Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

FBI.Cybercrime Division what is this????????


  • Please log in to reply
24 replies to this topic

#1 anjulZ

anjulZ

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 05 March 2013 - 10:52 AM

The laptop, ASUS X53U, AMD dual, Windows 7, is locked on to this page, saying that they were viewing child pornography,( they were not,) & they hafta pay $300 thru Money Pak, to get rid of this "virus" that they picked up.

FBI.Cybercrime Division, International Cyber Security Protection Alliance, does NOT have an address bar ...

safe mode trys to load, but Im getting a white screen well gray? nothing no task bar nothing

 


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 05 March 2013 - 10:55 AM


Select System restore

If you have a previous restore point ,restore it and let me know if you can boot now


Edited by narenxp, 08 March 2013 - 09:21 AM.


#3 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 05 March 2013 - 11:06 AM

Hallelujah! restoring now...sec


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#4 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 05 March 2013 - 11:14 AM

I HAVE A DESKTOP!!!!

Anything else???


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 05 March 2013 - 11:19 AM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


 



#6 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 07 March 2013 - 09:10 AM

its not letting me paste

apologize for my delay I was off yesterday, this is my boss' laptop

trying something else brb


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#7 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 07 March 2013 - 09:46 AM

tds

  •  
To
11:25:50.0481 3448  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:25:51.0292 3448  ============================================================
11:25:51.0292 3448  Current date / time: 2013/03/05 11:25:51.0292
11:25:51.0292 3448  SystemInfo:
11:25:51.0292 3448 
11:25:51.0292 3448  OS Version: 6.1.7600 ServicePack: 0.0
11:25:51.0292 3448  Product type: Workstation
11:25:51.0292 3448  ComputerName: PHILLIP-PC
11:25:51.0292 3448  UserName: phillip
11:25:51.0292 3448  Windows directory: C:\Windows
11:25:51.0292 3448  System windows directory: C:\Windows
11:25:51.0292 3448  Running under WOW64
11:25:51.0292 3448  Processor architecture: Intel x64
11:25:51.0292 3448  Number of processors: 2
11:25:51.0292 3448  Page size: 0x1000
11:25:51.0292 3448  Boot type: Normal boot
11:25:51.0292 3448  ============================================================
11:25:55.0005 3448  BG loaded
11:25:56.0784 3448  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:25:57.0174 3448  Drive \Device\Harddisk1\DR1 - Size: 0xEFD00000 (3.75 Gb), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:25:57.0189 3448  ============================================================
11:25:57.0189 3448  \Device\Harddisk0\DR0:
11:25:57.0236 3448  MBR partitions:
11:25:57.0236 3448  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3200800, BlocksNum 0x1005B800
11:25:57.0298 3448  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1325C800, BlocksNum 0x121D2000
11:25:57.0298 3448  \Device\Harddisk1\DR1:
11:25:57.0298 3448  MBR partitions:
11:25:57.0298 3448  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0x77C880
11:25:57.0298 3448  ============================================================
11:25:58.0078 3448  C: <-> \Device\Harddisk0\DR0\Partition1
11:25:58.0515 3448  D: <-> \Device\Harddisk0\DR0\Partition2
11:25:58.0515 3448  ============================================================
11:25:58.0515 3448  Initialize success
11:25:58.0515 3448  ============================================================
11:26:22.0363 3644  ============================================================
11:26:22.0363 3644  Scan started
11:26:22.0363 3644  Mode: Manual;
11:26:22.0363 3644  ============================================================
11:26:31.0208 3644  ================ Scan system memory ========================
11:26:31.0208 3644  System memory - ok
11:26:31.0208 3644  ================ Scan services =============================
11:26:34.0765 3644  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
11:26:34.0968 3644  1394ohci - ok
11:26:35.0124 3644  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
11:26:35.0249 3644  ACPI - ok
11:26:35.0342 3644  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
11:26:35.0436 3644  AcpiPmi - ok
11:26:36.0216 3644  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:26:36.0216 3644  AdobeARMservice - ok
11:26:39.0196 3644  [ 76D5A3D2A50402A0B9B6ED13C4371E79 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:26:39.0243 3644  AdobeFlashPlayerUpdateSvc - ok
11:26:39.0726 3644  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
11:26:39.0898 3644  adp94xx - ok
11:26:40.0241 3644  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
11:26:40.0241 3644  adpahci - ok
11:26:40.0413 3644  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
11:26:40.0413 3644  adpu320 - ok
11:26:40.0522 3644  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:26:40.0522 3644  AeLookupSvc - ok
11:26:40.0709 3644  [ 6E79A119B0CE418FE44E0C824BF3F039 ] AFBAgent        C:\Windows\system32\FBAgent.exe
11:26:40.0725 3644  AFBAgent - ok
11:26:40.0834 3644  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
11:26:40.0834 3644  AFD - ok
11:26:40.0927 3644  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
11:26:40.0927 3644  agp440 - ok
11:26:41.0146 3644  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
11:26:41.0146 3644  ALG - ok
11:26:41.0271 3644  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
11:26:41.0489 3644  aliide - ok
11:26:41.0692 3644  [ E5BD1B0943B6AA242B79995B42CCD1F8 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:26:41.0707 3644  AMD External Events Utility - ok
11:26:41.0973 3644  AMD FUEL Service - ok
11:26:42.0253 3644  [ DD27F6C3DE9BFE50635C721E09EDC5DD ] AMD Reservation Manager C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
11:26:42.0253 3644  AMD Reservation Manager - ok
11:26:42.0425 3644  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
11:26:42.0441 3644  amdide - ok
11:26:42.0565 3644  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
11:26:42.0581 3644  amdiox64 - ok
11:26:42.0706 3644  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
11:26:42.0721 3644  AmdK8 - ok
11:26:44.0250 3644  [ 7DCF6685CC9195607537B082CD853F35 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:26:44.0375 3644  amdkmdag - ok
11:26:44.0625 3644  [ 540FC730CAC044D1482AF874FDC43B9A ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
11:26:44.0625 3644  amdkmdap - ok
11:26:44.0703 3644  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
11:26:44.0703 3644  AmdPPM - ok
11:26:44.0874 3644  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:26:44.0890 3644  amdsata - ok
11:26:45.0015 3644  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
11:26:45.0015 3644  amdsbs - ok
11:26:45.0124 3644  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:26:45.0124 3644  amdxata - ok
11:26:45.0233 3644  [ CAEE7C1AFC9F1C9EE8DD11ACD18D22E7 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
11:26:45.0233 3644  amd_sata - ok
11:26:45.0327 3644  [ 23726116B4FBCC84FC45B95157C08F5F ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
11:26:45.0342 3644  amd_xata - ok
11:26:45.0732 3644  [ E8494519BCB9E3B1B72E5604993A76E3 ] Amsp            C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
11:26:45.0732 3644  Amsp - ok
11:26:45.0873 3644  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
11:26:45.0873 3644  AppID - ok
11:26:46.0013 3644  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:26:46.0013 3644  AppIDSvc - ok
11:26:46.0169 3644  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
11:26:46.0169 3644  Appinfo - ok
11:26:46.0387 3644  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
11:26:46.0403 3644  arc - ok
11:26:46.0497 3644  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
11:26:46.0497 3644  arcsas - ok
11:26:46.0840 3644  [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
11:26:46.0840 3644  ASLDRService - ok
11:26:46.0965 3644  [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
11:26:46.0965 3644  ASMMAP64 - ok
11:26:47.0152 3644  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:26:47.0167 3644  AsyncMac - ok
11:26:47.0355 3644  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
11:26:47.0370 3644  atapi - ok
11:26:48.0213 3644  [ B2931C83CFB12A3223A47B180473AE1A ] athr            C:\Windows\system32\DRIVERS\athrx.sys
11:26:48.0259 3644  athr - ok
11:26:48.0509 3644  [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
11:26:48.0509 3644  AtiHDAudioService - ok
11:26:48.0556 3644  [ 7910158929571214A959D5A6D16DD9C0 ] ATKGFNEXSrv     C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
11:26:48.0556 3644  ATKGFNEXSrv - ok
11:26:48.0790 3644  [ 1F7238A37389ED92E9D8EEE975CABD54 ] ATKWMIACPIIO    C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
11:26:48.0790 3644  ATKWMIACPIIO - ok
11:26:49.0024 3644  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:26:49.0039 3644  AudioEndpointBuilder - ok
11:26:49.0133 3644  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:26:49.0149 3644  AudioSrv - ok
11:26:49.0351 3644  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:26:49.0351 3644  AxInstSV - ok
11:26:49.0601 3644  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
11:26:49.0601 3644  b06bdrv - ok
11:26:49.0804 3644  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:26:49.0819 3644  b57nd60a - ok
11:26:49.0991 3644  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:26:49.0991 3644  BDESVC - ok
11:26:50.0163 3644  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:26:50.0163 3644  Beep - ok
11:26:50.0490 3644  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
11:26:50.0506 3644  BFE - ok
11:26:50.0771 3644  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\System32\qmgr.dll
11:26:50.0787 3644  BITS - ok
11:26:50.0880 3644  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:26:50.0880 3644  blbdrive - ok
11:26:50.0989 3644  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:26:50.0989 3644  bowser - ok
11:26:51.0099 3644  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:26:51.0099 3644  BrFiltLo - ok
11:26:51.0145 3644  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:26:51.0145 3644  BrFiltUp - ok
11:26:51.0239 3644  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
11:26:51.0239 3644  BridgeMP - ok
11:26:51.0364 3644  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
11:26:51.0364 3644  Browser - ok
11:26:51.0457 3644  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:26:51.0473 3644  Brserid - ok
11:26:51.0520 3644  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:26:51.0535 3644  BrSerWdm - ok
11:26:51.0567 3644  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:26:51.0567 3644  BrUsbMdm - ok
11:26:51.0613 3644  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:26:51.0613 3644  BrUsbSer - ok
11:26:51.0754 3644  [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
11:26:51.0754 3644  BTCFilterService - ok
11:26:51.0894 3644  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
11:26:51.0910 3644  BthEnum - ok
11:26:52.0050 3644  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
11:26:52.0050 3644  BTHMODEM - ok
11:26:52.0128 3644  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
11:26:52.0128 3644  BthPan - ok
11:26:52.0440 3644  [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
11:26:52.0456 3644  BTHPORT - ok
11:26:52.0549 3644  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
11:26:52.0549 3644  bthserv - ok
11:26:52.0612 3644  [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
11:26:52.0612 3644  BTHUSB - ok
11:26:52.0690 3644  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:26:52.0690 3644  cdfs - ok
11:26:52.0830 3644  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:26:52.0846 3644  cdrom - ok
11:26:53.0017 3644  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
11:26:53.0017 3644  CertPropSvc - ok
11:26:53.0127 3644  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:26:53.0127 3644  circlass - ok
11:26:53.0251 3644  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
11:26:53.0267 3644  CLFS - ok
11:26:53.0641 3644  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:26:53.0641 3644  clr_optimization_v2.0.50727_32 - ok
11:26:53.0829 3644  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:26:53.0829 3644  clr_optimization_v2.0.50727_64 - ok
11:26:54.0375 3644  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:26:54.0624 3644  clr_optimization_v4.0.30319_32 - ok
11:26:54.0874 3644  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:26:54.0874 3644  clr_optimization_v4.0.30319_64 - ok
11:26:54.0936 3644  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:26:54.0936 3644  CmBatt - ok
11:26:54.0967 3644  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
11:26:54.0983 3644  cmdide - ok
11:26:55.0061 3644  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
11:26:55.0077 3644  CNG - ok
11:26:55.0186 3644  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:26:55.0186 3644  Compbatt - ok
11:26:55.0217 3644  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
11:26:55.0217 3644  CompositeBus - ok
11:26:55.0264 3644  COMSysApp - ok
11:26:55.0295 3644  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
11:26:55.0295 3644  crcdisk - ok
11:26:55.0404 3644  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:26:55.0404 3644  CryptSvc - ok
11:26:55.0529 3644  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:26:55.0545 3644  DcomLaunch - ok
11:26:55.0654 3644  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
11:26:55.0669 3644  defragsvc - ok
11:26:55.0732 3644  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:26:55.0732 3644  DfsC - ok
11:26:55.0857 3644  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:26:55.0857 3644  Dhcp - ok
11:26:55.0919 3644  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
11:26:55.0919 3644  discache - ok
11:26:56.0028 3644  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
11:26:56.0044 3644  Disk - ok
11:26:56.0106 3644  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:26:56.0122 3644  Dnscache - ok
11:26:56.0247 3644  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
11:26:56.0247 3644  dot3svc - ok
11:26:56.0325 3644  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
11:26:56.0340 3644  DPS - ok
11:26:56.0387 3644  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:26:56.0387 3644  drmkaud - ok
11:26:56.0559 3644  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:26:56.0590 3644  DXGKrnl - ok
11:26:56.0730 3644  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
11:26:56.0746 3644  EapHost - ok
11:26:56.0995 3644  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
11:26:57.0136 3644  ebdrv - ok
11:26:57.0198 3644  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
11:26:57.0198 3644  EFS - ok
11:26:57.0292 3644  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:26:57.0323 3644  ehRecvr - ok
11:26:57.0432 3644  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
11:26:57.0432 3644  ehSched - ok
11:26:57.0619 3644  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
11:26:57.0635 3644  elxstor - ok
11:26:57.0651 3644  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
11:26:57.0651 3644  ErrDev - ok
11:26:57.0760 3644  [ 4C120D2B2EA269EAE7A5744794EB6DB1 ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
11:26:57.0760 3644  ETD - ok
11:26:57.0900 3644  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
11:26:57.0900 3644  EventSystem - ok
11:26:57.0947 3644  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
11:26:57.0963 3644  exfat - ok
11:26:58.0025 3644  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:26:58.0041 3644  fastfat - ok
11:26:58.0228 3644  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
11:26:58.0243 3644  Fax - ok
11:26:58.0275 3644  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:26:58.0275 3644  fdc - ok
11:26:58.0321 3644  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:26:58.0337 3644  fdPHost - ok
11:26:58.0368 3644  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:26:58.0368 3644  FDResPub - ok
11:26:58.0399 3644  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:26:58.0399 3644  FileInfo - ok
11:26:58.0431 3644  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:26:58.0446 3644  Filetrace - ok
11:26:58.0477 3644  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:26:58.0477 3644  flpydisk - ok
11:26:58.0555 3644  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:26:58.0571 3644  FltMgr - ok
11:26:58.0852 3644  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
11:26:58.0883 3644  FontCache - ok
11:26:59.0039 3644  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:26:59.0055 3644  FontCache3.0.0.0 - ok
11:26:59.0507 3644  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:26:59.0523 3644  FsDepends - ok
11:26:59.0663 3644  [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
11:26:59.0679 3644  fssfltr - ok
11:27:00.0240 3644  [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
11:27:00.0287 3644  fsssvc - ok
11:27:00.0349 3644  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:27:00.0349 3644  Fs_Rec - ok
11:27:00.0537 3644  [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:27:00.0552 3644  fvevol - ok
11:27:00.0677 3644  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
11:27:00.0693 3644  gagp30kx - ok
11:27:00.0849 3644  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
11:27:00.0864 3644  gpsvc - ok
11:27:01.0083 3644  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:27:01.0083 3644  gupdate - ok
11:27:01.0176 3644  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:27:01.0192 3644  gupdatem - ok
11:27:01.0317 3644  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
11:27:01.0332 3644  gusvc - ok
11:27:01.0379 3644  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:27:01.0379 3644  hcw85cir - ok
11:27:01.0441 3644  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:27:01.0441 3644  HdAudAddService - ok
11:27:01.0488 3644  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:27:01.0504 3644  HDAudBus - ok
11:27:01.0519 3644  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:27:01.0519 3644  HidBatt - ok
11:27:01.0535 3644  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
11:27:01.0551 3644  HidBth - ok
11:27:01.0582 3644  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
11:27:01.0582 3644  HidIr - ok
11:27:01.0644 3644  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
11:27:01.0644 3644  hidserv - ok
11:27:01.0753 3644  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:27:01.0753 3644  HidUsb - ok
11:27:01.0800 3644  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:27:01.0816 3644  hkmsvc - ok
11:27:01.0909 3644  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:27:01.0909 3644  HomeGroupListener - ok
11:27:01.0956 3644  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:27:01.0972 3644  HomeGroupProvider - ok
11:27:02.0003 3644  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
11:27:02.0019 3644  HpSAMD - ok
11:27:02.0112 3644  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:27:02.0128 3644  HTTP - ok
11:27:02.0206 3644  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:27:02.0206 3644  hwpolicy - ok
11:27:02.0268 3644  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
11:27:02.0284 3644  i8042prt - ok
11:27:02.0331 3644  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:27:02.0346 3644  iaStorV - ok
11:27:02.0611 3644  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:27:02.0627 3644  idsvc - ok
11:27:02.0689 3644  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
11:27:02.0705 3644  iirsp - ok
11:27:02.0923 3644  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
11:27:02.0955 3644  IKEEXT - ok
11:27:03.0454 3644  [ B60ACCD29F8FAFC4A6344CD2BD5CA3A5 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:27:03.0501 3644  IntcAzAudAddService - ok
11:27:03.0532 3644  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
11:27:03.0532 3644  intelide - ok
11:27:03.0610 3644  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:27:03.0610 3644  intelppm - ok
11:27:03.0672 3644  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:27:03.0672 3644  IPBusEnum - ok
11:27:03.0703 3644  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:27:03.0703 3644  IpFilterDriver - ok
11:27:03.0828 3644  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:27:03.0844 3644  iphlpsvc - ok
11:27:03.0891 3644  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
11:27:03.0906 3644  IPMIDRV - ok
11:27:03.0953 3644  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:27:03.0969 3644  IPNAT - ok
11:27:04.0015 3644  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:27:04.0015 3644  IRENUM - ok
11:27:04.0047 3644  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
11:27:04.0047 3644  isapnp - ok
11:27:04.0109 3644  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
11:27:04.0125 3644  iScsiPrt - ok
11:27:04.0171 3644  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:27:04.0171 3644  kbdclass - ok
11:27:04.0203 3644  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:27:04.0203 3644  kbdhid - ok
11:27:04.0281 3644  [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr         C:\Windows\system32\DRIVERS\kbfiltr.sys
11:27:04.0281 3644  kbfiltr - ok
11:27:04.0312 3644  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
11:27:04.0312 3644  KeyIso - ok
11:27:04.0374 3644  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:27:04.0374 3644  KSecDD - ok
11:27:04.0468 3644  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:27:04.0468 3644  KSecPkg - ok
11:27:04.0530 3644  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:27:04.0530 3644  ksthunk - ok
11:27:04.0608 3644  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:27:04.0624 3644  KtmRm - ok
11:27:04.0858 3644  [ 033B4AED2C5519072C0D81E00804D003 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
11:27:04.0858 3644  L1C - ok
11:27:04.0936 3644  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\System32\srvsvc.dll
11:27:04.0951 3644  LanmanServer - ok
11:27:05.0014 3644  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:27:05.0014 3644  LanmanWorkstation - ok
11:27:05.0076 3644  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:27:05.0076 3644  lltdio - ok
11:27:05.0107 3644  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:27:05.0139 3644  lltdsvc - ok
11:27:05.0185 3644  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:27:05.0185 3644  lmhosts - ok
11:27:05.0404 3644  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
11:27:05.0435 3644  LSI_FC - ok
11:27:05.0482 3644  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
11:27:05.0497 3644  LSI_SAS - ok
11:27:05.0591 3644  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:27:05.0591 3644  LSI_SAS2 - ok
11:27:05.0685 3644  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:27:05.0685 3644  LSI_SCSI - ok
11:27:05.0809 3644  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
11:27:05.0809 3644  luafv - ok
11:27:05.0934 3644  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:27:05.0950 3644  Mcx2Svc - ok
11:27:06.0075 3644  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
11:27:06.0075 3644  megasas - ok
11:27:06.0215 3644  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
11:27:06.0215 3644  MegaSR - ok
11:27:06.0371 3644  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
11:27:06.0371 3644  MMCSS - ok
11:27:06.0465 3644  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
11:27:06.0480 3644  Modem - ok
11:27:06.0652 3644  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:27:06.0652 3644  monitor - ok
11:27:06.0886 3644  [ 43E754047C6DEE50666554D3C66D6279 ] motccgp         C:\Windows\system32\DRIVERS\motccgp.sys
11:27:06.0886 3644  motccgp - ok
11:27:06.0995 3644  [ 577399C75CF85AC68E7830EB150F45EF ] motccgpfl       C:\Windows\system32\DRIVERS\motccgpfl.sys
11:27:07.0057 3644  motccgpfl - ok
11:27:07.0369 3644  [ AC9D6E3629E4388A9EA9B4172493AAEE ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
11:27:07.0369 3644  Motorola Device Manager - ok
11:27:07.0463 3644  [ 19BC2161C3FCCED802F1BCD9B78C3466 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
11:27:07.0463 3644  MotoSwitchService - ok
11:27:07.0557 3644  [ C4F1495598C7E1FEF53BCFD84A5BD53E ] Motousbnet      C:\Windows\system32\DRIVERS\Motousbnet.sys
11:27:07.0572 3644  Motousbnet - ok
11:27:07.0713 3644  [ D075B1D964A314D240F5498773EE89DF ] motusbdevice    C:\Windows\system32\DRIVERS\motusbdevice.sys
11:27:07.0713 3644  motusbdevice - ok
11:27:07.0791 3644  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:27:07.0806 3644  mouclass - ok
11:27:07.0869 3644  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:27:07.0869 3644  mouhid - ok
11:27:07.0931 3644  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:27:07.0947 3644  mountmgr - ok
11:27:07.0993 3644  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
11:27:08.0009 3644  mpio - ok
11:27:08.0025 3644  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:27:08.0025 3644  mpsdrv - ok
11:27:08.0212 3644  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:27:08.0243 3644  MpsSvc - ok
11:27:08.0555 3644  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:27:08.0571 3644  MRxDAV - ok
11:27:08.0617 3644  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:27:08.0617 3644  mrxsmb - ok
11:27:08.0680 3644  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:27:08.0695 3644  mrxsmb10 - ok
11:27:08.0727 3644  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:27:08.0727 3644  mrxsmb20 - ok
11:27:08.0758 3644  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
11:27:08.0758 3644  msahci - ok
11:27:08.0805 3644  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
11:27:08.0805 3644  msdsm - ok
11:27:08.0851 3644  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
11:27:08.0851 3644  MSDTC - ok
11:27:08.0914 3644  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:27:08.0929 3644  Msfs - ok
11:27:08.0961 3644  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:27:08.0961 3644  mshidkmdf - ok
11:27:08.0992 3644  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
11:27:09.0007 3644  msisadrv - ok
11:27:09.0085 3644  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:27:09.0101 3644  MSiSCSI - ok
11:27:09.0117 3644  msiserver - ok
11:27:09.0226 3644  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:27:09.0226 3644  MSKSSRV - ok
11:27:09.0241 3644  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:27:09.0241 3644  MSPCLOCK - ok
11:27:09.0273 3644  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:27:09.0273 3644  MSPQM - ok
11:27:09.0366 3644  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:27:09.0382 3644  MsRPC - ok
11:27:09.0429 3644  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
11:27:09.0429 3644  mssmbios - ok
11:27:09.0460 3644  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:27:09.0460 3644  MSTEE - ok
11:27:09.0475 3644  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
11:27:09.0491 3644  MTConfig - ok
11:27:09.0522 3644  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:27:09.0522 3644  Mup - ok
11:27:09.0600 3644  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
11:27:09.0616 3644  napagent - ok
11:27:09.0709 3644  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:27:09.0725 3644  NativeWifiP - ok
11:27:09.0850 3644  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:27:09.0881 3644  NDIS - ok
11:27:09.0928 3644  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:27:09.0943 3644  NdisCap - ok
11:27:09.0990 3644  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:27:09.0990 3644  NdisTapi - ok
11:27:10.0037 3644  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:27:10.0037 3644  Ndisuio - ok
11:27:10.0084 3644  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:27:10.0084 3644  NdisWan - ok
11:27:10.0099 3644  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:27:10.0115 3644  NDProxy - ok
11:27:10.0177 3644  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:27:10.0177 3644  NetBIOS - ok
11:27:10.0224 3644  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:27:10.0224 3644  NetBT - ok
11:27:10.0255 3644  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
11:27:10.0271 3644  Netlogon - ok
11:27:10.0380 3644  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
11:27:10.0396 3644  Netman - ok
11:27:10.0521 3644  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
11:27:10.0521 3644  netprofm - ok
