Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible infection, help please!


  • Please log in to reply
13 replies to this topic

#1 spooncake

spooncake

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 27 February 2013 - 12:54 PM

Hi all,

 

Believe I'm likely infected with a virus and hoped you guys might be able to help me get rid of it.

 

I was using Norton 360 which didn't pick anything up but Eset online scanner, Malwarebytes and SpyBot have all listed infected files. TDSSKiller did not find anything. I have uninstalled Norton as it was coming to the end of its subscription and installed Avast Free Edition.

 

I previously had BearShare which was difficult to remove and I'm not completely sure it's gone.

 

There was a program installed called Torch which was almost impossible to remove and again I'm not 100% it has..

 

When I open a new tab in Firefox, it is attempting to go straight to: mystart.incredibar.com/mb139?a=6R8IfmYZv0&i=26 however it is always "unable to connect".

 

I have also seen a menu within one of the system settings (unfortunately I can't remember which) where one of the option tabs at the top were blank with the information contained within the tab just consisting of my email address.. didn't seem right.

 

Eset picked up multiple instances of:

 

Win.32/Adware.MultiPlug.D application

Win.32/Adware.MultiPlug.H application

 

All coming from a program "Bcool".

 

I use my laptop at university as well as at home and the web filter they use has recently stopped me opening a specific tab relating to:

 

Spyware.Hijacker.Bearshare

 

I also note MalwareBytes's icon is now blank, ditto a number of other programs such as SpyBot..

 

MalwareBytes picked up:

 

C:\Users\James\Downloads\DownloadSetup(1).exe (PUP.Offerware) -> No action taken.
C:\Users\James\Downloads\DownloadSetup.exe (PUP.Offerware) -> No action taken.

 

Which I let it fix.

 

When I attempt to go to certain folders in Windows Explorer, it crashes the browser causing it the browser to restart.

 

Any help would be most appreciated! :smash:



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:41 AM

Posted 27 February 2013 - 01:31 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 28 February 2013 - 11:53 AM

15:50:11.0423 1332  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:50:12.0328 1332  ============================================================
15:50:12.0328 1332  Current date / time: 2013/02/28 15:50:12.0328
15:50:12.0328 1332  SystemInfo:
15:50:12.0328 1332  
15:50:12.0328 1332  OS Version: 6.1.7601 ServicePack: 1.0
15:50:12.0328 1332  Product type: Workstation
15:50:12.0328 1332  ComputerName: JAMES-PC
15:50:12.0328 1332  UserName: James
15:50:12.0328 1332  Windows directory: C:\Windows
15:50:12.0328 1332  System windows directory: C:\Windows
15:50:12.0328 1332  Running under WOW64
15:50:12.0328 1332  Processor architecture: Intel x64
15:50:12.0328 1332  Number of processors: 2
15:50:12.0328 1332  Page size: 0x1000
15:50:12.0328 1332  Boot type: Normal boot
15:50:12.0328 1332  ============================================================
15:50:26.0743 1332  BG loaded
15:50:29.0705 1332  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:50:29.0752 1332  ============================================================
15:50:29.0752 1332  \Device\Harddisk0\DR0:
15:50:29.0799 1332  MBR partitions:
15:50:29.0799 1332  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x258D4000
15:50:29.0799 1332  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x28AD4800, BlocksNum 0x2EA71800
15:50:29.0799 1332  ============================================================
15:50:30.0095 1332  C: <-> \Device\Harddisk0\DR0\Partition1
15:50:30.0626 1332  D: <-> \Device\Harddisk0\DR0\Partition2
15:50:30.0626 1332  ============================================================
15:50:30.0626 1332  Initialize success
15:50:30.0626 1332  ============================================================
15:50:41.0124 4084  ============================================================
15:50:41.0124 4084  Scan started
15:50:41.0124 4084  Mode: Manual;
15:50:41.0124 4084  ============================================================
15:50:42.0840 4084  ================ Scan system memory ========================
15:50:42.0840 4084  System memory - ok
15:50:42.0840 4084  ================ Scan services =============================
15:50:43.0371 4084  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:50:43.0386 4084  1394ohci - ok
15:50:43.0433 4084  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:50:43.0433 4084  ACPI - ok
15:50:43.0464 4084  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:50:43.0480 4084  AcpiPmi - ok
15:50:43.0698 4084  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:50:43.0698 4084  AdobeARMservice - ok
15:50:44.0135 4084  [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:50:44.0151 4084  AdobeFlashPlayerUpdateSvc - ok
15:50:44.0276 4084  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:50:44.0291 4084  adp94xx - ok
15:50:44.0338 4084  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:50:44.0338 4084  adpahci - ok
15:50:44.0369 4084  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:50:44.0369 4084  adpu320 - ok
15:50:44.0416 4084  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:50:44.0416 4084  AeLookupSvc - ok
15:50:44.0494 4084  [ 69FD46FAC0D9C4A8ECD522AC6A7481F5 ] AFBAgent        C:\Windows\system32\FBAgent.exe
15:50:44.0494 4084  AFBAgent - ok
15:50:44.0556 4084  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:50:44.0556 4084  AFD - ok
15:50:44.0603 4084  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:50:44.0603 4084  agp440 - ok
15:50:44.0650 4084  [ 3F66D9AC081B495F91529C80BFA73E97 ] AiCharger       C:\Windows\system32\DRIVERS\AiCharger.sys
15:50:44.0650 4084  AiCharger - ok
15:50:44.0697 4084  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:50:44.0712 4084  ALG - ok
15:50:44.0759 4084  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:50:44.0759 4084  aliide - ok
15:50:44.0822 4084  [ D0A5CC6B7932E7804ABCE66DEB331E63 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:50:44.0837 4084  AMD External Events Utility - ok
15:50:44.0884 4084  AMD FUEL Service - ok
15:50:44.0931 4084  [ F1A84D67A03F7536EBDA9DB426EF0E00 ] amdhub30        C:\Windows\system32\DRIVERS\amdhub30.sys
15:50:44.0931 4084  amdhub30 - ok
15:50:44.0978 4084  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:50:44.0978 4084  amdide - ok
15:50:45.0009 4084  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
15:50:45.0009 4084  amdiox64 - ok
15:50:45.0040 4084  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:50:45.0040 4084  AmdK8 - ok
15:50:45.0383 4084  [ 73B928832DDEF61B21F64E88AAC65E92 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:50:45.0477 4084  amdkmdag - ok
15:50:45.0555 4084  [ BD6E1FED09FC69482E61A486968E5DDF ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
15:50:45.0570 4084  amdkmdap - ok
15:50:45.0633 4084  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:50:45.0633 4084  AmdPPM - ok
15:50:45.0680 4084  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:50:45.0680 4084  amdsata - ok
15:50:45.0711 4084  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:50:45.0726 4084  amdsbs - ok
15:50:45.0789 4084  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:50:45.0804 4084  amdxata - ok
15:50:45.0867 4084  [ D8C25FF90E2E8FC7CBE26E2203EC4757 ] amdxhc          C:\Windows\system32\DRIVERS\amdxhc.sys
15:50:45.0867 4084  amdxhc - ok
15:50:45.0929 4084  [ BB4FE7889DB9CBBE61A308E99697F53C ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
15:50:45.0929 4084  amd_sata - ok
15:50:45.0945 4084  [ 5631CBA53F1CBEA3F9E88348E6723391 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
15:50:45.0945 4084  amd_xata - ok
15:50:45.0992 4084  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:50:46.0007 4084  AppID - ok
15:50:46.0038 4084  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:50:46.0038 4084  AppIDSvc - ok
15:50:46.0070 4084  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
15:50:46.0070 4084  Appinfo - ok
15:50:46.0335 4084  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:50:46.0350 4084  Apple Mobile Device - ok
15:50:46.0413 4084  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
15:50:46.0413 4084  arc - ok
15:50:46.0475 4084  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:50:46.0475 4084  arcsas - ok
15:50:46.0662 4084  [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
15:50:46.0662 4084  ASLDRService - ok
15:50:46.0694 4084  [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
15:50:46.0694 4084  ASMMAP64 - ok
15:50:46.0818 4084  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:50:46.0881 4084  aspnet_state - ok
15:50:46.0943 4084  [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
15:50:46.0943 4084  aswFsBlk - ok
15:50:46.0990 4084  [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
15:50:46.0990 4084  aswMonFlt - ok
15:50:47.0006 4084  [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
15:50:47.0021 4084  aswRdr - ok
15:50:47.0068 4084  [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
15:50:47.0084 4084  aswSnx - ok
15:50:47.0130 4084  [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
15:50:47.0130 4084  aswSP - ok
15:50:47.0162 4084  [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
15:50:47.0162 4084  aswTdi - ok
15:50:47.0177 4084  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:50:47.0177 4084  AsyncMac - ok
15:50:47.0224 4084  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:50:47.0224 4084  atapi - ok
15:50:47.0333 4084  [ F8633CDD09647A64EE8DB550630427FF ] athr            C:\Windows\system32\DRIVERS\athrx.sys
15:50:47.0349 4084  athr - ok
15:50:47.0442 4084  [ DBB487D09F56C674430AC454FD8BCAB9 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:50:47.0442 4084  AtiHDAudioService - ok
15:50:47.0489 4084  atillk64 - ok
15:50:47.0580 4084  [ 7910158929571214A959D5A6D16DD9C0 ] ATKGFNEXSrv     C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
15:50:47.0582 4084  ATKGFNEXSrv - ok
15:50:47.0618 4084  [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] ATKWMIACPIIO    C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
15:50:47.0619 4084  ATKWMIACPIIO - ok
15:50:47.0682 4084  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:50:47.0690 4084  AudioEndpointBuilder - ok
15:50:47.0708 4084  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:50:47.0716 4084  AudioSrv - ok
15:50:47.0863 4084  [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:50:47.0863 4084  avast! Antivirus - ok
15:50:47.0941 4084  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:50:47.0957 4084  AxInstSV - ok
15:50:48.0019 4084  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:50:48.0035 4084  b06bdrv - ok
15:50:48.0097 4084  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:50:48.0097 4084  b57nd60a - ok
15:50:48.0160 4084  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:50:48.0175 4084  BDESVC - ok
15:50:48.0207 4084  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:50:48.0207 4084  Beep - ok
15:50:48.0300 4084  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
15:50:48.0300 4084  BFE - ok
15:50:48.0394 4084  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
15:50:48.0409 4084  BITS - ok
15:50:48.0503 4084  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:50:48.0503 4084  blbdrive - ok
15:50:48.0831 4084  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:50:48.0846 4084  Bonjour Service - ok
15:50:48.0877 4084  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:50:48.0877 4084  bowser - ok
15:50:48.0909 4084  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:50:48.0924 4084  BrFiltLo - ok
15:50:49.0813 4084  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:50:49.0829 4084  BrFiltUp - ok
15:50:49.0876 4084  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
15:50:49.0876 4084  BridgeMP - ok
15:50:49.0923 4084  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:50:49.0923 4084  Browser - ok
15:50:49.0969 4084  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:50:49.0969 4084  Brserid - ok
15:50:50.0001 4084  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:50:50.0001 4084  BrSerWdm - ok
15:50:50.0032 4084  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:50:50.0032 4084  BrUsbMdm - ok
15:50:50.0063 4084  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:50:50.0063 4084  BrUsbSer - ok
15:50:50.0125 4084  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
15:50:50.0141 4084  BthEnum - ok
15:50:50.0172 4084  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:50:50.0172 4084  BTHMODEM - ok
15:50:50.0188 4084  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:50:50.0203 4084  BthPan - ok
15:50:50.0250 4084  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
15:50:50.0266 4084  BTHPORT - ok
15:50:50.0313 4084  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:50:50.0313 4084  bthserv - ok
15:50:50.0344 4084  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
15:50:50.0359 4084  BTHUSB - ok
15:50:50.0422 4084  catchme - ok
15:50:50.0484 4084  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:50:50.0484 4084  cdfs - ok
15:50:50.0531 4084  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:50:50.0531 4084  cdrom - ok
15:50:50.0578 4084  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:50:50.0578 4084  CertPropSvc - ok
15:50:50.0609 4084  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
15:50:50.0609 4084  circlass - ok
15:50:50.0656 4084  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:50:50.0671 4084  CLFS - ok
15:50:50.0874 4084  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:50:50.0874 4084  clr_optimization_v2.0.50727_32 - ok
15:50:50.0999 4084  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:50:50.0999 4084  clr_optimization_v2.0.50727_64 - ok
15:50:51.0311 4084  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:50:51.0483 4084  clr_optimization_v4.0.30319_32 - ok
15:50:51.0639 4084  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:50:51.0670 4084  clr_optimization_v4.0.30319_64 - ok
15:50:51.0732 4084  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:50:51.0732 4084  CmBatt - ok
15:50:51.0748 4084  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:50:51.0763 4084  cmdide - ok
15:50:51.0826 4084  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
15:50:51.0826 4084  CNG - ok
15:50:51.0857 4084  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:50:51.0857 4084  Compbatt - ok
15:50:51.0888 4084  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:50:51.0888 4084  CompositeBus - ok
15:50:51.0904 4084  COMSysApp - ok
15:50:51.0935 4084  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:50:51.0951 4084  crcdisk - ok
15:50:51.0997 4084  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:50:51.0997 4084  CryptSvc - ok
15:50:52.0060 4084  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:50:52.0075 4084  DcomLaunch - ok
15:50:52.0107 4084  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:50:52.0122 4084  defragsvc - ok
15:50:52.0153 4084  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:50:52.0153 4084  DfsC - ok
15:50:52.0231 4084  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:50:52.0231 4084  Dhcp - ok
15:50:52.0263 4084  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:50:52.0263 4084  discache - ok
15:50:52.0309 4084  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
15:50:52.0309 4084  Disk - ok
15:50:52.0403 4084  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:50:52.0403 4084  Dnscache - ok
15:50:52.0497 4084  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:50:52.0497 4084  dot3svc - ok
15:50:52.0528 4084  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:50:52.0528 4084  DPS - ok
15:50:52.0575 4084  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:50:52.0575 4084  drmkaud - ok
15:50:52.0637 4084  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:50:52.0653 4084  DXGKrnl - ok
15:50:52.0699 4084  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:50:52.0715 4084  EapHost - ok
15:50:52.0824 4084  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:50:52.0887 4084  ebdrv - ok
15:50:52.0980 4084  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:50:52.0980 4084  EFS - ok
15:50:53.0089 4084  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:50:53.0089 4084  ehRecvr - ok
15:50:53.0121 4084  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:50:53.0121 4084  ehSched - ok
15:50:53.0261 4084  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:50:53.0277 4084  elxstor - ok
15:50:53.0355 4084  [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
15:50:53.0355 4084  EpsonBidirectionalService - ok
15:50:53.0386 4084  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:50:53.0386 4084  ErrDev - ok
15:50:53.0495 4084  [ 4C120D2B2EA269EAE7A5744794EB6DB1 ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
15:50:53.0495 4084  ETD - ok
15:50:53.0557 4084  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:50:53.0557 4084  EventSystem - ok
15:50:53.0589 4084  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:50:53.0604 4084  exfat - ok
15:50:53.0651 4084  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:50:53.0651 4084  fastfat - ok
15:50:53.0729 4084  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:50:53.0745 4084  Fax - ok
15:50:53.0760 4084  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
15:50:53.0760 4084  fdc - ok
15:50:53.0791 4084  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:50:53.0807 4084  fdPHost - ok
15:50:53.0823 4084  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:50:53.0823 4084  FDResPub - ok
15:50:53.0869 4084  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:50:53.0869 4084  FileInfo - ok
15:50:53.0901 4084  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:50:53.0901 4084  Filetrace - ok
15:50:53.0932 4084  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:50:53.0932 4084  flpydisk - ok
15:50:53.0994 4084  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:50:53.0994 4084  FltMgr - ok
15:50:54.0181 4084  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
15:50:54.0197 4084  FontCache - ok
15:50:54.0259 4084  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:50:54.0259 4084  FontCache3.0.0.0 - ok
15:50:54.0306 4084  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:50:54.0306 4084  FsDepends - ok
15:50:54.0369 4084  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:50:54.0384 4084  Fs_Rec - ok
15:50:54.0431 4084  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:50:54.0431 4084  fvevol - ok
15:50:54.0478 4084  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:50:54.0478 4084  gagp30kx - ok
15:50:54.0525 4084  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:50:54.0540 4084  GEARAspiWDM - ok
15:50:54.0587 4084  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:50:54.0603 4084  gpsvc - ok
15:50:54.0712 4084  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
15:50:54.0727 4084  gusvc - ok
15:50:54.0759 4084  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:50:54.0774 4084  hcw85cir - ok
15:50:54.0837 4084  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:50:54.0837 4084  HdAudAddService - ok
15:50:54.0883 4084  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:50:54.0883 4084  HDAudBus - ok
15:50:54.0899 4084  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:50:54.0899 4084  HidBatt - ok
15:50:54.0915 4084  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:50:54.0930 4084  HidBth - ok
15:50:54.0946 4084  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:50:54.0946 4084  HidIr - ok
15:50:54.0977 4084  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
15:50:54.0977 4084  hidserv - ok
15:50:55.0024 4084  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
15:50:55.0024 4084  HidUsb - ok
15:50:55.0039 4084  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:50:55.0055 4084  hkmsvc - ok
15:50:55.0071 4084  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:50:55.0086 4084  HomeGroupListener - ok
15:50:55.0118 4084  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:50:55.0118 4084  HomeGroupProvider - ok
15:50:55.0150 4084  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:50:55.0165 4084  HpSAMD - ok
15:50:55.0196 4084  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:50:55.0196 4084  HTTP - ok
15:50:55.0228 4084  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:50:55.0228 4084  hwpolicy - ok
15:50:55.0259 4084  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
15:50:55.0274 4084  i8042prt - ok
15:50:55.0321 4084  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:50:55.0337 4084  iaStorV - ok
15:50:55.0415 4084  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:50:55.0430 4084  idsvc - ok
15:50:55.0462 4084  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:50:55.0477 4084  iirsp - ok
15:50:55.0524 4084  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:50:55.0540 4084  IKEEXT - ok
15:50:55.0711 4084  [ DDFADF2FA49C078A9C8270F29D6958B1 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:50:55.0727 4084  IntcAzAudAddService - ok
15:50:55.0774 4084  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:50:55.0774 4084  intelide - ok
15:50:55.0805 4084  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
15:50:55.0805 4084  intelppm - ok
15:50:55.0852 4084  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:50:55.0867 4084  IPBusEnum - ok
15:50:55.0898 4084  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:50:55.0898 4084  IpFilterDriver - ok
15:50:55.0945 4084  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:50:55.0961 4084  iphlpsvc - ok
15:50:55.0992 4084  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:50:56.0008 4084  IPMIDRV - ok
15:50:56.0023 4084  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:50:56.0023 4084  IPNAT - ok
15:50:56.0086 4084  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:50:56.0101 4084  iPod Service - ok
15:50:56.0148 4084  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:50:56.0148 4084  IRENUM - ok
15:50:56.0164 4084  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:50:56.0179 4084  isapnp - ok
15:50:56.0210 4084  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:50:56.0210 4084  iScsiPrt - ok
15:50:56.0242 4084  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:50:56.0242 4084  kbdclass - ok
15:50:56.0273 4084  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
15:50:56.0273 4084  kbdhid - ok
15:50:56.0288 4084  [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr         C:\Windows\system32\DRIVERS\kbfiltr.sys
15:50:56.0288 4084  kbfiltr - ok
15:50:56.0320 4084  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:50:56.0320 4084  KeyIso - ok
15:50:56.0351 4084  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:50:56.0351 4084  KSecDD - ok
15:50:56.0382 4084  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:50:56.0382 4084  KSecPkg - ok
15:50:56.0398 4084  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:50:56.0398 4084  ksthunk - ok
15:50:56.0429 4084  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:50:56.0444 4084  KtmRm - ok
15:50:56.0491 4084  [ 033B4AED2C5519072C0D81E00804D003 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
15:50:56.0491 4084  L1C - ok
15:50:56.0554 4084  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
15:50:56.0554 4084  LanmanServer - ok
15:50:56.0585 4084  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:50:56.0585 4084  LanmanWorkstation - ok
15:50:56.0632 4084  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:50:56.0632 4084  lltdio - ok
15:50:56.0678 4084  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:50:56.0678 4084  lltdsvc - ok
15:50:56.0710 4084  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:50:56.0710 4084  lmhosts - ok
15:50:56.0772 4084  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:50:56.0772 4084  LSI_FC - ok
15:50:56.0788 4084  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:50:56.0788 4084  LSI_SAS - ok
15:50:56.0819 4084  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:50:56.0834 4084  LSI_SAS2 - ok
15:50:56.0850 4084  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:50:56.0866 4084  LSI_SCSI - ok
15:50:56.0897 4084  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:50:56.0897 4084  luafv - ok
15:50:56.0944 4084  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:50:56.0959 4084  Mcx2Svc - ok
15:50:57.0006 4084  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:50:57.0006 4084  megasas - ok
15:50:57.0037 4084  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:50:57.0053 4084  MegaSR - ok
15:50:57.0053 4084  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:50:57.0068 4084  MMCSS - ok
15:50:57.0084 4084  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
15:50:57.0100 4084  Modem - ok
15:50:57.0115 4084  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:50:57.0115 4084  monitor - ok
15:50:57.0131 4084  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:50:57.0131 4084  mouclass - ok
15:50:57.0146 4084  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
15:50:57.0146 4084  mouhid - ok
15:50:57.0162 4084  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:50:57.0162 4084  mountmgr - ok
15:50:57.0224 4084  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:50:57.0224 4084  MozillaMaintenance - ok
15:50:57.0240 4084  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:50:57.0240 4084  mpio - ok
15:50:57.0256 4084  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:50:57.0256 4084  mpsdrv - ok
15:50:57.0318 4084  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:50:57.0334 4084  MpsSvc - ok
15:50:57.0365 4084  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:50:57.0380 4084  MRxDAV - ok
15:50:57.0427 4084  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:50:57.0427 4084  mrxsmb - ok
15:50:57.0458 4084  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:50:57.0458 4084  mrxsmb10 - ok
15:50:57.0490 4084  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:50:57.0490 4084  mrxsmb20 - ok
15:50:57.0521 4084  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:50:57.0536 4084  msahci - ok
15:50:57.0552 4084  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:50:57.0568 4084  msdsm - ok
15:50:57.0583 4084  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:50:57.0614 4084  MSDTC - ok
15:50:57.0661 4084  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:50:57.0661 4084  Msfs - ok
15:50:57.0692 4084  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:50:57.0708 4084  mshidkmdf - ok
15:50:57.0724 4084  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:50:57.0724 4084  msisadrv - ok
15:50:57.0770 4084  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:50:57.0786 4084  MSiSCSI - ok
15:50:57.0786 4084  msiserver - ok
15:50:57.0817 4084  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:50:57.0817 4084  MSKSSRV - ok
15:50:57.0833 4084  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:50:57.0848 4084  MSPCLOCK - ok
15:50:57.0880 4084  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:50:57.0880 4084  MSPQM - ok
15:50:57.0911 4084  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:50:57.0926 4084  MsRPC - ok
15:50:57.0942 4084  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:50:57.0942 4084  mssmbios - ok
15:50:57.0958 4084  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:50:57.0958 4084  MSTEE - ok
15:50:57.0973 4084  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:50:57.0973 4084  MTConfig - ok
15:50:57.0989 4084  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:50:57.0989 4084  Mup - ok
15:50:58.0020 4084  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:50:58.0036 4084  napagent - ok
15:50:58.0067 4084  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:50:58.0067 4084  NativeWifiP - ok
15:50:58.0114 4084  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:50:58.0129 4084  NDIS - ok
15:50:58.0160 4084  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:50:58.0160 4084  NdisCap - ok
15:50:58.0176 4084  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:50:58.0176 4084  NdisTapi - ok
15:50:58.0207 4084  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:50:58.0207 4084  Ndisuio - ok
15:50:58.0238 4084  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:50:58.0238 4084  NdisWan - ok
15:50:58.0270 4084  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:50:58.0270 4084  NDProxy - ok
15:50:58.0285 4084  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:50:58.0285 4084  NetBIOS - ok
15:50:58.0316 4084  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:50:58.0316 4084  NetBT - ok
15:50:58.0348 4084  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:50:58.0348 4084  Netlogon - ok
15:50:58.0394 4084  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:50:58.0410 4084  Netman - ok
15:50:58.0441 4084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:50:58.0504 4084  NetMsmqActivator - ok
15:50:58.0519 4084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:50:58.0519 4084  NetPipeActivator - ok
15:50:58.0550 4084  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:50:58.0550 4084  netprofm - ok
15:50:58.0566 4084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:50:58.0566 4084  NetTcpActivator - ok
15:50:58.0582 4084  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:50:58.0582 4084  NetTcpPortSharing - ok
15:50:58.0628 4084  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:50:58.0628 4084  nfrd960 - ok
15:50:58.0675 4084  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:50:58.0675 4084  NlaSvc - ok
15:50:58.0691 4084  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:50:58.0706 4084  Npfs - ok
15:50:58.0722 4084  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:50:58.0738 4084  nsi - ok
15:50:58.0784 4084  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:50:58.0784 4084  nsiproxy - ok
15:50:58.0847 4084  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:50:58.0894 4084  Ntfs - ok
15:50:58.0925 4084  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:50:58.0925 4084  Null - ok
15:50:58.0972 4084  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:50:58.0987 4084  nvraid - ok
15:50:59.0018 4084  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:50:59.0018 4084  nvstor - ok
15:50:59.0065 4084  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:50:59.0065 4084  nv_agp - ok
15:50:59.0081 4084  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:50:59.0096 4084  ohci1394 - ok
15:50:59.0128 4084  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:50:59.0143 4084  ose - ok
15:50:59.0393 4084  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:50:59.0502 4084  osppsvc - ok
15:50:59.0564 4084  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:50:59.0564 4084  p2pimsvc - ok
15:50:59.0627 4084  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:50:59.0627 4084  p2psvc - ok
15:50:59.0674 4084  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
15:50:59.0674 4084  Parport - ok
15:50:59.0705 4084  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:50:59.0705 4084  partmgr - ok
15:50:59.0736 4084  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:50:59.0736 4084  PcaSvc - ok
15:50:59.0783 4084  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:50:59.0783 4084  pci - ok
15:50:59.0845 4084  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:50:59.0845 4084  pciide - ok
15:50:59.0876 4084  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:50:59.0876 4084  pcmcia - ok
15:50:59.0908 4084  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:50:59.0908 4084  pcw - ok
15:50:59.0939 4084  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:50:59.0954 4084  PEAUTH - ok
15:51:00.0313 4084  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:51:00.0329 4084  PerfHost - ok
15:51:00.0438 4084  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:51:00.0500 4084  pla - ok
15:51:00.0578 4084  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:51:00.0594 4084  PlugPlay - ok
15:51:00.0656 4084  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:51:00.0688 4084  PNRPAutoReg - ok
15:51:00.0719 4084  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:51:00.0734 4084  PNRPsvc - ok
15:51:00.0766 4084  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:51:00.0812 4084  PolicyAgent - ok
15:51:00.0844 4084  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:51:00.0844 4084  Power - ok
15:51:00.0906 4084  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:51:00.0906 4084  PptpMiniport - ok
15:51:00.0937 4084  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
15:51:00.0937 4084  Processor - ok
15:51:00.0968 4084  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:51:00.0984 4084  ProfSvc - ok
15:51:01.0000 4084  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:51:01.0000 4084  ProtectedStorage - ok
15:51:01.0031 4084  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:51:01.0031 4084  Psched - ok
15:51:01.0109 4084  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:51:01.0156 4084  ql2300 - ok
15:51:01.0202 4084  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:51:01.0202 4084  ql40xx - ok
15:51:01.0249 4084  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:51:01.0265 4084  QWAVE - ok
15:51:01.0280 4084  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:51:01.0280 4084  QWAVEdrv - ok
15:51:01.0296 4084  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:51:01.0296 4084  RasAcd - ok
15:51:01.0343 4084  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:51:01.0343 4084  RasAgileVpn - ok
15:51:01.0390 4084  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:51:01.0405 4084  RasAuto - ok
15:51:01.0436 4084  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:51:01.0436 4084  Rasl2tp - ok
15:51:01.0483 4084  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:51:01.0499 4084  RasMan - ok
15:51:01.0514 4084  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:51:01.0514 4084  RasPppoe - ok
15:51:01.0546 4084  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:51:01.0546 4084  RasSstp - ok
15:51:01.0577 4084  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:51:01.0577 4084  rdbss - ok
15:51:01.0670 4084  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
15:51:01.0670 4084  rdpbus - ok
15:51:01.0702 4084  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:51:01.0702 4084  RDPCDD - ok
15:51:01.0733 4084  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:51:01.0733 4084  RDPENCDD - ok
15:51:01.0748 4084  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:51:01.0764 4084  RDPREFMP - ok
15:51:01.0826 4084  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:51:01.0826 4084  RdpVideoMiniport - ok
15:51:01.0873 4084  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:51:01.0889 4084  RDPWD - ok
15:51:01.0920 4084  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:51:01.0936 4084  rdyboost - ok
15:51:01.0967 4084  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:51:01.0967 4084  RemoteAccess - ok
15:51:01.0998 4084  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:51:02.0014 4084  RemoteRegistry - ok
15:51:02.0076 4084  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
15:51:02.0076 4084  RFCOMM - ok
15:51:02.0107 4084  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:51:02.0123 4084  RpcEptMapper - ok
15:51:02.0154 4084  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:51:02.0170 4084  RpcLocator - ok
15:51:02.0201 4084  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:51:02.0216 4084  RpcSs - ok
15:51:02.0263 4084  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:51:02.0263 4084  rspndr - ok
15:51:02.0326 4084  [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
15:51:02.0341 4084  RSUSBSTOR - ok
15:51:02.0419 4084  [ 16D4E350420BAA7E63E16E3FC033E1F5 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:51:02.0419 4084  RTL8167 - ok
15:51:02.0450 4084  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:51:02.0450 4084  SamSs - ok
15:51:02.0482 4084  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:51:02.0497 4084  sbp2port - ok
15:51:02.0528 4084  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:51:02.0544 4084  SCardSvr - ok
15:51:02.0560 4084  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:51:02.0560 4084  scfilter - ok
15:51:02.0606 4084  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:51:02.0622 4084  Schedule - ok
15:51:02.0684 4084  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:51:02.0684 4084  SCPolicySvc - ok
15:51:02.0762 4084  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
15:51:02.0762 4084  sdbus - ok
15:51:02.0840 4084  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:51:02.0856 4084  SDRSVC - ok
15:51:02.0887 4084  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:51:02.0887 4084  secdrv - ok
15:51:02.0918 4084  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:51:02.0918 4084  seclogon - ok
15:51:02.0950 4084  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
15:51:02.0965 4084  SENS - ok
15:51:02.0996 4084  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:51:03.0012 4084  SensrSvc - ok
15:51:03.0028 4084  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
15:51:03.0028 4084  Serenum - ok
15:51:03.0059 4084  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
15:51:03.0059 4084  Serial - ok
15:51:03.0090 4084  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:51:03.0090 4084  sermouse - ok
15:51:03.0137 4084  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:51:03.0137 4084  SessionEnv - ok
15:51:03.0152 4084  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:51:03.0152 4084  sffdisk - ok
15:51:03.0168 4084  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:51:03.0168 4084  sffp_mmc - ok
15:51:03.0184 4084  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:51:03.0184 4084  sffp_sd - ok
15:51:03.0199 4084  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:51:03.0199 4084  sfloppy - ok
15:51:03.0246 4084  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:51:03.0262 4084  SharedAccess - ok
15:51:03.0308 4084  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:51:03.0324 4084  ShellHWDetection - ok
15:51:03.0371 4084  [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH        C:\Windows\system32\DRIVERS\SiSG664.sys
15:51:03.0386 4084  SiSGbeLH - ok
15:51:03.0402 4084  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:51:03.0418 4084  SiSRaid2 - ok
15:51:03.0418 4084  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:51:03.0433 4084  SiSRaid4 - ok
15:51:03.0948 4084  [ 23E3C83DFF7B09A97B01A85ED8A44478 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
15:51:03.0979 4084  Skype C2C Service - ok
15:51:04.0073 4084  [ 0F575481EAD4CDD41AA82ED38BC8F6B3 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:51:04.0073 4084  SkypeUpdate - ok
15:51:04.0151 4084  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:51:04.0151 4084  Smb - ok
15:51:04.0213 4084  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:51:04.0244 4084  SNMPTRAP - ok
15:51:04.0276 4084  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:51:04.0276 4084  spldr - ok
15:51:04.0322 4084  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:51:04.0338 4084  Spooler - ok
15:51:04.0510 4084  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:51:04.0634 4084  sppsvc - ok
15:51:04.0650 4084  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:51:04.0666 4084  sppuinotify - ok
15:51:04.0697 4084  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:51:04.0712 4084  srv - ok
15:51:04.0728 4084  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:51:04.0744 4084  srv2 - ok
15:51:04.0822 4084  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:51:04.0822 4084  srvnet - ok
15:51:04.0884 4084  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:51:04.0900 4084  SSDPSRV - ok
15:51:04.0931 4084  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:51:04.0931 4084  SstpSvc - ok
15:51:04.0978 4084  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:51:04.0993 4084  stexstor - ok
15:51:05.0040 4084  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:51:05.0056 4084  stisvc - ok
15:51:05.0087 4084  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:51:05.0087 4084  swenum - ok
15:51:05.0258 4084  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:51:05.0290 4084  swprv - ok
15:51:05.0383 4084  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:51:05.0399 4084  SysMain - ok
15:51:05.0477 4084  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:51:05.0492 4084  TabletInputService - ok
15:51:05.0524 4084  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:51:05.0539 4084  TapiSrv - ok
15:51:05.0570 4084  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:51:05.0586 4084  TBS - ok
15:51:05.0695 4084  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:51:05.0742 4084  Tcpip - ok
15:51:05.0820 4084  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:51:05.0851 4084  TCPIP6 - ok
15:51:06.0194 4084  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:51:06.0194 4084  tcpipreg - ok
15:51:06.0241 4084  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:51:06.0257 4084  TDPIPE - ok
15:51:06.0304 4084  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:51:06.0319 4084  TDTCP - ok
15:51:06.0382 4084  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:51:06.0382 4084  tdx - ok
15:51:06.0413 4084  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:51:06.0413 4084  TermDD - ok
15:51:06.0522 4084  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:51:06.0538 4084  TermService - ok
15:51:06.0569 4084  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:51:06.0584 4084  Themes - ok
15:51:06.0600 4084  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:51:06.0600 4084  THREADORDER - ok
15:51:06.0647 4084  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:51:06.0647 4084  TrkWks - ok
15:51:06.0803 4084  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:51:06.0803 4084  TrustedInstaller - ok
15:51:06.0850 4084  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:51:06.0850 4084  tssecsrv - ok
15:51:06.0912 4084  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:51:06.0912 4084  TsUsbFlt - ok
15:51:06.0959 4084  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:51:06.0974 4084  TsUsbGD - ok
15:51:07.0006 4084  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:51:07.0006 4084  tunnel - ok
15:51:07.0021 4084  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:51:07.0021 4084  uagp35 - ok
15:51:07.0068 4084  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:51:07.0084 4084  udfs - ok
15:51:07.0193 4084  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:51:07.0193 4084  UI0Detect - ok
15:51:07.0224 4084  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:51:07.0240 4084  uliagpkx - ok
15:51:07.0302 4084  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:51:07.0302 4084  umbus - ok
15:51:07.0364 4084  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:51:07.0364 4084  UmPass - ok
15:51:07.0427 4084  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:51:07.0442 4084  upnphost - ok
15:51:07.0505 4084  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:51:07.0520 4084  USBAAPL64 - ok
15:51:07.0583 4084  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:51:07.0583 4084  usbccgp - ok
15:51:07.0661 4084  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:51:07.0661 4084  usbcir - ok
15:51:07.0723 4084  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:51:07.0723 4084  usbehci - ok
15:51:07.0786 4084  [ B7037444DC5138FC7D3D3968B4DE5C4B ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
15:51:07.0786 4084  usbfilter - ok
15:51:08.0207 4084  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:51:08.0207 4084  usbhub - ok
15:51:08.0863 4084  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
15:51:08.0863 4084  usbohci - ok
15:51:08.0910 4084  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
15:51:08.0925 4084  usbprint - ok
15:51:08.0941 4084  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:51:08.0957 4084  USBSTOR - ok
15:51:08.0988 4084  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:51:08.0988 4084  usbuhci - ok
15:51:09.0035 4084  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
15:51:09.0035 4084  usbvideo - ok
15:51:09.0097 4084  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:51:09.0097 4084  UxSms - ok
15:51:09.0128 4084  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:51:09.0128 4084  VaultSvc - ok
15:51:09.0159 4084  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:51:09.0175 4084  vdrvroot - ok
15:51:09.0284 4084  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:51:09.0300 4084  vds - ok
15:51:09.0331 4084  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:51:09.0331 4084  vga - ok
15:51:09.0378 4084  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:51:09.0378 4084  VgaSave - ok
15:51:09.0425 4084  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:51:09.0425 4084  vhdmp - ok
15:51:09.0440 4084  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:51:09.0456 4084  viaide - ok
15:51:09.0471 4084  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:51:09.0471 4084  volmgr - ok
15:51:09.0518 4084  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:51:09.0518 4084  volmgrx - ok
15:51:09.0581 4084  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:51:09.0581 4084  volsnap - ok
15:51:09.0643 4084  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:51:09.0643 4084  vsmraid - ok
15:51:09.0752 4084  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:51:09.0815 4084  VSS - ok
15:51:09.0861 4084  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:51:09.0861 4084  vwifibus - ok
15:51:09.0908 4084  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:51:09.0908 4084  vwififlt - ok
15:51:09.0971 4084  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys



15:51:09.0986 4084  vwifimp - ok
15:51:10.0033 4084  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:51:10.0049 4084  W32Time - ok
15:51:10.0080 4084  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:51:10.0080 4084  WacomPen - ok
15:51:10.0142 4084  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:51:10.0158 4084  WANARP - ok
15:51:10.0158 4084  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:51:10.0158 4084  Wanarpv6 - ok
15:51:10.0267 4084  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:51:10.0298 4084  WatAdminSvc - ok
15:51:10.0392 4084  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:51:10.0439 4084  wbengine - ok
15:51:10.0470 4084  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:51:10.0485 4084  WbioSrvc - ok
15:51:10.0532 4084  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:51:10.0548 4084  wcncsvc - ok
15:51:10.0579 4084  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:51:10.0595 4084  WcsPlugInService - ok
15:51:10.0626 4084  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
15:51:10.0626 4084  Wd - ok
15:51:10.0688 4084  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:51:10.0704 4084  Wdf01000 - ok
15:51:10.0766 4084  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:51:10.0766 4084  WdiServiceHost - ok
15:51:10.0782 4084  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:51:10.0782 4084  WdiSystemHost - ok
15:51:10.0797 4084  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:51:10.0813 4084  WebClient - ok
15:51:10.0844 4084  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:51:10.0844 4084  Wecsvc - ok
15:51:10.0875 4084  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:51:10.0891 4084  wercplsupport - ok
15:51:10.0907 4084  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:51:10.0907 4084  WerSvc - ok
15:51:10.0938 4084  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:51:10.0938 4084  WfpLwf - ok
15:51:10.0969 4084  [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
15:51:10.0969 4084  WimFltr - ok
15:51:11.0000 4084  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:51:11.0000 4084  WIMMount - ok
15:51:11.0031 4084  WinDefend - ok
15:51:11.0063 4084  WinHttpAutoProxySvc - ok
15:51:11.0125 4084  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:51:11.0125 4084  Winmgmt - ok
15:51:11.0203 4084  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
15:51:11.0265 4084  WinRM - ok
15:51:11.0375 4084  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:51:11.0375 4084  WinUsb - ok
15:51:11.0437 4084  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:51:11.0468 4084  Wlansvc - ok
15:51:11.0499 4084  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
15:51:11.0499 4084  WmiAcpi - ok
15:51:11.0546 4084  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:51:11.0546 4084  wmiApSrv - ok
15:51:11.0593 4084  WMPNetworkSvc - ok
15:51:11.0640 4084  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:51:11.0655 4084  WPCSvc - ok
15:51:11.0671 4084  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:51:11.0687 4084  WPDBusEnum - ok
15:51:11.0733 4084  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:51:11.0733 4084  ws2ifsl - ok
15:51:11.0780 4084  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
15:51:11.0780 4084  wscsvc - ok
15:51:11.0874 4084  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
15:51:11.0889 4084  WSDPrintDevice - ok
15:51:11.0921 4084  [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
15:51:11.0921 4084  WSDScan - ok
15:51:11.0936 4084  WSearch - ok
15:51:12.0061 4084  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:51:12.0108 4084  wuauserv - ok
15:51:12.0155 4084  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:51:12.0155 4084  WudfPf - ok
15:51:12.0217 4084  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:51:12.0217 4084  WUDFRd - ok
15:51:12.0264 4084  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:51:12.0279 4084  wudfsvc - ok
15:51:12.0311 4084  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:51:12.0342 4084  WwanSvc - ok
15:51:12.0404 4084  ================ Scan global ===============================
15:51:12.0435 4084  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:51:12.0467 4084  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:51:12.0498 4084  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:51:12.0560 4084  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:51:12.0654 4084  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:51:12.0654 4084  [Global] - ok
15:51:12.0654 4084  ================ Scan MBR ==================================
15:51:12.0685 4084  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:51:14.0292 4084  \Device\Harddisk0\DR0 - ok
15:51:14.0292 4084  ================ Scan VBR ==================================
15:51:14.0323 4084  [ D500CD9C6507CD14283037CD412095C7 ] \Device\Harddisk0\DR0\Partition1
15:51:14.0354 4084  \Device\Harddisk0\DR0\Partition1 - ok
15:51:14.0385 4084  [ DCB1DD1EB85028D19EADFABE2ABD97DB ] \Device\Harddisk0\DR0\Partition2
15:51:14.0401 4084  \Device\Harddisk0\DR0\Partition2 - ok
15:51:14.0401 4084  ================ Scan active images ========================
15:51:14.0401 4084  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
15:51:14.0401 4084  C:\Windows\System32\drivers\crashdmp.sys - ok
15:51:14.0417 4084  [ 9BBD8B5855BC6578957F82341F9CDE5A ] C:\Windows\System32\drivers\Diskdump.sys
15:51:14.0417 4084  C:\Windows\System32\drivers\Diskdump.sys - ok
15:51:14.0417 4084  [ BB4FE7889DB9CBBE61A308E99697F53C ] C:\Windows\System32\drivers\amd_sata.sys
15:51:14.0417 4084  C:\Windows\System32\drivers\amd_sata.sys - ok
15:51:14.0432 4084  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
15:51:14.0432 4084  C:\Windows\System32\drivers\dumpfve.sys - ok
15:51:14.0448 4084  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
15:51:14.0448 4084  C:\Windows\System32\drivers\cdrom.sys - ok
15:51:14.0448 4084  [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] C:\Windows\System32\drivers\aswSnx.sys
15:51:14.0448 4084  C:\Windows\System32\drivers\aswSnx.sys - ok
15:51:14.0463 4084  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
15:51:14.0463 4084  C:\Windows\System32\drivers\beep.sys - ok
15:51:14.0479 4084  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
15:51:14.0479 4084  C:\Windows\System32\drivers\null.sys - ok
15:51:14.0479 4084  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
15:51:14.0479 4084  C:\Windows\System32\drivers\RDPCDD.sys - ok
15:51:14.0495 4084  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
15:51:14.0495 4084  C:\Windows\System32\drivers\vga.sys - ok
15:51:14.0495 4084  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
15:51:14.0495 4084  C:\Windows\System32\drivers\videoprt.sys - ok
15:51:14.0510 4084  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
15:51:14.0510 4084  C:\Windows\System32\drivers\watchdog.sys - ok
15:51:14.0526 4084  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
15:51:14.0526 4084  C:\Windows\System32\drivers\msfs.sys - ok
15:51:14.0526 4084  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
15:51:14.0526 4084  C:\Windows\System32\drivers\npfs.sys - ok
15:51:14.0541 4084  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
15:51:14.0541 4084  C:\Windows\System32\drivers\RDPENCDD.sys - ok
15:51:14.0541 4084  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
15:51:14.0541 4084  C:\Windows\System32\drivers\RDPREFMP.sys - ok
15:51:14.0557 4084  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
15:51:14.0557 4084  C:\Windows\System32\drivers\tdi.sys - ok
15:51:14.0557 4084  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
15:51:14.0557 4084  C:\Windows\System32\drivers\tdx.sys - ok
15:51:14.0573 4084  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
15:51:14.0573 4084  C:\Windows\System32\drivers\afd.sys - ok
15:51:14.0573 4084  [ 6EDC79D73745FD44C41B55B2D13D0B70 ] C:\Windows\System32\drivers\aswTdi.sys
15:51:14.0573 4084  C:\Windows\System32\drivers\aswTdi.sys - ok
15:51:14.0588 4084  [ 57768C7DB4681F2510F247F82EF31D4F ] C:\Windows\System32\drivers\aswRdr2.sys
15:51:14.0588 4084  C:\Windows\System32\drivers\aswRdr2.sys - ok
15:51:14.0588 4084  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
15:51:14.0588 4084  C:\Windows\System32\drivers\netbt.sys - ok
15:51:14.0604 4084  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
15:51:14.0604 4084  C:\Windows\System32\drivers\ws2ifsl.sys - ok
15:51:14.0604 4084  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
15:51:14.0604 4084  C:\Windows\System32\drivers\netbios.sys - ok
15:51:14.0619 4084  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
15:51:14.0619 4084  C:\Windows\System32\drivers\pacer.sys - ok
15:51:14.0619 4084  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
15:51:14.0619 4084  C:\Windows\System32\drivers\vwififlt.sys - ok
15:51:14.0635 4084  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
15:51:14.0635 4084  C:\Windows\System32\drivers\wanarp.sys - ok
15:51:14.0635 4084  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
15:51:14.0635 4084  C:\Windows\System32\drivers\wfplwf.sys - ok
15:51:14.0651 4084  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
15:51:14.0651 4084  C:\Windows\System32\drivers\mssmbios.sys - ok
15:51:14.0651 4084  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
15:51:14.0651 4084  C:\Windows\System32\drivers\nsiproxy.sys - ok
15:51:14.0666 4084  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
15:51:14.0666 4084  C:\Windows\System32\drivers\rdbss.sys - ok
15:51:14.0682 4084  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
15:51:14.0682 4084  C:\Windows\System32\drivers\termdd.sys - ok
15:51:14.0682 4084  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
15:51:14.0682 4084  C:\Windows\System32\drivers\discache.sys - ok
15:51:14.0697 4084  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
15:51:14.0697 4084  C:\Windows\System32\drivers\blbdrive.sys - ok
15:51:14.0697 4084  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
15:51:14.0697 4084  C:\Windows\System32\drivers\dfsc.sys - ok
15:51:14.0713 4084  [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
15:51:14.0713 4084  C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys - ok
15:51:14.0729 4084  [ 538A32E2C99BF073D4CA76C30BEDAA60 ] C:\Windows\System32\drivers\aswSP.sys
15:51:14.0729 4084  C:\Windows\System32\drivers\aswSP.sys - ok
15:51:14.0729 4084  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
15:51:14.0729 4084  C:\Windows\System32\drivers\tunnel.sys - ok
15:51:14.0744 4084  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
15:51:14.0744 4084  C:\Windows\System32\smss.exe - ok
15:51:14.0744 4084  [ BD6E1FED09FC69482E61A486968E5DDF ] C:\Windows\System32\drivers\atikmpag.sys
15:51:14.0744 4084  C:\Windows\System32\drivers\atikmpag.sys - ok
15:51:14.0760 4084  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
15:51:14.0760 4084  C:\Windows\System32\ntdll.dll - ok
15:51:14.0760 4084  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
15:51:14.0760 4084  C:\Windows\System32\autochk.exe - ok
15:51:14.0775 4084  [ 73B928832DDEF61B21F64E88AAC65E92 ] C:\Windows\System32\drivers\atikmdag.sys
15:51:14.0775 4084  C:\Windows\System32\drivers\atikmdag.sys - ok
15:51:14.0791 4084  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
15:51:14.0791 4084  C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:51:14.0791 4084  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
15:51:14.0791 4084  C:\Windows\System32\drivers\dxgmms1.sys - ok
15:51:14.0807 4084  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
15:51:14.0807 4084  C:\Windows\System32\drivers\hdaudbus.sys - ok
15:51:14.0822 4084  [ 16D4E350420BAA7E63E16E3FC033E1F5 ] C:\Windows\System32\drivers\Rt64win7.sys
15:51:14.0822 4084  C:\Windows\System32\drivers\Rt64win7.sys - ok
15:51:14.0838 4084  [ F8633CDD09647A64EE8DB550630427FF ] C:\Windows\System32\drivers\athrx.sys
15:51:14.0838 4084  C:\Windows\System32\drivers\athrx.sys - ok
15:51:14.0838 4084  [ 3F66D9AC081B495F91529C80BFA73E97 ] C:\Windows\System32\drivers\AiCharger.sys
15:51:14.0838 4084  C:\Windows\System32\drivers\AiCharger.sys - ok
15:51:14.0853 4084  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
15:51:14.0853 4084  C:\Windows\System32\drivers\vwifibus.sys - ok
15:51:14.0853 4084  [ D8C25FF90E2E8FC7CBE26E2203EC4757 ] C:\Windows\System32\drivers\amdxhc.sys
15:51:14.0853 4084  C:\Windows\System32\drivers\amdxhc.sys - ok
15:51:14.0869 4084  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
15:51:14.0869 4084  C:\Windows\System32\drivers\usbd.sys - ok
15:51:14.0885 4084  [ B7037444DC5138FC7D3D3968B4DE5C4B ] C:\Windows\System32\drivers\usbfilter.sys
15:51:14.0885 4084  C:\Windows\System32\drivers\usbfilter.sys - ok
15:51:14.0885 4084  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
15:51:14.0885 4084  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
15:51:14.0900 4084  [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
15:51:14.0900 4084  C:\Windows\System32\drivers\usbohci.sys - ok
15:51:14.0900 4084  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
15:51:14.0900 4084  C:\Windows\System32\drivers\usbport.sys - ok
15:51:14.0916 4084  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
15:51:14.0916 4084  C:\Windows\System32\drivers\usbehci.sys - ok
15:51:14.0931 4084  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
15:51:14.0931 4084  C:\Windows\System32\drivers\i8042prt.sys - ok
15:51:14.0931 4084  [ 4C120D2B2EA269EAE7A5744794EB6DB1 ] C:\Windows\System32\drivers\ETD.sys
15:51:14.0931 4084  C:\Windows\System32\drivers\ETD.sys - ok
15:51:14.0947 4084  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
15:51:14.0947 4084  C:\Windows\System32\drivers\CmBatt.sys - ok
15:51:14.0947 4084  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
15:51:14.0947 4084  C:\Windows\System32\drivers\kbdclass.sys - ok
15:51:14.0963 4084  [ E63EF8C3271D014F14E2469CE75FECB4 ] C:\Windows\System32\drivers\kbfiltr.sys
15:51:14.0963 4084  C:\Windows\System32\drivers\kbfiltr.sys - ok
15:51:14.0963 4084  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
15:51:14.0963 4084  C:\Windows\System32\drivers\mouclass.sys - ok
15:51:14.0978 4084  [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
15:51:14.0978 4084  C:\Windows\System32\drivers\amdppm.sys - ok
15:51:14.0978 4084  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] C:\Windows\System32\drivers\sdbus.sys
15:51:14.0978 4084  C:\Windows\System32\drivers\sdbus.sys - ok
15:51:14.0994 4084  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
15:51:14.0994 4084  C:\Windows\System32\drivers\wmiacpi.sys - ok
15:51:14.0994 4084  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
15:51:14.0994 4084  C:\Windows\System32\drivers\agilevpn.sys - ok
15:51:15.0009 4084  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
15:51:15.0009 4084  C:\Windows\System32\drivers\CompositeBus.sys - ok
15:51:15.0009 4084  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
15:51:15.0009 4084  C:\Windows\System32\drivers\ndistapi.sys - ok
15:51:15.0009 4084  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
15:51:15.0009 4084  C:\Windows\System32\drivers\rasl2tp.sys - ok
15:51:15.0025 4084  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
15:51:15.0025 4084  C:\Windows\System32\drivers\ndiswan.sys - ok
15:51:15.0041 4084  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
15:51:15.0041 4084  C:\Windows\System32\drivers\raspppoe.sys - ok
15:51:15.0041 4084  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
15:51:15.0041 4084  C:\Windows\System32\drivers\raspptp.sys - ok
15:51:15.0056 4084  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
15:51:15.0056 4084  C:\Windows\System32\drivers\rassstp.sys - ok
15:51:15.0056 4084  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
15:51:15.0056 4084  C:\Windows\System32\drivers\ks.sys - ok
15:51:15.0072 4084  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
15:51:15.0072 4084  C:\Windows\System32\drivers\swenum.sys - ok
15:51:15.0072 4084  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] C:\Windows\System32\drivers\amdiox64.sys
15:51:15.0072 4084  C:\Windows\System32\drivers\amdiox64.sys - ok
15:51:15.0087 4084  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
15:51:15.0087 4084  C:\Windows\System32\drivers\umbus.sys - ok
15:51:15.0087 4084  [ F1A84D67A03F7536EBDA9DB426EF0E00 ] C:\Windows\System32\drivers\amdhub30.sys
15:51:15.0087 4084  C:\Windows\System32\drivers\amdhub30.sys - ok
15:51:15.0103 4084  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
15:51:15.0103 4084  C:\Windows\System32\drivers\usbhub.sys - ok
15:51:15.0103 4084  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
15:51:15.0103 4084  C:\Windows\System32\drivers\ndproxy.sys - ok
15:51:15.0119 4084  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
15:51:15.0119 4084  C:\Windows\System32\drivers\drmk.sys - ok
15:51:15.0119 4084  [ DBB487D09F56C674430AC454FD8BCAB9 ] C:\Windows\System32\drivers\AtihdW76.sys
15:51:15.0119 4084  C:\Windows\System32\drivers\AtihdW76.sys - ok
15:51:15.0134 4084  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
15:51:15.0134 4084  C:\Windows\System32\drivers\portcls.sys - ok
15:51:15.0134 4084  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
15:51:15.0134 4084  C:\Windows\System32\drivers\ksthunk.sys - ok
15:51:15.0150 4084  [ DDFADF2FA49C078A9C8270F29D6958B1 ] C:\Windows\System32\drivers\RTKVHD64.sys
15:51:15.0150 4084  C:\Windows\System32\drivers\RTKVHD64.sys - ok
15:51:15.0150 4084  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
15:51:15.0150 4084  C:\Windows\System32\user32.dll - ok
15:51:15.0165 4084  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
15:51:15.0165 4084  C:\Windows\System32\difxapi.dll - ok
15:51:15.0165 4084  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
15:51:15.0165 4084  C:\Windows\System32\comdlg32.dll - ok
15:51:15.0181 4084  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
15:51:15.0181 4084  C:\Windows\System32\oleaut32.dll - ok
15:51:15.0181 4084  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
15:51:15.0181 4084  C:\Windows\System32\ole32.dll - ok
15:51:15.0197 4084  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
15:51:15.0197 4084  C:\Windows\System32\drivers\usbccgp.sys - ok
15:51:15.0197 4084  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
15:51:15.0197 4084  C:\Windows\System32\drivers\usbvideo.sys - ok
15:51:15.0212 4084  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
15:51:15.0212 4084  C:\Windows\System32\imm32.dll - ok
15:51:15.0212 4084  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
15:51:15.0212 4084  C:\Windows\System32\sechost.dll - ok
15:51:15.0228 4084  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
15:51:15.0228 4084  C:\Windows\System32\imagehlp.dll - ok
15:51:15.0228 4084  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
15:51:15.0228 4084  C:\Windows\System32\nsi.dll - ok
15:51:15.0243 4084  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
15:51:15.0243 4084  C:\Windows\System32\rpcrt4.dll - ok
15:51:15.0243 4084  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
15:51:15.0243 4084  C:\Windows\System32\iertutil.dll - ok
15:51:15.0259 4084  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
15:51:15.0259 4084  C:\Windows\System32\urlmon.dll - ok
15:51:15.0259 4084  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
15:51:15.0259 4084  C:\Windows\System32\msctf.dll - ok
15:51:15.0275 4084  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
15:51:15.0275 4084  C:\Windows\System32\Wldap32.dll - ok
15:51:15.0275 4084  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
15:51:15.0275 4084  C:\Windows\System32\ws2_32.dll - ok
15:51:15.0290 4084  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
15:51:15.0290 4084  C:\Windows\System32\advapi32.dll - ok
15:51:15.0290 4084  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
15:51:15.0290 4084  C:\Windows\System32\normaliz.dll - ok
15:51:15.0306 4084  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
15:51:15.0306 4084  C:\Windows\System32\psapi.dll - ok
15:51:15.0306 4084  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
15:51:15.0306 4084  C:\Windows\System32\shell32.dll - ok
15:51:15.0321 4084  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
15:51:15.0321 4084  C:\Windows\System32\setupapi.dll - ok
15:51:15.0321 4084  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
15:51:15.0321 4084  C:\Windows\System32\wininet.dll - ok
15:51:15.0337 4084  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
15:51:15.0337 4084  C:\Windows\System32\usp10.dll - ok
15:51:15.0337 4084  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
15:51:15.0337 4084  C:\Windows\System32\lpk.dll - ok
15:51:15.0353 4084  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
15:51:15.0353 4084  C:\Windows\System32\shlwapi.dll - ok
15:51:15.0353 4084  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
15:51:15.0353 4084  C:\Windows\System32\gdi32.dll - ok
15:51:15.0368 4084  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
15:51:15.0368 4084  C:\Windows\System32\clbcatq.dll - ok
15:51:15.0368 4084  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
15:51:15.0368 4084  C:\Windows\System32\kernel32.dll - ok
15:51:15.0384 4084  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
15:51:15.0384 4084  C:\Windows\System32\msvcrt.dll - ok
15:51:15.0384 4084  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
15:51:15.0384 4084  C:\Windows\System32\devobj.dll - ok
15:51:15.0399 4084  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
15:51:15.0399 4084  C:\Windows\System32\wintrust.dll - ok
15:51:15.0399 4084  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
15:51:15.0399 4084  C:\Windows\System32\cfgmgr32.dll - ok
15:51:15.0399 4084  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
15:51:15.0399 4084  C:\Windows\System32\crypt32.dll - ok
15:51:15.0415 4084  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
15:51:15.0415 4084  C:\Windows\System32\comctl32.dll - ok
15:51:15.0415 4084  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
15:51:15.0415 4084  C:\Windows\System32\KernelBase.dll - ok
15:51:15.0431 4084  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
15:51:15.0431 4084  C:\Windows\System32\msasn1.dll - ok
15:51:15.0431 4084  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
15:51:15.0431 4084  C:\Windows\SysWOW64\normaliz.dll - ok
15:51:15.0446 4084  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
15:51:15.0446 4084  C:\Windows\System32\drivers\dxapi.sys - ok
15:51:15.0446 4084  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
15:51:15.0446 4084  C:\Windows\System32\win32k.sys - ok
15:51:15.0462 4084  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
15:51:15.0462 4084  C:\Windows\System32\basesrv.dll - ok
15:51:15.0462 4084  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
15:51:15.0462 4084  C:\Windows\System32\csrsrv.dll - ok
15:51:15.0477 4084  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
15:51:15.0477 4084  C:\Windows\System32\csrss.exe - ok
15:51:15.0477 4084  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
15:51:15.0477 4084  C:\Windows\System32\winsrv.dll - ok
15:51:15.0493 4084  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
15:51:15.0493 4084  C:\Windows\System32\drivers\monitor.sys - ok
15:51:15.0493 4084  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
15:51:15.0493 4084  C:\Windows\System32\sxssrv.dll - ok
15:51:15.0509 4084  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
15:51:15.0509 4084  C:\Windows\System32\tsddd.dll - ok
15:51:15.0509 4084  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
15:51:15.0509 4084  C:\Windows\System32\wininit.exe - ok
15:51:15.0524 4084  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
15:51:15.0524 4084  C:\Windows\System32\profapi.dll - ok
15:51:15.0524 4084  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
15:51:15.0524 4084  C:\Windows\System32\cdd.dll - ok
15:51:15.0540 4084  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
15:51:15.0540 4084  C:\Windows\System32\RpcRtRemote.dll - ok
15:51:15.0540 4084  [ 1A83FACA2135AF076E8EA73A30B3B26C ] C:\Windows\System32\KBDUK.DLL
15:51:15.0540 4084  C:\Windows\System32\KBDUK.DLL - ok
15:51:15.0555 4084  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
15:51:15.0555 4084  C:\Windows\System32\WlS0WndH.dll - ok
15:51:15.0555 4084  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
15:51:15.0555 4084  C:\Windows\System32\sxs.dll - ok
15:51:15.0571 4084  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
15:51:15.0571 4084  C:\Windows\System32\cryptbase.dll - ok
15:51:15.0571 4084  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
15:51:15.0571 4084  C:\Windows\System32\apphelp.dll - ok
15:51:15.0587 4084  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
15:51:15.0587 4084  C:\Windows\System32\lsass.exe - ok
15:51:15.0587 4084  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
15:51:15.0587 4084  C:\Windows\System32\services.exe - ok
15:51:15.0602 4084  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
15:51:15.0602 4084  C:\Windows\System32\lsm.exe - ok
15:51:15.0602 4084  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
15:51:15.0602 4084  C:\Windows\System32\sspisrv.dll - ok
15:51:15.0618 4084  [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
15:51:15.0618 4084  C:\Windows\System32\lsasrv.dll - ok
15:51:15.0618 4084  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
15:51:15.0618 4084  C:\Windows\System32\scesrv.dll - ok
15:51:15.0618 4084  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
15:51:15.0618 4084  C:\Windows\System32\scext.dll - ok
15:51:15.0633 4084  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
15:51:15.0633 4084  C:\Windows\System32\secur32.dll - ok
15:51:15.0633 4084  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
15:51:15.0633 4084  C:\Windows\System32\sspicli.dll - ok
15:51:15.0649 4084  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
15:51:15.0649 4084  C:\Windows\System32\sysntfy.dll - ok
15:51:15.0649 4084  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
15:51:15.0649 4084  C:\Windows\System32\wmsgapi.dll - ok
15:51:15.0665 4084  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
15:51:15.0665 4084  C:\Windows\System32\samsrv.dll - ok
15:51:15.0665 4084  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
15:51:15.0665 4084  C:\Windows\System32\srvcli.dll - ok
15:51:15.0680 4084  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
15:51:15.0680 4084  C:\Windows\System32\cryptdll.dll - ok
15:51:15.0680 4084  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
15:51:15.0680 4084  C:\Windows\System32\wevtapi.dll - ok
15:51:15.0696 4084  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
15:51:15.0696 4084  C:\Windows\System32\authz.dll - ok
15:51:15.0696 4084  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
15:51:15.0696 4084  C:\Windows\System32\cngaudit.dll - ok
15:51:15.0711 4084  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
15:51:15.0711 4084  C:\Windows\System32\ncrypt.dll - ok
15:51:15.0711 4084  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
15:51:15.0711 4084  C:\Windows\System32\bcrypt.dll - ok
15:51:15.0727 4084  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
15:51:15.0727 4084  C:\Windows\System32\msprivs.dll - ok
15:51:15.0727 4084  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
15:51:15.0727 4084  C:\Windows\System32\netjoin.dll - ok
15:51:15.0727 4084  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
15:51:15.0727 4084  C:\Windows\System32\kerberos.dll - ok
15:51:15.0743 4084  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
15:51:15.0743 4084  C:\Windows\System32\negoexts.dll - ok
15:51:15.0758 4084  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
15:51:15.0758 4084  C:\Windows\System32\cryptsp.dll - ok
15:51:15.0758 4084  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
15:51:15.0758 4084  C:\Windows\System32\mswsock.dll - ok
15:51:15.0774 4084  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
15:51:15.0774 4084  C:\Windows\System32\msv1_0.dll - ok
15:51:15.0774 4084  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
15:51:15.0774 4084  C:\Windows\System32\wship6.dll - ok
15:51:15.0789 4084  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
15:51:15.0789 4084  C:\Windows\System32\netlogon.dll - ok
15:51:15.0789 4084  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
15:51:15.0789 4084  C:\Windows\System32\dnsapi.dll - ok
15:51:15.0805 4084  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
15:51:15.0805 4084  C:\Windows\System32\logoncli.dll - ok
15:51:15.0821 4084  [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
15:51:15.0821 4084  C:\Windows\System32\schannel.dll - ok
15:51:15.0821 4084  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
15:51:15.0821 4084  C:\Windows\System32\wdigest.dll - ok
15:51:15.0821 4084  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
15:51:15.0821 4084  C:\Windows\System32\rsaenh.dll - ok
15:51:15.0836 4084  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
15:51:15.0836 4084  C:\Windows\System32\TSpkg.dll - ok
15:51:15.0836 4084  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
15:51:15.0836 4084  C:\Windows\System32\bcryptprimitives.dll - ok
15:51:15.0852 4084  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
15:51:15.0852 4084  C:\Windows\System32\pku2u.dll - ok
15:51:15.0852 4084  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
15:51:15.0852 4084  C:\Windows\System32\efslsaext.dll - ok
15:51:15.0867 4084  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
15:51:15.0867 4084  C:\Windows\System32\credssp.dll - ok
15:51:15.0867 4084  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
15:51:15.0867 4084  C:\Windows\System32\scecli.dll - ok
15:51:15.0883 4084  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
15:51:15.0883 4084  C:\Windows\System32\ubpm.dll - ok
15:51:15.0883 4084  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
15:51:15.0883 4084  C:\Windows\System32\winsta.dll - ok
15:51:15.0899 4084  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
15:51:15.0899 4084  C:\Windows\System32\svchost.exe - ok
15:51:15.0899 4084  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
15:51:15.0899 4084  C:\Windows\System32\umpnpmgr.dll - ok
15:51:15.0899 4084  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
15:51:15.0899 4084  C:\Windows\System32\winlogon.exe - ok
15:51:15.0914 4084  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
15:51:15.0914 4084  C:\Windows\System32\devrtl.dll - ok
15:51:15.0914 4084  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
15:51:15.0914 4084  C:\Windows\System32\SPInf.dll - ok
15:51:15.0930 4084  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
15:51:15.0930 4084  C:\Windows\System32\gpapi.dll - ok
15:51:15.0930 4084  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
15:51:15.0930 4084  C:\Windows\System32\userenv.dll - ok
15:51:15.0945 4084  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
15:51:15.0945 4084  C:\Windows\System32\umpo.dll - ok
15:51:15.0945 4084  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
15:51:15.0945 4084  C:\Windows\System32\pcwum.dll - ok
15:51:15.0961 4084  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
15:51:15.0961 4084  C:\Windows\System32\powrprof.dll - ok
15:51:15.0961 4084  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
15:51:15.0961 4084  C:\Windows\System32\drivers\luafv.sys - ok
15:51:15.0977 4084  [ B50CDD87772D6A11CB90924AAD399DF8 ] C:\Windows\System32\drivers\aswMonFlt.sys
15:51:15.0977 4084  C:\Windows\System32\drivers\aswMonFlt.sys - ok
15:51:15.0977 4084  [ 4FCAEF0C5BE7629AEB878998E0FE959B ] C:\Windows\System32\drivers\aswFsBlk.sys
15:51:15.0977 4084  C:\Windows\System32\drivers\aswFsBlk.sys - ok
15:51:15.0992 4084  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
