Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Globasearch Hijacked Chrome & Firefox


  • Please log in to reply
25 replies to this topic

#1 wilwong83

wilwong83

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 24 February 2013 - 07:02 PM

Hi, I've noticed several people have had issues with Globasearch, and I tried scanning with various programs, but nothing seems to work. Could someone please help? I'd appreciate it very much. Thanks! 



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:36 AM

Posted 24 February 2013 - 07:08 PM


  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


 



#3 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 24 February 2013 - 11:33 PM

Hi, thanks for your help in advance. I had to paste the results in multiple postings because the log was too long

19:17:30.0670 3600 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:17:31.0060 3600 ============================================================
19:17:31.0060 3600 Current date / time: 2013/02/24 19:17:31.0060
19:17:31.0060 3600 SystemInfo:
19:17:31.0060 3600
19:17:31.0060 3600 OS Version: 6.1.7601 ServicePack: 1.0
19:17:31.0060 3600 Product type: Workstation
19:17:31.0060 3600 ComputerName: WW-JIMMYV3
19:17:31.0060 3600 UserName: WilWong83
19:17:31.0060 3600 Windows directory: C:\Windows
19:17:31.0060 3600 System windows directory: C:\Windows
19:17:31.0060 3600 Running under WOW64
19:17:31.0060 3600 Processor architecture: Intel x64
19:17:31.0060 3600 Number of processors: 4
19:17:31.0060 3600 Page size: 0x1000
19:17:31.0060 3600 Boot type: Normal boot
19:17:31.0060 3600 ============================================================
19:17:33.0712 3600 BG loaded
19:17:37.0955 3600 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:17:38.0096 3600 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:17:38.0096 3600 ============================================================
19:17:38.0096 3600 \Device\Harddisk0\DR0:
19:17:38.0096 3600 MBR partitions:
19:17:38.0096 3600 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
19:17:38.0096 3600 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x1C3C3000
19:17:38.0860 3600 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1E1F6000, BlocksNum 0x1C18F800
19:17:38.0860 3600 \Device\Harddisk1\DR1:
19:17:38.0860 3600 MBR partitions:
19:17:38.0860 3600 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x2542D682
19:17:38.0860 3600 ============================================================
19:17:38.0985 3600 C: <-> \Device\Harddisk0\DR0\Partition2
19:17:42.0136 3600 D: <-> \Device\Harddisk0\DR0\Partition3
19:17:42.0136 3600 F: <-> \Device\Harddisk1\DR1\Partition1
19:17:42.0136 3600 ============================================================
19:17:42.0136 3600 Initialize success
19:17:42.0136 3600 ============================================================
19:18:20.0528 5016 ============================================================
19:18:20.0528 5016 Scan started
19:18:20.0528 5016 Mode: Manual; TDLFS;
19:18:20.0528 5016 ============================================================
19:18:23.0492 5016 ================ Scan system memory ========================
19:18:23.0492 5016 System memory - ok
19:18:23.0492 5016 ================ Scan services =============================
19:18:24.0662 5016 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:18:24.0662 5016 1394ohci - ok
19:18:24.0786 5016 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:18:24.0786 5016 ACPI - ok
19:18:24.0833 5016 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:18:24.0833 5016 AcpiPmi - ok
19:18:25.0504 5016 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:18:25.0504 5016 AdobeARMservice - ok
19:18:25.0972 5016 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:18:25.0972 5016 AdobeFlashPlayerUpdateSvc - ok
19:18:26.0346 5016 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:18:26.0362 5016 adp94xx - ok
19:18:26.0752 5016 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:18:26.0768 5016 adpahci - ok
19:18:26.0970 5016 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:18:26.0986 5016 adpu320 - ok
19:18:27.0314 5016 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:18:27.0314 5016 AeLookupSvc - ok
19:18:27.0594 5016 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:18:27.0594 5016 AFD - ok
19:18:27.0719 5016 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:18:27.0719 5016 agp440 - ok
19:18:27.0813 5016 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:18:27.0813 5016 ALG - ok
19:18:28.0094 5016 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:18:28.0094 5016 aliide - ok
19:18:28.0172 5016 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:18:28.0172 5016 amdide - ok
19:18:28.0281 5016 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:18:28.0281 5016 AmdK8 - ok
19:18:28.0359 5016 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:18:28.0359 5016 AmdPPM - ok
19:18:28.0499 5016 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:18:28.0515 5016 amdsata - ok
19:18:28.0718 5016 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:18:28.0733 5016 amdsbs - ok
19:18:28.0764 5016 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:18:28.0764 5016 amdxata - ok
19:18:28.0967 5016 [ 1F8E9426219263CB3CE9AC1735A68D9E ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys
19:18:28.0967 5016 AnyDVD - ok
19:18:29.0170 5016 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:18:29.0170 5016 AppID - ok
19:18:29.0232 5016 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:18:29.0232 5016 AppIDSvc - ok
19:18:29.0357 5016 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:18:29.0357 5016 Appinfo - ok
19:18:29.0498 5016 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:18:29.0513 5016 arc - ok
19:18:29.0544 5016 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:18:29.0544 5016 arcsas - ok
19:18:29.0825 5016 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:18:29.0966 5016 aspnet_state - ok
19:18:30.0059 5016 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:18:30.0059 5016 AsyncMac - ok
19:18:30.0215 5016 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:18:30.0215 5016 atapi - ok
19:18:30.0730 5016 [ C8679A07267F030704168E45E27C3D43 ] athr C:\Windows\system32\DRIVERS\athrx.sys
19:18:30.0746 5016 athr - ok
19:18:31.0073 5016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:18:31.0073 5016 AudioEndpointBuilder - ok
19:18:31.0089 5016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:18:31.0089 5016 AudioSrv - ok
19:18:31.0167 5016 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:18:31.0167 5016 AxInstSV - ok
19:18:31.0214 5016 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:18:31.0214 5016 b06bdrv - ok
19:18:31.0245 5016 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:18:31.0245 5016 b57nd60a - ok
19:18:31.0292 5016 [ A424CB46A145E5AABF15621550976DF2 ] b57xdbd C:\Windows\system32\DRIVERS\b57xdbd.sys
19:18:31.0292 5016 b57xdbd - ok
19:18:31.0307 5016 [ BE4E6FD5A898812B85D5817AD9754A9F ] b57xdmp C:\Windows\system32\DRIVERS\b57xdmp.sys
19:18:31.0307 5016 b57xdmp - ok
19:18:31.0338 5016 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:18:31.0338 5016 BDESVC - ok
19:18:31.0354 5016 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:18:31.0354 5016 Beep - ok
19:18:31.0463 5016 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:18:31.0463 5016 BFE - ok
19:18:31.0650 5016 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
19:18:31.0666 5016 BITS - ok
19:18:31.0713 5016 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:18:31.0713 5016 blbdrive - ok
19:18:31.0760 5016 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:18:31.0760 5016 bowser - ok
19:18:31.0775 5016 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:18:31.0775 5016 BrFiltLo - ok
19:18:31.0775 5016 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:18:31.0775 5016 BrFiltUp - ok
19:18:31.0822 5016 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:18:31.0822 5016 Browser - ok
19:18:31.0822 5016 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:18:31.0838 5016 Brserid - ok
19:18:31.0838 5016 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:18:31.0838 5016 BrSerWdm - ok
19:18:31.0838 5016 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:18:31.0838 5016 BrUsbMdm - ok
19:18:31.0853 5016 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:18:31.0853 5016 BrUsbSer - ok
19:18:31.0916 5016 [ 520408CFDB56DE8CDB44B2F11B9C5B5C ] bScsiMSa C:\Windows\system32\DRIVERS\bScsiMSa.sys
19:18:31.0916 5016 bScsiMSa - ok
19:18:31.0931 5016 [ 9F880F03F4A72215C8B77FD51322C297 ] bScsiSDa C:\Windows\system32\DRIVERS\bScsiSDa.sys
19:18:31.0931 5016 bScsiSDa - ok
19:18:31.0947 5016 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:18:31.0947 5016 BTHMODEM - ok
19:18:31.0994 5016 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:18:31.0994 5016 bthserv - ok
19:18:32.0009 5016 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:18:32.0009 5016 cdfs - ok
19:18:32.0072 5016 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:18:32.0072 5016 cdrom - ok
19:18:32.0134 5016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:18:32.0134 5016 CertPropSvc - ok
19:18:32.0165 5016 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:18:32.0165 5016 circlass - ok
19:18:32.0212 5016 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:18:32.0212 5016 CLFS - ok
19:18:32.0290 5016 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:18:32.0290 5016 clr_optimization_v2.0.50727_32 - ok
19:18:32.0337 5016 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:18:32.0337 5016 clr_optimization_v2.0.50727_64 - ok
19:18:32.0446 5016 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:18:32.0540 5016 clr_optimization_v4.0.30319_32 - ok
19:18:32.0571 5016 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:18:32.0602 5016 clr_optimization_v4.0.30319_64 - ok
19:18:32.0633 5016 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:18:32.0633 5016 CmBatt - ok
19:18:32.0664 5016 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:18:32.0664 5016 cmdide - ok
19:18:32.0711 5016 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:18:32.0727 5016 CNG - ok
19:18:32.0820 5016 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:18:32.0820 5016 Compbatt - ok
19:18:32.0867 5016 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:18:32.0867 5016 CompositeBus - ok
19:18:32.0883 5016 COMSysApp - ok
19:18:32.0898 5016 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:18:32.0898 5016 crcdisk - ok
19:18:32.0945 5016 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:18:32.0945 5016 CryptSvc - ok
19:18:32.0992 5016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:18:32.0992 5016 DcomLaunch - ok
19:18:33.0039 5016 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:18:33.0039 5016 defragsvc - ok
19:18:33.0101 5016 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:18:33.0101 5016 DfsC - ok
19:18:33.0148 5016 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:18:33.0148 5016 Dhcp - ok
19:18:33.0164 5016 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:18:33.0164 5016 discache - ok
19:18:33.0195 5016 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:18:33.0195 5016 Disk - ok
19:18:33.0226 5016 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:18:33.0226 5016 Dnscache - ok
19:18:33.0273 5016 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:18:33.0288 5016 dot3svc - ok
19:18:33.0335 5016 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:18:33.0335 5016 DPS - ok
19:18:33.0351 5016 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:18:33.0351 5016 drmkaud - ok
19:18:33.0444 5016 [ 228938F848948A0B42BF521F6829A24F ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
19:18:33.0569 5016 DsiWMIService - ok
19:18:33.0647 5016 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:18:33.0647 5016 DXGKrnl - ok
19:18:33.0678 5016 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:18:33.0678 5016 EapHost - ok
19:18:33.0756 5016 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:18:33.0819 5016 ebdrv - ok
19:18:33.0866 5016 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:18:33.0866 5016 EFS - ok
19:18:33.0928 5016 [ 03E6888DA1A85ACF14AC2A3C328A9E62 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
19:18:33.0928 5016 EgisTec Ticket Service - ok
19:18:34.0022 5016 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:18:34.0022 5016 ehRecvr - ok
19:18:34.0084 5016 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:18:34.0084 5016 ehSched - ok
19:18:34.0162 5016 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
19:18:34.0162 5016 ElbyCDIO - ok
19:18:34.0193 5016 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:18:34.0209 5016 elxstor - ok
19:18:34.0302 5016 [ 52BE4D6C72802CEEDCC9997CE8D2FD85 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
19:18:34.0302 5016 ePowerSvc - ok
19:18:34.0318 5016 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:18:34.0318 5016 ErrDev - ok
19:18:34.0334 5016 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:18:34.0349 5016 EventSystem - ok
19:18:34.0349 5016 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:18:34.0365 5016 exfat - ok
19:18:34.0380 5016 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:18:34.0380 5016 fastfat - ok
19:18:34.0443 5016 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:18:34.0443 5016 Fax - ok
19:18:34.0443 5016 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:18:34.0443 5016 fdc - ok
19:18:34.0458 5016 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:18:34.0458 5016 fdPHost - ok
19:18:34.0474 5016 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:18:34.0474 5016 FDResPub - ok
19:18:34.0490 5016 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:18:34.0490 5016 FileInfo - ok
19:18:34.0505 5016 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:18:34.0505 5016 Filetrace - ok
19:18:34.0552 5016 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:18:34.0568 5016 FLEXnet Licensing Service - ok
19:18:34.0568 5016 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:18:34.0568 5016 flpydisk - ok
19:18:34.0630 5016 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:18:34.0630 5016 FltMgr - ok
19:18:34.0692 5016 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:18:34.0708 5016 FontCache - ok
19:18:34.0770 5016 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:18:34.0770 5016 FontCache3.0.0.0 - ok
19:18:34.0786 5016 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:18:34.0786 5016 FsDepends - ok
19:18:34.0848 5016 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:18:34.0848 5016 Fs_Rec - ok
19:18:34.0895 5016 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:18:34.0895 5016 fvevol - ok
19:18:34.0911 5016 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:18:34.0911 5016 gagp30kx - ok
19:18:34.0989 5016 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:18:35.0004 5016 gpsvc - ok
19:18:35.0051 5016 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
19:18:35.0051 5016 GREGService - ok
19:18:35.0160 5016 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:18:35.0160 5016 gupdate - ok
19:18:35.0207 5016 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:18:35.0207 5016 gupdatem - ok
19:18:35.0254 5016 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:18:35.0254 5016 gusvc - ok
19:18:35.0270 5016 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:18:35.0270 5016 hcw85cir - ok
19:18:35.0316 5016 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:18:35.0332 5016 HdAudAddService - ok
19:18:35.0348 5016 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:18:35.0348 5016 HDAudBus - ok
19:18:35.0379 5016 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:18:35.0379 5016 HidBatt - ok
19:18:35.0379 5016 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:18:35.0379 5016 HidBth - ok
19:18:35.0394 5016 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:18:35.0394 5016 HidIr - ok
19:18:35.0426 5016 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:18:35.0426 5016 hidserv - ok
19:18:35.0457 5016 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
19:18:35.0457 5016 HidUsb - ok
19:18:35.0519 5016 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:18:35.0519 5016 hkmsvc - ok
19:18:35.0550 5016 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:18:35.0566 5016 HomeGroupListener - ok
19:18:35.0597 5016 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:18:35.0597 5016 HomeGroupProvider - ok
19:18:35.0628 5016 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:18:35.0628 5016 HpSAMD - ok
19:18:35.0691 5016 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:18:35.0691 5016 HTTP - ok
19:18:35.0753 5016 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:18:35.0753 5016 hwpolicy - ok
19:18:35.0816 5016 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:18:35.0816 5016 i8042prt - ok
19:18:35.0862 5016 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
19:18:35.0862 5016 iaStor - ok
19:18:35.0940 5016 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:18:35.0940 5016 IAStorDataMgrSvc - ok
19:18:35.0972 5016 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:18:35.0972 5016 iaStorV - ok
19:18:36.0018 5016 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:18:36.0034 5016 idsvc - ok
19:18:36.0315 5016 [ 9937600A1584FF00565D5379EB4C9EDB ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
19:18:36.0377 5016 igfx - ok
19:18:36.0408 5016 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:18:36.0408 5016 iirsp - ok
19:18:36.0440 5016 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:18:36.0455 5016 IKEEXT - ok
19:18:36.0564 5016 [ 1CE438B31551746AB450D8FFA403BDB5 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:18:36.0580 5016 IntcAzAudAddService - ok
19:18:36.0627 5016 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
19:18:36.0627 5016 IntcDAud - ok
19:18:36.0642 5016 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:18:36.0642 5016 intelide - ok
19:18:36.0674 5016 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:18:36.0674 5016 intelppm - ok
19:18:36.0798 5016 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
19:18:36.0798 5016 IntuitUpdateServiceV4 - ok
19:18:36.0830 5016 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:18:36.0830 5016 IPBusEnum - ok
19:18:36.0876 5016 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:18:36.0876 5016 IpFilterDriver - ok
19:18:36.0923 5016 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:18:36.0939 5016 iphlpsvc - ok
19:18:36.0970 5016 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:18:36.0970 5016 IPMIDRV - ok
19:18:36.0986 5016 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:18:36.0986 5016 IPNAT - ok
19:18:37.0017 5016 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:18:37.0017 5016 IRENUM - ok
19:18:37.0032 5016 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:18:37.0032 5016 isapnp - ok
19:18:37.0079 5016 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:18:37.0079 5016 iScsiPrt - ok
19:18:37.0126 5016 [ 0469BFF65BBDEE9E46D0C45EE32A08BD ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
19:18:37.0126 5016 k57nd60a - ok
19:18:37.0157 5016 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:18:37.0157 5016 kbdclass - ok
19:18:37.0188 5016 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:18:37.0188 5016 kbdhid - ok
19:18:37.0204 5016 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:18:37.0204 5016 KeyIso - ok
19:18:37.0251 5016 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:18:37.0251 5016 KSecDD - ok
19:18:37.0298 5016 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:18:37.0298 5016 KSecPkg - ok
19:18:37.0313 5016 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:18:37.0313 5016 ksthunk - ok
19:18:37.0344 5016 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:18:37.0344 5016 KtmRm - ok
19:18:37.0391 5016 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:18:37.0407 5016 LanmanServer - ok
19:18:37.0469 5016 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:18:37.0469 5016 LanmanWorkstation - ok
19:18:37.0532 5016 [ 93B73DED2BC688F140C6AE2FBAD45789 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
19:18:37.0532 5016 Live Updater Service - ok
19:18:37.0547 5016 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:18:37.0547 5016 lltdio - ok
19:18:37.0578 5016 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:18:37.0594 5016 lltdsvc - ok
19:18:37.0610 5016 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:18:37.0610 5016 lmhosts - ok
19:18:37.0688 5016 [ 50C7CE53EF461870410355F1F2E7D515 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:18:37.0688 5016 LMS - ok
19:18:37.0719 5016 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:18:37.0719 5016 LSI_FC - ok
19:18:37.0719 5016 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:18:37.0734 5016 LSI_SAS - ok
19:18:37.0750 5016 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:18:37.0750 5016 LSI_SAS2 - ok
19:18:37.0750 5016 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:18:37.0750 5016 LSI_SCSI - ok
19:18:37.0766 5016 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:18:37.0766 5016 luafv - ok
19:18:37.0812 5016 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:18:37.0812 5016 Mcx2Svc - ok
19:18:37.0828 5016 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:18:37.0828 5016 megasas - ok
19:18:37.0859 5016 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:18:37.0859 5016 MegaSR - ok
19:18:37.0875 5016 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:18:37.0875 5016 MEIx64 - ok
19:18:38.0000 5016 Microsoft SharePoint Workspace Audit Service - ok
19:18:38.0046 5016 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:18:38.0046 5016 MMCSS - ok
19:18:38.0062 5016 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:18:38.0062 5016 Modem - ok
19:18:38.0125 5016 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:18:38.0125 5016 monitor - ok
19:18:38.0171 5016 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:18:38.0171 5016 mouclass - ok
19:18:38.0203 5016 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:18:38.0203 5016 mouhid - ok
19:18:38.0234 5016 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:18:38.0234 5016 mountmgr - ok
19:18:38.0343 5016 [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:18:38.0343 5016 MozillaMaintenance - ok
19:18:38.0421 5016 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:18:38.0421 5016 MpFilter - ok
19:18:38.0468 5016 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:18:38.0468 5016 mpio - ok
19:18:38.0499 5016 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:18:38.0499 5016 mpsdrv - ok
19:18:38.0546 5016 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:18:38.0561 5016 MpsSvc - ok
19:18:38.0608 5016 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:18:38.0608 5016 MRxDAV - ok
19:18:38.0655 5016 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:18:38.0655 5016 mrxsmb - ok
19:18:38.0702 5016 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:18:38.0702 5016 mrxsmb10 - ok
19:18:38.0702 5016 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:18:38.0717 5016 mrxsmb20 - ok
19:18:38.0733 5016 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:18:38.0733 5016 msahci - ok
19:18:38.0749 5016 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:18:38.0749 5016 msdsm - ok
19:18:38.0764 5016 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:18:38.0780 5016 MSDTC - ok
19:18:38.0795 5016 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:18:38.0795 5016 Msfs - ok
19:18:38.0827 5016 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:18:38.0827 5016 mshidkmdf - ok
19:18:38.0858 5016 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:18:38.0858 5016 msisadrv - ok
19:18:38.0889 5016 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:18:38.0889 5016 MSiSCSI - ok
19:18:38.0889 5016 msiserver - ok
19:18:38.0920 5016 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:18:38.0920 5016 MSKSSRV - ok
19:18:38.0998 5016 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:18:38.0998 5016 MsMpSvc - ok
19:18:39.0014 5016 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:18:39.0029 5016 MSPCLOCK - ok
19:18:39.0029 5016 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:18:39.0029 5016 MSPQM - ok
19:18:39.0076 5016 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:18:39.0092 5016 MsRPC - ok
19:18:39.0139 5016 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:18:39.0139 5016 mssmbios - ok
19:18:39.0154 5016 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:18:39.0154 5016 MSTEE - ok
19:18:39.0170 5016 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:18:39.0170 5016 MTConfig - ok
19:18:39.0170 5016 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:18:39.0185 5016 Mup - ok
19:18:39.0201 5016 [ 9B1EAC6FAF6F37305E822F5588DC8056 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
19:18:39.0201 5016 mwlPSDFilter - ok
19:18:39.0201 5016 [ AD55C1524B296280ED9C6E0D730D35DA ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
19:18:39.0201 5016 mwlPSDNServ - ok
19:18:39.0232 5016 [ 2B599E6EC8843637BDD62E7F8F3BA201 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
19:18:39.0232 5016 mwlPSDVDisk - ok
19:18:39.0279 5016 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:18:39.0279 5016 napagent - ok
19:18:39.0326 5016 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:18:39.0326 5016 NativeWifiP - ok
19:18:39.0388 5016 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:18:39.0404 5016 NDIS - ok
19:18:39.0435 5016 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:18:39.0435 5016 NdisCap - ok
19:18:39.0466 5016 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:18:39.0466 5016 NdisTapi - ok
19:18:39.0513 5016 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:18:39.0513 5016 Ndisuio - ok
19:18:39.0560 5016 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:18:39.0560 5016 NdisWan - ok
19:18:39.0591 5016 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:18:39.0591 5016 NDProxy - ok
19:18:39.0622 5016 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:18:39.0622 5016 NetBIOS - ok
19:18:39.0669 5016 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:18:39.0669 5016 NetBT - ok
19:18:39.0685 5016 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:18:39.0685 5016 Netlogon - ok
19:18:39.0716 5016 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:18:39.0716 5016 Netman - ok
19:18:39.0778 5016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:18:39.0809 5016 NetMsmqActivator - ok
19:18:39.0809 5016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:18:39.0809 5016 NetPipeActivator - ok
19:18:39.0825 5016 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:18:39.0825 5016 netprofm - ok
19:18:39.0825 5016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:18:39.0825 5016 NetTcpActivator - ok
19:18:39.0841 5016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:18:39.0841 5016 NetTcpPortSharing - ok
19:18:39.0887 5016 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:18:39.0887 5016 nfrd960 - ok
19:18:39.0934 5016 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:18:39.0934 5016 NisDrv - ok
19:18:39.0997 5016 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
19:18:39.0997 5016 NisSrv - ok
19:18:40.0012 5016 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:18:40.0028 5016 NlaSvc - ok
19:18:40.0028 5016 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:18:40.0028 5016 Npfs - ok
19:18:40.0043 5016 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:18:40.0059 5016 nsi - ok
19:18:40.0059 5016 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:18:40.0059 5016 nsiproxy - ok
19:18:40.0137 5016 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:18:40.0184 5016 Ntfs - ok
19:18:40.0277 5016 [ 8F59A2506AF43F96F5397B3C79938AE9 ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
19:18:40.0387 5016 NTI IScheduleSvc - ok
19:18:40.0449 5016 [ EE3BA1024594D5D09E314F206B94069E ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
19:18:40.0449 5016 NTIDrvr - ok
19:18:40.0465 5016 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:18:40.0465 5016 Null - ok
19:18:40.0511 5016 [ 786DB821BFD57C0551DBBE4F75384A7D ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
19:18:40.0511 5016 nusb3hub - ok
19:18:40.0527 5016 [ DAA8005CAF745042BB427A1ED7433354 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
19:18:40.0527 5016 nusb3xhc - ok
19:18:40.0574 5016 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:18:40.0574 5016 nvraid - ok
19:18:40.0605 5016 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:18:40.0605 5016 nvstor - ok
19:18:40.0652 5016 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:18:40.0652 5016 nv_agp - ok
19:18:40.0699 5016 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:18:40.0699 5016 ohci1394 - ok
19:18:40.0823 5016 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:18:40.0823 5016 ose - ok
19:18:41.0042 5016 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:18:41.0073 5016 osppsvc - ok
19:18:41.0135 5016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:18:41.0135 5016 p2pimsvc - ok
19:18:41.0151 5016 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:18:41.0167 5016 p2psvc - ok
19:18:41.0182 5016 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:18:41.0182 5016 Parport - ok
19:18:41.0229 5016 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:18:41.0229 5016 partmgr - ok
19:18:41.0245 5016 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:18:41.0245 5016 PcaSvc - ok
19:18:41.0260 5016 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:18:41.0260 5016 pci - ok
19:18:41.0291 5016 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:18:41.0291 5016 pciide - ok
19:18:41.0323 5016 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:18:41.0323 5016 pcmcia - ok
19:18:41.0338 5016 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:18:41.0338 5016 pcw - ok
19:18:41.0354 5016 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:18:41.0369 5016 PEAUTH - ok
19:18:41.0447 5016 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:18:41.0463 5016 PerfHost - ok
19:18:41.0525 5016 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:18:41.0557 5016 pla - ok
19:18:41.0619 5016 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:18:41.0635 5016 PlugPlay - ok
19:18:41.0681 5016 [ F485770EEC8959684CC4C4786B63C06C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:18:41.0681 5016 Pml Driver HPZ12 - ok
19:18:41.0697 5016 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:18:41.0697 5016 PNRPAutoReg - ok
19:18:41.0713 5016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:18:41.0713 5016 PNRPsvc - ok
19:18:41.0775 5016 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:18:41.0791 5016 PolicyAgent - ok
19:18:41.0822 5016 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:18:41.0822 5016 Power - ok
19:18:41.0884 5016 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:18:41.0884 5016 PptpMiniport - ok
19:18:41.0900 5016 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:18:41.0900 5016 Processor - ok
19:18:41.0947 5016 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:18:41.0947 5016 ProfSvc - ok
19:18:41.0962 5016 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:18:41.0962 5016 ProtectedStorage - ok
19:18:42.0025 5016 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:18:42.0025 5016 Psched - ok
19:18:42.0071 5016 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:18:42.0103 5016 ql2300 - ok
19:18:42.0103 5016 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:18:42.0103 5016 ql40xx - ok
19:18:42.0149 5016 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:18:42.0149 5016 QWAVE - ok
19:18:42.0165 5016 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:18:42.0165 5016 QWAVEdrv - ok
19:18:42.0165 5016 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:18:42.0165 5016 RasAcd - ok
19:18:42.0196 5016 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:18:42.0196 5016 RasAgileVpn - ok
19:18:42.0212 5016 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:18:42.0227 5016 RasAuto - ok
19:18:42.0259 5016 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:18:42.0259 5016 Rasl2tp - ok
19:18:42.0305 5016 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:18:42.0321 5016 RasMan - ok
19:18:42.0337 5016 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:18:42.0337 5016 RasPppoe - ok
19:18:42.0352 5016 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:18:42.0352 5016 RasSstp - ok
19:18:42.0368 5016 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:18:42.0368 5016 rdbss - ok
19:18:42.0383 5016 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:18:42.0383 5016 rdpbus - ok
19:18:42.0399 5016 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:18:42.0399 5016 RDPCDD - ok
19:18:42.0415 5016 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:18:42.0415 5016 RDPENCDD - ok
19:18:42.0415 5016 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:18:42.0415 5016 RDPREFMP - ok
19:18:42.0461 5016 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:18:42.0477 5016 RDPWD - ok
19:18:42.0508 5016 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:18:42.0508 5016 rdyboost - ok
19:18:42.0539 5016 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:18:42.0539 5016 RemoteAccess - ok
19:18:42.0555 5016 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:18:42.0555 5016 RemoteRegistry - ok
19:18:42.0617 5016 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
19:18:42.0617 5016 RimUsb - ok
19:18:42.0633 5016 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:18:42.0633 5016 RpcEptMapper - ok
19:18:42.0664 5016 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:18:42.0664 5016 RpcLocator - ok
19:18:42.0711 5016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:18:42.0711 5016 RpcSs - ok
19:18:42.0727 5016 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:18:42.0727 5016 rspndr - ok