11:27:10.0583 3644  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:27:10.0583 3644  NetTcpPortSharing - ok
11:27:10.0645 3644  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
11:27:10.0645 3644  nfrd960 - ok
11:27:10.0723 3644  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:27:10.0739 3644  NlaSvc - ok
11:27:10.0770 3644  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:27:10.0786 3644  Npfs - ok
11:27:10.0864 3644  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
11:27:10.0864 3644  nsi - ok
11:27:10.0895 3644  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:27:10.0895 3644  nsiproxy - ok
11:27:11.0301 3644  [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:27:11.0332 3644  Ntfs - ok
11:27:11.0394 3644  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
11:27:11.0394 3644  Null - ok
11:27:11.0457 3644  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:27:11.0472 3644  nvraid - ok
11:27:11.0519 3644  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:27:11.0519 3644  nvstor - ok
11:27:11.0581 3644  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
11:27:11.0581 3644  nv_agp - ok
11:27:11.0613 3644  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
11:27:11.0613 3644  ohci1394 - ok
11:27:11.0706 3644  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:27:11.0722 3644  p2pimsvc - ok
11:27:11.0815 3644  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:27:11.0831 3644  p2psvc - ok
11:27:11.0893 3644  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:27:11.0893 3644  Parport - ok
11:27:11.0940 3644  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:27:11.0940 3644  partmgr - ok
11:27:12.0003 3644  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:27:12.0018 3644  PcaSvc - ok
11:27:12.0081 3644  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
11:27:12.0081 3644  pci - ok
11:27:12.0127 3644  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
11:27:12.0127 3644  pciide - ok
11:27:12.0190 3644  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
11:27:12.0205 3644  pcmcia - ok
11:27:12.0221 3644  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:27:12.0221 3644  pcw - ok
11:27:12.0377 3644  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:27:12.0377 3644  PEAUTH - ok
11:27:12.0673 3644  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:27:12.0673 3644  PerfHost - ok
11:27:12.0954 3644  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
11:27:12.0985 3644  pla - ok
11:27:13.0141 3644  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:27:13.0157 3644  PlugPlay - ok
11:27:13.0219 3644  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:27:13.0219 3644  PNRPAutoReg - ok
11:27:13.0313 3644  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:27:13.0329 3644  PNRPsvc - ok
11:27:13.0453 3644  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:27:13.0469 3644  PolicyAgent - ok
11:27:13.0516 3644  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
11:27:13.0531 3644  Power - ok
11:27:13.0625 3644  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:27:13.0641 3644  PptpMiniport - ok
11:27:13.0672 3644  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
11:27:13.0672 3644  Processor - ok
11:27:13.0781 3644  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
11:27:13.0781 3644  ProfSvc - ok
11:27:13.0828 3644  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:27:13.0828 3644  ProtectedStorage - ok
11:27:13.0953 3644  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:27:13.0953 3644  Psched - ok
11:27:14.0109 3644  [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
11:27:14.0109 3644  PST Service - ok
11:27:14.0233 3644  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
11:27:14.0311 3644  ql2300 - ok
11:27:14.0374 3644  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
11:27:14.0374 3644  ql40xx - ok
11:27:14.0421 3644  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
11:27:14.0436 3644  QWAVE - ok
11:27:14.0483 3644  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:27:14.0483 3644  QWAVEdrv - ok
11:27:14.0499 3644  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:27:14.0514 3644  RasAcd - ok
11:27:14.0608 3644  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:27:14.0608 3644  RasAgileVpn - ok
11:27:14.0639 3644  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
11:27:14.0639 3644  RasAuto - ok
11:27:14.0701 3644  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:27:14.0701 3644  Rasl2tp - ok
11:27:14.0795 3644  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
11:27:14.0811 3644  RasMan - ok
11:27:14.0842 3644  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:27:14.0857 3644  RasPppoe - ok
11:27:14.0904 3644  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:27:14.0904 3644  RasSstp - ok
11:27:14.0967 3644  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:27:14.0982 3644  rdbss - ok
11:27:14.0998 3644  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:27:15.0013 3644  rdpbus - ok
11:27:15.0060 3644  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:27:15.0060 3644  RDPCDD - ok
11:27:15.0185 3644  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:27:15.0201 3644  RDPENCDD - ok
11:27:15.0247 3644  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:27:15.0247 3644  RDPREFMP - ok
11:27:15.0294 3644  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:27:15.0310 3644  RDPWD - ok
11:27:15.0357 3644  [ E5DC9BA9E439D6DBDD79F8CAACB5BF01 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:27:15.0372 3644  rdyboost - ok
11:27:15.0419 3644  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:27:15.0419 3644  RemoteAccess - ok
11:27:15.0466 3644  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:27:15.0481 3644  RemoteRegistry - ok
11:27:15.0559 3644  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
11:27:15.0559 3644  RFCOMM - ok
11:27:15.0637 3644  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:27:15.0637 3644  RpcEptMapper - ok
11:27:15.0684 3644  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
11:27:15.0684 3644  RpcLocator - ok
11:27:15.0731 3644  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
11:27:15.0747 3644  RpcSs - ok
11:27:15.0793 3644  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:27:15.0793 3644  rspndr - ok
11:27:15.0996 3644  [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
11:27:16.0012 3644  RSUSBSTOR - ok
11:27:16.0059 3644  [ 3372196F61AF48503656EF6AA3E92D1B ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
11:27:16.0059 3644  RTL8167 - ok
11:27:16.0105 3644  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
11:27:16.0105 3644  SamSs - ok
11:27:16.0152 3644  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
11:27:16.0152 3644  sbp2port - ok
11:27:16.0215 3644  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:27:16.0230 3644  SCardSvr - ok
11:27:16.0277 3644  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:27:16.0277 3644  scfilter - ok
11:27:16.0386 3644  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
11:27:16.0417 3644  Schedule - ok
11:27:16.0480 3644  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:27:16.0480 3644  SCPolicySvc - ok
11:27:16.0542 3644  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:27:16.0558 3644  SDRSVC - ok
11:27:16.0605 3644  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:27:16.0605 3644  secdrv - ok
11:27:16.0651 3644  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
11:27:16.0667 3644  seclogon - ok
11:27:16.0714 3644  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
11:27:16.0729 3644  SENS - ok
11:27:16.0776 3644  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:27:16.0776 3644  SensrSvc - ok
11:27:16.0823 3644  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:27:16.0823 3644  Serenum - ok
11:27:16.0854 3644  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:27:16.0870 3644  Serial - ok
11:27:16.0885 3644  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
11:27:16.0885 3644  sermouse - ok
11:27:16.0948 3644  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
11:27:16.0963 3644  SessionEnv - ok
11:27:16.0979 3644  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
11:27:16.0979 3644  sffdisk - ok
11:27:16.0995 3644  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
11:27:17.0010 3644  sffp_mmc - ok
11:27:17.0026 3644  [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
11:27:17.0041 3644  sffp_sd - ok
11:27:17.0057 3644  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
11:27:17.0057 3644  sfloppy - ok
11:27:17.0135 3644  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:27:17.0151 3644  SharedAccess - ok
11:27:17.0197 3644  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:27:17.0213 3644  ShellHWDetection - ok
11:27:17.0244 3644  [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH        C:\Windows\system32\DRIVERS\SiSG664.sys
11:27:17.0244 3644  SiSGbeLH - ok
11:27:17.0275 3644  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:27:17.0291 3644  SiSRaid2 - ok
11:27:17.0307 3644  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
11:27:17.0307 3644  SiSRaid4 - ok
11:27:17.0353 3644  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:27:17.0353 3644  Smb - ok
11:27:17.0416 3644  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:27:17.0431 3644  SNMPTRAP - ok
11:27:17.0478 3644  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:27:17.0478 3644  spldr - ok
11:27:17.0541 3644  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
11:27:17.0556 3644  Spooler - ok
11:27:18.0024 3644  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
11:27:18.0133 3644  sppsvc - ok
11:27:18.0165 3644  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:27:18.0180 3644  sppuinotify - ok
11:27:18.0258 3644  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:27:18.0258 3644  srv - ok
11:27:18.0321 3644  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:27:18.0336 3644  srv2 - ok
11:27:18.0367 3644  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:27:18.0367 3644  srvnet - ok
11:27:18.0461 3644  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:27:18.0477 3644  SSDPSRV - ok
11:27:18.0508 3644  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:27:18.0508 3644  SstpSvc - ok
11:27:18.0539 3644  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
11:27:18.0539 3644  stexstor - ok
11:27:18.0726 3644  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
11:27:18.0742 3644  stisvc - ok
11:27:18.0773 3644  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
11:27:18.0773 3644  swenum - ok
11:27:18.0867 3644  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
11:27:18.0882 3644  swprv - ok
11:27:19.0085 3644  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
11:27:19.0116 3644  SysMain - ok
11:27:19.0163 3644  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:27:19.0163 3644  TabletInputService - ok
11:27:19.0241 3644  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:27:19.0257 3644  TapiSrv - ok
11:27:19.0288 3644  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
11:27:19.0288 3644  TBS - ok
11:27:19.0740 3644  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:27:19.0787 3644  Tcpip - ok
11:27:19.0927 3644  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:27:19.0959 3644  TCPIP6 - ok
11:27:20.0021 3644  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:27:20.0021 3644  tcpipreg - ok
11:27:20.0068 3644  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:27:20.0068 3644  TDPIPE - ok
11:27:20.0115 3644  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:27:20.0115 3644  TDTCP - ok
11:27:20.0161 3644  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:27:20.0161 3644  tdx - ok
11:27:20.0193 3644  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
11:27:20.0208 3644  TermDD - ok
11:27:20.0286 3644  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
11:27:20.0317 3644  TermService - ok
11:27:20.0333 3644  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
11:27:20.0349 3644  Themes - ok
11:27:20.0380 3644  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
11:27:20.0395 3644  THREADORDER - ok
11:27:20.0567 3644  [ 69D76CE06BB629B69165C81D83A4B03E ] TiMiniService   C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
11:27:20.0583 3644  TiMiniService - ok
11:27:20.0629 3644  [ 73AAFFDD2AC3C8814B26C440E5DD9DD4 ] tmactmon        C:\Windows\system32\DRIVERS\tmactmon.sys
11:27:20.0629 3644  tmactmon - ok
11:27:20.0661 3644  [ 360E61217D4E1E333583D0C721057F70 ] tmcomm          C:\Windows\system32\DRIVERS\tmcomm.sys
11:27:20.0661 3644  tmcomm - ok
11:27:20.0707 3644  [ 699D34EB7C670139CA23A65372BD5743 ] tmevtmgr        C:\Windows\system32\DRIVERS\tmevtmgr.sys
11:27:20.0707 3644  tmevtmgr - ok
11:27:20.0754 3644  [ 262198EFB734012BFCD17E7479AE4A09 ] tmtdi           C:\Windows\system32\DRIVERS\tmtdi.sys
11:27:20.0754 3644  tmtdi - ok
11:27:20.0817 3644  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
11:27:20.0832 3644  TrkWks - ok
11:27:20.0957 3644  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:27:20.0957 3644  TrustedInstaller - ok
11:27:21.0004 3644  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:27:21.0019 3644  tssecsrv - ok
11:27:21.0238 3644  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:27:21.0269 3644  tunnel - ok
11:27:21.0300 3644  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
11:27:21.0300 3644  uagp35 - ok
11:27:21.0456 3644  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:27:21.0472 3644  udfs - ok
11:27:21.0503 3644  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:27:21.0519 3644  UI0Detect - ok
11:27:21.0581 3644  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
11:27:21.0581 3644  uliagpkx - ok
11:27:21.0675 3644  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:27:21.0675 3644  umbus - ok
11:27:21.0721 3644  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
11:27:21.0721 3644  UmPass - ok
11:27:21.0815 3644  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
11:27:21.0831 3644  upnphost - ok
11:27:21.0893 3644  [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:27:21.0909 3644  usbccgp - ok
11:27:22.0033 3644  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
11:27:22.0033 3644  usbcir - ok
11:27:22.0080 3644  [ 92969BA5AC44E229C55A332864F79677 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
11:27:22.0096 3644  usbehci - ok
11:27:22.0158 3644  [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
11:27:22.0158 3644  usbfilter - ok
11:27:22.0221 3644  [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:27:22.0221 3644  usbhub - ok
11:27:22.0252 3644  [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
11:27:22.0267 3644  usbohci - ok
11:27:22.0299 3644  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:27:22.0314 3644  usbprint - ok
11:27:22.0361 3644  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:27:22.0377 3644  USBSTOR - ok
11:27:22.0408 3644  [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:27:22.0408 3644  usbuhci - ok
11:27:22.0486 3644  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
11:27:22.0486 3644  usbvideo - ok
11:27:22.0533 3644  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
11:27:22.0533 3644  UxSms - ok
11:27:22.0579 3644  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
11:27:22.0579 3644  VaultSvc - ok
11:27:22.0657 3644  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
11:27:22.0657 3644  vdrvroot - ok
11:27:22.0735 3644  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
11:27:22.0767 3644  vds - ok
11:27:22.0860 3644  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:27:22.0860 3644  vga - ok
11:27:22.0907 3644  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:27:22.0907 3644  VgaSave - ok
11:27:22.0938 3644  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
11:27:22.0954 3644  vhdmp - ok
11:27:22.0969 3644  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
11:27:22.0969 3644  viaide - ok
11:27:22.0985 3644  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
11:27:22.0985 3644  volmgr - ok
11:27:23.0016 3644  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:27:23.0032 3644  volmgrx - ok
11:27:23.0157 3644  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:27:23.0157 3644  volsnap - ok
11:27:23.0281 3644  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
11:27:23.0297 3644  vsmraid - ok
11:27:23.0469 3644  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
11:27:23.0515 3644  VSS - ok
11:27:23.0578 3644  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:27:23.0578 3644  vwifibus - ok
11:27:23.0593 3644  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:27:23.0609 3644  vwififlt - ok
11:27:23.0656 3644  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
11:27:23.0656 3644  vwifimp - ok
11:27:23.0703 3644  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
11:27:23.0734 3644  W32Time - ok
11:27:23.0781 3644  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
11:27:23.0781 3644  WacomPen - ok
11:27:23.0812 3644  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:27:23.0812 3644  WANARP - ok
11:27:23.0827 3644  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:27:23.0827 3644  Wanarpv6 - ok
11:27:23.0921 3644  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:27:23.0968 3644  WatAdminSvc - ok
11:27:24.0108 3644  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
11:27:24.0155 3644  wbengine - ok
11:27:24.0202 3644  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:27:24.0217 3644  WbioSrvc - ok
11:27:24.0264 3644  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:27:24.0311 3644  wcncsvc - ok
11:27:24.0389 3644  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:27:24.0389 3644  WcsPlugInService - ok
11:27:24.0436 3644  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
11:27:24.0436 3644  Wd - ok
11:27:24.0576 3644  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:27:24.0592 3644  Wdf01000 - ok
11:27:24.0623 3644  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:27:24.0639 3644  WdiServiceHost - ok
11:27:24.0654 3644  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:27:24.0654 3644  WdiSystemHost - ok
11:27:24.0717 3644  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
11:27:24.0732 3644  WebClient - ok
11:27:24.0763 3644  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:27:24.0779 3644  Wecsvc - ok
11:27:24.0841 3644  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:27:24.0857 3644  wercplsupport - ok
11:27:24.0904 3644  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:27:24.0935 3644  WerSvc - ok
11:27:24.0982 3644  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:27:24.0982 3644  WfpLwf - ok
11:27:25.0060 3644  [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
11:27:25.0060 3644  WimFltr - ok
11:27:25.0091 3644  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:27:25.0091 3644  WIMMount - ok
11:27:25.0153 3644  WinDefend - ok
11:27:25.0185 3644  WinHttpAutoProxySvc - ok
11:27:25.0294 3644  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:27:25.0294 3644  Winmgmt - ok
11:27:25.0387 3644  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:27:25.0512 3644  WinRM - ok
11:27:25.0637 3644  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:27:25.0653 3644  WinUsb - ok
11:27:25.0731 3644  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:27:25.0746 3644  Wlansvc - ok
11:27:25.0824 3644  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:27:25.0824 3644  wlcrasvc - ok
11:27:26.0043 3644  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:27:26.0089 3644  wlidsvc - ok
11:27:26.0152 3644  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
11:27:26.0152 3644  WmiAcpi - ok
11:27:26.0199 3644  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:27:26.0214 3644  wmiApSrv - ok
11:27:26.0245 3644  WMPNetworkSvc - ok
11:27:26.0292 3644  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:27:26.0292 3644  WPCSvc - ok
11:27:26.0323 3644  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:27:26.0323 3644  WPDBusEnum - ok
11:27:26.0355 3644  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:27:26.0355 3644  ws2ifsl - ok
11:27:26.0386 3644  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\Windows\system32\wscsvc.dll
11:27:26.0401 3644  wscsvc - ok
11:27:26.0417 3644  WSearch - ok
11:27:26.0745 3644  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:27:26.0823 3644  wuauserv - ok
11:27:26.0901 3644  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:27:26.0901 3644  WudfPf - ok
11:27:26.0963 3644  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:27:26.0963 3644  WUDFRd - ok
11:27:27.0010 3644  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:27:27.0025 3644  wudfsvc - ok
11:27:27.0103 3644  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:27:27.0119 3644  WwanSvc - ok
11:27:27.0213 3644  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
11:27:27.0228 3644  YahooAUService - ok
11:27:27.0291 3644  ================ Scan global ===============================
11:27:27.0384 3644  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:27:27.0462 3644  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
11:27:27.0493 3644  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
11:27:27.0540 3644  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:27:27.0587 3644  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:27:27.0587 3644  [Global] - ok
11:27:27.0587 3644  ================ Scan MBR ==================================
11:27:27.0618 3644  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:27:29.0163 3644  \Device\Harddisk0\DR0 - ok
11:27:29.0178 3644  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
11:27:29.0194 3644  \Device\Harddisk1\DR1 - ok
11:27:29.0194 3644  ================ Scan VBR ==================================
11:27:29.0241 3644  [ CDD36270B4AFB76DF469C56D06A50819 ] \Device\Harddisk0\DR0\Partition1
11:27:29.0256 3644  \Device\Harddisk0\DR0\Partition1 - ok
11:27:29.0303 3644  [ 05748362DF55A2BA8E7D549ED86C541D ] \Device\Harddisk0\DR0\Partition2
11:27:29.0319 3644  \Device\Harddisk0\DR0\Partition2 - ok
11:27:29.0334 3644  [ CDB0ADFEEE0C112B58399B33E658F198 ] \Device\Harddisk1\DR1\Partition1
11:27:29.0350 3644  \Device\Harddisk1\DR1\Partition1 - ok
11:27:29.0350 3644  ================ Scan active images ========================
11:27:29.0350 3644  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
11:27:29.0350 3644  C:\Windows\System32\drivers\crashdmp.sys - ok
11:27:29.0381 3644  [ 20080512F61D3210E449A1256F66A7FD ] C:\Windows\System32\drivers\Diskdump.sys
11:27:29.0381 3644  C:\Windows\System32\drivers\Diskdump.sys - ok
11:27:29.0397 3644  [ CAEE7C1AFC9F1C9EE8DD11ACD18D22E7 ] C:\Windows\System32\drivers\amd_sata.sys
11:27:29.0397 3644  C:\Windows\System32\drivers\amd_sata.sys - ok
11:27:29.0412 3644  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
11:27:29.0412 3644  C:\Windows\System32\drivers\dumpfve.sys - ok
11:27:29.0428 3644  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
11:27:29.0428 3644  C:\Windows\System32\drivers\beep.sys - ok
11:27:29.0443 3644  [ 83D2D75E1EFB81B3450C18131443F7DB ] C:\Windows\System32\drivers\cdrom.sys
11:27:29.0443 3644  C:\Windows\System32\drivers\cdrom.sys - ok
11:27:29.0459 3644  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
11:27:29.0459 3644  C:\Windows\System32\drivers\null.sys - ok
11:27:29.0475 3644  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
11:27:29.0475 3644  C:\Windows\System32\drivers\RDPCDD.sys - ok
11:27:29.0490 3644  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
11:27:29.0490 3644  C:\Windows\System32\drivers\vga.sys - ok
11:27:29.0521 3644  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
11:27:29.0521 3644  C:\Windows\System32\drivers\videoprt.sys - ok
11:27:29.0537 3644  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
11:27:29.0537 3644  C:\Windows\System32\drivers\watchdog.sys - ok
11:27:29.0553 3644  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
11:27:29.0553 3644  C:\Windows\System32\drivers\msfs.sys - ok
11:27:29.0568 3644  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
11:27:29.0568 3644  C:\Windows\System32\drivers\RDPENCDD.sys - ok
11:27:29.0584 3644  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
11:27:29.0584 3644  C:\Windows\System32\drivers\RDPREFMP.sys - ok
11:27:29.0599 3644  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
11:27:29.0599 3644  C:\Windows\System32\drivers\npfs.sys - ok
11:27:29.0631 3644  [ 0CA6FE26ACC7FFEE1BD0463F40835F32 ] C:\Windows\System32\drivers\tdi.sys
11:27:29.0631 3644  C:\Windows\System32\drivers\tdi.sys - ok
11:27:29.0646 3644  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] C:\Windows\System32\drivers\tdx.sys
11:27:29.0646 3644  C:\Windows\System32\drivers\tdx.sys - ok
11:27:29.0662 3644  [ DB9D6C6B2CD95A9CA414D045B627422E ] C:\Windows\System32\drivers\afd.sys
11:27:29.0662 3644  C:\Windows\System32\drivers\afd.sys - ok
11:27:29.0677 3644  [ 9162B273A44AB9DCE5B44362731D062A ] C:\Windows\System32\drivers\netbt.sys
11:27:29.0677 3644  C:\Windows\System32\drivers\netbt.sys - ok
11:27:29.0709 3644  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
11:27:29.0709 3644  C:\Windows\System32\drivers\ws2ifsl.sys - ok
11:27:29.0724 3644  [ EE992183BD8EAEFD9973F352E587A299 ] C:\Windows\System32\drivers\pacer.sys
11:27:29.0724 3644  C:\Windows\System32\drivers\pacer.sys - ok
11:27:29.0740 3644  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
11:27:29.0740 3644  C:\Windows\System32\drivers\vwififlt.sys - ok
11:27:29.0755 3644  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
11:27:29.0755 3644  C:\Windows\System32\drivers\wfplwf.sys - ok
11:27:29.0771 3644  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
11:27:29.0771 3644  C:\Windows\System32\drivers\netbios.sys - ok
11:27:29.0787 3644  [ 262198EFB734012BFCD17E7479AE4A09 ] C:\Windows\System32\drivers\tmtdi.sys
11:27:29.0787 3644  C:\Windows\System32\drivers\tmtdi.sys - ok
11:27:29.0802 3644  [ 47CA49400643EFFD3F1C9A27E1D69324 ] C:\Windows\System32\drivers\wanarp.sys
11:27:29.0802 3644  C:\Windows\System32\drivers\wanarp.sys - ok
11:27:29.0818 3644  [ C448651339196C0E869A355171875522 ] C:\Windows\System32\drivers\termdd.sys
11:27:29.0818 3644  C:\Windows\System32\drivers\termdd.sys - ok
11:27:29.0849 3644  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
11:27:29.0849 3644  C:\Windows\System32\drivers\mssmbios.sys - ok
11:27:29.0865 3644  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
11:27:29.0865 3644  C:\Windows\System32\drivers\nsiproxy.sys - ok
11:27:29.0880 3644  [ 3BAC8142102C15D59A87757C1D41DCE5 ] C:\Windows\System32\drivers\rdbss.sys
11:27:29.0880 3644  C:\Windows\System32\drivers\rdbss.sys - ok
11:27:29.0896 3644  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
11:27:29.0896 3644  C:\Windows\System32\drivers\blbdrive.sys - ok
11:27:29.0927 3644  [ 9C253CE7311CA60FC11C774692A13208 ] C:\Windows\System32\drivers\dfsc.sys
11:27:29.0927 3644  C:\Windows\System32\drivers\dfsc.sys - ok
11:27:29.0943 3644  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
11:27:29.0943 3644  C:\Windows\System32\drivers\discache.sys - ok
11:27:29.0958 3644  [ 1F7238A37389ED92E9D8EEE975CABD54 ] C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
11:27:29.0958 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys - ok
11:27:29.0974 3644  [ 3836171A2CDF3AF8EF10856DB9835A70 ] C:\Windows\System32\drivers\tunnel.sys
11:27:29.0974 3644  C:\Windows\System32\drivers\tunnel.sys - ok
11:27:29.0989 3644  [ 540FC730CAC044D1482AF874FDC43B9A ] C:\Windows\System32\drivers\atikmpag.sys
11:27:29.0989 3644  C:\Windows\System32\drivers\atikmpag.sys - ok
11:27:30.0005 3644  [ 68DB778AC4FD7896CE2F153353BA15C8 ] C:\Windows\System32\ntdll.dll
11:27:30.0005 3644  C:\Windows\System32\ntdll.dll - ok
11:27:30.0021 3644  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
11:27:30.0021 3644  C:\Windows\System32\smss.exe - ok
11:27:30.0036 3644  [ 8B7F8E882A649D81CEA1EDE9BBB68FFF ] C:\Windows\System32\autochk.exe
11:27:30.0036 3644  C:\Windows\System32\autochk.exe - ok
11:27:30.0067 3644  [ 7DCF6685CC9195607537B082CD853F35 ] C:\Windows\System32\drivers\atikmdag.sys
11:27:30.0067 3644  C:\Windows\System32\drivers\atikmdag.sys - ok
11:27:30.0083 3644  [ 1633B9ABF52784A1331476397A48CBEF ] C:\Windows\System32\drivers\dxgkrnl.sys
11:27:30.0083 3644  C:\Windows\System32\drivers\dxgkrnl.sys - ok
11:27:30.0099 3644  [ 3238B9078E0766AB5E62DC737A809ADB ] C:\Windows\System32\drivers\dxgmms1.sys
11:27:30.0099 3644  C:\Windows\System32\drivers\dxgmms1.sys - ok
11:27:30.0114 3644  [ 0A49913402747A0B67DE940FB42CBDBB ] C:\Windows\System32\drivers\hdaudbus.sys
11:27:30.0114 3644  C:\Windows\System32\drivers\hdaudbus.sys - ok
11:27:30.0130 3644  [ BBF36EB7117F6B976975C9D8D877DF18 ] C:\Windows\System32\drivers\usbport.sys
11:27:30.0130 3644  C:\Windows\System32\drivers\usbport.sys - ok