15:51:15.0992 4084  C:\Windows\System32\rpcss.dll - ok
15:51:15.0992 4084  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
15:51:15.0992 4084  C:\Windows\System32\RpcEpMap.dll - ok
15:51:16.0008 4084  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
15:51:16.0008 4084  C:\Windows\System32\WSHTCPIP.DLL - ok
15:51:16.0008 4084  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
15:51:16.0008 4084  C:\Windows\System32\wshqos.dll - ok
15:51:16.0023 4084  [ D0A5CC6B7932E7804ABCE66DEB331E63 ] C:\Windows\System32\atiesrxx.exe
15:51:16.0023 4084  C:\Windows\System32\atiesrxx.exe - ok
15:51:16.0023 4084  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
15:51:16.0023 4084  C:\Windows\System32\FirewallAPI.dll - ok
15:51:16.0039 4084  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
15:51:16.0039 4084  C:\Windows\System32\wtsapi32.dll - ok
15:51:16.0039 4084  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
15:51:16.0039 4084  C:\Windows\System32\LogonUI.exe - ok
15:51:16.0055 4084  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
15:51:16.0055 4084  C:\Windows\System32\version.dll - ok
15:51:16.0055 4084  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
15:51:16.0055 4084  C:\Windows\System32\authui.dll - ok
15:51:16.0070 4084  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
15:51:16.0070 4084  C:\Windows\System32\cryptui.dll - ok
15:51:16.0086
4084  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ]
C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
15:51:16.0086
4084 
C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
- ok
15:51:16.0086 4084  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
15:51:16.0086 4084  C:\Windows\System32\wevtsvc.dll - ok
15:51:16.0086 4084  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
15:51:16.0086 4084  C:\Windows\System32\samlib.dll - ok
15:51:16.0101 4084  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
15:51:16.0101 4084  C:\Windows\System32\shacct.dll - ok
15:51:16.0101 4084  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
15:51:16.0101 4084  C:\Windows\System32\propsys.dll - ok
15:51:16.0117 4084  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
15:51:16.0117 4084  C:\Windows\System32\audiosrv.dll - ok
15:51:16.0117 4084  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
15:51:16.0117 4084  C:\Windows\System32\adtschema.dll - ok
15:51:16.0133 4084  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
15:51:16.0133 4084  C:\Windows\System32\uxtheme.dll - ok
15:51:16.0133 4084  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
15:51:16.0133 4084  C:\Windows\System32\avrt.dll - ok
15:51:16.0148 4084  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
15:51:16.0148 4084  C:\Windows\System32\mmcss.dll - ok
15:51:16.0148 4084  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
15:51:16.0148 4084  C:\Windows\System32\MMDevAPI.dll - ok
15:51:16.0164
4084  [ 179E8401224D557ECFF3695F2016EA5B ]
C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
15:51:16.0164
4084 
C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
- ok
15:51:16.0164 4084  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
15:51:16.0164 4084  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
15:51:16.0179 4084  [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
15:51:16.0179 4084  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
15:51:16.0179 4084  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
15:51:16.0179 4084  C:\Windows\System32\audiodg.exe - ok
15:51:16.0195 4084  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
15:51:16.0195 4084  C:\Windows\System32\FntCache.dll - ok
15:51:16.0195 4084  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
15:51:16.0195 4084  C:\Windows\System32\wlansvc.dll - ok
15:51:16.0211 4084  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
15:51:16.0211 4084  C:\Windows\System32\ntmarta.dll - ok
15:51:16.0211 4084  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
15:51:16.0211 4084  C:\Windows\System32\drivers\fltMgr.sys - ok
15:51:16.0226 4084  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
15:51:16.0226 4084  C:\Windows\System32\PSHED.DLL - ok
15:51:16.0226 4084  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
15:51:16.0226 4084  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
15:51:16.0242 4084  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
15:51:16.0242 4084  C:\Windows\System32\gpsvc.dll - ok
15:51:16.0242 4084  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
15:51:16.0242 4084  C:\Windows\System32\profsvc.dll - ok
15:51:16.0257 4084  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
15:51:16.0257 4084  C:\Windows\System32\atl.dll - ok
15:51:16.0257 4084  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
15:51:16.0257 4084  C:\Windows\System32\dui70.dll - ok
15:51:16.0273 4084  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
15:51:16.0273 4084  C:\Windows\System32\themeservice.dll - ok
15:51:16.0273 4084  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
15:51:16.0273 4084  C:\Windows\System32\es.dll - ok
15:51:16.0273 4084  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
15:51:16.0273 4084  C:\Windows\System32\Sens.dll - ok
15:51:16.0289 4084  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
15:51:16.0289 4084  C:\Windows\System32\winmm.dll - ok
15:51:16.0289 4084  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
15:51:16.0289 4084  C:\Windows\System32\comres.dll - ok
15:51:16.0304 4084  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
15:51:16.0304 4084  C:\Windows\System32\nlaapi.dll - ok
15:51:16.0304 4084  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
15:51:16.0304 4084  C:\Windows\System32\dsrole.dll - ok
15:51:16.0320 4084  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
15:51:16.0320 4084  C:\Windows\System32\ksuser.dll - ok
15:51:16.0320 4084  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
15:51:16.0320 4084  C:\Windows\System32\slc.dll - ok
15:51:16.0335 4084  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
15:51:16.0335 4084  C:\Windows\System32\wdmaud.drv - ok
15:51:16.0335 4084  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
15:51:16.0335 4084  C:\Windows\System32\drivers\lltdio.sys - ok
15:51:16.0351 4084  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
15:51:16.0351 4084  C:\Windows\System32\duser.dll - ok
15:51:16.0351 4084  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
15:51:16.0351 4084  C:\Windows\System32\uxsms.dll - ok
15:51:16.0367 4084  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
15:51:16.0367 4084  C:\Windows\System32\drivers\nwifi.sys - ok
15:51:16.0367 4084  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
15:51:16.0367 4084  C:\Windows\System32\drivers\ndisuio.sys - ok
15:51:16.0382 4084  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
15:51:16.0382 4084  C:\Windows\System32\drivers\rspndr.sys - ok
15:51:16.0382 4084  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
15:51:16.0382 4084  C:\Windows\System32\SndVolSSO.dll - ok
15:51:16.0398 4084  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
15:51:16.0398 4084  C:\Windows\System32\hid.dll - ok
15:51:16.0398 4084  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
15:51:16.0398 4084  C:\Windows\System32\IPHLPAPI.DLL - ok
15:51:16.0398 4084  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
15:51:16.0398 4084  C:\Windows\System32\lmhsvc.dll - ok
15:51:16.0413 4084  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
15:51:16.0413 4084  C:\Windows\System32\nsisvc.dll - ok
15:51:16.0429 4084  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
15:51:16.0429 4084  C:\Windows\System32\winnsi.dll - ok
15:51:16.0429 4084  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
15:51:16.0429 4084  C:\Windows\System32\dhcpcore.dll - ok
15:51:16.0445 4084  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
15:51:16.0445 4084  C:\Windows\System32\nrpsrv.dll - ok
15:51:16.0445 4084  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
15:51:16.0445 4084  C:\Windows\System32\dwmapi.dll - ok
15:51:16.0460 4084  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
15:51:16.0460 4084  C:\Windows\System32\xmllite.dll - ok
15:51:16.0460 4084  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
15:51:16.0460 4084  C:\Windows\System32\AudioSes.dll - ok
15:51:16.0460 4084  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
15:51:16.0460 4084  C:\Windows\System32\dnsrslvr.dll - ok
15:51:16.0476 4084  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
15:51:16.0476 4084  C:\Windows\System32\eapphost.dll - ok
15:51:16.0476 4084  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
15:51:16.0476 4084  C:\Windows\System32\eapsvc.dll - ok
15:51:16.0491 4084  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
15:51:16.0491 4084  C:\Windows\System32\keyiso.dll - ok
15:51:16.0507 4084  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
15:51:16.0507 4084  C:\Windows\System32\dhcpcore6.dll - ok
15:51:16.0507 4084  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
15:51:16.0507 4084  C:\Windows\System32\FWPUCLNT.DLL - ok
15:51:16.0523 4084  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
15:51:16.0523 4084  C:\Windows\System32\msacm32.dll - ok
15:51:16.0523 4084  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
15:51:16.0523 4084  C:\Windows\System32\msacm32.drv - ok
15:51:16.0538 4084  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
15:51:16.0538 4084  C:\Windows\System32\midimap.dll - ok
15:51:16.0538 4084  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
15:51:16.0538 4084  C:\Windows\System32\umb.dll - ok
15:51:16.0554 4084  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
15:51:16.0554 4084  C:\Windows\System32\wlanmsm.dll - ok
15:51:16.0554 4084  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
15:51:16.0554 4084  C:\Windows\System32\dnsext.dll - ok
15:51:16.0554 4084  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
15:51:16.0554 4084  C:\Windows\System32\wlansec.dll - ok
15:51:16.0569 4084  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
15:51:16.0569 4084  C:\Windows\System32\AudioEng.dll - ok
15:51:16.0569 4084  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
15:51:16.0569 4084  C:\Windows\System32\dhcpcsvc.dll - ok
15:51:16.0585 4084  [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
15:51:16.0585 4084  C:\Windows\System32\WindowsCodecs.dll - ok
15:51:16.0585 4084  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
15:51:16.0585 4084  C:\Windows\System32\onex.dll - ok
15:51:16.0601 4084  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
15:51:16.0601 4084  C:\Windows\System32\dhcpcsvc6.dll - ok
15:51:16.0601 4084  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
15:51:16.0601 4084  C:\Windows\System32\AUDIOKSE.dll - ok
15:51:16.0616 4084  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
15:51:16.0616 4084  C:\Windows\System32\eappcfg.dll - ok
15:51:16.0616 4084  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
15:51:16.0616 4084  C:\Windows\System32\eappprxy.dll - ok
15:51:16.0632 4084  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
15:51:16.0632 4084  C:\Windows\System32\l2gpstore.dll - ok
15:51:16.0632 4084  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
15:51:16.0632 4084  C:\Windows\System32\WinSCard.dll - ok
15:51:16.0647 4084  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
15:51:16.0647 4084  C:\Windows\System32\wlanutil.dll - ok
15:51:16.0647 4084  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
15:51:16.0647 4084  C:\Windows\System32\wlgpclnt.dll - ok
15:51:16.0663 4084  [ 39F4E266C6CC2198579CACA5696362FD ] C:\Windows\System32\RtkAPO64.dll
15:51:16.0663 4084  C:\Windows\System32\RtkAPO64.dll - ok
15:51:16.0663 4084  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
15:51:16.0663 4084  C:\Windows\System32\msxml6.dll - ok
15:51:16.0679 4084  [ 69FD46FAC0D9C4A8ECD522AC6A7481F5 ] C:\Windows\System32\FBAgent.exe
15:51:16.0679 4084  C:\Windows\System32\FBAgent.exe - ok
15:51:16.0679 4084  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
15:51:16.0679 4084  C:\Windows\System32\msi.dll - ok
15:51:16.0679 4084  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
15:51:16.0679 4084  C:\Windows\System32\winbrand.dll - ok
15:51:16.0694
4084  [ 91B74F36B9308435F557DCB856A5597D ] C:\Program Files
(x86)\ASUS\FaceLogon\system\FaceCredentialProvider64.dll
15:51:16.0694 4084  C:\Program Files (x86)\ASUS\FaceLogon\system\FaceCredentialProvider64.dll - ok
15:51:16.0694 4084  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
15:51:16.0694 4084  C:\Windows\System32\netapi32.dll - ok
15:51:16.0710 4084  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
15:51:16.0710 4084  C:\Windows\System32\netutils.dll - ok
15:51:16.0710 4084  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
15:51:16.0710 4084  C:\Windows\System32\samcli.dll - ok
15:51:16.0725 4084  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
15:51:16.0725 4084  C:\Windows\System32\VaultCredProvider.dll - ok
15:51:16.0725 4084  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
15:51:16.0725 4084  C:\Windows\System32\wkscli.dll - ok
15:51:16.0741 4084  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:51:16.0741 4084  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:51:16.0741 4084  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
15:51:16.0741 4084  C:\Windows\System32\BioCredProv.dll - ok
15:51:16.0757 4084  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
15:51:16.0757 4084  C:\Windows\System32\winbio.dll - ok
15:51:16.0757 4084  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
15:51:16.0757 4084  C:\Windows\System32\credui.dll - ok
15:51:16.0772 4084  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
15:51:16.0772 4084  C:\Windows\System32\vaultcli.dll - ok
15:51:16.0772 4084  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
15:51:16.0772 4084  C:\Windows\System32\certCredProvider.dll - ok
15:51:16.0788 4084  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
15:51:16.0788 4084  C:\Windows\System32\rasplap.dll - ok
15:51:16.0803 4084  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
15:51:16.0803 4084  C:\Windows\System32\rasapi32.dll - ok
15:51:16.0803 4084  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
15:51:16.0803 4084  C:\Windows\System32\rasman.dll - ok
15:51:16.0803 4084  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
15:51:16.0803 4084  C:\Windows\System32\rtutils.dll - ok
15:51:16.0819 4084  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
15:51:16.0819 4084  C:\Windows\System32\netcfgx.dll - ok
15:51:16.0819 4084  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
15:51:16.0819 4084  C:\Windows\System32\UXInit.dll - ok
15:51:16.0835 4084  [ D7B4B8504A22D548D826BE6E1BE47D04 ] C:\Windows\System32\atieclxx.exe
15:51:16.0835 4084  C:\Windows\System32\atieclxx.exe - ok
15:51:16.0835 4084  [ CB472E577C648C7B4E2CEF3843941020 ] C:\Windows\System32\atiadlxx.dll
15:51:16.0835 4084  C:\Windows\System32\atiadlxx.dll - ok
15:51:16.0850 4084  [ 9C4CF2E875035DBA252A736E424BF37D ] C:\Windows\System32\SFAPO64.dll
15:51:16.0850 4084  C:\Windows\System32\SFAPO64.dll - ok
15:51:16.0850 4084  [ ED27D943336C2956DCE43A7B777FAEFE ] C:\Windows\System32\SFCOM64.dll
15:51:16.0850 4084  C:\Windows\System32\SFCOM64.dll - ok
15:51:16.0866 4084  [ D95A37963E504EBE32693F3C2946C4C9 ] C:\Windows\System32\SFNHK64.dll
15:51:16.0866 4084  C:\Windows\System32\SFNHK64.dll - ok
15:51:16.0866 4084  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
15:51:16.0866 4084  C:\Windows\System32\WMALFXGFXDSP.dll - ok
15:51:16.0881 4084  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
15:51:16.0881 4084  C:\Windows\System32\mfplat.dll - ok
15:51:16.0881 4084  [ B05CBF6748CB2E897A042450359ED23F ] C:\Windows\System32\atimuixx.dll
15:51:16.0881 4084  C:\Windows\System32\atimuixx.dll - ok
15:51:16.0897 4084  [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
15:51:16.0897 4084  C:\Windows\System32\pdh.dll - ok
15:51:16.0897 4084  [ 18E5C2F937F9DEB8C282DF66A3761925 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
15:51:16.0897 4084  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe - ok
15:51:16.0913 4084  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
15:51:16.0913 4084  C:\Windows\SysWOW64\ntdll.dll - ok
15:51:16.0913 4084  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
15:51:16.0913 4084  C:\Windows\System32\wow64.dll - ok
15:51:16.0928 4084  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
15:51:16.0928 4084  C:\Windows\System32\wow64win.dll - ok
15:51:16.0928 4084  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
15:51:16.0928 4084  C:\Windows\System32\wow64cpu.dll - ok
15:51:16.0928 4084  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
15:51:16.0928 4084  C:\Windows\SysWOW64\kernel32.dll - ok
15:51:16.0944 4084  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
15:51:16.0944 4084  C:\Windows\SysWOW64\KernelBase.dll - ok
15:51:16.0944 4084  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
15:51:16.0944 4084  C:\Windows\SysWOW64\msvcrt.dll - ok
15:51:16.0959 4084  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
15:51:16.0959 4084  C:\Windows\SysWOW64\wtsapi32.dll - ok
15:51:16.0959 4084  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
15:51:16.0959 4084  C:\Windows\SysWOW64\userenv.dll - ok
15:51:16.0975 4084  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
15:51:16.0975 4084  C:\Windows\SysWOW64\rpcrt4.dll - ok
15:51:16.0975 4084  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
15:51:16.0975 4084  C:\Windows\SysWOW64\cryptbase.dll - ok
15:51:16.0991 4084  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
15:51:16.0991 4084  C:\Windows\SysWOW64\sechost.dll - ok
15:51:16.0991 4084  [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
15:51:16.0991 4084  C:\Windows\SysWOW64\sspicli.dll - ok
15:51:17.0006 4084  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
15:51:17.0006 4084  C:\Windows\SysWOW64\profapi.dll - ok
15:51:17.0006 4084  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
15:51:17.0006 4084  C:\Windows\SysWOW64\user32.dll - ok
15:51:17.0022 4084  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
15:51:17.0022 4084  C:\Windows\SysWOW64\gdi32.dll - ok
15:51:17.0022 4084  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
15:51:17.0022 4084  C:\Windows\SysWOW64\lpk.dll - ok
15:51:17.0022 4084  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
15:51:17.0022 4084  C:\Windows\SysWOW64\usp10.dll - ok
15:51:17.0037 4084  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
15:51:17.0037 4084  C:\Windows\SysWOW64\advapi32.dll - ok
15:51:17.0037 4084  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
15:51:17.0037 4084  C:\Windows\SysWOW64\imm32.dll - ok
15:51:17.0053 4084  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
15:51:17.0053 4084  C:\Windows\SysWOW64\msctf.dll - ok
15:51:17.0053 4084  [ 4C016FD76ED5C05E84CA8CAB77993961 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
15:51:17.0053 4084  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys - ok
15:51:17.0069 4084  [ 7910158929571214A959D5A6D16DD9C0 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
15:51:17.0069 4084  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe - ok
15:51:17.0069 4084  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
15:51:17.0069 4084  C:\Windows\SysWOW64\winsta.dll - ok
15:51:17.0084 4084  [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
15:51:17.0084 4084  C:\Windows\System32\perfos.dll - ok
15:51:17.0084 4084  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
15:51:17.0084 4084  C:\Windows\System32\oleacc.dll - ok
15:51:17.0100 4084  [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:51:17.0100 4084  C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
15:51:17.0100 4084  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
15:51:17.0100 4084  C:\Windows\SysWOW64\ws2_32.dll - ok
15:51:17.0115 4084  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
15:51:17.0115 4084  C:\Windows\SysWOW64\nsi.dll - ok
15:51:17.0115 4084  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
15:51:17.0115 4084  C:\Windows\System32\UIAutomationCore.dll - ok
15:51:17.0131 4084  [ 3C598C5D25D77A0537060EC0AF206D03 ] C:\Program Files (x86)\ASUS\FaceLogon\smartlogon.exe
15:51:17.0131 4084  C:\Program Files (x86)\ASUS\FaceLogon\smartlogon.exe - ok
15:51:17.0131 4084  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
15:51:17.0131 4084  C:\Windows\SysWOW64\msimg32.dll - ok
15:51:17.0147 4084  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
15:51:17.0147 4084  C:\Windows\SysWOW64\comdlg32.dll - ok
15:51:17.0147 4084  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
15:51:17.0147 4084  C:\Windows\SysWOW64\shlwapi.dll - ok
15:51:17.0162
4084  [ 352B3DC62A0D259A82A052238425C872 ]
C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
15:51:17.0162
4084 
C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
- ok
15:51:17.0162 4084  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
15:51:17.0162 4084  C:\Windows\SysWOW64\shell32.dll - ok
15:51:17.0178 4084  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
15:51:17.0178 4084  C:\Windows\SysWOW64\winspool.drv - ok
15:51:17.0178 4084  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
15:51:17.0178 4084  C:\Windows\SysWOW64\ole32.dll - ok
15:51:17.0178 4084  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
15:51:17.0178 4084  C:\Windows\SysWOW64\oleaut32.dll - ok
15:51:17.0193
4084  [ 7717F84F483002815490033BF069DABD ]
C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
15:51:17.0193
4084 
C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
- ok
15:51:17.0193 4084  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
15:51:17.0193 4084  C:\Windows\SysWOW64\netapi32.dll - ok
15:51:17.0209 4084  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
15:51:17.0209 4084  C:\Windows\SysWOW64\netutils.dll - ok
15:51:17.0209 4084  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
15:51:17.0209 4084  C:\Windows\SysWOW64\crypt32.dll - ok
15:51:17.0225 4084  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
15:51:17.0225 4084  C:\Windows\SysWOW64\samcli.dll - ok
15:51:17.0225 4084  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
15:51:17.0225 4084  C:\Windows\SysWOW64\srvcli.dll - ok
15:51:17.0240 4084  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
15:51:17.0240 4084  C:\Windows\SysWOW64\wkscli.dll - ok
15:51:17.0240 4084  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
15:51:17.0240 4084  C:\Windows\SysWOW64\msasn1.dll - ok
15:51:17.0256 4084  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
15:51:17.0256 4084  C:\Windows\SysWOW64\uxtheme.dll - ok
15:51:17.0256 4084  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
15:51:17.0256 4084  C:\Windows\SysWOW64\clbcatq.dll - ok
15:51:17.0271 4084  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
15:51:17.0271 4084  C:\Windows\System32\imageres.dll - ok
15:51:17.0271 4084  [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
15:51:17.0271 4084  C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
15:51:17.0287 4084  [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
15:51:17.0287 4084  C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
15:51:17.0287 4084  [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
15:51:17.0287 4084  C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
15:51:17.0303
4084  [ CDBE9690CF2B8409FACAD94FAC9479C9 ]
C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
15:51:17.0303
4084 
C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
- ok
15:51:17.0303 4084  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ]
C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
15:51:17.0303
4084 
C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
- ok
15:51:17.0318 4084  [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
15:51:17.0318 4084  C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
15:51:17.0334 4084  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
15:51:17.0334 4084  C:\Windows\SysWOW64\wsock32.dll - ok
15:51:17.0334 4084  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
15:51:17.0334 4084  C:\Windows\SysWOW64\version.dll - ok
15:51:17.0334 4084  [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
15:51:17.0334 4084  C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
15:51:17.0349 4084  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
15:51:17.0349 4084  C:\Windows\SysWOW64\psapi.dll - ok
15:51:17.0365 4084  [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
15:51:17.0365 4084  C:\Windows\SysWOW64\wininet.dll - ok
15:51:17.0365 4084  [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
15:51:17.0365 4084  C:\Windows\SysWOW64\iertutil.dll - ok
15:51:17.0381 4084  [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
15:51:17.0381 4084  C:\Windows\SysWOW64\urlmon.dll - ok
15:51:17.0381 4084  [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
15:51:17.0381 4084  C:\Windows\SysWOW64\quartz.dll - ok
15:51:17.0381 4084  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
15:51:17.0381 4084  C:\Windows\SysWOW64\winmm.dll - ok
15:51:17.0396 4084  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
15:51:17.0396 4084  C:\Windows\SysWOW64\dwmapi.dll - ok
15:51:17.0396 4084  [ CC5BF60E9D3F181C0B62AC91AD8634B8 ] C:\Windows\SysWOW64\qcap.dll
15:51:17.0396 4084  C:\Windows\SysWOW64\qcap.dll - ok
15:51:17.0412 4084  [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
15:51:17.0412 4084  C:\Windows\SysWOW64\msvfw32.dll - ok
15:51:17.0412 4084  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
15:51:17.0412 4084  C:\Windows\SysWOW64\dbghelp.dll - ok
15:51:17.0427 4084  [ B316906B4A04DD39985350D29DE31068 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
15:51:17.0427 4084  C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
15:51:17.0427 4084  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
15:51:17.0427 4084  C:\Windows\SysWOW64\cscapi.dll - ok
15:51:17.0443 4084  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
15:51:17.0443 4084  C:\Windows\System32\shsvcs.dll - ok
15:51:17.0459 4084  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
15:51:17.0459 4084  C:\Windows\System32\fveapi.dll - ok
15:51:17.0459 4084  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
15:51:17.0459 4084  C:\Windows\System32\fvecerts.dll - ok
15:51:17.0474 4084  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
15:51:17.0474 4084  C:\Windows\System32\tbs.dll - ok
15:51:17.0474 4084  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
15:51:17.0474 4084  C:\Windows\System32\wiarpc.dll - ok
15:51:17.0490 4084  [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
15:51:17.0490 4084  C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
15:51:17.0505 4084  [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
15:51:17.0505 4084  C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
15:51:17.0505 4084  [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
15:51:17.0505 4084  C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
15:51:17.0521 4084  [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
15:51:17.0521 4084  C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
15:51:17.0537 4084  [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
15:51:17.0537 4084  C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
15:51:17.0537 4084  [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
15:51:17.0537 4084  C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
15:51:17.0552 4084  [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
15:51:17.0552 4084  C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
15:51:17.0599 4084  [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
15:51:17.0599 4084  C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
15:51:17.0599 4084  [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
15:51:17.0599 4084  C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
15:51:17.0615 4084  [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
15:51:17.0615 4084  C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
15:51:17.0615 4084  [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
15:51:17.0615 4084  C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
15:51:17.0630 4084  [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
15:51:17.0630 4084  C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
15:51:17.0630 4084  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:51:17.0630 4084  C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:51:17.0646 4084  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
15:51:17.0646 4084  C:\Windows\System32\schedsvc.dll - ok
15:51:17.0693 4084  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
15:51:17.0693 4084  C:\Windows\System32\ktmw32.dll - ok
15:51:17.0693 4084  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
15:51:17.0693 4084  C:\Windows\System32\taskcomp.dll - ok
15:51:17.0708 4084  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
15:51:17.0708 4084  C:\Windows\System32\drivers\http.sys - ok
15:51:17.0708 4084  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
15:51:17.0708 4084  C:\Windows\System32\spoolsv.exe - ok
15:51:17.0724 4084  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
15:51:17.0724 4084  C:\Windows\System32\taskeng.exe - ok
15:51:17.0724 4084  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
15:51:17.0724 4084  C:\Windows\System32\BFE.DLL - ok
15:51:17.0771 4084  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
15:51:17.0771 4084  C:\Windows\System32\TSChannel.dll - ok
15:51:17.0771 4084  [ 50D28F3F8B7C17056520C80A29EFE17C ] C:\Windows\System32\lpksetup.exe
15:51:17.0771 4084  C:\Windows\System32\lpksetup.exe - ok
15:51:17.0786 4084  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
15:51:17.0786 4084  C:\Windows\System32\drivers\bowser.sys - ok
15:51:17.0786 4084  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
15:51:17.0786 4084  C:\Windows\System32\drivers\mpsdrv.sys - ok
15:51:17.0802 4084  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
15:51:17.0802 4084  C:\Windows\System32\MPSSVC.dll - ok
15:51:17.0802 4084  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
15:51:17.0802 4084  C:\Windows\System32\drivers\mrxsmb.sys - ok
15:51:17.0817 4084  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
15:51:17.0817 4084  C:\Windows\System32\drivers\mrxsmb10.sys - ok
15:51:17.0817 4084  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
15:51:17.0817 4084  C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:51:17.0833 4084  [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
15:51:17.0833 4084  C:\Windows\System32\dpx.dll - ok
15:51:17.0833 4084  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
15:51:17.0833 4084  C:\Windows\System32\wkssvc.dll - ok
15:51:17.0849 4084  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
15:51:17.0849 4084  C:\Windows\System32\wfapigp.dll - ok
15:51:17.0849 4084  [ ABDD5AD016AFFD34AD40E944CE94BF59 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
15:51:17.0849 4084  C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe - ok
15:51:17.0864 4084  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
15:51:17.0864 4084  C:\Windows\System32\mscms.dll - ok
15:51:17.0864 4084  [ 78E3A1BE942B6CA69C01BAD7263D888C ] C:\Windows\SysWOW64\EEBUtil.dll
15:51:17.0864 4084  C:\Windows\SysWOW64\EEBUtil.dll - ok
15:51:17.0895 4084  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
15:51:17.0895 4084  C:\Windows\System32\pcasvc.dll - ok
15:51:17.0895 4084  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
15:51:17.0895 4084  C:\Windows\System32\snmptrap.exe - ok
15:51:17.0911 4084  [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
15:51:17.0911 4084  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
15:51:17.0911 4084  [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
15:51:17.0911 4084  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