19:18:42.0727 5016 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:18:42.0727 5016 SamSs - ok
19:18:42.0773 5016 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:18:42.0773 5016 sbp2port - ok
19:18:42.0820 5016 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:18:42.0836 5016 SCardSvr - ok
19:18:42.0883 5016 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:18:42.0883 5016 scfilter - ok
19:18:42.0929 5016 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:18:42.0945 5016 Schedule - ok
19:18:42.0992 5016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:18:42.0992 5016 SCPolicySvc - ok
19:18:43.0039 5016 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
19:18:43.0039 5016 sdbus - ok
19:18:43.0070 5016 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:18:43.0070 5016 SDRSVC - ok
19:18:43.0101 5016 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:18:43.0101 5016 secdrv - ok
19:18:43.0148 5016 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:18:43.0148 5016 seclogon - ok
19:18:43.0163 5016 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:18:43.0179 5016 SENS - ok
19:18:43.0195 5016 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:18:43.0195 5016 SensrSvc - ok
19:18:43.0226 5016 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:18:43.0226 5016 Serenum - ok
19:18:43.0241 5016 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:18:43.0241 5016 Serial - ok
19:18:43.0257 5016 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:18:43.0257 5016 sermouse - ok
19:18:43.0288 5016 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:18:43.0304 5016 SessionEnv - ok
19:18:43.0351 5016 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:18:43.0351 5016 sffdisk - ok
19:18:43.0366 5016 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:18:43.0366 5016 sffp_mmc - ok
19:18:43.0397 5016 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:18:43.0397 5016 sffp_sd - ok
19:18:43.0397 5016 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:18:43.0397 5016 sfloppy - ok
19:18:43.0429 5016 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:18:43.0429 5016 SharedAccess - ok
19:18:43.0475 5016 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:18:43.0475 5016 ShellHWDetection - ok
19:18:43.0491 5016 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:18:43.0507 5016 SiSRaid2 - ok
19:18:43.0507 5016 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:18:43.0507 5016 SiSRaid4 - ok
19:18:43.0538 5016 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:18:43.0538 5016 Smb - ok
19:18:43.0585 5016 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:18:43.0585 5016 SNMPTRAP - ok
19:18:43.0694 5016 [ 8D843FED0624C9F6559DE44BD81C46CF ] SoftShieldService C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.ShieldRunner.exe
19:18:43.0709 5016 SoftShieldService - ok
19:18:43.0725 5016 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:18:43.0725 5016 spldr - ok
19:18:43.0787 5016 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:18:43.0787 5016 Spooler - ok
19:18:43.0897 5016 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:18:43.0912 5016 sppsvc - ok
19:18:43.0943 5016 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:18:43.0959 5016 sppuinotify - ok
19:18:44.0006 5016 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:18:44.0006 5016 srv - ok
19:18:44.0037 5016 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:18:44.0037 5016 srv2 - ok
19:18:44.0053 5016 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:18:44.0053 5016 srvnet - ok
19:18:44.0084 5016 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:18:44.0084 5016 SSDPSRV - ok
19:18:44.0099 5016 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:18:44.0099 5016 SstpSvc - ok
19:18:44.0131 5016 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:18:44.0131 5016 stexstor - ok
19:18:44.0193 5016 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:18:44.0193 5016 stisvc - ok
19:18:44.0224 5016 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:18:44.0224 5016 swenum - ok
19:18:44.0255 5016 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:18:44.0255 5016 swprv - ok
19:18:44.0318 5016 [ EF51B22706DB03F0857FADE127C804EC ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
19:18:44.0333 5016 SynTP - ok
19:18:44.0396 5016 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:18:44.0411 5016 SysMain - ok
19:18:44.0474 5016 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:18:44.0474 5016 TabletInputService - ok
19:18:44.0536 5016 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:18:44.0536 5016 TapiSrv - ok
19:18:44.0583 5016 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:18:44.0583 5016 TBS - ok
19:18:44.0677 5016 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:18:44.0723 5016 Tcpip - ok
19:18:44.0770 5016 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:18:44.0786 5016 TCPIP6 - ok
19:18:44.0833 5016 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:18:44.0833 5016 tcpipreg - ok
19:18:44.0864 5016 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:18:44.0864 5016 TDPIPE - ok
19:18:44.0911 5016 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:18:44.0911 5016 TDTCP - ok
19:18:44.0957 5016 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:18:44.0957 5016 tdx - ok
19:18:44.0973 5016 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:18:44.0973 5016 TermDD - ok
19:18:45.0020 5016 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:18:45.0035 5016 TermService - ok
19:18:45.0067 5016 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:18:45.0067 5016 Themes - ok
19:18:45.0098 5016 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:18:45.0098 5016 THREADORDER - ok
19:18:45.0113 5016 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:18:45.0129 5016 TrkWks - ok
19:18:45.0191 5016 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:18:45.0191 5016 TrustedInstaller - ok
19:18:45.0238 5016 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:18:45.0238 5016 tssecsrv - ok
19:18:45.0269 5016 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:18:45.0269 5016 TsUsbFlt - ok
19:18:45.0332 5016 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:18:45.0332 5016 tunnel - ok
19:18:45.0347 5016 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:18:45.0347 5016 uagp35 - ok
19:18:45.0379 5016 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
19:18:45.0379 5016 UBHelper - ok
19:18:45.0425 5016 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:18:45.0425 5016 udfs - ok
19:18:45.0441 5016 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:18:45.0441 5016 UI0Detect - ok
19:18:45.0472 5016 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:18:45.0472 5016 uliagpkx - ok
19:18:45.0519 5016 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:18:45.0519 5016 umbus - ok
19:18:45.0550 5016 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:18:45.0550 5016 UmPass - ok
19:18:45.0675 5016 [ 374EBDA379A8F38E0CFC2211611E7167 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:18:45.0691 5016 UNS - ok
19:18:45.0722 5016 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:18:45.0722 5016 upnphost - ok
19:18:45.0769 5016 [ C85B8247FADD432FA54FE11667C8D97D ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
19:18:45.0769 5016 usbbus - ok
19:18:45.0815 5016 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:18:45.0815 5016 usbccgp - ok
19:18:45.0847 5016 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:18:45.0847 5016 usbcir - ok
19:18:45.0893 5016 [ D8CDC12F5429878F23DDB3785A0FDF95 ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
19:18:45.0893 5016 UsbDiag - ok
19:18:45.0909 5016 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:18:45.0909 5016 usbehci - ok
19:18:45.0956 5016 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:18:45.0956 5016 usbhub - ok
19:18:45.0987 5016 [ 79FA7A22B0F6F0082F640CBC82A00FCE ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
19:18:45.0987 5016 USBModem - ok
19:18:46.0018 5016 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:18:46.0018 5016 usbohci - ok
19:18:46.0034 5016 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:18:46.0034 5016 usbprint - ok
19:18:46.0065 5016 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:18:46.0081 5016 usbscan - ok
19:18:46.0112 5016 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:18:46.0143 5016 USBSTOR - ok
19:18:46.0174 5016 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:18:46.0174 5016 usbuhci - ok
19:18:46.0205 5016 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
19:18:46.0205 5016 usbvideo - ok
19:18:46.0221 5016 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:18:46.0221 5016 UxSms - ok
19:18:46.0221 5016 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:18:46.0221 5016 VaultSvc - ok
19:18:46.0237 5016 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:18:46.0237 5016 vdrvroot - ok
19:18:46.0299 5016 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:18:46.0315 5016 vds - ok
19:18:46.0330 5016 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:18:46.0330 5016 vga - ok
19:18:46.0346 5016 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:18:46.0346 5016 VgaSave - ok
19:18:46.0361 5016 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:18:46.0361 5016 vhdmp - ok
19:18:46.0393 5016 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:18:46.0393 5016 viaide - ok
19:18:46.0393 5016 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:18:46.0393 5016 volmgr - ok
19:18:46.0455 5016 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:18:46.0455 5016 volmgrx - ok
19:18:46.0486 5016 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:18:46.0502 5016 volsnap - ok
19:18:46.0517 5016 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:18:46.0517 5016 vsmraid - ok
19:18:46.0595 5016 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:18:46.0627 5016 VSS - ok
19:18:46.0642 5016 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:18:46.0642 5016 vwifibus - ok
19:18:46.0658 5016 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:18:46.0658 5016 vwififlt - ok
19:18:46.0705 5016 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:18:46.0705 5016 W32Time - ok
19:18:46.0720 5016 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:18:46.0720 5016 WacomPen - ok
19:18:46.0751 5016 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:18:46.0751 5016 WANARP - ok
19:18:46.0767 5016 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:18:46.0767 5016 Wanarpv6 - ok
19:18:46.0845 5016 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:18:46.0876 5016 WatAdminSvc - ok
19:18:46.0954 5016 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:18:46.0985 5016 wbengine - ok
19:18:47.0001 5016 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:18:47.0001 5016 WbioSrvc - ok
19:18:47.0048 5016 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:18:47.0048 5016 wcncsvc - ok
19:18:47.0063 5016 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:18:47.0063 5016 WcsPlugInService - ok
19:18:47.0079 5016 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:18:47.0079 5016 Wd - ok
19:18:47.0157 5016 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:18:47.0157 5016 Wdf01000 - ok
19:18:47.0173 5016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:18:47.0173 5016 WdiServiceHost - ok
19:18:47.0173 5016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:18:47.0188 5016 WdiSystemHost - ok
19:18:47.0235 5016 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:18:47.0235 5016 WebClient - ok
19:18:47.0251 5016 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:18:47.0251 5016 Wecsvc - ok
19:18:47.0282 5016 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:18:47.0282 5016 wercplsupport - ok
19:18:47.0313 5016 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:18:47.0313 5016 WerSvc - ok
19:18:47.0329 5016 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:18:47.0329 5016 WfpLwf - ok
19:18:47.0344 5016 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:18:47.0344 5016 WIMMount - ok
19:18:47.0360 5016 WinDefend - ok
19:18:47.0360 5016 WinHttpAutoProxySvc - ok
19:18:47.0407 5016 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:18:47.0422 5016 Winmgmt - ok
19:18:47.0500 5016 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:18:47.0547 5016 WinRM - ok
19:18:47.0594 5016 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:18:47.0609 5016 WinUsb - ok
19:18:47.0656 5016 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:18:47.0656 5016 Wlansvc - ok
19:18:47.0687 5016 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:18:47.0703 5016 wlcrasvc - ok
19:18:47.0797 5016 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:18:47.0812 5016 wlidsvc - ok
19:18:47.0843 5016 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:18:47.0843 5016 WmiAcpi - ok
19:18:47.0875 5016 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:18:47.0875 5016 wmiApSrv - ok
19:18:47.0906 5016 WMPNetworkSvc - ok
19:18:47.0921 5016 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:18:47.0921 5016 WPCSvc - ok
19:18:47.0968 5016 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:18:47.0968 5016 WPDBusEnum - ok
19:18:47.0984 5016 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:18:47.0984 5016 ws2ifsl - ok
19:18:47.0999 5016 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
19:18:47.0999 5016 wscsvc - ok
19:18:48.0015 5016 WSearch - ok
19:18:48.0109 5016 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:18:48.0109 5016 wuauserv - ok
19:18:48.0155 5016 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:18:48.0155 5016 WudfPf - ok
19:18:48.0233 5016 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:18:48.0233 5016 WUDFRd - ok
19:18:48.0280 5016 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:18:48.0296 5016 wudfsvc - ok
19:18:48.0327 5016 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:18:48.0327 5016 WwanSvc - ok
19:18:48.0343 5016 ================ Scan global ===============================
19:18:48.0374 5016 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:18:48.0421 5016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:18:48.0452 5016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:18:48.0499 5016 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:18:48.0530 5016 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:18:48.0530 5016 [Global] - ok
19:18:48.0530 5016 ================ Scan MBR ==================================
19:18:48.0545 5016 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:18:49.0076 5016 \Device\Harddisk0\DR0 - ok
19:18:49.0076 5016 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
19:18:49.0606 5016 \Device\Harddisk1\DR1 - ok
19:18:49.0606 5016 ================ Scan VBR ==================================
19:18:49.0606 5016 [ A8A719D15F647C8F9FFFF74BDB555C60 ] \Device\Harddisk0\DR0\Partition1
19:18:49.0606 5016 \Device\Harddisk0\DR0\Partition1 - ok
19:18:49.0622 5016 [ CD708FE133DFF12D3E6FBC0D744013F4 ] \Device\Harddisk0\DR0\Partition2
19:18:49.0622 5016 \Device\Harddisk0\DR0\Partition2 - ok
19:18:49.0653 5016 [ CAFECE55B565DC3445D3640D2938A51F ] \Device\Harddisk0\DR0\Partition3
19:18:49.0653 5016 \Device\Harddisk0\DR0\Partition3 - ok
19:18:49.0653 5016 [ A0BD23930744642AF70576A0862676BE ] \Device\Harddisk1\DR1\Partition1
19:18:49.0653 5016 \Device\Harddisk1\DR1\Partition1 - ok
19:18:49.0653 5016 ================ Scan active images ========================
19:18:49.0653 5016 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
19:18:49.0653 5016 C:\Windows\System32\drivers\crashdmp.sys - ok
19:18:49.0653 5016 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] C:\Windows\System32\drivers\iaStor.sys
19:18:49.0653 5016 C:\Windows\System32\drivers\iaStor.sys - ok
19:18:49.0669 5016 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
19:18:49.0669 5016 C:\Windows\System32\drivers\dumpfve.sys - ok
19:18:49.0669 5016 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
19:18:49.0669 5016 C:\Windows\System32\drivers\cdrom.sys - ok
19:18:49.0669 5016 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
19:18:49.0669 5016 C:\Windows\System32\drivers\beep.sys - ok
19:18:49.0669 5016 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
19:18:49.0669 5016 C:\Windows\System32\drivers\msfs.sys - ok
19:18:49.0684 5016 [ 9B1EAC6FAF6F37305E822F5588DC8056 ] C:\Windows\System32\drivers\mwlPSDFilter.sys
19:18:49.0684 5016 C:\Windows\System32\drivers\mwlPSDFilter.sys - ok
19:18:49.0684 5016 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
19:18:49.0684 5016 C:\Windows\System32\drivers\null.sys - ok
19:18:49.0684 5016 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
19:18:49.0684 5016 C:\Windows\System32\drivers\RDPCDD.sys - ok
19:18:49.0684 5016 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:18:49.0684 5016 C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:18:49.0700 5016 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
19:18:49.0700 5016 C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:18:49.0700 5016 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
19:18:49.0700 5016 C:\Windows\System32\drivers\vga.sys - ok
19:18:49.0700 5016 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
19:18:49.0700 5016 C:\Windows\System32\drivers\videoprt.sys - ok
19:18:49.0700 5016 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
19:18:49.0700 5016 C:\Windows\System32\drivers\watchdog.sys - ok
19:18:49.0715 5016 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
19:18:49.0715 5016 C:\Windows\System32\drivers\netbt.sys - ok
19:18:49.0715 5016 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
19:18:49.0715 5016 C:\Windows\System32\drivers\npfs.sys - ok
19:18:49.0715 5016 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
19:18:49.0715 5016 C:\Windows\System32\drivers\tdi.sys - ok
19:18:49.0715 5016 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
19:18:49.0715 5016 C:\Windows\System32\drivers\tdx.sys - ok
19:18:49.0731 5016 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
19:18:49.0731 5016 C:\Windows\System32\drivers\afd.sys - ok
19:18:49.0731 5016 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
19:18:49.0731 5016 C:\Windows\System32\drivers\netbios.sys - ok
19:18:49.0731 5016 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
19:18:49.0731 5016 C:\Windows\System32\drivers\pacer.sys - ok
19:18:49.0731 5016 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
19:18:49.0731 5016 C:\Windows\System32\drivers\vwififlt.sys - ok
19:18:49.0747 5016 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
19:18:49.0747 5016 C:\Windows\System32\drivers\wanarp.sys - ok
19:18:49.0747 5016 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
19:18:49.0747 5016 C:\Windows\System32\drivers\wfplwf.sys - ok
19:18:49.0747 5016 [ A05FC7ECA0966EBB70E4D17B855A853B ] C:\Windows\System32\drivers\ElbyCDIO.sys
19:18:49.0747 5016 C:\Windows\System32\drivers\ElbyCDIO.sys - ok
19:18:49.0747 5016 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
19:18:49.0747 5016 C:\Windows\System32\drivers\mssmbios.sys - ok
19:18:49.0762 5016 [ AD55C1524B296280ED9C6E0D730D35DA ] C:\Windows\System32\drivers\mwlPSDNserv.sys
19:18:49.0762 5016 C:\Windows\System32\drivers\mwlPSDNserv.sys - ok
19:18:49.0762 5016 [ 2B599E6EC8843637BDD62E7F8F3BA201 ] C:\Windows\System32\drivers\mwlPSDVDisk.sys
19:18:49.0762 5016 C:\Windows\System32\drivers\mwlPSDVDisk.sys - ok
19:18:49.0762 5016 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
19:18:49.0762 5016 C:\Windows\System32\drivers\nsiproxy.sys - ok
19:18:49.0762 5016 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
19:18:49.0762 5016 C:\Windows\System32\drivers\rdbss.sys - ok
19:18:49.0778 5016 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
19:18:49.0778 5016 C:\Windows\System32\drivers\termdd.sys - ok
19:18:49.0778 5016 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
19:18:49.0778 5016 C:\Windows\System32\drivers\blbdrive.sys - ok
19:18:49.0778 5016 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
19:18:49.0778 5016 C:\Windows\System32\drivers\dfsc.sys - ok
19:18:49.0778 5016 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
19:18:49.0778 5016 C:\Windows\System32\drivers\discache.sys - ok
19:18:49.0793 5016 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
19:18:49.0793 5016 C:\Windows\System32\drivers\tunnel.sys - ok
19:18:49.0793 5016 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
19:18:49.0793 5016 C:\Windows\System32\ntdll.dll - ok
19:18:49.0793 5016 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
19:18:49.0793 5016 C:\Windows\System32\smss.exe - ok
19:18:49.0793 5016 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
19:18:49.0793 5016 C:\Windows\System32\autochk.exe - ok
19:18:49.0809 5016 [ 9937600A1584FF00565D5379EB4C9EDB ] C:\Windows\System32\drivers\igdkmd64.sys
19:18:49.0809 5016 C:\Windows\System32\drivers\igdkmd64.sys - ok
19:18:49.0809 5016 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
19:18:49.0809 5016 C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:18:49.0809 5016 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
19:18:49.0809 5016 C:\Windows\System32\drivers\dxgmms1.sys - ok
19:18:49.0809 5016 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] C:\Windows\System32\drivers\HECIx64.sys
19:18:49.0809 5016 C:\Windows\System32\drivers\HECIx64.sys - ok
19:18:49.0825 5016 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
19:18:49.0825 5016 C:\Windows\System32\drivers\hdaudbus.sys - ok
19:18:49.0825 5016 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
19:18:49.0825 5016 C:\Windows\System32\drivers\usbehci.sys - ok
19:18:49.0825 5016 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
19:18:49.0825 5016 C:\Windows\System32\drivers\usbport.sys - ok
19:18:49.0825 5016 [ 0469BFF65BBDEE9E46D0C45EE32A08BD ] C:\Windows\System32\drivers\k57nd60a.sys
19:18:49.0825 5016 C:\Windows\System32\drivers\k57nd60a.sys - ok
19:18:49.0840 5016 [ 520408CFDB56DE8CDB44B2F11B9C5B5C ] C:\Windows\System32\drivers\bScsiMSa.sys
19:18:49.0840 5016 C:\Windows\System32\drivers\bScsiMSa.sys - ok
19:18:49.0840 5016 [ 9F880F03F4A72215C8B77FD51322C297 ] C:\Windows\System32\drivers\bScsiSDa.sys
19:18:49.0840 5016 C:\Windows\System32\drivers\bScsiSDa.sys - ok
19:18:49.0840 5016 [ 1B1E264203D4EF9D3DA1987AD70355AB ] C:\Windows\System32\drivers\scsiport.sys
19:18:49.0840 5016 C:\Windows\System32\drivers\scsiport.sys - ok
19:18:49.0840 5016 [ A424CB46A145E5AABF15621550976DF2 ] C:\Windows\System32\drivers\b57xdbd.sys
19:18:49.0840 5016 C:\Windows\System32\drivers\b57xdbd.sys - ok
19:18:49.0856 5016 [ C8679A07267F030704168E45E27C3D43 ] C:\Windows\System32\drivers\athrx.sys
19:18:49.0856 5016 C:\Windows\System32\drivers\athrx.sys - ok
19:18:49.0856 5016 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
19:18:49.0856 5016 C:\Windows\System32\drivers\vwifibus.sys - ok
19:18:49.0856 5016 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
19:18:49.0856 5016 C:\Windows\System32\drivers\i8042prt.sys - ok
19:18:49.0856 5016 [ DAA8005CAF745042BB427A1ED7433354 ] C:\Windows\System32\drivers\nusb3xhc.sys
19:18:49.0856 5016 C:\Windows\System32\drivers\nusb3xhc.sys - ok
19:18:49.0871 5016 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
19:18:49.0871 5016 C:\Windows\System32\drivers\usbd.sys - ok
19:18:49.0871 5016 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
19:18:49.0871 5016 C:\Windows\System32\drivers\kbdclass.sys - ok
19:18:49.0871 5016 [ EF51B22706DB03F0857FADE127C804EC ] C:\Windows\System32\drivers\SynTP.sys
19:18:49.0871 5016 C:\Windows\System32\drivers\SynTP.sys - ok
19:18:49.0871 5016 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
19:18:49.0871 5016 C:\Windows\System32\drivers\mouclass.sys - ok
19:18:49.0887 5016 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
19:18:49.0887 5016 C:\Windows\System32\drivers\CmBatt.sys - ok
19:18:49.0887 5016 [ 1F8E9426219263CB3CE9AC1735A68D9E ] C:\Windows\System32\drivers\AnyDVD.sys
19:18:49.0887 5016 C:\Windows\System32\drivers\AnyDVD.sys - ok
19:18:49.0887 5016 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] C:\Windows\System32\drivers\UBHelper.sys
19:18:49.0887 5016 C:\Windows\System32\drivers\UBHelper.sys - ok
19:18:49.0887 5016 [ EE3BA1024594D5D09E314F206B94069E ] C:\Windows\System32\drivers\NTIDrvr.sys
19:18:49.0887 5016 C:\Windows\System32\drivers\NTIDrvr.sys - ok
19:18:49.0903 5016 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
19:18:49.0903 5016 C:\Windows\System32\drivers\CompositeBus.sys - ok
19:18:49.0903 5016 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
19:18:49.0903 5016 C:\Windows\System32\drivers\intelppm.sys - ok
19:18:49.0903 5016 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
19:18:49.0903 5016 C:\Windows\System32\drivers\wmiacpi.sys - ok
19:18:49.0903 5016 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
19:18:49.0903 5016 C:\Windows\System32\drivers\agilevpn.sys - ok
19:18:49.0918 5016 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
19:18:49.0918 5016 C:\Windows\System32\drivers\rasl2tp.sys - ok
19:18:49.0918 5016 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
19:18:49.0918 5016 C:\Windows\System32\drivers\ndistapi.sys - ok
19:18:49.0918 5016 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
19:18:49.0918 5016 C:\Windows\System32\drivers\ndiswan.sys - ok
19:18:49.0918 5016 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
19:18:49.0918 5016 C:\Windows\System32\drivers\raspppoe.sys - ok
19:18:49.0934 5016 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
19:18:49.0934 5016 C:\Windows\System32\drivers\raspptp.sys - ok
19:18:49.0934 5016 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
19:18:49.0934 5016 C:\Windows\System32\drivers\rassstp.sys - ok
19:18:49.0934 5016 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
19:18:49.0934 5016 C:\Windows\System32\drivers\ks.sys - ok
19:18:49.0934 5016 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
19:18:49.0934 5016 C:\Windows\System32\drivers\swenum.sys - ok
19:18:49.0949 5016 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
19:18:49.0949 5016 C:\Windows\System32\drivers\umbus.sys - ok
19:18:49.0949 5016 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
19:18:49.0949 5016 C:\Windows\System32\drivers\usbhub.sys - ok
19:18:49.0949 5016 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
19:18:49.0949 5016 C:\Windows\System32\nsi.dll - ok
19:18:49.0949 5016 [ 786DB821BFD57C0551DBBE4F75384A7D ] C:\Windows\System32\drivers\nusb3hub.sys
19:18:49.0949 5016 C:\Windows\System32\drivers\nusb3hub.sys - ok
19:18:49.0965 5016 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
19:18:49.0965 5016 C:\Windows\System32\drivers\ndproxy.sys - ok
19:18:49.0965 5016 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
19:18:49.0965 5016 C:\Windows\System32\comdlg32.dll - ok
19:18:49.0965 5016 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
19:18:49.0965 5016 C:\Windows\System32\difxapi.dll - ok
19:18:49.0965 5016 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
19:18:49.0965 5016 C:\Windows\System32\usp10.dll - ok
19:18:49.0965 5016 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
19:18:49.0965 5016 C:\Windows\System32\drivers\drmk.sys - ok
19:18:49.0981 5016 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
19:18:49.0981 5016 C:\Windows\System32\drivers\portcls.sys - ok
19:18:49.0981 5016 [ 1CE438B31551746AB450D8FFA403BDB5 ] C:\Windows\System32\drivers\RTKVHD64.sys
19:18:49.0981 5016 C:\Windows\System32\drivers\RTKVHD64.sys - ok
19:18:49.0981 5016 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
19:18:49.0981 5016 C:\Windows\System32\drivers\ksthunk.sys - ok
19:18:49.0981 5016 [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
19:18:49.0981 5016 C:\Windows\System32\drivers\IntcDAud.sys - ok
19:18:49.0996 5016 [ BE4E6FD5A898812B85D5817AD9754A9F ] C:\Windows\System32\drivers\b57xdmp.sys
19:18:49.0996 5016 C:\Windows\System32\drivers\b57xdmp.sys - ok
19:18:49.0996 5016 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
19:18:49.0996 5016 C:\Windows\System32\drivers\hidclass.sys - ok
19:18:49.0996 5016 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
19:18:49.0996 5016 C:\Windows\System32\drivers\hidparse.sys - ok
19:18:49.0996 5016 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
19:18:49.0996 5016 C:\Windows\System32\drivers\hidusb.sys - ok
19:18:50.0012 5016 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
19:18:50.0012 5016 C:\Windows\System32\drivers\mouhid.sys - ok
19:18:50.0012 5016 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
19:18:50.0012 5016 C:\Windows\System32\drivers\usbccgp.sys - ok
19:18:50.0012 5016 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
19:18:50.0012 5016 C:\Windows\System32\drivers\usbvideo.sys - ok
19:18:50.0012 5016 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
19:18:50.0027 5016 C:\Windows\System32\imm32.dll - ok
19:18:50.0027 5016 [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
19:18:50.0027 5016 C:\Windows\System32\drivers\cdfs.sys - ok
19:18:50.0027 5016 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
19:18:50.0027 5016 C:\Windows\System32\shell32.dll - ok
19:18:50.0027 5016 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
19:18:50.0027 5016 C:\Windows\System32\drivers\USBSTOR.SYS - ok
19:18:50.0043 5016 [ 3797D8C3A5392583CFBE1444A393C588 ] C:\Windows\System32\urlmon.dll
19:18:50.0043 5016 C:\Windows\System32\urlmon.dll - ok
19:18:50.0043 5016 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
19:18:50.0043 5016 C:\Windows\System32\user32.dll - ok
19:18:50.0043 5016 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
19:18:50.0043 5016 C:\Windows\System32\imagehlp.dll - ok
19:18:50.0043 5016 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
19:18:50.0043 5016 C:\Windows\System32\psapi.dll - ok
19:18:50.0043 5016 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
19:18:50.0043 5016 C:\Windows\System32\advapi32.dll - ok
19:18:50.0059 5016 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
19:18:50.0059 5016 C:\Windows\System32\ws2_32.dll - ok
19:18:50.0059 5016 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
19:18:50.0059 5016 C:\Windows\System32\clbcatq.dll - ok
19:18:50.0059 5016 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
19:18:50.0059 5016 C:\Windows\System32\setupapi.dll - ok
19:18:50.0059 5016 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
19:18:50.0059 5016 C:\Windows\System32\shlwapi.dll - ok
19:18:50.0074 5016 [ 81101547092783DC117D800D3573EBD4 ] C:\Windows\System32\wininet.dll
19:18:50.0074 5016 C:\Windows\System32\wininet.dll - ok
19:18:50.0074 5016 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
19:18:50.0074 5016 C:\Windows\System32\Wldap32.dll - ok
19:18:50.0074 5016 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
19:18:50.0074 5016 C:\Windows\System32\msctf.dll - ok
19:18:50.0074 5016 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
19:18:50.0074 5016 C:\Windows\System32\rpcrt4.dll - ok
19:18:50.0090 5016 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
19:18:50.0090 5016 C:\Windows\System32\gdi32.dll - ok
19:18:50.0090 5016 [ F4A198F8DC363384CC0D511E919477F1 ] C:\Windows\System32\iertutil.dll
19:18:50.0090 5016 C:\Windows\System32\iertutil.dll - ok
19:18:50.0090 5016 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
19:18:50.0090 5016 C:\Windows\System32\kernel32.dll - ok
19:18:50.0090 5016 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
19:18:50.0090 5016 C:\Windows\System32\normaliz.dll - ok
19:18:50.0105 5016 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
19:18:50.0105 5016 C:\Windows\System32\sechost.dll - ok
19:18:50.0105 5016 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
19:18:50.0105 5016 C:\Windows\System32\msvcrt.dll - ok
19:18:50.0105 5016 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
19:18:50.0105 5016 C:\Windows\System32\lpk.dll - ok
19:18:50.0105 5016 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
19:18:50.0105 5016 C:\Windows\System32\oleaut32.dll - ok
19:18:50.0121 5016 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
19:18:50.0121 5016 C:\Windows\System32\ole32.dll - ok
19:18:50.0121 5016 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
19:18:50.0121 5016 C:\Windows\System32\cfgmgr32.dll - ok
19:18:50.0121 5016 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
19:18:50.0121 5016 C:\Windows\System32\comctl32.dll - ok
19:18:50.0121 5016 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
19:18:50.0121 5016 C:\Windows\System32\devobj.dll - ok
19:18:50.0137 5016 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
19:18:50.0137 5016 C:\Windows\System32\KernelBase.dll - ok
19:18:50.0137 5016 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
19:18:50.0137 5016 C:\Windows\System32\crypt32.dll - ok
19:18:50.0137 5016 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
19:18:50.0137 5016 C:\Windows\System32\wintrust.dll - ok
19:18:50.0137 5016 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
19:18:50.0137 5016 C:\Windows\System32\drivers\fastfat.sys - ok
19:18:50.0152 5016 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
19:18:50.0152 5016 C:\Windows\System32\msasn1.dll - ok
19:18:50.0152 5016 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
19:18:50.0152 5016 C:\Windows\SysWOW64\normaliz.dll - ok
19:18:50.0152 5016 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
19:18:50.0152 5016 C:\Windows\System32\drivers\dxapi.sys - ok
19:18:50.0152 5016 [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
19:18:50.0152 5016 C:\Windows\System32\win32k.sys - ok
19:18:50.0168 5016 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
19:18:50.0168 5016 C:\Windows\System32\csrsrv.dll - ok
19:18:50.0168 5016 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
19:18:50.0168 5016 C:\Windows\System32\csrss.exe - ok
19:18:50.0168 5016 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
19:18:50.0168 5016 C:\Windows\System32\basesrv.dll - ok
19:18:50.0168 5016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