11:27:30.0161 3644  [ F1BB1E55F1E7A65C5839CCC7B36D773E ] C:\Windows\System32\drivers\usbohci.sys
11:27:30.0161 3644  C:\Windows\System32\drivers\usbohci.sys - ok
11:27:30.0177 3644  [ 92969BA5AC44E229C55A332864F79677 ] C:\Windows\System32\drivers\usbehci.sys
11:27:30.0177 3644  C:\Windows\System32\drivers\usbehci.sys - ok
11:27:30.0192 3644  [ 76E2FFAD301490BA27B947C6507752FB ] C:\Windows\System32\drivers\usbfilter.sys
11:27:30.0192 3644  C:\Windows\System32\drivers\usbfilter.sys - ok
11:27:30.0208 3644  [ 4C120D2B2EA269EAE7A5744794EB6DB1 ] C:\Windows\System32\drivers\ETD.sys
11:27:30.0208 3644  C:\Windows\System32\drivers\ETD.sys - ok
11:27:30.0223 3644  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
11:27:30.0223 3644  C:\Windows\System32\drivers\i8042prt.sys - ok
11:27:30.0255 3644  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
11:27:30.0255 3644  C:\Windows\System32\drivers\CmBatt.sys - ok
11:27:30.0270 3644  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
11:27:30.0270 3644  C:\Windows\System32\drivers\kbdclass.sys - ok
11:27:30.0286 3644  [ E63EF8C3271D014F14E2469CE75FECB4 ] C:\Windows\System32\drivers\kbfiltr.sys
11:27:30.0286 3644  C:\Windows\System32\drivers\kbfiltr.sys - ok
11:27:30.0301 3644  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
11:27:30.0301 3644  C:\Windows\System32\drivers\mouclass.sys - ok
11:27:30.0317 3644  [ 3372196F61AF48503656EF6AA3E92D1B ] C:\Windows\System32\drivers\Rt64win7.sys
11:27:30.0317 3644  C:\Windows\System32\drivers\Rt64win7.sys - ok
11:27:30.0333 3644  [ B2931C83CFB12A3223A47B180473AE1A ] C:\Windows\System32\drivers\athrx.sys
11:27:30.0333 3644  C:\Windows\System32\drivers\athrx.sys - ok
11:27:30.0348 3644  [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
11:27:30.0348 3644  C:\Windows\System32\drivers\amdppm.sys - ok
11:27:30.0364 3644  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
11:27:30.0379 3644  C:\Windows\System32\drivers\vwifibus.sys - ok
11:27:30.0395 3644  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
11:27:30.0395 3644  C:\Windows\System32\drivers\wmiacpi.sys - ok
11:27:30.0411 3644  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
11:27:30.0411 3644  C:\Windows\System32\drivers\agilevpn.sys - ok
11:27:30.0426 3644  [ F26B3A86F6FA87CA360B879581AB4123 ] C:\Windows\System32\drivers\CompositeBus.sys
11:27:30.0426 3644  C:\Windows\System32\drivers\CompositeBus.sys - ok
11:27:30.0457 3644  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
11:27:30.0457 3644  C:\Windows\System32\drivers\ndistapi.sys - ok
11:27:30.0473 3644  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] C:\Windows\System32\drivers\ndiswan.sys
11:27:30.0473 3644  C:\Windows\System32\drivers\ndiswan.sys - ok
11:27:30.0489 3644  [ 87A6E852A22991580D6D39ADC4790463 ] C:\Windows\System32\drivers\rasl2tp.sys
11:27:30.0489 3644  C:\Windows\System32\drivers\rasl2tp.sys - ok
11:27:30.0504 3644  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
11:27:30.0504 3644  C:\Windows\System32\drivers\raspppoe.sys - ok
11:27:30.0520 3644  [ 27CC19E81BA5E3403C48302127BDA717 ] C:\Windows\System32\drivers\raspptp.sys
11:27:30.0520 3644  C:\Windows\System32\drivers\raspptp.sys - ok
11:27:30.0535 3644  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
11:27:30.0535 3644  C:\Windows\System32\drivers\rassstp.sys - ok
11:27:30.0551 3644  [ 5C7AF4A20F5BF67042B2E613D123D111 ] C:\Windows\System32\drivers\ks.sys
11:27:30.0551 3644  C:\Windows\System32\drivers\ks.sys - ok
11:27:30.0582 3644  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
11:27:30.0582 3644  C:\Windows\System32\drivers\swenum.sys - ok
11:27:30.0598 3644  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] C:\Windows\System32\drivers\amdiox64.sys
11:27:30.0598 3644  C:\Windows\System32\drivers\amdiox64.sys - ok
11:27:30.0613 3644  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] C:\Windows\System32\drivers\umbus.sys
11:27:30.0613 3644  C:\Windows\System32\drivers\umbus.sys - ok
11:27:30.0629 3644  [ 72D7B3EA16946E8F0CF7458150031CC6 ] C:\Windows\System32\user32.dll
11:27:30.0629 3644  C:\Windows\System32\user32.dll - ok
11:27:30.0645 3644  [ 15BDC173EB5FA4F92B67D9FFB269A6EA ] C:\Windows\System32\shlwapi.dll
11:27:30.0645 3644  C:\Windows\System32\shlwapi.dll - ok
11:27:30.0660 3644  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
11:27:30.0660 3644  C:\Windows\System32\psapi.dll - ok
11:27:30.0691 3644  [ E5CBF5F8623BBD1DB7B8148A66F6EBA4 ] C:\Windows\System32\Wldap32.dll
11:27:30.0691 3644  C:\Windows\System32\Wldap32.dll - ok
11:27:30.0707 3644  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
11:27:30.0707 3644  C:\Windows\System32\clbcatq.dll - ok
11:27:30.0723 3644  [ 6A4EA4C29FBF78112AE20013FB71E9C1 ] C:\Windows\System32\setupapi.dll
11:27:30.0723 3644  C:\Windows\System32\setupapi.dll - ok
11:27:30.0738 3644  [ F94B8644F3AFE040EC6E1B6FBC9EFAA9 ] C:\Windows\System32\comdlg32.dll
11:27:30.0738 3644  C:\Windows\System32\comdlg32.dll - ok
11:27:30.0769 3644  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
11:27:30.0769 3644  C:\Windows\System32\nsi.dll - ok
11:27:30.0785 3644  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
11:27:30.0785 3644  C:\Windows\System32\msctf.dll - ok
11:27:30.0801 3644  [ 15A54626213EBF003F7D4C9D8380A656 ] C:\Windows\System32\imagehlp.dll
11:27:30.0801 3644  C:\Windows\System32\imagehlp.dll - ok
11:27:30.0816 3644  [ 579F6AFC6A6561951FA2202EFC3FE485 ] C:\Windows\System32\msvcrt.dll
11:27:30.0816 3644  C:\Windows\System32\msvcrt.dll - ok
11:27:30.0832 3644  [ 7083F463788CB34FCC42F565D56F89E8 ] C:\Windows\System32\ws2_32.dll
11:27:30.0832 3644  C:\Windows\System32\ws2_32.dll - ok
11:27:30.0847 3644  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
11:27:30.0847 3644  C:\Windows\System32\wininet.dll - ok
11:27:30.0863 3644  [ E1B1255D3A4B3367FE4E9C71E62E3B5A ] C:\Windows\System32\gdi32.dll
11:27:30.0863 3644  C:\Windows\System32\gdi32.dll - ok
11:27:30.0879 3644  [ 48C903068B6BDAB5EF650B9CBEE85295 ] C:\Windows\System32\rpcrt4.dll
11:27:30.0879 3644  C:\Windows\System32\rpcrt4.dll - ok
11:27:30.0894 3644  [ 43DB3433F141F01E53D1C5AA0F434098 ] C:\Windows\System32\kernel32.dll
11:27:30.0894 3644  C:\Windows\System32\kernel32.dll - ok
11:27:30.0925 3644  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
11:27:30.0925 3644  C:\Windows\System32\normaliz.dll - ok
11:27:30.0941 3644  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
11:27:30.0941 3644  C:\Windows\System32\difxapi.dll - ok
11:27:30.0957 3644  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
11:27:30.0957 3644  C:\Windows\System32\advapi32.dll - ok
11:27:30.0972 3644  [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] C:\Windows\System32\drivers\usbhub.sys
11:27:30.0972 3644  C:\Windows\System32\drivers\usbhub.sys - ok
11:27:30.0988 3644  [ 659B74FB74B86228D6338D643CD3E3CF ] C:\Windows\System32\drivers\ndproxy.sys
11:27:30.0988 3644  C:\Windows\System32\drivers\ndproxy.sys - ok
11:27:31.0019 3644  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
11:27:31.0019 3644  C:\Windows\System32\drivers\drmk.sys - ok
11:27:31.0035 3644  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
11:27:31.0035 3644  C:\Windows\System32\drivers\portcls.sys - ok
11:27:31.0050 3644  [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] C:\Windows\System32\drivers\AtihdW76.sys
11:27:31.0050 3644  C:\Windows\System32\drivers\AtihdW76.sys - ok
11:27:31.0066 3644  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
11:27:31.0066 3644  C:\Windows\System32\drivers\ksthunk.sys - ok
11:27:31.0081 3644  [ B60ACCD29F8FAFC4A6344CD2BD5CA3A5 ] C:\Windows\System32\drivers\RTKVHD64.sys
11:27:31.0081 3644  C:\Windows\System32\drivers\RTKVHD64.sys - ok
11:27:31.0097 3644  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
11:27:31.0097 3644  C:\Windows\System32\imm32.dll - ok
11:27:31.0113 3644  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
11:27:31.0113 3644  C:\Windows\System32\urlmon.dll - ok
11:27:31.0144 3644  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
11:27:31.0144 3644  C:\Windows\System32\iertutil.dll - ok
11:27:31.0159 3644  [ BD5153969C41F697E23B9A43EF9228CE ] C:\Windows\System32\usp10.dll
11:27:31.0159 3644  C:\Windows\System32\usp10.dll - ok
11:27:31.0175 3644  [ AC8F79017C5C1FB316930EDEAD0AF517 ] C:\Windows\System32\ole32.dll
11:27:31.0175 3644  C:\Windows\System32\ole32.dll - ok
11:27:31.0191 3644  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
11:27:31.0191 3644  C:\Windows\System32\sechost.dll - ok
11:27:31.0222 3644  [ 48CC125A6AB6C72A13E3D3E9C39AD9D9 ] C:\Windows\System32\shell32.dll
11:27:31.0222 3644  C:\Windows\System32\shell32.dll - ok
11:27:31.0237 3644  [ 70B5A5A7E0DDD5EBAF6E35B7257A6B9D ] C:\Windows\System32\drivers\usbd.sys
11:27:31.0237 3644  C:\Windows\System32\drivers\usbd.sys - ok
11:27:31.0253 3644  [ F39983647BC1F3E6100778DDFE9DCE29 ] C:\Windows\System32\drivers\USBSTOR.SYS
11:27:31.0253 3644  C:\Windows\System32\drivers\USBSTOR.SYS - ok
11:27:31.0269 3644  [ 7B6A127C93EE590E4D79A5F2A76FE46F ] C:\Windows\System32\drivers\usbccgp.sys
11:27:31.0269 3644  C:\Windows\System32\drivers\usbccgp.sys - ok
11:27:31.0284 3644  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] C:\Windows\System32\drivers\usbvideo.sys
11:27:31.0284 3644  C:\Windows\System32\drivers\usbvideo.sys - ok
11:27:31.0300 3644  [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
11:27:31.0300 3644  C:\Windows\System32\drivers\cdfs.sys - ok
11:27:31.0315 3644  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
11:27:31.0331 3644  C:\Windows\System32\lpk.dll - ok
11:27:31.0331 3644  [ 2A46451EE42BCD2C842D8AA4923FAC16 ] C:\Windows\System32\oleaut32.dll
11:27:31.0331 3644  C:\Windows\System32\oleaut32.dll - ok
11:27:31.0347 3644  [ D05E03C1B2824236531F5E37334B6A8A ] C:\Windows\System32\cfgmgr32.dll
11:27:31.0347 3644  C:\Windows\System32\cfgmgr32.dll - ok
11:27:31.0378 3644  [ 987508ED06FC097E754A91BA8A8AAD0E ] C:\Windows\System32\wintrust.dll
11:27:31.0378 3644  C:\Windows\System32\wintrust.dll - ok
11:27:31.0393 3644  [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\System32\comctl32.dll
11:27:31.0393 3644  C:\Windows\System32\comctl32.dll - ok
11:27:31.0409 3644  [ D256EB74BF77026FC9A3D7193861C7AD ] C:\Windows\System32\crypt32.dll
11:27:31.0409 3644  C:\Windows\System32\crypt32.dll - ok
11:27:31.0425 3644  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
11:27:31.0425 3644  C:\Windows\System32\devobj.dll - ok
11:27:31.0440 3644  [ C5097B45DE21ADF2469B69DFC64DCE55 ] C:\Windows\System32\KernelBase.dll
11:27:31.0440 3644  C:\Windows\System32\KernelBase.dll - ok
11:27:31.0471 3644  [ 98FB7DD3B28A92E3C0E5B4BD9D63EF01 ] C:\Windows\System32\msasn1.dll
11:27:31.0471 3644  C:\Windows\System32\msasn1.dll - ok
11:27:31.0487 3644  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
11:27:31.0487 3644  C:\Windows\SysWOW64\normaliz.dll - ok
11:27:31.0503 3644  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
11:27:31.0503 3644  C:\Windows\System32\drivers\dxapi.sys - ok
11:27:31.0518 3644  [ 4B8FAB281A9310C45A4F65378E5F7D81 ] C:\Windows\System32\win32k.sys
11:27:31.0518 3644  C:\Windows\System32\win32k.sys - ok
11:27:31.0534 3644  [ E730EADB8F176DB06A378435BEB2E823 ] C:\Windows\System32\csrsrv.dll
11:27:31.0534 3644  C:\Windows\System32\csrsrv.dll - ok
11:27:31.0549 3644  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
11:27:31.0549 3644  C:\Windows\System32\csrss.exe - ok
11:27:31.0581 3644  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
11:27:31.0581 3644  C:\Windows\System32\basesrv.dll - ok
11:27:31.0596 3644  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\System32\winsrv.dll
11:27:31.0596 3644  C:\Windows\System32\winsrv.dll - ok
11:27:31.0612 3644  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
11:27:31.0612 3644  C:\Windows\System32\drivers\monitor.sys - ok
11:27:31.0627 3644  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
11:27:31.0627 3644  C:\Windows\System32\tsddd.dll - ok
11:27:31.0643 3644  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
11:27:31.0643 3644  C:\Windows\System32\sxssrv.dll - ok
11:27:31.0659 3644  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
11:27:31.0659 3644  C:\Windows\System32\wininit.exe - ok
11:27:31.0674 3644  [ 100BDF2F89D6056CEE900BB6156DA737 ] C:\Windows\System32\cdd.dll
11:27:31.0674 3644  C:\Windows\System32\cdd.dll - ok
11:27:31.0690 3644  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
11:27:31.0690 3644  C:\Windows\System32\profapi.dll - ok
11:27:31.0721 3644  [ F4389DA7DBDA2E7D292D360CF8E400C7 ] C:\Windows\System32\RpcRtRemote.dll
11:27:31.0721 3644  C:\Windows\System32\RpcRtRemote.dll - ok
11:27:31.0737 3644  [ B9A047D231D32FDF5AF2F281E4326A9D ] C:\Windows\System32\KBDUS.DLL
11:27:31.0737 3644  C:\Windows\System32\KBDUS.DLL - ok
11:27:31.0752 3644  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
11:27:31.0752 3644  C:\Windows\System32\WlS0WndH.dll - ok
11:27:31.0768 3644  [ 456C92A9D8DB51B9938A6234BBC65FC9 ] C:\Windows\System32\sxs.dll
11:27:31.0768 3644  C:\Windows\System32\sxs.dll - ok
11:27:31.0783 3644  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
11:27:31.0783 3644  C:\Windows\System32\cryptbase.dll - ok
11:27:31.0799 3644  [ 01A465AC251BCCF6037DF2EF28AA4292 ] C:\Windows\System32\apphelp.dll
11:27:31.0799 3644  C:\Windows\System32\apphelp.dll - ok
11:27:31.0830 3644  [ 04FCA22B77A2E37332CC8226187AF87B ] C:\Windows\System32\lsm.exe
11:27:31.0830 3644  C:\Windows\System32\lsm.exe - ok
11:27:31.0846 3644  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
11:27:31.0846 3644  C:\Windows\System32\services.exe - ok
11:27:31.0861 3644  [ BFA69408620587AFDEC2E8C12CA60492 ] C:\Windows\System32\lsasrv.dll
11:27:31.0861 3644  C:\Windows\System32\lsasrv.dll - ok
11:27:31.0877 3644  [ 156F6159457D0AA7E59B62681B56EB90 ] C:\Windows\System32\lsass.exe
11:27:31.0877 3644  C:\Windows\System32\lsass.exe - ok
11:27:31.0893 3644  [ 68EA2513CA68AD8F741FF4F5B8D8590C ] C:\Windows\System32\sspisrv.dll
11:27:31.0893 3644  C:\Windows\System32\sspisrv.dll - ok
11:27:31.0908 3644  [ 1F582C6C84D5243692F9C3E04D0A663F ] C:\Windows\System32\sspicli.dll
11:27:31.0908 3644  C:\Windows\System32\sspicli.dll - ok
11:27:31.0924 3644  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
11:27:31.0924 3644  C:\Windows\System32\sysntfy.dll - ok
11:27:31.0939 3644  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
11:27:31.0939 3644  C:\Windows\System32\wmsgapi.dll - ok
11:27:31.0971 3644  [ 941AF3C8B0DE1B359BE22DD3288A8C8E ] C:\Windows\System32\scesrv.dll
11:27:31.0971 3644  C:\Windows\System32\scesrv.dll - ok
11:27:31.0986 3644  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
11:27:31.0986 3644  C:\Windows\System32\scext.dll - ok
11:27:32.0002 3644  [ 74A0871810BF0F2AA3EB6681E9BECDD3 ] C:\Windows\System32\secur32.dll
11:27:32.0002 3644  C:\Windows\System32\secur32.dll - ok
11:27:32.0017 3644  [ DA3E2A6FA9660CC75B471530CE88453A ] C:\Windows\System32\winlogon.exe
11:27:32.0017 3644  C:\Windows\System32\winlogon.exe - ok
11:27:32.0033 3644  [ B160ADAEFC76031D92C4FBAC0918B033 ] C:\Windows\System32\samsrv.dll
11:27:32.0033 3644  C:\Windows\System32\samsrv.dll - ok
11:27:32.0049 3644  [ D8C88512BA9544AE1CC2034F50ECFA12 ] C:\Windows\System32\winsta.dll
11:27:32.0049 3644  C:\Windows\System32\winsta.dll - ok
11:27:32.0064 3644  [ D23371AB9607651937C7641A38CD52BC ] C:\Windows\System32\srvcli.dll
11:27:32.0064 3644  C:\Windows\System32\srvcli.dll - ok
11:27:32.0080 3644  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
11:27:32.0080 3644  C:\Windows\System32\cryptdll.dll - ok
11:27:32.0111 3644  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
11:27:32.0111 3644  C:\Windows\System32\wevtapi.dll - ok
11:27:32.0127 3644  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
11:27:32.0127 3644  C:\Windows\System32\authz.dll - ok
11:27:32.0142 3644  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
11:27:32.0142 3644  C:\Windows\System32\cngaudit.dll - ok
11:27:32.0158 3644  [ E2D60E901428A72BB47931C938A1ED95 ] C:\Windows\System32\ncrypt.dll
11:27:32.0158 3644  C:\Windows\System32\ncrypt.dll - ok
11:27:32.0173 3644  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
11:27:32.0173 3644  C:\Windows\System32\bcrypt.dll - ok
11:27:32.0189 3644  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
11:27:32.0189 3644  C:\Windows\System32\msprivs.dll - ok
11:27:32.0220 3644  [ B561B451320B0B40908A8BFD81705262 ] C:\Windows\System32\netjoin.dll
11:27:32.0220 3644  C:\Windows\System32\netjoin.dll - ok
11:27:32.0236 3644  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
11:27:32.0236 3644  C:\Windows\System32\negoexts.dll - ok
11:27:32.0251 3644  [ 00B40A10E3DB79E4D3E127B9C2233A6B ] C:\Windows\System32\kerberos.dll
11:27:32.0251 3644  C:\Windows\System32\kerberos.dll - ok
11:27:32.0267 3644  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
11:27:32.0267 3644  C:\Windows\System32\cryptsp.dll - ok
11:27:32.0283 3644  [ FC76FE3C1E1FDB761244D4F74EF560FD ] C:\Windows\System32\mswsock.dll
11:27:32.0283 3644  C:\Windows\System32\mswsock.dll - ok
11:27:32.0298 3644  [ FA4DB05923DDDEDE3196ABD09AE0F1E9 ] C:\Windows\System32\msv1_0.dll
11:27:32.0298 3644  C:\Windows\System32\msv1_0.dll - ok
11:27:32.0314 3644  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
11:27:32.0314 3644  C:\Windows\System32\wship6.dll - ok
11:27:32.0345 3644  [ 956D030D375F207B22FB111E06EF9C35 ] C:\Windows\System32\netlogon.dll
11:27:32.0345 3644  C:\Windows\System32\netlogon.dll - ok
11:27:32.0361 3644  [ E247E7DEB20C0CF0801A8AC39E9CE1DF ] C:\Windows\System32\dnsapi.dll
11:27:32.0361 3644  C:\Windows\System32\dnsapi.dll - ok
11:27:32.0376 3644  [ 8CE22E63F08613036DF8C7B00FBDF36B ] C:\Windows\System32\logoncli.dll
11:27:32.0376 3644  C:\Windows\System32\logoncli.dll - ok
11:27:32.0392 3644  [ 90B780886BD813882CB382FF3E90E092 ] C:\Windows\System32\schannel.dll
11:27:32.0392 3644  C:\Windows\System32\schannel.dll - ok
11:27:32.0407 3644  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
11:27:32.0407 3644  C:\Windows\System32\wdigest.dll - ok
11:27:32.0439 3644  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
11:27:32.0439 3644  C:\Windows\System32\rsaenh.dll - ok
11:27:32.0454 3644  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
11:27:32.0454 3644  C:\Windows\System32\pku2u.dll - ok
11:27:32.0470 3644  [ 0DEFD5FBF801DD8F83BC0ED09861A8EC ] C:\Windows\System32\TSpkg.dll
11:27:32.0470 3644  C:\Windows\System32\TSpkg.dll - ok
11:27:32.0485 3644  [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
11:27:32.0485 3644  C:\Windows\System32\LIVESSP.DLL - ok
11:27:32.0517 3644  [ DA090E97E57DCB48888015B5D3C749CD ] C:\Windows\System32\bcryptprimitives.dll
11:27:32.0517 3644  C:\Windows\System32\bcryptprimitives.dll - ok
11:27:32.0532 3644  [ 9301B8810B2DA4EB6AD55DB75FC1E339 ] C:\Windows\System32\credssp.dll
11:27:32.0532 3644  C:\Windows\System32\credssp.dll - ok
11:27:32.0548 3644  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
11:27:32.0548 3644  C:\Windows\System32\efslsaext.dll - ok
11:27:32.0563 3644  [ 398712DDDAEFB85EDF61DF6A07B65C79 ] C:\Windows\System32\scecli.dll
11:27:32.0563 3644  C:\Windows\System32\scecli.dll - ok
11:27:32.0579 3644  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
11:27:32.0579 3644  C:\Windows\System32\ubpm.dll - ok
11:27:32.0595 3644  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
11:27:32.0595 3644  C:\Windows\System32\svchost.exe - ok
11:27:32.0626 3644  [ 98B1721B8718164293B9701B98C52D77 ] C:\Windows\System32\umpnpmgr.dll
11:27:32.0626 3644  C:\Windows\System32\umpnpmgr.dll - ok
11:27:32.0641 3644  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
11:27:32.0641 3644  C:\Windows\System32\devrtl.dll - ok
11:27:32.0657 3644  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
11:27:32.0657 3644  C:\Windows\System32\SPInf.dll - ok
11:27:32.0673 3644  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
11:27:32.0673 3644  C:\Windows\System32\gpapi.dll - ok
11:27:32.0688 3644  [ 0776CF79590BDEF0A2728B0B9A813B96 ] C:\Windows\System32\userenv.dll
11:27:32.0688 3644  C:\Windows\System32\userenv.dll - ok
11:27:32.0704 3644  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
11:27:32.0704 3644  C:\Windows\System32\pcwum.dll - ok
11:27:32.0719 3644  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
11:27:32.0719 3644  C:\Windows\System32\umpo.dll - ok
11:27:32.0735 3644  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
11:27:32.0735 3644  C:\Windows\System32\powrprof.dll - ok
11:27:32.0751 3644  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
11:27:32.0766 3644  C:\Windows\System32\drivers\luafv.sys - ok
11:27:32.0782 3644  [ 7266972E86890E2B30C0C322E906B027 ] C:\Windows\System32\rpcss.dll
11:27:32.0782 3644  C:\Windows\System32\rpcss.dll - ok
11:27:32.0797 3644  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
11:27:32.0797 3644  C:\Windows\System32\RpcEpMap.dll - ok
11:27:32.0813 3644  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
11:27:32.0813 3644  C:\Windows\System32\WSHTCPIP.DLL - ok
11:27:32.0829 3644  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
11:27:32.0829 3644  C:\Windows\System32\wshqos.dll - ok
11:27:32.0844 3644  [ E5BD1B0943B6AA242B79995B42CCD1F8 ] C:\Windows\System32\atiesrxx.exe
11:27:32.0844 3644  C:\Windows\System32\atiesrxx.exe - ok
11:27:32.0875 3644  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
11:27:32.0875 3644  C:\Windows\System32\FirewallAPI.dll - ok
11:27:32.0891 3644  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
11:27:32.0891 3644  C:\Windows\System32\wtsapi32.dll - ok
11:27:32.0907 3644  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
11:27:32.0907 3644  C:\Windows\System32\version.dll - ok
11:27:32.0922 3644  [ 93E6A39B1DB898F7C949FA5567E774CF ] C:\Windows\System32\LogonUI.exe
11:27:32.0922 3644  C:\Windows\System32\LogonUI.exe - ok
11:27:32.0938 3644  [ BCF0A980D21711E47D0803BDB0E99CAD ] C:\Windows\System32\authui.dll
11:27:32.0938 3644  C:\Windows\System32\authui.dll - ok
11:27:32.0969 3644  [ DBA90306A721FB922FDACED9E9728C28 ] C:\Windows\System32\cryptui.dll
11:27:32.0969 3644  C:\Windows\System32\cryptui.dll - ok
11:27:32.0985 3644  [ 99ABDA9C92EC76CBAF52F00239D909C9 ] C:\Windows\System32\wevtsvc.dll
11:27:32.0985 3644  C:\Windows\System32\wevtsvc.dll - ok
11:27:33.0000 3644  [ 113921FC4A80A3DDF646852998B836D0 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll
11:27:33.0000 3644  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7\comctl32.dll - ok
11:27:33.0031 3644  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
11:27:33.0031 3644  C:\Windows\System32\netprofm.dll - ok
11:27:33.0047 3644  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
11:27:33.0047 3644  C:\Windows\System32\samlib.dll - ok
11:27:33.0063 3644  [ 84F8C8B9FB1F12532999D25F5DD7E77C ] C:\Windows\System32\shacct.dll
11:27:33.0063 3644  C:\Windows\System32\shacct.dll - ok
11:27:33.0078 3644  [ 07721A77180EDD4D39CCB865BF63C7FD ] C:\Windows\System32\audiosrv.dll
11:27:33.0078 3644  C:\Windows\System32\audiosrv.dll - ok
11:27:33.0094 3644  [ B27EA141A7E748B607600A8551A44D5A ] C:\Windows\System32\propsys.dll
11:27:33.0094 3644  C:\Windows\System32\propsys.dll - ok
11:27:33.0125 3644  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
11:27:33.0125 3644  C:\Windows\System32\avrt.dll - ok
11:27:33.0141 3644  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
11:27:33.0141 3644  C:\Windows\System32\mmcss.dll - ok
11:27:33.0156 3644  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
11:27:33.0156 3644  C:\Windows\System32\MMDevAPI.dll - ok
11:27:33.0172 3644  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
11:27:33.0172 3644  C:\Windows\System32\adtschema.dll - ok
11:27:33.0203 3644  [ 3C1284516A62078FB68F768DE4F1A7BE ] C:\Windows\System32\sysmain.dll
11:27:33.0203 3644  C:\Windows\System32\sysmain.dll - ok
11:27:33.0219 3644  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
11:27:33.0219 3644  C:\Windows\System32\uxtheme.dll - ok
11:27:33.0234 3644  [ DD0701DE0AAA010E6EBD0F53B672DCEE ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll
11:27:33.0234 3644  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_2b47185a719d6182\GdiPlus.dll - ok
11:27:33.0265 3644  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
11:27:33.0265 3644  C:\Windows\System32\dui70.dll - ok
11:27:33.0281 3644  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
11:27:33.0281 3644  C:\Windows\System32\wlansvc.dll - ok
11:27:33.0297 3644  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
11:27:33.0297 3644  C:\Windows\System32\duser.dll - ok
11:27:33.0312 3644  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
11:27:33.0312 3644  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
11:27:33.0328 3644  [ D152EBC32A23069F8AA1D1F24B15E3F9 ] C:\Windows\System32\audiodg.exe
11:27:33.0328 3644  C:\Windows\System32\audiodg.exe - ok
11:27:33.0359 3644  [ B2E3D4BB3389817FB5E4CD9378BC8791 ] C:\Windows\System32\SndVolSSO.dll
11:27:33.0359 3644  C:\Windows\System32\SndVolSSO.dll - ok
11:27:33.0375 3644  [ AECAB449567D1846DAD63ECE49E893E3 ] C:\Windows\System32\MPSSVC.dll
11:27:33.0375 3644  C:\Windows\System32\MPSSVC.dll - ok
11:27:33.0390 3644  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
11:27:33.0390 3644  C:\Windows\System32\hid.dll - ok
11:27:33.0406 3644  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
11:27:33.0406 3644  C:\Windows\System32\dwmapi.dll - ok
11:27:33.0421 3644  [ 39F91A948E6017B732C4A0B3086A8E32 ] C:\Windows\System32\xmllite.dll
11:27:33.0421 3644  C:\Windows\System32\xmllite.dll - ok
11:27:33.0437 3644  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
11:27:33.0437 3644  C:\Windows\System32\WUDFPlatform.dll - ok
11:27:33.0468 3644  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
11:27:33.0468 3644  C:\Windows\System32\ntmarta.dll - ok
11:27:33.0484 3644  [ EA99F234843BBDDA1ABD2767111ADE25 ] C:\Windows\System32\WindowsCodecs.dll
11:27:33.0484 3644  C:\Windows\System32\WindowsCodecs.dll - ok
11:27:33.0499 3644  [ FE5AB4525BC2EC68B9119A6E5D40128B ] C:\Windows\System32\gpsvc.dll
11:27:33.0499 3644  C:\Windows\System32\gpsvc.dll - ok
11:27:33.0531 3644  [ F7866AF72ABBAF84B1FA5AA195378C59 ] C:\Windows\System32\drivers\fltMgr.sys
11:27:33.0531 3644  C:\Windows\System32\drivers\fltMgr.sys - ok
11:27:33.0546 3644  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
11:27:33.0546 3644  C:\Windows\System32\PSHED.DLL - ok
11:27:33.0562 3644  [ 86E3822A34D454032D8E88C72AE8CF2D ] C:\Windows\System32\nlaapi.dll
11:27:33.0562 3644  C:\Windows\System32\nlaapi.dll - ok
11:27:33.0577 3644  [ 97293447431311C06703368AD0F6C4BE ] C:\Windows\System32\profsvc.dll
11:27:33.0577 3644  C:\Windows\System32\profsvc.dll - ok
11:27:33.0593 3644  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
11:27:33.0593 3644  C:\Windows\System32\atl.dll - ok
11:27:33.0624 3644  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
11:27:33.0624 3644  C:\Windows\System32\themeservice.dll - ok
11:27:33.0640 3644  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
11:27:33.0640 3644  C:\Windows\System32\dsrole.dll - ok
11:27:33.0655 3644  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
11:27:33.0655 3644  C:\Windows\System32\slc.dll - ok
11:27:33.0687 3644  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
11:27:33.0687 3644  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
11:27:33.0702 3644  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
11:27:33.0702 3644  C:\Windows\System32\es.dll - ok
11:27:33.0718 3644  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
11:27:33.0718 3644  C:\Windows\System32\comres.dll - ok
11:27:33.0733 3644  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
11:27:33.0733 3644  C:\Windows\System32\Sens.dll - ok
11:27:33.0749 3644  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
11:27:33.0749 3644  C:\Windows\System32\uxsms.dll - ok
11:27:33.0765 3644  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
11:27:33.0765 3644  C:\Windows\System32\drivers\lltdio.sys - ok
11:27:33.0780 3644  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
11:27:33.0780 3644  C:\Windows\System32\drivers\nwifi.sys - ok
11:27:33.0811 3644  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] C:\Windows\System32\drivers\ndisuio.sys
11:27:33.0811 3644  C:\Windows\System32\drivers\ndisuio.sys - ok
11:27:33.0827 3644  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
11:27:33.0827 3644  C:\Windows\System32\winbrand.dll - ok
11:27:33.0843 3644  [ 6EE34F5A962FC2B9124EC1BEF9BE82B8 ] C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll
11:27:33.0843 3644  C:\Program Files (x86)\ASUS\SmartLogon\system\FaceCredentialProvider64.dll - ok
11:27:33.0858 3644  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
11:27:33.0858 3644  C:\Windows\System32\drivers\rspndr.sys - ok
11:27:33.0889 3644  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
11:27:33.0889 3644  C:\Windows\System32\lmhsvc.dll - ok
11:27:33.0905 3644  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll


& the rest

11:27:33.0905 3644  C:\Windows\System32\nsisvc.dll - ok
11:27:33.0921 3644  [ 57FE2CFC2F25C200499D5D934EA24EB5 ] C:\Windows\System32\IPHLPAPI.DLL
11:27:33.0921 3644  C:\Windows\System32\IPHLPAPI.DLL - ok
11:27:33.0936 3644  [ CE3B9562D997F69B330D181A8875960F ] C:\Windows\System32\dhcpcore.dll
11:27:33.0936 3644  C:\Windows\System32\dhcpcore.dll - ok
11:27:33.0967 3644  [ FD5BA198F7190DFE9BE1947EB8710396 ] C:\Windows\System32\nrpsrv.dll
11:27:33.0967 3644  C:\Windows\System32\nrpsrv.dll - ok
11:27:33.0983 3644  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
11:27:33.0983 3644  C:\Windows\System32\winnsi.dll - ok
11:27:33.0999 3644  [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
11:27:33.0999 3644  C:\Windows\System32\dhcpcore6.dll - ok
11:27:34.0014 3644  [ 3C27B50BC43D5FED43081A784DD17190 ] C:\Windows\System32\netapi32.dll
11:27:34.0014 3644  C:\Windows\System32\netapi32.dll - ok
11:27:34.0045 3644  [ 85CF424C74A1D5EC33533E1DBFF9920A ] C:\Windows\System32\dnsrslvr.dll
11:27:34.0045 3644  C:\Windows\System32\dnsrslvr.dll - ok
11:27:34.0045 3644  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
11:27:34.0045 3644  C:\Windows\System32\keyiso.dll - ok
11:27:34.0077 3644  [ 4C8C2F987FC397DCE98874D6C9C0736A ] C:\Windows\System32\netutils.dll
11:27:34.0077 3644  C:\Windows\System32\netutils.dll - ok
11:27:34.0092 3644  [ B33CBD1A8C2A33121321D0FEBD7DD870 ] C:\Windows\System32\wkscli.dll
11:27:34.0092 3644  C:\Windows\System32\wkscli.dll - ok
11:27:34.0108 3644  [ 982F5395AD181179320083A4FA7E7CA8 ] C:\Windows\System32\eapphost.dll
11:27:34.0108 3644  C:\Windows\System32\eapphost.dll - ok
11:27:34.0139 3644  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
11:27:34.0139 3644  C:\Windows\System32\eapsvc.dll - ok
11:27:34.0155 3644  [ A87205FE194B239D8D96E4972B779CC1 ] C:\Windows\System32\samcli.dll
11:27:34.0155 3644  C:\Windows\System32\samcli.dll - ok
11:27:34.0170 3644  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
11:27:34.0170 3644  C:\Windows\System32\VaultCredProvider.dll - ok
11:27:34.0186 3644  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
11:27:34.0186 3644  C:\Windows\System32\FWPUCLNT.DLL - ok
11:27:34.0201 3644  [ 2A381A9740165D7A1405148B6DFB3E38 ] C:\Windows\System32\SmartcardCredentialProvider.dll
11:27:34.0201 3644  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
11:27:34.0233 3644  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
11:27:34.0233 3644  C:\Windows\System32\dnsext.dll - ok
11:27:34.0248 3644  [ 2017BFE87CAB3D7EF632CFD2AA08D3F0 ] C:\Windows\System32\umb.dll
11:27:34.0248 3644  C:\Windows\System32\umb.dll - ok
11:27:34.0264 3644  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
11:27:34.0264 3644  C:\Windows\System32\BioCredProv.dll - ok
11:27:34.0279 3644  [ 48A31B7CF046702059A86836DC21D786 ] C:\Windows\System32\wlanmsm.dll
11:27:34.0279 3644  C:\Windows\System32\wlanmsm.dll - ok
11:27:34.0295 3644  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
11:27:34.0295 3644  C:\Windows\System32\dhcpcsvc.dll - ok
11:27:34.0311 3644  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
11:27:34.0311 3644  C:\Windows\System32\wlansec.dll - ok
11:27:34.0326 3644  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
11:27:34.0326 3644  C:\Windows\System32\winbio.dll - ok
11:27:34.0357 3644  [ 97D38371502AA797DB14EB1FA5FCE4CD ] C:\Windows\System32\credui.dll
11:27:34.0357 3644  C:\Windows\System32\credui.dll - ok
11:27:34.0373 3644  [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
11:27:34.0373 3644  C:\Windows\System32\dhcpcsvc6.dll - ok
11:27:34.0389 3644  [ D2B0D1C2BE5ECA80387F7CB8626DCAFE ] C:\Windows\System32\onex.dll
11:27:34.0389 3644  C:\Windows\System32\onex.dll - ok
11:27:34.0404 3644  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
11:27:34.0404 3644  C:\Windows\System32\vaultcli.dll - ok
11:27:34.0420 3644  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
11:27:34.0420 3644  C:\Windows\System32\certCredProvider.dll - ok
11:27:34.0451 3644  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
11:27:34.0451 3644  C:\Windows\System32\eappcfg.dll - ok
11:27:34.0482 3644  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
11:27:34.0482 3644  C:\Windows\System32\eappprxy.dll - ok
11:27:34.0482 3644  [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
11:27:34.0482 3644  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
11:27:34.0513 3644  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
11:27:34.0513 3644  C:\Windows\System32\l2gpstore.dll - ok
11:27:34.0529 3644  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
11:27:34.0529 3644  C:\Windows\System32\wlgpclnt.dll - ok
11:27:34.0545 3644  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
11:27:34.0545 3644  C:\Windows\System32\rasplap.dll - ok
11:27:34.0560 3644  [ 22E7431E7DAE8463AF94A79A054276E5 ] C:\Windows\System32\WinSCard.dll
11:27:34.0560 3644  C:\Windows\System32\WinSCard.dll - ok
11:27:34.0576 3644  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
11:27:34.0576 3644  C:\Windows\System32\wlanutil.dll - ok
11:27:34.0607 3644  [ 7C02AD2F4BEF1D5C51CB9B402AB3603F ] C:\Windows\System32\msxml6.dll
11:27:34.0607 3644  C:\Windows\System32\msxml6.dll - ok
11:27:34.0623 3644  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
11:27:34.0623 3644  C:\Windows\System32\rasapi32.dll - ok
11:27:34.0638 3644  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
11:27:34.0638 3644  C:\Windows\System32\rasman.dll - ok
11:27:34.0654 3644  [ F5A61F0A0030C80DF319B0C14A4C8885 ] C:\Windows\System32\rtutils.dll
11:27:34.0654 3644  C:\Windows\System32\rtutils.dll - ok
11:27:34.0669 3644  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
11:27:34.0669 3644  C:\Windows\System32\UXInit.dll - ok
11:27:34.0685 3644  [ 63C4BD03AA3703887D008BCEF5BCD799 ] C:\Windows\System32\atieclxx.exe
11:27:34.0685 3644  C:\Windows\System32\atieclxx.exe - ok
11:27:34.0716 3644  [ F2B968CD031BBB65B9992DE977A3B95E ] C:\Windows\System32\atiadlxx.dll
11:27:34.0716 3644  C:\Windows\System32\atiadlxx.dll - ok
11:27:34.0732 3644  [ 6E79A119B0CE418FE44E0C824BF3F039 ] C:\Windows\System32\FBAgent.exe
11:27:34.0732 3644  C:\Windows\System32\FBAgent.exe - ok
11:27:34.0747 3644  [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
11:27:34.0747 3644  C:\Windows\System32\wlanext.exe - ok
11:27:34.0763 3644  [ 7EB88F63D424832B774E24458DCE2049 ] C:\Windows\System32\conhost.exe
11:27:34.0763 3644  C:\Windows\System32\conhost.exe - ok
11:27:34.0779 3644  [ 599EBE6C7EA52B5FF9603F203E8EC080 ] C:\Windows\System32\msi.dll
11:27:34.0779 3644  C:\Windows\System32\msi.dll - ok
11:27:34.0810 3644  [ 51D49EE09ACB59BB82FCDCAAD72FC123 ] C:\Windows\System32\athihvs.dll
11:27:34.0810 3644  C:\Windows\System32\athihvs.dll - ok
11:27:34.0825 3644  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
11:27:34.0825 3644  C:\Windows\System32\wlanapi.dll - ok
11:27:34.0841 3644  [ 18E5C2F937F9DEB8C282DF66A3761925 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
11:27:34.0841 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe - ok
11:27:34.0857 3644  [ DB6DD54A93522CA3572D04B56C5DB890 ] C:\Windows\SysWOW64\ntdll.dll
11:27:34.0857 3644  C:\Windows\SysWOW64\ntdll.dll - ok
11:27:34.0888 3644  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
11:27:34.0888 3644  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
11:27:34.0903 3644  [ D3AD6FEDD2F24FFF984D4487C7CF2A89 ] C:\Windows\System32\atimuixx.dll
11:27:34.0903 3644  C:\Windows\System32\atimuixx.dll - ok
11:27:34.0919 3644  [ 0060718115F3590EACEB860DFFE95A0C ] C:\Windows\System32\wow64.dll
11:27:34.0919 3644  C:\Windows\System32\wow64.dll - ok
11:27:34.0935 3644  [ 865C5A432F2855F0669DCE66547CC237 ] C:\Windows\System32\wow64win.dll
11:27:34.0935 3644  C:\Windows\System32\wow64win.dll - ok
11:27:34.0950 3644  [ 655A3626F78139E86CF05F5D62E3F7EF ] C:\Windows\System32\pdh.dll
11:27:34.0950 3644  C:\Windows\System32\pdh.dll - ok
11:27:34.0981 3644  [ E4B976BBA2661E8FCA283FC48F7EFBEE ] C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
11:27:34.0981 3644  C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe - ok
11:27:34.0997 3644  [ 3CEE7783176FA7BED592E4C14BDE241E ] C:\Windows\System32\wow64cpu.dll
11:27:34.0997 3644  C:\Windows\System32\wow64cpu.dll - ok
11:27:35.0028 3644  [ 385BE92E3106491BBB542F8F1C06C606 ] C:\Windows\SysWOW64\kernel32.dll
11:27:35.0028 3644  C:\Windows\SysWOW64\kernel32.dll - ok
11:27:35.0044 3644  [ 6E26AABE8342B18A9215CC71039AD7B4 ] C:\Windows\SysWOW64\KernelBase.dll
11:27:35.0044 3644  C:\Windows\SysWOW64\KernelBase.dll - ok
11:27:35.0075 3644  [ F8A61B2E713309B4616D107919BDAB6E ] C:\Windows\SysWOW64\msvcrt.dll
11:27:35.0075 3644  C:\Windows\SysWOW64\msvcrt.dll - ok
11:27:35.0091 3644  [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\SysWOW64\wtsapi32.dll
11:27:35.0091 3644  C:\Windows\SysWOW64\wtsapi32.dll - ok
11:27:35.0106 3644  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
11:27:35.0106 3644  C:\Windows\System32\imageres.dll - ok
11:27:35.0137 3644  [ E8B0FFC209E504CB7E79FC24E6C085F0 ] C:\Windows\SysWOW64\user32.dll
11:27:35.0137 3644  C:\Windows\SysWOW64\user32.dll - ok
11:27:35.0153 3644  [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
11:27:35.0153 3644  C:\Windows\System32\perfos.dll - ok
11:27:35.0169 3644  [ FBE1E0B9EF53B5BB7C36763AA6A685CF ] C:\Windows\SysWOW64\gdi32.dll
11:27:35.0169 3644  C:\Windows\SysWOW64\gdi32.dll - ok
11:27:35.0184 3644  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
11:27:35.0184 3644  C:\Windows\SysWOW64\lpk.dll - ok
11:27:35.0200 3644  [ 011B7A81E28C748D7631CF3D72323DD2 ] C:\Windows\SysWOW64\usp10.dll
11:27:35.0200 3644  C:\Windows\SysWOW64\usp10.dll - ok
11:27:35.0247 3644  [ 8F6D9A20F1FB06F0602A7D5A82840DBF ] C:\Windows\System32\netcfgx.dll
11:27:35.0247 3644  C:\Windows\System32\netcfgx.dll - ok
11:27:35.0293 3644  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
11:27:35.0293 3644  C:\Windows\System32\drivers\vwifimp.sys - ok
11:27:35.0309 3644  [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\SysWOW64\advapi32.dll
11:27:35.0309 3644  C:\Windows\SysWOW64\advapi32.dll - ok
11:27:35.0325 3644  [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\SysWOW64\userenv.dll
11:27:35.0325 3644  C:\Windows\SysWOW64\userenv.dll - ok
11:27:35.0356 3644  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
11:27:35.0356 3644  C:\Windows\SysWOW64\sechost.dll - ok
11:27:35.0371 3644  [ 90385551B6B3793E949DF310A11D64E7 ] C:\Windows\SysWOW64\rpcrt4.dll
11:27:35.0371 3644  C:\Windows\SysWOW64\rpcrt4.dll - ok
11:27:35.0403 3644  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
11:27:35.0403 3644  C:\Windows\System32\dllhost.exe - ok
11:27:35.0418 3644  [ BC052EFAD10ACA1AD69545B629F50D99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll
11:27:35.0418 3644  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_a44e1fc257f685f6\comctl32.dll - ok
11:27:35.0434 3644  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
11:27:35.0434 3644  C:\Windows\System32\IDStore.dll - ok
11:27:35.0465 3644  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
11:27:35.0465 3644  C:\Windows\System32\AtBroker.exe - ok
11:27:35.0481 3644  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
11:27:35.0481 3644  C:\Windows\System32\mpr.dll - ok
11:27:35.0496 3644  [ 6F8F1376A13114CC10C0E69274F5A4DE ] C:\Windows\System32\userinit.exe
11:27:35.0496 3644  C:\Windows\System32\userinit.exe - ok
11:27:35.0527 3644  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
11:27:35.0527 3644  C:\Windows\System32\dwm.exe - ok
11:27:35.0543 3644  [ EF184066A851E7838D5BF8C8FAE66CC4 ] C:\Windows\System32\dwmredir.dll
11:27:35.0543 3644  C:\Windows\System32\dwmredir.dll - ok
11:27:35.0559 3644  [ 9D8AB964CE511AF81207DF0E1205184C ] C:\Windows\System32\dwmcore.dll
11:27:35.0559 3644  C:\Windows\System32\dwmcore.dll - ok
11:27:35.0590 3644  [ 58A0C212ED2ABE462B3A9626F5B96261 ] C:\Windows\System32\d3d10_1.dll
11:27:35.0590 3644  C:\Windows\System32\d3d10_1.dll - ok
11:27:35.0605 3644  [ AFBBC34687FA48A4928B99AF097C1EC0 ] C:\Windows\System32\d3d10_1core.dll
11:27:35.0605 3644  C:\Windows\System32\d3d10_1core.dll - ok
11:27:35.0637 3644  [ D95DB5C915C001F78709C17285109BDC ] C:\Windows\System32\dxgi.dll
11:27:35.0637 3644  C:\Windows\System32\dxgi.dll - ok
11:27:35.0652 3644  [ 0862495E0C825893DB75EF44FAEA8E93 ] C:\Windows\explorer.exe
11:27:35.0652 3644  C:\Windows\explorer.exe - ok
11:27:35.0668 3644  [ 994EA1FFFEAD353A65159D6F9EE85801 ] C:\Windows\System32\aticfx64.dll
11:27:35.0668 3644  C:\Windows\System32\aticfx64.dll - ok
11:27:35.0683 3644  [ FBA3BB8981B8ED14C8CEC1817002AD9B ] C:\Windows\System32\atiuxp64.dll
11:27:35.0683 3644  C:\Windows\System32\atiuxp64.dll - ok
11:27:35.0699 3644  [ FFFB20477E23A90F0A3C1B912663015F ] C:\Windows\System32\atidxx64.dll
11:27:35.0699 3644  C:\Windows\System32\atidxx64.dll - ok
11:27:35.0715 3644  [ 1C27E145EC99F20BC1B13FD98165A83F ] C:\Windows\System32\ExplorerFrame.dll
11:27:35.0715 3644  C:\Windows\System32\ExplorerFrame.dll - ok
11:27:35.0746 3644  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
11:27:35.0746 3644  C:\Windows\System32\uDWM.dll - ok
11:27:35.0777 3644  [ 6FCAFCB0820C9BC0EE363F26A9A9D8F3 ] C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
11:27:35.0777 3644  C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll - ok
11:27:35.0793 3644  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
11:27:35.0793 3644  C:\Windows\System32\EhStorShell.dll - ok
11:27:35.0824 3644  [ 5F917AEEEA363B8A5DC8624795CB1D60 ] C:\Windows\System32\ntshrui.dll
11:27:35.0824 3644  C:\Windows\System32\ntshrui.dll - ok
11:27:35.0839 3644  [ BFEBE1E4B301F44CEA7C1B4021BD0264 ] C:\Windows\System32\cscapi.dll
11:27:35.0839 3644  C:\Windows\System32\cscapi.dll - ok
11:27:35.0871 3644  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
11:27:35.0871 3644  C:\Windows\System32\IconCodecService.dll - ok
11:27:35.0886 3644  [ 351F62085F1D007533B4BB159C9EFDE3 ] C:\Windows\SysWOW64\sspicli.dll
11:27:35.0886 3644  C:\Windows\SysWOW64\sspicli.dll - ok
11:27:35.0902 3644  [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\SysWOW64\comdlg32.dll
11:27:35.0917 3644  C:\Windows\SysWOW64\comdlg32.dll - ok
11:27:35.0933 3644  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
11:27:35.0933 3644  C:\Windows\SysWOW64\cryptbase.dll - ok
11:27:35.0949 3644  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
11:27:35.0949 3644  C:\Windows\SysWOW64\msimg32.dll - ok
11:27:35.0964 3644  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
11:27:35.0964 3644  C:\Windows\SysWOW64\profapi.dll - ok
11:27:35.0980 3644  [ 0DE3069D6E09BA262856EF31C941BEFE ] C:\Windows\SysWOW64\imm32.dll
11:27:35.0980 3644  C:\Windows\SysWOW64\imm32.dll - ok
11:27:36.0011 3644  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
11:27:36.0011 3644  C:\Windows\SysWOW64\msctf.dll - ok
11:27:36.0027 3644  [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\SysWOW64\shlwapi.dll
11:27:36.0027 3644  C:\Windows\SysWOW64\shlwapi.dll - ok
11:27:36.0042 3644  [ 4C016FD76ED5C05E84CA8CAB77993961 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
11:27:36.0042 3644  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys - ok
11:27:36.0058 3644  [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\SysWOW64\winsta.dll
11:27:36.0058 3644  C:\Windows\SysWOW64\winsta.dll - ok
11:27:36.0089 3644  [ 4B8DD8541C0E26602005DD0137333615 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
11:27:36.0089 3644  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll - ok
11:27:36.0105 3644  [ 7910158929571214A959D5A6D16DD9C0 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
11:27:36.0105 3644  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe - ok
11:27:36.0120 3644  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] C:\Windows\System32\shsvcs.dll
11:27:36.0120 3644  C:\Windows\System32\shsvcs.dll - ok
11:27:36.0136 3644  [ 2CBC35E872BA9B46474890135B56DD66 ] C:\Windows\SysWOW64\shell32.dll
11:27:36.0136 3644  C:\Windows\SysWOW64\shell32.dll - ok
11:27:36.0151 3644  [ 624D0F5FF99428BB90A5B8A4123E918E ] C:\Windows\System32\schedsvc.dll
11:27:36.0151 3644  C:\Windows\System32\schedsvc.dll - ok
11:27:36.0183 3644  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
11:27:36.0183 3644  C:\Windows\System32\ktmw32.dll - ok
11:27:36.0198 3644  [ 1B547066D0A6CD40EB3BAAC6A9C7E7A9 ] C:\Windows\System32\taskcomp.dll
11:27:36.0198 3644  C:\Windows\System32\taskcomp.dll - ok
11:27:36.0214 3644  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
11:27:36.0214 3644  C:\Windows\System32\drivers\fastfat.sys - ok
11:27:36.0229 3644  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] C:\Windows\System32\drivers\http.sys
11:27:36.0229 3644  C:\Windows\System32\drivers\http.sys - ok
11:27:36.0261 3644  [ 567977DC43CC13C4C35ED7084C0B84D5 ] C:\Windows\System32\spoolsv.exe
11:27:36.0261 3644  C:\Windows\System32\spoolsv.exe - ok
11:27:36.0276 3644  [ 60CAE1FA4888ED41B41AEE91C774E4A2 ] C:\Windows\System32\taskeng.exe
11:27:36.0276 3644  C:\Windows\System32\taskeng.exe - ok
11:27:36.0292 3644  [ 3EEFB971D61EF9638FD21F14C703CA11 ] C:\Windows\System32\taskhost.exe
11:27:36.0292 3644  C:\Windows\System32\taskhost.exe - ok
11:27:36.0307 3644  [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\SysWOW64\winspool.drv
11:27:36.0307 3644  C:\Windows\SysWOW64\winspool.drv - ok
11:27:36.0323 3644  [ E2C2D8C982316C8ABF800C6CE3F28FAB ] C:\Windows\SysWOW64\ole32.dll
11:27:36.0323 3644  C:\Windows\SysWOW64\ole32.dll - ok
11:27:36.0354 3644  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
11:27:36.0354 3644  C:\Windows\System32\PlaySndSrv.dll - ok
11:27:36.0370 3644  [ 4992C609A6315671463E30F6512BC022 ] C:\Windows\System32\BFE.DLL
11:27:36.0370 3644  C:\Windows\System32\BFE.DLL - ok
11:27:36.0385 3644  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
11:27:36.0385 3644  C:\Windows\System32\MsCtfMonitor.dll - ok
11:27:36.0401 3644  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
11:27:36.0401 3644  C:\Windows\System32\msutb.dll - ok
11:27:36.0432 3644  [ 705C210EFC5564BE49EB026BD7AFF27A ] C:\Windows\SysWOW64\oleaut32.dll
11:27:36.0432 3644  C:\Windows\SysWOW64\oleaut32.dll - ok
11:27:36.0448 3644  [ 0470997A5ADC2FCDDCB3461D92073FAA ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
11:27:36.0448 3644  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll - ok
11:27:36.0463 3644  [ 5DE691884C240227B733CC18BBFCA3D8 ] C:\Windows\SysWOW64\netapi32.dll
11:27:36.0463 3644  C:\Windows\SysWOW64\netapi32.dll - ok
11:27:36.0479 3644  [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\SysWOW64\netutils.dll
11:27:36.0479 3644  C:\Windows\SysWOW64\netutils.dll - ok
11:27:36.0510 3644  [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\SysWOW64\samcli.dll
11:27:36.0510 3644  C:\Windows\SysWOW64\samcli.dll - ok
11:27:36.0526 3644  [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\SysWOW64\srvcli.dll
11:27:36.0526 3644  C:\Windows\SysWOW64\srvcli.dll - ok
11:27:36.0541 3644  [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\SysWOW64\wkscli.dll
11:27:36.0541 3644  C:\Windows\SysWOW64\wkscli.dll - ok
11:27:36.0557 3644  [ 7DA089C75B1E92032D0CBE4ADE7C32BC ] C:\Windows\SysWOW64\crypt32.dll
11:27:36.0557 3644  C:\Windows\SysWOW64\crypt32.dll - ok
11:27:36.0588 3644  [ 7F37322A489E285CFBCC02F6A53B3F1B ] C:\Windows\System32\HotStartUserAgent.dll
11:27:36.0588 3644  C:\Windows\System32\HotStartUserAgent.dll - ok
11:27:36.0604 3644  [ 1B38A0F123FCF1546FACEAF1EFAFAA00 ] C:\Windows\System32\fveapi.dll
11:27:36.0604 3644  C:\Windows\System32\fveapi.dll - ok
11:27:36.0619 3644  [ 4C04900AA8C323F5D4C316A89E976849 ] C:\Windows\SysWOW64\msasn1.dll
11:27:36.0619 3644  C:\Windows\SysWOW64\msasn1.dll - ok
11:27:36.0635 3644  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
11:27:36.0635 3644  C:\Windows\System32\tbs.dll - ok
11:27:36.0666 3644  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
11:27:36.0666 3644  C:\Windows\System32\fvecerts.dll - ok
11:27:36.0682 3644  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
11:27:36.0682 3644  C:\Windows\System32\winmm.dll - ok
11:27:36.0697 3644  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
11:27:36.0697 3644  C:\Windows\SysWOW64\uxtheme.dll - ok
11:27:36.0713 3644  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
11:27:36.0713 3644  C:\Windows\SysWOW64\clbcatq.dll - ok
11:27:36.0729 3644  [ B9980FCD160D1EC1422B111C74B56DB2 ] C:\Windows\SysWOW64\quartz.dll
11:27:36.0729 3644  C:\Windows\SysWOW64\quartz.dll - ok
11:27:36.0760 3644  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
11:27:36.0760 3644  C:\Windows\System32\wiarpc.dll - ok
11:27:36.0775 3644  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
11:27:36.0775 3644  C:\Windows\System32\TSChannel.dll - ok
11:27:36.0791 3644  [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\SysWOW64\winmm.dll
11:27:36.0791 3644  C:\Windows\SysWOW64\winmm.dll - ok
11:27:36.0822 3644  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
11:27:36.0822 3644  C:\Windows\SysWOW64\dwmapi.dll - ok
11:27:36.0838 3644  [ 7DBA2DA71D798C644D59B454374F4049 ] C:\Windows\SysWOW64\qcap.dll
11:27:36.0838 3644  C:\Windows\SysWOW64\qcap.dll - ok
11:27:36.0853 3644  [ 19D20159708E152267E53B66677A4995 ] C:\Windows\System32\drivers\bowser.sys
11:27:36.0853 3644  C:\Windows\System32\drivers\bowser.sys - ok
11:27:36.0869 3644  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
11:27:36.0869 3644  C:\Windows\System32\drivers\mpsdrv.sys - ok
11:27:36.0885 3644  [ 2DEEB96A0957BD058753FF250E85EF49 ] C:\Windows\SysWOW64\msvfw32.dll
11:27:36.0885 3644  C:\Windows\SysWOW64\msvfw32.dll - ok
11:27:36.0900 3644  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
11:27:36.0900 3644  C:\Windows\SysWOW64\version.dll - ok
11:27:36.0931 3644  [ 040D62A9D8AD28922632137ACDD984F2 ] C:\Windows\System32\drivers\mrxsmb.sys
11:27:36.0931 3644  C:\Windows\System32\drivers\mrxsmb.sys - ok
11:27:36.0947 3644  [ F0067552F8F9B33D7C59403AB808A3CB ] C:\Windows\System32\drivers\mrxsmb10.sys
11:27:36.0947 3644  C:\Windows\System32\drivers\mrxsmb10.sys - ok
11:27:36.0963 3644  [ 3C142D31DE9F2F193218A53FE2632051 ] C:\Windows\System32\drivers\mrxsmb20.sys
11:27:36.0963 3644  C:\Windows\System32\drivers\mrxsmb20.sys - ok
11:27:36.0978 3644  [ BB6E166AE66AD2A33ECE2849991517FF ] C:\Windows\System32\lpksetup.exe
11:27:36.0978 3644  C:\Windows\System32\lpksetup.exe - ok
11:27:36.0994 3644  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] C:\Windows\System32\wkssvc.dll
11:27:36.0994 3644  C:\Windows\System32\wkssvc.dll - ok
11:27:37.0025 3644  [ 360E61217D4E1E333583D0C721057F70 ] C:\Windows\System32\drivers\tmcomm.sys
11:27:37.0025 3644  C:\Windows\System32\drivers\tmcomm.sys - ok
11:27:37.0041 3644  [ 699D34EB7C670139CA23A65372BD5743 ] C:\Windows\System32\drivers\tmevtmgr.sys
11:27:37.0041 3644  C:\Windows\System32\drivers\tmevtmgr.sys - ok
11:27:37.0056 3644  [ CFF2D779B7068D39FA444A3D54FAE6F9 ] C:\Windows\System32\dpx.dll
11:27:37.0056 3644  C:\Windows\System32\dpx.dll - ok
11:27:37.0072 3644  [ 73AAFFDD2AC3C8814B26C440E5DD9DD4 ] C:\Windows\System32\drivers\tmactmon.sys
11:27:37.0072 3644  C:\Windows\System32\drivers\tmactmon.sys - ok
11:27:37.0103 3644  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:27:37.0103 3644  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
11:27:37.0119 3644  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
11:27:37.0134 3644  C:\Windows\System32\wfapigp.dll - ok
11:27:37.0150 3644  [ 334A663962618F7A136FA1F80F773C5F ] C:\Windows\SysWOW64\wintrust.dll
11:27:37.0150 3644  C:\Windows\SysWOW64\wintrust.dll - ok
11:27:37.0165 3644  [ F1C09EE3A594B19DD1F4B4AEA9E353C9 ] C:\Windows\System32\comsvcs.dll
11:27:37.0165 3644  C:\Windows\System32\comsvcs.dll - ok
11:27:37.0181 3644  [ 961036B3C6282C646B9ADBC8BB32C983 ] C:\Windows\System32\mscms.dll
11:27:37.0181 3644  C:\Windows\System32\mscms.dll - ok
11:27:37.0212 3644  [ 93F0FFD46BA1EE3AEECD07678DD8E510 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcr90.dll
11:27:37.0212 3644  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcr90.dll - ok
11:27:37.0228 3644  [ 47BBD40D59B4242866E5AB7CE1F4F493 ] C:\Program Files\P4G\BatteryLife.exe
11:27:37.0228 3644  C:\Program Files\P4G\BatteryLife.exe - ok
11:27:37.0243 3644  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
11:27:37.0243 3644  C:\Windows\System32\pcasvc.dll - ok
11:27:37.0275 3644  [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:27:37.0275 3644  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
11:27:37.0290 3644  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
11:27:37.0290 3644  C:\Windows\System32\snmptrap.exe - ok
11:27:37.0306 3644  [ 7E5F5E64C91FEDFE72E4C1728094BA69 ] C:\Program Files\P4G\DevMng.dll
11:27:37.0306 3644  C:\Program Files\P4G\DevMng.dll - ok
11:27:37.0321 3644  [ 50E6288786474CC1275108D33FCC9488 ] C:\Program Files\P4G\OvrClk.dll
11:27:37.0321 3644  C:\Program Files\P4G\OvrClk.dll - ok
11:27:37.0337 3644  [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
11:27:37.0337 3644  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
11:27:37.0368 3644  [ AF28348ED585539C4A33A4341FF23696 ] C:\Windows\System32\oleacc.dll
11:27:37.0368 3644  C:\Windows\System32\oleacc.dll - ok
11:27:37.0384 3644  [ DD27F6C3DE9BFE50635C721E09EDC5DD ] C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
11:27:37.0384 3644  C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe - ok
11:27:37.0399 3644  [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0 ] C:\Windows\System32\winspool.drv
11:27:37.0399 3644  C:\Windows\System32\winspool.drv - ok
11:27:37.0431 3644  [ 530566B97C73813FFDDE8EC0C7C044EA ] C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\XML_RPC_DLL.dll
11:27:37.0431 3644  C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\XML_RPC_DLL.dll - ok
11:27:37.0446 3644  [ 06A7422224D9865A5613710A089987DF ] C:\Windows\System32\provsvc.dll
11:27:37.0446 3644  C:\Windows\System32\provsvc.dll - ok
11:27:37.0477 3644  [ 5FF7D057E48DA861BDBB47D314B6DA7D ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll
11:27:37.0477 3644  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcr90.dll - ok
11:27:37.0493 3644  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
11:27:37.0493 3644  C:\Windows\System32\sstpsvc.dll - ok
