipoint\ipoint.exe"
+ "\Microsoft_Hardware_Launch_IType_exe"    "IType.exe"    "Microsoft Corporation"    "c:\program files\microsoft intellitype pro\itype.exe"
+ "\{12F51097-C6B8-4E23-8B94-A1B1419372BA}"    "Skype "    "Skype Technologies S.A."    "c:\program files (x86)\skype\phone\skype.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "123MediaStreamer"    "Streams Video, Audio and picture files to other computers, phones and devices."    "Microsoft"    "c:\program files (x86)\123copydvdplatinum 2012\mediastreamerservice.exe"
+ "AdobeActiveFileMonitor9.0"    "Tracks files that are managed by Elements Organizer"    "Adobe Systems Incorporated"    "c:\program files (x86)\adobe\elements 9 organizer\photoshopelementsfileagent.exe"
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AMD External Events Utility"    "AMD External Events Service Module"    "AMD"    "c:\windows\system32\atiesrxx.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"
+ "IDriverT"    "Provides support for the Running Object Table for InstallShield Drivers"    "Macrovision Corporation"    "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"
+ "LVPrcS64"    "Injector service"    "Logitech Inc."    "c:\program files\common files\logishrd\lvmvfm\lvprcsrv.exe"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MsDtsServer100"    "Provides management support for SSIS package storage and execution."    "Microsoft Corporation"    "c:\program files\microsoft sql server\100\dts\binn\msdtssrvr.exe"
+ "MsMpSvc"    "Helps protect users from malware and other potentially unwanted software"    "Microsoft Corporation"    "c:\program files\microsoft security client\msmpeng.exe"
+ "MSSQLFDLauncher"    "Service to launch full-text filter daemon process which will perform document filtering and word breaking for SQL Server full-text search. Disabling this service will make full-text search features of SQL Server unavailable."    "Microsoft Corporation"    "c:\program files\microsoft sql server\mssql10.mssqlserver\mssql\binn\fdlauncher.exe"
+ "MSSQLSERVER"    "Provides storage, processing and controlled access of data, and rapid transaction processing."    "Microsoft Corporation"    "c:\program files\microsoft sql server\mssql10.mssqlserver\mssql\binn\sqlservr.exe"
+ "MSSQLServerOLAPService"    "Supplies online analytical processing (OLAP) and data mining functionality for business intelligence applications."    "Microsoft Corporation"    "c:\program files\microsoft sql server\msas10.mssqlserver\olap\bin\msmdsrv.exe"
+ "NasPmService"    "NAS Power Management Service"    "BUFFALO INC."    "c:\program files (x86)\buffalo\nasnavi\nassvc.exe"
+ "NisSrv"    "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols"    "Microsoft Corporation"    "c:\program files\microsoft security client\nissrv.exe"
+ "nvsvc"    "Provides system and desktop level support to the NVIDIA display driver"    "NVIDIA Corporation"    "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService"    "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server."    "NVIDIA Corporation"    "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
+ "odserv"    "Run portions of Microsoft Office Diagnostics."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "PnkBstrA"    "PunkBuster Service Component [v1029] http://www.evenbalance.com"    ""    "c:\windows\syswow64\pnkbstra.exe"
+ "ReportServer"    "Manages, executes, renders, schedules and delivers reports."    "Microsoft Corporation"    "c:\program files\microsoft sql server\msrs10.mssqlserver\reporting services\reportserver\bin\reportingservicesservice.exe"
+ "SkypeUpdate"    "Enables the detection, download and installation of updates for Skype."    "Skype Technologies"    "c:\program files (x86)\skype\updater\updater.exe"
+ "SQLSERVERAGENT"    "Executes jobs, monitors SQL Server, fires alerts, and allows automation of some administrative tasks."    "Microsoft Corporation"    "c:\program files\microsoft sql server\mssql10.mssqlserver\mssql\binn\sqlagent.exe"
+ "SQLWriter"    "Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure."    "Microsoft Corporation"    "c:\program files\microsoft sql server\90\shared\sqlwriter.exe"
+ "Steam Client Service"    "Steam Client Service monitors and updates Steam content"    "Valve Corporation"    "c:\program files (x86)\common files\steam\steamservice.exe"
+ "Stereo Service"    "Provides system support for NVIDIA Stereoscopic 3D driver"    "NVIDIA Corporation"    "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "vpnagent"    "Cisco AnyConnect Secure Mobility Agent for Windows"    "Cisco Systems, Inc."    "c:\program files (x86)\cisco\cisco anyconnect secure mobility client\vpnagent.exe"
+ "WinDefend"    "Protection against spyware and potentially unwanted software"    "Microsoft Corporation"    "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc"    "Enables Windows Live ID authentication."    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "acsock"    "Cisco AnyConnect Kernel Driver Framework Socket Layer Interceptor x64"    "Cisco Systems, Inc."    "c:\windows\system32\drivers\acsock64.sys"
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"
+ "AgereSoftModem"    "SoftModem Device Driver"    "LSI Corp"    "c:\windows\system32\drivers\agrsm64.sys"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"
+ "Alpham1"    "ZBoard Keyboards driver"    "Ideazon Corporation"    "c:\windows\system32\drivers\alpham164.sys"
+ "Alpham2"    "MM ZBoard Keyboards driver"    "Ideazon Corporation"    "c:\windows\system32\drivers\alpham264.sys"
+ "amdkmdag"    ""    ""    "File not found: system32\DRIVERS\atikmdag.sys"
+ "amdkmdap"    "AMD multi-vendor Miniport Driver"    "Advanced Micro Devices, Inc."    "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"
+ "AtiHDAudioService"    "AMD High Definition Audio Function Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\atihdw76.sys"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"
+ "BCM43XX"    "Broadcom 802.11 Network Adapter wireless driver"    "Broadcom Corporation"    "c:\windows\system32\drivers\bcmwl664.sys"
+ "BIOS"    "I/O Interface driver file"    "BIOSTAR Group"    "c:\windows\system32\drivers\bios64.sys"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"
+ "BS_I2cIo"    "I/O Interface driver file"    "BIOSTAR Group"    "c:\windows\system32\drivers\bs_i2c64.sys"
+ "btaudio"    ""    ""    "File not found: system32\drivers\btaudio.sys"
+ "BTDriver"    ""    ""    "File not found: system32\DRIVERS\btport.sys"
+ "BTWDNDIS"    ""    ""    "File not found: system32\DRIVERS\btwdndis.sys"
+ "btwhid"    ""    ""    "File not found: system32\DRIVERS\btwhid.sys"