15:51:17.0927 4084  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
15:51:17.0927 4084  C:\Windows\System32\provsvc.dll - ok
15:51:17.0927 4084  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
15:51:17.0927 4084  C:\Windows\System32\sstpsvc.dll - ok
15:51:17.0942 4084  [ F1C09EE3A594B19DD1F4B4AEA9E353C9 ] C:\Windows\System32\comsvcs.dll
15:51:17.0942 4084  C:\Windows\System32\comsvcs.dll - ok
15:51:17.0942 4084  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
15:51:17.0942 4084  C:\Windows\System32\dllhost.exe - ok
15:51:17.0958 4084  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
15:51:17.0958 4084  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
15:51:17.0958
4084  [ 14DFDEAF4E589ED3F1FF187A86B9408C ]
C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
15:51:17.0958
4084 
C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
- ok
15:51:17.0973 4084  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
15:51:17.0973 4084  C:\Windows\System32\IDStore.dll - ok
15:51:17.0973 4084  [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
15:51:17.0973 4084  C:\Windows\SysWOW64\wscisvif.dll - ok
15:51:17.0989 4084  [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
15:51:17.0989 4084  C:\Windows\SysWOW64\wscapi.dll - ok
15:51:17.0989 4084  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
15:51:17.0989 4084  C:\Windows\System32\taskhost.exe - ok
15:51:18.0005 4084  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
15:51:18.0005 4084  C:\Windows\System32\mpr.dll - ok
15:51:18.0005 4084  [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
15:51:18.0005 4084  C:\Windows\System32\drprov.dll - ok
15:51:18.0020 4084  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
15:51:18.0020 4084  C:\Windows\System32\PlaySndSrv.dll - ok
15:51:18.0020 4084  [ 0AE09E0CDBD30DFDDFC9558C3A8A2BE5 ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswEngin.dll
15:51:18.0020 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswEngin.dll - ok
15:51:18.0036 4084  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
15:51:18.0036 4084  C:\Windows\System32\MsCtfMonitor.dll - ok
15:51:18.0036 4084  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
15:51:18.0036 4084  C:\Windows\System32\msutb.dll - ok
15:51:18.0051 4084  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
15:51:18.0051 4084  C:\Windows\System32\HotStartUserAgent.dll - ok
15:51:18.0051 4084  [ 0FEDC24834D26DDB558D12C15F182FDD ] C:\Program Files\ASUS\P4G\BatteryLife.exe
15:51:18.0051 4084  C:\Program Files\ASUS\P4G\BatteryLife.exe - ok
15:51:18.0067 4084  [ 63A0FE3B1B094DAE328F46FCADABDBE4 ] C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
15:51:18.0067 4084  C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe - ok
15:51:18.0067 4084  [ 79B24731D061F2C41DD1A1A5BCF8CFC7 ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswCmnOS.dll
15:51:18.0067 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswCmnOS.dll - ok
15:51:18.0083 4084  [ B15D20BE4CB586E142FB466411C8F5CF ] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
15:51:18.0083 4084  C:\Program Files (x86)\ASUS\Splendid\ACMON.exe - ok
15:51:18.0083 4084  [ 7E5F5E64C91FEDFE72E4C1728094BA69 ] C:\Program Files\ASUS\P4G\DevMng.dll
15:51:18.0083 4084  C:\Program Files\ASUS\P4G\DevMng.dll - ok
15:51:18.0098
4084  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ]
C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
15:51:18.0098
4084 
C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
- ok
15:51:18.0098 4084  [ 2F29F102A54890FDAD1DD431C2C9834E ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswCmnIS.dll
15:51:18.0098 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswCmnIS.dll - ok
15:51:18.0114 4084  [ AB1A8E88DA7430F41BAFC7261BA11CDD ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswCmnBS.dll
15:51:18.0114 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswCmnBS.dll - ok
15:51:18.0114 4084  [ 50E6288786474CC1275108D33FCC9488 ] C:\Program Files\ASUS\P4G\OvrClk.dll
15:51:18.0114 4084  C:\Program Files\ASUS\P4G\OvrClk.dll - ok
15:51:18.0129 4084  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
15:51:18.0129 4084  C:\Windows\System32\winspool.drv - ok
15:51:18.0129 4084  [ 021687F88479774944461EEA478D26B9 ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswScan.dll
15:51:18.0129 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswScan.dll - ok
15:51:18.0145 4084  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
15:51:18.0145 4084  C:\Windows\System32\wbemcomn.dll - ok
15:51:18.0145 4084  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
15:51:18.0145 4084  C:\Windows\System32\wbem\wbemprox.dll - ok
15:51:18.0161 4084  [ 6A931739848F9F1D4C9AC42FA7B563F3 ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswRep.dll
15:51:18.0161 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswRep.dll - ok
15:51:18.0161 4084  [ A80B85236BB96998375D6DC853054D52 ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswFiDb.dll
15:51:18.0161 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswFiDb.dll - ok
15:51:18.0176 4084  [ 9E7B77CF97BDDC8E03063D150011EC97 ] C:\Program Files\AVAST Software\Avast\defs\13022800\algo.dll
15:51:18.0176 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\algo.dll - ok
15:51:18.0176 4084  [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
15:51:18.0176 4084  C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
15:51:18.0192 4084  [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
15:51:18.0192 4084  C:\Windows\SysWOW64\secur32.dll - ok
15:51:18.0192 4084  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
15:51:18.0192 4084  C:\Windows\SysWOW64\fltLib.dll - ok
15:51:18.0207 4084  [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
15:51:18.0207 4084  C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
15:51:18.0207 4084  [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
15:51:18.0207 4084  C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
15:51:18.0223 4084  [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
15:51:18.0223 4084  C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
15:51:18.0223 4084  [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
15:51:18.0223 4084  C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
15:51:18.0239 4084  [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
15:51:18.0239 4084  C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
15:51:18.0239 4084  [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
15:51:18.0239 4084  C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
15:51:18.0254 4084  [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
15:51:18.0254 4084  C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
15:51:18.0254 4084  [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
15:51:18.0254 4084  C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
15:51:18.0270 4084  [ 106B2C1DE615E08AFF9CE2A02E04F7CC ] C:\Program Files\AVAST Software\Avast\defs\13022800\ArPot.dll
15:51:18.0270 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\ArPot.dll - ok
15:51:18.0270 4084  [ 85C57CD47F292E248E56A41E7E7A19C6 ] C:\Program Files (x86)\ASUS\Splendid\OVS.dll
15:51:18.0270 4084  C:\Program Files (x86)\ASUS\Splendid\OVS.dll - ok
15:51:18.0285 4084  [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
15:51:18.0285 4084  C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
15:51:18.0285 4084  [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13022800\exts.dll
15:51:18.0285 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\exts.dll - ok
15:51:18.0301 4084  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
15:51:18.0301 4084  C:\Windows\SysWOW64\cryptsp.dll - ok
15:51:18.0301 4084  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
15:51:18.0301 4084  C:\Windows\SysWOW64\mswsock.dll - ok
15:51:18.0317 4084  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
15:51:18.0317 4084  C:\Windows\SysWOW64\rsaenh.dll - ok
15:51:18.0317 4084  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
15:51:18.0317 4084  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
15:51:18.0332 4084  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
15:51:18.0332 4084  C:\Windows\SysWOW64\NapiNSP.dll - ok
15:51:18.0332 4084  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
15:51:18.0332 4084  C:\Windows\SysWOW64\nlaapi.dll - ok
15:51:18.0348 4084  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
15:51:18.0348 4084  C:\Windows\SysWOW64\pnrpnsp.dll - ok
15:51:18.0348 4084  [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
15:51:18.0348 4084  C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
15:51:18.0363 4084  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
15:51:18.0363 4084  C:\Windows\SysWOW64\dnsapi.dll - ok
15:51:18.0363 4084  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
15:51:18.0363 4084  C:\Windows\SysWOW64\winrnr.dll - ok
15:51:18.0363 4084  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
15:51:18.0363 4084  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
15:51:18.0379 4084  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:51:18.0379 4084  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:51:18.0379 4084  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
15:51:18.0379 4084  C:\Windows\SysWOW64\winnsi.dll - ok
15:51:18.0395 4084  [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
15:51:18.0395 4084  C:\Windows\SysWOW64\wshbth.dll - ok
15:51:18.0395 4084  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
15:51:18.0395 4084  C:\Windows\SysWOW64\rasadhlp.dll - ok
15:51:18.0410 4084  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
15:51:18.0410 4084  C:\Windows\SysWOW64\wship6.dll - ok
15:51:18.0410 4084  [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
15:51:18.0410 4084  C:\Windows\System32\ntlanman.dll - ok
15:51:18.0426 4084  [ B2BB26A05D0F186765E64877F5D8A2B1 ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswAR.dll
15:51:18.0426 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswAR.dll - ok
15:51:18.0426 4084  [ 83D722F311011FB0E521737F724DEB90 ] C:\Program Files\AVAST Software\Avast\defs\13022800\aswRawFS.dll
15:51:18.0426 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\aswRawFS.dll - ok
15:51:18.0441 4084  [ 8885B2E442CC307B466AA7028345DE0C ] C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
15:51:18.0441 4084  C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe - ok
15:51:18.0457 4084  [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
15:51:18.0457 4084  C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
15:51:18.0457
4084  [ CA6ADE4F7761BB15B3325356DC3B82BB ]
C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
15:51:18.0457
4084 
C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
- ok
15:51:18.0473 4084  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
15:51:18.0473 4084  C:\Windows\SysWOW64\setupapi.dll - ok
15:51:18.0473 4084  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
15:51:18.0473 4084  C:\Windows\SysWOW64\devobj.dll - ok
15:51:18.0488 4084  [ BD59EB5148E62D227DB2509F06634D50 ] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
15:51:18.0488 4084  C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll - ok
15:51:18.0488
4084  [ C9564CF4976E7E96B4052737AA2492B4 ]
C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
15:51:18.0488
4084 
C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
- ok
15:51:18.0504 4084  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
15:51:18.0504 4084  C:\Program Files\Bonjour\mdnsNSP.dll - ok
15:51:18.0519 4084  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
15:51:18.0519 4084  C:\Windows\System32\rasadhlp.dll - ok
15:51:18.0519 4084  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:51:18.0519 4084  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:51:18.0535 4084  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
15:51:18.0535 4084  C:\Windows\System32\localspl.dll - ok
15:51:18.0535 4084  [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
15:51:18.0535 4084  C:\Windows\System32\davclnt.dll - ok
15:51:18.0551 4084  [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
15:51:18.0551 4084  C:\Windows\SysWOW64\security.dll - ok
15:51:18.0566 4084  [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
15:51:18.0566 4084  C:\Windows\System32\davhlpr.dll - ok
15:51:18.0566 4084  [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
15:51:18.0566 4084  C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
15:51:18.0582 4084  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
15:51:18.0582 4084  C:\Windows\System32\spoolss.dll - ok
15:51:18.0597 4084  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
15:51:18.0597 4084  C:\Windows\System32\PrintIsolationProxy.dll - ok
15:51:18.0597 4084  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
15:51:18.0597 4084  C:\Windows\SysWOW64\ntmarta.dll - ok
15:51:18.0613 4084  [ 46B8E04B3C35CB93F89EF27746D7A908 ] C:\Windows\System32\EP0SLM01.DLL
15:51:18.0613 4084  C:\Windows\System32\EP0SLM01.DLL - ok
15:51:18.0613 4084  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
15:51:18.0613 4084  C:\Windows\SysWOW64\Wldap32.dll - ok
15:51:18.0629 4084  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
15:51:18.0629 4084  C:\Windows\SysWOW64\taskschd.dll - ok
15:51:18.0629 4084  [ 98AB7A3AC4155640146F6BEC422C81E4 ] C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll
15:51:18.0629 4084  C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll - ok
15:51:18.0644 4084  [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMGYE.DLL
15:51:18.0644 4084  C:\Windows\System32\E_ILMGYE.DLL - ok
15:51:18.0644 4084  [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:51:18.0644 4084  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
15:51:18.0660 4084  [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMGXE.DLL
15:51:18.0660 4084  C:\Windows\System32\E_ILMGXE.DLL - ok
15:51:18.0660 4084  [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMGCE.DLL
15:51:18.0660 4084  C:\Windows\System32\E_ILMGCE.DLL - ok
15:51:18.0660 4084  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
15:51:18.0660 4084  C:\Windows\SysWOW64\wintrust.dll - ok
15:51:18.0675 4084  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
15:51:18.0675 4084  C:\Windows\System32\cscapi.dll - ok
15:51:18.0675 4084  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
15:51:18.0675 4084  C:\Windows\System32\nlasvc.dll - ok
15:51:18.0691 4084  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
15:51:18.0691 4084  C:\Windows\System32\NapiNSP.dll - ok
15:51:18.0691 4084  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
15:51:18.0691 4084  C:\Windows\System32\pnrpnsp.dll - ok
15:51:18.0707 4084  [ D1690C013B8F6B5A7955B589D7644B3E ] C:\Windows\System32\enppmon.dll
15:51:18.0707 4084  C:\Windows\System32\enppmon.dll - ok
15:51:18.0707 4084  [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
15:51:18.0707 4084  C:\Windows\System32\msvcp60.dll - ok
15:51:18.0722 4084  [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
15:51:18.0722 4084  C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
15:51:18.0722 4084  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
15:51:18.0722 4084  C:\Windows\SysWOW64\apphelp.dll - ok
15:51:18.0738 4084  [ 81D38F895C26BD9EE13C230AA67F2F94 ] C:\Windows\System32\enpres.dll
15:51:18.0738 4084  C:\Windows\System32\enpres.dll - ok
15:51:18.0738 4084  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
15:51:18.0738 4084  C:\Windows\System32\FXSMON.dll - ok
15:51:18.0753 4084  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
15:51:18.0753 4084  C:\Windows\System32\tcpmon.dll - ok
15:51:18.0753 4084  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
15:51:18.0753 4084  C:\Windows\System32\snmpapi.dll - ok
15:51:18.0769 4084  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
15:51:18.0769 4084  C:\Windows\System32\wsnmp32.dll - ok
15:51:18.0769 4084  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
15:51:18.0769 4084  C:\Windows\System32\usbmon.dll - ok
15:51:18.0785 4084  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
15:51:18.0785 4084  C:\Windows\System32\WSDMon.dll - ok
15:51:18.0785 4084  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
15:51:18.0785 4084  C:\Windows\System32\WSDApi.dll - ok
15:51:18.0785 4084  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
15:51:18.0785 4084  C:\Windows\System32\webservices.dll - ok
15:51:18.0800 4084  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
15:51:18.0800 4084  C:\Windows\System32\fundisc.dll - ok
15:51:18.0800 4084  [ 13BDA47E87D623EDB753847C9D63A565 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
15:51:18.0800 4084  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
15:51:18.0816 4084  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
15:51:18.0816 4084  C:\Windows\System32\fdPnp.dll - ok
15:51:18.0816 4084  [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
15:51:18.0816 4084  C:\Windows\System32\wsdchngr.dll - ok
15:51:18.0831 4084  [ 9392C25DEEDA9A79FDBF6559D47EAB1F ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
15:51:18.0831 4084  C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
15:51:18.0831 4084  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:51:18.0831 4084  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:51:18.0847 4084  [ 37D44BFEA9B50D75764660ADC35C83AC ] C:\Windows\System32\msvcp100.dll
15:51:18.0847 4084  C:\Windows\System32\msvcp100.dll - ok
15:51:18.0847 4084  [ B88DA7FD10BDBB3754D98AFD39677C29 ] C:\Windows\System32\msvcr100.dll
15:51:18.0847 4084  C:\Windows\System32\msvcr100.dll - ok
15:51:18.0863 4084  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
15:51:18.0863 4084  C:\Windows\System32\win32spl.dll - ok
15:51:18.0863 4084  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
15:51:18.0863 4084  C:\Windows\System32\inetpp.dll - ok
15:51:18.0878
4084  [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files
(x86)\Common Files\Apple\Mobile Device
Support\AppleMobileDeviceService.exe
15:51:18.0878 4084  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
15:51:18.0878 4084  [ F05FC2C0FECF55B05351AA760166F18F ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
15:51:18.0878 4084  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe - ok
15:51:18.0894
4084  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ]
C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
15:51:18.0894
4084 
C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
- ok
15:51:18.0894 4084  [ 8C22C6088057A00EAE7D963600F26EEB ]
C:\Program Files (x86)\Common Files\Apple\Apple Application
Support\AppleVersions.dll
15:51:18.0894 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
15:51:18.0909
4084  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
15:51:18.0909 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
15:51:18.0909
4084  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
15:51:18.0909 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
15:51:18.0925
4084  [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
15:51:18.0925 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
15:51:18.0925 4084  [ 710346F1C319257A754A7C0ACC99A480 ] C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
15:51:18.0925 4084  C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe - ok
15:51:18.0941
4084  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\objc.dll
15:51:18.0941 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
15:51:18.0941
4084  [ F54CC3F30C149B4CE5468C61022328DD ] C:\Program Files\ATI
Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
15:51:18.0941 4084  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
15:51:18.0956
4084  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
15:51:18.0956 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
15:51:18.0956
4084  [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\libicuin.dll
15:51:18.0956 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
15:51:18.0972 4084  [ BAF0429DCEAEAA558F4A42617160A9CB ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
15:51:18.0972 4084  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
15:51:18.0987
4084  [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
15:51:18.0987 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
15:51:18.0987
4084  [ A8704A10FFDE468F4AB18EBF82A9A86F ]
C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
15:51:18.0987
4084 
C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
- ok
15:51:19.0003 4084  [ 43A0A24CD12B110DC93462D6B035C961 ]
C:\Program Files (x86)\Common Files\Apple\Apple Application
Support\icudt46.dll
15:51:19.0003 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
15:51:19.0003 4084  [ F8EDC3F2964CC3A109A01A8250105569 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
15:51:19.0003 4084  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
15:51:19.0019 4084  [ 3B1F3F833AD987980B89863F17C7D251 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
15:51:19.0019 4084  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
15:51:19.0019 4084  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
15:51:19.0019 4084  C:\Windows\System32\wlanapi.dll - ok
15:51:19.0034
4084  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\ASL.dll
15:51:19.0034 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
15:51:19.0034
4084  [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files
(x86)\Common Files\Apple\Mobile Device
Support\AppleMobileDeviceService_main.dll
15:51:19.0034 4084  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
15:51:19.0050 4084  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
15:51:19.0050 4084  C:\Windows\SysWOW64\dnssd.dll - ok
15:51:19.0050 4084  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
15:51:19.0050 4084  C:\Program Files\Bonjour\mDNSResponder.exe - ok
15:51:19.0065
4084  [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files
(x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
15:51:19.0065 4084  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
15:51:19.0065 4084  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
15:51:19.0065 4084  C:\Windows\System32\dps.dll - ok
15:51:19.0081 4084  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
15:51:19.0081 4084  C:\Windows\System32\cryptsvc.dll - ok
15:51:19.0081
4084  [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\zlib1.dll
15:51:19.0081 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
15:51:19.0097 4084  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
15:51:19.0097 4084  C:\Windows\System32\taskschd.dll - ok
15:51:19.0097 4084  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
15:51:19.0097 4084  C:\Windows\System32\cryptnet.dll - ok
15:51:19.0097
4084  [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
15:51:19.0097 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
15:51:19.0112 4084  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
15:51:19.0112 4084  C:\Windows\System32\FDResPub.dll - ok
15:51:19.0112 4084  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
15:51:19.0112 4084  C:\Windows\System32\netman.dll - ok
15:51:19.0128 4084  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
15:51:19.0128 4084  C:\Windows\System32\vssapi.dll - ok
15:51:19.0128 4084  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
15:51:19.0128 4084  C:\Windows\System32\IKEEXT.DLL - ok
15:51:19.0143 4084  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
15:51:19.0143 4084  C:\Windows\System32\winhttp.dll - ok
15:51:19.0143 4084  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
15:51:19.0143 4084  C:\Windows\System32\webio.dll - ok
15:51:19.0159 4084  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
15:51:19.0159 4084  C:\Windows\System32\httpapi.dll - ok
15:51:19.0159 4084  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
15:51:19.0159 4084  C:\Windows\System32\vsstrace.dll - ok
15:51:19.0175 4084  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
15:51:19.0175 4084  C:\Windows\System32\aepic.dll - ok
15:51:19.0175 4084  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
15:51:19.0175 4084  C:\Windows\System32\drivers\PEAuth.sys - ok
15:51:19.0190 4084  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
15:51:19.0190 4084  C:\Windows\System32\sfc.dll - ok
15:51:19.0190 4084  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
15:51:19.0190 4084  C:\Windows\System32\sfc_os.dll - ok
15:51:19.0190
4084  [ FBFCA1A574D47EE575448B719CBBF2E4 ]
C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
15:51:19.0190
4084 
C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
- ok
15:51:19.0206 4084  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
15:51:19.0206 4084  C:\Windows\System32\drivers\secdrv.sys - ok
15:51:19.0206 4084  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
15:51:19.0206 4084  C:\Windows\System32\ncsi.dll - ok
15:51:19.0221 4084  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
15:51:19.0221 4084  C:\Windows\System32\winrnr.dll - ok
15:51:19.0221 4084  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
15:51:19.0221 4084  C:\Windows\System32\ssdpapi.dll - ok
15:51:19.0237 4084  [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
15:51:19.0237 4084  C:\Windows\System32\seclogon.dll - ok
15:51:19.0237 4084  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
15:51:19.0237 4084  C:\Windows\System32\vpnikeapi.dll - ok
15:51:19.0253
4084  [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
15:51:19.0253 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
15:51:19.0253
4084  [ C3C8D359D1FCB72941F75F8A302BFBDE ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\libxml2.dll
15:51:19.0253 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
15:51:19.0268 4084  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
15:51:19.0268 4084  C:\Windows\System32\aeevts.dll - ok
15:51:19.0268 4084  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
15:51:19.0268 4084  C:\Windows\SysWOW64\powrprof.dll - ok
15:51:19.0284 4084  [ 23E3C83DFF7B09A97B01A85ED8A44478 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
15:51:19.0284 4084  C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
15:51:19.0284 4084  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
15:51:19.0284 4084  C:\Windows\SysWOW64\winhttp.dll - ok
15:51:19.0299 4084  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
15:51:19.0299 4084  C:\Windows\SysWOW64\webio.dll - ok
15:51:19.0299 4084  [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
15:51:19.0299 4084  C:\Windows\System32\wshbth.dll - ok
15:51:19.0315 4084  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
15:51:19.0315 4084  C:\Windows\System32\userinit.exe - ok
15:51:19.0315 4084  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
15:51:19.0315 4084  C:\Windows\System32\dwm.exe - ok
15:51:19.0331 4084  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
15:51:19.0331 4084  C:\Windows\System32\dwmredir.dll - ok
15:51:19.0331 4084  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
15:51:19.0331 4084  C:\Windows\System32\dwmcore.dll - ok
15:51:19.0331 4084  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
15:51:19.0331 4084  C:\Windows\System32\d3d10_1.dll - ok
15:51:19.0346 4084  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
15:51:19.0346 4084  C:\Windows\System32\d3d10_1core.dll - ok
15:51:19.0346 4084  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
15:51:19.0346 4084  C:\Windows\System32\dxgi.dll - ok
15:51:19.0362 4084  [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
15:51:19.0362 4084  C:\Windows\System32\d3d11.dll - ok
15:51:19.0362 4084  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
15:51:19.0362 4084  C:\Windows\explorer.exe - ok
15:51:19.0377 4084  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
15:51:19.0377 4084  C:\Windows\System32\ExplorerFrame.dll - ok
15:51:19.0377 4084  [ DA7BFC85DF87F759E8FE7C49576C40E6 ] C:\Windows\System32\aticfx64.dll
15:51:19.0377 4084  C:\Windows\System32\aticfx64.dll - ok
15:51:19.0393 4084  [ 7C69A16B6981B407F5B50C4F33CD221F ] C:\Windows\System32\atiuxp64.dll
15:51:19.0393 4084  C:\Windows\System32\atiuxp64.dll - ok
15:51:19.0409 4084  [ 0F575481EAD4CDD41AA82ED38BC8F6B3 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
15:51:19.0409 4084  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
15:51:19.0409 4084  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
15:51:19.0409 4084  C:\Windows\System32\drivers\srvnet.sys - ok
15:51:19.0409 4084  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
15:51:19.0409 4084  C:\Windows\System32\sysmain.dll - ok
15:51:19.0424 4084  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
15:51:19.0424 4084  C:\Windows\System32\tapisrv.dll - ok
15:51:19.0424 4084  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
15:51:19.0424 4084  C:\Windows\System32\wiaservc.dll - ok
15:51:19.0440 4084  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
15:51:19.0440 4084  C:\Windows\System32\drivers\tcpipreg.sys - ok
15:51:19.0440 4084  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
15:51:19.0440 4084  C:\Windows\System32\wiatrace.dll - ok
15:51:19.0455 4084  [ 867C93CE4B4CCFCDE65CE48A769CD227 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
15:51:19.0455 4084  C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
15:51:19.0455 4084  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
15:51:19.0455 4084  C:\Windows\System32\trkwks.dll - ok
15:51:19.0471 4084  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
15:51:19.0471 4084  C:\Windows\System32\drivers\srv2.sys - ok
15:51:19.0471 4084  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
15:51:19.0471 4084  C:\Windows\System32\wbem\WMIsvc.dll - ok
15:51:19.0487 4084  [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
15:51:19.0487 4084  C:\Program Files\Windows Defender\MpSvc.dll - ok
15:51:19.0487 4084  [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
15:51:19.0487 4084  C:\Windows\System32\rasmans.dll - ok
15:51:19.0502 4084  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
15:51:19.0502 4084  C:\Windows\System32\iphlpsvc.dll - ok
15:51:19.0502 4084  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
15:51:19.0502 4084  C:\Windows\System32\drivers\srv.sys - ok
15:51:19.0518 4084  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
15:51:19.0518 4084  C:\Windows\System32\sqmapi.dll - ok
15:51:19.0518 4084  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
15:51:19.0518 4084  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
15:51:19.0533 4084  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
15:51:19.0533 4084  C:\Windows\System32\wbem\fastprox.dll - ok
15:51:19.0533 4084  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
15:51:19.0533 4084  C:\Windows\System32\wdscore.dll - ok
15:51:19.0549 4084  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
15:51:19.0549 4084  C:\Windows\SysWOW64\mscoree.dll - ok
15:51:19.0549 4084  [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
15:51:19.0549 4084  C:\Program Files\Windows Defender\MpClient.dll - ok
15:51:19.0549 4084  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
15:51:19.0565 4084  C:\Windows\System32\ntdsapi.dll - ok
15:51:19.0565 4084  [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
15:51:19.0565 4084  C:\Windows\System32\rastapi.dll - ok
15:51:19.0565 4084  [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
15:51:19.0565 4084  C:\Windows\System32\tapi32.dll - ok
15:51:19.0580 4084  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
15:51:19.0580 4084  C:\Windows\System32\srvsvc.dll - ok
15:51:19.0580 4084  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
15:51:19.0580 4084  C:\Windows\System32\wbem\WinMgmtR.dll - ok
15:51:19.0596 4084  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
15:51:19.0596 4084  C:\Windows\System32\browser.dll - ok
15:51:19.0611 4084  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