11:27:37.0509 3644  [ 3A387E0E973D45469A08A703407F2E6F ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll
11:27:37.0509 3644  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_08e1a05ba83fe554\msvcp90.dll - ok
11:27:37.0524 3644  [ BAF19B633933A9FB4883D27D66C39E9A ] C:\Windows\System32\cryptsvc.dll
11:27:37.0524 3644  C:\Windows\System32\cryptsvc.dll - ok
11:27:37.0555 3644  [ 4FAC55936209B4F3EB78532181C9ED5E ] C:\Windows\System32\cryptnet.dll
11:27:37.0555 3644  C:\Windows\System32\cryptnet.dll - ok
11:27:37.0571 3644  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] C:\Windows\System32\dps.dll
11:27:37.0571 3644  C:\Windows\System32\dps.dll - ok
11:27:37.0587 3644  [ DC57BAF15064ECB79F6D2CCF352E1D88 ] C:\Windows\System32\taskschd.dll
11:27:37.0587 3644  C:\Windows\System32\taskschd.dll - ok
11:27:37.0602 3644  [ A261AD1FDC6D6A658A82B81AF81B215F ] C:\Windows\System32\vssapi.dll
11:27:37.0602 3644  C:\Windows\System32\vssapi.dll - ok
11:27:37.0618 3644  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
11:27:37.0618 3644  C:\Windows\System32\FDResPub.dll - ok
11:27:37.0665 3644  [ 05FE4A30177E858B51F5E1E970FE9925 ] C:\Windows\System32\WSDApi.dll
11:27:37.0665 3644  C:\Windows\System32\WSDApi.dll - ok
11:27:37.0680 3644  [ A3EA403D2B74C5F71B7E8B3DAE92DE1E ] C:\Windows\System32\webservices.dll
11:27:37.0680 3644  C:\Windows\System32\webservices.dll - ok
11:27:37.0696 3644  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
11:27:37.0696 3644  C:\Windows\System32\fundisc.dll - ok
11:27:37.0727 3644  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
11:27:37.0727 3644  C:\Windows\System32\vsstrace.dll - ok
11:27:37.0758 3644  [ 0BF0C2A72F2CB0BA4382C392D3E331AF ] C:\Windows\System32\winhttp.dll
11:27:37.0758 3644  C:\Windows\System32\winhttp.dll - ok
11:27:37.0774 3644  [ 2196CDBFA4B99BEEDAE300FA21DFE718 ] C:\Windows\System32\webio.dll
11:27:37.0774 3644  C:\Windows\System32\webio.dll - ok
11:27:37.0789 3644  [ 4509387963DF66A6401752A0C631F6E8 ] C:\Windows\System32\httpapi.dll
11:27:37.0789 3644  C:\Windows\System32\httpapi.dll - ok
11:27:37.0805 3644  [ BC3DA234CDA880578526DAB028F40268 ] C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
11:27:37.0805 3644  C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe - ok
11:27:37.0836 3644  [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\SysWOW64\apphelp.dll
11:27:37.0836 3644  C:\Windows\SysWOW64\apphelp.dll - ok
11:27:37.0836 3644  [ 01F61F0F2B551EAEE2C12619B13B93D2 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
11:27:37.0836 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe - ok
11:27:37.0867 3644  [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\SysWOW64\setupapi.dll
11:27:37.0867 3644  C:\Windows\SysWOW64\setupapi.dll - ok
11:27:37.0883 3644  [ E702ED19C332C1F12C1403D100E2F4F3 ] C:\Windows\SysWOW64\cfgmgr32.dll
11:27:37.0883 3644  C:\Windows\SysWOW64\cfgmgr32.dll - ok
11:27:37.0899 3644  [ 6C9C05D5344B9AB80E9180FC859BC45A ] C:\Windows\SysWOW64\devobj.dll
11:27:37.0899 3644  C:\Windows\SysWOW64\devobj.dll - ok
11:27:37.0914 3644  [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\SysWOW64\MMDevAPI.dll
11:27:37.0914 3644  C:\Windows\SysWOW64\MMDevAPI.dll - ok
11:27:37.0930 3644  [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\SysWOW64\propsys.dll
11:27:37.0930 3644  C:\Windows\SysWOW64\propsys.dll - ok
11:27:37.0945 3644  [ AFBB5060A2DAD431A2EAEB2C86CFFE81 ] C:\Windows\SysWOW64\AudioSes.dll
11:27:37.0945 3644  C:\Windows\SysWOW64\AudioSes.dll - ok
11:27:37.0977 3644  [ 3ACABCA6A8DB71B7F19C8A7523AE1846 ] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
11:27:37.0977 3644  C:\Program Files (x86)\ASUS\Splendid\ACMON.exe - ok
11:27:37.0992 3644  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
11:27:37.0992 3644  C:\Windows\System32\wbem\wbemprox.dll - ok
11:27:38.0023 3644  [ FAF9BA81FB0543CB4B7EFFD24CFA815F ] C:\Windows\System32\wbemcomn.dll
11:27:38.0023 3644  C:\Windows\System32\wbemcomn.dll - ok
11:27:38.0039 3644  [ AC9D6E3629E4388A9EA9B4172493AAEE ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
11:27:38.0039 3644  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe - ok
11:27:38.0055 3644  [ 74FD5CAEECD78EE880AE015FDE96A147 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
11:27:38.0055 3644  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll - ok
11:27:38.0070 3644  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
11:27:38.0070 3644  C:\Windows\SysWOW64\psapi.dll - ok
11:27:38.0101 3644  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
11:27:38.0101 3644  C:\Windows\SysWOW64\wsock32.dll - ok
11:27:38.0117 3644  [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\SysWOW64\ws2_32.dll
11:27:38.0117 3644  C:\Windows\SysWOW64\ws2_32.dll - ok
11:27:38.0148 3644  [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
11:27:38.0148 3644  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
11:27:38.0164 3644  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
11:27:38.0164 3644  C:\Windows\SysWOW64\nsi.dll - ok
11:27:38.0179 3644  [ 74C76BB54B26CE50C4BC755F92687C63 ] C:\Windows\SysWOW64\mfc42.dll
11:27:38.0179 3644  C:\Windows\SysWOW64\mfc42.dll - ok
11:27:38.0195 3644  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
11:27:38.0195 3644  C:\Windows\SysWOW64\winnsi.dll - ok
11:27:38.0226 3644  [ 5764C381949147EBCFB9A7134E2ABF06 ] C:\Windows\SysWOW64\odbc32.dll
11:27:38.0226 3644  C:\Windows\SysWOW64\odbc32.dll - ok
11:27:38.0242 3644  [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
11:27:38.0242 3644  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
11:27:38.0273 3644  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
11:27:38.0273 3644  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
11:27:38.0289 3644  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
11:27:38.0289 3644  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
11:27:38.0320 3644  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
11:27:38.0320 3644  C:\Windows\SysWOW64\odbcint.dll - ok
11:27:38.0335 3644  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
11:27:38.0335 3644  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
11:27:38.0351 3644  [ 5BB1F77C8AF725A15EC9366498D275BB ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
11:27:38.0351 3644  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe - ok
11:27:38.0382 3644  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
11:27:38.0382 3644  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
11:27:38.0398 3644  [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\SysWOW64\wbemcomn.dll
11:27:38.0398 3644  C:\Windows\SysWOW64\wbemcomn.dll - ok
11:27:38.0413 3644  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
11:27:38.0413 3644  C:\Windows\SysWOW64\cryptsp.dll - ok
11:27:38.0429 3644  [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\SysWOW64\RpcRtRemote.dll
11:27:38.0429 3644  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
11:27:38.0460 3644  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
11:27:38.0460 3644  C:\Windows\SysWOW64\rsaenh.dll - ok
11:27:38.0476 3644  [ 9AB802C4321BA2BD6D5F41CCCE6CDB9E ] C:\Program Files (x86)\ASUS\Splendid\OVS.dll
11:27:38.0476 3644  C:\Program Files (x86)\ASUS\Splendid\OVS.dll - ok
11:27:38.0491 3644  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
11:27:38.0491 3644  C:\Windows\System32\aepic.dll - ok
11:27:38.0507 3644  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] C:\Windows\System32\nlasvc.dll
11:27:38.0507 3644  C:\Windows\System32\nlasvc.dll - ok
11:27:38.0538 3644  [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\SysWOW64\mswsock.dll
11:27:38.0538 3644  C:\Windows\SysWOW64\mswsock.dll - ok
11:27:38.0554 3644  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
11:27:38.0554 3644  C:\Windows\System32\drivers\PEAuth.sys - ok
11:27:38.0569 3644  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
11:27:38.0569 3644  C:\Windows\System32\sfc.dll - ok
11:27:38.0585 3644  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
11:27:38.0585 3644  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
11:27:38.0616 3644  [ 107F279517E2A04DB4AC1B1FAF1D573B ] C:\Windows\System32\ncsi.dll
11:27:38.0616 3644  C:\Windows\System32\ncsi.dll - ok
11:27:38.0632 3644  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
11:27:38.0632 3644  C:\Windows\System32\sfc_os.dll - ok
11:27:38.0647 3644  [ EA735BF6DF13A857A83C99BF27A422AD ] C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
11:27:38.0647 3644  C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe - ok
11:27:38.0679 3644  [ 5368DAC1D13B2331A4F6E7530EBCDBE8 ] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
11:27:38.0679 3644  C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll - ok
11:27:38.0694 3644  [ 21012407E8C74AA72BBB485B0FC197FE ] C:\Windows\SysWOW64\taskschd.dll
11:27:38.0694 3644  C:\Windows\SysWOW64\taskschd.dll - ok
11:27:38.0710 3644  [ 0C2AE180D8C35F723BA13A16AA9AC453 ] C:\Windows\SysWOW64\xmllite.dll
11:27:38.0710 3644  C:\Windows\SysWOW64\xmllite.dll - ok
11:27:38.0725 3644  [ 0F3698E52A5D45E05FC8B8C22296FD35 ] C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll
11:27:38.0725 3644  C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll - ok
11:27:38.0757 3644  [ 41A5048E49372F091B2AE5A5B705B72D ] C:\Windows\SysWOW64\ACEngSvr.exe
11:27:38.0757 3644  C:\Windows\SysWOW64\ACEngSvr.exe - ok
11:27:38.0772 3644  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
11:27:38.0772 3644  C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
11:27:38.0788 3644  [ DEFEFD7E02D5CDF42F4B4FE45B64C15B ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
11:27:38.0788 3644  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe - ok
11:27:38.0803 3644  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
11:27:38.0803 3644  C:\Windows\System32\ssdpapi.dll - ok
11:27:38.0835 3644  [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
11:27:38.0835 3644  C:\Windows\System32\ddraw.dll - ok
11:27:38.0850 3644  [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
11:27:38.0850 3644  C:\Windows\System32\dciman32.dll - ok
11:27:38.0866 3644  [ 97CCB4D737B426B200E5EF90C877DF32 ] C:\Windows\SysWOW64\imagehlp.dll
11:27:38.0866 3644  C:\Windows\SysWOW64\imagehlp.dll - ok
11:27:38.0897 3644  [ F1317678AC2FBA9F640279290B2E2988 ] C:\Windows\SysWOW64\msi.dll
11:27:38.0897 3644  C:\Windows\SysWOW64\msi.dll - ok
11:27:38.0913 3644  [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
11:27:38.0913 3644  C:\Windows\SysWOW64\wininet.dll - ok
11:27:38.0928 3644  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
11:27:38.0928 3644  C:\Windows\System32\drivers\secdrv.sys - ok
11:27:38.0944 3644  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] C:\Windows\System32\drivers\srvnet.sys
11:27:38.0944 3644  C:\Windows\System32\drivers\srvnet.sys - ok
11:27:38.0975 3644  [ 76D078AF6F587B162D50210F761EB9ED ] C:\Windows\System32\drivers\tcpipreg.sys
11:27:38.0975 3644  C:\Windows\System32\drivers\tcpipreg.sys - ok
11:27:38.0991 3644  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] C:\Windows\System32\wiaservc.dll
11:27:38.0991 3644  C:\Windows\System32\wiaservc.dll - ok
11:27:39.0006 3644  [ 463B386EBC70F98DA5DFF85F7E654346 ] C:\Windows\System32\seclogon.dll
11:27:39.0006 3644  C:\Windows\System32\seclogon.dll - ok
11:27:39.0037 3644  [ 69D76CE06BB629B69165C81D83A4B03E ] C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
11:27:39.0037 3644  C:\Program Files\Trend Micro\Titanium\TiMiniService.exe - ok
11:27:39.0053 3644  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
11:27:39.0053 3644  C:\Windows\System32\aeevts.dll - ok
11:27:39.0069 3644  [ 7544263D5BEDD291399BD970AB055F6A ] C:\Program Files\Trend Micro\Titanium\TmDbgLog.dll
11:27:39.0069 3644  C:\Program Files\Trend Micro\Titanium\TmDbgLog.dll - ok
11:27:39.0084 3644  [ DC819D663E36649F907EE8E2CEBB06F1 ] C:\Windows\System32\atiu9p64.dll
11:27:39.0084 3644  C:\Windows\System32\atiu9p64.dll - ok
11:27:39.0115 3644  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
11:27:39.0115 3644  C:\Windows\System32\wiatrace.dll - ok
11:27:39.0131 3644  [ 466CA254FBC1E47B26D5F9944EE85EC3 ] C:\Windows\System32\atiumd64.dll
11:27:39.0131 3644  C:\Windows\System32\atiumd64.dll - ok
11:27:39.0147 3644  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
11:27:39.0147 3644  C:\Windows\System32\trkwks.dll - ok
11:27:39.0178 3644  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
11:27:39.0178 3644  C:\Windows\System32\wbem\WMIsvc.dll - ok
11:27:39.0193 3644  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:27:39.0193 3644  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
11:27:39.0209 3644  [ E852C399D73B84E682816F55C9F8ABB4 ] C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe
11:27:39.0209 3644  C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe - ok
11:27:39.0225 3644  [ A7582A70802D5B9F28ED3940F6A3E9ED ] C:\Windows\System32\wbem\WmiDcPrv.dll
11:27:39.0225 3644  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
11:27:39.0256 3644  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
11:27:39.0256 3644  C:\Windows\System32\wbem\WinMgmtR.dll - ok
11:27:39.0271 3644  [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
11:27:39.0271 3644  C:\Windows\SysWOW64\iertutil.dll - ok
11:27:39.0287 3644  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
11:27:39.0287 3644  C:\Windows\System32\wbem\fastprox.dll - ok
11:27:39.0303 3644  [ 3B9665D4B8C587A6014B9B8DFF5974A0 ] C:\Windows\System32\wbem\wbemcore.dll
11:27:39.0303 3644  C:\Windows\System32\wbem\wbemcore.dll - ok
11:27:39.0318 3644  [ 9111AEDC276C8BB2D9CA568CD3EB92BA ] C:\Program Files\Trend Micro\Titanium\VizorUniclientLibrary.dll
11:27:39.0318 3644  C:\Program Files\Trend Micro\Titanium\VizorUniclientLibrary.dll - ok
11:27:39.0349 3644  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
11:27:39.0349 3644  C:\Windows\System32\ntdsapi.dll - ok
11:27:39.0365 3644  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
11:27:39.0365 3644  C:\Windows\System32\wbem\esscli.dll - ok
11:27:39.0381 3644  [ 50A142496351756730CB683E00391562 ] C:\Program Files\Trend Micro\AMSP\utilDebugLog.dll
11:27:39.0381 3644  C:\Program Files\Trend Micro\AMSP\utilDebugLog.dll - ok
11:27:39.0396 3644  [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
11:27:39.0396 3644  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
11:27:39.0427 3644  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
11:27:39.0427 3644  C:\Windows\System32\wbem\wbemsvc.dll - ok
11:27:39.0443 3644  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
11:27:39.0443 3644  C:\Windows\System32\wbem\wmiutils.dll - ok
11:27:39.0459 3644  [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\SysWOW64\wbem\fastprox.dll
11:27:39.0459 3644  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
11:27:39.0474 3644  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
11:27:39.0474 3644  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
11:27:39.0490 3644  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
11:27:39.0490 3644  C:\Windows\SysWOW64\ntdsapi.dll - ok
11:27:39.0521 3644  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
11:27:39.0521 3644  C:\Windows\System32\wbem\repdrvfs.dll - ok
11:27:39.0537 3644  [ 8158913139DD41770A6A0DB62374A15A ] C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_36.dll
11:27:39.0537 3644  C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_36.dll - ok
11:27:39.0552 3644  [ 97902BF4AE575FD11D092616DB62E2C4 ] C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_36.dll
11:27:39.0552 3644  C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_36.dll - ok
11:27:39.0568 3644  [ B9562B9088E56D01F04F72A2452018F9 ] C:\Program Files\Trend Micro\AMSP\utilMsgBuffer.dll
11:27:39.0568 3644  C:\Program Files\Trend Micro\AMSP\utilMsgBuffer.dll - ok
11:27:39.0599 3644  [ B1FDCFFF7609E121C10751A669AB1611 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80u.dll
11:27:39.0599 3644  C:\Windows\winsxs\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\mfc80u.dll - ok
11:27:39.0615 3644  [ DE2D1162265BD18761335A3D7855D7A3 ] C:\Windows\System32\atiumd6a.dll
11:27:39.0615 3644  C:\Windows\System32\atiumd6a.dll - ok
11:27:39.0630 3644  [ 205D43DD91BCD857BCA16FF16EF6DE20 ] C:\Program Files\Trend Micro\AMSP\outer_AMSP_ClientLibrary.dll
11:27:39.0630 3644  C:\Program Files\Trend Micro\AMSP\outer_AMSP_ClientLibrary.dll - ok
11:27:39.0646 3644  [ 717484C33B2993DEC02A3DEB44E74534 ] C:\Program Files\Trend Micro\AMSP\utilIPC.dll
11:27:39.0646 3644  C:\Program Files\Trend Micro\AMSP\utilIPC.dll - ok
11:27:39.0677 3644  [ 9423C9A80BFAE56CBACF82097AE17F78 ] C:\Program Files\Trend Micro\AMSP\utilThread.dll
11:27:39.0677 3644  C:\Program Files\Trend Micro\AMSP\utilThread.dll - ok
11:27:39.0693 3644  [ 559BCDFE4F46B4AD2CAC0528A9BCB7AA ] C:\Program Files\Trend Micro\AMSP\utilRPC.dll
11:27:39.0693 3644  C:\Program Files\Trend Micro\AMSP\utilRPC.dll - ok
11:27:39.0708 3644  [ 6693F4D635561B765AC40CE754187AA8 ] C:\Program Files\Trend Micro\AMSP\utilAccessControl.dll
11:27:39.0708 3644  C:\Program Files\Trend Micro\AMSP\utilAccessControl.dll - ok
11:27:39.0724 3644  [ 85605784E07B17A6C3C69444BF8792DA ] C:\Program Files\Trend Micro\AMSP\utilInstallation.dll
11:27:39.0724 3644  C:\Program Files\Trend Micro\AMSP\utilInstallation.dll - ok
11:27:39.0739 3644  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
11:27:39.0739 3644  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
11:27:39.0771 3644  [ DB62CB0840BF84E9DFD646F39B6EF742 ] C:\Program Files\Trend Micro\AMSP\utilComponentInfo.dll
11:27:39.0771 3644  C:\Program Files\Trend Micro\AMSP\utilComponentInfo.dll - ok
11:27:39.0786 3644  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
11:27:39.0786 3644  C:\Windows\System32\SensApi.dll - ok
11:27:39.0802 3644  [ EBE9542554DAF801DA24CFDBC6AA209E ] C:\Program Files\Trend Micro\AMSP\utilGenericLoader.dll
11:27:39.0802 3644  C:\Program Files\Trend Micro\AMSP\utilGenericLoader.dll - ok
11:27:39.0817 3644  [ A6E2D1522F23C854611F272EBEB30948 ] C:\Program Files\Trend Micro\AMSP\utilJsonHandle.dll
11:27:39.0817 3644  C:\Program Files\Trend Micro\AMSP\utilJsonHandle.dll - ok
11:27:39.0849 3644  [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
11:27:39.0849 3644  C:\Windows\SysWOW64\urlmon.dll - ok
11:27:39.0864 3644  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
11:27:39.0864 3644  C:\Windows\System32\wer.dll - ok
11:27:39.0880 3644  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
11:27:39.0880 3644  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
11:27:39.0895 3644  [ CC9BBCFC715FBEDF7AE476106FE653E9 ] C:\Windows\SysWOW64\winhttp.dll
11:27:39.0895 3644  C:\Windows\SysWOW64\winhttp.dll - ok
11:27:39.0911 3644  [ A86A1C5DF1C662D1C75815BF4794F16D ] C:\Windows\SysWOW64\webio.dll
11:27:39.0911 3644  C:\Windows\SysWOW64\webio.dll - ok
11:27:39.0942 3644  [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
11:27:39.0942 3644  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
11:27:39.0958 3644  [ 079FC5AAA9963057548DF29F069EC406 ] C:\Windows\AppPatch\AcGenral.dll
11:27:39.0958 3644  C:\Windows\AppPatch\AcGenral.dll - ok
11:27:39.0973 3644  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
11:27:39.0973 3644  C:\Windows\SysWOW64\msacm32.dll - ok
11:27:40.0005 3644  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
11:27:40.0005 3644  C:\Windows\SysWOW64\sfc.dll - ok
11:27:40.0020 3644  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
11:27:40.0020 3644  C:\Windows\SysWOW64\sfc_os.dll - ok
11:27:40.0036 3644  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
11:27:40.0036 3644  C:\Windows\SysWOW64\mpr.dll - ok
11:27:40.0051 3644  [ EEF83F6A7EAA308D352CA6A7B77345DE ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
11:27:40.0051 3644  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
11:27:40.0083 3644  [ 37D44BFEA9B50D75764660ADC35C83AC ] C:\Windows\System32\msvcp100.dll
11:27:40.0083 3644  C:\Windows\System32\msvcp100.dll - ok
11:27:40.0098 3644  [ B88DA7FD10BDBB3754D98AFD39677C29 ] C:\Windows\System32\msvcr100.dll
11:27:40.0098 3644  C:\Windows\System32\msvcr100.dll - ok
11:27:40.0114 3644  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] C:\Windows\System32\drivers\srv2.sys
11:27:40.0114 3644  C:\Windows\System32\drivers\srv2.sys - ok
11:27:40.0129 3644  [ F8E058D17363EC580E4B7232778B6CB5 ] C:\Windows\System32\iphlpsvc.dll
11:27:40.0129 3644  C:\Windows\System32\iphlpsvc.dll - ok
11:27:40.0161 3644  [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\SysWOW64\cscapi.dll
11:27:40.0161 3644  C:\Windows\SysWOW64\cscapi.dll - ok
11:27:40.0176 3644  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
11:27:40.0176 3644  C:\Windows\SysWOW64\ntmarta.dll - ok
11:27:40.0192 3644  [ B220D5B946016AA76FFDF4718121C0ED ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.AFCM.dll
11:27:40.0192 3644  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.AFCM.dll - ok
11:27:40.0207 3644  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] C:\Windows\System32\drivers\srv.sys
11:27:40.0207 3644  C:\Windows\System32\drivers\srv.sys - ok
11:27:40.0239 3644  [ 167A39A44D711178004BDBA56158A006 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\RM_Client_Module.dll
11:27:40.0239 3644  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\RM_Client_Module.dll - ok
11:27:40.0254 3644  [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\SysWOW64\Wldap32.dll
11:27:40.0254 3644  C:\Windows\SysWOW64\Wldap32.dll - ok
11:27:40.0285 3644  [ 530566B97C73813FFDDE8EC0C7C044EA ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\XML_RPC_DLL.dll
11:27:40.0285 3644  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\XML_RPC_DLL.dll - ok
11:27:40.0301 3644  [ 48A6CA43A5C921C465F70D9B42B3EF1A ] C:\Windows\System32\sqmapi.dll
11:27:40.0301 3644  C:\Windows\System32\sqmapi.dll - ok
11:27:40.0317 3644  [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\SysWOW64\dbghelp.dll
11:27:40.0317 3644  C:\Windows\SysWOW64\dbghelp.dll - ok
11:27:40.0332 3644  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
11:27:40.0332 3644  C:\Windows\System32\wdscore.dll - ok
11:27:40.0363 3644  [ 81F1D04D4D0E433099365127375FD501 ] C:\Windows\System32\srvsvc.dll
11:27:40.0363 3644  C:\Windows\System32\srvsvc.dll - ok
11:27:40.0379 3644  [ 6B054C67AAA87843504E8E3C09102009 ] C:\Windows\System32\browser.dll
11:27:40.0379 3644  C:\Windows\System32\browser.dll - ok
11:27:40.0395 3644  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
11:27:40.0395 3644  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
11:27:40.0410 3644  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
11:27:40.0410 3644  C:\Windows\System32\netmsg.dll - ok
11:27:40.0426 3644  [ 836892094209E5D9CF403B4CF2829B5C ] C:\Windows\System32\sscore.dll
11:27:40.0426 3644  C:\Windows\System32\sscore.dll - ok
11:27:40.0457 3644  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
11:27:40.0457 3644  C:\Windows\System32\winrnr.dll - ok
11:27:40.0473 3644  [ 4EAE37133B78A26A84EA1649D9B21A1E ] C:\Windows\System32\clusapi.dll
11:27:40.0473 3644  C:\Windows\System32\clusapi.dll - ok
11:27:40.0488 3644  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
11:27:40.0488 3644  C:\Windows\System32\NapiNSP.dll - ok
11:27:40.0504 3644  [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
11:27:40.0504 3644  C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
11:27:40.0535 3644  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
11:27:40.0535 3644  C:\Windows\System32\pnrpnsp.dll - ok
11:27:40.0551 3644  [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\SysWOW64\mstask.dll
11:27:40.0551 3644  C:\Windows\SysWOW64\mstask.dll - ok
11:27:40.0566 3644  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
11:27:40.0566 3644  C:\Windows\System32\resutils.dll - ok
11:27:40.0582 3644  [ E3E2E9A96E6BA95D0CF0F026C7B18654 ] C:\Windows\System32\wshbth.dll
11:27:40.0582 3644  C:\Windows\System32\wshbth.dll - ok
11:27:40.0613 3644  [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
11:27:40.0613 3644  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
11:27:40.0629 3644  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
11:27:40.0629 3644  C:\Windows\System32\hnetcfg.dll - ok
11:27:40.0644 3644  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
11:27:40.0644 3644  C:\Windows\System32\rasadhlp.dll - ok
11:27:40.0660 3644  [ 8F45C28A59DF3C7EF75F001FF1BFF2F0 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Services.dll
11:27:40.0660 3644  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Services.dll - ok
11:27:40.0675 3644  [ 096D07142C95E37587E17A6CC8A2C191 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
11:27:40.0675 3644  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
11:27:40.0707 3644  [ 72AB6633E9B39EC7FEBEDF083A9061E5 ] C:\Windows\System32\mscoree.dll
11:27:40.0707 3644  C:\Windows\System32\mscoree.dll - ok
11:27:40.0722 3644  [ 5A364F55CE0EC41FBDBAF69C448518B4 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
11:27:40.0722 3644  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll - ok
11:27:40.0738 3644  [ A74316B5C28D94AF0825267D8715549F ] C:\Windows\System32\dbghelp.dll
11:27:40.0738 3644  C:\Windows\System32\dbghelp.dll - ok
11:27:40.0753 3644  [ 442235AC4F20B195F932990CAE47408E ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll
11:27:40.0753 3644  C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_bc20f59b0bdd1acd\mfc80ENU.dll - ok
11:27:40.0785 3644  [ 61B2873C02ECBF86CD6455A40F24CE33 ] C:\Windows\System32\msxml3.dll
11:27:40.0785 3644  C:\Windows\System32\msxml3.dll - ok
11:27:40.0800 3644  [ D065BE66822847B7F127D1F90158376E ] C:\Windows\System32\appinfo.dll
11:27:40.0800 3644  C:\Windows\System32\appinfo.dll - ok
11:27:40.0816 3644  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
11:27:40.0816 3644  C:\Windows\System32\wdi.dll - ok
11:27:40.0831 3644  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
11:27:40.0831 3644  C:\Windows\System32\npmproxy.dll - ok
11:27:40.0847 3644  [ D891293880F2F00AB7BA959910300EF7 ] C:\Windows\System32\diagperf.dll
11:27:40.0847 3644  C:\Windows\System32\diagperf.dll - ok
11:27:40.0863 3644  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
11:27:40.0863 3644  C:\Windows\System32\pnpts.dll - ok
11:27:40.0894 3644  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