19:18:50.0168 5016 C:\Windows\System32\winsrv.dll - ok
19:18:50.0168 5016 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
19:18:50.0168 5016 C:\Windows\System32\drivers\monitor.sys - ok
19:18:50.0183 5016 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
19:18:50.0183 5016 C:\Windows\System32\tsddd.dll - ok
19:18:50.0183 5016 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
19:18:50.0183 5016 C:\Windows\System32\sxssrv.dll - ok
19:18:50.0183 5016 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
19:18:50.0183 5016 C:\Windows\System32\wininit.exe - ok
19:18:50.0183 5016 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
19:18:50.0183 5016 C:\Windows\System32\KBDUS.DLL - ok
19:18:50.0199 5016 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
19:18:50.0199 5016 C:\Windows\System32\profapi.dll - ok
19:18:50.0199 5016 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
19:18:50.0199 5016 C:\Windows\System32\RpcRtRemote.dll - ok
19:18:50.0199 5016 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
19:18:50.0199 5016 C:\Windows\System32\cdd.dll - ok
19:18:50.0199 5016 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
19:18:50.0199 5016 C:\Windows\System32\sxs.dll - ok
19:18:50.0215 5016 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
19:18:50.0215 5016 C:\Windows\System32\WlS0WndH.dll - ok
19:18:50.0215 5016 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
19:18:50.0215 5016 C:\Windows\System32\cryptbase.dll - ok
19:18:50.0215 5016 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
19:18:50.0215 5016 C:\Windows\System32\apphelp.dll - ok
19:18:50.0215 5016 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
19:18:50.0215 5016 C:\Windows\System32\lsasrv.dll - ok
19:18:50.0215 5016 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
19:18:50.0215 5016 C:\Windows\System32\lsass.exe - ok
19:18:50.0230 5016 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
19:18:50.0230 5016 C:\Windows\System32\lsm.exe - ok
19:18:50.0230 5016 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
19:18:50.0230 5016 C:\Windows\System32\services.exe - ok
19:18:50.0230 5016 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
19:18:50.0230 5016 C:\Windows\System32\sspicli.dll - ok
19:18:50.0230 5016 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
19:18:50.0230 5016 C:\Windows\System32\sspisrv.dll - ok
19:18:50.0246 5016 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
19:18:50.0246 5016 C:\Windows\System32\scesrv.dll - ok
19:18:50.0246 5016 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
19:18:50.0246 5016 C:\Windows\System32\scext.dll - ok
19:18:50.0246 5016 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
19:18:50.0246 5016 C:\Windows\System32\secur32.dll - ok
19:18:50.0246 5016 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
19:18:50.0246 5016 C:\Windows\System32\samsrv.dll - ok
19:18:50.0261 5016 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
19:18:50.0261 5016 C:\Windows\System32\sysntfy.dll - ok
19:18:50.0261 5016 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
19:18:50.0261 5016 C:\Windows\System32\wmsgapi.dll - ok
19:18:50.0261 5016 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
19:18:50.0261 5016 C:\Windows\System32\srvcli.dll - ok
19:18:50.0261 5016 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
19:18:50.0261 5016 C:\Windows\System32\cryptdll.dll - ok
19:18:50.0277 5016 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
19:18:50.0277 5016 C:\Windows\System32\wevtapi.dll - ok
19:18:50.0277 5016 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
19:18:50.0277 5016 C:\Windows\System32\authz.dll - ok
19:18:50.0277 5016 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
19:18:50.0277 5016 C:\Windows\System32\cngaudit.dll - ok
19:18:50.0277 5016 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
19:18:50.0277 5016 C:\Windows\System32\ncrypt.dll - ok
19:18:50.0293 5016 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
19:18:50.0293 5016 C:\Windows\System32\bcrypt.dll - ok
19:18:50.0293 5016 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
19:18:50.0293 5016 C:\Windows\System32\msprivs.dll - ok
19:18:50.0293 5016 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
19:18:50.0293 5016 C:\Windows\System32\netjoin.dll - ok
19:18:50.0293 5016 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
19:18:50.0293 5016 C:\Windows\System32\negoexts.dll - ok
19:18:50.0308 5016 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
19:18:50.0308 5016 C:\Windows\System32\atmfd.dll - ok
19:18:50.0308 5016 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
19:18:50.0308 5016 C:\Windows\System32\kerberos.dll - ok
19:18:50.0308 5016 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
19:18:50.0308 5016 C:\Windows\System32\cryptsp.dll - ok
19:18:50.0308 5016 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
19:18:50.0308 5016 C:\Windows\System32\version.dll - ok
19:18:50.0324 5016 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
19:18:50.0324 5016 C:\Windows\System32\msv1_0.dll - ok
19:18:50.0324 5016 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
19:18:50.0324 5016 C:\Windows\System32\mswsock.dll - ok
19:18:50.0324 5016 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
19:18:50.0324 5016 C:\Windows\System32\wship6.dll - ok
19:18:50.0324 5016 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
19:18:50.0324 5016 C:\Windows\System32\netlogon.dll - ok
19:18:50.0339 5016 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
19:18:50.0339 5016 C:\Windows\System32\dnsapi.dll - ok
19:18:50.0339 5016 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
19:18:50.0339 5016 C:\Windows\System32\logoncli.dll - ok
19:18:50.0339 5016 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
19:18:50.0339 5016 C:\Windows\System32\schannel.dll - ok
19:18:50.0339 5016 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
19:18:50.0339 5016 C:\Windows\System32\wdigest.dll - ok
19:18:50.0355 5016 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
19:18:50.0355 5016 C:\Windows\System32\rsaenh.dll - ok
19:18:50.0355 5016 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
19:18:50.0355 5016 C:\Windows\System32\TSpkg.dll - ok
19:18:50.0355 5016 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
19:18:50.0355 5016 C:\Windows\System32\pku2u.dll - ok
19:18:50.0355 5016 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
19:18:50.0355 5016 C:\Windows\System32\LIVESSP.DLL - ok
19:18:50.0355 5016 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
19:18:50.0355 5016 C:\Windows\System32\bcryptprimitives.dll - ok
19:18:50.0371 5016 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
19:18:50.0371 5016 C:\Windows\System32\credssp.dll - ok
19:18:50.0371 5016 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
19:18:50.0371 5016 C:\Windows\System32\efslsaext.dll - ok
19:18:50.0371 5016 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
19:18:50.0371 5016 C:\Windows\System32\scecli.dll - ok
19:18:50.0371 5016 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
19:18:50.0371 5016 C:\Windows\System32\ubpm.dll - ok
19:18:50.0386 5016 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
19:18:50.0386 5016 C:\Windows\System32\winlogon.exe - ok
19:18:50.0386 5016 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
19:18:50.0386 5016 C:\Windows\System32\winsta.dll - ok
19:18:50.0386 5016 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
19:18:50.0386 5016 C:\Windows\System32\svchost.exe - ok
19:18:50.0386 5016 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
19:18:50.0386 5016 C:\Windows\System32\umpnpmgr.dll - ok
19:18:50.0402 5016 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
19:18:50.0402 5016 C:\Windows\System32\devrtl.dll - ok
19:18:50.0402 5016 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
19:18:50.0402 5016 C:\Windows\System32\SPInf.dll - ok
19:18:50.0402 5016 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
19:18:50.0402 5016 C:\Windows\System32\userenv.dll - ok
19:18:50.0402 5016 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
19:18:50.0402 5016 C:\Windows\System32\gpapi.dll - ok
19:18:50.0417 5016 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
19:18:50.0417 5016 C:\Windows\System32\umpo.dll - ok
19:18:50.0417 5016 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
19:18:50.0417 5016 C:\Windows\System32\pcwum.dll - ok
19:18:50.0417 5016 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
19:18:50.0417 5016 C:\Windows\System32\powrprof.dll - ok
19:18:50.0417 5016 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
19:18:50.0417 5016 C:\Windows\System32\drivers\luafv.sys - ok
19:18:50.0433 5016 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
19:18:50.0433 5016 C:\Windows\System32\RpcEpMap.dll - ok
19:18:50.0433 5016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
19:18:50.0433 5016 C:\Windows\System32\rpcss.dll - ok
19:18:50.0433 5016 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
19:18:50.0433 5016 C:\Windows\System32\wshqos.dll - ok
19:18:50.0433 5016 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
19:18:50.0433 5016 C:\Windows\System32\WSHTCPIP.DLL - ok
19:18:50.0449 5016 [ BCF8F2758AA5C451F8E366C66A98BBFE ] C:\Program Files\Microsoft Security Client\MpSvc.dll
19:18:50.0449 5016 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
19:18:50.0449 5016 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
19:18:50.0449 5016 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
19:18:50.0449 5016 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
19:18:50.0449 5016 C:\Windows\System32\FirewallAPI.dll - ok
19:18:50.0449 5016 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
19:18:50.0449 5016 C:\Windows\System32\LogonUI.exe - ok
19:18:50.0464 5016 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
19:18:50.0464 5016 C:\Windows\System32\authui.dll - ok
19:18:50.0464 5016 [ 2F67DEE6452EBC9F4A6C97A1CCC232FE ] C:\Program Files\Microsoft Security Client\MpClient.dll
19:18:50.0464 5016 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
19:18:50.0464 5016 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
19:18:50.0464 5016 C:\Windows\System32\wtsapi32.dll - ok
19:18:50.0464 5016 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
19:18:50.0464 5016 C:\Windows\System32\ntmarta.dll - ok
19:18:50.0464 5016 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
19:18:50.0464 5016 C:\Windows\System32\cryptui.dll - ok
19:18:50.0480 5016 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
19:18:50.0480 5016 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
19:18:50.0480 5016 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
19:18:50.0480 5016 C:\Windows\System32\samlib.dll - ok
19:18:50.0480 5016 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
19:18:50.0480 5016 C:\Windows\System32\shacct.dll - ok
19:18:50.0480 5016 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
19:18:50.0480 5016 C:\Windows\System32\propsys.dll - ok
19:18:50.0495 5016 [ 5F10310A5A9273475AA04930DFE16742 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
19:18:50.0495 5016 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
19:18:50.0495 5016 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
19:18:50.0495 5016 C:\Windows\System32\uxtheme.dll - ok
19:18:50.0495 5016 [ BF62F3BC1BE0700804EC394BB77F02C4 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
19:18:50.0495 5016 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
19:18:50.0495 5016 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
19:18:50.0495 5016 C:\Windows\System32\wevtsvc.dll - ok
19:18:50.0511 5016 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
19:18:50.0511 5016 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
19:18:50.0511 5016 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
19:18:50.0511 5016 C:\Windows\System32\fltLib.dll - ok
19:18:50.0511 5016 [ FF7E814CBFEC3C27922C13BB94667416 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
19:18:50.0511 5016 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
19:18:50.0511 5016 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] C:\Windows\System32\drivers\MpFilter.sys
19:18:50.0511 5016 C:\Windows\System32\drivers\MpFilter.sys - ok
19:18:50.0527 5016 [ 12FD09889C8A6141C8D10F7AE48BBAC8 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
19:18:50.0527 5016 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
19:18:50.0527 5016 [ 76A11F575782DBAE74F05B8796EF7F9D ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C73298F-4F67-4FFE-A744-28BBBC1D950D}\mpengine.dll
19:18:50.0527 5016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C73298F-4F67-4FFE-A744-28BBBC1D950D}\mpengine.dll - ok
19:18:50.0527 5016 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
19:18:50.0527 5016 C:\Windows\System32\netprofm.dll - ok
19:18:50.0527 5016 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
19:18:50.0527 5016 C:\Windows\System32\audiosrv.dll - ok
19:18:50.0542 5016 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
19:18:50.0542 5016 C:\Windows\System32\avrt.dll - ok
19:18:50.0542 5016 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
19:18:50.0542 5016 C:\Windows\System32\mmcss.dll - ok
19:18:50.0542 5016 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
19:18:50.0542 5016 C:\Windows\System32\adtschema.dll - ok
19:18:50.0542 5016 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
19:18:50.0542 5016 C:\Windows\System32\MMDevAPI.dll - ok
19:18:50.0558 5016 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
19:18:50.0558 5016 C:\Windows\System32\profsvc.dll - ok
19:18:50.0558 5016 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:18:50.0558 5016 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:18:50.0558 5016 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
19:18:50.0558 5016 C:\Windows\System32\wlansvc.dll - ok
19:18:50.0558 5016 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
19:18:50.0558 5016 C:\Windows\System32\dui70.dll - ok
19:18:50.0573 5016 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
19:18:50.0573 5016 C:\Windows\System32\audiodg.exe - ok
19:18:50.0573 5016 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
19:18:50.0573 5016 C:\Windows\System32\gpsvc.dll - ok
19:18:50.0573 5016 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
19:18:50.0573 5016 C:\Windows\System32\duser.dll - ok
19:18:50.0573 5016 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
19:18:50.0573 5016 C:\Windows\System32\atl.dll - ok
19:18:50.0589 5016 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
19:18:50.0589 5016 C:\Windows\System32\nlaapi.dll - ok
19:18:50.0589 5016 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
19:18:50.0589 5016 C:\Windows\System32\dsrole.dll - ok
19:18:50.0589 5016 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
19:18:50.0589 5016 C:\Windows\System32\slc.dll - ok
19:18:50.0589 5016 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
19:18:50.0589 5016 C:\Windows\System32\themeservice.dll - ok
19:18:50.0605 5016 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
19:18:50.0605 5016 C:\Windows\System32\es.dll - ok
19:18:50.0605 5016 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
19:18:50.0605 5016 C:\Windows\System32\comres.dll - ok
19:18:50.0605 5016 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
19:18:50.0605 5016 C:\Windows\System32\drivers\lltdio.sys - ok
19:18:50.0605 5016 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
19:18:50.0605 5016 C:\Windows\System32\Sens.dll - ok
19:18:50.0620 5016 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
19:18:50.0620 5016 C:\Windows\System32\uxsms.dll - ok
19:18:50.0620 5016 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
19:18:50.0620 5016 C:\Windows\System32\drivers\ndisuio.sys - ok
19:18:50.0620 5016 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
19:18:50.0620 5016 C:\Windows\System32\drivers\nwifi.sys - ok
19:18:50.0620 5016 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
19:18:50.0620 5016 C:\Windows\System32\drivers\rspndr.sys - ok
19:18:50.0620 5016 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
19:18:50.0620 5016 C:\Windows\System32\SndVolSSO.dll - ok
19:18:50.0636 5016 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
19:18:50.0636 5016 C:\Windows\System32\hid.dll - ok
19:18:50.0636 5016 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
19:18:50.0636 5016 C:\Windows\System32\IPHLPAPI.DLL - ok
19:18:50.0636 5016 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
19:18:50.0636 5016 C:\Windows\System32\lmhsvc.dll - ok
19:18:50.0636 5016 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
19:18:50.0636 5016 C:\Windows\System32\nsisvc.dll - ok
19:18:50.0651 5016 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
19:18:50.0651 5016 C:\Windows\System32\dhcpcore.dll - ok
19:18:50.0651 5016 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
19:18:50.0651 5016 C:\Windows\System32\dhcpcore6.dll - ok
19:18:50.0651 5016 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
19:18:50.0651 5016 C:\Windows\System32\dwmapi.dll - ok
19:18:50.0651 5016 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
19:18:50.0651 5016 C:\Windows\System32\nrpsrv.dll - ok
19:18:50.0667 5016 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
19:18:50.0667 5016 C:\Windows\System32\winnsi.dll - ok
19:18:50.0667 5016 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
19:18:50.0667 5016 C:\Windows\System32\dnsrslvr.dll - ok
19:18:50.0667 5016 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
19:18:50.0667 5016 C:\Windows\System32\eapphost.dll - ok
19:18:50.0667 5016 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
19:18:50.0667 5016 C:\Windows\System32\eapsvc.dll - ok
19:18:50.0683 5016 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
19:18:50.0683 5016 C:\Windows\System32\keyiso.dll - ok
19:18:50.0683 5016 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
19:18:50.0683 5016 C:\Windows\System32\xmllite.dll - ok
19:18:50.0683 5016 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
19:18:50.0683 5016 C:\Windows\System32\FWPUCLNT.DLL - ok
19:18:50.0683 5016 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
19:18:50.0683 5016 C:\Windows\System32\umb.dll - ok
19:18:50.0698 5016 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
19:18:50.0698 5016 C:\Windows\System32\wlanmsm.dll - ok
19:18:50.0698 5016 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
19:18:50.0698 5016 C:\Windows\System32\dhcpcsvc.dll - ok
19:18:50.0698 5016 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
19:18:50.0698 5016 C:\Windows\System32\dnsext.dll - ok
19:18:50.0698 5016 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
19:18:50.0698 5016 C:\Windows\System32\WindowsCodecs.dll - ok
19:18:50.0714 5016 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
19:18:50.0714 5016 C:\Windows\System32\wlansec.dll - ok
19:18:50.0714 5016 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
19:18:50.0714 5016 C:\Windows\System32\dhcpcsvc6.dll - ok
19:18:50.0714 5016 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
19:18:50.0714 5016 C:\Windows\System32\eappcfg.dll - ok
19:18:50.0714 5016 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
19:18:50.0714 5016 C:\Windows\System32\eappprxy.dll - ok
19:18:50.0714 5016 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
19:18:50.0729 5016 C:\Windows\System32\onex.dll - ok
19:18:50.0729 5016 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
19:18:50.0729 5016 C:\Windows\System32\l2gpstore.dll - ok
19:18:50.0729 5016 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
19:18:50.0729 5016 C:\Windows\System32\wlgpclnt.dll - ok
19:18:50.0729 5016 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
19:18:50.0729 5016 C:\Windows\System32\WinSCard.dll - ok
19:18:50.0729 5016 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
19:18:50.0729 5016 C:\Windows\System32\wlanutil.dll - ok
19:18:50.0745 5016 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
19:18:50.0745 5016 C:\Windows\System32\msxml6.dll - ok
19:18:50.0745 5016 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
19:18:50.0745 5016 C:\Windows\System32\winbrand.dll - ok
19:18:50.0745 5016 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
19:18:50.0745 5016 C:\Windows\System32\VaultCredProvider.dll - ok
19:18:50.0745 5016 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:18:50.0745 5016 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:18:50.0761 5016 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
19:18:50.0761 5016 C:\Windows\System32\BioCredProv.dll - ok
19:18:50.0761 5016 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
19:18:50.0761 5016 C:\Windows\System32\shsvcs.dll - ok
19:18:50.0761 5016 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
19:18:50.0761 5016 C:\Windows\System32\winbio.dll - ok
19:18:50.0761 5016 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
19:18:50.0761 5016 C:\Windows\System32\credui.dll - ok
19:18:50.0776 5016 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
19:18:50.0776 5016 C:\Windows\System32\netapi32.dll - ok
19:18:50.0776 5016 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
19:18:50.0776 5016 C:\Windows\System32\vaultcli.dll - ok
19:18:50.0776 5016 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
19:18:50.0776 5016 C:\Windows\System32\netutils.dll - ok
19:18:50.0776 5016 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
19:18:50.0776 5016 C:\Windows\System32\samcli.dll - ok
19:18:50.0792 5016 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
19:18:50.0792 5016 C:\Windows\System32\wkscli.dll - ok
19:18:50.0792 5016 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
19:18:50.0792 5016 C:\Windows\System32\certCredProvider.dll - ok
19:18:50.0792 5016 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
19:18:50.0792 5016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
19:18:50.0792 5016 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
19:18:50.0792 5016 C:\Windows\System32\rasplap.dll - ok
19:18:50.0807 5016 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
19:18:50.0807 5016 C:\Windows\System32\rasapi32.dll - ok
19:18:50.0807 5016 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
19:18:50.0807 5016 C:\Windows\System32\rasman.dll - ok
19:18:50.0807 5016 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
19:18:50.0807 5016 C:\Windows\System32\rtutils.dll - ok
19:18:50.0807 5016 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
19:18:50.0807 5016 C:\Windows\System32\oleacc.dll - ok
19:18:50.0823 5016 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
19:18:50.0823 5016 C:\Windows\System32\UIAutomationCore.dll - ok
19:18:50.0823 5016 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
19:18:50.0823 5016 C:\Windows\System32\MPSSVC.dll - ok
19:18:50.0823 5016 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
19:18:50.0823 5016 C:\Windows\System32\schedsvc.dll - ok
19:18:50.0823 5016 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
19:18:50.0823 5016 C:\Windows\System32\ktmw32.dll - ok
19:18:50.0839 5016 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
19:18:50.0839 5016 C:\Windows\System32\UXInit.dll - ok
19:18:50.0839 5016 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
19:18:50.0839 5016 C:\Windows\System32\fveapi.dll - ok
19:18:50.0839 5016 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
19:18:50.0839 5016 C:\Windows\System32\fvecerts.dll - ok
19:18:50.0839 5016 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
19:18:50.0839 5016 C:\Windows\System32\taskcomp.dll - ok
19:18:50.0854 5016 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
19:18:50.0854 5016 C:\Windows\System32\tbs.dll - ok
19:18:50.0854 5016 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
19:18:50.0854 5016 C:\Windows\System32\imageres.dll - ok
19:18:50.0854 5016 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
19:18:50.0854 5016 C:\Windows\System32\wiarpc.dll - ok
19:18:50.0854 5016 [ 7373DE70D405FF08DC53336B83989138 ] C:\Windows\System32\rastls.dll
19:18:50.0854 5016 C:\Windows\System32\rastls.dll - ok
19:18:50.0854 5016 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
19:18:50.0870 5016 C:\Windows\System32\drivers\http.sys - ok
19:18:50.0870 5016 [ 0E7045E24F78351E021D3C01566DBBA3 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
19:18:50.0870 5016 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
19:18:50.0870 5016 [ 5B8580B819BE32EEC18CE1FEC52A4BCE ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
19:18:50.0870 5016 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
19:18:50.0870 5016 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
19:18:50.0870 5016 C:\Windows\System32\conhost.exe - ok
19:18:50.0885 5016 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
19:18:50.0885 5016 C:\Windows\System32\wscapi.dll - ok
19:18:50.0885 5016 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
19:18:50.0885 5016 C:\Windows\System32\cabinet.dll - ok
19:18:50.0885 5016 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
19:18:50.0885 5016 C:\Windows\System32\spoolsv.exe - ok
19:18:50.0885 5016 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
19:18:50.0885 5016 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
19:18:50.0901 5016 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
19:18:50.0901 5016 C:\Windows\System32\BFE.DLL - ok
19:18:50.0901 5016 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
19:18:50.0901 5016 C:\Windows\System32\drivers\bowser.sys - ok
19:18:50.0901 5016 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
19:18:50.0901 5016 C:\Windows\System32\p2pcollab.dll - ok
19:18:50.0901 5016 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
19:18:50.0901 5016 C:\Windows\System32\drivers\fltMgr.sys - ok
19:18:50.0901 5016 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
19:18:50.0901 5016 C:\Windows\System32\taskeng.exe - ok
19:18:50.0917 5016 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
19:18:50.0917 5016 C:\Windows\System32\QAGENTRT.DLL - ok
19:18:50.0917 5016 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
19:18:50.0917 5016 C:\Windows\System32\PSHED.DLL - ok
19:18:50.0917 5016 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:18:50.0917 5016 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:18:50.0917 5016 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
19:18:50.0917 5016 C:\Windows\System32\TSChannel.dll - ok
19:18:50.0932 5016 [ 07605ABEB10FC533881C91F19DECF69A ] C:\Windows\AutoKMS\AutoKMS.exe
19:18:50.0932 5016 C:\Windows\AutoKMS\AutoKMS.exe - ok
19:18:50.0932 5016 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
19:18:50.0932 5016 C:\Windows\System32\raschap.dll - ok
19:18:50.0932 5016 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
19:18:50.0932 5016 C:\Windows\System32\fveui.dll - ok
19:18:50.0932 5016 [ CA9E3BD4752FA2C084F5CD35FD8D0025 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
19:18:50.0932 5016 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
19:18:50.0948 5016 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
19:18:50.0948 5016 C:\Windows\System32\drivers\mpsdrv.sys - ok
19:18:50.0948 5016 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
19:18:50.0948 5016 C:\Windows\System32\slwga.dll - ok
19:18:50.0948 5016 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
19:18:50.0948 5016 C:\Windows\System32\sppc.dll - ok
19:18:50.0948 5016 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
19:18:50.0948 5016 C:\Windows\System32\drivers\mrxsmb.sys - ok
19:18:50.0963 5016 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
19:18:50.0963 5016 C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:18:50.0963 5016 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
19:18:50.0963 5016 C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:18:50.0963 5016 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
19:18:50.0963 5016 C:\Windows\System32\wfapigp.dll - ok
19:18:50.0963 5016 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
19:18:50.0963 5016 C:\Windows\System32\wkssvc.dll - ok
19:18:50.0979 5016 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
19:18:50.0979 5016 C:\Windows\System32\cryptsvc.dll - ok
19:18:50.0979 5016 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
19:18:50.0979 5016 C:\Windows\System32\cryptnet.dll - ok
19:18:50.0979 5016 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
19:18:50.0979 5016 C:\Windows\System32\dps.dll - ok
19:18:50.0979 5016 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
19:18:50.0979 5016 C:\Windows\System32\netcfgx.dll - ok
19:18:50.0995 5016 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
19:18:50.0995 5016 C:\Windows\System32\taskschd.dll - ok
19:18:50.0995 5016 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
19:18:50.0995 5016 C:\Windows\System32\vssapi.dll - ok
19:18:50.0995 5016 [ 228938F848948A0B42BF521F6829A24F ] C:\Program Files (x86)\Launch Manager\dsiwmis.exe
19:18:50.0995 5016 C:\Program Files (x86)\Launch Manager\dsiwmis.exe - ok
19:18:50.0995 5016 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
19:18:50.0995 5016 C:\Windows\SysWOW64\ntdll.dll - ok
19:18:51.0010 5016 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
19:18:51.0010 5016 C:\Windows\System32\mscms.dll - ok
19:18:51.0010 5016 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
19:18:51.0010 5016 C:\Windows\System32\pcasvc.dll - ok
19:18:51.0010 5016 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
19:18:51.0010 5016 C:\Windows\System32\snmptrap.exe - ok
19:18:51.0010 5016 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
19:18:51.0010 5016 C:\Windows\System32\wow64.dll - ok
19:18:51.0010 5016 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
19:18:51.0010 5016 C:\Windows\System32\wow64win.dll - ok
19:18:51.0026 5016 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
19:18:51.0026 5016 C:\Windows\System32\vsstrace.dll - ok
19:18:51.0026 5016 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
19:18:51.0026 5016 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
19:18:51.0026 5016 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
19:18:51.0026 5016 C:\Windows\System32\wow64cpu.dll - ok
19:18:51.0026 5016 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
19:18:51.0026 5016 C:\Windows\System32\sstpsvc.dll - ok
19:18:51.0041 5016 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
19:18:51.0041 5016 C:\Windows\SysWOW64\kernel32.dll - ok
19:18:51.0041 5016 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
19:18:51.0041 5016 C:\Windows\System32\provsvc.dll - ok
19:18:51.0041 5016 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
19:18:51.0041 5016 C:\Windows\SysWOW64\KernelBase.dll - ok
19:18:51.0041 5016 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
19:18:51.0041 5016 C:\Windows\SysWOW64\mscoree.dll - ok
19:18:51.0057 5016 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
19:18:51.0057 5016 C:\Windows\SysWOW64\msvcrt.dll - ok
19:18:51.0057 5016 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
19:18:51.0057 5016 C:\Windows\SysWOW64\wtsapi32.dll - ok
19:18:51.0057 5016 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
19:18:51.0057 5016 C:\Windows\SysWOW64\advapi32.dll - ok
19:18:51.0057 5016 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
19:18:51.0057 5016 C:\Windows\SysWOW64\sechost.dll - ok
19:18:51.0073 5016 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
19:18:51.0073 5016 C:\Windows\SysWOW64\userenv.dll - ok
19:18:51.0073 5016 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
19:18:51.0073 5016 C:\Windows\SysWOW64\cryptbase.dll - ok
19:18:51.0073 5016 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
19:18:51.0073 5016 C:\Windows\SysWOW64\profapi.dll - ok
19:18:51.0073 5016 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
19:18:51.0073 5016 C:\Windows\SysWOW64\rpcrt4.dll - ok
19:18:51.0088 5016 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
19:18:51.0088 5016 C:\Windows\SysWOW64\sspicli.dll - ok
19:18:51.0088 5016 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
19:18:51.0088 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
19:18:51.0088 5016 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
19:18:51.0088 5016 C:\Windows\SysWOW64\setupapi.dll - ok
19:18:51.0088 5016 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
19:18:51.0088 5016 C:\Windows\SysWOW64\shlwapi.dll - ok
19:18:51.0104 5016 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
19:18:51.0104 5016 C:\Windows\SysWOW64\gdi32.dll - ok
19:18:51.0104 5016 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
19:18:51.0104 5016 C:\Windows\SysWOW64\cfgmgr32.dll - ok
19:18:51.0104 5016 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
19:18:51.0104 5016 C:\Windows\SysWOW64\user32.dll - ok
19:18:51.0104 5016 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
19:18:51.0104 5016 C:\Windows\SysWOW64\lpk.dll - ok
19:18:51.0119 5016 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
19:18:51.0119 5016 C:\Windows\SysWOW64\usp10.dll - ok
19:18:51.0119 5016 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
19:18:51.0119 5016 C:\Windows\SysWOW64\imm32.dll - ok
19:18:51.0119 5016 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
19:18:51.0119 5016 C:\Windows\SysWOW64\oleaut32.dll - ok
19:18:51.0119 5016 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
19:18:51.0119 5016 C:\Windows\SysWOW64\msctf.dll - ok
19:18:51.0135 5016 [ 82A98D0EB83505529AD81E4C1FADC37D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
19:18:51.0135 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
19:18:51.0135 5016 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
19:18:51.0135 5016 C:\Windows\SysWOW64\ole32.dll - ok
19:18:51.0135 5016 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
19:18:51.0135 5016 C:\Windows\SysWOW64\devobj.dll - ok
19:18:51.0135 5016 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
19:18:51.0135 5016 C:\Windows\SysWOW64\shell32.dll - ok
19:18:51.0151 5016 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
19:18:51.0151 5016 C:\Windows\SysWOW64\winmm.dll - ok