15:51:19.0611 4084  C:\Windows\System32\hnetcfg.dll - ok
15:51:19.0611 4084  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
15:51:19.0611 4084  C:\Windows\System32\netmsg.dll - ok
15:51:19.0611 4084  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
15:51:19.0611 4084  C:\Windows\System32\clusapi.dll - ok
15:51:19.0627 4084  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
15:51:19.0627 4084  C:\Windows\System32\nci.dll - ok
15:51:19.0627 4084  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
15:51:19.0627 4084  C:\Windows\System32\sscore.dll - ok
15:51:19.0643 4084  [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
15:51:19.0643 4084  C:\Windows\System32\unimdm.tsp - ok
15:51:19.0643 4084  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
15:51:19.0643 4084  C:\Windows\System32\netprofm.dll - ok
15:51:19.0658 4084  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
15:51:19.0658 4084  C:\Windows\System32\resutils.dll - ok
15:51:19.0658 4084  [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
15:51:19.0658 4084  C:\Windows\System32\uniplat.dll - ok
15:51:19.0674 4084  [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
15:51:19.0674 4084  C:\Windows\System32\kmddsp.tsp - ok
15:51:19.0674 4084  [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
15:51:19.0674 4084  C:\Windows\System32\ndptsp.tsp - ok
15:51:19.0689 4084  [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
15:51:19.0689 4084  C:\Windows\System32\hidphone.tsp - ok
15:51:19.0705 4084  [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
15:51:19.0705 4084  C:\Windows\System32\rasppp.dll - ok
15:51:19.0705 4084  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
15:51:19.0705 4084  C:\Windows\System32\wbem\wbemcore.dll - ok
15:51:19.0721 4084  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
15:51:19.0721 4084  C:\Windows\System32\netshell.dll - ok
15:51:19.0721 4084  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
15:51:19.0721 4084  C:\Windows\System32\wbem\esscli.dll - ok
15:51:19.0736 4084  [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
15:51:19.0736 4084  C:\Windows\System32\vpnike.dll - ok
15:51:19.0736 4084  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
15:51:19.0736 4084  C:\Windows\System32\wbem\wbemsvc.dll - ok
15:51:19.0752 4084  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
15:51:19.0752 4084  C:\Windows\System32\wbem\wmiutils.dll - ok
15:51:19.0752 4084  [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
15:51:19.0752 4084  C:\Windows\System32\raschap.dll - ok
15:51:19.0767 4084  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
15:51:19.0767 4084  C:\Windows\System32\wbem\repdrvfs.dll - ok
15:51:19.0783 4084  [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
15:51:19.0783 4084  C:\Windows\System32\ipnathlp.dll - ok
15:51:19.0783 4084  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
15:51:19.0783 4084  C:\Windows\System32\mprapi.dll - ok
15:51:19.0799 4084  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
15:51:19.0799 4084  C:\Windows\System32\rasdlg.dll - ok
15:51:19.0799 4084  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:51:19.0799 4084  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:51:19.0814 4084  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
15:51:19.0814 4084  C:\Windows\System32\ncobjapi.dll - ok
15:51:19.0814 4084  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
15:51:19.0814 4084  C:\Windows\System32\wbem\wbemess.dll - ok
15:51:19.0830 4084  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:51:19.0830 4084  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:51:19.0830 4084  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
15:51:19.0830 4084  C:\Windows\System32\wdi.dll - ok
15:51:19.0845 4084  [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
15:51:19.0845 4084  C:\Windows\System32\qmgr.dll - ok
15:51:19.0845 4084  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
15:51:19.0845 4084  C:\Windows\System32\wpdbusenum.dll - ok
15:51:19.0861 4084  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
15:51:19.0861 4084  C:\Windows\System32\perftrack.dll - ok
15:51:19.0861 4084  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
15:51:19.0861 4084  C:\Windows\System32\PortableDeviceApi.dll - ok
15:51:19.0877 4084  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
15:51:19.0877 4084  C:\Windows\System32\IPSECSVC.DLL - ok
15:51:19.0877 4084  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
15:51:19.0877 4084  C:\Windows\System32\FwRemoteSvr.dll - ok
15:51:19.0892 4084  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
15:51:19.0892 4084  C:\Windows\System32\wer.dll - ok
15:51:19.0908 4084  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
15:51:19.0908 4084  C:\Windows\System32\appinfo.dll - ok
15:51:19.0908 4084  [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
15:51:19.0908 4084  C:\Windows\System32\bitsperf.dll - ok
15:51:19.0923 4084  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
15:51:19.0923 4084  C:\Windows\System32\diagperf.dll - ok
15:51:19.0923 4084  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:51:19.0923 4084  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:51:19.0939 4084  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
15:51:19.0939 4084  C:\Windows\System32\wbem\cimwin32.dll - ok
15:51:19.0939 4084  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
15:51:19.0939 4084  C:\Windows\System32\bitsigd.dll - ok
15:51:19.0955 4084  [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
15:51:19.0955 4084  C:\Windows\System32\upnp.dll - ok
15:51:19.0955 4084  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
15:51:19.0955 4084  C:\Windows\System32\npmproxy.dll - ok
15:51:19.0970 4084  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
15:51:19.0970 4084  C:\Windows\System32\Apphlpdm.dll - ok
15:51:19.0970 4084  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
15:51:19.0970 4084  C:\Windows\System32\pnpts.dll - ok
15:51:19.0986 4084  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
15:51:19.0986 4084  C:\Windows\System32\ssdpsrv.dll - ok
15:51:19.0986 4084  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
15:51:19.0986 4084  C:\Windows\System32\radardt.dll - ok
15:51:20.0001
4084  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ]
C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
15:51:20.0001
4084 
C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
- ok
15:51:20.0001 4084  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
15:51:20.0001 4084  C:\Windows\System32\wdiasqmmodule.dll - ok
15:51:20.0017 4084  [ 8CF4B0337B06CCC624C20EE4C934767E ] C:\Windows\System32\lpksetupproxyserv.dll
15:51:20.0017 4084  C:\Windows\System32\lpksetupproxyserv.dll - ok
15:51:20.0017 4084  [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
15:51:20.0017 4084  C:\Windows\servicing\TrustedInstaller.exe - ok
15:51:20.0033 4084  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
15:51:20.0033 4084  C:\Windows\System32\dimsjob.dll - ok
15:51:20.0048 4084  [ A391896CD406E6377F5CEF31FDC12019 ] C:\Windows\SysWOW64\ACEngSvr.exe
15:51:20.0048 4084  C:\Windows\SysWOW64\ACEngSvr.exe - ok
15:51:20.0048 4084  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
15:51:20.0048 4084  C:\Windows\System32\pautoenr.dll - ok
15:51:20.0064 4084  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
15:51:20.0064 4084  C:\Windows\System32\certcli.dll - ok
15:51:20.0064 4084  [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
15:51:20.0064 4084  C:\Windows\System32\qmgrprxy.dll - ok
15:51:20.0079 4084  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
15:51:20.0079 4084  C:\Windows\System32\dbghelp.dll - ok
15:51:20.0079 4084  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
15:51:20.0079 4084  C:\Windows\System32\ndiscapCfg.dll - ok
15:51:20.0095 4084  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
15:51:20.0095 4084  C:\Windows\System32\mprmsg.dll - ok
15:51:20.0095 4084  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
15:51:20.0095 4084  C:\Windows\System32\rascfg.dll - ok
15:51:20.0111 4084  [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
15:51:20.0111 4084  C:\Windows\SysWOW64\qmgrprxy.dll - ok
15:51:20.0111 4084  [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
15:51:20.0111 4084  C:\Windows\System32\tcpipcfg.dll - ok
15:51:20.0126 4084  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
15:51:20.0126 4084  C:\Windows\System32\CertEnroll.dll - ok
15:51:20.0126
4084  [ 288ADDED26C80FDC135CAB4340161686 ]
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
15:51:20.0126
4084 
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
- ok
15:51:20.0142 4084  [ 387F2728BFCF50066F7F3219197918EB ] C:\Windows\System32\makecab.exe
15:51:20.0142 4084  C:\Windows\System32\makecab.exe - ok
15:51:20.0142 4084  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
15:51:20.0142 4084  C:\Windows\System32\conhost.exe - ok
15:51:20.0157
4084  [ 7957A194B8421BC070FABBF1C55DB68B ]
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
15:51:20.0157
4084 
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
- ok
15:51:20.0173 4084  [ 4D4C1AE68D34B4DF68E28E787B39881C ] C:\Windows\System32\atidxx64.dll
15:51:20.0173 4084  C:\Windows\System32\atidxx64.dll - ok
15:51:20.0173 4084  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
15:51:20.0173 4084  C:\Windows\System32\uDWM.dll - ok
15:51:20.0189 4084  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
15:51:20.0189 4084  C:\Windows\SysWOW64\mscms.dll - ok
15:51:20.0204 4084  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
15:51:20.0204 4084  C:\Windows\System32\framedynos.dll - ok
15:51:20.0204
4084  [ BC4AE105062D913F5D8FBA5E7840E1BA ] C:\Program Files
(x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
15:51:20.0204 4084  C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll - ok
15:51:20.0220 4084  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
15:51:20.0220 4084  C:\Windows\System32\wmi.dll - ok
15:51:20.0220 4084  [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
15:51:20.0220 4084  C:\Windows\SysWOW64\xmllite.dll - ok
15:51:20.0235 4084  [ 5877A3341AA7DF58789294CEBA38AE2B ] C:\Users\James\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
15:51:20.0235 4084  C:\Users\James\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll - ok
15:51:20.0235 4084  [ 4F72C8B661DEC62F4DF0F15D33106372 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll
15:51:20.0235 4084  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll - ok
15:51:20.0251 4084  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
15:51:20.0251 4084  C:\Windows\System32\esent.dll - ok
15:51:20.0251 4084  [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
15:51:20.0251 4084  C:\Windows\System32\wersvc.dll - ok
15:51:20.0267
4084  [ 9297F004FCE79FB7B26DAC6968FB5FEB ]
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
15:51:20.0267
4084 
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
- ok
15:51:20.0282 4084  [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
15:51:20.0282 4084  C:\Windows\System32\srclient.dll - ok
15:51:20.0282 4084  [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
15:51:20.0282 4084  C:\Windows\System32\spp.dll - ok
15:51:20.0298
4084  [ 943F48CC3A59169E52A054946C2F59B8 ]
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
15:51:20.0298
4084 
C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
- ok
15:51:20.0298 4084  [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
15:51:20.0298 4084  C:\Windows\System32\sxsstore.dll - ok
15:51:20.0313 4084  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
15:51:20.0313 4084  C:\Windows\System32\SensApi.dll - ok
15:51:20.0329 4084  [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
15:51:20.0329 4084  C:\Windows\servicing\CbsApi.dll - ok
15:51:20.0329 4084  [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
15:51:20.0329 4084  C:\Windows\System32\HelpPaneProxy.dll - ok
15:51:20.0345 4084  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
15:51:20.0345 4084  C:\Windows\SysWOW64\oledlg.dll - ok
15:51:20.0345
4084  [ BE165318E0052A91F7EA36F515B5F2B1 ]
C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll
15:51:20.0345
4084 
C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll
- ok
15:51:20.0360 4084  [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
15:51:20.0360 4084  C:\Windows\AppPatch\AcGenral.dll - ok
15:51:20.0376 4084  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
15:51:20.0376 4084  C:\Windows\SysWOW64\msacm32.dll - ok
15:51:20.0376 4084  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
15:51:20.0376 4084  C:\Windows\SysWOW64\sfc.dll - ok
15:51:20.0391 4084  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
15:51:20.0391 4084  C:\Windows\SysWOW64\sfc_os.dll - ok
15:51:20.0391 4084  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
15:51:20.0391 4084  C:\Windows\SysWOW64\mpr.dll - ok
15:51:20.0407 4084  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:51:20.0407 4084  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:51:20.0407 4084  [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
15:51:20.0407 4084  C:\Windows\SysWOW64\ddraw.dll - ok
15:51:20.0423
4084  [ 0D7BE936A44E6B70F822D272A5CEBC22 ]
C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
15:51:20.0423
4084 
C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
- ok
15:51:20.0423 4084  [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
15:51:20.0423 4084  C:\Windows\SysWOW64\dciman32.dll - ok
15:51:20.0423 4084  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
15:51:20.0423 4084  C:\Windows\SysWOW64\rasapi32.dll - ok
15:51:20.0438 4084  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
15:51:20.0438 4084  C:\Windows\SysWOW64\rasman.dll - ok
15:51:20.0454 4084  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
15:51:20.0454 4084  C:\Windows\SysWOW64\rtutils.dll - ok
15:51:20.0454 4084  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
15:51:20.0454 4084  C:\Windows\SysWOW64\SensApi.dll - ok
15:51:20.0469 4084  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
15:51:20.0469 4084  C:\Windows\SysWOW64\sxs.dll - ok
15:51:20.0469 4084  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
15:51:20.0469 4084  C:\Windows\System32\drivers\fastfat.sys - ok
15:51:20.0485 4084  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
15:51:20.0485 4084  C:\Windows\System32\EhStorShell.dll - ok
15:51:20.0501 4084  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
15:51:20.0501 4084  C:\Windows\System32\ntshrui.dll - ok
15:51:20.0501 4084  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
15:51:20.0501 4084  C:\Windows\System32\IconCodecService.dll - ok
15:51:20.0516 4084  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
15:51:20.0516 4084  C:\Windows\System32\runonce.exe - ok
15:51:20.0516 4084  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
15:51:20.0516 4084  C:\Windows\SysWOW64\runonce.exe - ok
15:51:20.0532 4084  [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
15:51:20.0532 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
15:51:20.0532 4084  [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
15:51:20.0532 4084  C:\Windows\System32\oleres.dll - ok
15:51:20.0547
4084  [ C3E39FB1398EEE8E612C2FE53A9192EF ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
15:51:20.0547
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
- ok
15:51:20.0563 4084  [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
15:51:20.0563 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
15:51:20.0563 4084  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
15:51:20.0563 4084  C:\Windows\SysWOW64\riched20.dll - ok
15:51:20.0579 4084  [ EE5C8D3B26E5FA5F2192F5A17186B4F6 ] C:\Windows\SysWOW64\aticfx32.dll
15:51:20.0579 4084  C:\Windows\SysWOW64\aticfx32.dll - ok
15:51:20.0579 4084  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
15:51:20.0579 4084  C:\Windows\SysWOW64\imagehlp.dll - ok
15:51:20.0594 4084  [ 2338FE14C3C687CB0DC59A0A393CCFAF ] C:\Windows\SysWOW64\atiu9pag.dll
15:51:20.0594 4084  C:\Windows\SysWOW64\atiu9pag.dll - ok
15:51:20.0594 4084  [ 0FEC9E98929DFD469587E53F876B7AB9 ] C:\Windows\SysWOW64\atiumdag.dll
15:51:20.0594 4084  C:\Windows\SysWOW64\atiumdag.dll - ok
15:51:20.0610 4084  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
15:51:20.0610 4084  C:\Windows\SysWOW64\ncrypt.dll - ok
15:51:20.0625 4084  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
15:51:20.0625 4084  C:\Windows\SysWOW64\bcrypt.dll - ok
15:51:20.0625 4084  [ 54D1CA8F80D65CA91810C5A8C7523194 ] C:\Windows\SysWOW64\atiumdva.dll
15:51:20.0625 4084  C:\Windows\SysWOW64\atiumdva.dll - ok
15:51:20.0641 4084  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:51:20.0641 4084  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:51:20.0641 4084  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
15:51:20.0641 4084  C:\Windows\SysWOW64\gpapi.dll - ok
15:51:20.0657 4084  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
15:51:20.0657 4084  C:\Windows\SysWOW64\propsys.dll - ok
15:51:20.0657 4084  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
15:51:20.0657 4084  C:\Windows\SysWOW64\cryptnet.dll - ok
15:51:20.0672 4084  [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
15:51:20.0672 4084  C:\Program Files\Windows Defender\MpRTP.dll - ok
15:51:20.0688 4084  [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
15:51:20.0688 4084  C:\Windows\System32\tdh.dll - ok
15:51:20.0688
4084  [ 76A11F575782DBAE74F05B8796EF7F9D ]
C:\ProgramData\Microsoft\Windows Defender\Definition
Updates\{AAF674B8-902B-44AF-90FB-9F7495CD1D4B}\mpengine.dll
15:51:20.0688
4084  C:\ProgramData\Microsoft\Windows Defender\Definition
Updates\{AAF674B8-902B-44AF-90FB-9F7495CD1D4B}\mpengine.dll - ok
15:51:20.0703
4084  [ 436EB2742ED35C1ED9DDCB83C9BCF68A ]
C:\ProgramData\Microsoft\Windows Defender\Definition
Updates\{AAF674B8-902B-44AF-90FB-9F7495CD1D4B}\mpasbase.vdm
15:51:20.0703
4084  C:\ProgramData\Microsoft\Windows Defender\Definition
Updates\{AAF674B8-902B-44AF-90FB-9F7495CD1D4B}\mpasbase.vdm - ok
15:51:20.0719
4084  [ CA61E3BC7788AED9B65086D55A298CF6 ]
C:\ProgramData\Microsoft\Windows Defender\Definition
Updates\{AAF674B8-902B-44AF-90FB-9F7495CD1D4B}\mpasdlta.vdm
15:51:20.0719
4084  C:\ProgramData\Microsoft\Windows Defender\Definition
Updates\{AAF674B8-902B-44AF-90FB-9F7495CD1D4B}\mpasdlta.vdm - ok
15:51:20.0719
4084  [ 3518CB4E2D896CAB53D5386F15AC0566 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
15:51:20.0719 4084  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
15:51:20.0735
4084  [ FBA4773ECFEFFC6566FB2AD13CEC4940 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
15:51:20.0735
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
- ok
15:51:20.0750 4084  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
15:51:20.0750 4084  C:\Windows\SysWOW64\cmd.exe - ok
15:51:20.0750 4084  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
15:51:20.0750 4084  C:\Windows\SysWOW64\winbrand.dll - ok
15:51:20.0766
4084  [ 1E3CB1435EC745058628AE40FEA9F471 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
15:51:20.0766
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
- ok
15:51:20.0766 4084  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
15:51:20.0766 4084  C:\Windows\System32\aelupsvc.dll - ok
15:51:20.0766 4084  [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
15:51:20.0781 4084  C:\Windows\SysWOW64\ieframe.dll - ok
15:51:20.0781 4084  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
15:51:20.0781 4084  C:\Windows\SysWOW64\oleacc.dll - ok
15:51:20.0797 4084  [ 6F0A1EBBE35F76C3F4FB9E259BCD057F ] C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe
15:51:20.0797 4084  C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe - ok
15:51:20.0797 4084  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
15:51:20.0797 4084  C:\Windows\SysWOW64\shdocvw.dll - ok
15:51:20.0815 4084  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
15:51:20.0815 4084  C:\Windows\System32\wbem\NCProv.dll - ok
15:51:20.0815 4084  [ 9276AD561E976FE381D72FD3F7F3E3DF ] C:\Program Files (x86)\ASUS\Splendid\my_Intel.exe
15:51:20.0815 4084  C:\Program Files (x86)\ASUS\Splendid\my_Intel.exe - ok
15:51:20.0830
4084  [ EE74A0FF7C5752E49911986F22BBAEEF ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
15:51:20.0830
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
- ok
15:51:20.0846 4084  [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
15:51:20.0846 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
15:51:20.0846 4084  [ 00B0757070CEF908AB5727D028A5376B ] C:\Program Files (x86)\ASUS\Splendid\Asus_DLL.dll
15:51:20.0846 4084  C:\Program Files (x86)\ASUS\Splendid\Asus_DLL.dll - ok
15:51:20.0861
4084  [ 27E79A455EF80647F4F57FA3C2B09C94 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
15:51:20.0861
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
- ok
15:51:20.0861 4084  [ 8B1590C627138166C015A5680ABF6BB2 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
15:51:20.0861
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
- ok
15:51:20.0877 4084  [ AEDDFD540E3E6BECDB14C30D1F12B78A ]
C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
15:51:20.0877 4084  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
15:51:20.0877
4084  [ 178A34E5554DCE485E1262DDF027960C ]
C:\Users\James\AppData\Local\Temp\535110DC-00BB-4363-9BB4-9226092D92D4.exe
15:51:20.0877 4084  C:\Users\James\AppData\Local\Temp\535110DC-00BB-4363-9BB4-9226092D92D4.exe - ok
15:51:20.0893 4084  [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
15:51:20.0893 4084  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
15:51:20.0893 4084  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
15:51:20.0893 4084  C:\Windows\SysWOW64\credssp.dll - ok
15:51:20.0908 4084  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:51:20.0908 4084  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:51:20.0908 4084  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:51:20.0908 4084  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:51:20.0924
4084  [ 871F7F32E3441580138E61A4AA072DF6 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
15:51:20.0924
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
- ok
15:51:20.0939 4084  [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
15:51:20.0939 4084  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
15:51:20.0939 4084  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
15:51:20.0939 4084  C:\Windows\SysWOW64\EhStorShell.dll - ok
15:51:20.0955 4084  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
15:51:20.0955 4084  C:\Windows\SysWOW64\ntshrui.dll - ok
15:51:20.0971 4084  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
15:51:20.0971 4084  C:\Windows\SysWOW64\slc.dll - ok
15:51:20.0971 4084  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
15:51:20.0971 4084  C:\Windows\SysWOW64\imageres.dll - ok
15:51:20.0986 4084  [ B9A616D92F64A4AAF426389DDE76576C ] C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
15:51:20.0986 4084  C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll - ok
15:51:20.0986 4084  [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
15:51:20.0986 4084  C:\Program Files\Windows Defender\MsMpLics.dll - ok
15:51:21.0002 4084  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
15:51:21.0002 4084  C:\Windows\System32\wscapi.dll - ok
15:51:21.0002 4084  [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
15:51:21.0002 4084  C:\Windows\System32\wscisvif.dll - ok
15:51:21.0017 4084  [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
15:51:21.0017 4084  C:\Windows\System32\wscproxystub.dll - ok
15:51:21.0017 4084  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
15:51:21.0017 4084  C:\Windows\SysWOW64\devrtl.dll - ok
15:51:21.0033 4084  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
15:51:21.0033 4084  C:\Windows\System32\ie4uinit.exe - ok
15:51:21.0049 4084  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
15:51:21.0049 4084  C:\Windows\System32\iedkcs32.dll - ok
15:51:21.0049 4084  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
15:51:21.0049 4084  C:\Windows\System32\timedate.cpl - ok
15:51:21.0049 4084  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
15:51:21.0049 4084  C:\Windows\System32\actxprxy.dll - ok
15:51:21.0064 4084  [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
15:51:21.0064 4084  C:\Windows\System32\shdocvw.dll - ok
15:51:21.0064 4084  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
15:51:21.0064 4084  C:\Windows\System32\linkinfo.dll - ok
15:51:21.0080 4084  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
15:51:21.0080 4084  C:\Windows\System32\gameux.dll - ok
15:51:21.0080 4084  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
15:51:21.0080 4084  C:\Windows\System32\msftedit.dll - ok
15:51:21.0095 4084  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
15:51:21.0095 4084  C:\Windows\System32\msls31.dll - ok
15:51:21.0095 4084  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
15:51:21.0095 4084  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
15:51:21.0111 4084  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
15:51:21.0111 4084  C:\Windows\System32\DeviceCenter.dll - ok
15:51:21.0111 4084  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
15:51:21.0111 4084  C:\Windows\System32\stobject.dll - ok
15:51:21.0127 4084  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
15:51:21.0127 4084  C:\Windows\System32\batmeter.dll - ok
15:51:21.0127 4084  [ 5E20992CC504102E5460C3D7C73806A9 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
15:51:21.0127 4084  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe - ok
15:51:21.0142 4084  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
15:51:21.0142 4084  C:\Windows\System32\msiltcfg.dll - ok
15:51:21.0142 4084  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
15:51:21.0142 4084  C:\Windows\System32\prnfldr.dll - ok
15:51:21.0158 4084  [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
15:51:21.0158 4084  C:\Windows\System32\opengl32.dll - ok
15:51:21.0173 4084  [ 215DF39F5A4D23FC21F018760B3A261C ] C:\Program Files\Elantech\ETDCtrl.exe
15:51:21.0173 4084  C:\Program Files\Elantech\ETDCtrl.exe - ok
15:51:21.0189 4084  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
15:51:21.0189 4084  C:\Windows\System32\thumbcache.dll - ok
15:51:21.0189 4084  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
15:51:21.0189 4084  C:\Windows\System32\DXP.dll - ok
15:51:21.0205 4084  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
15:51:21.0205 4084  C:\Windows\System32\Syncreg.dll - ok
15:51:21.0205 4084  [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
15:51:21.0205 4084  C:\Windows\System32\glu32.dll - ok
15:51:21.0205 4084  [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
15:51:21.0205 4084  C:\Windows\System32\ddraw.dll - ok
15:51:21.0220 4084  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
15:51:21.0220 4084  C:\Windows\ehome\ehSSO.dll - ok
15:51:21.0220 4084  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
15:51:21.0220 4084  C:\Windows\System32\WPDShServiceObj.dll - ok
15:51:21.0236 4084  [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
15:51:21.0236 4084  C:\Windows\System32\dciman32.dll - ok
15:51:21.0236 4084  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
15:51:21.0236 4084  C:\Windows\System32\msimg32.dll - ok
15:51:21.0251 4084  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
15:51:21.0251 4084  C:\Windows\System32\PortableDeviceTypes.dll - ok
15:51:21.0251 4084  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
15:51:21.0251 4084  C:\Windows\System32\oledlg.dll - ok
15:51:21.0267 4084  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
15:51:21.0267 4084  C:\Windows\System32\networkexplorer.dll - ok
15:51:21.0267 4084  [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
15:51:21.0267 4084  C:\Windows\System32\RtkCfg64.dll - ok
15:51:21.0283 4084  [ B7E073E3150FCF200A3B79C3401670B4 ] C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
15:51:21.0283 4084  C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe - ok
15:51:21.0283 4084  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
15:51:21.0283 4084  C:\Windows\System32\ActionCenter.dll - ok
15:51:21.0298 4084  [ 381CF052785F8C644128A50B8F5DD184 ] C:\Program Files\Elantech\ETDFavorite.dll
15:51:21.0298 4084  C:\Program Files\Elantech\ETDFavorite.dll - ok
15:51:21.0298 4084  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
15:51:21.0298 4084  C:\Windows\System32\srchadmin.dll - ok
15:51:21.0314 4084  [ 8C9740A3B7603B0A746213DAE8C89526 ] C:\Program Files (x86)\Spybot - Search & Destroy\blindman.exe
15:51:21.0314 4084  C:\Program Files (x86)\Spybot - Search & Destroy\blindman.exe - ok
15:51:21.0329 4084  [ A4FBAA985D1DC842631473DC604100B2 ] C:\Program Files\Elantech\ETDApix.dll
15:51:21.0329 4084  C:\Program Files\Elantech\ETDApix.dll - ok
15:51:21.0329 4084  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
15:51:21.0329 4084  C:\Windows\System32\SearchIndexer.exe - ok
15:51:21.0345 4084  [ 4E39830415EEA68CFCB737FE3D6A0E28 ] C:\Program Files\Elantech\ETDCmds.dll
15:51:21.0345 4084  C:\Program Files\Elantech\ETDCmds.dll - ok
15:51:21.0361 4084  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
15:51:21.0361 4084  C:\Windows\System32\AltTab.dll - ok
15:51:21.0361 4084  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
15:51:21.0361 4084  C:\Windows\SysWOW64\wer.dll - ok
15:51:21.0361 4084  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
15:51:21.0361 4084  C:\Windows\System32\pnidui.dll - ok
15:51:21.0376 4084  [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
15:51:21.0376 4084  C:\Windows\SysWOW64\Faultrep.dll - ok
15:51:21.0376 4084  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
15:51:21.0376 4084  C:\Windows\AppPatch\AcLayers.dll - ok
15:51:21.0392 4084  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
15:51:21.0392 4084  C:\Windows\SysWOW64\samlib.dll - ok
15:51:21.0392 4084  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
15:51:21.0392 4084  C:\Windows\System32\QUTIL.DLL - ok
15:51:21.0407 4084  [ E70D869892084DEAE2769329F649FCD8 ] C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe
15:51:21.0407 4084  C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe - ok
15:51:21.0423 4084  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
15:51:21.0423 4084  C:\Windows\System32\FXSST.dll - ok
15:51:21.0423 4084  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
15:51:21.0423 4084  C:\Windows\System32\tquery.dll - ok
15:51:21.0439 4084  [ BBE8B2B11C5903995802B2565DF4947B ] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe
15:51:21.0439 4084  C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe - ok
15:51:21.0439 4084  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
15:51:21.0439 4084  C:\Windows\System32\FXSAPI.dll - ok
15:51:21.0454 4084  [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
15:51:21.0454 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
15:51:21.0470 4084  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
15:51:21.0470 4084  C:\Windows\System32\mssrch.dll - ok
15:51:21.0470 4084  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
15:51:21.0470 4084  C:\Windows\System32\FXSRESM.dll - ok
15:51:21.0485 4084  [ 7EE22E13DEC8A6D18F4643C1EA34B0F0 ] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
15:51:21.0485 4084  C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe - ok
15:51:21.0485 4084  [ 79A3B950988F8D2B81906D0C0473158B ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
15:51:21.0485 4084  C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe - ok
15:51:21.0501 4084  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
15:51:21.0501 4084  C:\Windows\System32\bthprops.cpl - ok
15:51:21.0501
4084  [ BE210318FA6DA2A862BD41EA87E8CBE6 ]
C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
15:51:21.0501 4084  C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok

15:51:21.0517 4084  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
15:51:21.0517 4084  C:\Windows\System32\msidle.dll - ok
15:51:21.0517 4084  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
15:51:21.0517 4084  C:\Windows\System32\mssprxy.dll - ok
15:51:21.0532 4084  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\65421865.sys
15:51:21.0532 4084  C:\Windows\System32\drivers\65421865.sys - ok
15:51:21.0532 4084  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
15:51:21.0532 4084  C:\Windows\System32\dot3api.dll - ok
15:51:21.0548 4084  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
15:51:21.0548 4084  C:\Windows\System32\FXSSVC.exe - ok
15:51:21.0548 4084  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
15:51:21.0548 4084  C:\Windows\System32\wlanhlp.dll - ok
15:51:21.0563 4084  [ D859B2E8E7160FC4081124E6D1F98C4A ] C:\Program Files\Elantech\ETDCtrlHelper.exe
15:51:21.0563 4084  C:\Program Files\Elantech\ETDCtrlHelper.exe - ok
15:51:21.0563 4084  [ FDDC4D6EC3B2BD3B5A04C22881305621 ] C:\Windows\SysWOW64\SFCOM.dll
15:51:21.0563 4084  C:\Windows\SysWOW64\SFCOM.dll - ok
15:51:21.0579 4084  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
15:51:21.0579 4084  C:\Windows\System32\en-US\tquery.dll.mui - ok
15:51:21.0595 4084  [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
15:51:21.0595 4084  C:\Windows\System32\consent.exe - ok
15:51:21.0595 4084  [ 5AEBF6FA9805C9101220AA4FB4FA17E7 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
15:51:21.0595 4084  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe - ok
15:51:21.0610 4084  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
15:51:21.0610 4084  C:\Windows\SysWOW64\MMDevAPI.dll - ok
15:51:21.0610 4084  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
15:51:21.0610 4084  C:\Windows\System32\WWanAPI.dll - ok
15:51:21.0626 4084  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
15:51:21.0626 4084  C:\Windows\System32\wwapi.dll - ok
15:51:21.0626 4084  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
15:51:21.0626 4084  C:\Windows\System32\QAGENT.DLL - ok
15:51:21.0641 4084  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
15:51:21.0641 4084  C:\Windows\SysWOW64\AudioSes.dll - ok
15:51:21.0657 4084  [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
15:51:21.0657 4084  C:\Windows\SysWOW64\wdmaud.drv - ok
15:51:21.0657 4084  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
15:51:21.0657 4084  C:\Windows\SysWOW64\msi.dll - ok
15:51:21.0657 4084  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
15:51:21.0657 4084  C:\Windows\SysWOW64\ksuser.dll - ok
15:51:21.0673 4084  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
15:51:21.0673 4084  C:\Windows\SysWOW64\avrt.dll - ok
15:51:21.0688 4084  [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
15:51:21.0688 4084  C:\Windows\SysWOW64\msacm32.drv - ok
15:51:21.0688 4084  [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
15:51:21.0688 4084  C:\Windows\SysWOW64\midimap.dll - ok
15:51:21.0704 4084  [ B166415C55E416022B3339EBD6CB216E ] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
15:51:21.0704 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe - ok
15:51:21.0704
4084  [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:51:21.0704 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
15:51:21.0719
4084  [ EF982260A3102B065D94F1E5959EC8B9 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\dd20416f723ee13ffb4173ec1afc4ec4\System.Data.ni.dll
15:51:21.0719
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\dd20416f723ee13ffb4173ec1afc4ec4\System.Data.ni.dll
- ok
15:51:21.0719 4084  [ 35CAB7CF3754C41AEB69DCE1D5ACA5A4 ]
C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
15:51:21.0719 4084  C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
15:51:21.0735 4084  [ BD87D5F5D68AC07243010A6F5176F897 ] C:\Program Files (x86)\ASUS\APRP\aprp.exe
15:51:21.0735 4084  C:\Program Files (x86)\ASUS\APRP\aprp.exe - ok
15:51:21.0735 4084  [ 083649EF692A066880C9326020915AFE ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
15:51:21.0735 4084  C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
15:51:21.0735 4084  [ 179EED57FED3C7422A559633641032BA ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
15:51:21.0735 4084  C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
15:51:21.0751
4084  [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files
(x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
15:51:21.0751 4084  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
15:51:21.0766 4084  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
15:51:21.0766 4084  C:\Windows\SysWOW64\shfolder.dll - ok
15:51:21.0766 4084  [ 13790C4FB6311ECE6D6763A7EC2313FB ] C:\Program Files\AVAST Software\Avast\aswAra.dll
15:51:21.0766 4084  C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
15:51:21.0782 4084  [ F0E7DEC6F7A3610949BDED0CA8CCB3EA ] C:\Program Files\AVAST Software\Avast\aswData.dll
15:51:21.0782 4084  C:\Program Files\AVAST Software\Avast\aswData.dll - ok
15:51:21.0782 4084  [ AB6E3DF509C6BD59062F685A40395C23 ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
15:51:21.0782 4084  C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
15:51:21.0797 4084  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:51:21.0797 4084  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:51:21.0797 4084  [ AB04C6CE5DF23819B914F822E9AA0EDF ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
15:51:21.0797 4084  C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
15:51:21.0813 4084  [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:51:21.0813 4084  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:51:21.0813 4084  [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:51:21.0813 4084  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
15:51:21.0829 4084  [ 12DBA51A6D1126E88F78D79AE0F7600F ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
15:51:21.0829 4084  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
15:51:21.0829 4084  [ 5082BC510FAD849630D09DA626BB7CDA ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
15:51:21.0829 4084  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
15:51:21.0844 4084  [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
15:51:21.0844 4084  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
15:51:21.0844 4084  [ 7E57B6D3D74CB9EF3055BA4E89F038D4 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx
15:51:21.0844 4084  C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx - ok
15:51:21.0860 4084  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
15:51:21.0860 4084  C:\Windows\SysWOW64\duser.dll - ok
15:51:21.0860 4084  [ D59CD44D6884EF8A99165D4EAEFD7E81 ] C:\Program Files (x86)\ASUS\AsusVibe\GetMulStr.dll
15:51:21.0860 4084  C:\Program Files (x86)\ASUS\AsusVibe\GetMulStr.dll - ok
15:51:21.0875
4084  [ 51D2F66C0C55419CA4A797C8D1B0AD8D ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
15:51:21.0875
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
- ok
15:51:21.0875 4084  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
15:51:21.0875 4084  C:\Windows\SysWOW64\dui70.dll - ok
15:51:21.0891
4084  [ BE643CD44DD06DA283634A3E51DC22BC ] C:\Program Files
(x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
15:51:21.0891 4084  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
15:51:21.0891 4084  [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
15:51:21.0891 4084  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
15:51:21.0907 4084  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
15:51:21.0907 4084  C:\Windows\SysWOW64\wbemcomn.dll - ok
15:51:21.0907 4084  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
15:51:21.0907 4084  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
15:51:21.0922 4084  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
15:51:21.0922 4084  C:\Windows\System32\UIAnimation.dll - ok
15:51:21.0922 4084  [ 11379ADAEB0D8FB11DA78B9152BFEFFA ] C:\Program Files (x86)\ASUS\Wireless Console 3\FreeImage.dll
15:51:21.0922 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\FreeImage.dll - ok
15:51:21.0938 4084  [ 972DCC74D4CDCB64086E7CFACBDB74CB ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
15:51:21.0938 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
15:51:21.0938 4084  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
15:51:21.0938 4084  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
15:51:21.0953 4084  [ F37C25D20C143AB9A6DC55DAA68860C8 ] C:\Program Files (x86)\ASUS\AsusVibe\GetAsusInfomation.dll
15:51:21.0953 4084  C:\Program Files (x86)\ASUS\AsusVibe\GetAsusInfomation.dll - ok
15:51:21.0953 4084  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
15:51:21.0953 4084  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
15:51:21.0969 4084  [ F2E46D4A13688042B55E1A4254298FE2 ] C:\Program Files (x86)\ASUS\Wireless Console 3\RtlLib.dll
15:51:21.0969 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\RtlLib.dll - ok
15:51:21.0969 4084  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
15:51:21.0969 4084  C:\Windows\SysWOW64\ntdsapi.dll - ok
15:51:21.0985 4084  [ A67050F159C5DEC50E92EE3F716DD293 ] C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
15:51:21.0985 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll - ok
15:51:21.0985 4084  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
15:51:21.0985 4084  C:\Windows\System32\browcli.dll - ok
15:51:22.0000 4084  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
15:51:22.0000 4084  C:\Windows\System32\schedcli.dll - ok
15:51:22.0000 4084  [ 26B02AC4AC63504C2074A002F33AF76E ] C:\Program Files (x86)\ASUS\AsusVibe\GetSkin.dll
15:51:22.0000 4084  C:\Program Files (x86)\ASUS\AsusVibe\GetSkin.dll - ok
15:51:22.0016 4084  [ 7C02774740B2EA1F5237808B1A363D34 ] C:\Program Files (x86)\ASUS\Wireless Console 3\IpLib.dll
15:51:22.0016 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\IpLib.dll - ok
15:51:22.0016 4084  [ F1ED09F4F1FE819031F9140B76F20395 ] C:\Program Files (x86)\ASUS\Wireless Console 3\libeay32.dll
15:51:22.0016 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\libeay32.dll - ok
15:51:22.0031 4084  [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
15:51:22.0031 4084  C:\Windows\SysWOW64\cryptui.dll - ok
15:51:22.0031
4084  [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files
(x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
15:51:22.0031 4084  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
15:51:22.0047
4084  [ 21E110FF1C0E948860458BD7B692DE13 ]
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
15:51:22.0047
4084 
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
- ok
15:51:22.0047 4084  [ 06B4C8D5D9708A7494AC7C02CD54650E ] C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll
15:51:22.0047 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll - ok
15:51:22.0063 4084  [ 388CE212A119271EEA68F42712F3F64F ] C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL
15:51:22.0063 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL - ok
15:51:22.0063 4084  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] C:\Program Files\iPod\bin\iPodService.exe
15:51:22.0063 4084  C:\Program Files\iPod\bin\iPodService.exe - ok
15:51:22.0078 4084  [ E7C665D4AFAAB45A9086D02FFC87A4B4 ] C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll
15:51:22.0078 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll - ok
15:51:22.0078 4084  [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
15:51:22.0078 4084  C:\Windows\SysWOW64\mfc42.dll - ok
15:51:22.0094 4084  [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
15:51:22.0094 4084  C:\Windows\SysWOW64\dsound.dll - ok
15:51:22.0094
4084  [ 1105A14047A0D99C2770601EB61FBF5C ] C:\Program
Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
15:51:22.0094 4084  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
15:51:22.0109 4084  [ B4E69051E313551F894C74B12042485D ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
15:51:22.0109 4084  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
15:51:22.0109 4084  [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
15:51:22.0109 4084  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
15:51:22.0125 4084  [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Windows\SysWOW64\msvcp100.dll
15:51:22.0125 4084  C:\Windows\SysWOW64\msvcp100.dll - ok
15:51:22.0125 4084  [ FF8E7194A014B694CF065760042E5946 ] C:\Program Files\AVAST Software\Avast\defs\13022800\uiext.dll
15:51:22.0125 4084  C:\Program Files\AVAST Software\Avast\defs\13022800\uiext.dll - ok
15:51:22.0141 4084  [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Windows\SysWOW64\msvcr100.dll
15:51:22.0141 4084  C:\Windows\SysWOW64\msvcr100.dll - ok
15:51:22.0141 4084  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
15:51:22.0141 4084  C:\Windows\SysWOW64\odbc32.dll - ok
15:51:22.0156 4084  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
15:51:22.0156 4084  C:\Windows\System32\webcheck.dll - ok
15:51:22.0156 4084  [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
15:51:22.0156 4084  C:\Windows\System32\ieframe.dll - ok
15:51:22.0172 4084  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
15:51:22.0172 4084  C:\Windows\SysWOW64\odbcint.dll - ok
15:51:22.0172 4084  [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
15:51:22.0172 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
15:51:22.0187 4084  [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
15:51:22.0187 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
15:51:22.0187 4084  [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
15:51:22.0187 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
15:51:22.0203 4084  [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
15:51:22.0203 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
15:51:22.0203 4084  [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
15:51:22.0203 4084  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
15:51:22.0219 4084  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
15:51:22.0219 4084  C:\Windows\System32\mlang.dll - ok
15:51:22.0219 4084  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
15:51:22.0219 4084  C:\Windows\SysWOW64\wlanapi.dll - ok
15:51:22.0219 4084  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
15:51:22.0219 4084  C:\Windows\SysWOW64\wlanutil.dll - ok
15:51:22.0234 4084  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
15:51:22.0234 4084  C:\Windows\System32\SyncCenter.dll - ok
15:51:22.0234 4084  [ 3BF84EE7E982EF54C0E04EC5162C51DA ] C:\Program Files (x86)\ASUS\Wireless Console 3\WimaxConsole.exe
15:51:22.0234 4084  C:\Program Files (x86)\ASUS\Wireless Console 3\WimaxConsole.exe - ok
15:51:22.0250 4084  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
15:51:22.0250 4084  C:\Windows\System32\imapi2.dll - ok
15:51:22.0250 4084  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
15:51:22.0250 4084  C:\Windows\System32\hgcpl.dll - ok
15:51:22.0265 4084  ============================================================
15:51:22.0265 4084  Scan finished
15:51:22.0265 4084  ============================================================
15:51:22.0281 3784  Detected object count: 0
15:51:22.0281 3784  Actual detected object count: 0
 