11:27:40.0894 3644  C:\Windows\System32\radardt.dll - ok
11:27:40.0909 3644  [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
11:27:40.0909 3644  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
11:27:40.0925 3644  [ 65AF044B5570D355124DCD1E099AA98F ] C:\Windows\System32\wdiasqmmodule.dll
11:27:40.0925 3644  C:\Windows\System32\wdiasqmmodule.dll - ok
11:27:40.0941 3644  [ 8CF4B0337B06CCC624C20EE4C934767E ] C:\Windows\System32\lpksetupproxyserv.dll
11:27:40.0941 3644  C:\Windows\System32\lpksetupproxyserv.dll - ok
11:27:40.0956 3644  [ 6AB6D4DF10EC784CF4A66CBFAF417A11 ] C:\Windows\System32\runonce.exe
11:27:40.0956 3644  C:\Windows\System32\runonce.exe - ok
11:27:40.0987 3644  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
11:27:40.0987 3644  C:\Windows\System32\dssenh.dll - ok
11:27:41.0003 3644  [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\SysWOW64\runonce.exe
11:27:41.0003 3644  C:\Windows\SysWOW64\runonce.exe - ok
11:27:41.0019 3644  [ 82BC97E5793DEF69691AAD5AB953A200 ] C:\Windows\System32\wbem\WmiPrvSD.dll
11:27:41.0019 3644  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
11:27:41.0034 3644  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
11:27:41.0034 3644  C:\Windows\System32\ncobjapi.dll - ok
11:27:41.0050 3644  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
11:27:41.0050 3644  C:\Windows\System32\wbem\wbemess.dll - ok
11:27:41.0081 3644  [ 6CC10D9FD128069DBFE476222F097616 ] C:\Windows\SysWOW64\secur32.dll
11:27:41.0081 3644  C:\Windows\SysWOW64\secur32.dll - ok
11:27:41.0097 3644  [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\SysWOW64\cmd.exe
11:27:41.0097 3644  C:\Windows\SysWOW64\cmd.exe - ok
11:27:41.0112 3644  [ 462400256655B8DAE8DD8E33720481AF ] C:\Windows\SysWOW64\msxml3.dll
11:27:41.0112 3644  C:\Windows\SysWOW64\msxml3.dll - ok
11:27:41.0128 3644  [ 64D757051B5B273E55C93E4503EA4F3E ] C:\Windows\System32\wbem\WmiPrvSE.exe
11:27:41.0143 3644  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
11:27:41.0143 3644  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
11:27:41.0143 3644  C:\Windows\SysWOW64\winbrand.dll - ok
11:27:41.0159 3644  [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
11:27:41.0175 3644  C:\Windows\SysWOW64\ieframe.dll - ok
11:27:41.0190 3644  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
11:27:41.0190 3644  C:\Windows\System32\perftrack.dll - ok
11:27:41.0206 3644  [ EE24C42561D40F7AD7C2A7A460287090 ] C:\Windows\System32\wbem\cimwin32.dll
11:27:41.0206 3644  C:\Windows\System32\wbem\cimwin32.dll - ok
11:27:41.0221 3644  [ 2E57DDF2880A7E52E76F41C7E96D327B ] C:\Windows\System32\wpdbusenum.dll
11:27:41.0221 3644  C:\Windows\System32\wpdbusenum.dll - ok
11:27:41.0237 3644  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
11:27:41.0237 3644  C:\Windows\System32\Apphlpdm.dll - ok
11:27:41.0253 3644  [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7 ] C:\Windows\System32\PortableDeviceApi.dll
11:27:41.0253 3644  C:\Windows\System32\PortableDeviceApi.dll - ok
11:27:41.0284 3644  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
11:27:41.0284 3644  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
11:27:41.0299 3644  [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
11:27:41.0299 3644  C:\Windows\System32\drivers\WUDFRd.sys - ok
11:27:41.0315 3644  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
11:27:41.0315 3644  C:\Windows\System32\aelupsvc.dll - ok
11:27:41.0331 3644  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
11:27:41.0331 3644  C:\Windows\System32\dimsjob.dll - ok
11:27:41.0362 3644  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
11:27:41.0362 3644  C:\Windows\System32\pautoenr.dll - ok
11:27:41.0377 3644  [ 5D89D063A4CB036C258685C8E057E768 ] C:\Windows\System32\framedynos.dll
11:27:41.0377 3644  C:\Windows\System32\framedynos.dll - ok
11:27:41.0393 3644  [ 76DC9F4FE66BC3867615F142766B4C50 ] C:\Windows\System32\wmi.dll
11:27:41.0393 3644  C:\Windows\System32\wmi.dll - ok
11:27:41.0409 3644  [ 987464EF36FA99E4BA55B1845BD9AAD9 ] C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe
11:27:41.0409 3644  C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe - ok
11:27:41.0440 3644  [ 840F7FB849F5887A49BA18C13B2DA920 ] C:\Windows\servicing\TrustedInstaller.exe
11:27:41.0440 3644  C:\Windows\servicing\TrustedInstaller.exe - ok
11:27:41.0455 3644  [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
11:27:41.0455 3644  C:\Windows\System32\drivers\WUDFPf.sys - ok
11:27:41.0471 3644  [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
11:27:41.0471 3644  C:\Windows\System32\WUDFSvc.dll - ok
11:27:41.0502 3644  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] C:\Windows\System32\IPSECSVC.DLL
11:27:41.0502 3644  C:\Windows\System32\IPSECSVC.DLL - ok
11:27:41.0518 3644  [ 031C6782F2D50336FC2C72F8D14A4C13 ] C:\Windows\System32\wbem\wmiprov.dll
11:27:41.0518 3644  C:\Windows\System32\wbem\wmiprov.dll - ok
11:27:41.0533 3644  [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
11:27:41.0533 3644  C:\Windows\System32\WUDFHost.exe - ok
11:27:41.0549 3644  [ 4F72C8B661DEC62F4DF0F15D33106372 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll
11:27:41.0549 3644  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll - ok
11:27:41.0565 3644  [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
11:27:41.0565 3644  C:\Windows\System32\WUDFx.dll - ok
11:27:41.0596 3644  [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
11:27:41.0596 3644  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
11:27:41.0611 3644  [ 9AA6F803C9BD4A0EC2B0BF1EB458C821 ] C:\Windows\System32\WMVCORE.DLL
11:27:41.0611 3644  C:\Windows\System32\WMVCORE.DLL - ok
11:27:41.0643 3644  [ AAA6D0DF7356BBA706BD67385A103AAB ] C:\Windows\System32\certcli.dll
11:27:41.0643 3644  C:\Windows\System32\certcli.dll - ok
11:27:41.0658 3644  [ 4D59A5B6EF0AF6F9FDF3D157534380AF ] C:\Windows\SysWOW64\oleacc.dll
11:27:41.0658 3644  C:\Windows\SysWOW64\oleacc.dll - ok
11:27:41.0674 3644  [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
11:27:41.0674 3644  C:\Windows\System32\WMASF.DLL - ok
11:27:41.0689 3644  [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
11:27:41.0689 3644  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
11:27:41.0705 3644  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
11:27:41.0705 3644  C:\Windows\System32\PortableDeviceTypes.dll - ok
11:27:41.0721 3644  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
11:27:41.0736 3644  C:\Windows\System32\FwRemoteSvr.dll - ok
11:27:41.0752 3644  [ 522BD073F617060AFCB9CC5707778DB1 ] C:\Windows\System32\CertEnroll.dll
11:27:41.0752 3644  C:\Windows\System32\CertEnroll.dll - ok
11:27:41.0767 3644  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
11:27:41.0767 3644  C:\Windows\System32\ndiscapCfg.dll - ok
11:27:41.0783 3644  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
11:27:41.0783 3644  C:\Windows\System32\rascfg.dll - ok
11:27:41.0799 3644  [ 114429A77D935053E13A9BF98A8B8CA1 ] C:\Windows\System32\mprapi.dll
11:27:41.0799 3644  C:\Windows\System32\mprapi.dll - ok
11:27:41.0814 3644  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
11:27:41.0814 3644  C:\Windows\System32\mprmsg.dll - ok
11:27:41.0845 3644  [ 1FCD619D8542A248D4E1FF72FFB0E56B ] C:\Windows\System32\tcpipcfg.dll
11:27:41.0845 3644  C:\Windows\System32\tcpipcfg.dll - ok
11:27:41.0861 3644  [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\SysWOW64\shdocvw.dll
11:27:41.0861 3644  C:\Windows\SysWOW64\shdocvw.dll - ok
11:27:41.0877 3644  [ E07EDC6D4E2F9FD44189D2886010B32F ] C:\Program Files\P4G\IntlDPST.exe
11:27:41.0877 3644  C:\Program Files\P4G\IntlDPST.exe - ok
11:27:41.0892 3644  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\phillip\AppData\Local\Temp\068F6922-DF77-4F9F-A90A-26FBAD99BF04.exe
11:27:41.0892 3644  C:\Users\phillip\AppData\Local\Temp\068F6922-DF77-4F9F-A90A-26FBAD99BF04.exe - ok
11:27:41.0923 3644  [ 6E03C9E362389A768E6C240933352D11 ] C:\Windows\System32\nci.dll
11:27:41.0923 3644  C:\Windows\System32\nci.dll - ok
11:27:41.0939 3644  [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
11:27:41.0939 3644  C:\Windows\System32\wlaninst.dll - ok
11:27:41.0955 3644  [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
11:27:41.0955 3644  C:\Windows\System32\wwaninst.dll - ok
11:27:41.0970 3644  [ 11CDF138552BFEC115B60ED6DC3ACEB6 ] C:\Windows\SysWOW64\devrtl.dll
11:27:41.0970 3644  C:\Windows\SysWOW64\devrtl.dll - ok
11:27:41.0986 3644  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
11:27:41.0986 3644  C:\Windows\System32\ie4uinit.exe - ok
11:27:42.0017 3644  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
11:27:42.0017 3644  C:\Windows\System32\iedkcs32.dll - ok
11:27:42.0033 3644  [ 18245DC72B65D488A8B2D75A8FE088EA ] C:\Windows\System32\timedate.cpl
11:27:42.0033 3644  C:\Windows\System32\timedate.cpl - ok
11:27:42.0048 3644  [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
11:27:42.0048 3644  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
11:27:42.0064 3644  [ 1E4BDDBD5A63059A97063339B4F8986F ] C:\Windows\System32\actxprxy.dll
11:27:42.0064 3644  C:\Windows\System32\actxprxy.dll - ok
11:27:42.0095 3644  [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
11:27:42.0095 3644  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
11:27:42.0111 3644  [ FBE8EBF528DC49B3DEB186CA9545D97E ] C:\Windows\System32\shdocvw.dll
11:27:42.0111 3644  C:\Windows\System32\shdocvw.dll - ok
11:27:42.0126 3644  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
11:27:42.0126 3644  C:\Windows\System32\linkinfo.dll - ok
11:27:42.0157 3644  [ 98B6F9204610EC0B7D2ADFF3E6F058A8 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
11:27:42.0157 3644  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
11:27:42.0173 3644  [ C91FABAA63C489C874B97A19906E901C ] C:\Windows\System32\gameux.dll
11:27:42.0173 3644  C:\Windows\System32\gameux.dll - ok
11:27:42.0189 3644  [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\SysWOW64\credssp.dll
11:27:42.0189 3644  C:\Windows\SysWOW64\credssp.dll - ok
11:27:42.0204 3644  [ 62390F4ACE9E2B63E3CA26B7F7497897 ] C:\Windows\SysWOW64\dnsapi.dll
11:27:42.0204 3644  C:\Windows\SysWOW64\dnsapi.dll - ok
11:27:42.0235 3644  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
11:27:42.0235 3644  C:\Windows\SysWOW64\wship6.dll - ok
11:27:42.0251 3644  [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
11:27:42.0251 3644  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
11:27:42.0267 3644  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
11:27:42.0267 3644  C:\Windows\System32\rundll32.exe - ok
11:27:42.0282 3644  [ E6F66F31422C44EDC00D9C9329E7DF60 ] C:\Windows\System32\SyncCenter.dll
11:27:42.0282 3644  C:\Windows\System32\SyncCenter.dll - ok
11:27:42.0298 3644  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
11:27:42.0298 3644  C:\Windows\SysWOW64\rasadhlp.dll - ok
11:27:42.0329 3644  [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
11:27:42.0329 3644  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
11:27:42.0345 3644  [ 46EDD0A6B42BA5D2044FA0909BE4BE95 ] C:\Windows\System32\msftedit.dll
11:27:42.0345 3644  C:\Windows\System32\msftedit.dll - ok
11:27:42.0360 3644  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
11:27:42.0360 3644  C:\Windows\System32\msls31.dll - ok
11:27:42.0376 3644  [ 17A7998CB5DA92020A291B85FF7B3681 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
11:27:42.0376 3644  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
11:27:42.0407 3644  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
11:27:42.0407 3644  C:\Windows\System32\msiltcfg.dll - ok
11:27:42.0423 3644  [ 9DEA654E4D9820958D6B4D1EBAF2F31E ] C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
11:27:42.0423 3644  C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe - ok
11:27:42.0438 3644  [ DD76912E8D165C68659D9875256710A3 ] C:\Windows\System32\DeviceCenter.dll
11:27:42.0438 3644  C:\Windows\System32\DeviceCenter.dll - ok
11:27:42.0469 3644  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
11:27:42.0469 3644  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
11:27:42.0485 3644  [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
11:27:42.0485 3644  C:\Windows\System32\ieframe.dll - ok
11:27:42.0501 3644  [ B701CD6DC1659244DE8C1A4C70758F61 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
11:27:42.0501 3644  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
11:27:42.0516 3644  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\04856380.sys
11:27:42.0516 3644  C:\Windows\System32\drivers\04856380.sys - ok
11:27:42.0547 3644  [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
11:27:42.0547 3644  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
11:27:42.0563 3644  [ 57193858CCEA03BD038FCFE7E396AEC4 ] C:\Windows\System32\spp.dll
11:27:42.0563 3644  C:\Windows\System32\spp.dll - ok
11:27:42.0579 3644  [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
11:27:42.0579 3644  C:\Windows\System32\srclient.dll - ok
11:27:42.0594 3644  [ 98A5AA92664BF679A6A36DDA8948F504 ] C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe
11:27:42.0594 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe - ok
11:27:42.0610 3644  [ B2A2E2CC6D175AF8A1DEF377AA9691DC ] C:\Program Files\Trend Micro\Titanium\UIFramework\libcef.dll
11:27:42.0610 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\libcef.dll - ok
11:27:42.0641 3644  [ 58BC9B644E6B252C8337AD501B04692A ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
11:27:42.0641 3644  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe - ok
11:27:42.0657 3644  [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
11:27:42.0657 3644  C:\Windows\System32\sxsstore.dll - ok
11:27:42.0672 3644  [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
11:27:42.0672 3644  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
11:27:42.0703 3644  [ F468C806267D46B68DB7EB32FBF0A103 ] C:\Windows\System32\thumbcache.dll
11:27:42.0703 3644  C:\Windows\System32\thumbcache.dll - ok
11:27:42.0719 3644  [ 7FD0D355941B67162BFB70773D948F88 ] C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe
11:27:42.0719 3644  C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe - ok
11:27:42.0735 3644  [ 8BC7AE7E16458355508ECF5EC3A04E72 ] C:\Windows\System32\networkexplorer.dll
11:27:42.0735 3644  C:\Windows\System32\networkexplorer.dll - ok
11:27:42.0781 3644  [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
11:27:42.0781 3644  C:\Windows\servicing\CbsApi.dll - ok
11:27:42.0813 3644  [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
11:27:42.0813 3644  C:\Windows\System32\HelpPaneProxy.dll - ok
11:27:42.0844 3644  [ 60CC15392FF14DCB9C29C69B3233741B ] C:\Windows\System32\stobject.dll
11:27:42.0844 3644  C:\Windows\System32\stobject.dll - ok
11:27:42.0859 3644  [ 86B6AC0FD2881B3D20B80F51C7152AE0 ] C:\Windows\System32\batmeter.dll
11:27:42.0859 3644  C:\Windows\System32\batmeter.dll - ok
11:27:42.0875 3644  [ B7BC99F07C3EB3BD51498636D636D221 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:27:42.0875 3644  C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe - ok
11:27:42.0891 3644  [ 215DF39F5A4D23FC21F018760B3A261C ] C:\Program Files\Elantech\ETDCtrl.exe
11:27:42.0906 3644  C:\Program Files\Elantech\ETDCtrl.exe - ok
11:27:42.0922 3644  [ 30F9BACA07F8251D7DD1805A9E919CE0 ] C:\Windows\System32\wdmaud.drv
11:27:42.0922 3644  C:\Windows\System32\wdmaud.drv - ok
11:27:42.0937 3644  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
11:27:42.0937 3644  C:\Windows\System32\ksuser.dll - ok
11:27:42.0953 3644  [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
11:27:42.0953 3644  C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
11:27:42.0984 3644  [ 127CD00925C1A2B759765C5B9600DE30 ] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
11:27:42.0984 3644  C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe - ok
11:27:43.0000 3644  [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
11:27:43.0000 3644  C:\Windows\System32\opengl32.dll - ok
11:27:43.0015 3644  [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\SysWOW64\opengl32.dll
11:27:43.0015 3644  C:\Windows\SysWOW64\opengl32.dll - ok
11:27:43.0047 3644  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
11:27:43.0047 3644  C:\Windows\System32\msimg32.dll - ok
11:27:43.0062 3644  [ 76E7410B3A308F6960D3CE06DC7874AD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll
11:27:43.0062 3644  C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll - ok
11:27:43.0078 3644  [ 81D64E8D70E5FBF9F7ABF2D41154F54D ] C:\Windows\System32\AudioSes.dll
11:27:43.0078 3644  C:\Windows\System32\AudioSes.dll - ok
11:27:43.0093 3644  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
11:27:43.0093 3644  C:\Windows\SysWOW64\rasapi32.dll - ok
11:27:43.0109 3644  [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\SysWOW64\glu32.dll
11:27:43.0109 3644  C:\Windows\SysWOW64\glu32.dll - ok
11:27:43.0140 3644  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
11:27:43.0140 3644  C:\Windows\SysWOW64\rasman.dll - ok
11:27:43.0156 3644  [ B7E073E3150FCF200A3B79C3401670B4 ] C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
11:27:43.0156 3644  C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe - ok
11:27:43.0171 3644  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
11:27:43.0171 3644  C:\Windows\System32\msacm32.dll - ok
11:27:43.0187 3644  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
11:27:43.0187 3644  C:\Windows\System32\msacm32.drv - ok
11:27:43.0203 3644  [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
11:27:43.0203 3644  C:\Windows\System32\glu32.dll - ok
11:27:43.0234 3644  [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
11:27:43.0234 3644  C:\Windows\SysWOW64\ddraw.dll - ok
11:27:43.0249 3644  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
11:27:43.0249 3644  C:\Windows\System32\midimap.dll - ok
11:27:43.0265 3644  [ 381CF052785F8C644128A50B8F5DD184 ] C:\Program Files\Elantech\ETDFavorite.dll
11:27:43.0265 3644  C:\Program Files\Elantech\ETDFavorite.dll - ok
11:27:43.0281 3644  [ 406F7B9C71B99872670EE9A8D52E2FE5 ] C:\Windows\SysWOW64\rtutils.dll
11:27:43.0296 3644  C:\Windows\SysWOW64\rtutils.dll - ok
11:27:43.0312 3644  [ 917A728A12F25FCF4636858FAC9979FA ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
11:27:43.0312 3644  C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll - ok
11:27:43.0327 3644  [ A4FBAA985D1DC842631473DC604100B2 ] C:\Program Files\Elantech\ETDApix.dll
11:27:43.0327 3644  C:\Program Files\Elantech\ETDApix.dll - ok
11:27:43.0343 3644  [ 4E39830415EEA68CFCB737FE3D6A0E28 ] C:\Program Files\Elantech\ETDCmds.dll
11:27:43.0343 3644  C:\Program Files\Elantech\ETDCmds.dll - ok
11:27:43.0374 3644  [ 0D15C35B7FF95A4E4900587112901A8B ] C:\Program Files (x86)\ASUS\FancyStart\FancyStart.exe
11:27:43.0374 3644  C:\Program Files (x86)\ASUS\FancyStart\FancyStart.exe - ok
11:27:43.0390 3644  [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
11:27:43.0390 3644  C:\Windows\SysWOW64\dciman32.dll - ok
11:27:43.0405 3644  [ CB7633FF7131FB4AA25A09A619082F60 ] C:\Windows\AppPatch\AcLayers.dll
11:27:43.0405 3644  C:\Windows\AppPatch\AcLayers.dll - ok
11:27:43.0421 3644  [ 4EFCDF3DB1BBA69C09622991280C4ACB ] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
11:27:43.0437 3644  C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe - ok
11:27:43.0452 3644  [ 72F10370DCF8D86406FD625AA78C87AE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\b8281946f37a029183f8bdff96ba8602\mscorlib.ni.dll
11:27:43.0452 3644  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\b8281946f37a029183f8bdff96ba8602\mscorlib.ni.dll - ok
11:27:43.0468 3644  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
11:27:43.0468 3644  C:\Windows\System32\oledlg.dll - ok
11:27:43.0483 3644  [ 698EB1E5F8C66344D97C00B5699E871D ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
11:27:43.0483 3644  C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
11:27:43.0499 3644  [ 20DC6DCAEB3C750C54C2A09CA044C8DA ] C:\Program Files (x86)\Yahoo!\Messenger\YImage.dll
11:27:43.0499 3644  C:\Program Files (x86)\Yahoo!\Messenger\YImage.dll - ok
11:27:43.0530 3644  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
11:27:43.0530 3644  C:\Windows\SysWOW64\samlib.dll - ok
11:27:43.0546 3644  [ EE0F2731134ADAAD189912346309ADC8 ] C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe
11:27:43.0546 3644  C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe - ok
11:27:43.0561 3644  [ 4EFCDF3DB1BBA69C09622991280C4ACB ] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
11:27:43.0561 3644  C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe - ok
11:27:43.0593 3644  [ 38A683644592E99FAF0D1882EC014C3B ] C:\Program Files (x86)\Yahoo!\Messenger\ylog.dll
11:27:43.0593 3644  C:\Program Files (x86)\Yahoo!\Messenger\ylog.dll - ok
11:27:43.0608 3644  [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\SysWOW64\mscoree.dll
11:27:43.0608 3644  C:\Windows\SysWOW64\mscoree.dll - ok
11:27:43.0624 3644  [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\SysWOW64\riched20.dll
11:27:43.0624 3644  C:\Windows\SysWOW64\riched20.dll - ok
11:27:43.0639 3644  [ 757A595F75E7840A7132EC11E6E6188A ] C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe
11:27:43.0639 3644  C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe - ok
11:27:43.0655 3644  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
11:27:43.0655 3644  C:\Windows\System32\AudioEng.dll - ok
11:27:43.0686 3644  [ 651F169718CC46C8A9264880C538D5FF ] C:\Windows\System32\prnfldr.dll
11:27:43.0686 3644  C:\Windows\System32\prnfldr.dll - ok
11:27:43.0702 3644  [ E295326C79DB2CD4CC1DD5A929490109 ] C:\Program Files (x86)\Yahoo!\Messenger\YCPFoundation.dll
11:27:43.0702 3644  C:\Program Files (x86)\Yahoo!\Messenger\YCPFoundation.dll - ok
11:27:43.0717 3644  [ D859B2E8E7160FC4081124E6D1F98C4A ] C:\Program Files\Elantech\ETDCtrlHelper.exe
11:27:43.0717 3644  C:\Program Files\Elantech\ETDCtrlHelper.exe - ok
11:27:43.0733 3644  [ D3EAD1CF16BA729A7F7C9A5D94AA7C05 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
11:27:43.0733 3644  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll - ok
11:27:43.0764 3644  [ 5BBF32865EB3D66988C6E06834EC2675 ] C:\Windows\SysWOW64\ncrypt.dll
11:27:43.0764 3644  C:\Windows\SysWOW64\ncrypt.dll - ok
11:27:43.0780 3644  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
11:27:43.0780 3644  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
11:27:43.0795 3644  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
11:27:43.0795 3644  C:\Windows\System32\AUDIOKSE.dll - ok
11:27:43.0811 3644  [ C81A97A261AE847AA6F9E57729A3E60A ] C:\Program Files\Trend Micro\Titanium\UIFramework\TmDbgLog.dll
11:27:43.0811 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\TmDbgLog.dll - ok
11:27:43.0842 3644  [ 8A7F55E5B5543C95D8AF191BCBF6D125 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
11:27:43.0842 3644  C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe - ok
11:27:43.0873 3644  [ 0786EA7E8DBDD3D8D6861E7D2C87E5E3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
11:27:43.0873 3644  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
11:27:43.0889 3644  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
11:27:43.0889 3644  C:\Windows\SysWOW64\bcrypt.dll - ok
11:27:43.0905 3644  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
11:27:43.0905 3644  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
11:27:43.0920 3644  [ 7EE22E13DEC8A6D18F4643C1EA34B0F0 ] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
11:27:43.0920 3644  C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe - ok
11:27:43.0936 3644  [ 8898C95862D03D16B2A06DB4DB6BB6B2 ] C:\Windows\SysWOW64\ExplorerFrame.dll
11:27:43.0936 3644  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
11:27:43.0967 3644  [ 79A3B950988F8D2B81906D0C0473158B ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
11:27:43.0967 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe - ok
11:27:43.0983 3644  [ 913C2E4A03201644FC986EDEB5F8A390 ] C:\Windows\System32\DXP.dll
11:27:43.0983 3644  C:\Windows\System32\DXP.dll - ok
11:27:43.0998 3644  [ FDDC4D6EC3B2BD3B5A04C22881305621 ] C:\Windows\SysWOW64\SFCOM.dll
11:27:43.0998 3644  C:\Windows\SysWOW64\SFCOM.dll - ok
11:27:44.0014 3644  [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
11:27:44.0014 3644  C:\Windows\System32\RtkCfg64.dll - ok
11:27:44.0045 3644  [ 5AEBF6FA9805C9101220AA4FB4FA17E7 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
11:27:44.0045 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe - ok
11:27:44.0061 3644  [ FD22B00049F775E952371E9C3DAC631B ] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
11:27:44.0061 3644  C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe - ok
11:27:44.0076 3644  [ 7849250D8EC5FEEA33A3C37331F56793 ] C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll
11:27:44.0076 3644  C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\dmres.dll - ok
11:27:44.0092 3644  [ ABD477D649E3B0E323C79B0755AAF262 ] C:\Windows\System32\RtkAPO64.dll
11:27:44.0092 3644  C:\Windows\System32\RtkAPO64.dll - ok
11:27:44.0123 3644  [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
11:27:44.0123 3644  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
11:27:44.0139 3644  [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\SysWOW64\sxs.dll
11:27:44.0139 3644  C:\Windows\SysWOW64\sxs.dll - ok
11:27:44.0154 3644  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
11:27:44.0154 3644  C:\Windows\SysWOW64\oledlg.dll - ok
11:27:44.0170 3644  [ B24ABFAB2D541996A38905369D511953 ] C:\Windows\SysWOW64\wdmaud.drv
11:27:44.0170 3644  C:\Windows\SysWOW64\wdmaud.drv - ok
11:27:44.0201 3644  [ 83E624D0986FA920AFB69EB71D79942D ] C:\Program Files (x86)\Yahoo!\Messenger\nspr4.dll
11:27:44.0201 3644  C:\Program Files (x86)\Yahoo!\Messenger\nspr4.dll - ok
11:27:44.0201 3644  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
11:27:44.0201 3644  C:\Windows\SysWOW64\avrt.dll - ok
11:27:44.0232 3644  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
11:27:44.0232 3644  C:\Windows\SysWOW64\ksuser.dll - ok
11:27:44.0248 3644  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
11:27:44.0248 3644  C:\Windows\SysWOW64\SensApi.dll - ok