19:18:51.0151 5016 [ 52BE4D6C72802CEEDCC9997CE8D2FD85 ] C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
19:18:51.0151 5016 C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe - ok
19:18:51.0151 5016 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
19:18:51.0151 5016 C:\Windows\System32\efscore.dll - ok
19:18:51.0151 5016 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
19:18:51.0151 5016 C:\Windows\System32\efssvc.dll - ok
19:18:51.0166 5016 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
19:18:51.0166 5016 C:\Windows\System32\efsutil.dll - ok
19:18:51.0166 5016 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
19:18:51.0166 5016 C:\Windows\System32\dbghelp.dll - ok
19:18:51.0166 5016 [ 91E56A6A887DAF53D92A809573911522 ] C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll
19:18:51.0166 5016 C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll - ok
19:18:51.0166 5016 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
19:18:51.0166 5016 C:\Windows\System32\winspool.drv - ok
19:18:51.0182 5016 [ 0191DEE9B9EB7902AF2CF4F67301095D ] C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
19:18:51.0182 5016 C:\Program Files (x86)\Acer\Registration\GREGsvc.exe - ok
19:18:51.0182 5016 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
19:18:51.0182 5016 C:\Windows\System32\FDResPub.dll - ok
19:18:51.0182 5016 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
19:18:51.0182 5016 C:\Windows\System32\WSDApi.dll - ok
19:18:51.0182 5016 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
19:18:51.0182 5016 C:\Windows\System32\webservices.dll - ok
19:18:51.0197 5016 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
19:18:51.0197 5016 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
19:18:51.0197 5016 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
19:18:51.0197 5016 C:\Windows\System32\fundisc.dll - ok
19:18:51.0197 5016 [ 93B73DED2BC688F140C6AE2FBAD45789 ] C:\Program Files\Acer\Acer Updater\UpdaterService.exe
19:18:51.0197 5016 C:\Program Files\Acer\Acer Updater\UpdaterService.exe - ok
19:18:51.0197 5016 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
19:18:51.0197 5016 C:\Windows\System32\IKEEXT.DLL - ok
19:18:51.0213 5016 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
19:18:51.0213 5016 C:\Windows\SysWOW64\winspool.drv - ok
19:18:51.0213 5016 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
19:18:51.0213 5016 C:\Windows\System32\msi.dll - ok
19:18:51.0213 5016 [ A190DA6546501CB4146BBCC0B6A3F48B ] C:\Windows\System32\msiexec.exe
19:18:51.0213 5016 C:\Windows\System32\msiexec.exe - ok
19:18:51.0213 5016 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
19:18:51.0213 5016 C:\Windows\System32\vpnikeapi.dll - ok
19:18:51.0229 5016 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
19:18:51.0229 5016 C:\Windows\System32\winhttp.dll - ok
19:18:51.0229 5016 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
19:18:51.0229 5016 C:\Windows\System32\webio.dll - ok
19:18:51.0229 5016 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
19:18:51.0229 5016 C:\Windows\System32\httpapi.dll - ok
19:18:51.0229 5016 [ 3306930FD3AC4ABB17A6DFC9222467F1 ] C:\Windows\AppPatch\AppPatch64\AcLayers.dll
19:18:51.0229 5016 C:\Windows\AppPatch\AppPatch64\AcLayers.dll - ok
19:18:51.0244 5016 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
19:18:51.0244 5016 C:\Windows\System32\mpr.dll - ok
19:18:51.0244 5016 [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
19:18:51.0244 5016 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
19:18:51.0244 5016 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] C:\Windows\System32\drivers\NisDrvWFP.sys
19:18:51.0244 5016 C:\Windows\System32\drivers\NisDrvWFP.sys - ok
19:18:51.0244 5016 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
19:18:51.0244 5016 C:\Windows\System32\sfc.dll - ok
19:18:51.0260 5016 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
19:18:51.0260 5016 C:\Windows\System32\sfc_os.dll - ok
19:18:51.0260 5016 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
19:18:51.0260 5016 C:\Windows\System32\aepic.dll - ok
19:18:51.0260 5016 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
19:18:51.0260 5016 C:\Windows\System32\ncsi.dll - ok
19:18:51.0260 5016 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
19:18:51.0260 5016 C:\Windows\System32\nlasvc.dll - ok
19:18:51.0275 5016 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
19:18:51.0275 5016 C:\Windows\System32\drivers\PEAuth.sys - ok
19:18:51.0275 5016 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
19:18:51.0275 5016 C:\Windows\System32\ssdpapi.dll - ok
19:18:51.0275 5016 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
19:18:51.0275 5016 C:\Windows\System32\drivers\secdrv.sys - ok
19:18:51.0275 5016 [ F485770EEC8959684CC4C4786B63C06C ] C:\Windows\System32\HPZIPM12.DLL
19:18:51.0275 5016 C:\Windows\System32\HPZIPM12.DLL - ok
19:18:51.0291 5016 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
19:18:51.0291 5016 C:\Windows\System32\wsock32.dll - ok
19:18:51.0291 5016 [ 8D843FED0624C9F6559DE44BD81C46CF ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.ShieldRunner.exe
19:18:51.0291 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.ShieldRunner.exe - ok
19:18:51.0291 5016 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
19:18:51.0291 5016 C:\Windows\System32\mscoree.dll - ok
19:18:51.0291 5016 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
19:18:51.0291 5016 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
19:18:51.0307 5016 [ 3DBEAEE8645FAF1232CE464C2CAC12EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
19:18:51.0307 5016 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
19:18:51.0307 5016 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
19:18:51.0307 5016 C:\Windows\System32\msvcr100_clr0400.dll - ok
19:18:51.0307 5016 [ F6EC496220B6392279CE5775CB152134 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\a009da37f5d41055d73cfb9b04419743\mscorlib.ni.dll
19:18:51.0307 5016 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\a009da37f5d41055d73cfb9b04419743\mscorlib.ni.dll - ok
19:18:51.0307 5016 [ 4374B2528BCBB8F95FB12CC6C8FF0773 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
19:18:51.0307 5016 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok
19:18:51.0322 5016 [ 51621E4B29575A8CF429E6F6DA58A577 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
19:18:51.0322 5016 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
19:18:51.0322 5016 [ D28F773B3B20C19B0F41CDBFE583194E ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\6c7b3415c8d9a0cf9b4cf3c0dd598fae\System.ni.dll
19:18:51.0322 5016 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\6c7b3415c8d9a0cf9b4cf3c0dd598fae\System.ni.dll - ok
19:18:51.0322 5016 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
19:18:51.0322 5016 C:\Windows\System32\aeevts.dll - ok
19:18:51.0322 5016 [ 4FE05A6E2EF1E6801ED6A8121D57CE7B ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\1fae00db7cb9504abf5a785b51dead3b\System.Drawing.ni.dll
19:18:51.0322 5016 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\1fae00db7cb9504abf5a785b51dead3b\System.Drawing.ni.dll - ok
19:18:51.0338 5016 [ 4EF37036A01F6E6FA9CC80E0F46D7B58 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\d33962498ff04a1f73f1c3d68a7dc22e\System.Windows.Forms.ni.dll
19:18:51.0338 5016 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\d33962498ff04a1f73f1c3d68a7dc22e\System.Windows.Forms.ni.dll - ok
19:18:51.0338 5016 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
19:18:51.0338 5016 C:\Windows\System32\shfolder.dll - ok
19:18:51.0338 5016 [ A75210DD4F3CD414D3EEACCCCAEC69C0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\ed79539e24b880392bbfbf0575c6773a\System.Core.ni.dll
19:18:51.0338 5016 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\ed79539e24b880392bbfbf0575c6773a\System.Core.ni.dll - ok
19:18:51.0353 5016 [ 9967EAD2169F51D87763BA54F4E46B6D ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\4d3ff3d6f686ea00f33a241cf056ea90\System.Xml.Linq.ni.dll
19:18:51.0353 5016 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\4d3ff3d6f686ea00f33a241cf056ea90\System.Xml.Linq.ni.dll - ok
19:18:51.0353 5016 [ ED5B585D841E3AC028455F3D7B5EA692 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\a1b9e8a24d74c8f053d9515c615a3d6f\System.Xml.ni.dll
19:18:51.0353 5016 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\a1b9e8a24d74c8f053d9515c615a3d6f\System.Xml.ni.dll - ok
19:18:51.0353 5016 [ 6E17A661D7BCCE05B66E046154C4181F ] C:\Windows\System32\ieframe.dll
19:18:51.0353 5016 C:\Windows\System32\ieframe.dll - ok
19:18:51.0353 5016 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
19:18:51.0353 5016 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
19:18:51.0369 5016 [ 92796CE8F9C5F5867E16EAF1849BB929 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\75dbd3e66b6c699711e2c193fd9aef07\mscorlib.ni.dll
19:18:51.0369 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\75dbd3e66b6c699711e2c193fd9aef07\mscorlib.ni.dll - ok
19:18:51.0369 5016 [ 4EBBC2B0AD7F9075AE9D6835D2A62B6E ] C:\Windows\System32\sc.exe
19:18:51.0369 5016 C:\Windows\System32\sc.exe - ok
19:18:51.0369 5016 [ A6FAF1707E94380C72327CE801353644 ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.SoftShield.exe
19:18:51.0369 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.SoftShield.exe - ok
19:18:51.0369 5016 [ E5BC8D93CDCB957146D971647849A154 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
19:18:51.0369 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
19:18:51.0385 5016 [ 07BBB3CBB86D2626B46BC1D210C4781B ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
19:18:51.0385 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
19:18:51.0385 5016 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
19:18:51.0385 5016 C:\Windows\SysWOW64\cryptsp.dll - ok
19:18:51.0385 5016 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
19:18:51.0385 5016 C:\Windows\SysWOW64\rsaenh.dll - ok
19:18:51.0385 5016 [ 4CE7E077902E69A708CB4F758EEC9C87 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\11d5903f09e6c549f04cf23570e2cc5a\System.ni.dll
19:18:51.0385 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\11d5903f09e6c549f04cf23570e2cc5a\System.ni.dll - ok
19:18:51.0400 5016 [ 46F1C155286F26DFA73277BF00F3A4BB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\7df180c8188116a2fff287070b51c3be\System.Drawing.ni.dll
19:18:51.0400 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\7df180c8188116a2fff287070b51c3be\System.Drawing.ni.dll - ok
19:18:51.0400 5016 [ BE1FE53CE5ED3F2A38FE4EE7B30B2B99 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\a98153f28e9141869f000193fdf5a528\System.ServiceProcess.ni.dll
19:18:51.0400 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\a98153f28e9141869f000193fdf5a528\System.ServiceProcess.ni.dll - ok
19:18:51.0400 5016 [ 9CE75FE16042441D92B0DB7D22BDBF8C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\eb2df82b35c09208c351d17dd7bebb2c\System.Windows.Forms.ni.dll
19:18:51.0400 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\eb2df82b35c09208c351d17dd7bebb2c\System.Windows.Forms.ni.dll - ok
19:18:51.0400 5016 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
19:18:51.0416 5016 C:\Windows\System32\drivers\srvnet.sys - ok
19:18:51.0416 5016 [ 57FE5038532D8542651046F4F96D9C61 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\2a1504fcc4e487a6aab50e855972f961\System.Core.ni.dll
19:18:51.0416 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\2a1504fcc4e487a6aab50e855972f961\System.Core.ni.dll - ok
19:18:51.0416 5016 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
19:18:51.0416 5016 C:\Windows\System32\wiaservc.dll - ok
19:18:51.0416 5016 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
19:18:51.0416 5016 C:\Windows\System32\drivers\tcpipreg.sys - ok
19:18:51.0416 5016 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
19:18:51.0431 5016 C:\Windows\System32\sysmain.dll - ok
19:18:51.0431 5016 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
19:18:51.0431 5016 C:\Windows\System32\wiatrace.dll - ok
19:18:51.0431 5016 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:18:51.0431 5016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
19:18:51.0431 5016 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
19:18:51.0431 5016 C:\Windows\System32\trkwks.dll - ok
19:18:51.0431 5016 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
19:18:51.0431 5016 C:\Windows\System32\wbem\WMIsvc.dll - ok
19:18:51.0447 5016 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
19:18:51.0447 5016 C:\Windows\System32\wbemcomn.dll - ok
19:18:51.0447 5016 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:18:51.0447 5016 C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:18:51.0447 5016 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:18:51.0447 5016 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:18:51.0447 5016 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
19:18:51.0447 5016 C:\Windows\System32\wbem\fastprox.dll - ok
19:18:51.0463 5016 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
19:18:51.0463 5016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
19:18:51.0463 5016 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
19:18:51.0463 5016 C:\Windows\System32\SensApi.dll - ok
19:18:51.0463 5016 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
19:18:51.0463 5016 C:\Windows\System32\wer.dll - ok
19:18:51.0463 5016 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
19:18:51.0463 5016 C:\Windows\System32\drivers\srv2.sys - ok
19:18:51.0478 5016 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
19:18:51.0478 5016 C:\Windows\System32\iphlpsvc.dll - ok
19:18:51.0478 5016 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
19:18:51.0478 5016 C:\Windows\System32\sqmapi.dll - ok
19:18:51.0478 5016 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
19:18:51.0478 5016 C:\Windows\System32\wdscore.dll - ok
19:18:51.0478 5016 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
19:18:51.0478 5016 C:\Windows\System32\drivers\srv.sys - ok
19:18:51.0494 5016 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
19:18:51.0494 5016 C:\Windows\System32\hnetcfg.dll - ok
19:18:51.0494 5016 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
19:18:51.0494 5016 C:\Windows\System32\wbem\wbemprox.dll - ok
19:18:51.0494 5016 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
19:18:51.0494 5016 C:\Windows\System32\wbem\wbemcore.dll - ok
19:18:51.0494 5016 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
19:18:51.0494 5016 C:\Windows\System32\wbem\esscli.dll - ok
19:18:51.0509 5016 [ 380C5809E94846AE509552FA144DA222 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\a8bdc3a6e8a6824169bd62b627084450\System.ServiceModel.ni.dll
19:18:51.0509 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\a8bdc3a6e8a6824169bd62b627084450\System.ServiceModel.ni.dll - ok
19:18:51.0509 5016 [ 5C9CA868488F66822B38A7A77C33FD59 ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Data.Softest.DLL
19:18:51.0509 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Data.Softest.DLL - ok
19:18:51.0509 5016 [ 8027DF55A28555BC649994F40C4359A6 ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Web.Communication.DLL
19:18:51.0509 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Web.Communication.DLL - ok
19:18:51.0525 5016 [ 2175597E671DA2F019901779439D07CC ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\99a389191e7c3c14b2aa1a38f40b0152\System.Web.Services.ni.dll
19:18:51.0525 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\99a389191e7c3c14b2aa1a38f40b0152\System.Web.Services.ni.dll - ok
19:18:51.0525 5016 [ 4CD2F3A24A35755C2486A1CB0EEE32E1 ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Data.Common.DLL
19:18:51.0525 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Data.Common.DLL - ok
19:18:51.0525 5016 [ BC44C07D630EB2A5C22E8246BD19714D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuratio#\e743a174ef96d5950367ce80aa85cbd1\System.Configuration.Install.ni.dll
19:18:51.0525 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuratio#\e743a174ef96d5950367ce80aa85cbd1\System.Configuration.Install.ni.dll - ok
19:18:51.0525 5016 [ 9EB0554F0C2C0D6BB9A9227DD856C0C3 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\c514fffd7144b95f1ab3bbb43b0b59e6\System.DirectoryServices.ni.dll
19:18:51.0525 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\c514fffd7144b95f1ab3bbb43b0b59e6\System.DirectoryServices.ni.dll - ok
19:18:51.0541 5016 [ D823052B3D470EFDBD0F1889D80207A4 ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Security.dll
19:18:51.0541 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Security.dll - ok
19:18:51.0541 5016 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
19:18:51.0541 5016 C:\Windows\SysWOW64\shfolder.dll - ok
19:18:51.0541 5016 [ 26B9E6D8D8D1F0C721A528F9C36C3886 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\690ef64e2b79d0bd21bf393004f6402d\System.Data.ni.dll
19:18:51.0541 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Data\690ef64e2b79d0bd21bf393004f6402d\System.Data.ni.dll - ok
19:18:51.0541 5016 [ 29B86B3C8253280151EEBE843A9648CD ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
19:18:51.0541 5016 C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll - ok
19:18:51.0556 5016 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
19:18:51.0556 5016 C:\Windows\SysWOW64\ws2_32.dll - ok
19:18:51.0556 5016 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
19:18:51.0556 5016 C:\Windows\SysWOW64\crypt32.dll - ok
19:18:51.0556 5016 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
19:18:51.0556 5016 C:\Windows\SysWOW64\nsi.dll - ok
19:18:51.0556 5016 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
19:18:51.0556 5016 C:\Windows\SysWOW64\msasn1.dll - ok
19:18:51.0572 5016 [ F2443BAA1B69F2DB669525CA90920FAB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\23d9995edb4568a0ca70e7d62fc7b319\SMDiagnostics.ni.dll
19:18:51.0572 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\23d9995edb4568a0ca70e7d62fc7b319\SMDiagnostics.ni.dll - ok
19:18:51.0572 5016 [ D3749CBDB91C666DED923670CC180947 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\37be546d2a2026ede3f4c7122547915a\System.Runtime.DurableInstancing.ni.dll
19:18:51.0572 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\37be546d2a2026ede3f4c7122547915a\System.Runtime.DurableInstancing.ni.dll - ok
19:18:51.0572 5016 [ F8663EF9BBE4C30F3D5F784301466D5F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\8875a58c818f07ae0267435df6509287\System.Configuration.ni.dll
19:18:51.0572 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\8875a58c818f07ae0267435df6509287\System.Configuration.ni.dll - ok
19:18:51.0572 5016 [ F820D37248190BAF64FA747551B7085B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e6c3a425fbf0378b1badb5891c81aee9\System.Xml.ni.dll
19:18:51.0572 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e6c3a425fbf0378b1badb5891c81aee9\System.Xml.ni.dll - ok
19:18:51.0587 5016 [ 2AC69779460F4B9605389F7AA706B67E ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\protobuf-net.DLL
19:18:51.0587 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\protobuf-net.DLL - ok
19:18:51.0587 5016 [ F55F735BB13EA666E508F7BAF28A76BD ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\c8df0b9fa4a989872f45b96882a25890\System.Runtime.Serialization.ni.dll
19:18:51.0587 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\c8df0b9fa4a989872f45b96882a25890\System.Runtime.Serialization.ni.dll - ok
19:18:51.0587 5016 [ 80725A732ABA27911402F9CA09FEDE23 ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\System.Data.SQLite.DLL
19:18:51.0587 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\System.Data.SQLite.DLL - ok
19:18:51.0603 5016 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
19:18:51.0603 5016 C:\Windows\SysWOW64\version.dll - ok
19:18:51.0603 5016 [ 7B42DE1C50AD34A52B3E77B1DF16812E ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\43c8072ab0bf93d70e4f6f169348d277\System.Transactions.ni.dll
19:18:51.0603 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\43c8072ab0bf93d70e4f6f169348d277\System.Transactions.ni.dll - ok
19:18:51.0603 5016 [ 41962D5E18E9874390BC1F074571A6BB ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
19:18:51.0603 5016 C:\Windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll - ok
19:18:51.0603 5016 [ C8164876B6F66616D68387443621510C ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\ICSharpCode.SharpZipLib.DLL
19:18:51.0603 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\ICSharpCode.SharpZipLib.DLL - ok
19:18:51.0619 5016 [ 4E5170210CEEF2DB813ED82F882EBFDE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\5b69297a3a54ded24910fd0fa6acc5c9\System.EnterpriseServices.ni.dll
19:18:51.0619 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\5b69297a3a54ded24910fd0fa6acc5c9\System.EnterpriseServices.ni.dll - ok
19:18:51.0619 5016 [ 768230C78724CB23F8166D6F6A2106AD ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\5b69297a3a54ded24910fd0fa6acc5c9\System.EnterpriseServices.Wrapper.dll
19:18:51.0619 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\5b69297a3a54ded24910fd0fa6acc5c9\System.EnterpriseServices.Wrapper.dll - ok
19:18:51.0619 5016 [ C755E17BAC396F9A9F468320B3F6CF46 ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
19:18:51.0619 5016 C:\Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll - ok
19:18:51.0619 5016 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
19:18:51.0619 5016 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
19:18:51.0634 5016 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
19:18:51.0634 5016 C:\Windows\System32\msxml3.dll - ok
19:18:51.0634 5016 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
19:18:51.0634 5016 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
19:18:51.0634 5016 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
19:18:51.0634 5016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
19:18:51.0634 5016 [ 8BDB1DB794D510E40DEB667C8714BFF3 ] C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Web.Communication.XmlSerializers.dll
19:18:51.0634 5016 C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.Web.Communication.XmlSerializers.dll - ok
19:18:51.0650 5016 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
19:18:51.0650 5016 C:\Windows\SysWOW64\apphelp.dll - ok
19:18:51.0650 5016 [ EBD345E154827DBFC6A77E3F07F63835 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\csc.exe
19:18:51.0650 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\csc.exe - ok
19:18:51.0650 5016 [ 4AD576CA9E7752A86140ACAEEA3356F5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\alink.dll
19:18:51.0650 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\alink.dll - ok
19:18:51.0665 5016 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
19:18:51.0665 5016 C:\Windows\SysWOW64\psapi.dll - ok
19:18:51.0665 5016 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
19:18:51.0665 5016 C:\Windows\SysWOW64\imagehlp.dll - ok
19:18:51.0665 5016 [ 8D44D74079457EE855FFA19DF97D8DD3 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorpehost.dll
19:18:51.0665 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorpehost.dll - ok
19:18:51.0665 5016 [ DFA8E7CDFC7A0E6673EC2459D494A67C ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe
19:18:51.0665 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe - ok
19:18:51.0665 5016 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
19:18:51.0665 5016 C:\Windows\System32\ntdsapi.dll - ok
19:18:51.0681 5016 [ 9A9DD2057FC813775FEE5A3C9342E27A ] C:\Windows\SysWOW64\urlmon.dll
19:18:51.0681 5016 C:\Windows\SysWOW64\urlmon.dll - ok
19:18:51.0681 5016 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
19:18:51.0681 5016 C:\Windows\System32\browser.dll - ok
19:18:51.0681 5016 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
19:18:51.0681 5016 C:\Windows\System32\srvsvc.dll - ok
19:18:51.0681 5016 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
19:18:51.0681 5016 C:\Windows\System32\wbem\wbemsvc.dll - ok
19:18:51.0697 5016 [ 6554DA6A01F14B3F017161879C8DB9BC ] C:\Windows\SysWOW64\wininet.dll
19:18:51.0697 5016 C:\Windows\SysWOW64\wininet.dll - ok
19:18:51.0697 5016 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
19:18:51.0697 5016 C:\Windows\System32\netmsg.dll - ok
19:18:51.0697 5016 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
19:18:51.0697 5016 C:\Windows\System32\wbem\wmiutils.dll - ok
19:18:51.0697 5016 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
19:18:51.0697 5016 C:\Windows\System32\wbem\repdrvfs.dll - ok
19:18:51.0712 5016 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
19:18:51.0712 5016 C:\Windows\System32\clusapi.dll - ok
19:18:51.0712 5016 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
19:18:51.0712 5016 C:\Windows\System32\sscore.dll - ok
19:18:51.0712 5016 [ 0D9A2756081DC0334962524C6B31A0E1 ] C:\Windows\SysWOW64\iertutil.dll
19:18:51.0712 5016 C:\Windows\SysWOW64\iertutil.dll - ok
19:18:51.0712 5016 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
19:18:51.0712 5016 C:\Windows\System32\resutils.dll - ok
19:18:51.0728 5016 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:18:51.0728 5016 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:18:51.0728 5016 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
19:18:51.0728 5016 C:\Windows\System32\ncobjapi.dll - ok
19:18:51.0728 5016 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
19:18:51.0728 5016 C:\Windows\System32\wbem\wbemess.dll - ok
19:18:51.0728 5016 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
19:18:51.0728 5016 C:\Windows\SysWOW64\ntmarta.dll - ok
19:18:51.0743 5016 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
19:18:51.0759 5016 C:\Windows\SysWOW64\Wldap32.dll - ok
19:18:51.0775 5016 [ ED8828161332ABC76D3951E1B784FFCB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\57a0142578911991b03934a52384da01\System.Management.ni.dll
19:18:51.0775 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\57a0142578911991b03934a52384da01\System.Management.ni.dll - ok
19:18:51.0775 5016 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\SysWOW64\pcwum.dll
19:18:51.0775 5016 C:\Windows\SysWOW64\pcwum.dll - ok
19:18:51.0775 5016 [ 12DC2944FFD59DF2A481BCF26B858E10 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\f7bdfed1cb38473106aca046082f0a35\System.IdentityModel.ni.dll
19:18:51.0775 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\f7bdfed1cb38473106aca046082f0a35\System.IdentityModel.ni.dll - ok
19:18:51.0775 5016 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
19:18:51.0775 5016 C:\Windows\SysWOW64\mswsock.dll - ok
19:18:51.0790 5016 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
19:18:51.0790 5016 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
19:18:51.0790 5016 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
19:18:51.0790 5016 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
19:18:51.0790 5016 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
19:18:51.0790 5016 C:\Windows\SysWOW64\wship6.dll - ok
19:18:51.0790 5016 [ 1F5A570AD942DFCFE4500326ABDD72B2 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
19:18:51.0790 5016 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
19:18:51.0806 5016 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
19:18:51.0806 5016 C:\Windows\SysWOW64\dnsapi.dll - ok
19:18:51.0806 5016 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
19:18:51.0806 5016 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
19:18:51.0806 5016 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
19:18:51.0806 5016 C:\Windows\SysWOW64\winnsi.dll - ok
19:18:51.0806 5016 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
19:18:51.0806 5016 C:\Windows\SysWOW64\rasadhlp.dll - ok
19:18:51.0806 5016 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
19:18:51.0806 5016 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
19:18:51.0821 5016 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
19:18:51.0821 5016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
19:18:51.0821 5016 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
19:18:51.0821 5016 C:\Windows\System32\localspl.dll - ok
19:18:51.0821 5016 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
19:18:51.0821 5016 C:\Windows\System32\rasadhlp.dll - ok
19:18:51.0821 5016 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
19:18:51.0837 5016 C:\Windows\System32\spoolss.dll - ok
19:18:51.0837 5016 [ 12A0531ADED17176D6B0CBFE8F9B4326 ] C:\Windows\System32\cpwmon64.dll
19:18:51.0837 5016 C:\Windows\System32\cpwmon64.dll - ok
19:18:51.0837 5016 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
19:18:51.0837 5016 C:\Windows\System32\PrintIsolationProxy.dll - ok
19:18:51.0837 5016 [ 8695F261BC22030E893EEDA1D2107514 ] C:\Windows\System32\hpinksts8711LM.dll
19:18:51.0837 5016 C:\Windows\System32\hpinksts8711LM.dll - ok
19:18:51.0853 5016 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
19:18:51.0853 5016 C:\Windows\System32\FXSMON.dll - ok
19:18:51.0853 5016 [ C5E82BCFD577AF98F3A7937A69A338B9 ] C:\Windows\System32\HPZ3LWN7.DLL
19:18:51.0853 5016 C:\Windows\System32\HPZ3LWN7.DLL - ok
19:18:51.0853 5016 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
19:18:51.0853 5016 C:\Windows\System32\tcpmon.dll - ok
19:18:51.0853 5016 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
19:18:51.0853 5016 C:\Windows\System32\snmpapi.dll - ok
19:18:51.0853 5016 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
19:18:51.0853 5016 C:\Windows\System32\wsnmp32.dll - ok
19:18:51.0868 5016 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
19:18:51.0868 5016 C:\Windows\System32\fdPnp.dll - ok
19:18:51.0868 5016 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
19:18:51.0868 5016 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
19:18:51.0868 5016 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
19:18:51.0868 5016 C:\Windows\System32\usbmon.dll - ok
19:18:51.0868 5016 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
19:18:51.0868 5016 C:\Windows\System32\WSDMon.dll - ok
19:18:51.0884 5016 [ 8F1C949FD695C83C4E30C3BFC004C81F ] C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
19:18:51.0884 5016 C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL - ok
19:18:51.0884 5016 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
19:18:51.0884 5016 C:\Windows\System32\win32spl.dll - ok
19:18:51.0884 5016 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
19:18:51.0884 5016 C:\Windows\System32\inetpp.dll - ok
19:18:51.0884 5016 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
19:18:51.0884 5016 C:\Windows\System32\cscapi.dll - ok
19:18:51.0899 5016 [ 61BFFB5F57AD12F83AB64B7181829B34 ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:18:51.0899 5016 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE - ok
19:18:51.0899 5016 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
19:18:51.0899 5016 C:\Windows\System32\wdi.dll - ok
19:18:51.0899 5016 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
19:18:51.0899 5016 C:\Windows\System32\npmproxy.dll - ok
19:18:51.0899 5016 [ 79E80B10FE8F6662E0C9162A68C43444 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
19:18:51.0899 5016 C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
19:18:51.0915 5016 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
19:18:51.0915 5016 C:\Windows\SysWOW64\clbcatq.dll - ok
19:18:51.0915 5016 [ 132045285DCC8654C14F1CFB4A8DCDA1 ] C:\Program Files\Microsoft Security Client\NisLog.dll
19:18:51.0915 5016 C:\Program Files\Microsoft Security Client\NisLog.dll - ok
19:18:51.0915 5016 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
19:18:51.0915 5016 C:\Windows\System32\ndiscapCfg.dll - ok
19:18:51.0915 5016 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
19:18:51.0915 5016 C:\Windows\System32\rascfg.dll - ok
19:18:51.0931 5016 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
19:18:51.0931 5016 C:\Windows\System32\mprapi.dll - ok
19:18:51.0931 5016 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
19:18:51.0931 5016 C:\Windows\System32\wpdbusenum.dll - ok
19:18:51.0931 5016 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
19:18:51.0931 5016 C:\Windows\SysWOW64\wbemcomn.dll - ok
19:18:51.0931 5016 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
19:18:51.0931 5016 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
19:18:51.0946 5016 [ F62175F3B0CF55742A2085516F1B9BEC ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPOBJS.DLL
19:18:51.0946 5016 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPOBJS.DLL - ok
19:18:51.0946 5016 [ BCED95C3424E3316D455E19B671ACEEC ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll
19:18:51.0946 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WMINet_Utils.dll - ok
19:18:51.0946 5016 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
19:18:51.0946 5016 C:\Windows\System32\Apphlpdm.dll - ok
19:18:51.0946 5016 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
19:18:51.0946 5016 C:\Windows\System32\diagperf.dll - ok
19:18:51.0962 5016 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
19:18:51.0962 5016 C:\Windows\System32\perftrack.dll - ok
19:18:51.0962 5016 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
19:18:51.0962 5016 C:\Windows\System32\PortableDeviceApi.dll - ok
19:18:51.0962 5016 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
19:18:51.0962 5016 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
19:18:51.0962 5016 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
19:18:51.0962 5016 C:\Windows\System32\mprmsg.dll - ok
19:18:51.0977 5016 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
19:18:51.0977 5016 C:\Windows\System32\tcpipcfg.dll - ok
19:18:51.0977 5016 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
19:18:51.0977 5016 C:\Windows\System32\NapiNSP.dll - ok
19:18:51.0977 5016 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
19:18:51.0977 5016 C:\Windows\System32\pnrpnsp.dll - ok
19:18:51.0977 5016 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
19:18:51.0977 5016 C:\Windows\System32\winrnr.dll - ok
19:18:51.0993 5016 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
19:18:51.0993 5016 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
19:18:51.0993 5016 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
19:18:51.0993 5016 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
19:18:51.0993 5016 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
19:18:51.0993 5016 C:\Windows\SysWOW64\ntdsapi.dll - ok
19:18:51.0993 5016 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:18:51.0993 5016 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:18:52.0009 5016 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:18:52.0009 5016 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:18:52.0009 5016 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
19:18:52.0009 5016 C:\Windows\System32\taskhost.exe - ok
19:18:52.0009 5016 [ 17E8DE51C5DAE58C5C390F41B9C777BD ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.DLL
19:18:52.0009 5016 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPWMI.DLL - ok
19:18:52.0009 5016 [ 0EF845AF06AE5F34BA8F9B397A98BE3A ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPCEXT.DLL
19:18:52.0009 5016 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPCEXT.DLL - ok
19:18:52.0024 5016 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
19:18:52.0024 5016 C:\Windows\System32\pnpts.dll - ok
19:18:52.0024 5016 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
19:18:52.0024 5016 C:\Windows\System32\wdiasqmmodule.dll - ok
19:18:52.0024 5016 [ 20C7F2ADAE249D6708941BC8CDD9735F ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{28493FD3-ECA1-4223-AB9B-20B2193244B2}\gapaengine.dll
19:18:52.0024 5016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{28493FD3-ECA1-4223-AB9B-20B2193244B2}\gapaengine.dll - ok
19:18:52.0024 5016 [ D729084195C952B7ED14AA6DA4B44DCA ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{28493FD3-ECA1-4223-AB9B-20B2193244B2}\nisfull.vdm
19:18:52.0024 5016 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{28493FD3-ECA1-4223-AB9B-20B2193244B2}\nisfull.vdm - ok
19:18:52.0040 5016 [ 8C362BC4687838891922DBD00D622ACD ] C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL
19:18:52.0040 5016 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPC.DLL - ok
19:18:52.0040 5016 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
19:18:52.0040 5016 C:\Program Files\Windows Defender\MpClient.dll - ok
19:18:52.0040 5016 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
19:18:52.0040 5016 C:\Windows\System32\sppsvc.exe - ok
19:18:52.0040 5016 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
19:18:52.0055 5016 C:\Windows\System32\drivers\spsys.sys - ok
19:18:52.0055 5016 [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
19:18:52.0055 5016 C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
19:18:52.0055 5016 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
19:18:52.0055 5016 C:\Windows\System32\sppwinob.dll - ok
19:18:52.0055 5016 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
19:18:52.0055 5016 C:\Windows\System32\tdh.dll - ok
19:18:52.0055 5016 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
19:18:52.0055 5016 C:\Windows\System32\sppobjs.dll - ok
19:18:52.0071 5016 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
19:18:52.0071 5016 C:\Windows\System32\pnidui.dll - ok
19:18:52.0071 5016 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
19:18:52.0071 5016 C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
19:18:52.0071 5016 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
19:18:52.0071 5016 C:\Windows\System32\wmp.dll - ok
19:18:52.0071 5016 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
19:18:52.0071 5016 C:\Windows\System32\nci.dll - ok
19:18:52.0087 5016 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
19:18:52.0087 5016 C:\Windows\System32\wlaninst.dll - ok
19:18:52.0087 5016 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
19:18:52.0087 5016 C:\Windows\System32\wwaninst.dll - ok
19:18:52.0087 5016 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\SysWOW64\ncobjapi.dll
19:18:52.0087 5016 C:\Windows\SysWOW64\ncobjapi.dll - ok
19:18:52.0087 5016 [ 22F020C76E339EB2B2187BA73A7E4173 ] C:\Windows\System32\PrintIsolationHost.exe
19:18:52.0087 5016 C:\Windows\System32\PrintIsolationHost.exe - ok
19:18:52.0102 5016 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\unidrv.dll
19:18:52.0102 5016 C:\Windows\System32\spool\drivers\x64\3\unidrv.dll - ok
19:18:52.0102 5016 [ 7A3AFE50417B94910A6DAE1D07DF6E3A ] C:\Windows\SysWOW64\sppcext.dll
19:18:52.0102 5016 C:\Windows\SysWOW64\sppcext.dll - ok
19:18:52.0102 5016 [ 5F5BB7C391D0E98338BF64B19C81F1FF ] C:\Windows\SysWOW64\sppwmi.dll