+ "BTWUSB"    "Driver for Bluetooth USB Devices"    "Broadcom Corporation."    "c:\windows\system32\drivers\btwusb.sys"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "gwiopm"    ""    ""    "File not found: C:\Program Files (x86)\Unknown Device Identifier\gwiopm.sys"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtkvhd64.sys"
+ "LGBusEnum"    "Logitech WingMan Virtual Bus Enumerator Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lgbusenum.sys"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"
+ "lvpopf64"    "Logitech AudioProcessing Filter Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvpopf64.sys"
+ "LVPr2M64"    "Logitech LVPr2M64 Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvpr2m64.sys"
+ "LVPr2Mon"    "Logitech LVPr2M64 Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvpr2m64.sys"
+ "LVRS64"    "Logitech Kernel Audio Improvement Filter Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvrs64.sys"
+ "LVUVC64"    "Logitech USB Video Class Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvuvc64.sys"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"
+ "MotioninJoyXFilter"    "MotioninJoy DS3 driver"    "MotioninJoy"    "c:\windows\system32\drivers\mijxfilt.sys"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"
+ "NVHDA"    "NVIDIA HDMI Audio Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm"    "NVIDIA Windows Kernel Mode Driver, Version 306.97 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"
+ "PxHlpa64"    "Px Engine Device Driver for 64-bit Windows"    "Sonic Solutions"    "c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"
+ "Razerlow"    "Diamondback USB Optical Mouse Driver"    "Razer (Asia-Pacific) Pte Ltd"    "c:\windows\system32\drivers\razerlow.sys"
+ "RTL8167"    "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                "    "Realtek                                            "    "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"
+ "Synth3dVsc"    ""    ""    "File not found: System32\drivers\synth3dvsc.sys"
+ "tsusbhub"    "@%SystemRoot%\system32\drivers\tsusbhub.sys,-2"    ""    "File not found: system32\drivers\tsusbhub.sys"
+ "USBAAPL64"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl64.sys"
+ "VGPU"    ""    ""    "File not found: System32\drivers\rdvgkmd.sys"
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"
+ "vpnva"    "Cisco AnyConnect VPN Client Virtual Miniport Adapter for Windows"    "Cisco Systems, Inc."    "c:\windows\system32\drivers\vpnva64.sys"
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"
+ "yukonw7"    ""    ""    "c:\windows\system32\drivers\yk62x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
+ "vidc.i420"    "Video Codec"    "Logitech Inc."    "c:\windows\system32\lvcod64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"
+ "vidc.i420"    "Video Codec"    "Logitech Inc."    "c:\windows\syswow64\lvcodec2.dll"
"HKLM\Software\Classes\Filter"    ""    ""    ""
+ "MainConcept MPEG Demultiplexer"    "MPEG-1/2 Demultiplexer"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_mp2_ds.ax"
+ "MainConcept MPEG Push Demultiplexer"    "MPEG Push Demultiplexer"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demuxpush_mp2_ds.ax"
+ "MainConcept VC-1 Decoder"    "VC-1 Decoder DirectShow Filter"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_vc1_ds.ax"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "Audio Destination"    "WAVDest Filter (Sample)"    "Microsoft Corporation"    "c:\program files (x86)\google\google earth\client\wavdest.ax"
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DivX for Blizzard Decoder Filter"    "DivX ™ Decoder Filter"    "DivXNetworks, Inc."    "c:\program files (x86)\warcraft iii\blizzard.ax"
+ "MainConcept (Broadcast) AVC/H.264 Video Decoder"    "AVC/H.264 Decoder DirectShow Filter"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_bc_dec_avc_ds.ax"
+ "MainConcept AAC Decoder"    "AAC audio decoder filter"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_aac_ds.ax"
+ "MainConcept AVC/H.264 Video Decoder"    "AVC/H.264 Decoder DirectShow Filter"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_avc_ds.ax"
+ "MainConcept DV Dif Parser"    "DV Dif Parser DS Filter"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_parser_dv_ds.ax"
+ "MainConcept DV Video Decoder"    "DirectShow DVCPro Video Decoder"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_dv_ds.ax"
+ "MainConcept DV-Demultiplexer"    "DV-Splitter DS Filter"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_dv_ds.ax"
+ "MainConcept DVCPro 50 Video Decoder"    "DirectShow DVCPro50 Video Decoder"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_dv50_ds.ax"
+ "MainConcept DVCPro HD Video Decoder"    "DirectShow DVCProHD Video Decoder"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_dv100_ds.ax"
+ "MainConcept MPEG Demultiplexer"    "MPEG-1/2 Demultiplexer"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_mp2_ds.ax"
+ "MainConcept MPEG Push Demultiplexer"    "MPEG Push Demultiplexer"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demuxpush_mp2_ds.ax"
+ "MainConcept Stream Parser"    "MPEG-1/2 Demultiplexer"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_mp2_ds.ax"
+ "MainConcept VC-1 Decoder"    "VC-1 Decoder DirectShow Filter"    "MainConcept GmbH"    "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_vc1_ds.ax"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Track1Filter"    "Adobe Photoshop Elements 9.0 (component)"    "Adobe Systems Incorporated"    "c:\program files (x86)\adobe\elements 9 organizer\track1filter.dll"
+ "Track2Filter"    "Adobe Photoshop Elements 9.0 (component)"    "Adobe Systems Incorporated"    "c:\program files (x86)\adobe\elements 9 organizer\track2filter.dll"
+ "VHScreenDecoder"    "VHScreenDecoder"    "Hmelyoff Labs"    "c:\program files (x86)\hmelyofflabs\vhscrcap\vhscreendecoder.ax"
+ "VHSplitProcSource"    "VHMediaLib COM implementation"    "Hmelyoff Labs"    "c:\program files (x86)\hmelyofflabs\vhtoolkit\vhmediacom.dll"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""
+ "WLIDCredentialProvider"    "Microsoft® Windows Live ID Credential Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "BJ Fax Language Monitor1"    "Canon Inkjet Fax Driver"    "CANON INC."    "c:\windows\system32\cnhf1lm.dll"
+ "Canon BJ Language Monitor MP530"    "IJ Language Monitor"    "CANON INC."    "c:\windows\system32\cnmlm7r.dll"
+ "Canon MP FAX Language Monitor MP530"    "MP FAX Language Monitor DLL"    "Canon Inc."    "c:\windows\system32\cncf2la.dll"
+ "HP 8e11 Status Monitor"    "Print Status Language Monitor"    "Hewlett-Packard Co."    "c:\windows\system32\hpinksts8e11lm.dll"
+ "HP Discovery Port Monitor (HP Photosmart Plus B210 series)"    "HP Discovery Port Monitor"    "Hewlett-Packard Co."    "c:\windows\system32\hpdiscopm8e11.dll"
 