11:27:44.0263 3644  [ ADB0C499E90EAAFB0FC4FE031CF3F87F ] C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
11:27:44.0263 3644  C:\Program Files (x86)\Yahoo!\Messenger\yui.dll - ok
11:27:44.0279 3644  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
11:27:44.0279 3644  C:\Windows\SysWOW64\duser.dll - ok
11:27:44.0295 3644  [ 06B4C8D5D9708A7494AC7C02CD54650E ] C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll
11:27:44.0295 3644  C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll - ok
11:27:44.0326 3644  [ 388CE212A119271EEA68F42712F3F64F ] C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL
11:27:44.0326 3644  C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL - ok
11:27:44.0341 3644  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
11:27:44.0341 3644  C:\Windows\System32\Syncreg.dll - ok
11:27:44.0357 3644  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
11:27:44.0357 3644  C:\Windows\SysWOW64\dui70.dll - ok
11:27:44.0388 3644  [ E7C665D4AFAAB45A9086D02FFC87A4B4 ] C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll
11:27:44.0388 3644  C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll - ok
11:27:44.0404 3644  [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
11:27:44.0404 3644  C:\Windows\SysWOW64\msacm32.drv - ok
11:27:44.0419 3644  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
11:27:44.0419 3644  C:\Windows\ehome\ehSSO.dll - ok
11:27:44.0435 3644  [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
11:27:44.0435 3644  C:\Windows\SysWOW64\midimap.dll - ok
11:27:44.0466 3644  [ 66920354B984D4A3848A84B4E66745EA ] C:\Windows\System32\netshell.dll
11:27:44.0466 3644  C:\Windows\System32\netshell.dll - ok
11:27:44.0482 3644  [ 24827B761D21FCEC4114EEC1320483F9 ] C:\Windows\System32\SFCOM64.dll
11:27:44.0482 3644  C:\Windows\System32\SFCOM64.dll - ok
11:27:44.0497 3644  [ 4752A325E7CA1CADFCAAB831E6CF4587 ] C:\Program Files (x86)\Yahoo!\Messenger\ymsglite.dll
11:27:44.0497 3644  C:\Program Files (x86)\Yahoo!\Messenger\ymsglite.dll - ok
11:27:44.0513 3644  [ 603986B2AA74E710381CF0E0849BD6FC ] C:\Program Files (x86)\Nuance\PDF Reader\Ereg\EregRes_eng.dll
11:27:44.0513 3644  C:\Program Files (x86)\Nuance\PDF Reader\Ereg\EregRes_eng.dll - ok
11:27:44.0544 3644  [ ECC454E6AB61BB3AD00AFB9F5C081E2C ] C:\Program Files\Trend Micro\Titanium\UIFramework\VizorUniclientLibrary.dll
11:27:44.0544 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\VizorUniclientLibrary.dll - ok
11:27:44.0560 3644  [ D1DF74B41B2B0D76B832972D07CCACD6 ] C:\Windows\System32\SFAPO64.dll
11:27:44.0560 3644  C:\Windows\System32\SFAPO64.dll - ok
11:27:44.0575 3644  [ AFF64AE0550FFD82DB4B6D0D913FB652 ] C:\Windows\System32\SFNHK64.dll
11:27:44.0575 3644  C:\Windows\System32\SFNHK64.dll - ok
11:27:44.0591 3644  [ 4CE1C9F944C5EC5B6B7F0C833A273DEA ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilDebugLog.dll
11:27:44.0591 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilDebugLog.dll - ok
11:27:44.0622 3644  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
11:27:44.0622 3644  C:\Windows\System32\WMALFXGFXDSP.dll - ok
11:27:44.0638 3644  [ 7BDA9423415F7612454B91DF4FA11576 ] C:\Program Files\Trend Micro\Titanium\UIFramework\boost_thread-vc80-mt-1_36.dll
11:27:44.0638 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\boost_thread-vc80-mt-1_36.dll - ok
11:27:44.0653 3644  [ 2B0F70547A3E310DB6144DA9D6C07776 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b0b8554c05f194f546a8ed531320760b\mscorlib.ni.dll
11:27:44.0653 3644  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b0b8554c05f194f546a8ed531320760b\mscorlib.ni.dll - ok
11:27:44.0685 3644  [ 50EE778BF4C4EE52CF1FB49E268710CD ] C:\Program Files\Trend Micro\Titanium\UIFramework\boost_date_time-vc80-mt-1_36.dll
11:27:44.0685 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\boost_date_time-vc80-mt-1_36.dll - ok
11:27:44.0700 3644  [ ADE6A6FEBF1FC2B7080636B9051582EA ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilMsgBuffer.dll
11:27:44.0700 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilMsgBuffer.dll - ok
11:27:44.0716 3644  [ E52C84483710797C56D72A751275A3A8 ] C:\Program Files (x86)\Yahoo!\Messenger\YHTTP.dll
11:27:44.0716 3644  C:\Program Files (x86)\Yahoo!\Messenger\YHTTP.dll - ok
11:27:44.0747 3644  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
11:27:44.0747 3644  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
11:27:44.0763 3644  [ A238CE7CE547499629F8C80F43DD56FA ] C:\Program Files (x86)\Yahoo!\Messenger\RGX.dll
11:27:44.0763 3644  C:\Program Files (x86)\Yahoo!\Messenger\RGX.dll - ok
11:27:44.0778 3644  [ 11E16C171F97D389A2E8BC1C3560EC34 ] C:\Program Files (x86)\Yahoo!\Messenger\YCPSSL.dll
11:27:44.0778 3644  C:\Program Files (x86)\Yahoo!\Messenger\YCPSSL.dll - ok
11:27:44.0794 3644  [ 96F8E8118661EC51D47719F037EBFD12 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilJsonHandle.dll
11:27:44.0794 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilJsonHandle.dll - ok
11:27:44.0825 3644  [ 885A585519842651F9F7F42C620B48E7 ] C:\Program Files (x86)\Yahoo!\Messenger\yalertcenterM.dll
11:27:44.0825 3644  C:\Program Files (x86)\Yahoo!\Messenger\yalertcenterM.dll - ok
11:27:44.0841 3644  [ 455D14F7F7455FEE0886BA545F0E6617 ] C:\Program Files (x86)\Yahoo!\Messenger\ymdm_audio.dll
11:27:44.0841 3644  C:\Program Files (x86)\Yahoo!\Messenger\ymdm_audio.dll - ok
11:27:44.0856 3644  [ 4275701172E647D59623D42734E132AF ] C:\Program Files\Trend Micro\Titanium\UIFramework\outer_AMSP_ClientLibrary.dll
11:27:44.0856 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\outer_AMSP_ClientLibrary.dll - ok
11:27:44.0872 3644  [ 76EF51AB610C80348CA7990788D57EB8 ] C:\Program Files (x86)\Yahoo!\Messenger\rmc_audio.dll
11:27:44.0872 3644  C:\Program Files (x86)\Yahoo!\Messenger\rmc_audio.dll - ok
11:27:44.0903 3644  [ ACE195303472D15FA4B6BEE30F319657 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilIPC.dll
11:27:44.0903 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilIPC.dll - ok
11:27:44.0919 3644  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
11:27:44.0919 3644  C:\Windows\System32\mfplat.dll - ok
11:27:44.0950 3644  [ AB01C36BCC34CCFE5B0BB5FFB2605135 ] C:\Windows\System32\WPDShServiceObj.dll
11:27:44.0950 3644  C:\Windows\System32\WPDShServiceObj.dll - ok
11:27:44.0965 3644  [ 08875F073FD0AA75BD81EFC6AA955F20 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilThread.dll
11:27:44.0965 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilThread.dll - ok
11:27:44.0981 3644  [ 8BC00C736E67A75D936E5B440917359B ] C:\Windows\System32\ActionCenter.dll
11:27:44.0981 3644  C:\Windows\System32\ActionCenter.dll - ok
11:27:44.0997 3644  [ 794B73472A43C9E18DE264340096D58C ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilRPC.dll
11:27:44.0997 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilRPC.dll - ok
11:27:45.0028 3644  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
11:27:45.0028 3644  C:\Windows\SysWOW64\wlanapi.dll - ok
11:27:45.0043 3644  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
11:27:45.0043 3644  C:\Windows\SysWOW64\wlanutil.dll - ok
11:27:45.0059 3644  [ F9909B83C000A953F21B2358494C0E19 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilAccessControl.dll
11:27:45.0059 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilAccessControl.dll - ok
11:27:45.0090 3644  [ 57BBB3DB2D8D1949D11964FCE332D7CD ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilInstallation.dll
11:27:45.0090 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilInstallation.dll - ok
11:27:45.0106 3644  [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
11:27:45.0106 3644  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
11:27:45.0121 3644  [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
11:27:45.0153 3644  C:\Windows\System32\UIAnimation.dll - ok
11:27:45.0153 3644  [ C2F5DFC47BCA388DFAB8236FE1B38A98 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilComponentInfo.dll
11:27:45.0153 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilComponentInfo.dll - ok
11:27:45.0168 3644  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
11:27:45.0168 3644  C:\Windows\System32\FXSST.dll - ok
11:27:45.0199 3644  [ 87D233EC2D421BF2C9F193177B8AD0A0 ] C:\Program Files (x86)\Yahoo!\Messenger\ymdm_video.dll
11:27:45.0199 3644  C:\Program Files (x86)\Yahoo!\Messenger\ymdm_video.dll - ok
11:27:45.0231 3644  [ F6FD82845D9A0D3DE9294CB8743FB1FE ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilGenericLoader.dll
11:27:45.0231 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\utilGenericLoader.dll - ok
11:27:45.0231 3644  [ C1F9A46A92D6E2A452C4252599573A0A ] C:\Program Files (x86)\Yahoo!\Messenger\core_video.dll
11:27:45.0231 3644  C:\Program Files (x86)\Yahoo!\Messenger\core_video.dll - ok
11:27:45.0262 3644  [ 1578ED9A1C0AA2A32461072B2BC8123C ] C:\Program Files\Trend Micro\Titanium\UIFramework\instInstallationLibrary.dll
11:27:45.0262 3644  C:\Program Files\Trend Micro\Titanium\UIFramework\instInstallationLibrary.dll - ok
11:27:45.0293 3644  [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
11:27:45.0293 3644  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
11:27:45.0309 3644  [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
11:27:45.0309 3644  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
11:27:45.0324 3644  [ 4FB1F2F9B02FA1138CACD2DEA3F5AEC8 ] C:\Windows\System32\riched20.dll
11:27:45.0324 3644  C:\Windows\System32\riched20.dll - ok
11:27:45.0340 3644  [ 34E6D8C67E7FD7C917BECFECA326B168 ] C:\Windows\System32\FXSAPI.dll
11:27:45.0340 3644  C:\Windows\System32\FXSAPI.dll - ok
11:27:45.0371 3644  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
11:27:45.0371 3644  C:\Windows\System32\FXSRESM.dll - ok
11:27:45.0387 3644  [ 2C5B8A680A90E96B1EC0D6DA0505E685 ] C:\Windows\System32\srchadmin.dll
11:27:45.0387 3644  C:\Windows\System32\srchadmin.dll - ok
11:27:45.0402 3644  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] C:\Windows\System32\FXSSVC.exe
11:27:45.0402 3644  C:\Windows\System32\FXSSVC.exe - ok
11:27:45.0418 3644  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
11:27:45.0418 3644  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
11:27:45.0433 3644  [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\SysWOW64\d3d9.dll
11:27:45.0433 3644  C:\Windows\SysWOW64\d3d9.dll - ok
11:27:45.0449 3644  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
11:27:45.0465 3644  C:\Windows\SysWOW64\gpapi.dll - ok
11:27:45.0480 3644  [ 8CD2A697B18069A62A035E756E51E934 ] C:\Windows\System32\SearchIndexer.exe
11:27:45.0480 3644  C:\Windows\System32\SearchIndexer.exe - ok
11:27:45.0496 3644  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
11:27:45.0496 3644  C:\Windows\System32\AltTab.dll - ok
11:27:45.0527 3644  [ F8F532C7509C3238C9827BAE861A48D7 ] C:\Windows\System32\tquery.dll
11:27:45.0527 3644  C:\Windows\System32\tquery.dll - ok
11:27:45.0543 3644  [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
11:27:45.0543 3644  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
11:27:45.0558 3644  [ FD4F95ABDE5603478C929B6CB0BDCFFF ] C:\Windows\System32\pnidui.dll
11:27:45.0558 3644  C:\Windows\System32\pnidui.dll - ok
11:27:45.0574 3644  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
11:27:45.0574 3644  C:\Windows\SysWOW64\d3d8thk.dll - ok
11:27:45.0589 3644  [ 05E07A93F6920323B0B4732953C5ECB4 ] C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll
11:27:45.0589 3644  C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll - ok
11:27:45.0605 3644  [ D32EE82DA63D39D337D5AEEA2928B1DE ] C:\Windows\System32\consent.exe
11:27:45.0605 3644  C:\Windows\System32\consent.exe - ok
11:27:45.0636 3644  [ 1F778C34C751E1B585E4FC66659BA904 ] C:\Windows\SysWOW64\cryptnet.dll
11:27:45.0636 3644  C:\Windows\SysWOW64\cryptnet.dll - ok
11:27:45.0652 3644  [ 105319E3D66D6E1BAD22AADEC1E9E0DA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcp90.dll
11:27:45.0652 3644  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\msvcp90.dll - ok
11:27:45.0667 3644  [ F40DD3104A3D5CDB708D66D5AA8C3A00 ] C:\Program Files (x86)\Yahoo!\Messenger\ConnectionWizard.dll
11:27:45.0667 3644  C:\Program Files (x86)\Yahoo!\Messenger\ConnectionWizard.dll - ok
11:27:45.0683 3644  [ BD03C64C4B1F34D1F330BF6C4AC8113D ] C:\Windows\System32\QUTIL.DLL
11:27:45.0683 3644  C:\Windows\System32\QUTIL.DLL - ok
11:27:45.0714 3644  [ 92AAF75C3EB344A098DC026BC9DDF42A ] C:\Windows\System32\bthprops.cpl
11:27:45.0714 3644  C:\Windows\System32\bthprops.cpl - ok
11:27:45.0730 3644  [ F9FC0EF1F8B9DC0A0C394764F99F787D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9b5409ff43680d37d5d9eb5c70928a9c\System.ni.dll
11:27:45.0730 3644  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\9b5409ff43680d37d5d9eb5c70928a9c\System.ni.dll - ok
11:27:45.0745 3644  [ 9141FE8D904CE682A3BDCFAE96BB04EF ] C:\Windows\SysWOW64\ntshrui.dll
11:27:45.0745 3644  C:\Windows\SysWOW64\ntshrui.dll - ok
11:27:45.0761 3644  [ BA4A19DE93FBDFE6DB5F0EBC99732A06 ] C:\Windows\System32\mssrch.dll
11:27:45.0761 3644  C:\Windows\System32\mssrch.dll - ok
11:27:45.0792 3644  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
11:27:45.0792 3644  C:\Windows\SysWOW64\slc.dll - ok
11:27:45.0808 3644  [ 56892E1DA69ABAF325C4B83CF5CCC53A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c54750e64ba10d0fb7b6a636fb3695ca\System.ni.dll
11:27:45.0808 3644  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c54750e64ba10d0fb7b6a636fb3695ca\System.ni.dll - ok
11:27:45.0823 3644  [ 2C64AF297F12582BD95D7D94C18E464C ] C:\Windows\System32\esent.dll
11:27:45.0823 3644  C:\Windows\System32\esent.dll - ok
11:27:45.0855 3644  [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
11:27:45.0855 3644  C:\Windows\SysWOW64\d3d10.dll - ok
11:27:45.0870 3644  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
11:27:45.0870 3644  C:\Windows\System32\msidle.dll - ok
11:27:45.0886 3644  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] C:\Windows\System32\qmgr.dll
11:27:45.0886 3644  C:\Windows\System32\qmgr.dll - ok
11:27:45.0901 3644  [ 4E75477E8BFA55C6F1F2688FB553F0C5 ] C:\Windows\System32\bitsperf.dll
11:27:45.0901 3644  C:\Windows\System32\bitsperf.dll - ok
11:27:45.0917 3644  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
11:27:45.0917 3644  C:\Windows\System32\mssprxy.dll - ok
11:27:45.0933 3644  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
11:27:45.0933 3644  C:\Windows\System32\bitsigd.dll - ok
11:27:45.0964 3644  [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
11:27:45.0964 3644  C:\Windows\SysWOW64\d3d10core.dll - ok
11:27:45.0979 3644  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
11:27:45.0979 3644  C:\Windows\System32\netman.dll - ok
11:27:45.0995 3644  [ 9E29BC11A70165635CC10D42E64CFEE1 ] C:\Windows\System32\upnp.dll
11:27:45.0995 3644  C:\Windows\System32\upnp.dll - ok
11:27:46.0011 3644  [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\SysWOW64\dxgi.dll
11:27:46.0011 3644  C:\Windows\SysWOW64\dxgi.dll - ok
11:27:46.0026 3644  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
11:27:46.0026 3644  C:\Windows\System32\ssdpsrv.dll - ok
11:27:46.0042 3644  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
11:27:46.0042 3644  C:\Windows\System32\en-US\tquery.dll.mui - ok
11:27:46.0057 3644  [ 21894CB605E416D26892DC445507408E ] C:\Windows\SysWOW64\pdh.dll
11:27:46.0057 3644  C:\Windows\SysWOW64\pdh.dll - ok
11:27:46.0089 3644  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
11:27:46.0089 3644  C:\Windows\System32\rasdlg.dll - ok
11:27:46.0104 3644  [ F37CC8B9B50AD9009AA054F79C093A1F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\82a4c4666ad83c3a375210247e69646b\WindowsBase.ni.dll
11:27:46.0104 3644  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\82a4c4666ad83c3a375210247e69646b\WindowsBase.ni.dll - ok
11:27:46.0120 3644  [ BB68579E181956E37EB11F9083C01CF3 ] C:\Windows\System32\dot3api.dll
11:27:46.0120 3644  C:\Windows\System32\dot3api.dll - ok
11:27:46.0135 3644  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
11:27:46.0135 3644  C:\Windows\System32\wlanhlp.dll - ok
11:27:46.0151 3644  [ 40B061D011F32073524624E6BB61C301 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\549690bfac66934b7c7fd5cf8b120b7c\PresentationCore.ni.dll
11:27:46.0151 3644  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\549690bfac66934b7c7fd5cf8b120b7c\PresentationCore.ni.dll - ok
11:27:46.0167 3644  [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
11:27:46.0167 3644  C:\Windows\System32\qmgrprxy.dll - ok
11:27:46.0182 3644  [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
11:27:46.0182 3644  C:\Windows\SysWOW64\qmgrprxy.dll - ok
11:27:46.0198 3644  [ 645C6F5BA45F6615CCB8878F375582F9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\36b839247bd1d22a7fd014a74abe9729\PresentationFramework.ni.dll
11:27:46.0198 3644  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\36b839247bd1d22a7fd014a74abe9729\PresentationFramework.ni.dll - ok
11:27:46.0229 3644  [ 752F8E96BAB993517838315508FB82CB ] C:\Windows\SysWOW64\perfproc.dll
11:27:46.0229 3644  C:\Windows\SysWOW64\perfproc.dll - ok
11:27:46.0245 3644  [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
11:27:46.0245 3644  C:\Windows\SysWOW64\perfos.dll - ok
11:27:46.0260 3644  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
11:27:46.0260 3644  C:\Windows\System32\wbem\NCProv.dll - ok
11:27:46.0276 3644  [ 14C6A59904D397C6D85DADA9ACBB6FAB ] C:\Windows\System32\browcli.dll
11:27:46.0276 3644  C:\Windows\System32\browcli.dll - ok
11:27:46.0291 3644  [ 28142AAF1565736CE0E5D7EFCE3CC0F8 ] C:\Windows\System32\schedcli.dll
11:27:46.0291 3644  C:\Windows\System32\schedcli.dll - ok
11:27:46.0307 3644  [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
11:27:46.0307 3644  C:\Windows\System32\security.dll - ok
11:27:46.0338 3644  [ 149126216A694E6BA84E92ECA77AAE3B ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
11:27:46.0338 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe - ok
11:27:46.0354 3644  [ 119B5D041D9A18293A90953375044441 ] C:\Program Files (x86)\Yahoo!\Messenger\resources\en-US\res_msgr.dll
11:27:46.0354 3644  C:\Program Files (x86)\Yahoo!\Messenger\resources\en-US\res_msgr.dll - ok
11:27:46.0369 3644  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
11:27:46.0369 3644  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
11:27:46.0385 3644  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
11:27:46.0385 3644  C:\Windows\System32\WWanAPI.dll - ok
11:27:46.0401 3644  [ 1917BE7C440DC7CF04304F0AFD7FDD16 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ElanTPCfg64.exe
11:27:46.0401 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ElanTPCfg64.exe - ok
11:27:46.0416 3644  [ AA11E1368EEB237DD100BAC6AFFE1C57 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
11:27:46.0416 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe - ok
11:27:46.0432 3644  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
11:27:46.0432 3644  C:\Windows\System32\wwapi.dll - ok
11:27:46.0463 3644  [ 5CFB72E40A3C5F1070333BCF7E52E651 ] C:\Program Files\Elantech\ETDApi.dll
11:27:46.0463 3644  C:\Program Files\Elantech\ETDApi.dll - ok
11:27:46.0479 3644  [ 4A7C441D99D86704D194E7678873B95D ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
11:27:46.0479 3644  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe - ok
11:27:46.0494 3644  [ 0B9F7D42D745038437FAE70D97F9AD5A ] C:\Windows\System32\QAGENT.DLL
11:27:46.0494 3644  C:\Windows\System32\QAGENT.DLL - ok
11:27:46.0510 3644  [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
11:27:46.0510 3644  C:\Windows\SysWOW64\hid.dll - ok
11:27:46.0525 3644  [ 79336EC275429FD9538E772EE2486A0D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\b63f1623847adcba30569d93c4246451\System.Drawing.ni.dll
11:27:46.0525 3644  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\b63f1623847adcba30569d93c4246451\System.Drawing.ni.dll - ok
11:27:46.0557 3644  [ D927DC8FF1F49367B288EC8463F0025D ] C:\Windows\SysWOW64\shunimpl.dll
11:27:46.0557 3644  C:\Windows\SysWOW64\shunimpl.dll - ok
11:27:46.0572 3644  [ 027D0500A592CAED765B9E450129D89E ] C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe
11:27:46.0572 3644  C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe - ok
11:27:46.0588 3644  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
11:27:46.0588 3644  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
11:27:46.0603 3644  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
11:27:46.0603 3644  C:\Windows\System32\webcheck.dll - ok
11:27:46.0619 3644  [ DC902231249471884D2F9EF4D3D2E8AF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e8d79927a68509254c75709e6cb49f7d\System.Windows.Forms.ni.dll
11:27:46.0619 3644  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e8d79927a68509254c75709e6cb49f7d\System.Windows.Forms.ni.dll - ok
11:27:46.0635 3644  [ BDDCD13F341CBA21775FF66A5C27F59E ] C:\Windows\System32\SearchProtocolHost.exe
11:27:46.0635 3644  C:\Windows\System32\SearchProtocolHost.exe - ok
11:27:46.0650 3644  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
11:27:46.0650 3644  C:\Windows\System32\mlang.dll - ok
11:27:46.0681 3644  [ 8B886A0AC14EAA8599142887991A5A2E ] C:\Windows\System32\imapi2.dll
11:27:46.0681 3644  C:\Windows\System32\imapi2.dll - ok
11:27:46.0697 3644  [ 9BF014C20F91D97055532F2F5496E7BD ] C:\Program Files\Windows Media Player\wmpnetwk.exe
11:27:46.0697 3644  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
11:27:46.0713 3644  [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
11:27:46.0713 3644  C:\Windows\System32\msshooks.dll - ok
11:27:46.0728 3644  [ 27BED235F5497DEBC6EF6EFAF4BA1D60 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
11:27:46.0728 3644  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
11:27:46.0744 3644  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
11:27:46.0744 3644  C:\Windows\System32\wsock32.dll - ok
11:27:46.0759 3644  [ 302B93586DFA480545C320EBA5BA6572 ] C:\Windows\System32\wmdrmdev.dll
11:27:46.0759 3644  C:\Windows\System32\wmdrmdev.dll - ok
11:27:46.0791 3644  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
11:27:46.0791 3644  C:\Windows\System32\drmv2clt.dll - ok
11:27:46.0806 3644  [ 4538040E7B6B281A0468BFBD7BE6ADBB ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
11:27:46.0806 3644  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
11:27:46.0822 3644  [ 3DEBA83ECDAF6ED2E72430D238803117 ] C:\Windows\System32\wmp.dll
11:27:46.0822 3644  C:\Windows\System32\wmp.dll - ok
11:27:46.0837 3644  [ 2B6FC63A9D1D902B8B7B2B128D5D1C5A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
11:27:46.0837 3644  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
11:27:46.0853 3644  [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
11:27:46.0853 3644  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
11:27:46.0884 3644  [ 4B77B8C1143F58402D0FF504C6C15CEB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\d0dd051976a66e08325379754531421c\System.Data.ni.dll
11:27:46.0884 3644  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\d0dd051976a66e08325379754531421c\System.Data.ni.dll - ok
11:27:46.0900 3644  [ F024058C391B99397EC3CCF6F77B7189 ] C:\Windows\System32\SearchFilterHost.exe
11:27:46.0900 3644  C:\Windows\System32\SearchFilterHost.exe - ok
11:27:46.0915 3644  [ 550BF4ACD6FC3F41DC5A83EF31B9F9B4 ] C:\Windows\System32\wmploc.DLL
11:27:46.0915 3644  C:\Windows\System32\wmploc.DLL - ok
11:27:46.0931 3644  [ 58FAE29A82984E817BBA70D0144E52ED ] C:\Windows\System32\mssph.dll
11:27:46.0931 3644  C:\Windows\System32\mssph.dll - ok
11:27:46.0947 3644  [ F0AAB2A76A7AF04C70A818E96BAF3E64 ] C:\Windows\System32\hgcpl.dll
11:27:46.0947 3644  C:\Windows\System32\hgcpl.dll - ok
11:27:46.0962 3644  [ 2A556E2D703DED03186C596B90AC6869 ] C:\Windows\System32\mapi32.dll
11:27:46.0962 3644  C:\Windows\System32\mapi32.dll - ok
11:27:46.0978 3644  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
11:27:46.0978 3644  C:\Windows\System32\fdPHost.dll - ok
11:27:46.0993 3644  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
11:27:46.0993 3644  C:\Windows\System32\fdWSD.dll - ok
11:27:47.0025 3644  [ 9AEEEF46F7BD01A7B52CDFEB9993BBFF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
11:27:47.0025 3644  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
11:27:47.0040 3644  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
11:27:47.0040 3644  C:\Windows\System32\shfolder.dll - ok
11:27:47.0056 3644  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
11:27:47.0056 3644  C:\Windows\System32\fdSSDP.dll - ok
11:27:47.0071 3644  [ CE24654E99CB7FB24903F8A1826FF343 ] C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
11:27:47.0071 3644  C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
11:27:47.0087 3644  [ DB8BF64BE3932ADC407505D21C4F2C2C ] C:\Windows\System32\fdProxy.dll
11:27:47.0087 3644  C:\Windows\System32\fdProxy.dll - ok
11:27:47.0118 3644  [ D5191E0ADB7CCD5E67604685266AC087 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\c9a1d7f1183dad9de153e1860767cd9f\System.Data.ni.dll
11:27:47.0118 3644  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Data\c9a1d7f1183dad9de153e1860767cd9f\System.Data.ni.dll - ok
11:27:47.0134 3644  [ 046B2673767CA626E2CFB7FDF735E9E8 ] C:\Windows\System32\ListSvc.dll
11:27:47.0134 3644  C:\Windows\System32\ListSvc.dll - ok
11:27:47.0149 3644  [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
11:27:47.0149 3644  C:\Windows\System32\P2P.dll - ok
11:27:47.0165 3644  [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
11:27:47.0165 3644  C:\Windows\System32\IdListen.dll - ok
11:27:47.0181 3644  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
11:27:47.0181 3644  C:\Windows\System32\p2pcollab.dll - ok
11:27:47.0196 3644  [ B9C7F88D85369548A69F2EDD1A40441E ] C:\Windows\System32\hgprint.dll
11:27:47.0196 3644  C:\Windows\System32\hgprint.dll - ok
11:27:47.0212 3644  [ 66E4246FEF8C364611F9782AA0809F42 ] C:\Program Files\Internet Explorer\ieproxy.dll
11:27:47.0212 3644  C:\Program Files\Internet Explorer\ieproxy.dll - ok
11:27:47.0227 3644  ============================================================
11:27:47.0227 3644  Scan finished
11:27:47.0227 3644  ============================================================
11:27:47.0259 3440  Detected object count: 0
11:27:47.0259 3440  Actual detected object count: 0
11:30:14.0980 3384  Deinitialize success