19:18:52.0102 5016 C:\Windows\SysWOW64\sppwmi.dll - ok
19:18:52.0102 5016 [ 6797CEB7D07B09A0D79612657BCC6CCA ] C:\Windows\System32\spool\drivers\x64\3\HPZUIWN7.DLL
19:18:52.0102 5016 C:\Windows\System32\spool\drivers\x64\3\HPZUIWN7.DLL - ok
19:18:52.0118 5016 [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll
19:18:52.0118 5016 C:\Windows\System32\mgmtapi.dll - ok
19:18:52.0118 5016 [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll
19:18:52.0118 5016 C:\Windows\System32\tcpmib.dll - ok
19:18:52.0118 5016 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
19:18:52.0118 5016 C:\Windows\SysWOW64\WinSCard.dll - ok
19:18:52.0118 5016 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
19:18:52.0118 5016 C:\Windows\SysWOW64\winhttp.dll - ok
19:18:52.0133 5016 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
19:18:52.0133 5016 C:\Windows\SysWOW64\webio.dll - ok
19:18:52.0133 5016 [ 8E4B58E12B3FA65ED1462846906E0B59 ] C:\Windows\SysWOW64\sppc.dll
19:18:52.0133 5016 C:\Windows\SysWOW64\sppc.dll - ok
19:18:52.0133 5016 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
19:18:52.0133 5016 C:\Windows\SysWOW64\slc.dll - ok
19:18:52.0133 5016 [ 19F75D71E4256F5113D64CE2BB66B838 ] C:\Windows\SysWOW64\slwga.dll
19:18:52.0133 5016 C:\Windows\SysWOW64\slwga.dll - ok
19:18:52.0149 5016 [ CDA59C183B3DB8CF35380836ADD74AAD ] C:\Windows\System32\compstui.dll
19:18:52.0149 5016 C:\Windows\System32\compstui.dll - ok
19:18:52.0149 5016 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
19:18:52.0149 5016 C:\Windows\System32\msimg32.dll - ok
19:18:52.0149 5016 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
19:18:52.0149 5016 C:\Windows\System32\spfileq.dll - ok
19:18:52.0149 5016 [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
19:18:52.0149 5016 C:\Windows\System32\drivers\asyncmac.sys - ok
19:18:52.0165 5016 [ 34AA912DEFA18C2C129F1E09D75C1D7E ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
19:18:52.0165 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe - ok
19:18:52.0165 5016 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
19:18:52.0165 5016 C:\Windows\System32\dimsjob.dll - ok
19:18:52.0165 5016 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
19:18:52.0165 5016 C:\Windows\System32\certcli.dll - ok
19:18:52.0165 5016 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
19:18:52.0165 5016 C:\Windows\System32\pautoenr.dll - ok
19:18:52.0180 5016 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
19:18:52.0180 5016 C:\Windows\System32\CertEnroll.dll - ok
19:18:52.0180 5016 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
19:18:52.0180 5016 C:\Windows\SysWOW64\mstask.dll - ok
19:18:52.0180 5016 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
19:18:52.0180 5016 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
19:18:52.0180 5016 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
19:18:52.0180 5016 C:\Windows\SysWOW64\mpr.dll - ok
19:18:52.0196 5016 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
19:18:52.0196 5016 C:\Windows\System32\esent.dll - ok
19:18:52.0196 5016 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
19:18:52.0196 5016 C:\Windows\System32\wbem\NCProv.dll - ok
19:18:52.0196 5016 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:18:52.0196 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
19:18:52.0196 5016 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:18:52.0196 5016 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
19:18:52.0211 5016 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
19:18:52.0211 5016 C:\Windows\System32\FntCache.dll - ok
19:18:52.0211 5016 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:18:52.0211 5016 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
19:18:52.0211 5016 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
19:18:52.0211 5016 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
19:18:52.0211 5016 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
19:18:52.0211 5016 C:\Windows\SysWOW64\netapi32.dll - ok
19:18:52.0227 5016 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
19:18:52.0227 5016 C:\Windows\SysWOW64\netutils.dll - ok
19:18:52.0227 5016 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
19:18:52.0227 5016 C:\Windows\SysWOW64\srvcli.dll - ok
19:18:52.0227 5016 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
19:18:52.0227 5016 C:\Windows\SysWOW64\wkscli.dll - ok
19:18:52.0227 5016 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
19:18:52.0227 5016 C:\Windows\SysWOW64\msi.dll - ok
19:18:52.0227 5016 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
19:18:52.0227 5016 C:\Windows\SysWOW64\cscapi.dll - ok
19:18:52.0243 5016 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
19:18:52.0243 5016 C:\Windows\SysWOW64\wintrust.dll - ok
19:18:52.0243 5016 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
19:18:52.0243 5016 C:\Windows\SysWOW64\dbghelp.dll - ok
19:18:52.0243 5016 [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
19:18:52.0243 5016 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll - ok
19:18:52.0243 5016 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
19:18:52.0243 5016 C:\Windows\SysWOW64\uxtheme.dll - ok
19:18:52.0258 5016 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
19:18:52.0258 5016 C:\Windows\SysWOW64\propsys.dll - ok
19:18:52.0258 5016 [ B25F192EA1F84A316EB7C19EFCCCF33D ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:18:52.0258 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
19:18:52.0258 5016 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
19:18:52.0258 5016 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
19:18:52.0274 5016 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
19:18:52.0274 5016 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
19:18:52.0274 5016 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
19:18:52.0274 5016 C:\Windows\System32\browcli.dll - ok
19:18:52.0274 5016 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
19:18:52.0274 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
19:18:52.0274 5016 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
19:18:52.0274 5016 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
19:18:52.0289 5016 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
19:18:52.0289 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
19:18:52.0289 5016 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
19:18:52.0289 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
19:18:52.0289 5016 [ D5BF4794962075DA6A6AE38419491012 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
19:18:52.0289 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
19:18:52.0289 5016 [ 87AC51679B00164C3E234BD77C25C2A9 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
19:18:52.0289 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
19:18:52.0305 5016 [ 2D6CFEE41BDD08E1B3FCDB488656097E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\55aad3d4b712e68530de938248e08d8c\IAStorDataMgrSvc.ni.exe
19:18:52.0305 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\55aad3d4b712e68530de938248e08d8c\IAStorDataMgrSvc.ni.exe - ok
19:18:52.0305 5016 [ 7765680E25E329708CB034B180CF9FCD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll
19:18:52.0305 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\7ff638de44686eab4afaa8b3c8a9cfca\System.ServiceProcess.ni.dll - ok
19:18:52.0305 5016 [ E8B30FB0C41D13A48A8F8022A5EAE6D2 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll
19:18:52.0305 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll - ok
19:18:52.0321 5016 [ BF67CE48DC3A41249766B2956F0A07E9 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
19:18:52.0321 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
19:18:52.0321 5016 [ DAC40C212CDF6D109335F11843DE91B7 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\3fdf1cf6dfd85acd135deaed124e0c31\IAStorDataMgr.ni.dll
19:18:52.0321 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\3fdf1cf6dfd85acd135deaed124e0c31\IAStorDataMgr.ni.dll - ok
19:18:52.0321 5016 [ 8846480F632BD42AE5921A79D9869D14 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\ceda881f46083cfb6356ed39e6bf9dcb\IAStorUtil.ni.dll
19:18:52.0321 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\ceda881f46083cfb6356ed39e6bf9dcb\IAStorUtil.ni.dll - ok
19:18:52.0321 5016 [ 7BFC46BA3A3EED6B93C2FC2186841317 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\156a6215a427bcec551e294300c096e6\System.Configuration.ni.dll
19:18:52.0321 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\156a6215a427bcec551e294300c096e6\System.Configuration.ni.dll - ok
19:18:52.0336 5016 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
19:18:52.0336 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
19:18:52.0336 5016 [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
19:18:52.0336 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
19:18:52.0336 5016 [ 50628F285F9D8AC3FA8F7C524D346EE0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9a6476e0725c79a5e8787d0d2f83c458\IsdiInterop.ni.dll
19:18:52.0336 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\9a6476e0725c79a5e8787d0d2f83c458\IsdiInterop.ni.dll - ok
19:18:52.0336 5016 [ 1663A135865F0BA6E853353E98E67F2A ] C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
19:18:52.0336 5016 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe - ok
19:18:52.0352 5016 [ 43D1D2B62DD400240565725829083A82 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
19:18:52.0352 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
19:18:52.0352 5016 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
19:18:52.0352 5016 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
19:18:52.0352 5016 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
19:18:52.0352 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
19:18:52.0352 5016 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
19:18:52.0352 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
19:18:52.0367 5016 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
19:18:52.0367 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
19:18:52.0367 5016 [ 7D4C0DCC2987BCC4671A7A8A7DDCB3AF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\85a17526c326bfb377b5c2124dce39f2\IAStorCommon.ni.dll
19:18:52.0367 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\85a17526c326bfb377b5c2124dce39f2\IAStorCommon.ni.dll - ok
19:18:52.0367 5016 [ D00B879C3676A21AAA09CA322CE113F4 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService\v4.0_4.0.0.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Application.UpdateService.dll
19:18:52.0367 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService\v4.0_4.0.0.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Application.UpdateService.dll - ok
19:18:52.0383 5016 [ 1AC6B36A1B773A7F7FB3FA3B732171C1 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract\v4.0_4.0.0.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract.dll
19:18:52.0383 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract\v4.0_4.0.0.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Application.UpdateService.PluginContract.dll - ok
19:18:52.0383 5016 [ 0EF54B7814EFA5C1364A7C6495BD1DBD ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll
19:18:52.0383 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Application.UpdateServicePlugin.dll - ok
19:18:52.0383 5016 [ 848449F41B6E9553FF5D5F864191B834 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.Client.Common.dll
19:18:52.0383 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.Common\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.Client.Common.dll - ok
19:18:52.0383 5016 [ 36B31861AD1B53433E8C9D09035E23D1 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\v4.0_4.0.22.0__3ff6b78e2989595a\Intuit.Spc.Esd.Core.dll
19:18:52.0383 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Core\v4.0_4.0.22.0__3ff6b78e2989595a\Intuit.Spc.Esd.Core.dll - ok
19:18:52.0399 5016 [ EAD7F8749BB2B19EF7DA62E20E008D6B ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll
19:18:52.0399 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Ipc.Remoting.UpdateServiceWorker.dll - ok
19:18:52.0399 5016 [ 6CCADF81A2CE922D169C2B57D7ABCDC3 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
19:18:52.0399 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll - ok
19:18:52.0399 5016 [ 151375A2F276FBE67A31FC43C2799981 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
19:18:52.0399 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - ok
19:18:52.0399 5016 [ 439A1A6796640284C82048B6A5379378 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
19:18:52.0399 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll - ok
19:18:52.0414 5016 [ CBDB42644849DC69D7D6169680272E1E ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Api.Net.dll
19:18:52.0414 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.WinClient.Api.Net\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.WinClient.Api.Net.dll - ok
19:18:52.0414 5016 [ E8F87E9951F1BA6CB6DB9CDA1B22F9A4 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.Client.BusinessLogic.dll
19:18:52.0414 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.BusinessLogic\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.Client.BusinessLogic.dll - ok
19:18:52.0414 5016 [ DF150B1D8AC2BCD91BDE25E2E2AB4634 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.Client.DataAccess.dll
19:18:52.0414 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Esd.Client.DataAccess\v4.0_4.0.66.0__3ff6b78e2989595a\Intuit.Spc.Esd.Client.DataAccess.dll - ok
19:18:52.0430 5016 [ 650464CA12ED30AC31A8D4FE0353223C ] C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\System.Data.SqlServerCe.dll
19:18:52.0430 5016 C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\System.Data.SqlServerCe.dll - ok
19:18:52.0430 5016 [ 484E37FF77E377C4B8D3A439F4D2D173 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\v4.0_6.0.28.0__30bbd97113d631f1\Intuit.Spc.Map.Reporter.dll
19:18:52.0430 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\v4.0_6.0.28.0__30bbd97113d631f1\Intuit.Spc.Map.Reporter.dll - ok
19:18:52.0430 5016 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
19:18:52.0430 5016 C:\Windows\SysWOW64\ncrypt.dll - ok
19:18:52.0430 5016 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
19:18:52.0430 5016 C:\Windows\SysWOW64\bcrypt.dll - ok
19:18:52.0445 5016 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
19:18:52.0445 5016 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
19:18:52.0445 5016 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
19:18:52.0445 5016 C:\Windows\SysWOW64\gpapi.dll - ok
19:18:52.0445 5016 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
19:18:52.0445 5016 C:\Windows\SysWOW64\cryptnet.dll - ok
19:18:52.0445 5016 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
19:18:52.0445 5016 C:\Windows\SysWOW64\SensApi.dll - ok
19:18:52.0461 5016 [ 4BF940A921BFAC209EC6CF31E091EA05 ] C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlceme40.dll
19:18:52.0461 5016 C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlceme40.dll - ok
19:18:52.0461 5016 [ A836803227004B6F513C825B25665E73 ] C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlceer40EN.dll
19:18:52.0461 5016 C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlceer40EN.dll - ok
19:18:52.0461 5016 [ AB97D171A77B5F4BAFB033BF539BED42 ] C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlceqp40.dll
19:18:52.0461 5016 C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlceqp40.dll - ok
19:18:52.0461 5016 [ EC133C3E2A97AA6FBC276DCCCD0645BF ] C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlcese40.dll
19:18:52.0461 5016 C:\Program Files (x86)\Common Files\Intuit\Database Providers\SQL Server Compact Edition 4.0\x86\sqlcese40.dll - ok
19:18:52.0477 5016 [ F8C1508FAF0DD3CC9A61A02BF0CEC2B6 ] C:\Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
19:18:52.0477 5016 C:\Windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll - ok
19:18:52.0477 5016 [ 69FD47CAB3451752C1D191BD79AFBC53 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\6451fa17874f5fb5c2c2822350e0b629\System.Runtime.Remoting.ni.dll
19:18:52.0477 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\6451fa17874f5fb5c2c2822350e0b629\System.Runtime.Remoting.ni.dll - ok
19:18:52.0477 5016 [ ED6463919045F584C9696D4876F65DDE ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
19:18:52.0477 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll - ok
19:18:52.0492 5016 [ 2770DE874AC34B27AFC72B0C8CC3EC87 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
19:18:52.0492 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
19:18:52.0492 5016 [ 4C17E41BF444F453CC5FB553A85EC930 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
19:18:52.0492 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
19:18:52.0492 5016 [ CF6041854E73301B7FCE3390D34BDEC8 ] C:\Windows\Microsoft.NET\assembly\GAC_32\Intuit.Spc.Map.WindowsFirewallUtilities\v4.0_6.0.28.0__30bbd97113d631f1\Intuit.Spc.Map.WindowsFirewallUtilities.dll
19:18:52.0492 5016 C:\Windows\Microsoft.NET\assembly\GAC_32\Intuit.Spc.Map.WindowsFirewallUtilities\v4.0_6.0.28.0__30bbd97113d631f1\Intuit.Spc.Map.WindowsFirewallUtilities.dll - ok
19:18:52.0492 5016 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
19:18:52.0492 5016 C:\Windows\SysWOW64\FirewallAPI.dll - ok
19:18:52.0508 5016 [ 24AF833D9DD4D2DC9DA9475CA380185B ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
19:18:52.0508 5016 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - ok
19:18:52.0508 5016 [ 3FD7A58471072C67FE5C54806391ACC0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\03856f7eb8c7fd55c5cf2244491dc511\CustomMarshalers.ni.dll
19:18:52.0508 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\03856f7eb8c7fd55c5cf2244491dc511\CustomMarshalers.ni.dll - ok
19:18:52.0508 5016 [ 8A74BCA77FDB507065A8D0F2BEE9558D ] C:\Windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
19:18:52.0508 5016 C:\Windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
19:18:52.0508 5016 [ 50C7CE53EF461870410355F1F2E7D515 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:18:52.0508 5016 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
19:18:52.0523 5016 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
19:18:52.0523 5016 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
19:18:52.0523 5016 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
19:18:52.0523 5016 C:\Windows\System32\wmdrmdev.dll - ok
19:18:52.0523 5016 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
19:18:52.0523 5016 C:\Windows\System32\drmv2clt.dll - ok
19:18:52.0523 5016 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
19:18:52.0523 5016 C:\Windows\System32\wscsvc.dll - ok
19:18:52.0539 5016 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
19:18:52.0539 5016 C:\Windows\System32\mfplat.dll - ok
19:18:52.0539 5016 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
19:18:52.0539 5016 C:\Windows\System32\SearchIndexer.exe - ok
19:18:52.0539 5016 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
19:18:52.0539 5016 C:\Windows\System32\wuapi.dll - ok
19:18:52.0539 5016 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
19:18:52.0539 5016 C:\Windows\System32\tquery.dll - ok
19:18:52.0555 5016 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
19:18:52.0555 5016 C:\Windows\System32\wups.dll - ok
19:18:52.0555 5016 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
19:18:52.0555 5016 C:\Windows\System32\blackbox.dll - ok
19:18:52.0555 5016 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
19:18:52.0555 5016 C:\Windows\System32\mssrch.dll - ok
19:18:52.0555 5016 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
19:18:52.0555 5016 C:\Windows\System32\upnp.dll - ok
19:18:52.0570 5016 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
19:18:52.0570 5016 C:\Windows\System32\msidle.dll - ok
19:18:52.0570 5016 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
19:18:52.0570 5016 C:\Windows\System32\ssdpsrv.dll - ok
19:18:52.0570 5016 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
19:18:52.0570 5016 C:\Windows\System32\en-US\tquery.dll.mui - ok
19:18:52.0570 5016 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
19:18:52.0570 5016 C:\Windows\System32\wmploc.DLL - ok
19:18:52.0586 5016 [ 476D163AA443532DC997E9D01A5D8766 ] C:\Program Files\Internet Explorer\ieproxy.dll
19:18:52.0586 5016 C:\Program Files\Internet Explorer\ieproxy.dll - ok
19:18:52.0586 5016 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
19:18:52.0586 5016 C:\Windows\System32\wmpps.dll - ok
19:18:52.0586 5016 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
19:18:52.0586 5016 C:\Windows\System32\wmpmde.dll - ok
19:18:52.0586 5016 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
19:18:52.0586 5016 C:\Windows\System32\WinSATAPI.dll - ok
19:18:52.0601 5016 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
19:18:52.0601 5016 C:\Windows\System32\dxgi.dll - ok
19:18:52.0601 5016 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
19:18:52.0601 5016 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
19:18:52.0601 5016 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
19:18:52.0601 5016 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
19:18:52.0601 5016 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
19:18:52.0601 5016 C:\Windows\System32\MSMPEG2ENC.DLL - ok
19:18:52.0617 5016 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
19:18:52.0617 5016 C:\Windows\System32\devenum.dll - ok
19:18:52.0617 5016 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
19:18:52.0617 5016 C:\Windows\System32\winmm.dll - ok
19:18:52.0617 5016 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
19:18:52.0617 5016 C:\Windows\System32\msdmo.dll - ok
19:18:52.0617 5016 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
19:18:52.0617 5016 C:\Windows\System32\wscisvif.dll - ok
19:18:52.0633 5016 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
19:18:52.0633 5016 C:\Windows\System32\wscproxystub.dll - ok
19:18:52.0633 5016 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
19:18:52.0633 5016 C:\Windows\System32\upnphost.dll - ok
19:18:52.0633 5016 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
19:18:52.0633 5016 C:\Windows\System32\wbem\wmiprov.dll - ok
19:18:52.0633 5016 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
19:18:52.0633 5016 C:\Windows\System32\udhisapi.dll - ok
19:18:52.0633 5016 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
19:18:52.0633 5016 C:\Windows\System32\SearchProtocolHost.exe - ok
19:18:52.0648 5016 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
19:18:52.0648 5016 C:\Windows\System32\msshooks.dll - ok
19:18:52.0648 5016 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
19:18:52.0648 5016 C:\Windows\System32\SearchFilterHost.exe - ok
19:18:52.0648 5016 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
19:18:52.0648 5016 C:\Windows\System32\wuaueng.dll - ok
19:18:52.0648 5016 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
19:18:52.0648 5016 C:\Windows\System32\mssprxy.dll - ok
19:18:52.0664 5016 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
19:18:52.0664 5016 C:\Windows\System32\mssph.dll - ok
19:18:52.0664 5016 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
19:18:52.0664 5016 C:\Windows\System32\mapi32.dll - ok
19:18:52.0664 5016 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
19:18:52.0664 5016 C:\Windows\System32\mspatcha.dll - ok
19:18:52.0664 5016 [ A39138C1FEF0D5C401BF7FE8488A1F0F ] C:\Windows\System32\chsbrkr.dll
19:18:52.0664 5016 C:\Windows\System32\chsbrkr.dll - ok
19:18:52.0679 5016 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
19:18:52.0679 5016 C:\Windows\System32\Query.dll - ok
19:18:52.0679 5016 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
19:18:52.0679 5016 C:\Windows\System32\ELSCore.dll - ok
19:18:52.0679 5016 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
19:18:52.0679 5016 C:\Windows\System32\elsTrans.dll - ok
19:18:52.0679 5016 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
19:18:52.0679 5016 C:\Windows\System32\elslad.dll - ok
19:18:52.0695 5016 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
19:18:52.0695 5016 C:\Windows\System32\NaturalLanguage6.dll - ok
19:18:52.0695 5016 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
19:18:52.0695 5016 C:\Windows\System32\NlsData0000.dll - ok
19:18:52.0695 5016 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
19:18:52.0695 5016 C:\Windows\System32\NlsData0009.dll - ok
19:18:52.0695 5016 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
19:18:52.0695 5016 C:\Windows\System32\NlsLexicons0009.dll - ok
19:18:52.0711 5016 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
19:18:52.0711 5016 C:\Windows\System32\wups2.dll - ok
19:18:52.0711 5016 [ 374EBDA379A8F38E0CFC2211611E7167 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:18:52.0711 5016 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
19:18:52.0711 5016 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
19:18:52.0711 5016 C:\Windows\SysWOW64\wsock32.dll - ok
19:18:52.0711 5016 [ D480C9220BFE667DE65A46CDE80EA7E9 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll
19:18:52.0711 5016 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll - ok
19:18:52.0726 5016 [ 122F89E0905FC656D56F65CD7A2E9B4D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll
19:18:52.0726 5016 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll - ok
19:18:52.0726 5016 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
19:18:52.0726 5016 C:\Windows\System32\linkinfo.dll - ok
19:18:52.0726 5016 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
19:18:52.0726 5016 C:\Windows\System32\networkexplorer.dll - ok
19:18:52.0726 5016 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
19:18:52.0726 5016 C:\Windows\System32\drprov.dll - ok
19:18:52.0742 5016 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
19:18:52.0742 5016 C:\Windows\System32\ntlanman.dll - ok
19:18:52.0742 5016 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
19:18:52.0742 5016 C:\Windows\System32\davclnt.dll - ok
19:18:52.0742 5016 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
19:18:52.0742 5016 C:\Windows\System32\davhlpr.dll - ok
19:18:52.0742 5016 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
19:18:52.0742 5016 C:\Windows\System32\PhotoMetadataHandler.dll - ok
19:18:52.0757 5016 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
19:18:52.0757 5016 C:\Windows\System32\ntshrui.dll - ok
19:18:52.0757 5016 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
19:18:52.0757 5016 C:\Windows\System32\dllhost.exe - ok
19:18:52.0757 5016 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
19:18:52.0757 5016 C:\Windows\System32\IDStore.dll - ok
19:18:52.0757 5016 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
19:18:52.0757 5016 C:\Windows\System32\PlaySndSrv.dll - ok
19:18:52.0773 5016 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
19:18:52.0773 5016 C:\Windows\System32\userinit.exe - ok
19:18:52.0773 5016 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
19:18:52.0773 5016 C:\Windows\System32\dwm.exe - ok
19:18:52.0773 5016 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
19:18:52.0773 5016 C:\Windows\System32\MsCtfMonitor.dll - ok
19:18:52.0773 5016 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
19:18:52.0773 5016 C:\Windows\System32\msutb.dll - ok
19:18:52.0789 5016 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
19:18:52.0789 5016 C:\Windows\System32\HotStartUserAgent.dll - ok
19:18:52.0789 5016 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
19:18:52.0789 5016 C:\Windows\System32\dssenh.dll - ok
19:18:52.0789 5016 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
19:18:52.0789 5016 C:\Windows\explorer.exe - ok
19:18:52.0789 5016 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
19:18:52.0789 5016 C:\Windows\System32\dwmredir.dll - ok
19:18:52.0804 5016 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
19:18:52.0804 5016 C:\Windows\System32\dwmcore.dll - ok
19:18:52.0804 5016 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
19:18:52.0804 5016 C:\Windows\System32\radardt.dll - ok
19:18:52.0804 5016 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
19:18:52.0804 5016 C:\Windows\System32\d3d10_1.dll - ok
19:18:52.0804 5016 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
19:18:52.0804 5016 C:\Windows\System32\d3d10_1core.dll - ok
19:18:52.0820 5016 [ 71D3270248200BE20A1E957FCE4AA78C ] C:\Windows\System32\igd10umd64.dll
19:18:52.0820 5016 C:\Windows\System32\igd10umd64.dll - ok
19:18:52.0820 5016 [ E51DAD3180A9ABA4FB0F3C3E84A02C51 ] C:\Users\WilWong83\Downloads\Monopoly-USA-2012.exe
19:18:52.0820 5016 C:\Users\WilWong83\Downloads\Monopoly-USA-2012.exe - ok
19:18:52.0820 5016 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
19:18:52.0820 5016 C:\Windows\System32\ExplorerFrame.dll - ok
19:18:52.0820 5016 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
19:18:52.0820 5016 C:\Windows\System32\EhStorShell.dll - ok
19:18:52.0835 5016 [ 0ABA7E925E54A222331B16BEF25A5958 ] C:\Program Files (x86)\Google\Drive\googledrivesync64.dll
19:18:52.0835 5016 C:\Program Files (x86)\Google\Drive\googledrivesync64.dll - ok
19:18:52.0835 5016 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
19:18:52.0835 5016 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
19:18:52.0835 5016 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
19:18:52.0835 5016 C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL - ok
19:18:52.0835 5016 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
19:18:52.0835 5016 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
19:18:52.0851 5016 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
19:18:52.0851 5016 C:\Windows\System32\uDWM.dll - ok
19:18:52.0851 5016 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
19:18:52.0851 5016 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF - ok
19:18:52.0851 5016 [ 66E3C667D853DF349E310568F60B9B6A ] C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
19:18:52.0851 5016 C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll - ok
19:18:52.0851 5016 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
19:18:52.0851 5016 C:\Windows\System32\aelupsvc.dll - ok
19:18:52.0867 5016 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
19:18:52.0867 5016 C:\Windows\System32\IconCodecService.dll - ok
19:18:52.0867 5016 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
19:18:52.0867 5016 C:\Windows\System32\appinfo.dll - ok
19:18:52.0867 5016 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
19:18:52.0867 5016 C:\Windows\SysWOW64\dwmapi.dll - ok
19:18:52.0867 5016 [ 5B6C2CCEA3C64902C0048A85BA56A910 ] C:\Users\WILWON~1\AppData\Local\Temp\is-95KQ8.tmp\Monopoly-USA-2012.tmp
19:18:52.0867 5016 C:\Users\WILWON~1\AppData\Local\Temp\is-95KQ8.tmp\Monopoly-USA-2012.tmp - ok
19:18:52.0882 5016 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
19:18:52.0882 5016 C:\Windows\System32\runonce.exe - ok
19:18:52.0882 5016 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
19:18:52.0882 5016 C:\Windows\SysWOW64\runonce.exe - ok
19:18:52.0882 5016 [ 660C8E78B94F483E44B0243A774A4746 ] C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
19:18:52.0882 5016 C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL - ok
19:18:52.0882 5016 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
19:18:52.0882 5016 C:\Windows\SysWOW64\comdlg32.dll - ok
19:18:52.0898 5016 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
19:18:52.0898 5016 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
19:18:52.0898 5016 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
19:18:52.0898 5016 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
19:18:52.0898 5016 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
19:18:52.0898 5016 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF - ok
19:18:52.0898 5016 [ 92DC6EF532FBB4A5C3201469A5B5EB63 ] C:\Users\WILWON~1\AppData\Local\Temp\is-TQQ02.tmp\_isetup\_shfoldr.dll
19:18:52.0898 5016 C:\Users\WILWON~1\AppData\Local\Temp\is-TQQ02.tmp\_isetup\_shfoldr.dll - ok
19:18:52.0913 5016 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
19:18:52.0913 5016 C:\Windows\SysWOW64\cmd.exe - ok
19:18:52.0913 5016 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
19:18:52.0913 5016 C:\Windows\SysWOW64\winbrand.dll - ok
19:18:52.0913 5016 [ 8797DC81EFD4E12F12D95A08B97000DC ] C:\Windows\SysWOW64\ieframe.dll
19:18:52.0913 5016 C:\Windows\SysWOW64\ieframe.dll - ok
19:18:52.0913 5016 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
19:18:52.0913 5016 C:\Windows\SysWOW64\oleacc.dll - ok
19:18:52.0929 5016 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
19:18:52.0929 5016 C:\Windows\SysWOW64\shdocvw.dll - ok
19:18:52.0929 5016 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\WilWong83\AppData\Local\Temp\8623FEBE-F805-4BE7-98C1-E874A4401C32.exe
19:18:52.0929 5016 C:\Users\WilWong83\AppData\Local\Temp\8623FEBE-F805-4BE7-98C1-E874A4401C32.exe - ok
19:18:52.0929 5016 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
19:18:52.0929 5016 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
19:18:52.0929 5016 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
19:18:52.0929 5016 C:\Windows\SysWOW64\EhStorShell.dll - ok
19:18:52.0945 5016 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MICROS~3\Office14\1033\GrooveIntlResource.dll
19:18:52.0945 5016 C:\PROGRA~2\MICROS~3\Office14\1033\GrooveIntlResource.dll - ok
19:18:52.0945 5016 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
19:18:52.0945 5016 C:\Windows\SysWOW64\ntshrui.dll - ok
19:18:52.0945 5016 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
19:18:52.0945 5016 C:\Windows\SysWOW64\imageres.dll - ok
19:18:52.0945 5016 [ 20ECAC7791DCBA69121631CB627E5A96 ] C:\Windows\System32\mf.dll
19:18:52.0945 5016 C:\Windows\System32\mf.dll - ok
19:18:52.0960 5016 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
19:18:52.0960 5016 C:\Windows\System32\ksuser.dll - ok
19:18:52.0960 5016 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
19:18:52.0960 5016 C:\Windows\System32\WindowsCodecsExt.dll - ok
19:18:52.0960 5016 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
19:18:52.0960 5016 C:\Windows\System32\wbem\cimwin32.dll - ok
19:18:52.0960 5016 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
19:18:52.0960 5016 C:\Windows\System32\framedynos.dll - ok
19:18:52.0976 5016 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
19:18:52.0976 5016 C:\Windows\System32\security.dll - ok
19:18:52.0976 5016 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
19:18:52.0976 5016 C:\Windows\System32\schedcli.dll - ok
19:18:52.0976 5016 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
19:18:52.0976 5016 C:\Windows\System32\wbem\wmipcima.dll - ok
19:18:52.0976 5016 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
19:18:52.0976 5016 C:\Windows\System32\wmi.dll - ok
19:18:52.0991 5016 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
19:18:52.0991 5016 C:\Windows\SysWOW64\sfc.dll - ok
19:18:52.0991 5016 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
19:18:52.0991 5016 C:\Windows\SysWOW64\sfc_os.dll - ok
19:18:52.0991 5016 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
19:18:52.0991 5016 C:\Windows\SysWOW64\devrtl.dll - ok
19:18:52.0991 5016 [ D56C13F26ADCB3BC0455DB42883F6E7D ] C:\Windows\System32\iedkcs32.dll
19:18:52.0991 5016 C:\Windows\System32\iedkcs32.dll - ok
19:18:53.0007 5016 [ 6D220604AA4240303DD8DEAEAB428377 ] C:\Windows\System32\ie4uinit.exe
19:18:53.0007 5016 C:\Windows\System32\ie4uinit.exe - ok
19:18:53.0007 5016 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
19:18:53.0007 5016 C:\Windows\System32\themeui.dll - ok
19:18:53.0007 5016 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
19:18:53.0007 5016 C:\Windows\System32\timedate.cpl - ok
19:18:53.0007 5016 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
19:18:53.0007 5016 C:\Windows\System32\actxprxy.dll - ok
19:18:53.0023 5016 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
19:18:53.0023 5016 C:\Windows\System32\shdocvw.dll - ok
19:18:53.0023 5016 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
19:18:53.0023 5016 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
19:18:53.0023 5016 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\Program Files (x86)\Windows Live\Messenger\msgslang.dll
19:18:53.0023 5016 C:\Program Files (x86)\Windows Live\Messenger\msgslang.dll - ok
19:18:53.0023 5016 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
19:18:53.0023 5016 C:\Windows\SysWOW64\credssp.dll - ok
19:18:53.0038 5016 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
19:18:53.0038 5016 C:\Windows\System32\gameux.dll - ok
19:18:53.0038 5016 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
19:18:53.0038 5016 C:\Windows\System32\msftedit.dll - ok
19:18:53.0038 5016 [ 7CB3ACB163DE051169095DC6507B8977 ] C:\Windows\System32\msls31.dll
19:18:53.0038 5016 C:\Windows\System32\msls31.dll - ok
19:18:53.0038 5016 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
19:18:53.0038 5016 C:\Windows\System32\msiltcfg.dll - ok
19:18:53.0054 5016 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
19:18:53.0054 5016 C:\Windows\System32\DeviceCenter.dll - ok
19:18:53.0054 5016 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
19:18:53.0054 5016 C:\Windows\System32\thumbcache.dll - ok
19:18:53.0054 5016 [ B22CB67919EBAD88B0E8BB9CDA446010 ] C:\Windows\System32\StikyNot.exe
19:18:53.0054 5016 C:\Windows\System32\StikyNot.exe - ok
19:18:53.0054 5016 [ 06213A6013BD2490F620885D67B741A0 ] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
19:18:53.0054 5016 C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe - ok
19:18:53.0069 5016 [ 4FFA2884411F1B6755E15AE623904650 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
19:18:53.0069 5016 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
19:18:53.0069 5016 [ B20857C91A3E992A5AC93D8625C53CAE ] C:\Windows\System32\hkcmd.exe
19:18:53.0069 5016 C:\Windows\System32\hkcmd.exe - ok
19:18:53.0069 5016 [ BA9E8BF3E91C14DE99FDB1FA946D07AF ] C:\Windows\System32\igfxtray.exe
19:18:53.0069 5016 C:\Windows\System32\igfxtray.exe - ok
19:18:53.0069 5016 [ 2D0838648D185E0B475E83AB1864F403 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
19:18:53.0069 5016 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
19:18:53.0085 5016 [ 29E120E36791B2E620CC398847C28E12 ] C:\Windows\System32\igfxpers.exe
19:18:53.0085 5016 C:\Windows\System32\igfxpers.exe - ok
19:18:53.0085 5016 [ 7586ACA6DBFBDCD5EBC1776486D53AA4 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
19:18:53.0085 5016 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe - ok
19:18:53.0085 5016 [ 533AAF43F472643E09C3360F5154D1CF ] C:\Windows\System32\hccutils.dll