----------------------------------------

 

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-28 15:59:19
-----------------------------
15:59:19.094    OS Version: Windows x64 6.1.7601 Service Pack 1
15:59:19.094    Number of processors: 2 586 0x100
15:59:19.110    ComputerName: JAMES-PC  UserName: James
15:59:24.055    Initialize success
15:59:24.180    AVAST engine defs: 13022800
15:59:30.420    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006a
15:59:30.420    Disk 0 Vendor: ST975042 0001 Size: 715404MB BusType: 11
15:59:30.498    Disk 0 MBR read successfully
15:59:30.498    Disk 0 MBR scan
15:59:30.513    Disk 0 Windows 7 default MBR code
15:59:30.513    Disk 0 Partition 1 00     1C Hidd FAT32 LBA MSDOS5.0    25600 MB offset 2048
15:59:30.544    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS       307624 MB offset 52430848
15:59:30.560    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       382179 MB offset 682444800
15:59:30.607    Disk 0 scanning C:\Windows\system32\drivers
15:59:42.871    Service scanning
16:00:07.582    Modules scanning
16:00:07.597    Disk 0 trace - called modules:
16:00:07.613    ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
16:00:07.629    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007bfe060]
16:00:07.644    3 CLASSPNP.SYS[fffff8800181743f] -> nt!IofCallDriver -> [0xfffffa800797b040]
16:00:07.660    5 amd_xata.sys[fffff880010f6b3f] -> nt!IofCallDriver -> \Device\0000006a[0xfffffa80078639c0]
16:00:15.304    AVAST engine scan C:\Windows
16:00:19.531    AVAST engine scan C:\Windows\system32
16:03:30.475    AVAST engine scan C:\Windows\system32\drivers
16:03:45.035    AVAST engine scan C:\Users\James
16:17:21.995    AVAST engine scan C:\ProgramData
16:18:06.691    Scan finished successfully
16:21:00.886    Disk 0 MBR has been saved successfully to "C:\Users\James\Desktop\MBR.dat"
16:21:00.889    The log file has been saved successfully to "C:\Users\James\Desktop\aswMBR.txt"
 

----------------------------------------

 

 



#4 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 28 February 2013 - 07:31 PM

Eset results:

 

C:\Users\All Users\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.crx  -  Win32/bProtector.D application  -

 

C:\ProgramData\Browser Manager\2.3.796.11\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.crx  -  Win32/bProtector.D application  -  deleted - quarantined

 

C:\Users\James\Downloads\Downloads\DownloadSetup(1).exe  -  Win32/InstalleRex.E.Gen application  -  cleaned by deleting - quarantined

 

C:\Users\James\Downloads\Downloads\DownloadSetup.exe  -  Win32/InstallMate application  -  cleaned by deleting - quarantined

 

C:\Users\James\Downloads\Downloads\iLividSetup.exe  -  Win32/Toolbar.SearchSuite application  -  cleaned by deleting - quarantined

 

C:\Users\James\Downloads\Downloads\iLividSetupV1 (1).exe  -  Win32/Toolbar.SearchSuite application  -  cleaned by deleting - quarantined

 

C:\Users\James\Downloads\Downloads\iLividSetupV1 (2).exe  -  Win32/Toolbar.SearchSuite application  -  cleaned by deleting - quarantined

 

C:\Users\James\Downloads\Downloads\iLividSetupV1.exe  -  Win32/Toolbar.SearchSuite application  -  cleaned by deleting - quarantined



#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:41 AM

Posted 28 February 2013 - 08:07 PM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

 



#6 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 01 March 2013 - 01:39 PM

MBAM:

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.01.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
James :: JAMES-PC [administrator]

01/03/2013 18:09:48
mbam-log-2013-03-01 (18-09-48).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 233566
Time elapsed: 3 minute(s), 15 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

 

MiniToolBox

 

MiniToolBox by Farbar  Version:01-03-2013
Ran by James (administrator) on 01-03-2013 at 18:16:20
Running from "C:\Users\James\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com

There are 15311 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Hardware not present)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : James-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Mixed
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 54-04-A6-71-14-5E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : 74-2F-68-6E-BA-72
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::e40a:90c4:c42a:f1f4%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.69(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 01 March 2013 12:04:07
   Lease Expires . . . . . . . . . . : 02 March 2013 17:54:07
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 242495336
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-62-8A-FB-74-2F-68-6E-BA-72
   DNS Servers . . . . . . . . . . . : 192.168.1.254
                                       192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{37AC40EF-5E50-40DC-AE89-25E2CCCA0FFF}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:140b:197a:3f57:feba(Preferred)
   Link-local IPv6 Address . . . . . : fe80::140b:197a:3f57:feba%14(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  BTHomeHub.home
Address:  192.168.1.254

Name:    google.com
Addresses:  2a00:1450:4009:805::1003
      173.194.34.169
      173.194.34.164
      173.194.34.166
      173.194.34.161
      173.194.34.167
      173.194.34.174
      173.194.34.163
      173.194.34.168
      173.194.34.162
      173.194.34.165
      173.194.34.160


Pinging google.com [173.194.34.169] with 32 bytes of data:
Reply from 173.194.34.169: bytes=32 time=27ms TTL=52
Reply from 173.194.34.169: bytes=32 time=26ms TTL=52

Ping statistics for 173.194.34.169:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 26ms, Maximum = 27ms, Average = 26ms
Server:  BTHomeHub.home
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Request timed out.
Reply from 98.139.183.24: bytes=32 time=412ms TTL=45

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 412ms, Maximum = 412ms, Average = 412ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...54 04 a6 71 14 5e ......Realtek PCIe GBE Family Controller
 11...74 2f 68 6e ba 72 ......Atheros AR9285 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.69     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.69    281
     192.168.1.69  255.255.255.255         On-link      192.168.1.69    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.69    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.69    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.69    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:9d38:953c:140b:197a:3f57:feba/128
                                    On-link
 11    281 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::140b:197a:3f57:feba/128
                                    On-link
 11    281 fe80::e40a:90c4:c42a:f1f4/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/01/2013 06:18:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 06:18:28 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 06:18:11 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: ASUSWSShellExt64.dll, version: 1.1.0.27, time stamp: 0x4c7f631d
Exception code: 0xc0000005
Fault offset: 0x00000000000051da
Faulting process id: 0x%9
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3

Error: (03/01/2013 06:18:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 06:18:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 03:56:37 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 03:56:37 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 03:56:27 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 03:56:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/01/2013 03:55:51 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.


System errors:
=============
Error: (03/01/2013 00:05:59 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (03/01/2013 00:04:18 PM) (Source: Service Control Manager) (User: )
Description: The EpsonBidirectionalService service failed to start due to the following error:
%%1053

Error: (03/01/2013 00:04:18 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the EpsonBidirectionalService service to connect.

Error: (03/01/2013 11:58:37 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (03/01/2013 11:56:42 AM) (Source: Service Control Manager) (User: )
Description: The EpsonBidirectionalService service failed to start due to the following error:
%%1053

Error: (03/01/2013 11:56:42 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the EpsonBidirectionalService service to connect.

Error: (03/01/2013 11:56:29 AM) (Source: BugCheck) (User: )
Description: 0x0000009f (0x0000000000000003, 0xfffffa8006d2c4d0, 0xfffff8000449a518, 0xfffffa8010ec1e10)C:\Windows\MEMORY.DMP030113-23400-01

Error: (03/01/2013 11:56:16 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 01:08:26 on ?01/?03/?2013 was unexpected.

Error: (02/28/2013 03:49:53 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (02/28/2013 03:48:41 PM) (Source: Service Control Manager) (User: )
Description: The EpsonBidirectionalService service failed to start due to the following error:
%%1053


Microsoft Office Sessions:
=========================
Error: (03/01/2013 06:18:29 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\James\Downloads\esetsmartinstaller_enu(1).exe

Error: (03/01/2013 06:18:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\James\Downloads\esetsmartinstaller_enu.exe

Error: (03/01/2013 06:18:11 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ASUSWSShellExt64.dll1.1.0.274c7f631dc000000500000000000051da

Error: (03/01/2013 06:18:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\James\Downloads\esetsmartinstaller_enu(1).exe

Error: (03/01/2013 06:18:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\James\Downloads\esetsmartinstaller_enu.exe

Error: (03/01/2013 03:56:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\James\downloads\esetsmartinstaller_enu.exe

Error: (03/01/2013 03:56:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\James\downloads\esetsmartinstaller_enu(1).exe

Error: (03/01/2013 03:56:27 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\James\downloads\esetsmartinstaller_enu.exe

Error: (03/01/2013 03:56:26 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\James\downloads\esetsmartinstaller_enu(1).exe

Error: (03/01/2013 03:55:51 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8


CodeIntegrity Errors:
===================================
  Date: 2013-02-25 17:38:39.986
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-02-25 17:38:39.908
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-05 21:22:15.144
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-05 21:22:15.073
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? (Version: 15.4.5722.2)
???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? (Version: 15.4.5722.2)
??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? (Version: 15.4.5722.2)

Adobe AIR (Version: 3.6.0.5970)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Adobe Reader XI (11.0.02) (Version: 11.0.02)
Adobe Shockwave Player 12.0 (Version: 12.0.0.112)
AMD APP SDK Runtime (Version: 2.5.775.2)
AMD Catalyst Install Manager (Version: 3.0.847.0)
AMD Fuel (Version: 2011.0927.2225.38375)
AMD Media Foundation Decoders (Version: 1.0.60927.2210)
AMD System Monitor (Version: 1.0.8)
AMD VISION Engine Control Center (Version: 2011.0927.2225.38375)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ASUS AI Recovery (Version: 1.0.24)
ASUS FaceLogon (Version: 1.0.0013)
ASUS FancyStart (Version: 1.1.1)
ASUS LifeFrame3 (Version: 3.0.27)
ASUS Live Update (Version: 3.0.8)
ASUS Power4Gear Hybrid (Version: 1.1.50)
ASUS Splendid Video Enhancement Technology (Version: 1.02.0036)
ASUS USB Charger Plus (Version: 2.0.4)
ASUS Virtual Camera (Version: 1.0.24)
ASUS WebStorage (Version: 3.0.84.161)
ASUS_Screensaver
AsusVibe2.0 (Version: 2.0.4.617)
Atheros Client Installation Program (Version: 7.0)
ATK Package (Version: 1.0.0014)
avast! Free Antivirus (Version: 8.0.1482.0)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center InstallProxy (Version: 2011.0927.2225.38375)
Catalyst Control Center Localization All (Version: 2011.0927.2225.38375)
Catalyst Control Center Profiles Mobile (Version: 2011.0927.2225.38375)
CCC Help Chinese Standard (Version: 2011.0927.2224.38375)
CCC Help Chinese Traditional (Version: 2011.0927.2224.38375)
CCC Help Czech (Version: 2011.0927.2224.38375)
CCC Help Danish (Version: 2011.0927.2224.38375)
CCC Help Dutch (Version: 2011.0927.2224.38375)
CCC Help English (Version: 2011.0927.2224.38375)
CCC Help Finnish (Version: 2011.0927.2224.38375)
CCC Help French (Version: 2011.0927.2224.38375)
CCC Help German (Version: 2011.0927.2224.38375)
CCC Help Greek (Version: 2011.0927.2224.38375)
CCC Help Hungarian (Version: 2011.0927.2224.38375)
CCC Help Italian (Version: 2011.0927.2224.38375)
CCC Help Japanese (Version: 2011.0927.2224.38375)
CCC Help Korean (Version: 2011.0927.2224.38375)
CCC Help Norwegian (Version: 2011.0927.2224.38375)
CCC Help Polish (Version: 2011.0927.2224.38375)
CCC Help Portuguese (Version: 2011.0927.2224.38375)
CCC Help Russian (Version: 2011.0927.2224.38375)
CCC Help Spanish (Version: 2011.0927.2224.38375)
CCC Help Swedish (Version: 2011.0927.2224.38375)
CCC Help Thai (Version: 2011.0927.2224.38375)
CCC Help Turkish (Version: 2011.0927.2224.38375)
ccc-utility64 (Version: 2011.0927.2225.38375)
CCleaner (Version: 3.27)
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (Version: 15.4.5722.2)
CyberLink LabelPrint (Version: 2.5.1908)
CyberLink Power2Go (Version: 6.1.3602c)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
dMaintenance
Dropbox (Version: 1.6.16)
EPSON PX720WD Series Printer Uninstall
EPSON PX820FWD Series Printer Uninstall
EPSON Scan
EPSON SX420W Series Printer Uninstall
EpsonNet Print (Version: 2.5.00)
EpsonNet Setup 3.3 (Version: 3.3b)
ESET Online Scanner v3
ETDWare PS/2-X64 8.0.5.1_WHQL (Version: 8.0.5.1)
Fast Boot (Version: 1.0.10)
Google Chrome (Version: 24.0.1312.52)
HiJackThis (Version: 1.0.0)
iCloud (Version: 2.1.1.3)
iTunes (Version: 11.0.2.26)
Java 7 Update 15 (Version: 7.0.150)
Java Auto Updater (Version: 2.1.9.0)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 19.0 (x86 en-US) (Version: 19.0)
Mozilla Maintenance Service (Version: 19.0)
Picasa 3 (Version: 3.8)
QuickTime (Version: 7.73.80.64)
Realtek Ethernet Controller Driver (Version: 7.43.321.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6418)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30127)
Skype Click to Call (Version: 6.6.11664)
Skype™ 6.1 (Version: 6.1.129)
Sonic Focus (Version: 1.0.0.4)
Spotify (Version: 0.8.5.1331.ge9d898e3)
Spybot - Search & Destroy (Version: 1.6.2)
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? (Version: 15.4.5722.2)
syncables desktop SE (Version: 5.5.746.11492)
TeamViewer 8 (Version: 8.0.17292)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
WinFlash (Version: 2.32.2)
Wireless Console 3 (Version: 3.0.24)


========================= Devices: ================================

Name: Hardware Policy Driver
Description: Hardware Policy Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: hwpolicy

Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167

Name: NETBT
Description: NETBT
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NetBT

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp

Name: Keyboard Device Filter
Description: Keyboard Device Filter
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: Keyboard Device Filter
Service: i8042prt

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: KSecDD
Description: KSecDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecDD

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: WAN Miniport (Network Monitor)
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: System speaker
Description: System speaker
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Common Log (CLFS)
Description: Common Log (CLFS)
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CLFS

Name: NSI proxy service driver.
Description: NSI proxy service driver.
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: nsiproxy

Name: USB Composite Device
Description: USB Composite Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbccgp

Name: KSecPkg
Description: KSecPkg
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: KSecPkg

Name: High Definition Audio Controller
Description: High Definition Audio Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus

Name: PCI standard PCI-to-PCI bridge
Description: PCI standard PCI-to-PCI bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: Standard OpenHCD USB Host Controller
Description: Standard OpenHCD USB Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbohci

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: Atheros AR9285 Wireless Network Adapter
Description: Atheros AR9285 Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr

Name: CNG
Description: CNG
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: CNG

Name: PCI bus
Description: PCI bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: Link-Layer Topology Discovery Mapper I/O Driver
Description: Link-Layer Topology Discovery Mapper I/O Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: lltdio

Name: USB2.0 0.3M UVC WebCam
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo

Name: System CMOS/real time clock
Description: System CMOS/real time clock
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: WAN Miniport (IPv6)
Description: WAN Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: TCP/IP Protocol Driver
Description: TCP/IP Protocol Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Tcpip

Name: Ancillary Function Driver for Winsock
Description: Ancillary Function Driver for Winsock
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: AFD

Name: Null
Description: Null
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Null

Name: System board
Description: System board
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: System Attribute Cache
Description: System Attribute Cache
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: discache

Name: TCP/IP Registry Compatibility
Description: TCP/IP Registry Compatibility
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tcpipreg

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe

Name: AMD Radeon™ HD 6480G
Description: AMD Radeon™ HD 6480G
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices, Inc.
Service: amdkmdap

Name: amdkmdag
Description: amdkmdag
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: amdkmdag

Name: PCI standard PCI-to-PCI bridge
Description: PCI standard PCI-to-PCI bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: Generic PnP Monitor
Description: Generic PnP Monitor
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard monitor types)
Service: monitor

Name: Standard Enhanced PCI to USB Host Controller
Description: Standard Enhanced PCI to USB Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbehci

Name: pciide
Description: pciide
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: pciide

Name: Microsoft AC Adapter
Description: Microsoft AC Adapter
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: System board
Description: System board
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Mount Point Manager
Description: Mount Point Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mountmgr

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: LDDM Graphics Subsystem
Description: LDDM Graphics Subsystem
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: DXGKrnl

Name: NetIO Legacy TDI Support Driver
Description: NetIO Legacy TDI Support Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tdx

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: ASMMAP64
Description: ASMMAP64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ASMMAP64

Name: Performance Counters for Windows Driver
Description: Performance Counters for Windows Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: pcw

Name: AMD A4-3300M APU with Radeon™ HD Graphics
Description: AMD Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Advanced Micro Devices
Service: AmdPPM

Name: Windows Firewall Authorization Driver
Description: Windows Firewall Authorization Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mpsdrv

Name: AMD High Definition Audio Device
Description: AMD High Definition Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices
Service: AtiHDAudioService

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp

Name: PEAUTH
Description: PEAUTH
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: PEAUTH

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard PCI-to-PCI bridge
Description: PCI standard PCI-to-PCI bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: AMD SMBus
Description: AMD SMBus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices, Inc
Service:

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Terminal Server Keyboard Driver
Description: Terminal Server Keyboard Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: VgaSave
Description: VgaSave
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: VgaSave

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Terminal Server Mouse Driver
Description: Terminal Server Mouse Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: TermDD

Name: QoS Packet Scheduler
Description: QoS Packet Scheduler
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Psched

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Realtek High Definition Audio
Description: Realtek High Definition Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: IntcAzAudAddService

Name: Numeric data processor
Description: Numeric data processor
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Plug and Play Software Device Enumerator
Description: Plug and Play Software Device Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: swenum

Name: Dynamic Volume Manager
Description: Dynamic Volume Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volmgrx

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: High Definition Audio Controller
Description: High Definition Audio Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus

Name: AMD A4-3300M APU with Radeon™ HD Graphics
Description: AMD Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Advanced Micro Devices
Service: AmdPPM

Name: aswRdr
Description: aswRdr
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswRdr

Name: AMD IO Driver
Description: AMD IO Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: AMD, Inc
Service: amdiox64

Name: msahci
Description: msahci
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: msahci

Name: Microsoft ACPI-Compliant Embedded Controller
Description: Microsoft ACPI-Compliant Embedded Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Storage volumes
Description: Storage volumes
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: volsnap

Name: UMBus Root Bus Enumerator
Description: UMBus Root Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: RDPCDD
Description: RDPCDD
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPCDD

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: aswRvrt
Description: aswRvrt
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswRvrt

Name: WSD Scan Device
Description: WSD Scan Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: WSDScan

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Microsoft ACPI-Compliant Control Method Battery
Description: Microsoft ACPI-Compliant Control Method Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: Microsoft Virtual Drive Enumerator Driver
Description: Microsoft Virtual Drive Enumerator Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: vdrvroot

Name: Virtual WiFi Filter Driver
Description: Virtual WiFi Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: vwififlt

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: RDP Encoder Mirror Driver
Description: RDP Encoder Mirror Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPENCDD

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: PCI standard ISA bridge
Description: PCI standard ISA bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: msisadrv

Name: ACPI Power Button
Description: ACPI Power Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: msisadrv
Description: msisadrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: msisadrv

Name: Volume Manager
Description: Volume Manager
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: volmgr

Name: Remote Access IPv6 ARP Driver
Description: Remote Access IPv6 ARP Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wanarpv6

Name: ACPI Lid
Description: ACPI Lid
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Reflector Display Driver used to gain access to graphics data
Description: Reflector Display Driver used to gain access to graphics data
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: RDPREFMP

Name: aswSP
Description: aswSP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswSP

Name: MATbleepA DVD-RAM UJ8B0AW SATA CdRom Device
Description: CD-ROM Drive
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: ELAN PS/2 Port Smart-Pad
Description: ELAN PS/2 Port Smart-Pad
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: ELAN
Service: i8042prt

Name: Microsoft ISATAP Adapter #2
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Kernel Mode Driver Frameworks service
Description: Kernel Mode Driver Frameworks service
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Wdf01000

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: ACPI Sleep Button
Description: ACPI Sleep Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Link-Layer Topology Discovery Responder
Description: Link-Layer Topology Discovery Responder
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: rspndr

Name: avast! Network Shield Support
Description: avast! Network Shield Support
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswTdi

Name: NativeWiFi Filter
Description: NativeWiFi Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NativeWifiP

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: ACPI Fixed Feature Button
Description: ACPI Fixed Feature Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: PCI standard PCI-to-PCI bridge
Description: PCI standard PCI-to-PCI bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: IPBusEnum Root Enumerator
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: WFP Lightweight Filter
Description: WFP Lightweight Filter
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WfpLwf

Name: Microsoft Windows Management Interface for ACPI
Description: Microsoft Windows Management Interface for ACPI
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: WmiAcpi

Name: Security Driver
Description: Security Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: secdrv

Name: aswVmm
Description: aswVmm
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: aswVmm

Name: ACPI x64-based PC
Description: ACPI x64-based PC
Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard computers)
Service: \Driver\ACPI_HAL

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: NDIS System Driver
Description: NDIS System Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDIS

Name: Programmable interrupt controller
Description: Programmable interrupt controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: ST975042 3AS SATA Disk Device
Description: Disk drive
Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Winsock IFS Driver
Description: Winsock IFS Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ws2ifsl

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr

Name: File as Volume Driver
Description: File as Volume Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: blbdrive

Name: IDE Channel
Description: IDE Channel
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: atapi

Name: UMBus Enumerator
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: NDIS Usermode I/O Protocol
Description: NDIS Usermode I/O Protocol
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Ndisuio

Name: Microsoft ACPI-Compliant System
Description: Microsoft ACPI-Compliant System
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: ACPI

Name: System timer
Description: System timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: User Mode Driver Frameworks Platform Driver
Description: User Mode Driver Frameworks Platform Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: WudfPf

Name: Composite Bus Enumerator
Description: Composite Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: CompositeBus

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: AMD SATA Controller
Description: AMD SATA Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: AMD
Service: amd_sata

Name: AMD USB 3.0 Host Controller
Description: AMD USB 3.0 Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Advanced Micro Devices
Service: amdxhc

Name: WSD Print Device
Description: WSD Print Device
Class Guid: {c30ecea0-11ef-4ef9-b02e-6af81e6e65c0}
Manufacturer: Microsoft
Service: WSDPrintDevice

Name: ATKWMIACPI Driver
Description: ATKWMIACPI Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ATKWMIACPIIO

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: NDProxy
Description: NDProxy
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: NDProxy

Name: AMD USB 3.0 Root Hub
Description: AMD USB 3.0 Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Advanced Micro Devices
Service: amdhub30

Name: Bitlocker Drive Encryption Filter Driver
Description: Bitlocker Drive Encryption Filter Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: fvevol

Name: High precision event timer
Description: High precision event timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft System Management BIOS Driver
Description: Microsoft System Management BIOS Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: mssmbios

Name: Microsoft Composite Battery
Description: Microsoft Composite Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: Compbatt

Name: Beep
Description: Beep
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: Beep

Name: HTTP
Description: HTTP
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: HTTP

Name: WAN Miniport (IKEv2)
Description: WAN Miniport (IKEv2)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasAgileVpn

Name: EPSON60587A
Description: UMBus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: EPSON
Service: umbus

Name: Direct memory access controller
Description: Direct memory access controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: PCI standard host CPU bridge
Description: PCI standard host CPU bridge
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: SDA Standard Compliant SD Host Controller
Description: SDA Standard Compliant SD Host Controller
Class Guid: {a0a588a4-c46f-4b37-b7ea-c82fe89870c6}
Manufacturer: SDA Standard Compliant SD Host Controller Vendor
Service: sdbus


========================= Memory info: ===================================

Percentage of memory in use: 25%
Total physical RAM: 7656.91 MB
Available physical RAM: 5678.49 MB
Total Pagefile: 15312.01 MB
Available Pagefile: 13215.84 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.38 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:300.41 GB) (Free:208.77 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:373.22 GB) (Free:373.12 GB) NTFS

========================= Users: ========================================

User accounts for \\JAMES-PC

Administrator            Guest                    James                    


**** End of log ****

 

FSS

 

Farbar Service Scanner Version: 20-02-2013
Ran by James (administrator) on 01-03-2013 at 18:22:05
Running from "C:\Users\James\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#7 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 01 March 2013 - 02:02 PM

ADWCleaner

 

# AdwCleaner v2.113 - Logfile created 03/01/2013 at 18:23:44
# Updated 23/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : James - JAMES-PC
# Boot Mode : Normal
# Running from : C:\Users\James\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Deleted : C:\Users\James\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\0acgdfdc.default\bprotector_extensions.sqlite
File Deleted : C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\0acgdfdc.default\searchplugins\browsemngr.xml
File Deleted : C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\0acgdfdc.default\searchplugins\Conduit.xml
File Deleted : C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\0acgdfdc.default\searchplugins\MyStart Search.xml
File Deleted : C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\0acgdfdc.default\searchplugins\Search_Results.xml
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Perion
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Browser Manager
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\James\AppData\Local\Conduit
Folder Deleted : C:\Users\James\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\James\AppData\LocalLow\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\0acgdfdc.default\prefs.js

C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\0acgdfdc.default\user.js ... Deleted !

Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3220467&SearchSource=1[...]
Deleted : user_pref("Smartbar.ConduitSearchEngineList", "uTorrentControl_v1 Customized Web Search");
Deleted : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3220467[...]
Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://dts.search-results.com/sr?src=ffb&appid=1[...]
Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3220467");
Deleted : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb139?a=6R8IfmYZv0&i=26");
Deleted : user_pref("browser.search.defaultenginename", "Search Results");
Deleted : user_pref("browser.search.order.1", "Search Results");
Deleted : user_pref("extensions.507c3b517f1ed.scode", "(function(){try{if('aol.com,mail.google.com,mystart.inc[...]
Deleted : user_pref("extensions.incredibar.admin", false);
Deleted : user_pref("extensions.incredibar.aflt", "orgnl");
Deleted : user_pref("extensions.incredibar.cntry", "GB");
Deleted : user_pref("extensions.incredibar.dfltLng", "");
Deleted : user_pref("extensions.incredibar.dfltSrch", false);
Deleted : user_pref("extensions.incredibar.did", "10650");
Deleted : user_pref("extensions.incredibar.envrmnt", "production");
Deleted : user_pref("extensions.incredibar.excTlbr", false);
Deleted : user_pref("extensions.incredibar.hdrMd5", "1CA3E6EA22A486BC6B676D4A2303148E");
Deleted : user_pref("extensions.incredibar.hmpg", false);
Deleted : user_pref("extensions.incredibar.id", "f82dc085000000000000722f686eba72");
Deleted : user_pref("extensions.incredibar.installerproductid", "26");
Deleted : user_pref("extensions.incredibar.instlDay", "15628");
Deleted : user_pref("extensions.incredibar.instlRef", "");
Deleted : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1417:29:41");
Deleted : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Deleted : user_pref("extensions.incredibar.newTab", false);
Deleted : user_pref("extensions.incredibar.noFFXTlbr", false);
Deleted : user_pref("extensions.incredibar.ppd", "53%5F4");
Deleted : user_pref("extensions.incredibar.prdct", "incredibar");
Deleted : user_pref("extensions.incredibar.productid", "26");
Deleted : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Deleted : user_pref("extensions.incredibar.sg", "none");
Deleted : user_pref("extensions.incredibar.smplGrp", "none");
Deleted : user_pref("extensions.incredibar.tlbrId", "base");
Deleted : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8IfmYZv0&loc=IB_T[...]
Deleted : user_pref("extensions.incredibar.upn2", "6R8IfmYZv0");
Deleted : user_pref("extensions.incredibar.upn2n", "92825231082404118");
Deleted : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Deleted : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1417:29:41");
Deleted : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Deleted : user_pref("extensions.incredibar_i.aflt", "orgnl");
Deleted : user_pref("extensions.incredibar_i.dfltLng", "");
Deleted : user_pref("extensions.incredibar_i.did", "10650");
Deleted : user_pref("extensions.incredibar_i.excTlbr", false);
Deleted : user_pref("extensions.incredibar_i.id", "f82dc085000000000000722f686eba72");
Deleted : user_pref("extensions.incredibar_i.installerproductid", "26");
Deleted : user_pref("extensions.incredibar_i.instlDay", "15628");
Deleted : user_pref("extensions.incredibar_i.instlRef", "");
Deleted : user_pref("extensions.incredibar_i.ms_url_id", "");
Deleted : user_pref("extensions.incredibar_i.newTab", false);
Deleted : user_pref("extensions.incredibar_i.ppd", "53%5F4");
Deleted : user_pref("extensions.incredibar_i.prdct", "incredibar");
Deleted : user_pref("extensions.incredibar_i.productid", "26");
Deleted : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Deleted : user_pref("extensions.incredibar_i.smplGrp", "none");
Deleted : user_pref("extensions.incredibar_i.tlbrId", "base");
Deleted : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8IfmYZv0&loc=IB[...]
Deleted : user_pref("extensions.incredibar_i.upn2", "6R8IfmYZv0");
Deleted : user_pref("extensions.incredibar_i.upn2n", "92825231082404118");
Deleted : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Deleted : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1417:29:41");
Deleted : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3220467&SearchSource=2&q=[...]

-\\ Google Chrome v [Unable to get version]

File : C:\Users\James\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.9] : homepage = "hxxp://www.searchnu.com/406",
Deleted [l.13] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]
Deleted [l.47] : search_url = "hxxp://dts.search-results.com/sr?src=crb&appid=157&systemid=406&sr=0&q={searchT[...]
Deleted [l.1937] : homepage = "hxxp://www.searchnu.com/406",
Deleted [l.2254] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]

*************************

AdwCleaner[S1].txt - [9882 octets] - [01/03/2013 18:23:44]

########## EOF - C:\AdwCleaner[S1].txt - [9942 octets] ##########
 

 

JRT log

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.6 (02.27.2013:1)
OS: Windows 7 Home Premium x64
Ran by James on 01/03/2013 at 18:47:31.35
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73-e35ea1ea9990}



~~~ Files



~~~ Folders

Failed to delete: [Folder] "C:\Users\James\appdata\local\torch"
Successfully deleted: [Folder] "C:\Users\James\appdata\locallow\bcool"



~~~ FireFox

Emptied folder: C:\Users\James\AppData\Roaming\mozilla\firefox\profiles\0acgdfdc.default\minidumps [29 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01/03/2013 at 19:02:14.47
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#8 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 01 March 2013 - 02:04 PM

RKill log

 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/01/2013 07:03:18 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Windows\SysWOW64\ACEngSvr.exe (PID: 2480) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * FontCache => %SystemRoot%\system32\svchost.exe -k LocalService [Incorrect ImagePath]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * Cannot edit the HOSTS file.
 * Permissions Fixed. Administrators can now edit the HOSTS file.

 * HOSTS file entries found:

  127.0.0.1       localhost
  127.0.0.1    www.007guard.com
  127.0.0.1    007guard.com
  127.0.0.1    008i.com
  127.0.0.1    www.008k.com
  127.0.0.1    008k.com
  127.0.0.1    www.00hq.com
  127.0.0.1    00hq.com
  127.0.0.1    010402.com
  127.0.0.1    www.032439.com
  127.0.0.1    032439.com
  127.0.0.1    www.0scan.com
  127.0.0.1    0scan.com
  127.0.0.1    www.1000gratisproben.com
  127.0.0.1    1000gratisproben.com
  127.0.0.1    1001namen.com
  127.0.0.1    www.1001namen.com
  127.0.0.1    100888290cs.com
  127.0.0.1    www.100888290cs.com
  127.0.0.1    www.100sexlinks.com

  20 out of 15331 HOSTS entries shown.
  Please review HOSTS file for further entries.

Program finished at: 03/01/2013 07:03:35 PM
Execution time: 0 hours(s), 0 minute(s), and 17 seconds(s)



#9 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 01 March 2013 - 02:06 PM

Autoruns log

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms"    ""    ""    ""
+ "rdpclip"    ""    ""    "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "ETDCtrl"    "ETD Control Center"    "ELAN Microelectronics Corp."    "c:\program files\elantech\etdctrl.exe"
+ "RtHDVBg"    "HD Audio Background Process"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\ravbg64.exe"
+ "Setwallpaper"    ""    ""    "File not found: c:\programdata\SetWallpaper.cmd"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon"    "Apple Push"    "Apple Inc."    "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "ASUSPRP"    "ASUS Product Register Program"    "ASUSTek Computer Inc."    "c:\program files (x86)\asus\aprp\aprp.exe"
+ "ASUSWebStorage"    "AsusWebStorage"    "ecareme"    "c:\program files (x86)\asus\asus webstorage\3.0.84.161\asuswspanel.exe"
+ "ATKMEDIA"    "ATK Media"    "ASUS"    "c:\program files (x86)\asus\atk package\atk media\dmedia.exe"
+ "ATKOSD2"    "ATKOSD2"    "ASUS"    "c:\program files (x86)\asus\atk package\atkosd2\atkosd2.exe"
+ "avast"    "avast! Antivirus"    "AVAST Software"    "c:\program files\avast software\avast\avastui.exe"
+ "HControlUser"    "HControlUser"    "ASUS"    "c:\program files (x86)\asus\atk package\atk hotkey\hcontroluser.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program files (x86)\itunes\ituneshelper.exe"
+ "SonicMasterTray"    "ASUS_MATray.exe"    "Virage Logic Corporation / Sonic Focus"    "c:\program files (x86)\asus\sonic focus\sonicfocustray.exe"
+ "Wireless Console 3"    "Wireless Console 3"    "ASUS"    "c:\program files (x86)\asus\wireless console 3\wcourier.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""
+ "AsusVibeLauncher.lnk"    "AsusVibe Application"    ""    "c:\program files (x86)\asus\asusvibe\asusvibelauncher.exe"
"C:\Users\James\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""
+ "Dropbox.lnk.disabled"    ""    ""    "c:\users\james\appdata\roaming\microsoft\windows\start menu\programs\startup\dropbox.lnk.disabled"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "skype-ie-addon-data"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "avast"    "avast! Shell Extension"    "AVAST Software"    "c:\program files\avast software\avast\ashsha64.dll"
+ "PhotoStreamsExt"    ""    ""    "c:\program files\common files\apple\internet services\shellstreams64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "avast"    "avast! Shell Extension"    "AVAST Software"    "c:\program files\avast software\avast\ashshell.dll"
+ "PhotoStreamsExt"    "ShellStreams.dll"    "Apple Inc."    "c:\program files (x86)\common files\apple\internet services\shellstreams.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "00avast"    "avast! Shell Extension"    "AVAST Software"    "c:\program files\avast software\avast\ashsha64.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "00avast"    "avast! Shell Extension"    "AVAST Software"    "c:\program files\avast software\avast\ashshell.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "ACE"    "AMD Desktop Control Panel"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "avast"    "avast! Shell Extension"    "AVAST Software"    "c:\program files\avast software\avast\ashsha64.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "avast"    "avast! Shell Extension"    "AVAST Software"    "c:\program files\avast software\avast\ashshell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "00avast"    "avast! Shell Extension"    "AVAST Software"    "c:\program files\avast software\avast\ashsha64.dll"
+ "AsusWSShellExt_B"    "AsusWSShellExt64"    "eCareme Technologies, Inc."    "c:\program files (x86)\asus\asus webstorage\3.0.84.161\asuswsshellext64.dll"
+ "AsusWSShellExt_O"    "AsusWSShellExt64"    "eCareme Technologies, Inc."    "c:\program files (x86)\asus\asus webstorage\3.0.84.161\asuswsshellext64.dll"
+ "DropboxExt1"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt2"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt3"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt4"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "DropboxExt1"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\james\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "avast! WebRep"    "avast! WebRep Plugin"    "AVAST Software"    "c:\program files\avast software\avast\aswwebrepie64.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\urlredir.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "avast! WebRep"    "avast! WebRep Plugin"    "AVAST Software"    "c:\program files\avast software\avast\aswwebrepie.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\ssv.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""
+ "avast! WebRep"    "avast! WebRep Plugin"    "AVAST Software"    "c:\program files\avast software\avast\aswwebrepie64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""
+ "avast! WebRep"    "avast! WebRep Plugin"    "AVAST Software"    "c:\program files\avast software\avast\aswwebrepie.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
"Task Scheduler"    ""    ""    ""
+ "\ACMON"    "ACMON "    "ASUS"    "c:\program files (x86)\asus\splendid\acmon.exe"
+ "\Adobe Flash Player Updater"    "Adobe® Flash® Player Update Service 11.6 r602"    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\AIRecoveryRemind"    "AIRecoveryRemind"    "ASUSTek Computer Inc."    "c:\program files (x86)\asus\ai recovery\airecoveryremind.exe"
+ "\Apple\AppleSoftwareUpdate"    "Apple Software Update"    "Apple Inc."    "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\ASUS Live Update"    "ASUS Live Update"    "ASUSTeK Computer Inc."    "c:\program files (x86)\asus\asus live update\liveupdate.exe"
+ "\ASUS P4G"    "Power4Gear Hybrid"    "ASUS"    "c:\program files\asus\p4g\batterylife.exe"
+ "\ASUS SmartLogon Console Sensor"    "FaceLogon Application"    "ASUS"    "c:\program files (x86)\asus\facelogon\sensorsrv.exe"
+ "\ATKOSD2"    "ATKOSD2"    "ASUS"    "c:\program files (x86)\asus\atk package\atkosd2\atkosd2.exe"
+ "\avast! Emergency Update"    "avast! Emergency Update"    "AVAST Software"    "c:\program files\avast software\avast\avastemupdate.exe"
+ "\CCleanerSkipUAC"    "CCleaner"    "Piriform Ltd"    "c:\program files\ccleaner\ccleaner.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1180788943-82985017-3837187227-1001Core"    "Google Installer"    "Google Inc."    "c:\users\james\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1180788943-82985017-3837187227-1001UA"    "Google Installer"    "Google Inc."    "c:\users\james\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan"    "Microsoft Malware Protection Command Line Utility"    "Microsoft Corporation"    "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"    "Windows Media Player Network Sharing Service Configuration Application"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnscfg.exe"
+ "\SidebarExecute"    "Windows Desktop Gadgets"    "Microsoft Corporation"    "c:\program files\windows sidebar\sidebar.exe"
+ "\USBChargerPlus"    "USB Charger+"    "ASUSTek Computer Inc."    "c:\program files (x86)\asus\usbchargerplus\usbchargerplus.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AFBAgent"    "ASUS FastBoot"    "ASUSTeK Computer Inc."    "c:\windows\system32\fbagent.exe"
+ "AMD External Events Utility"    "AMD External Events Service Module"    "AMD"    "c:\windows\system32\atiesrxx.exe"
+ "AMD FUEL Service"    "Provides FUEL Functionality"    "Advanced Micro Devices, Inc."    "c:\program files\ati technologies\ati.ace\fuel\fuel.service.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "ASLDRService"    "ASLDR Service"    "ASUS"    "c:\program files (x86)\asus\atk package\atk hotkey\asldrsrv.exe"
+ "ATKGFNEXSrv"    "GFNEXSrv"    "ASUS"    "c:\program files (x86)\asus\atk package\atkgfnex\gfnexsrv.exe"
+ "avast! Antivirus"    "Manages and implements avast! antivirus services for this computer. This includes the resident protection, the virus chest and the scheduler."    "AVAST Software"    "c:\program files\avast software\avast\avastsvc.exe"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"
+ "EpsonBidirectionalService"    "eEBAPI Core Process module"    "SEIKO EPSON CORPORATION"    "c:\program files (x86)\common files\epson\ebapi\eebsvc.exe"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc"    "Office Software Protection Platform Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Skype C2C Service"    "Skype Click to Call Update Service"    "Skype Technologies S.A."    "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate"    "Enables the detection, download and installation of updates for Skype."    "Skype Technologies"    "c:\program files (x86)\skype\updater\updater.exe"
+ "TeamViewer8"    "TeamViewer Remote Software"    "TeamViewer GmbH"    "c:\program files (x86)\teamviewer\version8\teamviewer_service.exe"
+ "WinDefend"    "Protection against spyware and potentially unwanted software"    "Microsoft Corporation"    "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"
+ "AiCharger"    "ASUS Charger driver"    "ASUSTek Computer Inc."    "c:\windows\system32\drivers\aicharger.sys"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"
+ "amd_sata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amd_sata.sys"
+ "amd_xata"    "Stor Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amd_xata.sys"
+ "amdhub30"    "AMD USB 3.0 Hub Driver"    "Advanced Micro Devices, INC."    "c:\windows\system32\drivers\amdhub30.sys"
+ "amdiox64"    "AMD IO Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdiox64.sys"
+ "amdkmdag"    "ATI Radeon Kernel Mode Driver"    "ATI Technologies Inc."    "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap"    "AMD multi-vendor Miniport Driver"    "Advanced Micro Devices, Inc."    "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"
+ "amdxhc"    "AMD USB 3.0 Host Controller Driver"    "Advanced Micro Devices, INC."    "c:\windows\system32\drivers\amdxhc.sys"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"
+ "ASMMAP64"    "Memory mapping Driver"    "ASUS"    "c:\program files (x86)\asus\atk package\atkgfnex\asmmap64.sys"
+ "aswFsBlk"    "avast! mini-filter driver (aswFsBlk)"    "AVAST Software"    "c:\windows\system32\drivers\aswfsblk.sys"
+ "aswMonFlt"    "avast! mini-filter driver (aswMonFlt)"    "AVAST Software"    "c:\windows\system32\drivers\aswmonflt.sys"
+ "aswRdr"    "avast! WFP Redirect driver"    "AVAST Software"    "c:\windows\system32\drivers\aswrdr2.sys"
+ "aswRvrt"    "avast! Revert"    ""    "c:\windows\system32\drivers\aswrvrt.sys"
+ "aswSnx"    "avast! virtualization driver (aswSnx)"    "AVAST Software"    "c:\windows\system32\drivers\aswsnx.sys"
+ "aswSP"    "avast! Self Protection"    "AVAST Software"    "c:\windows\system32\drivers\aswsp.sys"
+ "aswTdi"    "avast! Network Shield TDI driver"    "AVAST Software"    "c:\windows\system32\drivers\aswtdi.sys"
+ "aswVmm"    "avast! VM Monitor"    ""    "c:\windows\system32\drivers\aswvmm.sys"
+ "athr"    "Atheros Extensible Wireless LAN device driver"    "Atheros Communications, Inc."    "c:\windows\system32\drivers\athrx.sys"
+ "AtiHDAudioService"    "AMD High Definition Audio Function Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\atihdw76.sys"
+ "atillk64"    ""    ""    "File not found: C:\Program Files (x86)\AMD\System Monitor\atillk64.sys"
+ "ATKWMIACPIIO"    "ATK WMIACPI Utility"    "ASUS"    "c:\program files (x86)\asus\atk package\atk wmiacpi\atkwmiacpi64.sys"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"
+ "catchme"    ""    ""    "File not found: C:\ComboFix\catchme.sys"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"
+ "ETD"    "ETD Kernel Center"    "ELAN Microelectronics Corp."    "c:\windows\system32\drivers\etd.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtkvhd64.sys"
+ "kbfiltr"    "Keyboard Filter Driver"    " "    "c:\windows\system32\drivers\kbfiltr.sys"
+ "L1C"    "Atheros L1c PCI-E Gigabit Ethernet Controller"    "Atheros Communications, Inc."    "c:\windows\system32\drivers\l1c62x64.sys"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"
+ "RSUSBSTOR"    "Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtsustor.sys"
+ "RTL8167"    "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                "    "Realtek                                            "    "c:\windows\system32\drivers\rt64win7.sys"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "Serial"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\serial.sys"
+ "SiSGbeLH"    "NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisg664.sys"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl64.sys"
+ "usbfilter"    "AMD USB Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\usbfilter.sys"
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "ASUS Color Convert"    "ASUS Color Preview Filter"    "ASUSTek"    "c:\program files (x86)\asus\splendid\rgbtran.ax"
+ "ASUS Color Preview Filter"    "ASUS Color Preview Filter"    "ASUSTek"    "c:\program files (x86)\asus\splendid\rgbtran.ax"
+ "ASUS SplitVCam Pump"    ""    ""    "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "ASUS SplitVCam Relayer"    ""    ""    "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "ASUS SplitVCam Renderer"    ""    ""    "c:\program files (x86)\asus\virtualcamera\splitvcamrenderer.ax"
+ "ASUS Virtual Camera"    ""    ""    "c:\program files (x86)\asus\virtualcamera\virtualcamera.ax"
+ "CyberLink Audio Noise Reduction"    "CLAuNR"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler"    "CLAuRsmpl.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster"    "CyberLink Audio Volume Booster Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink AudioCD Filter"    "CyberLink AudioCD Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "Cyberlink Dump Dispatch Filter"    "Cyberlink File Dump Dispatch Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter"    "Cyberlink File Dump Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink Editing Service 3.0 (Source)"    "CES Kernel"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)"    "Cyberlink MPEG File Reader"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink Load Image Filter"    "CLImage"    "CyberLink"    "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer"    "CLM2VWriter"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper"    "CyberLink MP3 Wrapper"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer"    "MpgMux"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Video Encoder"    "CyberLink MPEG Video Encoder                               "    "CyberLink Corp.                                            "    "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter"    "CyberLink MPEG Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter"    "CyberLink MPEG Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink PCM Wrapper"    "CyberLink PCM Wrapper"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink TimeStretch Filter (CES)"    "CLAuTS.ax"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TL MPEG Splitter"    "CyberLink MPEG Splitter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Video Effect"    "CLVidFx"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator"    "CLRGL"    "Cyberlink"    "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer"    "CLVideoDeShaking"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "Gargle"    "Gargle Filter (Sample)"    "Microsoft Corporation"    "c:\program files (x86)\asus\asus lifeframe3\lifeframeaudio.ax"
+ "LifeFrame Image Effects"    "Camera Filter"    "ASUS"    "c:\program files (x86)\asus\asus lifeframe3\camera_effect.ax"
+ "Logon Effects"    "SmartLogon Filter"    "ASUS"    "c:\program files (x86)\asus\facelogon\face_filter.ax"
+ "MotionDetect"    ""    ""    "c:\program files (x86)\asus\asus lifeframe3\motiondetect.ax"
+ "P2G Audio Decoder"    "CyberLink Audio Decoder Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder"    "CyberLink Audio Encoder Filter"    "Cyberlink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator"    "CyberLink Video Regulator"    "CyberLink"    "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""
+ "FaceCredentialProvider64"    "FaceLogon Dynamic Link Library"    "ASUS"    "c:\program files (x86)\asus\facelogon\system\facecredentialprovider64.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files (x86)\bonjour\mdnsnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "Epson Inbox Language Monitor01"    "Epson Printer Driver"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\ep0slm01.dll"
+ "EPSON PX720WD Series 64MonitorBE"    "EPSON Bi-directional Monitor AMD64"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_ilmgye.dll"
+ "EPSON PX820FWD Series 64MonitorBE"    "EPSON Bi-directional Monitor AMD64"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_ilmgxe.dll"
+ "EPSON SX420W Series 64MonitorBE"    "EPSON Bi-directional Monitor AMD64"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_ilmgce.dll"
+ "EpsonNet Print Port"    "EpsonNet Print Port Monitor DLL"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\enppmon.dll"
"C:\Users\James\AppData\Local\Microsoft\Windows Sidebar\Settings.ini"    ""    ""    ""
+ ""    ""    ""    "C:\Program Files\Windows Sidebar\Gadgets\Norton.Gadget"
+ "Avast! antivirus monitor"    "Avast! antivirus sidebar gadget."    "AVAST Software"    "C:\Program Files\Windows Sidebar\Shared Gadgets\aswSidebar.gadget\Gadget.xml"
+ "Power4Gear"    "ASUS Power4Gear Utility"    "ASUSTek Corporation"    "C:\Program Files\Windows Sidebar\Shared Gadgets\P4GUpdate.Gadget\Gadget.xml"



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:41 AM

Posted 01 March 2013 - 02:09 PM

Right click on Junkware removal tool-select run as administrator

 

Please post the new log generated


Edited by narenxp, 01 March 2013 - 02:10 PM.


#11 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 01 March 2013 - 02:28 PM

JRT log as Administrator

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.6 (02.27.2013:1)
OS: Windows 7 Home Premium x64
Ran by James on 01/03/2013 at 19:11:57.09
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\James\appdata\local\torch"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01/03/2013 at 19:26:36.39
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

Thanks Naren! :)



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:41 AM

Posted 01 March 2013 - 02:48 PM

Current issues?



#13 spooncake

spooncake
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:41 AM

Posted 01 March 2013 - 03:01 PM

Hi Naren,

 

Many thanks for your continued help.

 

Still getting an issue with Windows Explorer crashing when going through different folders, for instance between Desktop and Downloads..

 

Had a look through Event Viewer and it's stating an error code 1000 (0xc0000005).



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:41 AM

Posted 01 March 2013 - 03:11 PM

Go to add or remove programs and uninstall  ASUS webstorage.Restart the PC and you will not have crashes :)

 

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users