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#8 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 07 March 2013 - 09:47 AM

asw

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-05 11:34:18
-----------------------------
11:34:18.550    OS Version: Windows x64 6.1.7600
11:34:18.550    Number of processors: 2 586 0x100
11:34:18.565    ComputerName: PHILLIP-PC  UserName: phillip
11:34:19.517    Initialize success
11:37:18.405    AVAST engine defs: 13030500
11:37:30.713    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000069
11:37:30.729    Disk 0 Vendor: WDC_WD32 01.0 Size: 305245MB BusType: 11
11:37:30.744    Disk 0 MBR read successfully
11:37:30.760    Disk 0 MBR scan
11:37:30.775    Disk 0 Windows 7 default MBR code
11:37:30.775    Disk 0 Partition 1 00     1C Hidd FAT32 LBA MSDOS5.0    25600 MB offset 2048
11:37:30.807    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS       131255 MB offset 52430848
11:37:30.822    Disk 0 Partition - 00     0F Extended LBA            148389 MB offset 321241088
11:37:30.885    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       148388 MB offset 321243136
11:37:30.931    Disk 0 scanning C:\Windows\system32\drivers
11:37:48.357    Service scanning
11:38:27.294    Modules scanning
11:38:27.310    Disk 0 trace - called modules:
11:38:27.872    ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
11:38:27.903    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004bcd410]
11:38:27.918    3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> [0xfffffa8004a63040]
11:38:27.934    5 amd_xata.sys[fffff8800114d8b4] -> nt!IofCallDriver -> \Device\00000069[0xfffffa8004a65060]
11:38:30.227    AVAST engine scan C:\Windows
11:38:37.232    AVAST engine scan C:\Windows\system32
11:44:50.930    AVAST engine scan C:\Windows\system32\drivers
11:45:11.070    AVAST engine scan C:\Users\phillip
11:46:31.114    AVAST engine scan C:\ProgramData
11:47:16.026    Scan finished successfully
11:49:50.607    Disk 0 MBR has been saved successfully to "C:\Users\phillip\Documents\MBR.dat"
11:49:50.622    The log file has been saved successfully to "C:\Users\phillip\Documents\aswMBR.txt"
11:50:19.842    Disk 0 MBR has been saved successfully to "C:\Users\phillip\Desktop\MBR.dat"
11:50:19.873    The log file has been saved successfully to "C:\Users\phillip\Desktop\aswMBR.txt"

 
They turned the laptop off b4 I saw the last scan results....run it again?

"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 07 March 2013 - 10:59 AM

Yep,still need to see the ESET online scanner log



#10 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 08 March 2013 - 08:32 AM

where would it have been saved? or is that a manual thing?


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 08 March 2013 - 08:43 AM

Log is saved here

 

C:\Program Files (x86)\Eset\EsetOnlineScanner\log.txt


Edited by narenxp, 08 March 2013 - 08:43 AM.


#12 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 08 March 2013 - 01:00 PM

k

ran it again tho

 

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=1cbdd8017c3d45479a08308e23239545
# engine=13303
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2013-03-05 07:10:54
# local_time=2013-03-05 01:10:54 (-0600, Central Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7600 NT
# compatibility_mode=5893 16776574 66 85 49460918 114054104 0 0
# scanned=26710
# found=0
# cleaned=0
# scan_time=3804
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=1cbdd8017c3d45479a08308e23239545
# engine=13303
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2013-03-05 11:07:00
# local_time=2013-03-05 05:07:00 (-0600, Central Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7600 NT
# compatibility_mode=5893 16776574 66 85 49475084 114068270 0 0
# scanned=200752
# found=1
# cleaned=1
# scan_time=14067
sh=3F050F6BE3160D11772C8A568F58C3E0E7C684DB ft=1 fh=336a44610faa8c7e vn="a variant of Win32/Kryptik.AVXL trojan (cleaned by deleting - quarantined)" ac=C fn="C:\Users\phillip\AppData\Roaming\ldr.mcb"
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=1cbdd8017c3d45479a08308e23239545
# engine=13335
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2013-03-08 05:52:03
# local_time=2013-03-08 11:52:03 (-0600, Central Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7600 NT
# compatibility_mode=1043 16777213 100 94 0 48952307 0 0
# compatibility_mode=5893 16776574 100 94 0 114308573 0 0
# scanned=198701
# found=1
# cleaned=1
# scan_time=15247
sh=20B72C4D45795FAC6F2F1334D21D00EB18374EE1 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.NJV trojan (deleted - quarantined)" ac=C fn="C:\Users\phillip\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\765c3f3-1ad9a2a8"
 


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 08 March 2013 - 01:28 PM


Malwarebytes

--------------------

Please download Malwarebytes and save it to your desktop.  If you already have it installed launch the program and update the database.
 

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily or permit them to allow the changes.



  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this .
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------



  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.
 

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------
 

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------
 

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:
 


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------
 

  • Please download Autoruns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:
 

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

Edited by narenxp, 08 March 2013 - 01:58 PM.


#14 anjulZ

anjulZ
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:02 AM

Posted 08 March 2013 - 01:52 PM

no link for malwarebytes...

its colored but not giving me a link


"Do not be afraid. I bring you good news of great joy that will be for all the people. Today in the town of Bethlehem a Savior has been born to you; He is Christ the Lord."
Let us all remember the reason for this season!
May God bless You at least half as much as He has me!
Posted Image

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:02 AM

Posted 08 March 2013 - 01:56 PM

Try now






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users