19:18:53.0085 5016 C:\Windows\System32\hccutils.dll - ok
19:18:53.0085 5016 [ 0DC6669BC2B552C0ECC905B6B761F508 ] C:\Program Files\Microsoft Security Client\msseces.exe
19:18:53.0085 5016 C:\Program Files\Microsoft Security Client\msseces.exe - ok
19:18:53.0101 5016 [ D61010E64E3D81977913AA59D94DCDA1 ] C:\Windows\System32\igfxsrvc.exe
19:18:53.0101 5016 C:\Windows\System32\igfxsrvc.exe - ok
19:18:53.0101 5016 [ F45595F8553E606CF7D82FB47BC10CFA ] C:\Windows\System32\igfxsrvc.dll
19:18:53.0101 5016 C:\Windows\System32\igfxsrvc.dll - ok
19:18:53.0101 5016 [ 1A044999D53B26E55B4402EA7FDCD889 ] C:\Windows\System32\igfxdev.dll
19:18:53.0101 5016 C:\Windows\System32\igfxdev.dll - ok
19:18:53.0101 5016 [ 2F896C0863D80454760983F7D782F224 ] C:\Windows\System32\igfxrchs.lrc
19:18:53.0101 5016 C:\Windows\System32\igfxrchs.lrc - ok
19:18:53.0116 5016 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
19:18:53.0116 5016 C:\Windows\System32\IccLibDll_x64.dll - ok
19:18:53.0116 5016 [ E813DCB38C1084FD92A58B2C40740449 ] C:\Windows\System32\igfxress.dll
19:18:53.0116 5016 C:\Windows\System32\igfxress.dll - ok
19:18:53.0116 5016 [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\WilWong83\AppData\Local\Google\Update\GoogleUpdate.exe
19:18:53.0116 5016 C:\Users\WilWong83\AppData\Local\Google\Update\GoogleUpdate.exe - ok
19:18:53.0116 5016 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
19:18:53.0116 5016 C:\Program Files\Windows Sidebar\sidebar.exe - ok
19:18:53.0132 5016 [ DC5B5D3A1BF59A74ECA9C2EBB34574BE ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
19:18:53.0132 5016 C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
19:18:53.0132 5016 [ ECE9413226D1C6778A9EE4DFC199C1D4 ] C:\Program Files (x86)\Google\Drive\googledrivesync.exe
19:18:53.0132 5016 C:\Program Files (x86)\Google\Drive\googledrivesync.exe - ok
19:18:53.0132 5016 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
19:18:53.0132 5016 C:\Windows\System32\opengl32.dll - ok
19:18:53.0132 5016 [ BFBF87B3F76C568C935D8B70333728DC ] C:\Windows\System32\SynCOM.dll
19:18:53.0132 5016 C:\Windows\System32\SynCOM.dll - ok
19:18:53.0132 5016 [ D6346A3AF79A9AF5AEB7D2F60E23FB91 ] C:\Program Files\Acer\Acer ePower Management\BrightnessControl.dll
19:18:53.0132 5016 C:\Program Files\Acer\Acer ePower Management\BrightnessControl.dll - ok
19:18:53.0147 5016 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
19:18:53.0147 5016 C:\Windows\System32\AudioSes.dll - ok
19:18:53.0147 5016 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\94510018.sys
19:18:53.0147 5016 C:\Windows\System32\drivers\94510018.sys - ok
19:18:53.0147 5016 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
19:18:53.0147 5016 C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
19:18:53.0147 5016 [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll
19:18:53.0147 5016 C:\Windows\System32\dxva2.dll - ok
19:18:53.0163 5016 [ 7EC468199B245910B451A50FEC912E1C ] C:\Windows\System32\SynTPAPI.dll
19:18:53.0163 5016 C:\Windows\System32\SynTPAPI.dll - ok
19:18:53.0163 5016 [ EED78B62744BB38019BA174882BB3031 ] C:\Program Files\Acer\Acer ePower Management\NetAdapterControl.dll
19:18:53.0163 5016 C:\Program Files\Acer\Acer ePower Management\NetAdapterControl.dll - ok
19:18:53.0163 5016 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
19:18:53.0163 5016 C:\Windows\System32\glu32.dll - ok
19:18:53.0163 5016 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
19:18:53.0163 5016 C:\Windows\System32\wlanapi.dll - ok
19:18:53.0179 5016 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
19:18:53.0179 5016 C:\Windows\System32\ddraw.dll - ok
19:18:53.0179 5016 [ 81D3266E43BA2DC0F6BD4992945ACF37 ] C:\Program Files\Acer\Acer ePower Management\CommonControl.dll
19:18:53.0179 5016 C:\Program Files\Acer\Acer ePower Management\CommonControl.dll - ok
19:18:53.0179 5016 [ 9E635265543E06272B0C6DE1F76E04AB ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
19:18:53.0179 5016 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
19:18:53.0179 5016 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
19:18:53.0194 5016 C:\Windows\System32\consent.exe - ok
19:18:53.0194 5016 [ AFAFD74780A0BB4EBE76CDE10C9CCE43 ] C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
19:18:53.0194 5016 C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll - ok
19:18:53.0194 5016 [ 757B525F092CDB097B6727C6CAE2DDC6 ] C:\Windows\System32\igfxext.exe
19:18:53.0194 5016 C:\Windows\System32\igfxext.exe - ok
19:18:53.0194 5016 [ 8B923389C2748547C10E95F0AFCD236D ] C:\Windows\System32\igfxexps.dll
19:18:53.0194 5016 C:\Windows\System32\igfxexps.dll - ok
19:18:53.0210 5016 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
19:18:53.0210 5016 C:\Windows\System32\wbem\unsecapp.exe - ok
19:18:53.0210 5016 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
19:18:53.0210 5016 C:\Windows\System32\dciman32.dll - ok
19:18:53.0210 5016 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
19:18:53.0210 5016 C:\Windows\System32\oledlg.dll - ok
19:18:53.0210 5016 [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
19:18:53.0210 5016 C:\Windows\System32\RtkCfg64.dll - ok
19:18:53.0210 5016 [ DC245C6854ADA89BFEF37F5C90492EDF ] C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
19:18:53.0210 5016 C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe - ok
19:18:53.0225 5016 [ 713502D12223DAE40FC05B8F89021B74 ] C:\Program Files\Acer\Acer ePower Management\SetAPM.exe
19:18:53.0225 5016 C:\Program Files\Acer\Acer ePower Management\SetAPM.exe - ok
19:18:53.0225 5016 [ C0206725ADC0E788921FB462D6EDEA98 ] C:\Windows\System32\mshtml.dll
19:18:53.0225 5016 C:\Windows\System32\mshtml.dll - ok
19:18:53.0225 5016 [ C0B97E53A0E39A48EEA2DCD500EEA07A ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
19:18:53.0225 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
19:18:53.0241 5016 [ 2F8B6E9F2C65D22E5DCB76BC2CAAB721 ] C:\Program Files\Acer\Acer ePower Management\SysHook.dll
19:18:53.0241 5016 C:\Program Files\Acer\Acer ePower Management\SysHook.dll - ok
19:18:53.0241 5016 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
19:18:53.0241 5016 C:\Windows\System32\dsound.dll - ok
19:18:53.0241 5016 [ 27D33371B03C0CD6AAA2C217C0EE32BD ] C:\Windows\System32\RtkAPO64.dll
19:18:53.0241 5016 C:\Windows\System32\RtkAPO64.dll - ok
19:18:53.0241 5016 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
19:18:53.0241 5016 C:\Windows\System32\UIAnimation.dll - ok
19:18:53.0257 5016 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
19:18:53.0257 5016 C:\Windows\System32\stobject.dll - ok
19:18:53.0257 5016 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
19:18:53.0257 5016 C:\Windows\System32\batmeter.dll - ok
19:18:53.0257 5016 [ 51C8885B6A00904C0252704C9FB0F43A ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
19:18:53.0257 5016 C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe - ok
19:18:53.0257 5016 [ 14017E1CE1583C2C26F69C5BC3D4DBD0 ] C:\Dolby PCEE4\pcee4.exe
19:18:53.0257 5016 C:\Dolby PCEE4\pcee4.exe - ok
19:18:53.0272 5016 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Users\WilWong83\AppData\Local\Google\Update\1.3.21.135\goopdate.dll
19:18:53.0272 5016 C:\Users\WilWong83\AppData\Local\Google\Update\1.3.21.135\goopdate.dll - ok
19:18:53.0272 5016 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
19:18:53.0272 5016 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
19:18:53.0272 5016 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
19:18:53.0272 5016 C:\Windows\System32\prnfldr.dll - ok
19:18:53.0272 5016 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
19:18:53.0272 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
19:18:53.0288 5016 [ 4587DEDC177045EF5EA7806CC3566CC5 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
19:18:53.0288 5016 C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll - ok
19:18:53.0288 5016 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
19:18:53.0288 5016 C:\Windows\System32\AudioEng.dll - ok
19:18:53.0288 5016 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
19:18:53.0288 5016 C:\Windows\System32\DXP.dll - ok
19:18:53.0288 5016 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
19:18:53.0288 5016 C:\Windows\System32\Syncreg.dll - ok
19:18:53.0303 5016 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
19:18:53.0303 5016 C:\Windows\ehome\ehSSO.dll - ok
19:18:53.0303 5016 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
19:18:53.0303 5016 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
19:18:53.0303 5016 [ 2F5A281DDEFE60992DCD5C642EC506F0 ] C:\Program Files (x86)\Launch Manager\LManager.exe
19:18:53.0303 5016 C:\Program Files (x86)\Launch Manager\LManager.exe - ok
19:18:53.0303 5016 [ A387D093B66727BF3EDF517E2F4D87C5 ] C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
19:18:53.0303 5016 C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe - ok
19:18:53.0319 5016 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
19:18:53.0319 5016 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
19:18:53.0319 5016 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
19:18:53.0319 5016 C:\Windows\System32\netshell.dll - ok
19:18:53.0319 5016 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
19:18:53.0319 5016 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
19:18:53.0319 5016 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
19:18:53.0319 5016 C:\Windows\System32\AltTab.dll - ok
19:18:53.0335 5016 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
19:18:53.0335 5016 C:\Windows\System32\QUTIL.DLL - ok
19:18:53.0335 5016 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
19:18:53.0335 5016 C:\Windows\System32\WPDShServiceObj.dll - ok
19:18:53.0335 5016 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
19:18:53.0335 5016 C:\Windows\System32\PortableDeviceTypes.dll - ok
19:18:53.0335 5016 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Users\WilWong83\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe
19:18:53.0335 5016 C:\Users\WilWong83\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
19:18:53.0350 5016 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
19:18:53.0350 5016 C:\Windows\System32\ActionCenter.dll - ok
19:18:53.0350 5016 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
19:18:53.0350 5016 C:\Windows\System32\wersvc.dll - ok
19:18:53.0350 5016 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Users\WilWong83\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
19:18:53.0350 5016 C:\Users\WilWong83\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
19:18:53.0350 5016 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
19:18:53.0350 5016 C:\Windows\System32\srchadmin.dll - ok
19:18:53.0366 5016 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
19:18:53.0366 5016 C:\Windows\SysWOW64\samcli.dll - ok
19:18:53.0366 5016 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
19:18:53.0366 5016 C:\Windows\SysWOW64\powrprof.dll - ok
19:18:53.0366 5016 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
19:18:53.0366 5016 C:\Windows\System32\bthprops.cpl - ok
19:18:53.0366 5016 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
19:18:53.0366 5016 C:\Windows\SysWOW64\wlanapi.dll - ok
19:18:53.0381 5016 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
19:18:53.0381 5016 C:\Windows\SysWOW64\wlanutil.dll - ok
19:18:53.0381 5016 [ 47B8DEBEC68FACCD026F99CAE8698C93 ] C:\Windows\System32\webcheck.dll
19:18:53.0381 5016 C:\Windows\System32\webcheck.dll - ok
19:18:53.0381 5016 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
19:18:53.0381 5016 C:\Windows\System32\mlang.dll - ok
19:18:53.0381 5016 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
19:18:53.0381 5016 C:\Windows\System32\msimtf.dll - ok
19:18:53.0397 5016 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
19:18:53.0397 5016 C:\Windows\System32\SyncCenter.dll - ok
19:18:53.0397 5016 [ A07F12FA297F3F074D496B333C259AFA ] C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL
19:18:53.0397 5016 C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL - ok
19:18:53.0397 5016 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
19:18:53.0397 5016 C:\Windows\SysWOW64\riched20.dll - ok
19:18:53.0397 5016 [ 632A6D75FEEABC846EE9AEC33345EF34 ] C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL
19:18:53.0397 5016 C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL - ok
19:18:53.0413 5016 [ 69259DD752862F5665413AFCFB4C0B0E ] C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL
19:18:53.0413 5016 C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL - ok
19:18:53.0413 5016 [ 25B50D384D3B6EBC782DC544502AB373 ] C:\Windows\System32\jscript.dll
19:18:53.0413 5016 C:\Windows\System32\jscript.dll - ok
19:18:53.0413 5016 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
19:18:53.0413 5016 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
19:18:53.0413 5016 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
19:18:53.0413 5016 C:\Windows\SysWOW64\duser.dll - ok
19:18:53.0428 5016 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
19:18:53.0428 5016 C:\Windows\SysWOW64\dui70.dll - ok
19:18:53.0428 5016 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
19:18:53.0428 5016 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
19:18:53.0428 5016 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
19:18:53.0428 5016 C:\Windows\System32\imapi2.dll - ok
19:18:53.0428 5016 [ 74613FBA45C2C70FFBB9F32A7677FDEF ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\b4d9653c8d5dbc1b450a5d7cb453afd1\WindowsBase.ni.dll
19:18:53.0428 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\b4d9653c8d5dbc1b450a5d7cb453afd1\WindowsBase.ni.dll - ok
19:18:53.0444 5016 [ F1E7FDAA31D4B49361F2F2BDF38BC3A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\4c8e27730d1ef243f56c76b06bcc10c6\mscorlib.ni.dll
19:18:53.0444 5016 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\4c8e27730d1ef243f56c76b06bcc10c6\mscorlib.ni.dll - ok
19:18:53.0444 5016 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
19:18:53.0444 5016 C:\Windows\System32\FXSST.dll - ok
19:18:53.0444 5016 [ A53F59BC46766CE79E407AB6F451100D ] C:\Program Files (x86)\Launch Manager\WND2FILE.DLL
19:18:53.0444 5016 C:\Program Files (x86)\Launch Manager\WND2FILE.DLL - ok
19:18:53.0444 5016 [ 71FC112959B07D686E71541BD9D4F237 ] C:\Program Files (x86)\Launch Manager\PowerUtl.dll
19:18:53.0444 5016 C:\Program Files (x86)\Launch Manager\PowerUtl.dll - ok
19:18:53.0459 5016 [ 50F9394F53CF8015C703EBD2EF3BABC6 ] C:\Windows\System32\LocationApi.dll
19:18:53.0459 5016 C:\Windows\System32\LocationApi.dll - ok
19:18:53.0459 5016 [ 20D30D8717E9DFF90224B5AB37410D9D ] C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL
19:18:53.0459 5016 C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL - ok
19:18:53.0459 5016 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
19:18:53.0459 5016 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
19:18:53.0459 5016 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
19:18:53.0459 5016 C:\Windows\System32\FXSAPI.dll - ok
19:18:53.0475 5016 [ 9111354A308612483F8DA995A1DD1835 ] C:\Windows\System32\SensorsApi.dll
19:18:53.0475 5016 C:\Windows\System32\SensorsApi.dll - ok
19:18:53.0475 5016 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
19:18:53.0475 5016 C:\Windows\System32\FXSRESM.dll - ok
19:18:53.0475 5016 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
19:18:53.0475 5016 C:\Windows\System32\netman.dll - ok
19:18:53.0475 5016 [ FD5A0A28AAEA0421039242A9D592212B ] C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL
19:18:53.0475 5016 C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL - ok
19:18:53.0491 5016 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
19:18:53.0491 5016 C:\Windows\System32\FXSSVC.exe - ok
19:18:53.0491 5016 [ F60B6FA0D353DD31A59E86D3D3FD8066 ] C:\Windows\System32\imgutil.dll
19:18:53.0491 5016 C:\Windows\System32\imgutil.dll - ok
19:18:53.0491 5016 [ 0728937194E98613051F4A72C7F1D4BF ] C:\Windows\System32\pngfilt.dll
19:18:53.0491 5016 C:\Windows\System32\pngfilt.dll - ok
19:18:53.0491 5016 [ BBA662DC6FCCCCDF8EC2C4B8AE60FD3E ] C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll
19:18:53.0491 5016 C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll - ok
19:18:53.0506 5016 [ 43600D39FA6DF51D90DF04D905BE4142 ] C:\Windows\System32\vbscript.dll
19:18:53.0506 5016 C:\Windows\System32\vbscript.dll - ok
19:18:53.0506 5016 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
19:18:53.0506 5016 C:\Windows\System32\rasdlg.dll - ok
19:18:53.0506 5016 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
19:18:53.0506 5016 C:\Windows\System32\hgcpl.dll - ok
19:18:53.0506 5016 [ 8B1590C627138166C015A5680ABF6BB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
19:18:53.0506 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll - ok
19:18:53.0522 5016 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
19:18:53.0522 5016 C:\Windows\System32\dot3api.dll - ok
19:18:53.0522 5016 [ 2E76FF14C5987BE45AB65A91332E3C58 ] C:\Program Files\Windows Sidebar\wlsrvc.dll
19:18:53.0522 5016 C:\Program Files\Windows Sidebar\wlsrvc.dll - ok
19:18:53.0522 5016 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
19:18:53.0522 5016 C:\Windows\System32\wlanhlp.dll - ok
19:18:53.0522 5016 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
19:18:53.0522 5016 C:\Windows\System32\fdPHost.dll - ok
19:18:53.0537 5016 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
19:18:53.0537 5016 C:\Windows\System32\fdWSD.dll - ok
19:18:53.0537 5016 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
19:18:53.0537 5016 C:\Windows\System32\fdSSDP.dll - ok
19:18:53.0537 5016 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
19:18:53.0537 5016 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
19:18:53.0537 5016 [ 3C9A836AD99C1B5932DFB589DF2C1D2B ] C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
19:18:53.0537 5016 C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe - ok
19:18:53.0553 5016 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
19:18:53.0553 5016 C:\Windows\System32\WWanAPI.dll - ok
19:18:53.0553 5016 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
19:18:53.0553 5016 C:\Windows\System32\fdProxy.dll - ok
19:18:53.0553 5016 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
19:18:53.0553 5016 C:\Windows\System32\wwapi.dll - ok
19:18:53.0553 5016 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
19:18:53.0553 5016 C:\Windows\System32\QAGENT.DLL - ok
19:18:53.0569 5016 [ 2F002C2B104CF7E7BB18D3548C492C2B ] C:\Program Files (x86)\Launch Manager\aipflib.dll
19:18:53.0569 5016 C:\Program Files (x86)\Launch Manager\aipflib.dll - ok
19:18:53.0569 5016 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
19:18:53.0569 5016 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
19:18:53.0569 5016 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
19:18:53.0569 5016 C:\Windows\System32\ListSvc.dll - ok
19:18:53.0569 5016 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
19:18:53.0569 5016 C:\Windows\System32\P2P.dll - ok
19:18:53.0584 5016 [ 6B7B393B3549AA07D0DF7F64FDDF8687 ] C:\Program Files (x86)\Launch Manager\MMDUtl.dll
19:18:53.0584 5016 C:\Program Files (x86)\Launch Manager\MMDUtl.dll - ok
19:18:53.0584 5016 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
19:18:53.0584 5016 C:\Windows\System32\IdListen.dll - ok
19:18:53.0584 5016 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
19:18:53.0584 5016 C:\Windows\SysWOW64\winsta.dll - ok
19:18:53.0584 5016 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
19:18:53.0584 5016 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
19:18:53.0600 5016 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
19:18:53.0600 5016 C:\Windows\System32\hgprint.dll - ok
19:18:53.0600 5016 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
19:18:53.0600 5016 C:\Windows\System32\riched20.dll - ok
19:18:53.0600 5016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
19:18:53.0600 5016 C:\Windows\System32\pnrpsvc.dll - ok
19:18:53.0600 5016 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
19:18:53.0600 5016 C:\Windows\System32\p2psvc.dll - ok
19:18:53.0615 5016 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
19:18:53.0615 5016 C:\Windows\System32\P2PGraph.dll - ok
19:18:53.0615 5016 [ 57B26624B0BFA16CF1651C7E632226F2 ] C:\Program Files (x86)\Launch Manager\LMworker.exe
19:18:53.0615 5016 C:\Program Files (x86)\Launch Manager\LMworker.exe - ok
19:18:53.0615 5016 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
19:18:53.0615 5016 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
19:18:53.0615 5016 [ 352CC5F802D8EDE1FAAE6D3E50664958 ] C:\Program Files (x86)\Launch Manager\LmSmbKel.dll
19:18:53.0615 5016 C:\Program Files (x86)\Launch Manager\LmSmbKel.dll - ok
19:18:53.0631 5016 [ BBD351CB2E5455F0E96FE4460EC05F52 ] C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\wordicon.exe
19:18:53.0631 5016 C:\Windows\Installer\{90140000-0011-0000-0000-0000000FF1CE}\wordicon.exe - ok
19:18:53.0631 5016 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
19:18:53.0631 5016 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
19:18:53.0631 5016 [ 063F592B4C0AE7F786BC1A1460FB380E ] C:\Program Files (x86)\Launch Manager\VistaVol.dll
19:18:53.0631 5016 C:\Program Files (x86)\Launch Manager\VistaVol.dll - ok
19:18:53.0631 5016 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
19:18:53.0631 5016 C:\Windows\SysWOW64\MMDevAPI.dll - ok
19:18:53.0647 5016 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
19:18:53.0647 5016 C:\Windows\SysWOW64\AudioSes.dll - ok
19:18:53.0647 5016 [ 009008BD38000BE88A91FE846D32D15D ] C:\Program Files (x86)\Launch Manager\NTKCUtl.dll
19:18:53.0647 5016 C:\Program Files (x86)\Launch Manager\NTKCUtl.dll - ok
19:18:53.0647 5016 [ 3155FC8DC636446E194CD05AF8F354F1 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\33122903d6a37829201b4d4ed5d90d68\PresentationCore.ni.dll
19:18:53.0647 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\33122903d6a37829201b4d4ed5d90d68\PresentationCore.ni.dll - ok
19:18:53.0647 5016 [ 99934BAB4B8BFD3B52F3A13A1DA18890 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\5b203f3d0f44503fccf96b4a673c0e6e\System.ni.dll
19:18:53.0647 5016 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\5b203f3d0f44503fccf96b4a673c0e6e\System.ni.dll - ok
19:18:53.0662 5016 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
19:18:53.0662 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
19:18:53.0662 5016 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
19:18:53.0662 5016 C:\Windows\System32\wbem\WMIADAP.exe - ok
19:18:53.0662 5016 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
19:18:53.0662 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
19:18:53.0662 5016 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
19:18:53.0662 5016 C:\Windows\System32\loadperf.dll - ok
19:18:53.0678 5016 [ DD565DB0B1E3BDE45A7363137EEC4ABB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\bdb1edb6d1f474a6c58d77ad9782de60\WindowsBase.ni.dll
19:18:53.0678 5016 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\bdb1edb6d1f474a6c58d77ad9782de60\WindowsBase.ni.dll - ok
19:18:53.0678 5016 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
19:18:53.0678 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
19:18:53.0678 5016 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
19:18:53.0678 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
19:18:53.0678 5016 [ E9C8EC16AC3257C778A20CB17C177625 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\25ad8f912cfd0edad9703c0eb88fbef5\PresentationFramework.ni.dll
19:18:53.0678 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\25ad8f912cfd0edad9703c0eb88fbef5\PresentationFramework.ni.dll - ok
19:18:53.0693 5016 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
19:18:53.0693 5016 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
19:18:53.0693 5016 [ F7F49C8A29FCF523F98FEBAD010F0FC8 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
19:18:53.0693 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
19:18:53.0693 5016 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
19:18:53.0693 5016 C:\Windows\System32\drttransport.dll - ok
19:18:53.0693 5016 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
19:18:53.0693 5016 C:\Windows\System32\drt.dll - ok
19:18:53.0709 5016 [ 30F3D3E322C5339004415D7BC8BF246E ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\python26.dll
19:18:53.0709 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\python26.dll - ok
19:18:53.0709 5016 [ 526D928D13E0E141C01BA3799FD8338B ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32api.pyd
19:18:53.0709 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32api.pyd - ok
19:18:53.0709 5016 [ ABC5DCAC962AE8AF7AF214DD0D6D4FF6 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\PyWinTypes26.dll
19:18:53.0709 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\PyWinTypes26.dll - ok
19:18:53.0725 5016 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
19:18:53.0725 5016 C:\Windows\SysWOW64\secur32.dll - ok
19:18:53.0725 5016 [ 65EE7A7C20134DED91485AEF23C882D4 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\pythoncom26.dll
19:18:53.0725 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\pythoncom26.dll - ok
19:18:53.0725 5016 [ A78890BF2712D6E472788711FB60113B ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32com.shell.shell.pyd
19:18:53.0725 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32com.shell.shell.pyd - ok
19:18:53.0725 5016 [ 2931B1A98FA187834F7E39A598B947E1 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_socket.pyd
19:18:53.0725 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_socket.pyd - ok
19:18:53.0740 5016 [ 234CF1A2306CD5645011A298F0D3584A ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_ssl.pyd
19:18:53.0740 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_ssl.pyd - ok
19:18:53.0740 5016 [ DAFA56C9092C7CC163CD85A246E5A674 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._core_.pyd
19:18:53.0740 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._core_.pyd - ok
19:18:53.0740 5016 [ 9E6AD2917D6FD7730FF37B50F7053183 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxbase293u_vc.dll
19:18:53.0740 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxbase293u_vc.dll - ok
19:18:53.0740 5016 [ 211A2E13715834F67F2CC8B559689751 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\9009e8d122b1f2e427c226b26416d0d9\PresentationCore.ni.dll
19:18:53.0740 5016 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\9009e8d122b1f2e427c226b26416d0d9\PresentationCore.ni.dll - ok
19:18:53.0756 5016 [ 29CD1F3E9148FCD542DEC355A41776AF ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxbase293u_net_vc.dll
19:18:53.0756 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxbase293u_net_vc.dll - ok
19:18:53.0756 5016 [ 2B9A6B7B7A3997C12841A5D869F022A4 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_core_vc.dll
19:18:53.0756 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_core_vc.dll - ok
19:18:53.0756 5016 [ FF13BC0EAD656E2DE88BD245BA3D2BF7 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_adv_vc.dll
19:18:53.0756 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_adv_vc.dll - ok
19:18:53.0756 5016 [ 86AEF2219E35F086AB78BA9FBC0FA1E7 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._gdi_.pyd
19:18:53.0756 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._gdi_.pyd - ok
19:18:53.0771 5016 [ 6CB0403BDFB83F114F6EBFBD1163B220 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._windows_.pyd
19:18:53.0771 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._windows_.pyd - ok
19:18:53.0771 5016 [ 699EFC4D6FE0A2FE24D7049608F2D543 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_html_vc.dll
19:18:53.0771 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_html_vc.dll - ok
19:18:53.0771 5016 [ 09B6A5A2F9EAD10D50E3AEA7934E6DE4 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._controls_.pyd
19:18:53.0771 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._controls_.pyd - ok
19:18:53.0787 5016 [ 03B6D87D79E269526AA2B1370DE65675 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._misc_.pyd
19:18:53.0787 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._misc_.pyd - ok
19:18:53.0787 5016 [ 37FAE00D4F6DEC20EFAFC157C4B3499A ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_elementtree.pyd
19:18:53.0787 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_elementtree.pyd - ok
19:18:53.0787 5016 [ DF495F31AA306DBFEC3E7CDBB2711CF1 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\pyexpat.pyd
19:18:53.0787 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\pyexpat.pyd - ok
19:18:53.0787 5016 [ 15DE81EC02716D08B17EBF5AFC2190B8 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\pysqlite2._sqlite.pyd
19:18:53.0787 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\pysqlite2._sqlite.pyd - ok
19:18:53.0803 5016 [ 78B16D439F3562552AEB38D352F00567 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_hashlib.pyd
19:18:53.0803 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_hashlib.pyd - ok
19:18:53.0803 5016 [ 8DC2EB39AF2A01C5C28E50685F5B78A5 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_ctypes.pyd
19:18:53.0803 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\_ctypes.pyd - ok
19:18:53.0803 5016 [ 94CD8007843957C9A499F3B4ECBAF0D8 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32file.pyd
19:18:53.0803 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32file.pyd - ok
19:18:53.0803 5016 [ 3C1E19C2E71967311F2D7B2790D18615 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32security.pyd
19:18:53.0803 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32security.pyd - ok
19:18:53.0818 5016 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
19:18:53.0818 5016 C:\Windows\SysWOW64\security.dll - ok
19:18:53.0818 5016 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
19:18:53.0818 5016 C:\Windows\SysWOW64\logoncli.dll - ok
19:18:53.0818 5016 [ E282EA80BE94B90E656A475EFCAC89C2 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32event.pyd
19:18:53.0818 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32event.pyd - ok
19:18:53.0818 5016 [ A294A77B4271CE24BC830F8CA376E018 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32inet.pyd
19:18:53.0818 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32inet.pyd - ok
19:18:53.0834 5016 [ 7106BE04428936372FB6D826956A12D4 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._wizard.pyd
19:18:53.0834 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._wizard.pyd - ok
19:18:53.0834 5016 [ BA3C226B01FF615107659411AE01E3B0 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\unicodedata.pyd
19:18:53.0834 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\unicodedata.pyd - ok
19:18:53.0834 5016 [ 3A4F66ADDDF413DCD1C714B2BEBAF98A ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._html2.pyd
19:18:53.0834 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wx._html2.pyd - ok
19:18:53.0849 5016 [ 3D01C7F884349A6170A1E0D3CF812333 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_webview_vc.dll
19:18:53.0849 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\wxmsw293u_webview_vc.dll - ok
19:18:53.0849 5016 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
19:18:53.0849 5016 C:\Windows\SysWOW64\nlaapi.dll - ok
19:18:53.0849 5016 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
19:18:53.0849 5016 C:\Windows\SysWOW64\NapiNSP.dll - ok
19:18:53.0849 5016 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
19:18:53.0849 5016 C:\Windows\SysWOW64\pnrpnsp.dll - ok
19:18:53.0849 5016 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
19:18:53.0849 5016 C:\Windows\SysWOW64\winrnr.dll - ok
19:18:53.0865 5016 [ DD80D3894F5E1D36864D9727214605CD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll
19:18:53.0865 5016 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\5ecf01964c70e453d71e5d7653912ff9\System.Web.ni.dll - ok
19:18:53.0865 5016 [ 61A4E2E48CD692390EC964F0F1BBEFE2 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32pdh.pyd
19:18:53.0865 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32pdh.pyd - ok
19:18:53.0865 5016 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
19:18:53.0865 5016 C:\Windows\SysWOW64\pdh.dll - ok
19:18:53.0881 5016 [ 7BBEC5E9BDC9B406F693D3C868D11227 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\windows._cacheinvalidation.pyd
19:18:53.0881 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\windows._cacheinvalidation.pyd - ok
19:18:53.0881 5016 [ 3C303C9D3EA9C64742931CAC0E351910 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\select.pyd
19:18:53.0881 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\select.pyd - ok
19:18:53.0881 5016 [ 6EC174E577B7AB75B3A1A9858B2DB261 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32crypt.pyd
19:18:53.0881 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32crypt.pyd - ok
19:18:53.0881 5016 [ 5BF6BA38B703DF5BBE18358A3188C929 ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32process.pyd
19:18:53.0881 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32process.pyd - ok
19:18:53.0896 5016 [ 76014D0C563859FBE8777AB4521D18AC ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32profile.pyd
19:18:53.0896 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32profile.pyd - ok
19:18:53.0896 5016 [ 969D2374476243CCF7ABC1835481F7CB ] C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32ts.pyd
19:18:53.0896 5016 C:\Users\WILWON~1\AppData\Local\Temp\_MEI39522\win32ts.pyd - ok
19:18:53.0896 5016 [ F7E859C6EFB6AD903B27281785979607 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\13207b84732cfd6a9708c633d08a8564\System.Xaml.ni.dll
19:18:53.0896 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\13207b84732cfd6a9708c633d08a8564\System.Xaml.ni.dll - ok
19:18:53.0896 5016 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
19:18:53.0896 5016 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
19:18:53.0912 5016 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
19:18:53.0912 5016 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
19:18:53.0912 5016 [ 3E789A9A77366AA9E13F31DD5EC296B8 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
19:18:53.0912 5016 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
19:18:53.0912 5016 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
19:18:53.0912 5016 C:\Windows\SysWOW64\DWrite.dll - ok
19:18:53.0912 5016 [ 8651ABE581848284D5370B8EEE6E6445 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\c6a07bfaa9adcbdcf92f2f6412b5adee\PresentationFramework.ni.dll
19:18:53.0912 5016 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\c6a07bfaa9adcbdcf92f2f6412b5adee\PresentationFramework.ni.dll - ok
19:18:53.0927 5016 [ 5C0A02A7121D006F3333B15163785FE5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
19:18:53.0927 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
19:18:53.0927 5016 [ 3206A288014B1207F4E86336385CB41D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
19:18:53.0927 5016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
19:18:53.0927 5016 [ 81953836F678A7353A797E3F7DE69B55 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
19:18:53.0927 5016 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
19:18:53.0927 5016 [ 9383D302F0D95DB0802308CF250727F3 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
19:18:53.0927 5016 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
19:18:53.0943 5016 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
19:18:53.0943 5016 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
19:18:53.0943 5016 [ 6C4366921C0B35BCCE022D033EF54019 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll
19:18:53.0943 5016 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll - ok
19:18:53.0943 5016 [ DF23B98FA41224DE5B2D537CE890A7D8 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll
19:18:53.0943 5016 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll - ok
19:18:53.0959 5016 [ D2450DD455F4DD38EE4804753FB9984C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\4f24a165389a4329d86251153e73fb4c\System.Xml.Linq.ni.dll
19:18:53.0959 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\4f24a165389a4329d86251153e73fb4c\System.Xml.Linq.ni.dll - ok
19:18:53.0959 5016 [ 3EA9EE468DAB2EA6F4C20A7A6A1FB5C1 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\9e786cf870069a16696192fce504be7d\System.Security.ni.dll
19:18:53.0959 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\9e786cf870069a16696192fce504be7d\System.Security.ni.dll - ok
19:18:53.0959 5016 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
19:18:53.0959 5016 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
19:18:53.0959 5016 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
19:18:53.0959 5016 C:\Windows\SysWOW64\d3d9.dll - ok
19:18:53.0974 5016 [ 25DDE28ADA93CEB515306F07818FE55D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\139d1f7b9b9bd2f5c934123ce235cb09\System.Core.ni.dll
19:18:53.0974 5016 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\139d1f7b9b9bd2f5c934123ce235cb09\System.Core.ni.dll - ok
19:18:53.0974 5016 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
19:18:53.0974 5016 C:\Windows\SysWOW64\d3d8thk.dll - ok
19:18:53.0974 5016 [ 59A50FF01D18065CC7A4D884769D636F ] C:\Windows\SysWOW64\igdumdx32.dll
19:18:53.0974 5016 C:\Windows\SysWOW64\igdumdx32.dll - ok
19:18:53.0974 5016 [ 46945C5A90618104E35E017BCB23A4E6 ] C:\Windows\SysWOW64\igdumd32.dll
19:18:53.0974 5016 C:\Windows\SysWOW64\igdumd32.dll - ok
19:18:53.0990 5016 [ 5B428E80FCB5228A1CD69A4DADA43593 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\9e8b9aae64c5cb7b04cffc4e596dd15e\PresentationFramework.Aero.ni.dll
19:18:53.0990 5016 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\9e8b9aae64c5cb7b04cffc4e596dd15e\PresentationFramework.Aero.ni.dll - ok
19:18:53.0990 5016 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
19:18:53.0990 5016 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
19:18:53.0990 5016 [ 45FB05F743E626D9E239E52602CEA041 ] C:\Windows\SysWOW64\msctfui.dll
19:18:53.0990 5016 C:\Windows\SysWOW64\msctfui.dll - ok
19:18:53.0990 5016 [ 1204FFC574A2D1B9F1C514CB34638C7E ] C:\Windows\System32\R4EEA64A.dll
19:18:53.0990 5016 C:\Windows\System32\R4EEA64A.dll - ok
19:18:54.0005 5016 [ 55C07C20B9F073E3C7E20510C2BE5653 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll
19:18:54.0005 5016 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll - ok
19:18:54.0005 5016 ============================================================
19:18:54.0005 5016 Scan finished
19:18:54.0005 5016 ============================================================
19:18:54.0005 5008 Detected object count: 0
19:18:54.0005 5008 Actual detected object count: 0
19:19:11.0727 3560 Deinitialize success