 
 

Edited by incandescentface, 10 February 2013 - 05:30 PM.


#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 AM

Posted 10 February 2013 - 03:44 PM

Please run malwarebytes again and post the clean log



#9 incandescentface

incandescentface
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:27 AM

Posted 10 February 2013 - 04:06 PM

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
 
Database version: v2013.02.10.07
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Ryan :: RON-PC [administrator]
 
2/10/2013 3:00:30 PM
mbam-log-2013-02-10 (15-00-30).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 426615
Time elapsed: 5 minute(s), 16 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 AM

Posted 10 February 2013 - 04:09 PM


That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)
 



#11 incandescentface

incandescentface
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:27 AM

Posted 10 February 2013 - 04:35 PM

thanks a lot for your help narenxp, i know you probably do this a lot but you saved me from a really pissed off dad and i appreciate it. take care



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 AM

Posted 10 February 2013 - 04:55 PM

You're most welcome :)



#13 waynem650

waynem650

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:27 AM

Posted 05 March 2013 - 04:04 PM

Hi,

I'm having the same problem after installing and trying to rid my system of PrivitizeVPN - now constant disk activity is slowing my system to a crawl.  Multiple instances of magnipic were showing in Task Manager - terminating them all has done nothing to stop endless disk thrashing.  CPU usage is near zero, just the disk activity is slowing everything down tremendously.

 

 

What process should I terminate to cease this HD activity, so I can continue running the steps described above?

 

Thanks,

Wayne



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:27 AM

Posted 05 March 2013 - 10:52 PM

waynem650

Please create a new topic.

 

Thanks






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users