#4 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 24 February 2013 - 11:34 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-24 19:43:39
-----------------------------
19:43:39.555 OS Version: Windows x64 6.1.7601 Service Pack 1
19:43:39.555 Number of processors: 4 586 0x2A07
19:43:39.556 ComputerName: WW-JIMMYV3 UserName: WilWong83
19:43:40.685 Initialize success
19:43:53.408 AVAST engine defs: 13022401
19:44:52.188 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:44:52.188 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
19:44:52.204 Disk 0 MBR read successfully
19:44:52.220 Disk 0 MBR scan
19:44:52.220 Disk 0 Windows 7 default MBR code
19:44:52.220 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15360 MB offset 2048
19:44:52.235 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 31459328
19:44:52.251 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 231302 MB offset 31664128
19:44:52.251 Disk 0 Partition - 00 0F Extended LBA 230176 MB offset 505370624
19:44:52.298 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 230175 MB offset 505372672
19:44:52.344 Disk 0 scanning C:\Windows\system32\drivers
19:45:02.297 Service scanning
19:45:24.871 Modules scanning
19:45:24.871 Disk 0 trace - called modules:
19:45:24.917 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
19:45:24.917 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006932060]
19:45:24.933 3 CLASSPNP.SYS[fffff88001b2543f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004a63050]
19:45:26.727 AVAST engine scan C:\Windows
19:45:29.114 AVAST engine scan C:\Windows\system32
19:48:37.188 AVAST engine scan C:\Windows\system32\drivers
19:48:48.919 AVAST engine scan C:\Users\WilWong83
20:02:56.765 Disk 0 MBR has been saved successfully to "C:\Users\WilWong83\Desktop\MBR.dat"
20:02:56.780 The log file has been saved successfully to "C:\Users\WilWong83\Desktop\aswMBR.txt"


ESET:

C:\Users\WilWong83\Downloads\cbsidlm-tr1_10a-HitmanPro_3_32bit-SEO-10895604.exe Win32/DownloadAdmin.G application cleaned by deleting - quarantined
C:\Windows\AutoKMS\AutoKMS.exe a variant of Win32/HackKMS.B application cleaned by deleting - quarantined

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:36 AM

Posted 25 February 2013 - 01:35 AM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log



#6 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 25 February 2013 - 02:33 AM

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.02.25.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
WilWong83 :: WW-JIMMYV3 [administrator]

2/25/2013 1:45:42 AM
mbam-log-2013-02-25 (01-45-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 216011
Time elapsed: 6 minute(s), 32 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


MiniToolBox by Farbar Version:10-01-2013
Ran by WilWong83 (administrator) on 25-02-2013 at 01:55:38
Running from "C:\Users\WilWong83\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15283 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR5B97 Wireless Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : WW-JimmyV3
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B97 Wireless Network Adapter
Physical Address. . . . . . . . . : EC-55-F9-94-D2-B2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8424:9e8d:7b74:8897%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, February 24, 2013 7:28:03 PM
Lease Expires . . . . . . . . . . : Monday, February 25, 2013 2:28:20 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 200037881
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-26-52-BD-1C-75-08-E5-38-C2
DNS Servers . . . . . . . . . . . : 209.18.47.61
209.18.47.62
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 1C-75-08-E5-38-C2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{67FD5A9A-7298-43C1-B33D-6F36E5996F6D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{AD9DDBC9-5774-402E-9589-C9433F3F1437}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:30d5:3d57:9de4:7452(Preferred)
Link-local IPv6 Address . . . . . : fe80::30d5:3d57:9de4:7452%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: google.com
Addresses: 2607:f8b0:4009:802::1008
74.125.225.100
74.125.225.101
74.125.225.102
74.125.225.103
74.125.225.104
74.125.225.105
74.125.225.110
74.125.225.96
74.125.225.97
74.125.225.98
74.125.225.99


Pinging google.com [74.125.225.102] with 32 bytes of data:
Reply from 74.125.225.102: bytes=32 time=30ms TTL=50
Reply from 74.125.225.102: bytes=32 time=26ms TTL=50

Ping statistics for 74.125.225.102:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 30ms, Average = 28ms
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
206.190.36.45


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=127ms TTL=45
Reply from 206.190.36.45: bytes=32 time=215ms TTL=45

Ping statistics for 206.190.36.45:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 127ms, Maximum = 215ms, Average = 171ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...ec 55 f9 94 d2 b2 ......Atheros AR5B97 Wireless Network Adapter
10...1c 75 08 e5 38 c2 ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.3 281
192.168.0.3 255.255.255.255 On-link 192.168.0.3 281
192.168.0.255 255.255.255.255 On-link 192.168.0.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:9d38:6ab8:30d5:3d57:9de4:7452/128
On-link
11 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::30d5:3d57:9de4:7452/128
On-link
11 281 fe80::8424:9e8d:7b74:8897/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/24/2013 08:40:53 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/24/2013 08:40:53 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/24/2013 08:06:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/24/2013 08:06:24 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/24/2013 08:06:24 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/24/2013 08:06:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/24/2013 03:24:54 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (02/24/2013 01:55:36 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (02/23/2013 08:58:42 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (02/23/2013 01:17:24 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005


System errors:
=============
Error: (02/24/2013 07:28:06 PM) (Source: BugCheck) (User: )
Description: 0x00000109 (0xa3a039d89866b669, 0xb3b7465eeae4f13b, 0xfffff80000b95080, 0x0000000000000002)C:\Windows\MEMORY.DMP022413-28938-01

Error: (02/24/2013 07:28:01 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 7:26:15 PM on ?2/?24/?2013 was unexpected.

Error: (02/24/2013 07:11:02 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (02/24/2013 05:56:22 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/24/2013 05:56:22 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/24/2013 05:56:22 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/24/2013 05:56:22 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/24/2013 05:56:22 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/24/2013 05:56:22 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (02/24/2013 05:56:18 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}


Microsoft Office Sessions:
=========================
Error: (02/24/2013 08:40:53 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\WilWong83\Downloads\esetsmartinstaller_enu.exe

Error: (02/24/2013 08:40:53 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\WilWong83\Downloads\esetsmartinstaller_enu.exe

Error: (02/24/2013 08:06:29 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\WilWong83\Downloads\esetsmartinstaller_enu.exe

Error: (02/24/2013 08:06:24 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\WilWong83\Downloads\esetsmartinstaller_enu.exe

Error: (02/24/2013 08:06:24 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\WilWong83\Downloads\esetsmartinstaller_enu.exe

Error: (02/24/2013 08:06:20 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\WilWong83\Downloads\esetsmartinstaller_enu.exe

Error: (02/24/2013 03:24:54 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (02/24/2013 01:55:36 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (02/23/2013 08:58:42 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (02/23/2013 01:17:24 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005


=========================== Installed Programs ============================

Acer Backup Manager (Version: 3.0.0.69)
Acer Crystal Eye Webcam (Version: 1.5.3501.00)
Acer ePower Management (Version: 6.00.3002)
Acer eRecovery Management (Version: 5.00.3002)
Acer Registration (Version: 1.03.3003)
Acer ScreenSaver (Version: 1.1.1130.2010)
Acer Updater (Version: 1.02.3502)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.2.0.2070)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)
Adobe Flash Player 11 Plugin (Version: 11.5.502.149)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Alien Skin Exposure 2
Alien Skin Image Doctor 2
Amazon Cloud Drive (Version: 0.3.28.0)
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Amazon Music Importer (Version: 2.0.1)
AnyDVD (Version: 6.8.3.0)
Audacity 1.3.13 (Unicode)
Backup Manager V3 (Version: 3.0.0.69)
Becker's CPA Exam Review - 2012 Edition (Version: 5.3)
Broadcom Card Reader Driver Installer (Version: 14.6.1.2)
Broadcom Gigabit NetLink Controller (Version: 14.6.1.2)
Cisco Connect (Version: 1.3.11069.2)
ContrastMaster 1.01
Corel AfterShot Pro (Version: 1.0.1.10)
CutePDF Writer 2.8
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Digsby
Dolby Advanced Audio v2 (Version: 7.2.7000.4)
DVD Decrypter (Remove Only)
DVDFab 8.1.0.0 (16/06/2011) Qt
Dynamic-Photo HDR 4.3
ESET Online Scanner v3
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
FocalBlade 1.05
Free M4a to MP3 Converter 6.1
Garmin Communicator Plugin x64 (Version: 4.0.3)
Garmin Lifetime Updater (Version: 2.1.11)
Google Chrome (Version: 25.0.1364.97)
Google Drive (Version: 1.7.4018.3496)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Talk Plugin (Version: 3.14.16.11781)
Google Update Helper (Version: 1.3.21.135)
HP Deskjet 2050 J510 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 2050 J510 series Help (Version: 140.0.61.61)
HP Update (Version: 5.003.001.001)
Identity Card (Version: 1.00.3003)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2418)
Intel® Rapid Storage Technology (Version: 10.0.0.1046)
Java 7 Update 15 (Version: 7.0.150)
Java Auto Updater (Version: 2.1.9.0)
Junk Mail filter update (Version: 15.4.3502.0922)
LAME v3.98.3 for Audacity
Launch Manager (Version: 5.1.3)
LG United Mobile Drivers (Version: 3.3.0.0)
LibreOffice 3.5 (Version: 3.5.6.2)
LibreOffice 3.5 Help Pack (English) (Version: 3.5.0.13)
LucisArt 3 ED/SE (Version: 3.0.0.1)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MediaMonkey 4.0 (Version: 4.0)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
mIRC (Version: 7.22)
Mozilla Firefox 19.0 (x86 en-US) (Version: 19.0)
Mozilla Maintenance Service (Version: 19.0)
Mp3tag v2.49 (Version: v2.49)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Music Manager
MyWinLocker (Version: 4.0.14.11)
MyWinLocker 4 (Version: 4.0.14.11)
MyWinLocker Suite (Version: 4.0.14.11)
Neat Image v6.0 Pro+
Nero Burning ROM 10 (Version: 10.2.11000.12.100)
Nero Burning ROM 10 (Version: 10.5.10300)
Nero BurningROM 10 Help (CHM) (Version: 10.5.10100)
Nero Control Center 10 (Version: 10.2.10600.0.6)
Nero Core Components 10 (Version: 2.0.17400.8.2)
NTI Media Maker 9 (Version: 9.0.2.8939)
Octoshape add-in for Adobe Flash Player
OLYMPUS Digital Camera Updater (Version: 1.0.3)
OLYMPUS Viewer 2 (Version: 1.1.1)
PDF Settings (Version: 1.0)
PeaZip 4.7.3
Picasa 3 (Version: 3.8)
Power Retouche Retouching Suite (Version: 7.5)
Realtek High Definition Audio Driver (Version: 6.0.1.6339)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.26.0)
Rosetta Stone Version 3 (Version: 3.4.5.0)
Shredder (Version: 2.0.8.7)
SofTest 11.0 (Version: 1.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
Synaptics Pointing Device Driver (Version: 15.1.6.0)
System Requirements Lab for Intel (Version: 4.4.24.0)
TurboTax 2011
TurboTax 2011 wcaiper (Version: 011.000.1647)
TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0474)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 wohiper (Version: 011.000.1629)
TurboTax 2011 wrapper (Version: 011.000.0121)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
ViewSonic Monitor Drivers
VLC media player 2.0.5 (Version: 2.0.5)
Welcome Center (Version: 1.02.3007)
Winamp (Version: 5.61 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Driver Package - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (Version: 09/09/2009 1.0.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
μTorrent (Version: 3.1.3)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 74%
Total physical RAM: 3947.86 MB
Available physical RAM: 1001.3 MB
Total Pagefile: 7893.91 MB
Available Pagefile: 3519.94 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:225.88 GB) (Free:24.68 GB) NTFS
2 Drive d: (My Files) (Fixed) (Total:224.78 GB) (Free:10.28 GB) NTFS

========================= Users: ========================================

User accounts for \\WW-JIMMYV3

Administrator Guest WilWong83


**** End of log ****

#7 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 25 February 2013 - 02:35 AM

Farbar Service Scanner Version: 20-02-2013
Ran by WilWong83 (administrator) on 25-02-2013 at 02:04:14
Running from "C:\Users\WilWong83\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

# AdwCleaner v2.113 - Logfile created 02/25/2013 at 02:07:52
# Updated 23/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : WilWong83 - WW-JIMMYV3
# Boot Mode : Normal
# Running from : C:\Users\WilWong83\Downloads\AdwCleaner (1).exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Folder Deleted : C:\ProgramData\boost_interprocess

***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Users\WilWong83\AppData\Roaming\Mozilla\Firefox\Profiles\osx1ltxo.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v25.0.1364.97

File : C:\Users\WilWong83\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R4].txt - [1089 octets] - [25/02/2013 02:07:08]
AdwCleaner[S4].txt - [1025 octets] - [25/02/2013 02:07:52]

########## EOF - C:\AdwCleaner[S4].txt - [1085 octets] ##########


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.5 (02.18.2013:1)
OS: Windows 7 Home Premium x64
Ran by WilWong83 on 02/25/2013 Mon at 2:14:41.47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] hkey_current_user\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\.default\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\s-1-5-18\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\s-1-5-19\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\s-1-5-20\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\S-1-5-21-3051645046-1257409714-1773972242-1001\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73-e35ea1ea9990}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"



~~~ FireFox

Successfully deleted: [File] "C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02/25/2013 Mon at 2:22:03.09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/25/2013 02:26:22 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\WilWong83\Desktop\rkill\rkill-02-25-2013-02-26-29.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com

20 out of 15303 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 02/25/2013 02:26:40 AM
Execution time: 0 hours(s), 0 minute(s), and 18 seconds(s)

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Acer ePower Management" "ePowerTray" "Acer Incorporated" "c:\program files\acer\acer epower management\epowertray.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "MSC" "Microsoft Security Client User Interface" "Microsoft Corporation" "c:\program files\microsoft security client\msseces.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "RtHDVBg" "HD Audio Background Process" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravbg64.exe"
+ "RtHDVCpl" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravcpl64.exe"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Dolby Advanced Audio v2" "Dolby Profile Selector" "Dolby Laboratories Inc." "c:\dolby pcee4\pcee4.exe"
+ "Garmin Lifetime Updater" "Garmin Lifetime Updater" "Garmin" "c:\program files (x86)\garmin\lifetime updater\garminlifetime.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe"
+ "LManager" "Launch Manager" "Dritek System Inc." "c:\program files (x86)\launch manager\lmanager.exe"
+ "NUSB3MON" "USB 3.0 Monitor" "Renesas Electronics Corporation" "c:\program files (x86)\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\25.0.1364.97\installer\chrmstp.exe"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Google Update" "Google Installer" "Google Inc." "c:\users\wilwong83\appdata\local\google\update\googleupdate.exe"
+ "GoogleDriveSync" "Google Drive" "Google" "c:\program files (x86)\google\drive\googledrivesync.exe"
+ "Sidebar" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\neroshellext.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "MWLIVShellExt" "Shell Dynamic Link Library" "Egis Technology Inc. " "c:\program files (x86)\egistec mywinlocker\x64\mwlivshellext.dll"
+ "ShredderContextMenu" "ShredderContextMenu" "Egis Technology Inc." "c:\program files (x86)\egistec shredder\x64\shreddercontextmenu.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MWLIVShellExt" "Shell Dynamic Link Library" "Egis Technology Inc. " "c:\program files (x86)\egistec mywinlocker\mwlivshellext.dll"
+ "ShredderContextMenu" "ShredderContextMenu" "Egis Technology Inc." "c:\program files (x86)\egistec shredder\x86\shreddercontextmenu.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EPP" "Microsoft Security Client Shell Extension" "Microsoft Corporation" "c:\program files\microsoft security client\shellext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "NeroShellExt Class" "Nero Burning ROM Shell Extension" "Nero AG" "c:\program files (x86)\common files\nero\neroshellext\neroshellext.dll"
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "The Document Foundation" "c:\program files (x86)\libreoffice 3.5\program\shlxthdl\shlxthdl_x64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "The Document Foundation" "c:\program files (x86)\libreoffice 3.5\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "GDriveBlacklistedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSharedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncedOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "GDriveSyncingOverlay" "Google Drive shell extension" "Google" "c:\program files (x86)\google\drive\googledrivesync64.dll"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.5 r502" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-3051645046-1257409714-1773972242-1001Core" "" "" "File not found: C:\Users\WilWong83\AppData\Local\Facebook\Update\FacebookUpdate.exe"
+ "\FacebookUpdateTaskUserS-1-5-21-3051645046-1257409714-1773972242-1001UA" "" "" "File not found: C:\Users\WilWong83\AppData\Local\Facebook\Update\FacebookUpdate.exe"
+ "\GoogleUpdateTaskMachineCore" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskMachineUA" "Google Installer" "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3051645046-1257409714-1773972242-1001Core" "Google Installer" "Google Inc." "c:\users\wilwong83\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3051645046-1257409714-1773972242-1001UA" "Google Installer" "Google Inc." "c:\users\wilwong83\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Microsoft Antimalware\MpIdleTask" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\microsoft security client\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\Monopoly USA 2012" "Monopoly USA 2012 Setup " "FodiGames, Inc. " "c:\users\wilwong83\downloads\monopoly-usa-2012.exe"
+ "\UALU notificatin" "ALURecover" "Acer Incorporated" "c:\program files\acer\acer updater\ualu.exe"
+ "\{00FFF403-E2A8-48B4-882D-0C22DC5E22B4}" "" "" "File not found: c:\users\wilwong83\appdata\local\google\chrome\application\chrome.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "DsiWMIService" "Dritek WMI Service" "Dritek System Inc." "c:\program files (x86)\launch manager\dsiwmis.exe"
+ "ePowerSvc" "Acer ePower Service" "Acer Incorporated" "c:\program files\acer\acer epower management\epowersvc.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "GREGService" "Global Registration Service" "Acer Incorporated" "c:\program files (x86)\acer\registration\gregsvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "gusvc" "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "IntuitUpdateServiceV4" "Helps Intuit applications automatically update themselves." "Intuit Inc." "c:\program files (x86)\common files\intuit\update service v4\intuitupdateservice.exe"
+ "Live Updater Service" "Updater Service" "Acer Incorporated" "c:\program files\acer\acer updater\updaterservice.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MsMpSvc" "Helps protect users from malware and other potentially unwanted software" "Microsoft Corporation" "c:\program files\microsoft security client\msmpeng.exe"
+ "NisSrv" "Helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols" "Microsoft Corporation" "c:\program files\microsoft security client\nissrv.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll"
+ "SoftShieldService" "Examsoft Exam Management Service" "Hewlett-Packard" "c:\program files (x86)\examsoft\softest 11.0\examsoft.shieldrunner.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AnyDVD" "AnyDVD Filter Driver" "SlySoft, Inc." "c:\windows\system32\drivers\anydvd.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "b57xdbd" "Broadcom xD Picture Card Bus Driver" "Broadcom Corporation" "c:\windows\system32\drivers\b57xdbd.sys"
+ "b57xdmp" "Broadcom xD Picture Card Miniport Driver" "Broadcom Corporation" "c:\windows\system32\drivers\b57xdmp.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "bScsiMSa" "Broadcom Memory Stick Driver" "Broadcom Corporation" "c:\windows\system32\drivers\bscsimsa.sys"
+ "bScsiSDa" "Broadcom SD 3.0 Driver" "Broadcom Corporation" "c:\windows\system32\drivers\bscsisda.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "ElbyCDIO" "ElbyCD Windows x64 I/O driver" "Elaborate Bytes AG" "c:\windows\system32\drivers\elbycdio.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "k57nd60a" "Broadcom NetLink ™ Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\k57nd60a.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "mwlPSDFilter" "mwlPSDFilter Filter Driver" "Egis Technology Inc." "c:\windows\system32\drivers\mwlpsdfilter.sys"
+ "mwlPSDNServ" "mwlPSDNServ Driver" "Egis Technology Inc." "c:\windows\system32\drivers\mwlpsdnserv.sys"
+ "mwlPSDVDisk" "mwlPSDVdisk Driver" "Egis Technology Inc." "c:\windows\system32\drivers\mwlpsdvdisk.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NTIDrvr" "NTI CD-ROM Filter Driver" "NTI Corporation" "c:\windows\system32\drivers\ntidrvr.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RimUsb" "BlackBerry Device Driver" "Research In Motion Limited" "c:\windows\system32\drivers\rimusb_amd64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys"
+ "UBHelper" "NTI CD-ROM Filter Driver" "NTI Corporation" "c:\windows\system32\drivers\ubhelper.sys"
+ "usbbus" "LG CDMA USB Multi function Driver" "LG Electronics Inc." "c:\windows\system32\drivers\lgx64bus.sys"
+ "UsbDiag" "LGE CDMA USB Serial Port" "LG Electronics Inc." "c:\windows\system32\drivers\lgx64diag.sys"
+ "USBModem" "LGE CDMA Modem Support" "LG Electronics Inc." "c:\windows\system32\drivers\lgx64modem.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "msacm.l3codecp" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "vidc.VP60" "VP6 VIDEO FOR WINDOWS CODEC " "On2.com" "c:\windows\syswow64\vp6vfw.dll"
+ "vidc.VP61" "VP6 VIDEO FOR WINDOWS CODEC " "On2.com" "c:\windows\syswow64\vp6vfw.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "SlideShow" "" "" "c:\program files (x86)\nti\nti media maker 9\media maker\slideshow.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKCU\Control Panel\Desktop\Scrnsave.exe" "" "" ""
+ "C:\Windows\system32\logon.scr" "" "" "File not found: C:\Windows\system32\logon.scr"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Computer, Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "CutePDF Writer Monitor" "" "" "c:\windows\system32\cpwmon64.dll"
+ "HP 8711 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinksts8711lm.dll"
+ "PCL hpz3lwn7" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3lwn7.dll"
"C:\Users\WilWong83\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" ""
+ "Weather" "See what the weather looks like around the world." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\en-US\Gadget.xml"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:36 AM

Posted 25 February 2013 - 02:38 AM

Restart the PC.Check your browsers.Let me know if you are still redirected.



#9 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 25 February 2013 - 02:50 AM

Yes, I am still being redirected. My Google Chrome address bar (Omnibox) still uses Globasearch.

#10 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 25 February 2013 - 02:56 AM

To be more specific, in Google Chrome -> Settings -> Search, the Omnibox settings show the following link: http://globasearch.com?q=%s&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}



#11 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 25 February 2013 - 03:07 AM

I also looked inside C:\Program Files (x86)\Mozilla Firefox\searchplugins and 'babylon.xml' is still inside. Is that malware?



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:36 AM

Posted 25 February 2013 - 09:20 AM

Export bookmarks from google chrome using this guide

http://support.google.com/chrome/bin/answer.py?hl=en&answer=96816

Uninstall google chrome,make sure to checkmark Also delete browsing data option

Reinstall chrome and check your web pages.

Let me know how it goes.



#13 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 25 February 2013 - 01:29 PM

Chrome is okay right after I reinstall. But after I reboot my computer, Chrome is redirected to Globasearch again. 



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:36 AM

Posted 25 February 2013 - 01:50 PM

Can you post the exact address you are redirected to?



#15 wilwong83

wilwong83
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:11:36 AM

Posted 25 February 2013 - 02:00 PM

I am redirected to this address: http://www.globasearch.com/?serie=10

 

Here is a screenshot of my Google Chrome settings (notice the URL for Google): https://docs.google.com/file/d/0B0lR0ntzic17MkVNU2J1X09MZjA/edit?usp=sharing






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users